Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My internet slowed down after installing hamachi


  • This topic is locked This topic is locked
23 replies to this topic

#1 Yayswan

Yayswan

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 16 July 2014 - 01:23 PM

My internet slowed down after installing Hamachi and when i uninstalled it was still slow i have tried everything and cant seem to find a good solution that works. It had download speeds of 2000 kB/s now it looks like its capped at 100 kB/s here are two speed tests one is when Hamachi

was installed and two is when it was not installed. 

 

Onehttp://www.speedtest.net/my-result/3601175886

 

Twohttp://www.speedtest.net/my-result/3491965454

 

I also used HijackThis here is the log

 

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 11:38:18 AM, on 7/16/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17028)
 
FIREFOX: 27.0.1 (en-US)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intuit\QuickBooks 2014\qbw32.exe
C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\SLOPEZ\Downloads\HijackThis.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:50630;https=127.0.0.1:50630
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [Intuit SyncManager] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe  startup
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [FUFAXRCV] "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe"
O4 - HKLM\..\Run: [FUFAXSTM] "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [vdultimate_chrome] C:\ProgramData\VideoDownloaderUltimate\Chrome\vdultimate.exe /checkforupdate
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIH3A.EXE /EPT "EPLTarget\P0000000000000000" /M "WP-4530 Series"
O4 - HKCU\..\Run: [iFunBox Price Watch] C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe /tray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\Users\SLOPEZ\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_BD026406C79BDE42C5EACEBC4D713F4E] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_70_Plugin.exe -update plugin
O4 - Startup: execute.bat
O4 - Startup: route.bat
O4 - Global Startup: Intuit Data Protect.lnk = C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O4 - Global Startup: QuickBooks_Standard_21.lnk = C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} - C:\Program Files (x86)\Intuit\QuickBooks 2014\HelpAsyncPluggableProtocol.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - mscoree.dll (file missing)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EpsonCustomerParticipation - SEIKO EPSON CORPORATION - C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intuit Update Service v4 (IntuitUpdateServiceV4) - Intuit Inc. - C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: QBCFMonitorService - Intuit - C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
O23 - Service: Intuit QuickBooks FCS (QBFCService) - Intuit Inc. - C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
O23 - Service: QBIDPService (QBVSS) - Intuit Inc. - C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 15810 bytes
 
I have also tried changing my DNS with this tool https://www.grc.com/dns/benchmark.htm

Edited by Yayswan, 16 July 2014 - 02:32 PM.


BC AdBot (Login to Remove)

 


#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 21 July 2014 - 09:11 AM

Hello and Welcome on board Yayswan,

my Name is Machiavelli and I will assist you with your problem.
If you booted into safe mode on your computer then print my instructions!
I'm in the 'Malware Staff Team' and will provide you with advice:

To remove Malware on a computer can be very complicated. Malware (malicious software) is able to hide and so I may not be able to find it so easily. In order to remove Malware from you Computer, you need to follow my instructions carefully. Don't be worried if you don't know what to do. just ask me! Please stay in contact with me until the problem is fixed.

Below are a few tips:
  • Removing Malware is usually very difficult.
    We need to search and analyse a lot of files. As this is done in our free time, please be patient especially if I don't answer every day!
  • Please follow these instructions
    If you don't follow the instructions your computer may crash. If you fix your PC by yourself, this can be very risky!
  • Please stay in contact with me until your problem is resolved
    As Malware may not be totally removed in one session or in one day, please stay in contact with me until the problem is resolved.
  • Please don't run any other tools without consulting with me as this can complicate finding and removing all Malware
    Don't run any tools while I'm fixing your PC. That is counter productive and again, will only complicate finding and removing all Malware!
  • Read my post completely
    If you don't do so, you may make mistakes that could result in your System crashing by your own actions!
 

Please download FRST (by Farbar) from the link below and save it to your Desktop.

Download Mirror #1

If you are unsure whether you have 32-Bit or 64-Bit Windows, see here
  • Disable all anti-virus and anti-malware software to prevent them inhibiting FRST in any way. If you are unsure how to do this, see THIS.
  • Double-click FRST.exe/FRST64.exe (depending on which version you downloaded) to run it. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • When the disclaimer appears, click Yes.
  • Click Scan to start FRST.
  • When FRST finishes scanning, two logs, FRST.txt and Addition.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of both of these logs into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 21 July 2014 - 01:10 PM

Hi Machiavelli i have scanned my computer with the application you have gave me here are the two logs

 

This log was FRST.txt

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2014
Ran by SLOPEZ (administrator) on SONIA on 21-07-2014 11:00:05
Running from C:\Users\SLOPEZ\Desktop
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIH3A.EXE
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe
(Intuit Inc.) C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32Pro.exe
(Intuit Inc.) C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32Pro.exe
(Intuit, Inc.) C:\Program Files (x86)\Intuit\QuickBooks 2014\QBDBMgr.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\SndVol.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2807608 2013-08-19] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-12] (AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [377368 2014-02-02] (Power Software Ltd)
HKLM-x32\...\Run: [vdultimate_chrome] => C:\ProgramData\VideoDownloaderUltimate\Chrome\vdultimate.exe [954368 2014-03-16] (Link64 GmbH)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIH3A.EXE [241280 2012-07-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [iFunBox Price Watch] => C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe [7748096 2013-11-26] (i-Funbox.com)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [uTorrent] => C:\Users\SLOPEZ\AppData\Roaming\uTorrent\uTorrent.exe [1267536 2014-06-13] (BitTorrent Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Facebook Update] => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-20] (Facebook Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [GoogleChromeAutoLaunch_BD026406C79BDE42C5EACEBC4D713F4E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1753280 2014-07-15] (Valve Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe /repair 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: {59813107-9f35-11e3-be9e-a0481cc3c2ce} - "F:\LG_PC_Programs.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE (Intuit Inc.)
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat ()
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat ()
ShellIconOverlayIdentifiers:  AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} -  No File
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} - C:\Program Files (x86)\Intuit\QuickBooks 2014\HelpAsyncPluggableProtocol.dll (Intuit, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @microsoft.com/Office on Demand;version=1 - C:\Users\SLOPEZ\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\Microsoft Office 15\npofficeondemand.dll (Microsoft Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\SLOPEZ\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\searchplugins\yahoo_ff.xml
FF Extension: DownloadHelper - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-14]
FF Extension: 1-Click YouTube Video Downloader - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-23]
FF Extension: DownThemAll! - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-03-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-12]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: "hxxp://www.bleepingcomputer.com/forums/t/541183/my-internet-slowed-down-after-installing-hamachi/", "https://www.google.com/", "https://support.steampowered.com/ticketlist.php"
CHR Extension: (Assassin's Creed IV Black Flag) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\agibflpbghgmiinfaefgnldmfajdance [2014-06-12]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21]
CHR Extension: (Weebly - Website Builder) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb [2014-06-12]
CHR Extension: (Video Download) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacoiknafinklohdbidcejfbpokabaic [2014-07-17]
CHR Extension: (Video Downloader professional) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-06-12]
CHR Extension: (AdBlock) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-01]
CHR Extension: (Sniper Team) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2014-06-12]
CHR Extension: (Don't Starve) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2014-06-12]
CHR Extension: (Google Play Music) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-06-12]
CHR Extension: (Little Alchemy) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2014-06-12]
CHR Extension: (Google Wallet) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-21]
CHR Extension: (Gmail) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-12]
CHR HKCU\...\Chrome\Extension: [hknpjpodmmapnfjhnblgmalmaanpajhc] - C:\ProgramData\VideoDownloaderUltimate\Chrome\VideoDownloaderUltimate.crx [2014-06-12]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-12]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
 
==================== Services (Whitelisted) =================
 
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-03-13] () [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-13] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-12] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [107552 2014-06-19] (EasyAntiCheat Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Development Company, L.P.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-08-19] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2013-08-19] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-08-19] (Intuit Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-03-04] (Realtek Semiconductor)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-08] (Advanced Micro Devices, INC.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-02-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-02-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-12] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-12] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-02-14] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-15] (LogMeIn Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2014-04-29] () [File not signed]
R3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S3 SmbDrvI; \SystemRoot\System32\drivers\Smb_driver_Intel.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-21 11:00 - 2014-07-21 11:01 - 00030572 _____ () C:\Users\SLOPEZ\Desktop\FRST.txt
2014-07-21 10:59 - 2014-07-21 11:00 - 00000000 ____D () C:\FRST
2014-07-21 10:58 - 2014-07-21 10:58 - 02090496 _____ (Farbar) C:\Users\SLOPEZ\Desktop\FRST64.exe
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-17 11:16 - 2014-07-17 11:19 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-17 11:14 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:03 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:02 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:15 - 2014-07-16 11:38 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 11:08 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-16 11:08 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-16 11:08 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-16 11:07 - 2014-07-16 11:08 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:05 - 2014-07-16 11:43 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 16:17 - 2014-07-14 16:18 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-12 14:06 - 2014-07-19 07:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-12 14:05 - 2014-07-18 00:30 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-12 08:32 - 2014-06-26 13:53 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-12 08:32 - 2014-06-26 13:53 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:20 - 2011-11-02 11:40 - 00065536 _____ () C:\Users\SLOPEZ\Documents\Chat spammer by Orestes.exe
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-09 01:45 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 01:45 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 01:45 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 01:45 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-09 01:45 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-09 01:45 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-09 01:45 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-09 01:45 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-09 01:45 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-09 01:45 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-09 01:45 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-09 01:45 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-09 01:44 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 01:44 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 01:44 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-09 01:44 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-09 01:42 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 01:42 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 01:42 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-06 01:19 - 2014-07-18 01:20 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-06 01:19 - 2014-07-18 01:20 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 16:11 - 2014-07-02 16:12 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-20 18:20 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-02 15:10 - 2014-07-14 16:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 15:09 - 2014-07-14 16:02 - 00000000 ____D () C:\ProgramData\Skype
2014-07-02 14:49 - 2014-07-02 14:50 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:33 - 2014-07-20 18:00 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-01 20:32 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-01 20:32 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-01 20:29 - 2014-07-01 20:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:23 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-01 20:22 - 2014-07-01 20:25 - 00000000 ____D () C:\AdwCleaner
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:15 - 2014-07-01 20:16 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-06-25 18:03 - 2014-06-25 21:38 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 20:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
==================== One Month Modified Files and Folders =======
 
2014-07-21 11:01 - 2014-07-21 11:00 - 00030572 _____ () C:\Users\SLOPEZ\Desktop\FRST.txt
2014-07-21 11:00 - 2014-07-21 10:59 - 00000000 ____D () C:\FRST
2014-07-21 10:58 - 2014-07-21 10:58 - 02090496 _____ (Farbar) C:\Users\SLOPEZ\Desktop\FRST64.exe
2014-07-21 10:58 - 2014-02-12 17:31 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-21 10:57 - 2013-11-30 05:05 - 01339445 _____ () C:\Windows\WindowsUpdate.log
2014-07-21 10:37 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-07-21 10:07 - 2014-05-20 16:02 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA.job
2014-07-21 10:00 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-21 09:40 - 2014-01-27 15:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-20 22:41 - 2013-08-21 09:07 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-07-20 22:23 - 2014-02-12 17:52 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-20 18:20 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-20 18:00 - 2014-07-01 20:33 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-20 17:07 - 2014-04-02 17:01 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Downloading Torrents
2014-07-20 16:07 - 2014-05-20 16:02 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core.job
2014-07-20 15:39 - 2014-02-09 14:14 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\uTorrent
2014-07-20 13:58 - 2014-02-12 17:31 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-20 13:32 - 2012-07-26 00:28 - 00941178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-19 17:47 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-19 14:53 - 2014-03-05 18:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\vlc
2014-07-19 14:53 - 2014-02-12 19:00 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Apple Computer
2014-07-19 07:45 - 2014-07-12 14:06 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-19 07:43 - 2014-04-21 22:18 - 00000506 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-07-19 07:41 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-19 07:40 - 2012-08-03 15:23 - 00740168 _____ () C:\Windows\PFRO.log
2014-07-18 18:59 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-18 11:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-18 10:05 - 2014-02-12 17:36 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-12 14:05 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-17 11:19 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-17 11:16 - 2014-07-17 11:14 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:07 - 2014-07-17 11:03 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:07 - 2014-07-17 11:02 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:43 - 2014-07-16 11:05 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:38 - 2014-07-16 11:15 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:15 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\VirtualStore
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-16 11:07 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:08 - 2014-04-19 15:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 11:08 - 2014-01-26 15:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 12:18 - 2014-01-26 15:52 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\.minecraft
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 17:53 - 2014-01-26 15:01 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1905915820-2790443379-3063176210-1002
2014-07-14 16:18 - 2014-07-14 16:17 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:06 - 2014-07-02 15:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-14 16:02 - 2014-07-02 15:09 - 00000000 ____D () C:\ProgramData\Skype
2014-07-14 15:51 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Packages
2014-07-13 14:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\rescache
2014-07-12 13:38 - 2014-04-19 14:42 - 00000000 ____D () C:\ProgramData\Tunngle
2014-07-12 13:38 - 2014-03-14 16:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Tunngle
2014-07-12 13:10 - 2014-04-18 18:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\DayZ
2014-07-12 12:28 - 2014-04-22 17:41 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Arma 3
2014-07-12 08:29 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 08:26 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 23:26 - 2014-03-22 20:35 - 00007605 _____ () C:\Users\SLOPEZ\AppData\Local\Resmon.ResmonCfg
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-11 03:02 - 2014-07-16 11:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 11:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 21:07 - 2013-12-03 12:31 - 00000000 ____D () C:\Users\SLOPEZ\Documents\Youcam
2014-07-10 20:31 - 2014-04-10 18:55 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Game Dev Tycoon - Steam
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-10 01:14 - 2014-04-22 20:30 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-10 01:14 - 2014-04-22 20:24 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Adobe
2014-07-10 01:14 - 2013-11-30 05:07 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Adobe
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 18:29 - 2014-04-17 22:47 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\TEMPORARY
2014-07-02 18:28 - 2014-04-02 17:03 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Finished Torrents
2014-07-02 18:21 - 2014-03-06 18:10 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Photos
2014-07-02 16:12 - 2014-07-02 16:11 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 14:50 - 2014-07-02 14:49 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:29 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:25 - 2014-07-01 20:22 - 00000000 ____D () C:\AdwCleaner
2014-07-01 20:24 - 2013-08-21 09:07 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:16 - 2014-07-01 20:15 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-07-01 18:09 - 2012-07-26 00:21 - 00447444 _____ () C:\Windows\setupact.log
2014-07-01 18:08 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ
2014-07-01 18:06 - 2014-03-22 23:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\dvdcss
2014-07-01 18:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-30 19:25 - 2014-04-18 15:50 - 00000896 _____ () C:\Users\SLOPEZ\Desktop\settings.xml
2014-06-26 13:53 - 2014-07-12 08:32 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-07-12 08:32 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-25 21:38 - 2014-06-25 18:03 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 20:18 - 2014-06-23 17:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:36 - 2014-02-13 16:39 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
Some content of TEMP:
====================
C:\Users\SLOPEZ\AppData\Local\Temp\i4jdel0.exe
C:\Users\SLOPEZ\AppData\Local\Temp\vdu_uninstall_1096c71c.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-19 03:01
 
==================== End Of Log ============================
 
Here is Addition.txt
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-07-2014
Ran by SLOPEZ at 2014-07-21 11:02:10
Running from C:\Users\SLOPEZ\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
"State of Decay" (HKLM-x32\...\{A3AF9BE6-6C95-46AC-B775-4D9A94A801F6}_is1) (Version: 14.4.23.5685 - )
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31395 - BitTorrent Inc.)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12.2.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.0.367 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 12.10.100.30313 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{50D62A31-CC45-8FE6-409A-AE9E115B7694}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
AMD Start Now (Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma 3 Complete (HKLM-x32\...\QXJtYTM=_is1) (Version: 1 - )
Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version:  - Bohemia Interactive)
Assetto Corsa Early Access (HKLM-x32\...\Assetto Corsa Early Access_is1) (Version:  - )
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AV Voice Changer Software DIAMOND 7.0 (HKLM-x32\...\AV Voice Changer Software DIAMOND 7.0) (Version: 7.0.29 - Avnex Ltd.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2013 - Avast Software)
Beat Hazard Ultra (HKLM-x32\...\BeatHazardUltra) (Version:  - )
Blender (HKLM\...\Blender) (Version: 2.70 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Car Mechanic Simulator 2014 v1.0.7.4 (HKLM-x32\...\Car Mechanic Simulator 2014 v1.0.7.41.0.7.4) (Version: 1.0.7.4 - Friends in War)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Combat Arms (HKLM-x32\...\Steam App 212180) (Version:  - Nexon)
Contagion (HKLM-x32\...\{EC78026B-5EB6-49B6-932E-73BD817CE1F2}}_is1) (Version: 5002 - Monochrome Games)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Cry of Fear (HKLM-x32\...\Steam App 223710) (Version:  - Team Psykskallar)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.5901 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3.5901 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2527 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.3.2527 - CyberLink Corp.) Hidden
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.5108 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 10.0.8.5108 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6119 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.5.6.6119 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
Deus Ex - Human Revolution version 1.0 (HKLM-x32\...\{1146E8F3-4057-4F46-B39C-D18AB4BB1523}_is1) (Version: 1.0 - Square Enix)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version:  - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WP-4530 Series Printer Uninstall (HKLM\...\EPSON WP-4530 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Far Cry 3 Blood Dragon (HKLM-x32\...\{A071F478-73E0-4143-AE55-4DD6BABD74F5}) (Version: 1.00 - Ubisoft)
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version:  - Greenheart Games)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hard Time  (HKLM-x32\...\Hard Time) (Version:  - MDickie)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Adhesive Games)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{8C1ADF61-4F87-44BC-804C-C20FC70D98BB}) (Version: 1.4.0.0 - Hewlett-Packard)
HP MyRoom (HKLM-x32\...\{9C35EDE5-4B0F-45E7-A438-314BA889948E}) (Version: 9.0.0.0 - Hewlett-Packard Company)
HP Postscript Converter (Version: 4.0.4100 - Hewlett-Packard) Hidden
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Recovery Manager (x32 Version: 9.00 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{B2F0406F-1609-489A-8626-7DB46776AB57}) (Version: 1.0.5 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iFunBox 2014 (v3.1.562.425), iFunbox DevTeam (HKLM-x32\...\iFunBox 2014_is1) (Version: v3.1.562.425 - )
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Left 4 Dead (HKLM-x32\...\Steam App 500) (Version:  - Valve)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Left 4 Dead Dedicated Server (HKLM-x32\...\Steam App 510) (Version:  - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version:  - Edge of Reality)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.222 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.222 - LogMeIn, Inc.) Hidden
Mafia II v1.0.0.1 / RePack by Baracuda (HKLM-x32\...\{79431B49-7C8C-4082-B0AC-D5EC3ADD2CA9}_is1) (Version:  - )
Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.10.10 - Magical Jelly Bean)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MapleStory (HKLM-x32\...\Steam App 216150) (Version:  - Nexon)
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4623.1003 - Microsoft Corporation)
Microsoft Office on Demand Browser Add-ons (HKCU\...\Microsoft Office on Demand Browser Add-ons) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4623.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
MotioninJoy ds3 driver version 0.6.0001 (HKLM-x32\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.00001 - www.motioninjoy.com)
MotioninJoy DS3 driver version 0.6.0004 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0004 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.3.0.0 - Electronic Arts)
Next Car Game Technology Sneak Peek 2.0 (HKLM-x32\...\Next Car Game Technology Sneak Peek) (Version:  - Bugbear Entertainment)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.49.1 - Black Tree Gaming)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}) (Version: 9.13.0725 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Papers Please version 1.1.60-S (HKLM-x32\...\Papers Please_is1) (Version: 1.1.60-S - )
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Postal 2 Share The Pain (HKLM-x32\...\Postal 2 Share The Pain) (Version:  - )
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickBooks (x32 Version: 24.0.4001.2403 - Intuit Inc.) Hidden
QuickBooks Pro 2014 (HKLM-x32\...\{4A21D17E-2FE8-42CD-88B7-ACF8E8860834}) (Version: 24.0.4001.2403 - Intuit Inc.)
QuickBooks Runtime Redistributable (HKLM\...\{F2A4F809-2DE6-4D27-888B-4D2BB8DAF20E}) (Version: 1.00.0000 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version:  - Password Unlocker Studio)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.29053 - Realtek Semiconductor Corp.)
Receiver (HKLM-x32\...\Steam App 234190) (Version:  - Wolfire Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sniper Ghost Warrior - Gold Edition (HKLM-x32\...\Sniper Ghost Warrior - Gold Edition_is1) (Version:  - )
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version:  - Valve)
Space Engineers version 01.025.020 (HKLM-x32\...\{40C4D9A6-C222-4593-9E81-B42DF5FEBD07}_is1) (Version: 01.025.020 - Keen Software House a. s.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Sumotori Dreams (HKLM-x32\...\Sumotori Dreams) (Version:  - )
Sumotori Full Version (HKLM-x32\...\Sumotori Full Version) (Version:  - )
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.1.3 - Synaptics Incorporated)
System Optimizer Pro (HKLM\...\System Optimizer Pro) (Version: 1.0 - 383 Media, Inc.) <==== ATTENTION
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
theHunter (HKLM-x32\...\Steam App 253710) (Version:  - Expansive Worlds)
Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version:  - Ubisoft Singapore)
Trials Fusion (HKLM-x32\...\Trials Fusion_is1) (Version:  - )
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version:  - Tunngle.net GmbH)
TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)
TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.1036 - Intuit Inc.) Hidden
TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0312 - Intuit Inc.) Hidden
TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0140 - Intuit Inc.) Hidden
TurboTax 2013 wrapper (x32 Version: 013.000.0128 - Intuit Inc.) Hidden
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 2.1 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD422D00-5232-11E3-A6F3-F04DA23A5C58}) (Version: 12.0.770 - Sony)
VideoDownloaderUltimate for Chrome (HKCU\...\VideoDownloaderUltimate_Chrome) (Version:  - Link64)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version:  - Noble Empire Corp.)
Zombie Panic Source (HKLM-x32\...\Steam App 17500) (Version:  - Zombie Panic Team)
 
==================== Restore Points  =========================
 
16-07-2014 18:06:25 Installed Java 7 Update 65
 
==================== Hosts content: ==========================
 
2012-07-25 22:26 - 2012-07-25 22:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {01149A69-400D-4569-9936-B40C5AEC6F09} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-05-20] (Facebook Inc.)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2383969B-1B26-4438-B5A5-AB1CF8BA68FB} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2E68FB2F-1E12-4BD7-B9DD-29C5948F52D5} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-05-20] (Facebook Inc.)
Task: {304680F9-DDC0-4D01-BFEC-80B1B2C865B0} - \Speedial No Task File <==== ATTENTION
Task: {337F259F-2361-4A8C-9C1F-5BF9F8244E0F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2014-06-20] (Microsoft Corporation)
Task: {39FE8CBC-FFF1-4C62-B01F-B7EE9AB1CBFC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {485897AC-D3DA-477A-BED3-EE36F4370546} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-07] (CyberLink)
Task: {4F5A8EE4-2E96-45F9-8334-7B53F1B0EEF5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {5C693FEA-5361-4FEC-BE67-E89D38EBFACD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-14] (Microsoft Corporation)
Task: {823F1EDA-0A55-428B-89AF-3BFFADDC89A6} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {88A53D75-EE2B-45CB-9606-68506B051F01} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-05-16] (Synaptics Incorporated)
Task: {926E45C9-5AB6-45D9-B68D-491EEB0819C6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9534356D-C8F0-44EA-AD38-8F7D955316DD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-12] (Google Inc.)
Task: {9BCDE498-9C35-433F-8983-EFC8C5C17F84} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-05-13] (Microsoft Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {A77C269E-CF39-4D3D-9B18-8D99AC8966BD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-06-20] (Microsoft Corporation)
Task: {A9CF5FB2-E060-404E-9504-586462EEE1EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-12] (Google Inc.)
Task: {AFC33976-332B-4F98-BE4B-D9EB782A517D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company)
Task: {B8895F33-CC50-48AD-BD3D-6B92D0CDC13C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-02-12] (AVAST Software)
Task: {BA9C7B81-439B-41A7-A6DE-51A8A42D5AA0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2014-06-20] (Microsoft Corporation)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {C75FD5B8-35B6-43CA-AAE1-4F1E5E60D814} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-03-04] (Realtek Semiconductor)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core.job => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA.job => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-05-23 02:10 - 2014-05-23 02:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2014-05-23 14:38 - 2014-06-20 09:07 - 08890536 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-03-13 23:42 - 2013-03-13 23:42 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2013-03-13 23:41 - 2013-03-13 23:41 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-03-14 17:00 - 2013-10-31 18:13 - 00102568 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-04-11 15:20 - 2014-05-12 18:37 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-03-13 23:42 - 2013-03-13 23:42 - 00016896 _____ () C:\Program Files\ATI Technologies\ATI.ACE\a4\AS4.NativeProxy.dll
2013-03-13 23:41 - 2013-03-13 23:41 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-06-24 12:48 - 2014-07-11 15:52 - 11544320 _____ () C:\Program Files (x86)\Steam\steamapps\common\Rust\legacy\rust.exe
2014-07-20 14:40 - 2014-07-20 09:55 - 02793472 _____ () C:\Program Files\AVAST Software\Avast\defs\14072001\algo.dll
2014-07-21 09:37 - 2014-07-20 23:35 - 02793472 _____ () C:\Program Files\AVAST Software\Avast\defs\14072100\algo.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-08-21 09:32 - 2012-06-07 20:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 11:34 - 2012-06-08 11:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-02-12 17:51 - 2014-02-12 17:51 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-21 14:33 - 2014-07-11 17:53 - 01116672 _____ () C:\Program Files (x86)\Steam\libavcodec-55.dll
2014-05-21 14:33 - 2014-07-11 17:53 - 00399360 _____ () C:\Program Files (x86)\Steam\libavformat-55.dll
2014-01-30 17:14 - 2014-07-11 17:53 - 00331264 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-04-22 16:58 - 2014-07-11 17:53 - 00438784 _____ () C:\Program Files (x86)\Steam\libavutil-53.dll
2014-01-30 17:14 - 2014-06-26 15:40 - 00764416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-05-21 14:33 - 2014-07-15 19:28 - 02139328 _____ () C:\Program Files (x86)\Steam\video.dll
2014-05-21 14:33 - 2014-04-28 17:37 - 00519168 _____ () C:\Program Files (x86)\Steam\libswscale-2.dll
2014-01-30 17:14 - 2014-07-15 19:28 - 01116864 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-01-30 17:14 - 2014-05-01 16:35 - 20628160 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-01-30 17:14 - 2014-07-15 19:28 - 00130752 _____ () C:\Program Files (x86)\Steam\bin\audio.dll
2014-01-30 17:14 - 2014-05-30 18:27 - 00071680 _____ () C:\Program Files (x86)\Steam\bin\mssmp3.asi
2014-01-30 17:14 - 2014-05-30 18:27 - 00153088 _____ () C:\Program Files (x86)\Steam\bin\mssvoice.asi
2014-07-18 10:05 - 2014-07-15 02:24 - 00718664 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libglesv2.dll
2014-07-18 10:05 - 2014-07-15 02:24 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libegl.dll
2014-07-18 10:05 - 2014-07-15 02:24 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll
2014-07-18 10:05 - 2014-07-15 02:24 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll
2014-07-18 10:05 - 2014-07-15 02:24 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
2014-06-05 21:00 - 2014-06-20 09:07 - 08890536 _____ () C:\Program Files\Microsoft Office 15\root\Office15\1033\GrooveIntlResource.dll
2014-06-20 20:47 - 2014-07-11 15:39 - 02101248 _____ () C:\Program Files (x86)\Steam\steamapps\common\Rust\legacy\rust_Data\Mono\mono.dll
2014-06-20 20:47 - 2014-06-20 20:54 - 00835584 _____ () C:\Program Files (x86)\Steam\steamapps\common\Rust\legacy\rust_Data\Plugins\librust.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\plsapp => ""="service"
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
HKLM\...\StartupApproved\StartupFolder: => "QuickBooks_Standard_21.lnk"
HKLM\...\StartupApproved\StartupFolder: => "QuickBooks Update Agent.lnk"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKCU\...\StartupApproved\Run: => "uTorrent"
HKCU\...\StartupApproved\Run: => "iFunBox Price Watch"
HKCU\...\StartupApproved\Run: => "msnmsgr"
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/21/2014 09:47:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485936
 
Error: (07/21/2014 09:47:14 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {A9B4E358-17EE-4A9C-BFD5-00EEA60BD38F}
 
Error: (07/21/2014 09:47:12 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {A9B4E358-17EE-4A9C-BFD5-00EEA60BD38F}
 
Error: (07/20/2014 07:03:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Skype.exe version 6.16.0.105 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1e54
 
Start Time: 01cfa481dd1c0b9b
 
Termination Time: 60000
 
Application Path: C:\Program Files (x86)\Skype\Phone\Skype.exe
 
Report Id: e97ad7f2-1079-11e4-befd-a0481cc3c2ce
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (07/20/2014 05:32:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Unturned.exe, version: 4.5.2.25830, time stamp: 0x53c7ee6c
Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1e
Exception code: 0xc0000417
Fault offset: 0x0008af3e
Faulting process id: 0x1e9c
Faulting application start time: 0xUnturned.exe0
Faulting application path: Unturned.exe1
Faulting module path: Unturned.exe2
Report Id: Unturned.exe3
Faulting package full name: Unturned.exe4
Faulting package-relative application ID: Unturned.exe5
 
Error: (07/20/2014 05:31:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Unturned.exe, version: 4.5.2.25830, time stamp: 0x53c7ee6c
Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1e
Exception code: 0xc0000417
Fault offset: 0x0008af3e
Faulting process id: 0x1f78
Faulting application start time: 0xUnturned.exe0
Faulting application path: Unturned.exe1
Faulting module path: Unturned.exe2
Report Id: Unturned.exe3
Faulting package full name: Unturned.exe4
Faulting package-relative application ID: Unturned.exe5
 
Error: (07/20/2014 05:19:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WinRAR.exe version 5.1.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: f80
 
Start Time: 01cfa4792844f888
 
Termination Time: 5837
 
Application Path: C:\Program Files\WinRAR\WinRAR.exe
 
Report Id: 9c27d2ee-106c-11e4-befd-a0481cc3c2ce
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (07/20/2014 05:08:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program WinRAR.exe version 5.1.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1368
 
Start Time: 01cfa477ccc2f53e
 
Termination Time: 9
 
Application Path: C:\Program Files\WinRAR\WinRAR.exe
 
Report Id: 1e21ffb5-106b-11e4-befd-a0481cc3c2ce
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (07/20/2014 03:37:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12620
 
Error: (07/20/2014 03:37:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12620
 
 
System errors:
=============
Error: (07/20/2014 10:27:48 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 25.192.2.133.
The computer with the IP address 25.55.131.215 did not allow the name to be claimed by
this computer.
 
Error: (07/20/2014 03:55:40 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer NOAHSPC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{91C07BCE-A1DB-4354-957D-7D4EDA4ED837}.
The master browser is stopping or an election is being forced.
 
Error: (07/20/2014 11:02:26 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 25.192.2.133.
The computer with the IP address 25.55.131.215 did not allow the name to be claimed by
this computer.
 
Error: (07/20/2014 10:45:30 AM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer NOAHSPC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{91C07BCE-A1DB-4354-957D-7D4EDA4ED837}.
The master browser is stopping or an election is being forced.
 
Error: (07/19/2014 04:17:05 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer NOAHSPC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{91C07BCE-A1DB-4354-957D-7D4EDA4ED837}.
The master browser is stopping or an election is being forced.
 
Error: (07/19/2014 04:17:01 PM) (Source: NetBT) (EventID: 4319) (User: )
Description: A duplicate name has been detected on the TCP network.  The IP address of
the computer that sent the message is in the data. Use nbtstat -n in a
command window to see which name is in the Conflict state.
 
Error: (07/19/2014 07:43:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The vcs service failed to start due to the following error: 
%%577
 
Error: (07/19/2014 07:40:27 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0
 
Error: (07/19/2014 07:41:03 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 7:05:33 AM on ‎7/‎19/‎2014 was unexpected.
 
Error: (07/18/2014 00:31:53 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The LogMeIn Hamachi Tunneling Engine service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
 
Microsoft Office Sessions:
=========================
Error: (07/21/2014 09:47:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485936
 
Error: (07/21/2014 09:47:14 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {A9B4E358-17EE-4A9C-BFD5-00EEA60BD38F}
 
Error: (07/21/2014 09:47:12 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {A9B4E358-17EE-4A9C-BFD5-00EEA60BD38F}
 
Error: (07/20/2014 07:03:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.16.0.1051e5401cfa481dd1c0b9b60000C:\Program Files (x86)\Skype\Phone\Skype.exee97ad7f2-1079-11e4-befd-a0481cc3c2ce
 
Error: (07/20/2014 05:32:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Unturned.exe4.5.2.2583053c7ee6cMSVCR100.dll10.0.40219.3254df2be1ec00004170008af3e1e9c01cfa47b26ce0720C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exeC:\Windows\SYSTEM32\MSVCR100.dll73a76649-106e-11e4-befd-a0481cc3c2ce
 
Error: (07/20/2014 05:31:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Unturned.exe4.5.2.2583053c7ee6cMSVCR100.dll10.0.40219.3254df2be1ec00004170008af3e1f7801cfa47b01268bb3C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exeC:\Windows\SYSTEM32\MSVCR100.dll53baede0-106e-11e4-befd-a0481cc3c2ce
 
Error: (07/20/2014 05:19:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: WinRAR.exe5.1.0.0f8001cfa4792844f8885837C:\Program Files\WinRAR\WinRAR.exe9c27d2ee-106c-11e4-befd-a0481cc3c2ce
 
Error: (07/20/2014 05:08:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: WinRAR.exe5.1.0.0136801cfa477ccc2f53e9C:\Program Files\WinRAR\WinRAR.exe1e21ffb5-106b-11e4-befd-a0481cc3c2ce
 
Error: (07/20/2014 03:37:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12620
 
Error: (07/20/2014 03:37:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12620
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-19 07:43:00.108
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-18 00:27:58.461
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-14 16:19:15.965
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-12 08:31:51.613
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-01 21:27:09.245
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-01 20:27:10.126
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-01 18:08:46.088
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-06-29 23:05:47.407
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-06-29 22:40:22.735
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-06-28 16:38:02.840
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 42%
Total physical RAM: 3546.25 MB
Available physical RAM: 2037.24 MB
Total Pagefile: 6147.27 MB
Available Pagefile: 3423.8 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:443.03 GB) (Free:75.71 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:21.96 GB) (Free:2.23 GB) NTFS ==>[System with boot components (obtained from reading drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 1E1F4777)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================
 
I noticed that at the top of log Addition.txt at Security Center i had disabled both my antivirus programs
They are Avast and Malwarebytes.

Edited by Yayswan, 21 July 2014 - 01:16 PM.


#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 21 July 2014 - 01:39 PM

Step 1: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1
  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.
Note: The log can also be found in here: C:\AdwCleaner\

Step 2: Malwarebytes

Please download Malwarebytes Anti-Malware to your desktop Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings.JPG

Go back to the Dashboard and select Scan Now

MBAMScan.JPG

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG

MBAMLog.JPG

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log

Step 3: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 21 July 2014 - 03:17 PM

Ok i have finished

 

Here is the log for AdwCleaner

 

# AdwCleaner v3.216 - Report created 21/07/2014 at 12:03:04
# Updated 17/07/2014 by Xplode
# Operating System : Windows 8  (64 bits)
# Username : SLOPEZ - SONIA
# Running from : C:\Users\SLOPEZ\Desktop\Tools\adwcleaner_3.216.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.17028
 
 
-\\ Mozilla Firefox v27.0.1 (en-US)
 
[ File : C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\prefs.js ]
 
 
-\\ Google Chrome v36.0.1985.125
 
[ File : C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Extension] : cmclajginlihohopoeofghddnhpplhom
Deleted [Extension] : hhbgpoakplhahbklhkcfbpicgjcaoglk
Deleted [Extension] : lcnnhcneegeeojhgpfijnlnocjdmlaon
 
*************************
 
AdwCleaner[R0].txt - [7999 octets] - [01/07/2014 20:22:42]
AdwCleaner[R1].txt - [1823 octets] - [21/07/2014 12:00:55]
AdwCleaner[S0].txt - [7280 octets] - [01/07/2014 20:24:32]
AdwCleaner[S1].txt - [1754 octets] - [21/07/2014 12:03:04]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1814 octets] ##########
 
Here is the scan for Malwarebytes
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/21/2014
Scan Time: 12:10:22 PM
Logfile: SCAN FROM MALWAREBYTES.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.07.21.08
Rootkit Database: v2014.07.17.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 8
CPU: x64
File System: NTFS
User: SLOPEZ
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 300237
Time Elapsed: 24 min, 34 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 1
HackTool.Agent.DC, C:\$Recycle.Bin\S-1-5-21-1905915820-2790443379-3063176210-1002\$RLSG8BY.rar, Quarantined, [aff2980866159c9a69b5d86a3dc49f61], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
Here is the log for Junkware Removal Tool
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by SLOPEZ on Mon 07/21/2014 at 12:42:42.83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 07/21/2014 at 12:56:27.65
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
Here is the scan for FRST
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2014
Ran by SLOPEZ (administrator) on SONIA on 21-07-2014 13:04:04
Running from C:\Users\SLOPEZ\Desktop\Tools
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2807608 2013-08-19] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-12] (AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [377368 2014-02-02] (Power Software Ltd)
HKLM-x32\...\Run: [vdultimate_chrome] => C:\ProgramData\VideoDownloaderUltimate\Chrome\vdultimate.exe [954368 2014-03-16] (Link64 GmbH)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIH3A.EXE [241280 2012-07-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [iFunBox Price Watch] => C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe [7748096 2013-11-26] (i-Funbox.com)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [uTorrent] => C:\Users\SLOPEZ\AppData\Roaming\uTorrent\uTorrent.exe [1267536 2014-06-13] (BitTorrent Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Facebook Update] => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-20] (Facebook Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [GoogleChromeAutoLaunch_BD026406C79BDE42C5EACEBC4D713F4E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1753280 2014-07-15] (Valve Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe /repair 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: {59813107-9f35-11e3-be9e-a0481cc3c2ce} - "F:\LG_PC_Programs.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE (Intuit Inc.)
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat ()
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat ()
ShellIconOverlayIdentifiers:  AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} -  No File
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} - C:\Program Files (x86)\Intuit\QuickBooks 2014\HelpAsyncPluggableProtocol.dll (Intuit, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @microsoft.com/Office on Demand;version=1 - C:\Users\SLOPEZ\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\Microsoft Office 15\npofficeondemand.dll (Microsoft Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\SLOPEZ\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\searchplugins\yahoo_ff.xml
FF Extension: DownloadHelper - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-14]
FF Extension: 1-Click YouTube Video Downloader - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-23]
FF Extension: DownThemAll! - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-03-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-12]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: "hxxp://www.bleepingcomputer.com/forums/t/541183/my-internet-slowed-down-after-installing-hamachi/", "https://www.google.com/", "https://support.steampowered.com/ticketlist.php"
CHR Extension: (Assassin's Creed IV Black Flag) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\agibflpbghgmiinfaefgnldmfajdance [2014-06-12]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21]
CHR Extension: (Weebly - Website Builder) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb [2014-06-12]
CHR Extension: (Video Download) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacoiknafinklohdbidcejfbpokabaic [2014-07-17]
CHR Extension: (Video Downloader professional) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-06-12]
CHR Extension: (AdBlock) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-01]
CHR Extension: (Sniper Team) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2014-06-12]
CHR Extension: (Don't Starve) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2014-06-12]
CHR Extension: (Google Play Music) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-06-12]
CHR Extension: (Little Alchemy) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2014-06-12]
CHR Extension: (Google Wallet) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-21]
CHR Extension: (Gmail) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-12]
CHR HKCU\...\Chrome\Extension: [hknpjpodmmapnfjhnblgmalmaanpajhc] - C:\ProgramData\VideoDownloaderUltimate\Chrome\VideoDownloaderUltimate.crx [2014-06-12]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-12]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
 
==================== Services (Whitelisted) =================
 
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-03-13] () [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-13] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-12] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [107552 2014-06-19] (EasyAntiCheat Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Development Company, L.P.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-08-19] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2013-08-19] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-08-19] (Intuit Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-03-04] (Realtek Semiconductor)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-08] (Advanced Micro Devices, INC.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-02-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-02-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-12] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-12] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-02-14] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-15] (LogMeIn Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2014-04-29] () [File not signed]
R3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S3 SmbDrvI; \SystemRoot\System32\drivers\Smb_driver_Intel.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-21 10:59 - 2014-07-21 13:04 - 00000000 ____D () C:\FRST
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-17 11:16 - 2014-07-21 13:04 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-17 11:14 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:03 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:02 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:15 - 2014-07-16 11:38 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 11:08 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-16 11:08 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-16 11:08 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-16 11:07 - 2014-07-16 11:08 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:05 - 2014-07-16 11:43 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 16:17 - 2014-07-14 16:18 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-12 14:06 - 2014-07-21 12:08 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-12 14:05 - 2014-07-18 00:30 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-12 08:32 - 2014-06-26 13:53 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-12 08:32 - 2014-06-26 13:53 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:20 - 2011-11-02 11:40 - 00065536 _____ () C:\Users\SLOPEZ\Documents\Chat spammer by Orestes.exe
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-09 01:45 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 01:45 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 01:45 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 01:45 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-09 01:45 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-09 01:45 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-09 01:45 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-09 01:45 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-09 01:45 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-09 01:45 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-09 01:45 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-09 01:45 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-09 01:44 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 01:44 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 01:44 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-09 01:44 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-09 01:42 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 01:42 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 01:42 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-06 01:19 - 2014-07-18 01:20 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-06 01:19 - 2014-07-18 01:20 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 16:11 - 2014-07-02 16:12 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-21 12:08 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-02 15:10 - 2014-07-14 16:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 15:09 - 2014-07-14 16:02 - 00000000 ____D () C:\ProgramData\Skype
2014-07-02 14:49 - 2014-07-02 14:50 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:33 - 2014-07-21 12:10 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-01 20:32 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-01 20:32 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-01 20:29 - 2014-07-01 20:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:23 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-01 20:22 - 2014-07-21 12:03 - 00000000 ____D () C:\AdwCleaner
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:15 - 2014-07-01 20:16 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-06-25 18:03 - 2014-06-25 21:38 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 20:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
==================== One Month Modified Files and Folders =======
 
2014-07-21 13:04 - 2014-07-21 10:59 - 00000000 ____D () C:\FRST
2014-07-21 13:04 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-21 13:02 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-21 12:58 - 2014-02-12 17:31 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-21 12:42 - 2014-02-12 17:52 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-21 12:18 - 2014-01-27 15:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-21 12:10 - 2014-07-01 20:33 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-21 12:08 - 2014-07-12 14:06 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-21 12:08 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-21 12:06 - 2014-04-21 22:18 - 00000506 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-07-21 12:06 - 2014-02-12 17:31 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-21 12:05 - 2012-08-03 15:23 - 00740708 _____ () C:\Windows\PFRO.log
2014-07-21 12:05 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-21 12:04 - 2013-11-30 05:05 - 01393671 _____ () C:\Windows\WindowsUpdate.log
2014-07-21 12:03 - 2014-07-01 20:22 - 00000000 ____D () C:\AdwCleaner
2014-07-21 11:28 - 2014-03-06 18:10 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Photos
2014-07-21 10:37 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-07-21 10:07 - 2014-05-20 16:02 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA.job
2014-07-20 22:41 - 2013-08-21 09:07 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-20 17:07 - 2014-04-02 17:01 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Downloading Torrents
2014-07-20 16:07 - 2014-05-20 16:02 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core.job
2014-07-20 15:39 - 2014-02-09 14:14 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\uTorrent
2014-07-20 13:32 - 2012-07-26 00:28 - 00941178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-19 17:47 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-19 14:53 - 2014-03-05 18:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\vlc
2014-07-19 14:53 - 2014-02-12 19:00 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Apple Computer
2014-07-18 18:59 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-18 11:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-18 10:05 - 2014-02-12 17:36 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-12 14:05 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-17 11:16 - 2014-07-17 11:14 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:07 - 2014-07-17 11:03 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:07 - 2014-07-17 11:02 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:43 - 2014-07-16 11:05 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:38 - 2014-07-16 11:15 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:15 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\VirtualStore
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-16 11:07 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:08 - 2014-04-19 15:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 11:08 - 2014-01-26 15:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 12:18 - 2014-01-26 15:52 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\.minecraft
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 17:53 - 2014-01-26 15:01 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1905915820-2790443379-3063176210-1002
2014-07-14 16:18 - 2014-07-14 16:17 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:06 - 2014-07-02 15:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-14 16:02 - 2014-07-02 15:09 - 00000000 ____D () C:\ProgramData\Skype
2014-07-14 15:51 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Packages
2014-07-13 14:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\rescache
2014-07-12 13:38 - 2014-04-19 14:42 - 00000000 ____D () C:\ProgramData\Tunngle
2014-07-12 13:38 - 2014-03-14 16:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Tunngle
2014-07-12 13:10 - 2014-04-18 18:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\DayZ
2014-07-12 12:28 - 2014-04-22 17:41 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Arma 3
2014-07-12 08:29 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 08:26 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 23:26 - 2014-03-22 20:35 - 00007605 _____ () C:\Users\SLOPEZ\AppData\Local\Resmon.ResmonCfg
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-11 03:02 - 2014-07-16 11:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 11:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 21:07 - 2013-12-03 12:31 - 00000000 ____D () C:\Users\SLOPEZ\Documents\Youcam
2014-07-10 20:31 - 2014-04-10 18:55 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Game Dev Tycoon - Steam
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-10 01:14 - 2014-04-22 20:30 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-10 01:14 - 2014-04-22 20:24 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Adobe
2014-07-10 01:14 - 2013-11-30 05:07 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Adobe
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 18:29 - 2014-04-17 22:47 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\TEMPORARY
2014-07-02 18:28 - 2014-04-02 17:03 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Finished Torrents
2014-07-02 16:12 - 2014-07-02 16:11 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 14:50 - 2014-07-02 14:49 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:29 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:24 - 2013-08-21 09:07 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:16 - 2014-07-01 20:15 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-07-01 18:09 - 2012-07-26 00:21 - 00447444 _____ () C:\Windows\setupact.log
2014-07-01 18:08 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ
2014-07-01 18:06 - 2014-03-22 23:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\dvdcss
2014-07-01 18:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-30 19:25 - 2014-04-18 15:50 - 00000896 _____ () C:\Users\SLOPEZ\Desktop\settings.xml
2014-06-26 13:53 - 2014-07-12 08:32 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-07-12 08:32 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-25 21:38 - 2014-06-25 18:03 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 20:18 - 2014-06-23 17:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:36 - 2014-02-13 16:39 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
Some content of TEMP:
====================
C:\Users\SLOPEZ\AppData\Local\Temp\i4jdel0.exe
C:\Users\SLOPEZ\AppData\Local\Temp\Quarantine.exe
C:\Users\SLOPEZ\AppData\Local\Temp\vdu_uninstall_1096c71c.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-19 03:01
 
==================== End Of Log ============================
 
 
 


#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 21 July 2014 - 03:22 PM

Could you please repost in black colour, this is difficult to read.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#7 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 21 July 2014 - 03:25 PM

Im sorry here it is in black text

 

Here is the log for AdwCleaner

 

# AdwCleaner v3.216 - Report created 21/07/2014 at 12:03:04
# Updated 17/07/2014 by Xplode
# Operating System : Windows 8  (64 bits)
# Username : SLOPEZ - SONIA
# Running from : C:\Users\SLOPEZ\Desktop\Tools\adwcleaner_3.216.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.17028
 
 
-\\ Mozilla Firefox v27.0.1 (en-US)
 
[ File : C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\prefs.js ]
 
 
-\\ Google Chrome v36.0.1985.125
 
[ File : C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Extension] : cmclajginlihohopoeofghddnhpplhom
Deleted [Extension] : hhbgpoakplhahbklhkcfbpicgjcaoglk
Deleted [Extension] : lcnnhcneegeeojhgpfijnlnocjdmlaon
 
*************************
 
AdwCleaner[R0].txt - [7999 octets] - [01/07/2014 20:22:42]
AdwCleaner[R1].txt - [1823 octets] - [21/07/2014 12:00:55]
AdwCleaner[S0].txt - [7280 octets] - [01/07/2014 20:24:32]
AdwCleaner[S1].txt - [1754 octets] - [21/07/2014 12:03:04]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1814 octets] ##########
 
Here is the scan for Malwarebytes
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/21/2014
Scan Time: 12:10:22 PM
Logfile: SCAN FROM MALWAREBYTES.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.07.21.08
Rootkit Database: v2014.07.17.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 8
CPU: x64
File System: NTFS
User: SLOPEZ
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 300237
Time Elapsed: 24 min, 34 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 1
HackTool.Agent.DC, C:\$Recycle.Bin\S-1-5-21-1905915820-2790443379-3063176210-1002\$RLSG8BY.rar, Quarantined, [aff2980866159c9a69b5d86a3dc49f61], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
Here is the log for Junkware Removal Tool
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by SLOPEZ on Mon 07/21/2014 at 12:42:42.83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 07/21/2014 at 12:56:27.65
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
Here is the scan for FRST
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2014
Ran by SLOPEZ (administrator) on SONIA on 21-07-2014 13:04:04
Running from C:\Users\SLOPEZ\Desktop\Tools
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2807608 2013-08-19] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-12] (AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [377368 2014-02-02] (Power Software Ltd)
HKLM-x32\...\Run: [vdultimate_chrome] => C:\ProgramData\VideoDownloaderUltimate\Chrome\vdultimate.exe [954368 2014-03-16] (Link64 GmbH)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIH3A.EXE [241280 2012-07-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [iFunBox Price Watch] => C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe [7748096 2013-11-26] (i-Funbox.com)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [uTorrent] => C:\Users\SLOPEZ\AppData\Roaming\uTorrent\uTorrent.exe [1267536 2014-06-13] (BitTorrent Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Facebook Update] => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-20] (Facebook Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [GoogleChromeAutoLaunch_BD026406C79BDE42C5EACEBC4D713F4E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1753280 2014-07-15] (Valve Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe /repair 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: {59813107-9f35-11e3-be9e-a0481cc3c2ce} - "F:\LG_PC_Programs.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE (Intuit Inc.)
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat ()
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat ()
ShellIconOverlayIdentifiers:  AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} -  No File
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} - C:\Program Files (x86)\Intuit\QuickBooks 2014\HelpAsyncPluggableProtocol.dll (Intuit, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @microsoft.com/Office on Demand;version=1 - C:\Users\SLOPEZ\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\Microsoft Office 15\npofficeondemand.dll (Microsoft Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\SLOPEZ\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\searchplugins\yahoo_ff.xml
FF Extension: DownloadHelper - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-14]
FF Extension: 1-Click YouTube Video Downloader - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-23]
FF Extension: DownThemAll! - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-03-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-12]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: "hxxp://www.bleepingcomputer.com/forums/t/541183/my-internet-slowed-down-after-installing-hamachi/", "https://www.google.com/", "https://support.steampowered.com/ticketlist.php"
CHR Extension: (Assassin's Creed IV Black Flag) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\agibflpbghgmiinfaefgnldmfajdance [2014-06-12]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21]
CHR Extension: (Weebly - Website Builder) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb [2014-06-12]
CHR Extension: (Video Download) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacoiknafinklohdbidcejfbpokabaic [2014-07-17]
CHR Extension: (Video Downloader professional) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-06-12]
CHR Extension: (AdBlock) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-01]
CHR Extension: (Sniper Team) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2014-06-12]
CHR Extension: (Don't Starve) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2014-06-12]
CHR Extension: (Google Play Music) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-06-12]
CHR Extension: (Little Alchemy) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2014-06-12]
CHR Extension: (Google Wallet) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-21]
CHR Extension: (Gmail) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-12]
CHR HKCU\...\Chrome\Extension: [hknpjpodmmapnfjhnblgmalmaanpajhc] - C:\ProgramData\VideoDownloaderUltimate\Chrome\VideoDownloaderUltimate.crx [2014-06-12]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-12]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
 
==================== Services (Whitelisted) =================
 
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-03-13] () [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-13] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-12] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [107552 2014-06-19] (EasyAntiCheat Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Development Company, L.P.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-08-19] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2013-08-19] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-08-19] (Intuit Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-03-04] (Realtek Semiconductor)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-08] (Advanced Micro Devices, INC.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-02-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-02-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-12] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-12] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-02-14] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-15] (LogMeIn Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2014-04-29] () [File not signed]
R3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S3 SmbDrvI; \SystemRoot\System32\drivers\Smb_driver_Intel.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-21 10:59 - 2014-07-21 13:04 - 00000000 ____D () C:\FRST
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-17 11:16 - 2014-07-21 13:04 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-17 11:14 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:03 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:02 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:15 - 2014-07-16 11:38 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 11:08 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-16 11:08 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-16 11:08 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-16 11:07 - 2014-07-16 11:08 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:05 - 2014-07-16 11:43 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 16:17 - 2014-07-14 16:18 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-12 14:06 - 2014-07-21 12:08 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-12 14:05 - 2014-07-18 00:30 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-12 08:32 - 2014-06-26 13:53 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-12 08:32 - 2014-06-26 13:53 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:20 - 2011-11-02 11:40 - 00065536 _____ () C:\Users\SLOPEZ\Documents\Chat spammer by Orestes.exe
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-09 01:45 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 01:45 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 01:45 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 01:45 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-09 01:45 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-09 01:45 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-09 01:45 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-09 01:45 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-09 01:45 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-09 01:45 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-09 01:45 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-09 01:45 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-09 01:44 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 01:44 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 01:44 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-09 01:44 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-09 01:42 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 01:42 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 01:42 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-06 01:19 - 2014-07-18 01:20 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-06 01:19 - 2014-07-18 01:20 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 16:11 - 2014-07-02 16:12 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-21 12:08 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-02 15:10 - 2014-07-14 16:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 15:09 - 2014-07-14 16:02 - 00000000 ____D () C:\ProgramData\Skype
2014-07-02 14:49 - 2014-07-02 14:50 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:33 - 2014-07-21 12:10 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-01 20:32 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-01 20:32 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-01 20:29 - 2014-07-01 20:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:23 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-01 20:22 - 2014-07-21 12:03 - 00000000 ____D () C:\AdwCleaner
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:15 - 2014-07-01 20:16 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-06-25 18:03 - 2014-06-25 21:38 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 20:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
==================== One Month Modified Files and Folders =======
 
2014-07-21 13:04 - 2014-07-21 10:59 - 00000000 ____D () C:\FRST
2014-07-21 13:04 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-21 13:02 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-21 12:58 - 2014-02-12 17:31 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-21 12:42 - 2014-02-12 17:52 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-21 12:18 - 2014-01-27 15:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-21 12:10 - 2014-07-01 20:33 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-21 12:08 - 2014-07-12 14:06 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-21 12:08 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-21 12:06 - 2014-04-21 22:18 - 00000506 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-07-21 12:06 - 2014-02-12 17:31 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-21 12:05 - 2012-08-03 15:23 - 00740708 _____ () C:\Windows\PFRO.log
2014-07-21 12:05 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-21 12:04 - 2013-11-30 05:05 - 01393671 _____ () C:\Windows\WindowsUpdate.log
2014-07-21 12:03 - 2014-07-01 20:22 - 00000000 ____D () C:\AdwCleaner
2014-07-21 11:28 - 2014-03-06 18:10 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Photos
2014-07-21 10:37 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-07-21 10:07 - 2014-05-20 16:02 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA.job
2014-07-20 22:41 - 2013-08-21 09:07 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-20 17:07 - 2014-04-02 17:01 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Downloading Torrents
2014-07-20 16:07 - 2014-05-20 16:02 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core.job
2014-07-20 15:39 - 2014-02-09 14:14 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\uTorrent
2014-07-20 13:32 - 2012-07-26 00:28 - 00941178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-19 17:47 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-19 14:53 - 2014-03-05 18:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\vlc
2014-07-19 14:53 - 2014-02-12 19:00 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Apple Computer
2014-07-18 18:59 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-18 11:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-18 10:05 - 2014-02-12 17:36 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-12 14:05 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-17 11:16 - 2014-07-17 11:14 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:07 - 2014-07-17 11:03 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:07 - 2014-07-17 11:02 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:43 - 2014-07-16 11:05 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:38 - 2014-07-16 11:15 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:15 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\VirtualStore
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-16 11:07 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:08 - 2014-04-19 15:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 11:08 - 2014-01-26 15:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 12:18 - 2014-01-26 15:52 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\.minecraft
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 17:53 - 2014-01-26 15:01 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1905915820-2790443379-3063176210-1002
2014-07-14 16:18 - 2014-07-14 16:17 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:06 - 2014-07-02 15:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-14 16:02 - 2014-07-02 15:09 - 00000000 ____D () C:\ProgramData\Skype
2014-07-14 15:51 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Packages
2014-07-13 14:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\rescache
2014-07-12 13:38 - 2014-04-19 14:42 - 00000000 ____D () C:\ProgramData\Tunngle
2014-07-12 13:38 - 2014-03-14 16:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Tunngle
2014-07-12 13:10 - 2014-04-18 18:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\DayZ
2014-07-12 12:28 - 2014-04-22 17:41 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Arma 3
2014-07-12 08:29 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 08:26 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 23:26 - 2014-03-22 20:35 - 00007605 _____ () C:\Users\SLOPEZ\AppData\Local\Resmon.ResmonCfg
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-11 03:02 - 2014-07-16 11:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 11:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 21:07 - 2013-12-03 12:31 - 00000000 ____D () C:\Users\SLOPEZ\Documents\Youcam
2014-07-10 20:31 - 2014-04-10 18:55 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Game Dev Tycoon - Steam
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-10 01:14 - 2014-04-22 20:30 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-10 01:14 - 2014-04-22 20:24 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Adobe
2014-07-10 01:14 - 2013-11-30 05:07 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Adobe
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 18:29 - 2014-04-17 22:47 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\TEMPORARY
2014-07-02 18:28 - 2014-04-02 17:03 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Finished Torrents
2014-07-02 16:12 - 2014-07-02 16:11 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 14:50 - 2014-07-02 14:49 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:29 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:24 - 2013-08-21 09:07 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:16 - 2014-07-01 20:15 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-07-01 18:09 - 2012-07-26 00:21 - 00447444 _____ () C:\Windows\setupact.log
2014-07-01 18:08 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ
2014-07-01 18:06 - 2014-03-22 23:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\dvdcss
2014-07-01 18:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-30 19:25 - 2014-04-18 15:50 - 00000896 _____ () C:\Users\SLOPEZ\Desktop\settings.xml
2014-06-26 13:53 - 2014-07-12 08:32 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-07-12 08:32 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-25 21:38 - 2014-06-25 18:03 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 20:18 - 2014-06-23 17:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:36 - 2014-02-13 16:39 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
Some content of TEMP:
====================
C:\Users\SLOPEZ\AppData\Local\Temp\i4jdel0.exe
C:\Users\SLOPEZ\AppData\Local\Temp\Quarantine.exe
C:\Users\SLOPEZ\AppData\Local\Temp\vdu_uninstall_1096c71c.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-19 03:01
 
==================== End Of Log ============================


#8 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 21 July 2014 - 03:32 PM

2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar

What's this?

 

IMPORTANT I see, you have one or more P2P (Person to Person) programs installed.

1.) You have following P2P program installed: uTorrent
2.) If you download files from non-documented sources per a P2P File sharing Program, you can expect a infection of malware. That isn't good for your PC. A long time ago File-sharing with P2P programs like UTorrent was fairly safe. But at this time it isn't true any more. Of course you can use P2P programs at your own risk, but that is maybe your source of your infection. It would be nice if you read this here. So after reading the text you will recognize why you shouldn't have them.
3.) Please read this reports about the danger of P2P Programs:
  • Cyber Education
  • 500000 computers infected
  • USA
  • infoworld
  • 4.) I would recommend that you uninstall the above. That would be nice. If you like to uninstall the P2P Program, you can do it via Start >> Control Panel >> Add or Remove Programs
    5.) If you want to keep the program on your computer , don't use it while we are fixing your computer!

     

    Step 1: FRST Fix
    • Please download the attached fixlist.txt file and save it to the same location as FRST

      Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
      NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
    • Run FRST.exe/FRST64.exe and press the Fix button just once and wait
    • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
    • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply
  • Step 2: FRST Scan
    • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
    • Click Scan to start FRST.
    • When FRST finishes scanning, a log, FRST.txt, will open.
    • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.
    Step 3: ESET

    Please run a free online scan with the ESET Online Scanner:

    IMPORTANT: You MUST use Internet Explorer for this step!
    • Visit the ESET Online Scanner Web Page
    • Select the blue Run ESET Online Scanner button:
      ESET1_zps23a5e840.png
    • Tick the box next to YES, I accept the Terms of Use and click Start
      ESET_EULA2_zps9451f1c3.png
    • When asked, allow the ActiveX control to install.
    • Select Enable detection of potentially unwanted applications and select Advanced Settings:
      ESET2_zpsc701c045.png
    • Make sure to check the options Remove found threats and Enable Anti-Stealth technology are checked:
      ESET4_zps0afafd0d.png
    • Click Start. (This scan can take several hours, so please be patient):
      ESET3_zpsccd1657d.png
    • Once the scan is completed, select List of found threats:
      ESET5_zpsd27be299.png
    • Select Export to text file... and save the file as ESETlog.txt on your Desktop:
      ESET6_zpsc17d154e.png
    • Click the Back button.
    • Click the Finish button:
      ESET9_zps51587217.png
    • Use Notepad to open the saved log file (on your Desktop- ESET.txt)[/b]
    • Copy and paste that log as a reply to this topic.
    Step 4: Question

    How is your PC running?

Attached Files


~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#9 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 21 July 2014 - 05:13 PM

Ok i did everything and uninstalled uTorrent 

 

Here is the fixlog

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-07-2014
Ran by SLOPEZ at 2014-07-21 13:48:09 Run:1
Running from C:\Users\SLOPEZ\Desktop\Tools
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: {59813107-9f35-11e3-be9e-a0481cc3c2ce} - "F:\LG_PC_Programs.exe" 
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
SearchScopes: HKLM-x32 - DefaultScope value is missing.
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} -  No File
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -  No File
C:\Users\SLOPEZ\AppData\Local\Temp\i4jdel0.exe
C:\Users\SLOPEZ\AppData\Local\Temp\Quarantine.exe
C:\Users\SLOPEZ\AppData\Local\Temp\vdu_uninstall_1096c71c.exe
*****************
 
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1905915820-2790443379-3063176210-1002'=> Key not found.
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1905915820-2790443379-3063176210-1002'=> Key not found.
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1905915820-2790443379-3063176210-1002'=> Key not found.
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{59813107-9f35-11e3-be9e-a0481cc3c2ce}' => Key deleted successfully.
'HKCR\CLSID\{59813107-9f35-11e3-be9e-a0481cc3c2ce}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}'=> Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\URL => value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\SuggestionsURL_JSON => value deleted successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{178BA119-C1AE-42F7-8914-14069E34EC87}' => Key deleted successfully.
'HKCR\CLSID\{178BA119-C1AE-42F7-8914-14069E34EC87}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value deleted successfully.
'HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}'=> Key not found.
'HKCR\PROTOCOLS\Handler\intu-help-qb7' => Key deleted successfully.
'HKCR\CLSID\{5A03BD9D-766D-47A6-8E87-CD90F60BE245}'=> Key not found.
'HKCR\PROTOCOLS\Handler\qbwc' => Key deleted successfully.
'HKCR\CLSID\{FC598A64-626C-4447-85B8-53150405FD57}'=> Key not found.
C:\Users\SLOPEZ\AppData\Local\Temp\i4jdel0.exe => Moved successfully.
C:\Users\SLOPEZ\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\SLOPEZ\AppData\Local\Temp\vdu_uninstall_1096c71c.exe => Moved successfully.
 
==== End of Fixlog ====
 
Here is the scan log from FRST
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2014
Ran by SLOPEZ (administrator) on SONIA on 21-07-2014 13:53:39
Running from C:\Users\SLOPEZ\Desktop\Tools
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Dropbox, Inc.) C:\Users\SLOPEZ\AppData\Local\Temp\~nsu.tmp\Au_.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2807608 2013-08-19] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-07-21] (AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [377368 2014-02-02] (Power Software Ltd)
HKLM-x32\...\Run: [vdultimate_chrome] => C:\ProgramData\VideoDownloaderUltimate\Chrome\vdultimate.exe [954368 2014-03-16] (Link64 GmbH)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIH3A.EXE [241280 2012-07-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [iFunBox Price Watch] => C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe [7748096 2013-11-26] (i-Funbox.com)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Facebook Update] => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-20] (Facebook Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [GoogleChromeAutoLaunch_BD026406C79BDE42C5EACEBC4D713F4E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1753280 2014-07-15] (Valve Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe /repair 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE (Intuit Inc.)
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat ()
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat ()
ShellIconOverlayIdentifiers:  AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @microsoft.com/Office on Demand;version=1 - C:\Users\SLOPEZ\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\Microsoft Office 15\npofficeondemand.dll (Microsoft Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\SLOPEZ\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\searchplugins\yahoo_ff.xml
FF Extension: DownloadHelper - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-14]
FF Extension: 1-Click YouTube Video Downloader - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-23]
FF Extension: DownThemAll! - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-03-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-12]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: "hxxp://www.bleepingcomputer.com/forums/t/541183/my-internet-slowed-down-after-installing-hamachi/", "https://www.google.com/", "https://support.steampowered.com/ticketlist.php"
CHR Extension: (Assassin's Creed IV Black Flag) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\agibflpbghgmiinfaefgnldmfajdance [2014-06-12]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21]
CHR Extension: (Weebly - Website Builder) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb [2014-06-12]
CHR Extension: (Video Download) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacoiknafinklohdbidcejfbpokabaic [2014-07-17]
CHR Extension: (Video Downloader professional) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-06-12]
CHR Extension: (AdBlock) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-01]
CHR Extension: (Sniper Team) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2014-06-12]
CHR Extension: (Don't Starve) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2014-06-12]
CHR Extension: (Google Play Music) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-06-12]
CHR Extension: (Little Alchemy) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2014-06-12]
CHR Extension: (Google Wallet) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-21]
CHR Extension: (Gmail) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-12]
CHR HKCU\...\Chrome\Extension: [hknpjpodmmapnfjhnblgmalmaanpajhc] - C:\ProgramData\VideoDownloaderUltimate\Chrome\VideoDownloaderUltimate.crx [2014-06-12]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-21]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
 
==================== Services (Whitelisted) =================
 
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-03-13] () [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-13] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-21] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [107552 2014-06-19] (EasyAntiCheat Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Development Company, L.P.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-08-19] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2013-08-19] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-08-19] (Intuit Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-03-04] (Realtek Semiconductor)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-08] (Advanced Micro Devices, INC.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-07-21] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-21] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-02-14] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-15] (LogMeIn Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-21] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2014-04-29] () [File not signed]
R3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S3 SmbDrvI; \SystemRoot\System32\drivers\Smb_driver_Intel.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-21 13:49 - 2014-07-21 13:53 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Dropbox
2014-07-21 13:28 - 2014-07-21 13:28 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-21 13:28 - 2014-07-21 13:28 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-21 10:59 - 2014-07-21 13:53 - 00000000 ____D () C:\FRST
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-17 11:16 - 2014-07-21 13:53 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-17 11:14 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:03 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:02 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:15 - 2014-07-16 11:38 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 11:08 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-16 11:08 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-16 11:08 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-16 11:07 - 2014-07-16 11:08 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:05 - 2014-07-16 11:43 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 16:17 - 2014-07-14 16:18 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-12 14:06 - 2014-07-21 13:38 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-12 14:05 - 2014-07-18 00:30 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-12 08:32 - 2014-06-26 13:53 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-12 08:32 - 2014-06-26 13:53 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:20 - 2011-11-02 11:40 - 00065536 _____ () C:\Users\SLOPEZ\Documents\Chat spammer by Orestes.exe
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-09 01:45 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 01:45 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 01:45 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 01:45 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-09 01:45 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-09 01:45 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-09 01:45 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-09 01:45 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-09 01:45 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-09 01:45 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-09 01:45 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-09 01:45 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-09 01:44 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 01:44 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 01:44 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-09 01:44 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-09 01:42 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 01:42 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 01:42 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-06 01:19 - 2014-07-18 01:20 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-06 01:19 - 2014-07-18 01:20 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 16:11 - 2014-07-02 16:12 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-21 13:42 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-02 15:10 - 2014-07-14 16:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 15:09 - 2014-07-14 16:02 - 00000000 ____D () C:\ProgramData\Skype
2014-07-02 14:49 - 2014-07-02 14:50 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:33 - 2014-07-21 13:38 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-01 20:32 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-01 20:32 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-01 20:29 - 2014-07-01 20:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:23 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-01 20:22 - 2014-07-21 12:03 - 00000000 ____D () C:\AdwCleaner
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:15 - 2014-07-01 20:16 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-06-25 18:03 - 2014-06-25 21:38 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 20:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
==================== One Month Modified Files and Folders =======
 
2014-07-21 13:53 - 2014-07-21 13:49 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Dropbox
2014-07-21 13:53 - 2014-07-21 10:59 - 00000000 ____D () C:\FRST
2014-07-21 13:53 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-21 13:50 - 2013-11-30 05:05 - 01459273 _____ () C:\Windows\WindowsUpdate.log
2014-07-21 13:46 - 2014-02-09 14:14 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\uTorrent
2014-07-21 13:42 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-21 13:42 - 2014-01-27 15:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-21 13:38 - 2014-07-12 14:06 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-21 13:38 - 2014-07-01 20:33 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-21 13:38 - 2014-04-21 22:18 - 00000506 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-07-21 13:37 - 2014-02-12 17:31 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-21 13:36 - 2012-08-03 15:23 - 00742072 _____ () C:\Windows\PFRO.log
2014-07-21 13:36 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-21 13:35 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-21 13:29 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-21 13:28 - 2014-07-21 13:28 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-21 13:28 - 2014-07-21 13:28 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-21 13:28 - 2014-02-12 17:53 - 00001973 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-21 13:28 - 2014-02-12 17:52 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00426848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-21 13:28 - 2014-02-12 17:52 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-21 13:07 - 2014-05-20 16:02 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA.job
2014-07-21 13:02 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-21 12:58 - 2014-02-12 17:31 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-21 12:03 - 2014-07-01 20:22 - 00000000 ____D () C:\AdwCleaner
2014-07-21 11:28 - 2014-03-06 18:10 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Photos
2014-07-21 10:37 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-07-20 22:41 - 2013-08-21 09:07 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-20 17:07 - 2014-04-02 17:01 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Downloading Torrents
2014-07-20 16:07 - 2014-05-20 16:02 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core.job
2014-07-20 13:32 - 2012-07-26 00:28 - 00941178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-19 17:47 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-19 14:53 - 2014-03-05 18:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\vlc
2014-07-19 14:53 - 2014-02-12 19:00 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Apple Computer
2014-07-18 18:59 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-18 11:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-18 10:05 - 2014-02-12 17:36 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-12 14:05 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-17 11:16 - 2014-07-17 11:14 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:07 - 2014-07-17 11:03 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:07 - 2014-07-17 11:02 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:43 - 2014-07-16 11:05 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:38 - 2014-07-16 11:15 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:15 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\VirtualStore
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-16 11:07 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:08 - 2014-04-19 15:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 11:08 - 2014-01-26 15:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 12:18 - 2014-01-26 15:52 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\.minecraft
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 17:53 - 2014-01-26 15:01 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1905915820-2790443379-3063176210-1002
2014-07-14 16:18 - 2014-07-14 16:17 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:06 - 2014-07-02 15:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-14 16:02 - 2014-07-02 15:09 - 00000000 ____D () C:\ProgramData\Skype
2014-07-14 15:51 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Packages
2014-07-13 14:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\rescache
2014-07-12 13:38 - 2014-04-19 14:42 - 00000000 ____D () C:\ProgramData\Tunngle
2014-07-12 13:38 - 2014-03-14 16:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Tunngle
2014-07-12 13:10 - 2014-04-18 18:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\DayZ
2014-07-12 12:28 - 2014-04-22 17:41 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Arma 3
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 08:26 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 23:26 - 2014-03-22 20:35 - 00007605 _____ () C:\Users\SLOPEZ\AppData\Local\Resmon.ResmonCfg
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-11 03:02 - 2014-07-16 11:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 11:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 21:07 - 2013-12-03 12:31 - 00000000 ____D () C:\Users\SLOPEZ\Documents\Youcam
2014-07-10 20:31 - 2014-04-10 18:55 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Game Dev Tycoon - Steam
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-10 01:14 - 2014-04-22 20:30 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-10 01:14 - 2014-04-22 20:24 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Adobe
2014-07-10 01:14 - 2013-11-30 05:07 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Adobe
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 18:29 - 2014-04-17 22:47 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\TEMPORARY
2014-07-02 18:28 - 2014-04-02 17:03 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Finished Torrents
2014-07-02 16:12 - 2014-07-02 16:11 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 14:50 - 2014-07-02 14:49 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:29 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:24 - 2013-08-21 09:07 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:16 - 2014-07-01 20:15 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-07-01 18:09 - 2012-07-26 00:21 - 00447444 _____ () C:\Windows\setupact.log
2014-07-01 18:08 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ
2014-07-01 18:06 - 2014-03-22 23:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\dvdcss
2014-07-01 18:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-30 19:25 - 2014-04-18 15:50 - 00000896 _____ () C:\Users\SLOPEZ\Desktop\settings.xml
2014-06-26 13:53 - 2014-07-12 08:32 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-07-12 08:32 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-25 21:38 - 2014-06-25 18:03 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 20:18 - 2014-06-23 17:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:36 - 2014-02-13 16:39 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
Some content of TEMP:
====================
C:\Users\SLOPEZ\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvvhkqr.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-19 03:01
 
==================== End Of Log ============================
 
My PC is running perfectly fine but my internet is still slow
 
 
 


#10 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 21 July 2014 - 11:47 PM

First,
  • Please download the attached fixlist.txt file and save it to the same location as FRST
Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply
Then,
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.
Then,
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Attached Files


~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#11 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 22 July 2014 - 01:02 PM

Ok i have done the scans but have you noticed anything bad about Hamachi? because i think that is what caused my internet problem i still have it installed

 

Here is the fixlog

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-07-2014
Ran by SLOPEZ at 2014-07-22 10:51:45 Run:2
Running from C:\Users\SLOPEZ\Desktop\Tools
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat ()
Startup: C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat ()
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
C:\Users\SLOPEZ\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvvhkqr.dll
C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat 
C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat
*****************
 
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1905915820-2790443379-3063176210-1002'=> Key not found.
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1905915820-2790443379-3063176210-1002'=> Key not found.
'HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1905915820-2790443379-3063176210-1002'=> Key not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk => Moved successfully.
C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat => Moved successfully.
C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
'HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}'=> Key not found.
C:\Users\SLOPEZ\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvvhkqr.dll => Moved successfully.
"C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\execute.bat" => File/Directory not found.
"C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\route.bat" => File/Directory not found.
 
==== End of Fixlog ====
 
Here is the scan log from FRST
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-07-2014
Ran by SLOPEZ (administrator) on SONIA on 22-07-2014 10:52:47
Running from C:\Users\SLOPEZ\Desktop\Tools
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2807608 2013-08-19] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-07-21] (AVAST Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [377368 2014-02-02] (Power Software Ltd)
HKLM-x32\...\Run: [vdultimate_chrome] => C:\ProgramData\VideoDownloaderUltimate\Chrome\vdultimate.exe [954368 2014-03-16] (Link64 GmbH)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIH3A.EXE [241280 2012-07-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [iFunBox Price Watch] => C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe [7748096 2013-11-26] (i-Funbox.com)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272832 2014-01-10] (Microsoft Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Facebook Update] => C:\Users\SLOPEZ\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-05-20] (Facebook Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [GoogleChromeAutoLaunch_BD026406C79BDE42C5EACEBC4D713F4E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1753280 2014-07-15] (Valve Corporation)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe /repair 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: F - "F:\setup.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: H - "H:\OriginInstaller.exe" 
HKU\S-1-5-21-1905915820-2790443379-3063176210-1002\...\MountPoints2: I - "I:\autorun.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE (Intuit Inc.)
ShellIconOverlayIdentifiers:  AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CPNTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @microsoft.com/Office on Demand;version=1 - C:\Users\SLOPEZ\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\Microsoft Office 15\npofficeondemand.dll (Microsoft Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\SLOPEZ\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\searchplugins\yahoo_ff.xml
FF Extension: DownloadHelper - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-14]
FF Extension: 1-Click YouTube Video Downloader - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-23]
FF Extension: DownThemAll! - C:\Users\SLOPEZ\AppData\Roaming\Mozilla\Firefox\Profiles\u25tgylf.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-03-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-12]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: "hxxp://www.bleepingcomputer.com/forums/t/541183/my-internet-slowed-down-after-installing-hamachi/", "https://www.google.com/", "https://support.steampowered.com/ticketlist.php"
CHR Extension: (Assassin's Creed IV Black Flag) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\agibflpbghgmiinfaefgnldmfajdance [2014-06-12]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21]
CHR Extension: (Weebly - Website Builder) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnocophcbjfiimmnhlhleaooedeheifb [2014-06-12]
CHR Extension: (AdBlock) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-01]
CHR Extension: (Sniper Team) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2014-06-12]
CHR Extension: (Don't Starve) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2014-06-12]
CHR Extension: (Google Play Music) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-06-12]
CHR Extension: (Little Alchemy) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2014-06-12]
CHR Extension: (Google Wallet) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-21]
CHR Extension: (Gmail) - C:\Users\SLOPEZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-12]
CHR HKCU\...\Chrome\Extension: [hknpjpodmmapnfjhnblgmalmaanpajhc] - C:\ProgramData\VideoDownloaderUltimate\Chrome\VideoDownloaderUltimate.crx [2014-06-12]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-21]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
 
==================== Services (Whitelisted) =================
 
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-03-13] () [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-13] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-21] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [107552 2014-06-19] (EasyAntiCheat Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Development Company, L.P.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-14] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-08-19] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2013-08-19] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-08-19] (Intuit Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-03-04] (Realtek Semiconductor)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-08] (Advanced Micro Devices, INC.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-07-21] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-21] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-02-14] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-07-15] (LogMeIn Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-22] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2014-04-29] () [File not signed]
R3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S3 SmbDrvI; \SystemRoot\System32\drivers\Smb_driver_Intel.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-21 13:57 - 2014-07-21 13:57 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu (1).exe
2014-07-21 13:28 - 2014-07-21 13:28 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-21 13:28 - 2014-07-21 13:28 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-21 10:59 - 2014-07-22 10:52 - 00000000 ____D () C:\FRST
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-17 11:16 - 2014-07-22 10:52 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-17 11:14 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:03 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:02 - 2014-07-17 11:07 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:15 - 2014-07-16 11:38 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-16 11:08 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-16 11:08 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-16 11:08 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-16 11:07 - 2014-07-16 11:08 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:05 - 2014-07-16 11:43 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 16:17 - 2014-07-14 16:18 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-12 14:06 - 2014-07-22 10:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-12 14:05 - 2014-07-18 00:30 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-12 08:32 - 2014-06-26 13:53 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-12 08:32 - 2014-06-26 13:53 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:20 - 2011-11-02 11:40 - 00065536 _____ () C:\Users\SLOPEZ\Documents\Chat spammer by Orestes.exe
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-09 01:45 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 01:45 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 01:45 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 01:45 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-09 01:45 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 01:45 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-09 01:45 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-09 01:45 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-09 01:45 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-09 01:45 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-09 01:45 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-09 01:45 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-09 01:45 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 01:45 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 01:45 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-09 01:44 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-09 01:44 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 01:44 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 01:44 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 01:44 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 01:44 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 01:44 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 01:44 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-09 01:44 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 01:44 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-09 01:42 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 01:42 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 01:42 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-06 01:19 - 2014-07-18 01:20 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-06 01:19 - 2014-07-18 01:20 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 16:11 - 2014-07-02 16:12 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-22 09:17 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-02 15:10 - 2014-07-14 16:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 15:09 - 2014-07-14 16:02 - 00000000 ____D () C:\ProgramData\Skype
2014-07-02 14:49 - 2014-07-02 14:50 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:33 - 2014-07-22 10:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-01 20:32 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-01 20:32 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-01 20:29 - 2014-07-01 20:32 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:23 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-01 20:22 - 2014-07-21 12:03 - 00000000 ____D () C:\AdwCleaner
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:15 - 2014-07-01 20:16 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-06-25 18:03 - 2014-06-25 21:38 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 20:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
==================== One Month Modified Files and Folders =======
 
2014-07-22 10:52 - 2014-07-21 10:59 - 00000000 ____D () C:\FRST
2014-07-22 10:52 - 2014-07-17 11:16 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Tools
2014-07-22 10:49 - 2014-07-01 20:33 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-22 10:45 - 2014-07-12 14:06 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\LogMeIn Hamachi
2014-07-22 10:33 - 2014-01-27 15:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-22 10:07 - 2014-05-20 16:02 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002UA.job
2014-07-22 10:00 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-22 09:58 - 2014-02-12 17:31 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-22 09:17 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Skype
2014-07-22 09:15 - 2014-04-21 22:18 - 00000506 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-07-22 09:14 - 2014-02-12 17:31 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-22 09:13 - 2013-08-21 09:07 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-07-22 09:13 - 2012-08-03 15:23 - 00744708 _____ () C:\Windows\PFRO.log
2014-07-22 09:13 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-21 21:30 - 2014-02-12 17:52 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-21 17:13 - 2014-01-26 15:52 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\.minecraft
2014-07-21 16:07 - 2014-05-20 16:02 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1905915820-2790443379-3063176210-1002Core.job
2014-07-21 15:23 - 2013-11-30 05:05 - 01466759 _____ () C:\Windows\WindowsUpdate.log
2014-07-21 13:57 - 2014-07-21 13:57 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu (1).exe
2014-07-21 13:46 - 2014-02-09 14:14 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\uTorrent
2014-07-21 13:35 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-07-21 13:29 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-21 13:28 - 2014-07-21 13:28 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-21 13:28 - 2014-07-21 13:28 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-21 13:28 - 2014-02-12 17:53 - 00001973 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-21 13:28 - 2014-02-12 17:52 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00426848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-21 13:28 - 2014-02-12 17:52 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-21 13:28 - 2014-02-12 17:52 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-21 12:03 - 2014-07-01 20:22 - 00000000 ____D () C:\AdwCleaner
2014-07-21 11:28 - 2014-03-06 18:10 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Photos
2014-07-21 10:37 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-07-20 17:24 - 2014-07-20 17:24 - 00012115 _____ () C:\Users\SLOPEZ\Downloads\GameOwner v0.3_[www.unknowncheats.me]_.rar
2014-07-20 17:07 - 2014-04-02 17:01 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Downloading Torrents
2014-07-20 13:32 - 2012-07-26 00:28 - 00941178 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-19 17:47 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-19 14:53 - 2014-03-05 18:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\vlc
2014-07-19 14:53 - 2014-02-12 19:00 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Apple Computer
2014-07-18 18:59 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-07-18 11:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-18 10:05 - 2014-02-12 17:36 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001109 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-18 01:20 - 2014-07-06 01:19 - 00001097 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-18 00:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-07-18 00:30 - 2014-07-12 14:05 - 00000933 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-07-17 11:16 - 2014-07-17 11:14 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Shorcuts
2014-07-17 11:07 - 2014-07-17 11:03 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Text Documnets
2014-07-17 11:07 - 2014-07-17 11:02 - 00000000 ____D () C:\Users\SLOPEZ\Desktop\Folder for folders
2014-07-16 12:45 - 2014-07-16 12:45 - 00002279 _____ () C:\Users\SLOPEZ\Downloads\DNSBench.ini
2014-07-16 11:43 - 2014-07-16 11:05 - 00013271 _____ () C:\Users\SLOPEZ\Downloads\74.63.50.40_154066.txt
2014-07-16 11:38 - 2014-07-16 11:15 - 00015812 _____ () C:\Users\SLOPEZ\Downloads\hijackthis.log
2014-07-16 11:15 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\VirtualStore
2014-07-16 11:14 - 2014-07-16 11:14 - 00388608 _____ (Trend Micro Inc.) C:\Users\SLOPEZ\Downloads\HijackThis.exe
2014-07-16 11:14 - 2014-07-16 11:14 - 00026873 _____ () C:\Users\SLOPEZ\Desktop\dds.txt
2014-07-16 11:14 - 2014-07-16 11:14 - 00009527 _____ () C:\Users\SLOPEZ\Desktop\attach.txt
2014-07-16 11:12 - 2014-07-16 11:12 - 00688992 ____R (Swearware) C:\Users\SLOPEZ\Downloads\dds.scr
2014-07-16 11:08 - 2014-07-16 11:07 - 00004114 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 11:08 - 2014-04-19 15:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-16 11:08 - 2014-01-26 15:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-16 11:04 - 2014-07-16 11:04 - 01734144 _____ (Georgia Institute of Technology) C:\Users\SLOPEZ\Downloads\ShaperProbe.exe
2014-07-16 11:03 - 2014-07-16 11:03 - 00918952 _____ (Oracle Corporation) C:\Users\SLOPEZ\Downloads\chromeinstall-7u65.exe
2014-07-15 11:09 - 2014-07-15 11:09 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-07-14 17:53 - 2014-01-26 15:01 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1905915820-2790443379-3063176210-1002
2014-07-14 16:18 - 2014-07-14 16:17 - 05106368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-14 16:06 - 2014-07-02 15:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-14 16:03 - 2014-07-14 16:03 - 00002515 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-07-14 16:03 - 2014-07-14 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-07-14 16:02 - 2014-07-02 15:09 - 00000000 ____D () C:\ProgramData\Skype
2014-07-14 15:51 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Packages
2014-07-13 14:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\rescache
2014-07-12 13:38 - 2014-04-19 14:42 - 00000000 ____D () C:\ProgramData\Tunngle
2014-07-12 13:38 - 2014-03-14 16:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Tunngle
2014-07-12 13:10 - 2014-04-18 18:39 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\DayZ
2014-07-12 12:28 - 2014-04-22 17:41 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Arma 3
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 08:27 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 08:26 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 23:26 - 2014-03-22 20:35 - 00007605 _____ () C:\Users\SLOPEZ\AppData\Local\Resmon.ResmonCfg
2014-07-11 15:55 - 2014-07-11 15:55 - 01166232 _____ (Magical Jelly Bean ) C:\Users\SLOPEZ\Downloads\KeyFinderInstaller.exe
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2014-07-11 15:55 - 2014-07-11 15:55 - 00000000 ____D () C:\Program Files (x86)\Magical Jelly Bean
2014-07-11 03:02 - 2014-07-16 11:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-16 11:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-16 11:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 21:07 - 2013-12-03 12:31 - 00000000 ____D () C:\Users\SLOPEZ\Documents\Youcam
2014-07-10 20:31 - 2014-04-10 18:55 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Game Dev Tycoon - Steam
2014-07-10 16:25 - 2014-07-10 16:25 - 00000192 _____ () C:\Users\SLOPEZ\Desktop\MapleStory.url
2014-07-10 01:20 - 2014-07-10 01:20 - 00001892 _____ () C:\Users\SLOPEZ\Desktop\Chat spammer by Orestes - Shortcut.lnk
2014-07-10 01:14 - 2014-07-10 01:14 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-10 01:14 - 2014-04-22 20:30 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-10 01:14 - 2014-04-22 20:24 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Adobe
2014-07-10 01:14 - 2013-11-30 05:07 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Adobe
2014-07-02 18:31 - 2014-07-02 18:31 - 00000222 _____ () C:\Users\SLOPEZ\Desktop\PlanetSide 2.url
2014-07-02 18:29 - 2014-04-17 22:47 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\TEMPORARY
2014-07-02 18:28 - 2014-04-02 17:03 - 00000000 ____D () C:\Users\SLOPEZ\Downloads\Finished Torrents
2014-07-02 16:12 - 2014-07-02 16:11 - 00167296 _____ (Gibson Research Corp.) C:\Users\SLOPEZ\Downloads\DNSBench.exe
2014-07-02 15:10 - 2014-07-02 15:10 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Local\Skype
2014-07-02 14:50 - 2014-07-02 14:49 - 01677440 _____ (Skype Technologies S.A.) C:\Users\SLOPEZ\Downloads\SkypeSetup.exe
2014-07-01 20:32 - 2014-07-01 20:32 - 00001113 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-01 20:32 - 2014-07-01 20:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-01 20:32 - 2014-07-01 20:29 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\SLOPEZ\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-01 20:24 - 2013-08-21 09:07 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk
2014-07-01 20:16 - 2014-07-01 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-01 20:16 - 2014-07-01 20:15 - 02347384 _____ (ESET) C:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
2014-07-01 20:07 - 2014-07-01 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-07-01 18:09 - 2012-07-26 00:21 - 00447444 _____ () C:\Windows\setupact.log
2014-07-01 18:08 - 2013-11-30 05:05 - 00000000 ____D () C:\Users\SLOPEZ
2014-07-01 18:06 - 2014-03-22 23:45 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\dvdcss
2014-07-01 18:04 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-30 19:25 - 2014-04-18 15:50 - 00000896 _____ () C:\Users\SLOPEZ\Desktop\settings.xml
2014-06-26 13:53 - 2014-07-12 08:32 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-07-12 08:32 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-25 21:38 - 2014-06-25 18:03 - 00094480 _____ () C:\Users\SLOPEZ\Downloads\user.conf
2014-06-24 17:02 - 2014-06-24 17:02 - 00000329 _____ () C:\Users\SLOPEZ\Downloads\hamachibats.zip
2014-06-23 20:18 - 2014-06-23 17:12 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\TeamViewer
2014-06-23 19:55 - 2014-06-23 19:55 - 08232960 _____ () C:\Users\SLOPEZ\Downloads\hamachi.msi
2014-06-23 17:12 - 2014-06-23 17:12 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-23 17:11 - 2014-06-23 17:11 - 06214104 _____ (TeamViewer GmbH) C:\Users\SLOPEZ\Downloads\TeamViewer_Setup_en.exe
2014-06-22 10:18 - 2014-06-22 10:18 - 00001389 _____ () C:\Users\SLOPEZ\Desktop\Hard Time.lnk
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\Users\SLOPEZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 10:18 - 2014-06-22 10:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Time
2014-06-22 09:36 - 2014-02-13 16:39 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-22 09:33 - 2014-06-22 09:33 - 00002990 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-19 03:01
 
==================== End Of Log ============================
 
Here is the log from MiniToolBox
 
MiniToolBox by Farbar  Version: 21-07-2014
Ran by SLOPEZ (administrator) on 22-07-2014 at 10:56:09
Running from "C:\Users\SLOPEZ\Desktop\Tools"
Microsoft Windows 8  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Ethernet (Connected)
LogMeIn Hamachi Virtual Ethernet Adapter = Hamachi (Connected)
Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter = Wi-Fi (Media disconnected)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Ethernet" forwarding=disabled advertise=disabled siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled ecncapability=ecndisabled
set interface interface="other_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Hamachi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
add address name="Hamachi" address=25.192.2.133 mask=255.0.0.0
add address name="Local Area Connection* 12" address=192.168.137.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : SONIA
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Belkin
 
Ethernet adapter Tunngle:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle)
   Physical Address. . . . . . . . . : 00-FF-5B-C5-6D-0A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 1A-D2-24-86-6D-CF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : A0-48-1C-C3-C2-CE
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::7d35:deec:7491:e01d%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.2.7(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, July 22, 2014 9:13:37 AM
   Lease Expires . . . . . . . . . . : Friday, August 28, 2150 5:24:44 PM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 228608028
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-A6-B7-58-A0-48-1C-C3-C2-CE
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Wireless LAN adapter Wi-Fi:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter
   Physical Address. . . . . . . . . : 48-D2-24-86-6D-CF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Hamachi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : LogMeIn Hamachi Virtual Ethernet Adapter
   Physical Address. . . . . . . . . : 7A-79-19-C0-02-85
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::19c0:285(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::2988:cf9a:79ca:6ec4%27(Preferred) 
   IPv4 Address. . . . . . . . . . . : 25.192.2.133(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
   DHCPv6 IAID . . . . . . . . . . . : 453136626
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-A6-B7-58-A0-48-1C-C3-C2-CE
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{91C07BCE-A1DB-4354-957D-7D4EDA4ED837}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter 6TO4 Adapter:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:2c23:a75:3f57:fdf8(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::2c23:a75:3f57:fdf8%16(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.Belkin:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Time Warner Cable
Address:  192.168.2.1
 
Name:    google.com
Addresses:  2607:f8b0:4002:802::1005
 173.194.37.65
 173.194.37.70
 173.194.37.68
 173.194.37.64
 173.194.37.69
 173.194.37.66
 173.194.37.72
 173.194.37.78
 173.194.37.73
 173.194.37.67
 173.194.37.71
 
 
Pinging google.com [74.125.239.3] with 32 bytes of data:
Reply from 74.125.239.3: bytes=32 time=1307ms TTL=53
Reply from 74.125.239.3: bytes=32 time=1330ms TTL=53
 
Ping statistics for 74.125.239.3:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 1307ms, Maximum = 1330ms, Average = 1318ms
Server:  Time Warner Cable
Address:  192.168.2.1
 
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=1683ms TTL=48
Reply from 206.190.36.45: bytes=32 time=1938ms TTL=48
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 1683ms, Maximum = 1938ms, Average = 1810ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 21...00 ff 5b c5 6d 0a ......TAP-Win32 Adapter V9 (Tunngle)
 14...1a d2 24 86 6d cf ......Microsoft Wi-Fi Direct Virtual Adapter
 13...a0 48 1c c3 c2 ce ......Realtek PCIe FE Family Controller
 12...48 d2 24 86 6d cf ......Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter
 27...7a 79 19 c0 02 85 ......LogMeIn Hamachi Virtual Ethernet Adapter
  1...........................Software Loopback Interface 1
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.7     20
         25.0.0.0        255.0.0.0         On-link      25.192.2.133    261
     25.192.2.133  255.255.255.255         On-link      25.192.2.133    261
   25.255.255.255  255.255.255.255         On-link      25.192.2.133    261
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.2.0    255.255.255.0         On-link       192.168.2.7    276
      192.168.2.7  255.255.255.255         On-link       192.168.2.7    276
    192.168.2.255  255.255.255.255         On-link       192.168.2.7    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.2.7    276
        224.0.0.0        240.0.0.0         On-link      25.192.2.133    261
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.2.7    276
  255.255.255.255  255.255.255.255         On-link      25.192.2.133    261
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 27   9005 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 16    306 2001::/32                On-link
 16    306 2001:0:9d38:90d7:2c23:a75:3f57:fdf8/128
                                    On-link
 27    261 2620:9b::/96             On-link
 27    261 2620:9b::19c0:285/128    On-link
 13    276 fe80::/64                On-link
 27    261 fe80::/64                On-link
 16    306 fe80::/64                On-link
 27    261 fe80::2988:cf9a:79ca:6ec4/128
                                    On-link
 16    306 fe80::2c23:a75:3f57:fdf8/128
                                    On-link
 13    276 fe80::7d35:deec:7491:e01d/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    306 ff00::/8                 On-link
 13    276 ff00::/8                 On-link
 27    261 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/22/2014 10:49:15 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
Error: (07/22/2014 09:24:31 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -2143485936
 
Error: (07/22/2014 09:24:31 AM) (Source: Microsoft Office 15) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {9EF2FB81-E614-4BD8-B324-5EE9AE89F417}
 
Error: (07/22/2014 09:24:29 AM) (Source: Microsoft Office 15) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {9EF2FB81-E614-4BD8-B324-5EE9AE89F417}
 
Error: (07/21/2014 05:03:18 PM) (Source: Application Hang) (User: )
Description: The program rust.exe version 4.5.2.26843 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1198
 
Start Time: 01cfa53ecc1e67b7
 
Termination Time: 319
 
Application Path: C:\Program Files (x86)\Steam\steamapps\common\Rust\legacy\rust.exe
 
Report Id: 9227da0e-1133-11e4-beff-a0481cc3c2ce
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (07/21/2014 04:08:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
Error: (07/21/2014 01:58:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
Error: (07/21/2014 01:58:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
Error: (07/21/2014 01:58:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
Error: (07/21/2014 01:58:03 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
 
 
System errors:
=============
Error: (07/22/2014 09:14:49 AM) (Source: Service Control Manager) (User: )
Description: The vcs service failed to start due to the following error: 
%%577
 
Error: (07/22/2014 09:13:06 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0
 
Error: (07/21/2014 01:37:43 PM) (Source: Service Control Manager) (User: )
Description: The vcs service failed to start due to the following error: 
%%577
 
Error: (07/21/2014 01:36:10 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0
 
 
Microsoft Office Sessions:
=========================
Error: (07/22/2014 10:49:15 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu (1).exe
 
Error: (07/22/2014 09:24:31 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -2143485936
 
Error: (07/22/2014 09:24:31 AM) (Source: Microsoft Office 15)(User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {9EF2FB81-E614-4BD8-B324-5EE9AE89F417}
 
Error: (07/22/2014 09:24:29 AM) (Source: Microsoft Office 15)(User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {9EF2FB81-E614-4BD8-B324-5EE9AE89F417}
 
Error: (07/21/2014 05:03:18 PM) (Source: Application Hang)(User: )
Description: rust.exe4.5.2.26843119801cfa53ecc1e67b7319C:\Program Files (x86)\Steam\steamapps\common\Rust\legacy\rust.exe9227da0e-1133-11e4-beff-a0481cc3c2ce
 
Error: (07/21/2014 04:08:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestc:\program files (x86)\Steam\steamapps\common\thehunter\launcher\launcher.exe
 
Error: (07/21/2014 01:58:14 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/21/2014 01:58:12 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/21/2014 01:58:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/21/2014 01:58:03 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Users\SLOPEZ\Downloads\esetsmartinstaller_enu (1).exe
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-22 09:14:49.424
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-21 13:37:43.374
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-21 12:06:36.173
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-19 07:43:00.108
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-18 00:27:58.461
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-14 16:19:15.965
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-12 08:31:51.613
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-01 21:27:09.245
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-01 20:27:10.126
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-01 18:08:46.088
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Common Files\Avnex\vcs64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
 
"State of Decay" (HKLM-x32\...\{A3AF9BE6-6C95-46AC-B775-4D9A94A801F6}_is1) (Version: 14.4.23.5685 - )
=========================== Installed Programs ============================
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12.2.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.0.367 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 12.10.100.30313 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{50D62A31-CC45-8FE6-409A-AE9E115B7694}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
AMD Start Now (Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma 3 Complete (HKLM-x32\...\QXJtYTM=_is1) (Version: 1 - )
Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version:  - Bohemia Interactive)
Assetto Corsa Early Access (HKLM-x32\...\Assetto Corsa Early Access_is1) (Version:  - )
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AV Voice Changer Software DIAMOND 7.0 (HKLM-x32\...\AV Voice Changer Software DIAMOND 7.0) (Version: 7.0.29 - Avnex Ltd.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Beat Hazard Ultra (HKLM-x32\...\BeatHazardUltra) (Version:  - )
Blender (HKLM\...\Blender) (Version: 2.70 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Car Mechanic Simulator 2014 v1.0.7.4 (HKLM-x32\...\Car Mechanic Simulator 2014 v1.0.7.41.0.7.4) (Version: 1.0.7.4 - Friends in War)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0313.2329.40379 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0313.2330.40379 - Advanced Micro Devices, Inc.) Hidden
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Combat Arms (HKLM-x32\...\Steam App 212180) (Version:  - Nexon)
Contagion (HKLM-x32\...\{EC78026B-5EB6-49B6-932E-73BD817CE1F2}}_is1) (Version: 5002 - Monochrome Games)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Cry of Fear (HKLM-x32\...\Steam App 223710) (Version:  - Team Psykskallar)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.5901 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3.5901 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2527 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.3.2527 - CyberLink Corp.) Hidden
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.5108 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 10.0.8.5108 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6119 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.5.6.6119 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
Deus Ex - Human Revolution version 1.0 (HKLM-x32\...\{1146E8F3-4057-4F46-B39C-D18AB4BB1523}_is1) (Version: 1.0 - Square Enix)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version:  - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WP-4530 Series Printer Uninstall (HKLM\...\EPSON WP-4530 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Far Cry 3 Blood Dragon (HKLM-x32\...\{A071F478-73E0-4143-AE55-4DD6BABD74F5}) (Version: 1.00 - Ubisoft)
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version:  - Greenheart Games)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hard Time  (HKLM-x32\...\Hard Time) (Version:  - MDickie)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Adhesive Games)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{8C1ADF61-4F87-44BC-804C-C20FC70D98BB}) (Version: 1.4.0.0 - Hewlett-Packard)
HP MyRoom (HKLM-x32\...\{9C35EDE5-4B0F-45E7-A438-314BA889948E}) (Version: 9.0.0.0 - Hewlett-Packard Company)
HP Postscript Converter (Version: 4.0.4100 - Hewlett-Packard) Hidden
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Recovery Manager (x32 Version: 9.00 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{B2F0406F-1609-489A-8626-7DB46776AB57}) (Version: 1.0.5 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iFunBox 2014 (v3.1.562.425), iFunbox DevTeam (HKLM-x32\...\iFunBox 2014_is1) (Version: v3.1.562.425 - )
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Left 4 Dead (HKLM-x32\...\Steam App 500) (Version:  - Valve)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Left 4 Dead Dedicated Server (HKLM-x32\...\Steam App 510) (Version:  - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version:  - Edge of Reality)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.222 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.222 - LogMeIn, Inc.) Hidden
Mafia II v1.0.0.1 / RePack by Baracuda (HKLM-x32\...\{79431B49-7C8C-4082-B0AC-D5EC3ADD2CA9}_is1) (Version:  - )
Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.10.10 - Magical Jelly Bean)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MapleStory (HKLM-x32\...\Steam App 216150) (Version:  - Nexon)
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4623.1003 - Microsoft Corporation)
Microsoft Office on Demand Browser Add-ons (HKCU\...\Microsoft Office on Demand Browser Add-ons) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4623.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
MotioninJoy ds3 driver version 0.6.0001 (HKLM-x32\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.00001 - www.motioninjoy.com)
MotioninJoy DS3 driver version 0.6.0004 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0004 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.3.0.0 - Electronic Arts)
Next Car Game Technology Sneak Peek 2.0 (HKLM-x32\...\Next Car Game Technology Sneak Peek) (Version:  - Bugbear Entertainment)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.49.1 - Black Tree Gaming)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}) (Version: 9.13.0725 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Papers Please version 1.1.60-S (HKLM-x32\...\Papers Please_is1) (Version: 1.1.60-S - )
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Postal 2 Share The Pain (HKLM-x32\...\Postal 2 Share The Pain) (Version:  - )
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickBooks (x32 Version: 24.0.4001.2403 - Intuit Inc.) Hidden
QuickBooks Pro 2014 (HKLM-x32\...\{4A21D17E-2FE8-42CD-88B7-ACF8E8860834}) (Version: 24.0.4001.2403 - Intuit Inc.)
QuickBooks Runtime Redistributable (HKLM\...\{F2A4F809-2DE6-4D27-888B-4D2BB8DAF20E}) (Version: 1.00.0000 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version:  - Password Unlocker Studio)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.29053 - Realtek Semiconductor Corp.)
Receiver (HKLM-x32\...\Steam App 234190) (Version:  - Wolfire Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sniper Ghost Warrior - Gold Edition (HKLM-x32\...\Sniper Ghost Warrior - Gold Edition_is1) (Version:  - )
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version:  - Valve)
Space Engineers version 01.025.020 (HKLM-x32\...\{40C4D9A6-C222-4593-9E81-B42DF5FEBD07}_is1) (Version: 01.025.020 - Keen Software House a. s.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Sumotori Dreams (HKLM-x32\...\Sumotori Dreams) (Version:  - )
Sumotori Full Version (HKLM-x32\...\Sumotori Full Version) (Version:  - )
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.1.3 - Synaptics Incorporated)
System Optimizer Pro (HKLM\...\System Optimizer Pro) (Version: 1.0 - 383 Media, Inc.)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
theHunter (HKLM-x32\...\Steam App 253710) (Version:  - Expansive Worlds)
Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version:  - Ubisoft Singapore)
Trials Fusion (HKLM-x32\...\Trials Fusion_is1) (Version:  - )
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version:  - Tunngle.net GmbH)
TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)
TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.1036 - Intuit Inc.) Hidden
TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0312 - Intuit Inc.) Hidden
TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0140 - Intuit Inc.) Hidden
TurboTax 2013 wrapper (x32 Version: 013.000.0128 - Intuit Inc.) Hidden
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 2.1 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD422D00-5232-11E3-A6F3-F04DA23A5C58}) (Version: 12.0.770 - Sony)
VideoDownloaderUltimate for Chrome (HKCU\...\VideoDownloaderUltimate_Chrome) (Version:  - Link64)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version:  - Noble Empire Corp.)
Zombie Panic Source (HKLM-x32\...\Steam App 17500) (Version:  - Zombie Panic Team)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 53%
Total physical RAM: 3546.25 MB
Available physical RAM: 1638.23 MB
Total Pagefile: 5274.25 MB
Available Pagefile: 2931.34 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.65 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows) (Fixed) (Total:443.03 GB) (Free:76.16 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:21.96 GB) (Free:2.23 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\SONIA
 
Administrator            Guest                    SLOPEZ                   
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****
 


#12 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 22 July 2014 - 01:04 PM

I didn't heard anything bad about Hamachi, but you can uninstall it and try out if the internet works better.

But, does the internet work better after you performed these steps now?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#13 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 22 July 2014 - 01:22 PM

Ok i have uninstalled it now i ran a speedtest but my internet was to slow to finish it 

 

Ping : 19

Download : 44.6 

 

I dont think my internet is performing better still what do you think the problem might be?

 

I also just ran Malwarebytes scan found nothing


Edited by Yayswan, 22 July 2014 - 01:22 PM.


#14 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:03:35 PM

Posted 22 July 2014 - 01:24 PM

Do you have another computer on this network? If yes could you try to test the internet there?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#15 Yayswan

Yayswan
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:35 PM

Posted 22 July 2014 - 01:29 PM

No there is no computers but i do connect my phone to it and it still is slow 

 

Ok i also just took a speedtest here is the link

 

http://www.speedtest.net/result/3641266721.png


Edited by Yayswan, 22 July 2014 - 01:33 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users