Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 8.1 will not run exe files says module not found


  • This topic is locked This topic is locked
6 replies to this topic

#1 ptom

ptom

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:51 AM

Posted 27 July 2014 - 04:03 PM

I am working on my friends computer because he is computer illiterate. He has a Aspire 1 V5 running windows 8.1 He recently upgraded to 8.1 and all was great until this week. No matter what program it is the computer seems to freeze or something. You click on the appropriate ap and the cursor shows its working. It takes forever but final notes that the module is not found. No error sign or nothing. He runs Avast antivirus and I am familiar with such things as hijack this and other such programs. What do you suggest I start with and I am glad to send the reports so we can fix this baby

Edit: Moved topic from Windows 8 to the more appropriate forum, due to Malware logs being included in the topic.~ Animal

BC AdBot (Login to Remove)

 


#2 ptom

ptom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:51 AM

Posted 27 July 2014 - 04:04 PM

BTW everything runs great in safe mode. So I figure a third party or malware as the culprit



#3 ptom

ptom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:51 AM

Posted 27 July 2014 - 04:06 PM

in fact I am in safe mode right now to post.



#4 ptom

ptom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:51 AM

Posted 27 July 2014 - 04:29 PM

Here is my Hijackthis log

 

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 4:28:04 PM, on 7/27/2014
Platform: Unknown Windows (WinNT 6.03.1408)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)

FIREFOX: 26.0 (en-US)
Boot mode: Safe mode with network support

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Ratsami\Desktop\rescue\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.yahoo.com/?type=282369&fr=spigot-yhp-ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files (x86)\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc.  - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11194 bytes



#5 ptom

ptom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:51 AM

Posted 27 July 2014 - 04:38 PM

Here is another log I ran

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-07-2014
Ran by Ratsami at 2014-07-27 13:08:32
Running from C:\Users\Ratsami\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG update module (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG update module (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG update module (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Instant Update Service (HKLM\...\{8215A318-CC27-435E-B3EA-2E3443C8998C}) (Version: 1.00.3013 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3015 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3125 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3204 - Acer Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Ask Toolbar (HKLM-x32\...\{4F524A2D-5637-4300-76A7-A758B70C0F01}) (Version: 12.15.1.16 - APN, LLC) <==== ATTENTION
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4570 - AVG Technologies)
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
calibre (HKLM-x32\...\{C354D7E2-C1F3-45AB-A547-BF500F2E0814}) (Version: 1.45.0 - Kovid Goyal)
CleanUp! (HKLM-x32\...\CleanUp!) (Version:  - )
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3112 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3109 - Acer Incorporated)
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3318_45364 - CyberLink Corp.) Hidden
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D1C35197-B856-45E2-BA67-5ABB6B0CA9C2}) (Version:  - Microsoft)
Delicious: Emily's True Love Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Dritek Radio Controller (HKLM-x32\...\RadioController) (Version: 2.02.2001.0803 - Dritek System Inc.)
ExamView Assessment Suite (HKLM-x32\...\ExamView Pro) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HID Monitor (HKLM-x32\...\{9FA4467F-F8CE-40F1-9A3E-BBEAE352243B}) (Version: 1.1.4 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3006 - Acer Incorporated)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Access MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Excel MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft Word MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 26.0 (x86 en-US)) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden
MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden
NTI Media Maker 9 (HKLM-x32\...\InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}) (Version: 9.0.2.9014 - NTI Corporation)
NTI Media Maker 9 (x32 Version: 9.0.2.9014 - NTI Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PeerBlock 1.1+ (r691) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.1.0.691 - PeerBlock, LLC)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.216 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.31 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6716 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.27028 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14024.11 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.14024.11 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.4.0 - Synaptics Incorporated)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
TI-Nspire™ CAS Student Software (HKLM-x32\...\{1CF6F3A4-ECEF-42F5-8166-655D699BC1F0}) (Version: 3.6.0.550 - Texas Instruments Inc.)
TI-Nspire™ Computer Link (HKLM-x32\...\{A5A91450-89BB-424D-9245-FA292B71CFAA}) (Version: 3.6.0.550 - Texas Instruments Inc.)
Update for Microsoft en-us Dictionary (Version: 16.1.1017.1 - Microsoft Corporation) Hidden
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version:  - Microsoft)
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{58D92858-3C94-4C2F-A8E4-AEFF9304C3CF}) (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2850074) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{F9F71CF8-8310-4EFC-869F-47BC0FEE269D}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{EF77B4A6-DFEC-4010-A87D-9B6BF87FABEC}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{62857CDD-2985-4939-91BA-19ED0B0031A5}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0814662C-FD28-4DE0-ACE5-EE50D1D6C8FB}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E79EFFDB-192A-4D9E-A2DB-C0F774E6EC32}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUS_{E79EFFDB-192A-4D9E-A2DB-C0F774E6EC32}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2826040) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C4AEA56A-0759-4D08-9FAB-31A92137D0B8}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837644) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D692E9FF-84BF-4F44-A0EA-D58ECE0D538E}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{290D80DE-03AB-47EC-9402-108AF4CE4F66}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880457) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{EC2AF602-2730-4B05-9438-06CDE43153F2}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880464) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{88B29AA5-71EE-4692-91E2-E89407F0B783}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880478) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8116ED50-F1E7-49E1-9D8D-421497D34B0F}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F540E80-4BB2-413F-9648-52031AA237B7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6F540E80-4BB2-413F-9648-52031AA237B7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F540E80-4BB2-413F-9648-52031AA237B7}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUS_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0090-0409-1000-0000000FF1CE}_Office15.PROPLUS_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881074) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9A479F9C-C1EC-4833-A115-A8B7A60480BD}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3A12DFA2-3FF5-450E-BDB1-A742551A5D1A}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{EA8072E8-E3CF-46DF-A5DE-9F5975344327}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{1BABB09A-AB4C-427F-B23C-76A278737988}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881086) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{ED3A8E98-FDD4-493F-A0EC-141821573EC2}) (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2881086) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{ED3A8E98-FDD4-493F-A0EC-141821573EC2}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version:  - Microsoft)
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition (HKLM\...\{90150000-00C1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{3C6F4768-FB23-4ECF-8328-5C47E0664B65}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BFD66A5D-F608-441E-9282-41E13F5E7412}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition (HKLM\...\{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{BFD66A5D-F608-441E-9282-41E13F5E7412}) (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BFD66A5D-F608-441E-9282-41E13F5E7412}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{34A169EC-990A-4DAE-AC65-9F981158B7DB}) (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUS_{34A169EC-990A-4DAE-AC65-9F981158B7DB}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2881075) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C8955821-EDAC-4E65-BEF3-C9C0A049517A}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2881075) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUS_{C8955821-EDAC-4E65-BEF3-C9C0A049517A}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{C07147B9-CC0B-4CC1-A107-A705889A54F2}) (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition (HKLM\...\{90150000-0019-0409-1000-0000000FF1CE}_Office15.PROPLUS_{C07147B9-CC0B-4CC1-A107-A705889A54F2}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BC51FE30-3A56-4802-8D9E-E9BC05B56B49}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{F96FE9BB-CD90-472B-852E-156342618C54}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VeryPDF PDF2Word v3.0 (HKLM-x32\...\VeryPDF PDF2Word v3.0_is1) (Version:  - VeryPDF.com Inc)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.3 - WildTangent) Hidden
WinZip 18.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E3}) (Version: 18.5.11111 - WinZip Computing, S.L. )
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

Could not list Restore Points. Check "winmgmt" service or repair WMI.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 08:25 - 2013-08-22 08:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {031EA6C1-9420-4D06-957A-0171B73E1612} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {15AF0715-E693-42CB-AAD2-A7001920191D} - System32\Tasks\Microsoft Office 15 Sync Maintenance for CURT-Ratsami Curt => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-04-08] (Microsoft Corporation)
Task: {1BE3A537-16C1-4DA9-B12F-96323043E7EC} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {20B15ABF-C7E3-4646-8CDB-DD444170ED60} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2012-08-22] ()
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {37965200-6013-4C8B-9C92-E676BA8D7970} - System32\Tasks\RegCure Pro => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4829ED92-3058-4099-946E-EB11374CA5C6} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {482E7CB6-85D1-4783-ABCC-64AB948DA06E} - \ParetoLogic Update Version3 No Task File <==== ATTENTION
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {49867AD7-DB99-487B-96AE-E4B0FA1FFBCF} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {5A3FFB1D-379C-4A2E-ADB8-FA72E64B3AC2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-09] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6C147CA6-CAE5-4C08-9278-9731703B6994} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2012-08-22] ()
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {7576F7A5-9F8A-47B8-B5A2-78EE3E7BA3E7} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08] (Adobe Systems Incorporated)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {8403D08F-0898-4A53-9A1C-2CE9B116222B} - System32\Tasks\HIDMonitor => C:\Program Files\Acer Incorporated\HID Monitor\HIDMonitor.exe
Task: {8436CEC2-28A3-4BB2-BAE3-0FB6A9B59E60} - System32\Tasks\ParetoLogic Update Version3 Startup Task => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: {84DA088F-F106-49E6-B748-A90E1DF67C88} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-11-29] (Synaptics Incorporated)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A7201574-1C21-4473-8917-7C872C7046D8} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-19] (CyberLink)
Task: {AD57485D-C0A8-405B-964B-8A26476B881A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-09] (Google Inc.)
Task: {B11E923F-C589-4117-95F5-E7F1769CA5AF} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-11-06] ()
Task: {BCD3317A-E86F-4F4E-9F47-12985AB63CAE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {BCDF9A25-F84E-4650-94B3-A1FAA2A907DB} - \ParetoLogic Registration3 No Task File <==== ATTENTION
Task: {C2DC1480-1D91-4490-97A1-213D44BA146F} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-21] ()
Task: {C9C7C376-4387-4521-8419-1F195939321C} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-11] (Egis Technology Inc.)
Task: {CA1DCD89-3396-4540-9ED4-169213AAB780} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D91D1861-41A3-429C-AF5F-794D161C56CC} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DEF3B313-BD7E-44A4-A35D-76731B6ED9F0} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F0FD18ED-4C28-4116-925D-0AFF8500FFD4} - System32\Tasks\Microsoft\Windows\SysResetLogSuccess => Rundll32.exe ResetEng.dll,RjvLogSuccessEntryPoint
Task: {FBFA51A1-FBFB-49C3-9434-559779C5FFB3} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {FCDD6971-639D-4981-94D1-15E446E64BA5} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-11] (Egis Technology Inc.)
Task: {FEF3F527-9544-465A-B841-157E84EED66D} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\WINDOWS\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

==================== Loaded Modules (whitelisted) =============

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Ratsami\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Ratsami\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\Ratsami\SkyDrive (3).old:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "BtPreLoad"
HKLM\...\StartupApproved\Run32: => "ApnTBMon"

==================== Faulty Device Manager Devices =============

Name: Intel® USB 3.0 eXtensible Host Controller - 0100 (Microsoft)
Description: USB xHCI Compliant Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Generic USB xHCI Host Controller
Service: USBXHCI
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

==================== Event log errors: =========================

Application errors:
==================
Error: (07/27/2014 09:07:14 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/27/2014 08:40:50 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/26/2014 09:49:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/26/2014 09:36:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/26/2014 06:31:36 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/26/2014 06:13:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/26/2014 05:37:14 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

Error: (07/26/2014 05:35:06 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Avast.VC110.CRT,processorArchitecture="amd64",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1".
Dependent Assembly Avast.VC110.CRT,processorArchitecture="amd64",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/26/2014 05:35:06 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Avast.VC110.CRT,processorArchitecture="amd64",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1".
Dependent Assembly Avast.VC110.CRT,processorArchitecture="amd64",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/26/2014 05:05:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error
.

System errors:
=============
Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (07/27/2014 01:08:48 PM) (Source: DCOM) (EventID: 10005) (User: CURT)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Microsoft Office Sessions:
=========================
Error: (07/27/2014 09:07:14 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/27/2014 08:40:50 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/26/2014 09:49:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/26/2014 09:36:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/26/2014 06:31:36 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/26/2014 06:13:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/26/2014 05:37:14 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

Error: (07/26/2014 05:35:06 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Avast.VC110.CRT,processorArchitecture="amd64",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"C:\Program Files\AVAST Software\Avast\asOutExt64.dll

Error: (07/26/2014 05:35:06 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Avast.VC110.CRT,processorArchitecture="amd64",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

Error: (07/26/2014 05:05:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description:
Details:
System Writer object failed to initialize VSS.

System Error:
Unspecified error

CodeIntegrity Errors:
===================================
  Date: 2014-07-26 21:35:28.467
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:28.248
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:26.587
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:26.478
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:26.322
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:26.197
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:26.072
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:25.962
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:25.837
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-07-26 21:35:25.744
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Percentage of memory in use: 25%
Total physical RAM: 3891.6 MB
Available physical RAM: 2910.14 MB
Total Pagefile: 7859.6 MB
Available Pagefile: 6988.77 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:449.13 GB) (Free:292.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 3494F156)

Partition: GPT Partition Type.

==================== End Of Log ============================


Here is the final scan I ran

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014
Ran by Ratsami (administrator) on CURT on 27-07-2014 13:07:05
Running from C:\Users\Ratsami\Desktop
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Safe Mode (with Networking)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Thisisu) C:\Users\Ratsami\Desktop\JRT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\net.exe
(Microsoft Corporation) C:\Windows\SysWOW64\net1.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-09-02] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-09-02] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-12-05] ()
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-03-08] (Dritek System Inc.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-14] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4971024 2014-03-19] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2014-05-12] (Malwarebytes Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-2490949770-4180350229-3050091454-1001\...\Run: [KiesAirMessage] => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
HKU\S-1-5-21-2490949770-4180350229-3050091454-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1193176 2013-03-08] ()
HKU\S-1-5-21-2490949770-4180350229-3050091454-1001\...\MountPoints2: {149bb22a-c8b5-11e2-be73-206a8afac648} - "E:\unlock.exe" autoplay=true
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.yahoo.com/?type=282369&fr=spigot-yhp-ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
SearchScopes: HKLM - DefaultScope {6DE10DD3-3F12-4749-B9E5-F7C94FF21773} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {6DE10DD3-3F12-4749-B9E5-F7C94FF21773} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {6DE10DD3-3F12-4749-B9E5-F7C94FF21773} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKCU - DefaultScope {F776DA59-B8AA-42E7-95EB-58D0458FA883} URL = https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=282369&p={searchTerms}
SearchScopes: HKCU - {6DE10DD3-3F12-4749-B9E5-F7C94FF21773} URL =
SearchScopes: HKCU - {F776DA59-B8AA-42E7-95EB-58D0458FA883} URL = https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=282369&p={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Ratsami\AppData\Roaming\Mozilla\Firefox\Profiles\0a599fyi.default
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Homepage: https://search.yahoo.com/?type=282369&fr=spigot-yhp-ff
FF Keyword.URL: https://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=282369&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\Ratsami\AppData\Roaming\Mozilla\Firefox\Profiles\0a599fyi.default\searchplugins\yahoo_ff.xml

Chrome:
=======
CHR HomePage:

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [231552 2012-12-05] (Qualcomm Atheros Commnucations)
S2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1473280 2014-04-03] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3782672 2014-02-23] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [291912 2014-03-27] (AVG Technologies CZ, s.r.o.)
S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-26] (Acer Incorporated)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-02] (NTI Corporation)
S2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-03-08] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
S3 Appinfo; %SystemRoot%\System32\appinfo.dll [X]
S2 DeviceAssociationService; %SystemRoot%\system32\das.dll [X]
S3 HomeGroupProvider; %SystemRoot%\system32\provsvc.dll [X]
S3 RasMan; %SystemRoot%\System32\rasmans.dll [X]
S3 vds; %SystemRoot%\System32\vds.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx64.sys [50464 2014-06-03] (AVG Technologies)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2012-12-05] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [41032 2013-05-23] (ThreatTrack Security)
S3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (ThreatTrack Security)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-27] (Malwarebytes Corporation)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-04] ()
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-03-08] (Dritek System Inc.)
S3 ReFS; No ImagePath
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-29] (Synaptics Incorporated)
U3 TrueSight; C:\Windows\SysWOW64\drivers\TrueSight.sys [29160 2014-07-26] ()
S3 USBTINSP; C:\Windows\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
S0 FileInfo; System32\drivers\fileinfo.sys [X]
S3 GPIOClx0101; System32\Drivers\msgpioclx.sys [X]
S3 HTTP; system32\drivers\HTTP.sys [X]
S3 RFCOMM; \SystemRoot\System32\drivers\rfcomm.sys [X]
S3 UCX01000; \SystemRoot\System32\drivers\ucx01000.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-27 13:07 - 2014-07-27 13:07 - 00013863 _____ () C:\Users\Ratsami\Desktop\FRST.txt
2014-07-27 13:06 - 2014-07-27 13:07 - 00000000 ____D () C:\FRST
2014-07-27 13:06 - 2014-07-27 13:06 - 00388608 _____ (Trend Micro Inc.) C:\Users\Ratsami\Downloads\HijackThis.exe
2014-07-27 13:02 - 2014-07-27 13:02 - 05563277 _____ (Swearware) C:\Users\Ratsami\Desktop\ComboFix.exe
2014-07-27 13:01 - 2014-07-27 13:01 - 02093568 _____ (Farbar) C:\Users\Ratsami\Desktop\FRST64.exe
2014-07-27 13:00 - 2014-07-27 13:00 - 01016261 _____ (Thisisu) C:\Users\Ratsami\Desktop\JRT.exe
2014-07-27 08:30 - 2014-07-27 08:30 - 00000000 ____D () C:\Users\Ratsami\Documents\ProcAlyzer Dumps
2014-07-27 08:30 - 2014-07-27 08:30 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-07-26 21:46 - 2014-07-27 09:05 - 00000000 ____D () C:\AdwCleaner
2014-07-26 21:46 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-07-26 19:37 - 2014-07-26 19:37 - 00000000 __SHD () C:\found.002
2014-07-26 19:16 - 2014-07-26 19:16 - 00000000 _____ () C:\Recovery.txt
2014-07-26 18:02 - 2014-07-26 18:02 - 01354223 _____ () C:\Users\Ratsami\Desktop\AdwCleaner.exe
2014-07-26 16:51 - 2014-07-26 17:02 - 00000000 ___HD () C:\WINDOWS\AxInstSV
2014-07-26 12:49 - 2014-07-26 12:49 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-07-26 12:48 - 2014-07-26 12:43 - 148542376 _____ () C:\Users\Ratsami\Desktop\setup_11.0.3.7.x01_2014_07_26_19_57.exe
2014-07-26 12:40 - 2014-07-26 12:37 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Ratsami\Desktop\tdsskiller.exe
2014-07-26 12:20 - 2014-07-26 12:21 - 00001394 _____ () C:\Users\Ratsami\Desktop\Rkill.txt
2014-07-26 12:20 - 2014-07-26 12:20 - 00029160 _____ () C:\WINDOWS\SysWOW64\Drivers\TrueSight.sys
2014-07-26 12:20 - 2014-07-26 12:20 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-07-26 12:02 - 2014-07-26 17:36 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-26 11:36 - 2013-09-04 14:57 - 00031264 _____ (ThreatTrack Security) C:\WINDOWS\system32\Drivers\gfiutil.sys
2014-07-26 11:36 - 2013-05-23 08:39 - 00041032 _____ (ThreatTrack Security) C:\WINDOWS\system32\Drivers\gfiark.sys
2014-07-26 11:35 - 2014-07-26 12:49 - 00000000 ____D () C:\VIPRERESCUE
2014-07-26 11:30 - 2014-07-26 12:19 - 00000000 ____D () C:\Users\Ratsami\Desktop\rescue
2014-07-26 11:29 - 2014-07-26 10:13 - 164147200 _____ () C:\Users\Ratsami\Desktop\VIPRERescue31618.exe
2014-07-26 10:51 - 2014-07-26 10:51 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-07-26 10:45 - 2014-07-26 10:45 - 04862664 _____ (AVAST Software) C:\Users\Ratsami\Desktop\avast_free_antivirus_setup_online.exe
2014-07-26 10:45 - 2014-07-26 10:45 - 04862664 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2014-07-25 16:47 - 2014-07-27 09:04 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-25 16:47 - 2014-07-25 16:47 - 00001122 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-25 16:47 - 2014-07-25 16:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-25 16:47 - 2014-07-25 16:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-25 16:47 - 2014-07-25 16:47 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-25 16:47 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-07-25 16:47 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-07-25 16:47 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-07-25 16:46 - 2014-07-25 16:46 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CleanUp!
2014-07-25 16:46 - 2014-07-25 16:46 - 00000000 ____D () C:\Program Files (x86)\CleanUp!
2014-07-25 16:17 - 2014-07-25 16:17 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Ratsami\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-25 16:16 - 2014-07-25 16:16 - 00339257 _____ () C:\Users\Ratsami\Downloads\CleanUp452(1).exe
2014-07-25 16:15 - 2014-07-25 16:15 - 00339257 _____ () C:\Users\Ratsami\Downloads\CleanUp452.exe
2014-07-25 11:07 - 2014-07-25 11:07 - 00284584 _____ () C:\WINDOWS\Minidump\072514-39640-01.dmp
2014-07-25 09:56 - 2014-07-25 09:56 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-24 15:56 - 2014-07-24 15:56 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-24 15:16 - 2014-07-24 15:16 - 00000000 ____D () C:\Program Files\Common Files\Atheros
2014-07-24 15:14 - 2014-05-14 17:47 - 04720640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-24 15:14 - 2014-05-13 00:07 - 02844160 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-24 15:14 - 2014-05-12 23:27 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-24 15:14 - 2014-05-12 23:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-24 15:14 - 2014-05-12 22:41 - 01118720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-24 15:14 - 2014-05-12 22:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-07-24 15:14 - 2014-05-03 06:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-07-24 15:14 - 2014-05-03 04:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-07-24 15:14 - 2014-05-03 00:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-07-24 15:14 - 2014-05-02 22:30 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-07-24 15:14 - 2014-05-02 22:27 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-07-24 15:14 - 2014-05-01 00:44 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-07-24 15:14 - 2014-04-30 01:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-07-24 15:14 - 2014-04-29 23:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-07-24 15:14 - 2014-04-29 22:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-07-24 15:14 - 2014-04-29 22:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-07-24 15:14 - 2014-04-28 17:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-07-24 15:14 - 2014-04-26 17:03 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-07-24 15:14 - 2014-04-26 15:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-07-24 15:14 - 2014-04-14 04:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-07-24 15:14 - 2014-04-14 03:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-07-24 15:13 - 2014-06-05 09:13 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-07-24 15:13 - 2014-06-05 08:14 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-07-24 15:13 - 2014-06-01 21:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-07-24 15:13 - 2014-05-31 05:07 - 00467800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-24 15:13 - 2014-05-31 05:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-07-24 15:13 - 2014-05-31 05:07 - 00419672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-07-24 15:13 - 2014-05-31 05:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-07-24 15:13 - 2014-05-31 05:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-07-24 15:13 - 2014-05-31 01:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-07-24 15:13 - 2014-05-31 01:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-07-24 15:13 - 2014-05-31 01:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-07-24 15:13 - 2014-05-30 23:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-07-24 15:13 - 2014-05-30 23:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-07-24 15:13 - 2014-05-30 23:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-07-24 15:13 - 2014-05-27 10:53 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-24 15:13 - 2014-05-27 04:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-07-24 15:13 - 2014-05-27 04:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-07-24 15:13 - 2014-05-16 23:59 - 16871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-24 15:13 - 2014-05-16 23:13 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-24 15:13 - 2014-05-13 02:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-24 15:13 - 2014-05-12 23:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-07-24 15:13 - 2014-05-12 22:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-07-24 15:13 - 2014-05-03 00:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-07-24 15:13 - 2014-05-03 00:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-07-24 15:13 - 2014-05-03 00:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-07-24 15:13 - 2014-05-02 23:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-07-24 15:13 - 2014-05-02 23:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-07-24 15:13 - 2014-05-02 23:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-07-24 15:13 - 2014-05-02 18:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-07-24 15:13 - 2014-04-30 01:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-07-24 15:13 - 2014-04-30 01:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-07-24 15:13 - 2014-04-30 01:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-07-24 15:13 - 2014-04-30 00:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-07-24 15:13 - 2014-04-29 23:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-07-24 15:13 - 2014-04-29 23:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-07-24 15:13 - 2014-04-29 23:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-07-24 15:13 - 2014-04-29 23:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-07-24 15:13 - 2014-04-29 23:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-07-24 15:13 - 2014-04-29 22:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-07-24 15:13 - 2014-04-29 22:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-07-24 15:13 - 2014-04-29 22:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-07-24 15:13 - 2014-04-29 22:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-07-24 15:13 - 2014-04-26 11:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-07-24 15:13 - 2014-04-14 00:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-07-24 15:13 - 2014-04-09 01:11 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-07-24 15:13 - 2014-04-09 00:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-07-24 15:11 - 2014-05-31 01:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-07-24 14:26 - 2014-07-24 14:26 - 01539402 _____ () C:\Users\Ratsami\Downloads\IRST_12.8.0.1016_ANdisable_Win8.1_64 (1).exe
2014-07-24 14:25 - 2014-07-24 14:25 - 01539402 _____ () C:\Users\Ratsami\Downloads\IRST_12.8.0.1016_ANdisable_Win8.1_64.exe
2014-07-24 14:10 - 2014-07-24 14:11 - 00284584 _____ () C:\WINDOWS\Minidump\072414-60640-01.dmp
2014-07-24 12:34 - 2014-07-24 12:34 - 00284584 _____ () C:\WINDOWS\Minidump\072414-46031-01.dmp
2014-07-24 12:21 - 2014-07-24 12:21 - 00284584 _____ () C:\WINDOWS\Minidump\072414-51625-01.dmp
2014-07-24 11:53 - 2014-07-24 11:53 - 00000000 __SHD () C:\found.001
2014-07-24 07:23 - 2014-07-24 07:23 - 00284528 _____ () C:\WINDOWS\Minidump\072414-99906-01.dmp
2014-07-23 21:48 - 2014-07-23 21:49 - 00284752 _____ () C:\WINDOWS\Minidump\072314-101781-01.dmp
2014-07-23 21:27 - 2014-07-23 21:27 - 00000000 __SHD () C:\found.000
2014-07-23 18:59 - 2014-07-25 11:02 - 00000000 ____D () C:\Users\Ratsami\Downloads\[ www.Torrentday.com ] - The.Buccaneer.1958.720p.BRRip.x264-x0r
2014-07-23 18:58 - 2014-07-23 20:42 - 1155585340 _____ () C:\Users\Ratsami\Downloads\The.Crossing.2000.DVDRip.XviD.avi
2014-07-21 19:11 - 2014-07-21 19:12 - 00284752 _____ () C:\WINDOWS\Minidump\072114-44375-01.dmp
2014-07-21 07:54 - 2014-07-21 07:54 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\calibre-cache
2014-07-20 23:10 - 2014-07-21 07:54 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\calibre
2014-07-20 23:10 - 2014-07-20 23:10 - 00000976 _____ () C:\Users\Public\Desktop\calibre - E-book management.lnk
2014-07-20 23:09 - 2014-07-20 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2014-07-20 23:09 - 2014-07-20 23:10 - 00000000 ____D () C:\Program Files (x86)\Calibre2
2014-07-20 16:25 - 2014-07-20 16:41 - 56233472 _____ () C:\Users\Ratsami\Downloads\calibre-1.45.0.msi
2014-07-20 16:24 - 2014-07-20 17:53 - 00000000 ____D () C:\Users\Ratsami\Downloads\[ www.TorrentDay.com ] - Thomas & Friends Splish, Splash, Splosh 2014 DVDRip x264 AC3-MiLLENiUM
2014-07-20 16:24 - 2014-07-20 16:28 - 00000000 ____D () C:\Users\Ratsami\Downloads\Survive! - Essential Skills and Tactics to Get You Out of Anywhere - Alive
2014-07-20 16:15 - 2014-07-20 16:15 - 00284752 _____ () C:\WINDOWS\Minidump\072014-39093-01.dmp
2014-07-20 16:12 - 2014-07-20 16:12 - 00000000 ____D () C:\Users\Ratsami\Downloads\Hardwiring Happiness - Rick Hanson
2014-07-17 14:32 - 2014-07-26 17:50 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\Spotify
2014-07-17 14:32 - 2014-07-17 14:32 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\Spotify
2014-07-15 20:18 - 2014-07-17 13:59 - 2157004416 _____ () C:\Users\Ratsami\Downloads\Rosetta Stone v3 Spanish (LA) v3 & Speech Preinstalled.exe
2014-07-15 20:18 - 2014-07-15 20:19 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone Spanish (Latin America)
2014-07-15 20:16 - 2014-07-17 22:01 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone - Spanish (Latin America) - Level 1, 2, 3, 4, 5
2014-07-15 20:16 - 2014-07-15 20:16 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone Latin American Level 1 Audio Companion
2014-07-15 20:15 - 2014-07-15 20:16 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone Latin American Level 2 Audio Companion
2014-07-15 09:49 - 2014-07-27 12:51 - 00004950 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for CURT-Ratsami Curt
2014-07-15 09:49 - 2014-07-17 09:48 - 00018416 ____H () C:\Users\Ratsami\Documents\~WRL0003.tmp
2014-07-14 12:18 - 2014-07-14 12:18 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\Cyberlink
2014-07-13 23:22 - 2014-07-14 00:43 - 00000000 ____D () C:\Users\Ratsami\Downloads\1776 - Musical Comedy of American Independance - AVI - Complete
2014-07-13 21:32 - 2014-07-14 01:11 - 719340533 _____ () C:\Users\Ratsami\Downloads\Blast the Ball.m4v
2014-07-13 21:29 - 2014-07-14 01:29 - 00000000 ____D () C:\Users\Ratsami\Downloads\ADVANCING_THE_SKILLS
2014-07-13 21:29 - 2014-07-14 01:19 - 00000000 ____D () C:\Users\Ratsami\Downloads\WALL_WORK
2014-07-13 21:29 - 2014-07-14 01:11 - 00000000 ____D () C:\Users\Ratsami\Downloads\David.Beckhams.Official.Soccer.Skills.2004.SWESUB.DVDRip.XviD-Puff
2014-07-13 21:28 - 2014-07-14 13:01 - 00000000 ____D () C:\Users\Ratsami\Downloads\Coerver Soccer Coaching - The World's Best Soccer Skills Training
2014-07-13 18:58 - 2014-07-13 18:58 - 00000000 ____D () C:\Users\Ratsami\Downloads\Mistakes Were Made But Not By Me
2014-07-13 16:22 - 2014-07-14 15:04 - 00000000 ____D () C:\Users\Ratsami\Downloads\How To Train Your Dragon 2 2014 READNFO CAM XviD-HELLRAZ0R
2014-07-13 16:21 - 2014-07-13 16:21 - 00058317 _____ () C:\Users\Ratsami\Downloads\[katproxy.com]how.to.train.your.dragon.2.2014.readnfo.cam.xvid.hellraz0r.torrent
2014-07-13 16:17 - 2014-07-13 16:20 - 00000000 ____D () C:\Users\Ratsami\Downloads\Need for Speed 2014 HDRip x264 AC3-MiLLENiUM
2014-07-13 16:16 - 2014-07-13 16:16 - 00006118 _____ () C:\Users\Ratsami\Downloads\Need for Speed 2014 HDRip x264 AC3-MiLLENiUM.torrent
2014-07-12 13:25 - 2014-06-18 19:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-12 13:25 - 2014-06-18 18:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-12 13:25 - 2014-06-18 18:48 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-12 13:25 - 2014-06-18 18:12 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-12 13:25 - 2014-06-18 17:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-12 13:24 - 2014-06-18 20:39 - 23464448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-12 13:24 - 2014-06-18 19:48 - 02768384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-12 13:24 - 2014-06-18 19:16 - 17276416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-12 13:24 - 2014-06-18 18:51 - 05721088 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-12 13:24 - 2014-06-18 18:46 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-12 13:24 - 2014-06-18 18:39 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-12 13:24 - 2014-06-18 18:33 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-12 13:24 - 2014-06-18 18:32 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-12 13:24 - 2014-06-18 18:27 - 02040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-12 13:24 - 2014-06-18 17:58 - 02266112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-12 13:24 - 2014-06-18 17:58 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-12 13:24 - 2014-06-18 17:57 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-12 13:24 - 2014-06-18 17:52 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-12 13:24 - 2014-06-18 17:51 - 13527040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-12 13:24 - 2014-06-18 17:49 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-12 13:24 - 2014-06-18 17:45 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-12 13:24 - 2014-06-18 17:35 - 11742208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-12 13:24 - 2014-06-18 17:34 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-12 13:24 - 2014-06-18 17:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-12 13:24 - 2014-06-18 17:13 - 01791488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-12 13:24 - 2014-06-18 17:09 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-12 13:24 - 2014-06-18 17:07 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-12 13:23 - 2014-07-12 13:23 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-07-12 13:23 - 2014-07-12 13:23 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-07-12 13:21 - 2014-07-12 13:21 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-12 13:21 - 2014-06-30 17:45 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-12 13:21 - 2014-06-28 02:48 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-12 13:21 - 2014-06-28 02:07 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-10 07:37 - 2014-04-13 22:29 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-07-09 22:17 - 2014-06-16 17:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-09 22:17 - 2014-06-16 17:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-09 22:17 - 2014-06-06 09:20 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-09 22:17 - 2014-05-29 22:03 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-07-09 22:15 - 2014-05-29 07:02 - 00565576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-09 22:15 - 2014-05-29 02:55 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-09 22:15 - 2014-05-29 01:40 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-09 22:15 - 2014-05-29 01:37 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-07-09 22:15 - 2014-05-29 00:34 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-07-09 22:15 - 2014-05-29 00:27 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-09 22:06 - 2014-06-06 08:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-09 22:06 - 2014-06-06 07:18 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-09 22:06 - 2014-05-31 05:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-09 22:06 - 2014-05-31 05:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 22:06 - 2014-05-30 22:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-09 22:06 - 2014-05-30 22:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-09 22:06 - 2014-05-30 22:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:06 - 2014-05-30 22:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-09 22:06 - 2014-05-30 22:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-09 22:06 - 2014-05-30 22:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:06 - 2014-05-30 21:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-09 22:06 - 2014-05-30 21:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-09 22:06 - 2014-05-30 21:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-09 22:06 - 2014-05-30 21:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 22:06 - 2014-05-30 21:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-09 22:06 - 2014-05-30 21:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-09 22:06 - 2014-05-30 21:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-09 21:13 - 2014-07-09 21:13 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-08 21:23 - 2014-07-12 16:42 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-07-08 21:22 - 2014-07-08 21:22 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-07-08 21:21 - 2014-07-08 21:21 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-07-08 21:19 - 2014-07-08 21:21 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-07-08 21:19 - 2014-07-08 21:19 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-07-08 21:16 - 2014-07-08 21:16 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-07-08 21:16 - 2014-07-08 21:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-07-08 21:15 - 2014-07-12 16:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-08 21:15 - 2014-07-08 21:19 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-07-08 21:15 - 2014-07-08 21:15 - 00000000 __RHD () C:\MSOCache
2014-07-08 21:07 - 2014-07-08 21:07 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\WinZip
2014-07-08 21:06 - 2014-07-08 21:06 - 00002227 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-07-08 21:06 - 2014-07-08 21:06 - 00002221 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-07-08 21:06 - 2014-07-08 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-07-08 21:06 - 2014-07-08 21:06 - 00000000 ____D () C:\Program Files\WinZip
2014-07-08 20:33 - 2014-07-08 20:37 - 00000000 ____D () C:\Program Files\office.tmp
2014-07-05 14:57 - 2014-07-05 14:57 - 00220590 _____ () C:\Users\Ratsami\Downloads\DiagnosticTool.zip
2014-07-04 09:36 - 2014-07-22 14:19 - 00000000 ____D () C:\Users\Ratsami\Documents\Elementary Education Test
2014-07-02 10:32 - 2014-07-02 10:32 - 00000086 _____ () C:\Users\Ratsami\Downloads\interactive_writing_tape_1.rm
2014-07-01 15:20 - 2014-07-01 15:20 - 00000081 _____ () C:\Users\Ratsami\Downloads\guided_reading_tape_2.rm
2014-07-01 15:09 - 2014-07-01 15:09 - 00000061 _____ () C:\Users\Ratsami\Downloads\ELLintrod.rm
2014-07-01 14:50 - 2014-07-01 14:50 - 00000060 _____ () C:\Users\Ratsami\Downloads\textabel.rm
2014-07-01 14:45 - 2014-07-01 14:45 - 00000057 _____ () C:\Users\Ratsami\Downloads\wars2.rm
2014-07-01 11:52 - 2014-07-01 11:52 - 00000059 _____ () C:\Users\Ratsami\Downloads\stages2.rm
2014-07-01 11:43 - 2014-07-01 11:43 - 00000058 _____ () C:\Users\Ratsami\Downloads\PhHier.rm
2014-07-01 11:41 - 2014-07-01 11:41 - 00000059 _____ () C:\Users\Ratsami\Downloads\PhAware.rm
2014-07-01 11:41 - 2014-07-01 11:41 - 00000059 _____ () C:\Users\Ratsami\Downloads\PhAware (1).rm
2014-07-01 11:23 - 2014-07-01 11:23 - 00000058 _____ () C:\Users\Ratsami\Downloads\Founda.rm
2014-06-29 19:31 - 2014-06-29 19:31 - 00012241 _____ () C:\Users\Ratsami\Downloads\[kickass.to]and.now.you.r.dead.1998.english.dubbed.dvdrip.pimp4003.torrent
2014-06-28 21:53 - 2014-06-28 23:14 - 00000000 ____D () C:\Users\Ratsami\Downloads\Bruce Lee - A Warriors Journey-[ www.speed.cd ] DVDRip
2014-06-28 21:47 - 2014-06-29 03:12 - 00000000 ____D () C:\Users\Ratsami\Downloads\The.Way.Of.The.Dragon.1972.480p.BDRip.XviD.AC3.D-Z0N3

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-27 13:07 - 2014-07-27 13:07 - 00013863 _____ () C:\Users\Ratsami\Desktop\FRST.txt
2014-07-27 13:07 - 2014-07-27 13:06 - 00000000 ____D () C:\FRST
2014-07-27 13:06 - 2014-07-27 13:06 - 00388608 _____ (Trend Micro Inc.) C:\Users\Ratsami\Downloads\HijackThis.exe
2014-07-27 13:03 - 2013-08-22 08:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-07-27 13:02 - 2014-07-27 13:02 - 05563277 _____ (Swearware) C:\Users\Ratsami\Desktop\ComboFix.exe
2014-07-27 13:02 - 2014-01-19 08:46 - 01202905 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-27 13:02 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-07-27 13:02 - 2013-08-22 09:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-27 13:01 - 2014-07-27 13:01 - 02093568 _____ (Farbar) C:\Users\Ratsami\Desktop\FRST64.exe
2014-07-27 13:00 - 2014-07-27 13:00 - 01016261 _____ (Thisisu) C:\Users\Ratsami\Desktop\JRT.exe
2014-07-27 13:00 - 2014-01-09 17:59 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2490949770-4180350229-3050091454-1001
2014-07-27 12:58 - 2014-01-09 20:29 - 00002207 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-27 12:58 - 2014-01-09 20:27 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-27 12:58 - 2014-01-09 20:27 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-27 12:56 - 2014-02-26 14:39 - 00003918 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{033EF9FE-2BA9-48A0-A872-C6C066EEDD7E}
2014-07-27 12:51 - 2014-07-15 09:49 - 00004950 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for CURT-Ratsami Curt
2014-07-27 12:50 - 2014-01-20 09:53 - 00000508 _____ () C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
2014-07-27 09:09 - 2014-06-07 11:34 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-27 09:06 - 2014-01-19 08:38 - 00053284 _____ () C:\WINDOWS\system32\wpbbin.exe
2014-07-27 09:06 - 2013-11-14 02:20 - 00777780 _____ () C:\WINDOWS\PFRO.log
2014-07-27 09:05 - 2014-07-26 21:46 - 00000000 ____D () C:\AdwCleaner
2014-07-27 09:04 - 2014-07-25 16:47 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 08:30 - 2014-07-27 08:30 - 00000000 ____D () C:\Users\Ratsami\Documents\ProcAlyzer Dumps
2014-07-27 08:30 - 2014-07-27 08:30 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-07-26 19:37 - 2014-07-26 19:37 - 00000000 __SHD () C:\found.002
2014-07-26 19:16 - 2014-07-26 19:16 - 00000000 _____ () C:\Recovery.txt
2014-07-26 18:03 - 2014-01-19 08:50 - 00000000 ____D () C:\Users\Administrator
2014-07-26 18:02 - 2014-07-26 18:02 - 01354223 _____ () C:\Users\Ratsami\Desktop\AdwCleaner.exe
2014-07-26 17:50 - 2014-07-17 14:32 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\Spotify
2014-07-26 17:36 - 2014-07-26 12:02 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-26 17:15 - 2014-01-19 08:50 - 00000000 ____D () C:\Users\Ratsami
2014-07-26 17:02 - 2014-07-26 16:51 - 00000000 ___HD () C:\WINDOWS\AxInstSV
2014-07-26 16:48 - 2014-01-09 22:24 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\uTorrent
2014-07-26 12:49 - 2014-07-26 12:49 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-07-26 12:49 - 2014-07-26 11:35 - 00000000 ____D () C:\VIPRERESCUE
2014-07-26 12:43 - 2014-07-26 12:48 - 148542376 _____ () C:\Users\Ratsami\Desktop\setup_11.0.3.7.x01_2014_07_26_19_57.exe
2014-07-26 12:37 - 2014-07-26 12:40 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Ratsami\Desktop\tdsskiller.exe
2014-07-26 12:21 - 2014-07-26 12:20 - 00001394 _____ () C:\Users\Ratsami\Desktop\Rkill.txt
2014-07-26 12:20 - 2014-07-26 12:20 - 00029160 _____ () C:\WINDOWS\SysWOW64\Drivers\TrueSight.sys
2014-07-26 12:20 - 2014-07-26 12:20 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-07-26 12:19 - 2014-07-26 11:30 - 00000000 ____D () C:\Users\Ratsami\Desktop\rescue
2014-07-26 11:30 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-07-26 11:25 - 2013-11-14 02:28 - 00863592 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-26 11:24 - 2013-08-22 09:46 - 00419226 _____ () C:\WINDOWS\setupact.log
2014-07-26 10:51 - 2014-07-26 10:51 - 00000000 ____D () C:\WINDOWS\LastGood.Tmp
2014-07-26 10:45 - 2014-07-26 10:45 - 04862664 _____ (AVAST Software) C:\Users\Ratsami\Desktop\avast_free_antivirus_setup_online.exe
2014-07-26 10:45 - 2014-07-26 10:45 - 04862664 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2014-07-26 10:13 - 2014-07-26 11:29 - 164147200 _____ () C:\Users\Ratsami\Desktop\VIPRERescue31618.exe
2014-07-25 17:09 - 2014-01-09 17:47 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\VirtualStore
2014-07-25 16:47 - 2014-07-25 16:47 - 00001122 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-25 16:47 - 2014-07-25 16:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-25 16:47 - 2014-07-25 16:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-25 16:47 - 2014-07-25 16:47 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-25 16:46 - 2014-07-25 16:46 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CleanUp!
2014-07-25 16:46 - 2014-07-25 16:46 - 00000000 ____D () C:\Program Files (x86)\CleanUp!
2014-07-25 16:17 - 2014-07-25 16:17 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Ratsami\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-25 16:16 - 2014-07-25 16:16 - 00339257 _____ () C:\Users\Ratsami\Downloads\CleanUp452(1).exe
2014-07-25 16:15 - 2014-07-25 16:15 - 00339257 _____ () C:\Users\Ratsami\Downloads\CleanUp452.exe
2014-07-25 11:07 - 2014-07-25 11:07 - 00284584 _____ () C:\WINDOWS\Minidump\072514-39640-01.dmp
2014-07-25 11:07 - 2014-03-02 22:10 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-25 11:06 - 2014-03-02 22:10 - 447495351 _____ () C:\WINDOWS\MEMORY.DMP
2014-07-25 11:02 - 2014-07-23 18:59 - 00000000 ____D () C:\Users\Ratsami\Downloads\[ www.Torrentday.com ] - The.Buccaneer.1958.720p.BRRip.x264-x0r
2014-07-25 10:11 - 2012-07-26 02:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-07-25 09:56 - 2014-07-25 09:56 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-07-24 16:20 - 2014-01-10 22:52 - 00001988 _____ () C:\Users\Ratsami\Desktop\PeerBlock.lnk
2014-07-24 16:08 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-07-24 15:56 - 2014-07-24 15:56 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-07-24 15:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-07-24 15:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-07-24 15:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-07-24 15:16 - 2014-07-24 15:16 - 00000000 ____D () C:\Program Files\Common Files\Atheros
2014-07-24 15:16 - 2013-08-22 09:46 - 00000262 _____ () C:\WINDOWS\setuperr.log
2014-07-24 15:16 - 2013-03-08 01:17 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-07-24 15:12 - 2014-04-14 13:10 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-07-24 15:11 - 2014-06-11 17:58 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-24 14:26 - 2014-07-24 14:26 - 01539402 _____ () C:\Users\Ratsami\Downloads\IRST_12.8.0.1016_ANdisable_Win8.1_64 (1).exe
2014-07-24 14:25 - 2014-07-24 14:25 - 01539402 _____ () C:\Users\Ratsami\Downloads\IRST_12.8.0.1016_ANdisable_Win8.1_64.exe
2014-07-24 14:11 - 2014-07-24 14:10 - 00284584 _____ () C:\WINDOWS\Minidump\072414-60640-01.dmp
2014-07-24 12:34 - 2014-07-24 12:34 - 00284584 _____ () C:\WINDOWS\Minidump\072414-46031-01.dmp
2014-07-24 12:21 - 2014-07-24 12:21 - 00284584 _____ () C:\WINDOWS\Minidump\072414-51625-01.dmp
2014-07-24 11:53 - 2014-07-24 11:53 - 00000000 __SHD () C:\found.001
2014-07-24 07:23 - 2014-07-24 07:23 - 00284528 _____ () C:\WINDOWS\Minidump\072414-99906-01.dmp
2014-07-23 22:26 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-07-23 21:49 - 2014-07-23 21:48 - 00284752 _____ () C:\WINDOWS\Minidump\072314-101781-01.dmp
2014-07-23 21:27 - 2014-07-23 21:27 - 00000000 __SHD () C:\found.000
2014-07-23 20:42 - 2014-07-23 18:58 - 1155585340 _____ () C:\Users\Ratsami\Downloads\The.Crossing.2000.DVDRip.XviD.avi
2014-07-23 17:54 - 2014-06-26 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-23 17:52 - 2014-06-26 19:04 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-22 14:19 - 2014-07-04 09:36 - 00000000 ____D () C:\Users\Ratsami\Documents\Elementary Education Test
2014-07-22 07:37 - 2014-01-15 13:37 - 00000424 _____ () C:\WINDOWS\Tasks\RegCure Pro.job
2014-07-21 19:31 - 2014-04-03 10:26 - 00000000 __RDO () C:\Users\Ratsami\SkyDrive
2014-07-21 19:28 - 2014-01-10 22:52 - 00000000 ____D () C:\Program Files\PeerBlock
2014-07-21 19:17 - 2013-06-15 21:08 - 00000000 ____D () C:\Users\Ratsami\Documents\Calibre Library
2014-07-21 19:12 - 2014-07-21 19:11 - 00284752 _____ () C:\WINDOWS\Minidump\072114-44375-01.dmp
2014-07-21 07:54 - 2014-07-21 07:54 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\calibre-cache
2014-07-21 07:54 - 2014-07-20 23:10 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\calibre
2014-07-20 23:10 - 2014-07-20 23:10 - 00000976 _____ () C:\Users\Public\Desktop\calibre - E-book management.lnk
2014-07-20 23:10 - 2014-07-20 23:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2014-07-20 23:10 - 2014-07-20 23:09 - 00000000 ____D () C:\Program Files (x86)\Calibre2
2014-07-20 23:09 - 2014-01-10 17:58 - 00000000 ____D () C:\Users\Ratsami\AppData\Roaming\vlc
2014-07-20 20:58 - 2014-06-14 18:13 - 00000000 ____D () C:\Users\Ratsami\Downloads\Street Fighter Assassin's Fist 2014 HDRip XviD-HELLRAZ0R
2014-07-20 17:53 - 2014-07-20 16:24 - 00000000 ____D () C:\Users\Ratsami\Downloads\[ www.TorrentDay.com ] - Thomas & Friends Splish, Splash, Splosh 2014 DVDRip x264 AC3-MiLLENiUM
2014-07-20 16:41 - 2014-07-20 16:25 - 56233472 _____ () C:\Users\Ratsami\Downloads\calibre-1.45.0.msi
2014-07-20 16:28 - 2014-07-20 16:24 - 00000000 ____D () C:\Users\Ratsami\Downloads\Survive! - Essential Skills and Tactics to Get You Out of Anywhere - Alive
2014-07-20 16:15 - 2014-07-20 16:15 - 00284752 _____ () C:\WINDOWS\Minidump\072014-39093-01.dmp
2014-07-20 16:12 - 2014-07-20 16:12 - 00000000 ____D () C:\Users\Ratsami\Downloads\Hardwiring Happiness - Rick Hanson
2014-07-17 22:01 - 2014-07-15 20:16 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone - Spanish (Latin America) - Level 1, 2, 3, 4, 5
2014-07-17 14:32 - 2014-07-17 14:32 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\Spotify
2014-07-17 13:59 - 2014-07-15 20:18 - 2157004416 _____ () C:\Users\Ratsami\Downloads\Rosetta Stone v3 Spanish (LA) v3 & Speech Preinstalled.exe
2014-07-17 09:48 - 2014-07-15 09:49 - 00018416 ____H () C:\Users\Ratsami\Documents\~WRL0003.tmp
2014-07-15 20:19 - 2014-07-15 20:18 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone Spanish (Latin America)
2014-07-15 20:16 - 2014-07-15 20:16 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone Latin American Level 1 Audio Companion
2014-07-15 20:16 - 2014-07-15 20:15 - 00000000 ____D () C:\Users\Ratsami\Downloads\Rosetta Stone Latin American Level 2 Audio Companion
2014-07-14 15:04 - 2014-07-13 16:22 - 00000000 ____D () C:\Users\Ratsami\Downloads\How To Train Your Dragon 2 2014 READNFO CAM XviD-HELLRAZ0R
2014-07-14 13:32 - 2013-09-02 12:58 - 00095744 ___SH () C:\Users\Ratsami\Downloads\Thumbs.db
2014-07-14 13:01 - 2014-07-13 21:28 - 00000000 ____D () C:\Users\Ratsami\Downloads\Coerver Soccer Coaching - The World's Best Soccer Skills Training
2014-07-14 12:19 - 2013-03-08 01:51 - 00000000 ____D () C:\ProgramData\CyberLink
2014-07-14 12:18 - 2014-07-14 12:18 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\Cyberlink
2014-07-14 01:29 - 2014-07-13 21:29 - 00000000 ____D () C:\Users\Ratsami\Downloads\ADVANCING_THE_SKILLS
2014-07-14 01:19 - 2014-07-13 21:29 - 00000000 ____D () C:\Users\Ratsami\Downloads\WALL_WORK
2014-07-14 01:11 - 2014-07-13 21:32 - 719340533 _____ () C:\Users\Ratsami\Downloads\Blast the Ball.m4v
2014-07-14 01:11 - 2014-07-13 21:29 - 00000000 ____D () C:\Users\Ratsami\Downloads\David.Beckhams.Official.Soccer.Skills.2004.SWESUB.DVDRip.XviD-Puff
2014-07-14 00:43 - 2014-07-13 23:22 - 00000000 ____D () C:\Users\Ratsami\Downloads\1776 - Musical Comedy of American Independance - AVI - Complete
2014-07-13 22:39 - 2014-01-09 17:48 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\Packages
2014-07-13 18:58 - 2014-07-13 18:58 - 00000000 ____D () C:\Users\Ratsami\Downloads\Mistakes Were Made But Not By Me
2014-07-13 16:21 - 2014-07-13 16:21 - 00058317 _____ () C:\Users\Ratsami\Downloads\[katproxy.com]how.to.train.your.dragon.2.2014.readnfo.cam.xvid.hellraz0r.torrent
2014-07-13 16:20 - 2014-07-13 16:17 - 00000000 ____D () C:\Users\Ratsami\Downloads\Need for Speed 2014 HDRip x264 AC3-MiLLENiUM
2014-07-13 16:16 - 2014-07-13 16:16 - 00006118 _____ () C:\Users\Ratsami\Downloads\Need for Speed 2014 HDRip x264 AC3-MiLLENiUM.torrent
2014-07-12 16:43 - 2014-07-08 21:15 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-12 16:42 - 2014-07-08 21:23 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-07-12 13:23 - 2014-07-12 13:23 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-07-12 13:23 - 2014-07-12 13:23 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-07-12 13:21 - 2014-07-12 13:21 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-07-10 07:51 - 2013-08-22 09:44 - 00483312 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-10 07:49 - 2013-08-22 10:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-07-10 07:49 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 07:49 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-10 07:49 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-07-10 07:39 - 2014-01-10 21:56 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-10 07:37 - 2014-01-10 21:56 - 96441528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-10 07:36 - 2013-11-14 02:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 21:13 - 2014-07-09 21:13 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-07-08 21:36 - 2012-07-26 00:26 - 00000271 _____ () C:\WINDOWS\win.ini
2014-07-08 21:22 - 2014-07-08 21:22 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-07-08 21:22 - 2013-11-14 02:17 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-07-08 21:22 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-07-08 21:21 - 2014-07-08 21:21 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-07-08 21:21 - 2014-07-08 21:19 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-07-08 21:19 - 2014-07-08 21:19 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-07-08 21:19 - 2014-07-08 21:15 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-07-08 21:19 - 2014-06-10 10:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-08 21:17 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-07-08 21:16 - 2014-07-08 21:16 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-07-08 21:16 - 2014-07-08 21:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-07-08 21:15 - 2014-07-08 21:15 - 00000000 __RHD () C:\MSOCache
2014-07-08 21:07 - 2014-07-08 21:07 - 00000000 ____D () C:\Users\Ratsami\AppData\Local\WinZip
2014-07-08 21:06 - 2014-07-08 21:06 - 00002227 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-07-08 21:06 - 2014-07-08 21:06 - 00002221 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-07-08 21:06 - 2014-07-08 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-07-08 21:06 - 2014-07-08 21:06 - 00000000 ____D () C:\Program Files\WinZip
2014-07-08 21:06 - 2014-01-22 18:55 - 00000000 ____D () C:\ProgramData\WinZip
2014-07-08 20:58 - 2014-01-09 22:27 - 00000899 _____ () C:\Users\Ratsami\Desktop\µTorrent.lnk
2014-07-08 20:58 - 2014-01-09 22:27 - 00000879 _____ () C:\Users\Ratsami\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-08 20:37 - 2014-07-08 20:33 - 00000000 ____D () C:\Program Files\office.tmp
2014-07-08 14:09 - 2014-06-07 11:34 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-05 14:57 - 2014-07-05 14:57 - 00220590 _____ () C:\Users\Ratsami\Downloads\DiagnosticTool.zip
2014-07-03 22:41 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-07-02 10:57 - 2014-06-03 12:09 - 00000000 ____D () C:\Users\Ratsami\Documents\Early literacy development
2014-07-02 10:32 - 2014-07-02 10:32 - 00000086 _____ () C:\Users\Ratsami\Downloads\interactive_writing_tape_1.rm
2014-07-01 15:20 - 2014-07-01 15:20 - 00000081 _____ () C:\Users\Ratsami\Downloads\guided_reading_tape_2.rm
2014-07-01 15:09 - 2014-07-01 15:09 - 00000061 _____ () C:\Users\Ratsami\Downloads\ELLintrod.rm
2014-07-01 14:50 - 2014-07-01 14:50 - 00000060 _____ () C:\Users\Ratsami\Downloads\textabel.rm
2014-07-01 14:45 - 2014-07-01 14:45 - 00000057 _____ () C:\Users\Ratsami\Downloads\wars2.rm
2014-07-01 11:52 - 2014-07-01 11:52 - 00000059 _____ () C:\Users\Ratsami\Downloads\stages2.rm
2014-07-01 11:43 - 2014-07-01 11:43 - 00000058 _____ () C:\Users\Ratsami\Downloads\PhHier.rm
2014-07-01 11:41 - 2014-07-01 11:41 - 00000059 _____ () C:\Users\Ratsami\Downloads\PhAware.rm
2014-07-01 11:41 - 2014-07-01 11:41 - 00000059 _____ () C:\Users\Ratsami\Downloads\PhAware (1).rm
2014-07-01 11:23 - 2014-07-01 11:23 - 00000058 _____ () C:\Users\Ratsami\Downloads\Founda.rm
2014-06-30 17:45 - 2014-07-12 13:21 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-06-29 19:31 - 2014-06-29 19:31 - 00012241 _____ () C:\Users\Ratsami\Downloads\[kickass.to]and.now.you.r.dead.1998.english.dubbed.dvdrip.pimp4003.torrent
2014-06-29 03:12 - 2014-06-28 21:47 - 00000000 ____D () C:\Users\Ratsami\Downloads\The.Way.Of.The.Dragon.1972.480p.BDRip.XviD.AC3.D-Z0N3
2014-06-28 23:14 - 2014-06-28 21:53 - 00000000 ____D () C:\Users\Ratsami\Downloads\Bruce Lee - A Warriors Journey-[ www.speed.cd ] DVDRip
2014-06-28 02:48 - 2014-07-12 13:21 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-06-28 02:07 - 2014-07-12 13:21 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-06-27 00:32 - 2014-06-26 21:26 - 00000000 ____D () C:\Users\Ratsami\Downloads\Warehouse 13 Season 4 Complete 720p
2014-06-27 00:06 - 2014-06-26 21:25 - 00000000 ____D () C:\Users\Ratsami\Downloads\Warehouse 13  Season 5 Complete

Some content of TEMP:
====================
C:\Users\Ratsami\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-07-27 09:17

==================== End Of Log ============================



#6 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,740 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:51 AM

Posted 01 August 2014 - 04:05 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/542438 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#7 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,740 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:51 AM

Posted 06 August 2014 - 04:10 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users