Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Is It fine ?


  • This topic is locked This topic is locked
7 replies to this topic

#1 nader28

nader28

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:06:13 PM

Posted 06 August 2014 - 07:43 PM

hello

i hope to help me to know if my computer is good or not i think there is problems

 

and by wrong i have deleted the pointed permission and added it againe ,then  i tried to add it is it  correct ?

 

[imgur](http://i.imgur.com/KVTflnf.png)

 

 

Runscanner logfile http://www.runscanner.net

* = signed file
- = file not found

General info
------------
Computer name : NADER-PC
Creation time : 07/08/2014 03:38:46 ص
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 9.11.9600.17207
OS : Windows 7 Ultimate
OS Build : 7601
OS SP : Service Pack 1
RunScanner Version : 2.0.0.60
User Language : Arabic (Egypt)
User rights : Administrator
Windows folder : C:\Windows

Running processes
-----------------
* C:\Windows\System32\atieclxx.exe (AMD)
* C:\Windows\System32\atiesrxx.exe (AMD)
  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\dwm.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\taskhost.exe (Microsoft Corporation)
* C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe (Kaspersky Lab ZAO)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe (Kaspersky Lab ZAO)
* C:\Windows\System32\lsass.exe (Microsoft Corporation)
* C:\Windows\System32\lsm.exe (Microsoft Corporation)
* C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
* C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation)
* C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe (Nitro PDF Software)
* C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
* C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
* D:\برا\pro1\runscanner.exe (Runscanner.net)
* C:\Windows\System32\services.exe (Microsoft Corporation)
* C:\Windows\System32\spoolsv.exe (Microsoft Corporation)
* C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\klwtblfs.exe (Kaspersky Lab ZAO)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\klwtbws.exe (Kaspersky Lab ZAO)
* C:\Windows\system32\audiodg.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\System32\winlogon.exe (Microsoft Corporation)
* C:\Windows\System32\smss.exe (Microsoft Corporation)
* C:\Windows\System32\wininit.exe (Microsoft Corporation)

Unrated items
-------------
002 * C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Software Pty Ltd)
002 * C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
002 * C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
003 * C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe (Glarysoft Ltd)
003 * C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
005 * C:\PROGRA~2\TECHSM~1\SNAGIT~1\Snagit32.exe (TechSmith Corporation)
006 * C:\PROGRA~2\TECHSM~1\SNAGIT~1\Snagit32.exe (TechSmith Corporation)
010 * C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service)
010 * C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service)
010 * C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe® Flash® Player Update Service 14.0 r0)
010 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe (Kaspersky Anti-Virus)
010 * C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (maintenanceservice.exe)
010 * C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes Anti-Malware)
010 * C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Anti-Malware)
010 * C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe (Nitro PDF Spool Service)
010 * C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Updater Service)
010 * C:\Windows\SysWOW64\NLSSRV32.EXE (This service enables products that use the Nalpeiron Licensing System )
011 * C:\Windows\System32\drivers\BootDefragDriver.sys (Boot Defrag Driver)
011 * C:\Windows\system32\DRIVERS\klflt.sys (Filter Core [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\idmwfp.sys (Internet Download Manager WFP Driver)
011 * C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (ISO DVD/CD-ROM Device Driver)
011 * C:\Windows\system32\DRIVERS\klim6.sys (Kaspersky Lab Intermediate Network Driver)
011 * C:\Windows\system32\DRIVERS\kl1.sys (Kaspersky Unified Driver)
011 * C:\Windows\system32\DRIVERS\klhk.sys (KLHK [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klkbdflt.sys (KLKBDFLT Keyboard Device Filter [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klmouflt.sys (KLMOUFLT Mouse Device Filter [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klpd.sys (KLPD [fre_wnet_x64])
011 * C:\Windows\system32\DRIVERS\kneps.sys (KNEPS Power [fre_wnet_amd64])
011 * C:\Windows\system32\drivers\mbam.sys (MBAMProtector)
011 * C:\Windows\system32\drivers\mwac.sys (MBAMWebAccessControl)
011 * C:\Windows\system32\DRIVERS\kltdi.sys (Network filtering component [fre_wnet_amd64])
011 * C:\Windows\system32\DRIVERS\Rt64win7.sys (Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                )
011 * C:\Windows\system32\drivers\RTKVHD64.sys (Realtek® High Definition Audio Function Driver)
011 * C:\Windows\System32\drivers\GUBootStartup.sys (The driver for the Startup Manager tool)
011 * C:\Windows\system32\DRIVERS\VBoxNetFlt.sys (VirtualBox Bridged Networking Driver)
011 * C:\Windows\system32\DRIVERS\VBoxNetAdp.sys (VirtualBox Host-Only Network Adapter Driver)
011 * C:\Windows\system32\DRIVERS\VBoxDrv.sys (VirtualBox Support Driver)
011 * C:\Windows\system32\DRIVERS\VBoxUSBMon.sys (VirtualBox USB Monitor Driver)
031   GUID / CLSID not found {314111c7-a502-11d2-bbca-00c04f8ec294}
035 * C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe (Google Inc.) {8A69D345-D564-463c-AFF1-A69D9E530F96}
042   GUID / CLSID not found {CCF151D8-D089-449F-A5A4-D9909053F20F}
042   GUID / CLSID not found {0C4CC089-D306-440D-9772-464E226F6539}
042   GUID / CLSID not found {2670000A-7350-4f3c-8081-5663EE0C6C49}
042   GUID / CLSID not found {31D09BA0-12F5-4CCE-BE8A-2923E76605DA}
042   GUID / CLSID not found {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}
052 * C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) {0055C089-8582-441B-A0BF-17B458C2A3A8}
052 * C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
052 * C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) {DBC80044-A445-435b-BC74-9C25C1C588A9}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) {E33CF602-D945-461A-83F0-819F76A199F8}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) {73455575-E40C-433C-9784-C78DC7761455}
060   GUID / CLSID not found {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
061   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
061   C:\Program Files (x86)\K-Lite Codec Pack\Icaros\32-bit\IcarosThumbnailProvider.dll (Tabibito Technology) {c5aec3ec-e812-4677-a9a7-4fee1f9aa000}
061 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
061 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
063 * C:\Windows\system32\BootDefrag.exe (Glarysoft Ltd)
069 * C:\Windows\system32\nitrolocalmon9.dll (Nitro PDF Software)
073   Adobe Flash Player Updater.job : C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
073   GlaryInitialize 5.job : C:\Program Files (x86)\Glary Utilities 5\Initialize.exe (Glarysoft Ltd)
105   Add to Anti-Banner : C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\ie_banner_deny.htm
105   إر&سال إلى OneNote : res://C:\PROGRA~1\MICROS~3\Office15\ONBttnIE.dll/105
105   ت&صدير إلى Microsoft Excel : res://C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000
105   تحميل الكل بواسطة Internet Download Manager : C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
105   تحميل بواسطة Internet Download Manager : C:\Program Files (x86)\Internet Download Manager\IEExt.htm
145 * C:\Windows\system32\drivers\klkbdflt.sys (Kaspersky Lab ZAO)
173   GUID / CLSID not found {9C4B85B8-956C-49BF-9BA5-101384E562B2}
173   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
173   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
173   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
173 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
173 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
173 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
221   GUID / CLSID not found {9C4B85B8-956C-49BF-9BA5-101384E562B2}
221   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
221   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
221   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
221 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
221 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
221 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
223   GUID / CLSID not found
223   GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225   GUID / CLSID not found {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
225   GUID / CLSID not found {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
225   GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225   GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225   GUID / CLSID not found {AD392E40-428C-459F-961E-9B147782D099}
225   GUID / CLSID not found {AD392E40-428C-459F-961E-9B147782D099}
225   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
225   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
225   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
225 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
225 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
227   GUID / CLSID not found {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
227   GUID / CLSID not found {ABE00001-0123-ABED-1248-0248ADFA1909}
227   GUID / CLSID not found {AD392E40-428C-459F-961E-9B147782D099}
227   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
227 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
227 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
229   GUID / CLSID not found {5E2121EE-0300-11D4-8D3B-444553540000}
251   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
253   GUID / CLSID not found {7EFA68C6-086B-43e1-A2D2-55A113531240}

Missing files
-------------
011 System32\drivers\rdvgkmd.sys
063 autocheck
 

Attached Files


Edited by nader28, 06 August 2014 - 08:40 PM.


BC AdBot (Login to Remove)

 


#2 nader28

nader28
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:06:13 PM

Posted 07 August 2014 - 01:47 PM

Upp



#3 nader28

nader28
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:06:13 PM

Posted 10 August 2014 - 09:14 PM

new reports add

 

Attached Files



#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:13 PM

Posted 11 August 2014 - 07:45 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/543575 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#5 nader28

nader28
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:06:13 PM

Posted 12 August 2014 - 11:06 PM

RunScanner file
http://www.datafilehost.com/d/f4692c09
 
Logs
 
 
Runscanner logfile http://www.runscanner.net

* = signed file
- = file not found

General info
------------
Computer name : NADER-PC
Creation time : 13/08/2014 05:57:34 ص
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 9.11.9600.17207
OS : Windows 7 Ultimate
OS Build : 7601
OS SP : Service Pack 1
RunScanner Version : 2.0.0.60
User Language : Arabic (Egypt)
User rights : Administrator
Windows folder : C:\Windows

Running processes
-----------------
* C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
* C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe (Adobe Systems, Inc.)
* C:\Windows\System32\atieclxx.exe (AMD)
* C:\Windows\System32\atiesrxx.exe (AMD)
  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\dwm.exe (Microsoft Corporation)
* C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\taskhost.exe (Microsoft Corporation)
* C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe (Kaspersky Lab ZAO)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe (Kaspersky Lab ZAO)
* C:\Windows\System32\lsass.exe (Microsoft Corporation)
* C:\Windows\System32\lsm.exe (Microsoft Corporation)
* C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation)
* C:\Windows\System32\VSSVC.exe (Microsoft Corporation)
* C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe (Nitro PDF Software)
* C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
* C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
* C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
* C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
* C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
* C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
* D:\برا\pro1\runscanner.exe (Runscanner.net)
* C:\Program Files\ma-config.com\MaConfigAgent.exe (CybelSoft)
* C:\Windows\System32\services.exe (Microsoft Corporation)
* C:\Windows\System32\spoolsv.exe (Microsoft Corporation)
* C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\klwtblfs.exe (Kaspersky Lab ZAO)
* C:\Windows\system32\audiodg.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\System32\winlogon.exe (Microsoft Corporation)
* C:\Windows\System32\smss.exe (Microsoft Corporation)
* C:\Windows\System32\wininit.exe (Microsoft Corporation)
* C:\Windows\System32\wbem\WmiPrvSE.exe (Microsoft Corporation)

Unrated items
-------------
002 * C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Software Pty Ltd)
002 * C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
003 * C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe (Glarysoft Ltd)
003 * C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
005 * C:\PROGRA~2\TECHSM~1\SNAGIT~1\Snagit32.exe (TechSmith Corporation)
006 * C:\PROGRA~2\TECHSM~1\SNAGIT~1\Snagit32.exe (TechSmith Corporation)
010 * C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service)
010 * C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service)
010 * C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (360 Total Security)
010 * C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe® Flash® Player Update Service 14.0 r0)
010 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe (Kaspersky Anti-Virus)
010 * C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (maintenanceservice.exe)
010 * C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes Anti-Malware)
010 * C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Anti-Malware)
010 * C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe (Nitro PDF Spool Service)
010 * C:\Program Files\ma-config.com\MaConfigAgent.exe (Service de détection matériel)
010 * C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Updater Service)
010 * C:\Windows\SysWOW64\NLSSRV32.EXE (This service enables products that use the Nalpeiron Licensing System )
011 * C:\Windows\system32\DRIVERS\BAPIDRV64.sys (360 Internet Security Cloud Security)
011 * C:\Windows\system32\DRIVERS\360FsFlt.sys (360 Internet Security Proactive Defense)
011 * C:\Windows\system32\DRIVERS\360Box64.sys (360Box64)
011 * C:\Windows\System32\Drivers\360Camera64.sys (360安全卫士 木马防火墙模块)
011 * C:\Windows\System32\Drivers\360AntiHacker64.sys (360安全卫士 网络防黑模块)
011 * C:\Windows\system32\DRIVERS\360AvFlt.sys (360杀毒 文件监控驱动)
011 * C:\Windows\System32\drivers\BootDefragDriver.sys (Boot Defrag Driver)
011 * C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys (Driver NT Ma-Config.com)
011 * D:\برا\pro1\EmsisoftEmergencyKit\Run\cleanhlp64.sys (Emsisoft Cleaning Helper Driver)
011 * D:\برا\PRO1\EMSISOFTEMERGENCYKIT\RUN\a2ddax64.sys (Emsisoft Direct Disk Access Support Driver)
011 * C:\Windows\system32\DRIVERS\klflt.sys (Filter Core [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\idmwfp.sys (Internet Download Manager WFP Driver)
011 * C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (ISO DVD/CD-ROM Device Driver)
011 * C:\Windows\system32\DRIVERS\klim6.sys (Kaspersky Lab Intermediate Network Driver)
011 * C:\Windows\system32\DRIVERS\kl1.sys (Kaspersky Unified Driver)
011 * C:\Windows\system32\DRIVERS\klhk.sys (KLHK [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klkbdflt.sys (KLKBDFLT Keyboard Device Filter [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klmouflt.sys (KLMOUFLT Mouse Device Filter [fre_wlh_x64])
011 * C:\Windows\system32\DRIVERS\klpd.sys (KLPD [fre_wnet_x64])
011 * C:\Windows\system32\DRIVERS\kneps.sys (KNEPS Power [fre_wnet_amd64])
011 * C:\Windows\system32\drivers\mbam.sys (MBAMProtector)
011 * C:\Windows\system32\drivers\mwac.sys (MBAMWebAccessControl)
011 * C:\Windows\system32\DRIVERS\kltdi.sys (Network filtering component [fre_wnet_amd64])
011 * C:\Windows\system32\DRIVERS\Rt64win7.sys (Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                )
011 * C:\Windows\system32\drivers\RTKVHD64.sys (Realtek® High Definition Audio Function Driver)
011 * C:\Windows\System32\drivers\GUBootStartup.sys (The driver for the Startup Manager tool)
011 * C:\Windows\system32\DRIVERS\VBoxNetFlt.sys (VirtualBox Bridged Networking Driver)
011 * C:\Windows\system32\DRIVERS\VBoxNetAdp.sys (VirtualBox Host-Only Network Adapter Driver)
011 * C:\Windows\system32\DRIVERS\VBoxDrv.sys (VirtualBox Support Driver)
011 * C:\Windows\system32\DRIVERS\VBoxUSBMon.sys (VirtualBox USB Monitor Driver)
031   GUID / CLSID not found {314111c7-a502-11d2-bbca-00c04f8ec294}
035 * C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe (Google Inc.) {8A69D345-D564-463c-AFF1-A69D9E530F96}
042   GUID / CLSID not found {CCF151D8-D089-449F-A5A4-D9909053F20F}
042   GUID / CLSID not found {0C4CC089-D306-440D-9772-464E226F6539}
042   GUID / CLSID not found {2670000A-7350-4f3c-8081-5663EE0C6C49}
042   GUID / CLSID not found {31D09BA0-12F5-4CCE-BE8A-2923E76605DA}
042   GUID / CLSID not found {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}
052 * C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) {0055C089-8582-441B-A0BF-17B458C2A3A8}
052 * C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
052 * C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) {DBC80044-A445-435b-BC74-9C25C1C588A9}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) {E33CF602-D945-461A-83F0-819F76A199F8}
052 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) {73455575-E40C-433C-9784-C78DC7761455}
060   GUID / CLSID not found {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
061   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
061   C:\Program Files (x86)\K-Lite Codec Pack\Icaros\32-bit\IcarosThumbnailProvider.dll (Tabibito Technology) {c5aec3ec-e812-4677-a9a7-4fee1f9aa000}
061 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
061 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
063 * C:\Windows\system32\BootDefrag.exe (Glarysoft Ltd)
069 * C:\Windows\system32\nitrolocalmon9.dll (Nitro PDF Software)
073   GlaryInitialize 5.job : C:\Program Files (x86)\Glary Utilities 5\Initialize.exe (Glarysoft Ltd)
105   Add to Anti-Banner : C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\ie_banner_deny.htm
105   إر&سال إلى OneNote : res://C:\PROGRA~1\MICROS~3\Office15\ONBttnIE.dll/105
105   ت&صدير إلى Microsoft Excel : res://C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000
105   تحميل الكل بواسطة Internet Download Manager : C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
105   تحميل بواسطة Internet Download Manager : C:\Program Files (x86)\Internet Download Manager\IEExt.htm
145 * C:\Windows\system32\drivers\klkbdflt.sys (Kaspersky Lab ZAO)
173   GUID / CLSID not found {086F171D-5ED1-4ED2-B736-CFF3AD6A128E}
173   GUID / CLSID not found {9C4B85B8-956C-49BF-9BA5-101384E562B2}
173   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
173   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
173   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
173 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
173 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
173 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
221   GUID / CLSID not found {086F171D-5ED1-4ED2-B736-CFF3AD6A128E}
221   GUID / CLSID not found {9C4B85B8-956C-49BF-9BA5-101384E562B2}
221   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
221   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
221   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
221 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
221 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
221 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
223   GUID / CLSID not found
223   GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225   GUID / CLSID not found {086F171D-5ED1-4ED2-B736-CFF3AD6A128E}
225   GUID / CLSID not found {086F171D-5ED1-4ED2-B736-CFF3AD6A128E}
225   GUID / CLSID not found {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
225   GUID / CLSID not found {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
225   GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225   GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225   GUID / CLSID not found {AD392E40-428C-459F-961E-9B147782D099}
225   GUID / CLSID not found {AD392E40-428C-459F-961E-9B147782D099}
225   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
225   GUID / CLSID not found {B3C418F8-922B-4faf-915E-59BC14448CF7}
225   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225   GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
225 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
225 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 * C:\Program Files\WinRAR\rarext32.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
227   GUID / CLSID not found {086F171D-5ED1-4ED2-B736-CFF3AD6A128E}
227   GUID / CLSID not found {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
227   GUID / CLSID not found {ABE00001-0123-ABED-1248-0248ADFA1909}
227   GUID / CLSID not found {AD392E40-428C-459F-961E-9B147782D099}
227   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
227 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\shellex.dll (Kaspersky Lab ZAO) {BD8BB16E-84EC-485E-8F58-9BD1FEFB8EE2}
227 * C:\Program Files (x86)\TechSmith\Snagit 12\SnagitShellExt.dll (TechSmith Corporation) {CF74B903-3389-469c-B3B6-0204D204FCBD}
229   GUID / CLSID not found {5E2121EE-0300-11D4-8D3B-444553540000}
251   C:\Program Files (x86)\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
253   GUID / CLSID not found {7EFA68C6-086B-43e1-A2D2-55A113531240}

Missing files
-------------
004 C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE
007 C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE
011 System32\drivers\rdvgkmd.sys
063 autocheck

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17207 BrowserJavaVersion: 10.65.2
Run by Nader at 5:54:01 on 2014-08-13
Microsoft Windows 7 Ultimate 6.1.7601.1.1256.20.1033.18.4094.2652 [GMT 2:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {179979E8-273D-D14E-0543-2861940E4886}
AV: 360 Total Security *Disabled/Updated* {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
SP: 360 Total Security *Disabled/Updated* {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
SP: Kaspersky Internet Security *Enabled/Updated* {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Dwm.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
C:\Windows\SysWOW64\NLSSRV32.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\klwtblfs.exe
C:\Windows\explorer.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files\ma-config.com\MaConfigAgent.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
D:\ÈÑÇ\pro1\runscanner.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
mWinlogon: Userinit = userinit.exe,
BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll
uRun: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
mRun: [Ad Muncher] "C:\Program Files (x86)\Ad Muncher\AdMunch.exe" /bt
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
StartupFolder: C:\Users\Nader\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SNAGIT~1.LNK - C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\ie_banner_deny.htm
IE: ÅÑ&ÓÇá Åáì OneNote - C:\PROGRA~1\MICROS~3\Office15\ONBttnIE.dll/105
IE: Ê&ÕÏíÑ Åáì Microsoft Excel - C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000
IE: ÊÍãíá Çáßá ÈæÇÓØÉ Internet Download Manager - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: ÊÍãíá ÈæÇÓØÉ Internet Download Manager - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll
TCP: NameServer = 192.168.1.1 0.0.0.0
TCP: Interfaces\{22098C88-C6D7-49F1-B597-FEEB9C2EDABB} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{2FAF30F3-C375-4021-9E13-B5B62BE3153C} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{31F71DF9-C8B5-4C6F-94C1-06AE6E870A08} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{7F2CA4E2-3DD7-493D-A429-30E9659872E2} : DHCPNameServer = 192.168.1.1 0.0.0.0
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = about:blank
x64-BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Nader\AppData\Roaming\Mozilla\Firefox\Profiles\f81ynssq.default-1407706630575\
FF - plugin: C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll
FF - plugin: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com\nponlinebanking.dll
FF - plugin: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\Program Files (x86)\Nitro\Pro 9\npdf.dll
FF - plugin: C:\Program Files (x86)\Nitro\Pro 9\npnitroie.dll
FF - plugin: C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
.
---- FIREFOX POLICIES ----
.
FF - user.js: plugin.state.npcontentblocker - 2
.
FF - user.js: plugin.state.nponlinebanking - 2
.
FF - user.js: plugin.state.npvkplugin - 2
.
FF - user.js: plugin.state.anti_banner_native_proxy - 2
.
FF - user.js: plugin.state.url_advisor - 2
.
FF - user.js: plugin.state.npcontentblocker - 2
.
FF - user.js: plugin.state.nponlinebanking - 2
.
FF - user.js: plugin.state.npvkplugin - 2
.
FF - user.js: plugin.state.anti_banner_native_proxy - 2
.
FF - user.js: plugin.state.url_advisor - 2
.
============= SERVICES / DRIVERS ===============
.
R0 BootDefragDriver;BootDefragDriver;C:\Windows\System32\drivers\BootDefragDriver.sys [2014-8-3 17600]
R1 360Box64;360Box mini-filter driver;C:\Windows\System32\drivers\360Box64.sys [2014-8-10 305736]
R1 360FsFlt;360FsFlt mini-filter driver;C:\Windows\System32\drivers\360fsflt.sys [2014-8-10 311888]
R1 A2DDA;A2 Direct Disk Access Support Driver;D:\ÈÑÇ\pro1\EmsisoftEmergencyKit\Run\a2ddax64.sys [2014-8-3 26176]
R1 BAPIDRV;BAPIDRV;C:\Windows\System32\drivers\BAPIDRV64.SYS [2014-8-10 180816]
R1 GUBootStartup;GUBootStartup;C:\Windows\System32\drivers\GUBootStartup.sys [2014-8-3 20672]
R1 klhk;klhk;C:\Windows\System32\drivers\klhk.sys [2014-7-30 243808]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2014-2-25 30304]
R1 klpd;klpd;C:\Windows\System32\drivers\klpd.sys [2013-4-12 15456]
R1 kltdi;kltdi;C:\Windows\System32\drivers\kltdi.sys [2014-3-25 55904]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2014-3-26 179296]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-4-30 238080]
R2 AVP15.0.0;Kaspersky Anti-Virus Service 15.0.0;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [2014-4-20 233552]
R2 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2014-7-23 180136]
R2 MaConfigAgent;Ma-Config Agent;C:\Program Files\ma-config.com\MaConfigAgent.exe [2014-6-24 2820424]
R2 NitroDriverReadSpool9;NitroPDFDriverCreatorReadSpool9;C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [2013-10-7 230920]
R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\NLSSRV32.EXE [2013-10-7 69640]
R2 QHActiveDefense;360 Total Security;C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [2014-8-10 703088]
R3 360AvFlt;360AvFlt mini-filter driver;C:\Windows\System32\drivers\360AvFlt.sys [2014-8-10 77896]
R3 3xHybr64;SAA713x TV Card Service;C:\Windows\System32\drivers\3xHybr64.sys [2010-12-1 1425920]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-5-14 96896]
R3 klflt;Kaspersky Lab Kernel DLL;C:\Windows\System32\drivers\klflt.sys [2014-7-30 140352]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2014-3-28 28768]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2013-8-8 29280]
R3 ma-config_amd64;ma-config_amd64;C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [2014-2-24 17568]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-7-30 941272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-7-30 1809720]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-7-30 860472]
S3 360AntiHacker;360Safe Anti Hacker Service;C:\Windows\System32\drivers\360AntiHacker64.sys [2014-8-10 100424]
S3 360Camera;360Safe Camera Filter Service;C:\Windows\System32\drivers\360Camera64.sys [2014-8-10 40520]
S3 cleanhlp;cleanhlp;D:\ÈÑÇ\pro1\EmsisoftEmergencyKit\Run\cleanhlp64.sys [2014-8-3 57024]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-8-5 111616]
S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-7-30 25816]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-7-30 63704]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-1-23 178760]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-8-4 19456]
S3 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-4-3 315008]
S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;C:\Windows\System32\drivers\Synth3dVsc.sys [2014-8-10 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2014-8-4 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-8-4 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2014-8-4 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-4-12 117248]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-8-4 1255736]
.
=============== Created Last 30 ================
.
2014-08-13 02:52:00 -------- d-----w- C:\ProgramData\ma-config.com
2014-08-13 02:52:00 -------- d-----w- C:\Program Files\ma-config.com
2014-08-12 16:18:07 10924376 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2014-08-12 16:18:04 10924376 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1885451E-6F0F-46E6-A99E-302BBF036344}\mpengine.dll
2014-08-11 02:47:58 -------- d-----w- C:\Users\Nader\AppData\Local\CrashDumps
2014-08-11 01:49:56 -------- d-----w- C:\Users\Nader\AppData\Roaming\Hard Disk Sentinel
2014-08-10 21:21:34 536576 ----a-w- C:\Windows\SysWow64\sqlite3.dll
2014-08-10 19:54:25 -------- d-----w- C:\CCE_Quarantine
2014-08-10 18:40:06 77312 ----a-w- C:\Windows\System32\eamclean.exe
2014-08-10 15:12:38 -------- d-sh--w- C:\ProgramData\360Quarant
2014-08-10 15:12:37 -------- d-sh--w- C:\$360Section
2014-08-10 14:19:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-08-10 14:19:10 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-08-10 14:15:34 4357632 ----a-w- C:\Windows\System32\sppsvc.exe
2014-08-10 14:15:34 1098752 ----a-w- C:\Windows\System32\sppobjs.dll
2014-08-10 14:04:55 40448 ----a-w- C:\Windows\System32\drivers\modem.sys
2014-08-10 14:04:55 321536 ----a-w- C:\Windows\System32\unimdm.tsp
2014-08-10 14:04:54 281088 ----a-w- C:\Windows\SysWow64\unimdm.tsp
2014-08-10 14:04:26 29184 ----a-w- C:\Windows\System32\version.dll
2014-08-10 14:04:26 21504 ----a-w- C:\Windows\SysWow64\version.dll
2014-08-10 14:03:47 78848 ----a-w- C:\Windows\System32\tabcal.exe
2014-08-10 14:03:46 684032 ----a-w- C:\Windows\System32\TabletPC.cpl
2014-08-10 14:02:28 213888 ----a-w- C:\Windows\System32\drivers\rdyboost.sys
2014-08-10 14:02:28 1743360 ----a-w- C:\Windows\System32\sysmain.dll
2014-08-10 13:58:30 409088 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-08-10 13:56:37 1077248 ----a-w- C:\Windows\System32\Narrator.exe
2014-08-10 13:55:59 88960 ----a-w- C:\Windows\System32\drivers\Synth3dVsc.sys
2014-08-10 12:51:57 -------- d-----w- C:\Users\Nader\AppData\Roaming\360safe
2014-08-10 12:51:06 23752 ----a-w- C:\Windows\System32\drivers\efimon.sys
2014-08-10 12:51:04 77896 ----a-w- C:\Windows\System32\drivers\360AvFlt.sys
2014-08-10 12:50:50 -------- d-----w- C:\ProgramData\360safe
2014-08-10 12:50:42 311888 ----a-w- C:\Windows\System32\drivers\360fsflt.sys
2014-08-10 12:50:35 40520 ----a-w- C:\Windows\System32\drivers\360Camera64.sys
2014-08-10 12:50:34 180816 ----a-w- C:\Windows\System32\drivers\BAPIDRV64.SYS
2014-08-10 12:50:34 100424 ----a-w- C:\Windows\System32\drivers\360AntiHacker64.sys
2014-08-10 12:50:27 -------- d-sh--r- C:\360SANDBOX
2014-08-10 12:50:21 305736 ----a-w- C:\Windows\System32\drivers\360Box64.sys
2014-08-10 12:50:18 -------- d-----w- C:\Program Files (x86)\360
2014-08-10 09:12:26 105984 ----a-w- C:\Users\Nader\AppData\Local\Tempindex.exe
2014-08-07 00:56:44 -------- d-----w- C:\AdwCleaner
2014-08-06 21:24:40 -------- d-----w- C:\Users\Nader\AppData\Roaming\Windows
2014-08-06 14:24:53 -------- d-sh--w- C:\Users\Nader\AppData\Local\EmieUserList
2014-08-06 14:24:53 -------- d-sh--w- C:\Users\Nader\AppData\Local\EmieSiteList
2014-08-05 13:32:53 -------- dc----w- C:\Users\Nader\AppData\Local\MigWiz
2014-08-05 10:27:09 -------- d-----w- C:\Windows\Migration
2014-08-05 10:21:03 194048 ----a-w- C:\Windows\SysWow64\elshyph.dll
2014-08-04 19:38:35 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-08-04 19:38:34 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-08-04 18:24:15 6574592 ----a-w- C:\Windows\System32\mstscax.dll
2014-08-04 18:24:15 5694464 ----a-w- C:\Windows\SysWow64\mstscax.dll
2014-08-04 17:58:19 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2014-08-04 17:58:19 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2014-08-04 17:58:19 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2014-08-04 17:58:19 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2014-08-04 17:40:10 224256 ----a-w- C:\Windows\System32\wintrust.dll
2014-08-04 17:40:10 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2014-08-04 17:32:12 70144 ----a-w- C:\Windows\System32\appinfo.dll
2014-08-04 17:32:12 111448 ----a-w- C:\Windows\System32\consent.exe
2014-08-04 17:30:43 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2014-08-04 17:30:43 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2014-08-04 17:30:41 335360 ----a-w- C:\Windows\System32\msieftp.dll
2014-08-04 17:30:41 301568 ----a-w- C:\Windows\SysWow64\msieftp.dll
2014-08-04 17:30:38 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2014-08-04 17:30:38 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2014-08-04 17:29:25 96768 ----a-w- C:\Windows\System32\fsutil.exe
2014-08-04 17:29:25 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2014-08-04 17:29:25 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2014-08-04 17:29:25 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2014-08-04 17:29:25 2565632 ----a-w- C:\Windows\System32\esent.dll
2014-08-04 17:29:25 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2014-08-04 17:29:25 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2014-08-04 17:29:25 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2014-08-04 17:29:25 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2014-08-04 17:29:13 2871808 ----a-w- C:\Windows\explorer.exe
2014-08-04 17:29:13 2616320 ----a-w- C:\Windows\SysWow64\explorer.exe
2014-08-04 17:28:05 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2014-08-04 17:28:05 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-08-04 17:27:47 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-08-04 17:27:47 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-08-04 17:26:47 67072 ----a-w- C:\Windows\splwow64.exe
2014-08-04 17:26:47 559104 ----a-w- C:\Windows\System32\spoolsv.exe
2014-08-04 17:26:37 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-08-04 17:26:37 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-08-04 17:26:25 59392 ----a-w- C:\Windows\System32\browcli.dll
2014-08-04 17:26:25 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2014-08-04 17:26:25 136704 ----a-w- C:\Windows\System32\browser.dll
2014-08-04 17:03:17 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2014-08-04 17:01:21 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-08-04 17:01:21 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-08-04 16:59:03 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2014-08-04 16:59:03 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-08-04 16:59:03 331776 ----a-w- C:\Windows\System32\oleacc.dll
2014-08-04 16:59:03 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2014-08-04 16:58:29 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-08-04 16:56:54 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2014-08-04 16:56:54 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2014-08-04 15:08:38 -------- d-----w- C:\Users\Nader\AppData\Local\Microsoft Games
2014-08-04 06:39:57 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2014-08-04 06:39:57 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2014-08-04 06:39:57 362496 ----a-w- C:\Windows\System32\wow64win.dll
2014-08-04 06:39:57 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2014-08-04 06:39:57 243712 ----a-w- C:\Windows\System32\wow64.dll
2014-08-04 06:39:57 2048 ----a-w- C:\Windows\SysWow64\user.exe
2014-08-04 06:39:57 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2014-08-04 06:39:57 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2014-08-04 06:39:57 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2014-08-04 06:04:31 -------- d-----w- C:\Windows\SysWow64\%Data%
2014-08-04 04:33:46 -------- d-----w- C:\Users\Nader\AppData\Roaming\uTorrent
2014-08-04 04:28:41 -------- d-----w- C:\Users\Nader\AppData\Roaming\DRPSu
2014-08-04 04:26:21 -------- d-----w- C:\Windows\System32\wbem\Framework\root\OpenHardwareMonitor
2014-08-04 04:26:21 -------- d-----w- C:\Windows\System32\wbem\Framework\root
2014-08-04 04:26:21 -------- d-----w- C:\Windows\System32\wbem\Framework
2014-08-04 03:02:18 3584 ----a-w- C:\Windows\System32\drivers\fr-FR\tsusbflt.sys.mui
2014-08-04 02:59:44 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\wdf01000.sys.mui
2014-08-04 01:33:45 -------- d-----w- C:\Windows\System32\wbem\fr-FR
2014-08-04 01:33:44 -------- d-----w- C:\Windows\System32\wbem\ar-SA
2014-08-04 01:23:00 6144 ----a-w- C:\Windows\System32\drivers\ar-SA\rdvgkmd.sys.mui
2014-08-04 01:23:00 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\rdpwd.sys.mui
2014-08-04 01:22:59 3584 ----a-w- C:\Windows\System32\drivers\ar-SA\portcls.sys.mui
2014-08-04 01:22:59 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\scfilter.sys.mui
2014-08-04 01:22:54 7168 ----a-w- C:\Windows\System32\drivers\ar-SA\tunnel.sys.mui
2014-08-04 01:22:54 4096 ----a-w- C:\Windows\System32\drivers\ar-SA\tsusbhub.sys.mui
2014-08-04 01:22:54 3584 ----a-w- C:\Windows\System32\drivers\ar-SA\tsusbflt.sys.mui
2014-08-04 01:22:51 11776 ----a-w- C:\Windows\System32\drivers\ar-SA\usbhub.sys.mui
2014-08-04 01:22:50 24576 ----a-w- C:\Windows\System32\drivers\ar-SA\usbport.sys.mui
2014-08-04 01:22:44 9728 ----a-w- C:\Windows\System32\drivers\ar-SA\battc.sys.mui
2014-08-04 01:20:42 72704 ----a-w- C:\Windows\System32\drivers\fr-FR\ntfs.sys.mui
2014-08-04 01:20:42 14848 ----a-w- C:\Windows\System32\drivers\ar-SA\nwifi.sys.mui
2014-08-04 01:20:39 36352 ----a-w- C:\Windows\System32\drivers\ar-SA\ndis.sys.mui
2014-08-04 01:20:39 3072 ----a-w- C:\Windows\System32\drivers\ar-SA\ndisuio.sys.mui
2014-08-04 01:20:30 5632 ----a-w- C:\Windows\System32\drivers\ar-SA\ndiscap.sys.mui
2014-08-04 01:20:24 2560 ----a-w- C:\Windows\System32\drivers\ar-SA\mountmgr.sys.mui
2014-08-04 01:20:21 6144 ----a-w- C:\Windows\System32\drivers\ar-SA\luafv.sys.mui
2014-08-04 01:20:20 3584 ----a-w- C:\Windows\System32\drivers\fr-FR\ipnat.sys.mui
2014-08-04 01:20:16 33792 ----a-w- C:\Windows\System32\drivers\ar-SA\http.sys.mui
2014-08-04 01:20:03 5120 ----a-w- C:\Windows\System32\drivers\ar-SA\fltmgr.sys.mui
2014-08-04 00:59:37 3178496 ----a-w- C:\Windows\System32\rdpcorets.dll
2014-08-04 00:59:37 16384 ----a-w- C:\Windows\System32\RdpGroupPolicyExtension.dll
2014-08-04 00:56:27 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2014-08-04 00:56:27 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2014-08-04 00:10:36 -------- d-----w- C:\Windows\SysWow64\Wat
2014-08-04 00:10:36 -------- d-----w- C:\Windows\System32\Wat
2014-08-04 00:04:03 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2014-08-04 00:04:03 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2014-08-04 00:04:03 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2014-08-04 00:04:02 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2014-08-03 23:41:05 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2014-08-03 23:34:49 -------- d-----w- C:\Windows\System32\MRT
2014-08-03 23:31:11 30208 ----a-w- C:\Windows\System32\drivers\TsUsbGD.sys
2014-08-03 23:31:11 29696 ----a-w- C:\Windows\System32\drivers\terminpt.sys
2014-08-03 23:31:11 19456 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys
2014-08-03 23:31:08 243200 ----a-w- C:\Windows\System32\rdpudd.dll
2014-08-03 23:31:08 228864 ----a-w- C:\Windows\System32\rdpendp_winip.dll
2014-08-03 23:31:08 192000 ----a-w- C:\Windows\SysWow64\rdpendp_winip.dll
2014-08-03 23:09:37 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2014-08-03 23:09:37 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2014-08-03 23:09:36 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2014-08-03 23:09:36 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2014-08-03 23:09:36 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2014-08-03 23:09:36 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2014-08-03 23:09:36 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2014-08-03 20:47:40 792576 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-08-03 20:47:40 1030144 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-08-03 20:42:21 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-08-03 20:42:21 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-08-03 20:42:21 144384 ----a-w- C:\Windows\System32\cdd.dll
2014-08-03 20:41:16 1719296 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2014-08-03 20:41:16 1380864 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2014-08-03 20:41:16 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2014-08-03 20:41:15 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2014-08-03 20:41:15 1389568 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2014-08-03 20:41:14 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2014-08-03 20:41:14 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-08-03 20:41:14 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2014-08-03 20:41:07 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2014-08-03 20:41:07 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll
2014-08-03 20:28:40 20672 ----a-w- C:\Windows\System32\drivers\GUBootStartup.sys
2014-08-03 20:28:38 17600 ----a-w- C:\Windows\System32\drivers\BootDefragDriver.sys
2014-08-03 20:28:38 118048 ----a-w- C:\Windows\System32\BootDefrag.exe
2014-08-03 20:28:38 -------- d-----w- C:\Users\Nader\AppData\Roaming\DiskDefrag
2014-08-03 20:28:29 -------- d-----w- C:\Program Files (x86)\Glary Utilities 5
2014-08-03 20:26:26 -------- d-----w- C:\Users\Nader\AppData\Roaming\Runscanner.net
2014-08-03 20:16:56 -------- d-----w- C:\Users\Nader\AppData\Roaming\GlarySoft
2014-08-03 19:32:17 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-08-03 19:31:58 441856 ----a-w- C:\Windows\System32\Wpc.dll
2014-08-03 19:30:44 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-08-03 19:30:43 458712 ----a-w- C:\Windows\System32\drivers\cng.sys
2014-08-03 19:30:43 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-08-03 19:30:41 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-08-03 19:30:41 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-08-03 19:30:41 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-08-03 19:30:39 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-08-03 19:30:39 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-08-03 19:30:38 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-08-03 19:30:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-08-03 19:29:22 878080 ----a-w- C:\Windows\System32\advapi32.dll
2014-08-03 19:29:22 859648 ----a-w- C:\Windows\System32\tdh.dll
2014-08-03 19:29:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2014-08-03 19:29:21 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2014-08-03 19:29:21 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2014-08-03 19:29:21 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2014-08-03 19:27:56 142336 ----a-w- C:\Windows\System32\poqexec.exe
2014-08-03 19:25:41 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2014-08-03 19:25:41 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2014-08-03 19:25:39 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2014-08-03 19:25:25 1192448 ----a-w- C:\Windows\System32\certutil.exe
2014-08-03 19:25:24 903168 ----a-w- C:\Windows\SysWow64\certutil.exe
2014-08-03 19:25:23 52224 ----a-w- C:\Windows\System32\certenc.dll
2014-08-03 19:25:23 43008 ----a-w- C:\Windows\SysWow64\certenc.dll
2014-08-03 19:22:17 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2014-08-03 19:22:17 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2014-08-03 19:22:16 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2014-08-03 19:22:16 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2014-08-03 19:22:02 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2014-08-03 19:22:01 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2014-08-03 19:22:01 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2014-08-03 19:22:01 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-08-03 19:22:01 102400 ----a-w- C:\Windows\System32\davclnt.dll
2014-08-03 19:13:13 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2014-08-03 19:13:13 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2014-08-03 19:13:13 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2014-08-03 19:13:13 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2014-08-03 19:13:13 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2014-08-03 19:13:13 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2014-08-03 19:12:22 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-08-03 19:12:22 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-08-03 19:12:11 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-08-03 19:12:11 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-08-03 19:12:00 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2014-08-03 19:12:00 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2014-08-03 19:12:00 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2014-08-03 19:12:00 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2014-08-03 19:10:50 1572864 ----a-w- C:\Windows\System32\quartz.dll
2014-08-03 19:09:55 484864 ----a-w- C:\Windows\System32\wer.dll
2014-08-03 19:08:58 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-08-03 19:07:41 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-08-03 19:06:53 404480 ----a-w- C:\Windows\System32\gdi32.dll
2014-08-03 19:06:53 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2014-08-03 19:06:52 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-08-03 15:52:26 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-08-03 15:52:26 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-08-03 15:52:26 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-08-03 15:52:26 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-08-03 15:52:26 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-08-03 15:52:16 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-08-03 15:52:10 77312 ----a-w- C:\Windows\System32\packager.dll
2014-08-03 15:52:10 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2014-08-03 15:51:36 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-08-03 15:51:36 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-08-03 15:51:36 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-08-03 15:30:32 -------- d-----w- C:\Users\Nader\.VirtualBox
2014-08-01 03:44:53 -------- d-----w- C:\Windows\System32\appmgmt
2014-07-31 01:39:53 -------- d-----w- C:\Users\Nader\AppData\Local\Diagnostics
2014-07-30 12:42:12 -------- d-----w- C:\Windows\Panther
2014-07-30 04:15:06 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2014-07-30 03:42:56 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2014-07-30 03:42:42 -------- d-----w- C:\Intel
2014-07-30 03:42:36 -------- d-----w- C:\3DP
2014-07-30 03:41:39 -------- d-----w- C:\Program Files (x86)\3DP Chip
2014-07-30 03:40:27 -------- d-----w- C:\Users\Nader\AppData\Local\ElevatedDiagnostics
2014-07-30 03:39:31 941272 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-07-30 03:39:31 73800 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-07-30 03:33:36 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2014-07-30 03:33:36 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2014-07-30 03:33:36 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2014-07-30 03:33:36 225280 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2014-07-30 03:33:36 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2014-07-30 03:29:18 254240 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys
2014-07-30 03:29:10 128288 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys
2014-07-30 03:29:07 -------- d-----w- C:\Program Files\Oracle
2014-07-30 03:28:13 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-07-30 03:27:29 -------- d-----w- C:\Users\Nader\AppData\Local\Macromedia
2014-07-30 03:27:05 -------- d-----w- C:\Program Files (x86)\Realtek
2014-07-30 03:26:55 -------- d--h--w- C:\Program Files (x86)\Temp
2014-07-30 03:26:54 2080472 ----a-w- C:\Windows\RtlExUpd.dll
2014-07-30 03:26:53 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
2014-07-30 03:26:53 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2014-07-30 03:26:53 204800 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2014-07-30 03:26:52 757760 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2014-07-30 03:26:52 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2014-07-30 03:26:52 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2014-07-30 03:26:51 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2014-07-30 03:26:50 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2014-07-30 03:25:43 -------- d-----w- C:\Users\Nader\AppData\Local\ATI
2014-07-30 03:25:40 -------- d-----w- C:\ProgramData\AMD
2014-07-30 03:25:38 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-07-30 03:25:36 -------- d-----w- C:\Program Files (x86)\AMD APP
2014-07-30 03:25:30 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2014-07-30 03:25:30 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2014-07-30 03:23:58 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2014-07-30 03:23:39 -------- d-----w- C:\Program Files\ATI Technologies
2014-07-30 03:23:38 -------- d-----w- C:\Program Files\ATI
2014-07-30 03:23:02 -------- d-----w- C:\AMD
2014-07-30 03:18:18 -------- d-----w- C:\Users\Nader\AppData\Roaming\Nitro
2014-07-30 03:11:56 -------- d-----w- C:\Program Files (x86)\DCoder Image Source
2014-07-30 03:11:43 -------- d-----w- C:\Program Files (x86)\FFMPEG Core Files
2014-07-30 03:11:09 -------- d-----w- C:\Program Files (x86)\AC3Filter
2014-07-30 03:11:03 -------- d-----w- C:\Program Files (x86)\DirectVobSub
2014-07-30 03:10:42 -------- d-----w- C:\Program Files (x86)\MadVR
2014-07-30 03:10:22 -------- d-----w- C:\Program Files (x86)\LAV Filters
2014-07-30 03:09:39 -------- d-----w- C:\Program Files (x86)\The KMPlayer
2014-07-30 03:09:23 -------- d-----w- C:\Program Files (x86)\Bass Audio Decoder
2014-07-30 03:07:41 -------- d-----w- C:\ProgramData\Zoom Player
2014-07-30 03:07:41 -------- d-----w- C:\Program Files (x86)\Zoom Player
2014-07-30 03:05:43 -------- d-----w- C:\Users\Nader\AppData\Roaming\MPC-HC
2014-07-30 03:04:08 -------- d-----w- C:\Users\Nader\AppData\Local\Mozilla
2014-07-30 02:53:50 -------- d-----w- C:\ProgramData\regid.1995-08.com.techsmith
2014-07-30 02:43:13 -------- d-----w- C:\Users\Nader\AppData\Local\assembly
2014-07-30 02:42:38 -------- d-----w- C:\Program Files (x86)\Common Files\TechSmith Shared
2014-07-30 02:42:21 -------- d-----w- C:\Users\Nader\AppData\Local\TechSmith
2014-07-30 02:41:56 -------- d-----w- C:\Program Files (x86)\FreeTime
2014-07-30 02:36:32 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server
2014-07-30 02:36:14 -------- d-----w- C:\ProgramData\regid.1991-06.com.microsoft
2014-07-30 02:35:59 -------- d-----w- C:\Windows\PCHEALTH
2014-07-30 02:35:59 -------- d-----w- C:\Program Files\Microsoft SQL Server
2014-07-30 02:35:54 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-07-30 02:35:54 699056 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-07-30 02:33:27 -------- d-----w- C:\Program Files\Microsoft Analysis Services
2014-07-30 02:33:27 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2014-07-30 02:33:03 -------- d-----w- C:\Users\Nader\AppData\Local\Microsoft Help
2014-07-30 02:30:19 97280 ----a-w- C:\bootsect.exe
2014-07-30 02:29:21 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-07-30 02:28:53 29704 ----a-w- C:\Windows\System32\nitrolocalmon9.dll
2014-07-30 02:28:53 17928 ----a-w- C:\Windows\System32\nitrolocalui9.dll
2014-07-30 02:28:37 -------- d-----w- C:\ProgramData\Nitro
2014-07-30 02:28:37 -------- d-----w- C:\Program Files\Common Files\Nitro
2014-07-30 02:28:37 -------- d-----w- C:\Program Files (x86)\Nitro
2014-07-30 02:28:37 -------- d-----w- C:\Program Files (x86)\Common Files\Nitro
2014-07-30 02:27:42 -------- d-----w- C:\Users\Nader\AppData\Local\Skype
2014-07-30 02:27:41 -------- d-----w- C:\Users\Nader\AppData\Roaming\Downloaded Installations
2014-07-30 02:27:23 -------- d-----r- C:\Program Files (x86)\Skype
2014-07-30 02:25:45 -------- d-----w- C:\Zyzoom_Forum_Tools
2014-07-30 02:24:21 -------- d-----w- C:\ProgramData\Oracle
2014-07-30 02:24:03 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-07-30 02:22:02 -------- d-----w- C:\Program Files (x86)\UltraISO
2014-07-30 02:22:02 -------- d-----w- C:\Program Files (x86)\Common Files\EZB Systems
2014-07-30 02:16:38 -------- d-----w- C:\Program Files (x86)\Palringo
2014-07-30 02:14:19 -------- d-----w- C:\ProgramData\Ad Muncher
2014-07-30 02:14:19 -------- d-----w- C:\Program Files (x86)\Ad Muncher
2014-07-30 02:14:15 -------- d-----w- C:\Users\Nader\AppData\Roaming\IDM
2014-07-30 02:14:15 -------- d-----w- C:\ProgramData\IDM
2014-07-30 02:14:12 -------- d-----w- C:\Users\Nader\AppData\Local\Google
2014-07-30 02:14:11 -------- d-----w- C:\Users\Nader\AppData\Roaming\DMCache
2014-07-30 02:14:01 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2014-07-30 02:09:20 -------- d-----w- C:\Program Files\CCleaner
2014-07-30 02:09:02 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-07-30 02:09:02 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-07-30 02:09:02 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-07-30 02:09:01 -------- d-----w- C:\ProgramData\Malwarebytes
2014-07-30 02:09:01 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-30 02:08:42 110176 ----a-w- C:\Windows\System32\klfphc.dll
2014-07-30 02:08:19 -------- d-----w- C:\Users\Nader\AppData\Local\Programs
2014-07-30 02:07:53 -------- d-----w- C:\Windows\ELAMBKUP
2014-07-30 02:07:49 -------- d-----w- C:\ProgramData\Kaspersky Lab
2014-07-30 02:07:49 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2014-07-30 02:07:40 243808 ----a-w- C:\Windows\System32\drivers\klhk.sys
2014-07-30 02:07:40 140352 ----a-w- C:\Windows\System32\drivers\klflt.sys
2014-07-30 02:01:45 -------- d-sh--w- C:\Windows\Installer
2014-07-30 01:53:01 0 ----a-w- C:\Windows\ativpsrm.bin
2014-07-23 11:02:18 180136 ----a-w- C:\Windows\System32\drivers\idmwfp.sys
.
==================== Find3M ====================
.
2014-07-23 07:52:00 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-07-01 12:30:36 4002008 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys
2014-06-30 06:05:02 2804952 ----a-w- C:\Windows\System32\RltkAPO64.dll
2014-06-20 09:45:28 949976 ----a-w- C:\Windows\System32\RCoInstII64.dll
2014-06-19 01:06:55 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-06-19 01:06:24 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-06-19 00:42:57 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-06-19 00:42:49 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-06-19 00:41:52 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-06-19 00:41:16 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-06-19 00:24:30 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-06-19 00:24:12 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-06-19 00:23:53 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-06-19 00:14:28 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-06-18 23:59:04 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-06-18 23:56:37 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-06-18 23:51:38 5721088 ----a-w- C:\Windows\System32\jscript9.dll
2014-06-18 23:38:40 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-06-18 23:37:23 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-06-18 23:36:35 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-06-18 23:35:55 62464 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-06-18 23:27:45 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-06-18 23:27:07 2040832 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-06-18 23:23:27 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-06-18 23:22:40 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-06-18 23:06:10 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-06-18 22:58:27 2266112 ----a-w- C:\Windows\System32\wininet.dll
2014-06-18 22:52:18 4254720 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-06-18 22:46:23 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-06-18 22:45:59 1964544 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-06-18 22:13:59 1791488 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-06-18 02:18:30 692736 ----a-w- C:\Windows\System32\osk.exe
2014-06-18 01:51:32 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2014-06-18 01:10:36 3157504 ----a-w- C:\Windows\System32\win32k.sys
2014-06-17 05:32:10 1286872 ----a-w- C:\Windows\System32\RTCOM64.dll
2014-06-11 03:44:24 1024728 ----a-w- C:\Windows\System32\RtkApi64.dll
2014-06-09 08:57:14 2860248 ----a-w- C:\Windows\System32\RtPgEx64.dll
2014-06-09 02:59:12 560328 ----a-w- C:\Windows\System32\AERTAC64.dll
2014-06-06 10:10:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-06-06 09:44:17 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-05-30 08:08:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-05-30 08:08:49 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-05-30 08:08:47 340992 ----a-w- C:\Windows\System32\schannel.dll
2014-05-30 08:08:41 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-05-30 08:08:41 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2014-05-30 08:08:36 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-05-30 08:08:31 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-05-30 07:52:51 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2014-05-30 07:52:49 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2014-05-30 07:52:45 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-05-30 07:52:41 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2014-05-30 07:52:40 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2014-05-30 07:52:36 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-05-30 07:52:30 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2014-05-30 06:45:52 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-05-16 18:00:00 127488 ----a-w- C:\Windows\System32\ff_vfw.dll
2014-05-16 11:03:30 156448 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys
2014-05-16 11:03:30 141600 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys
2014-05-16 11:01:18 204064 ----a-w- C:\Windows\System32\VBoxNetFltNobj.dll
.
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 30/07/2014 03:56:33 Õ
System Uptime: 13/08/2014 04:02:28 Õ (1 hours ago)
.
Motherboard: Gigabyte Technology Co., Ltd. | | P41-ES3G
Processor: Pentium® Dual-Core CPU E5300 @ 2.60GHz | Socket 775 | 2600/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 80 GiB total, 46.367 GiB free.
D: is FIXED (NTFS) - 258 GiB total, 157.322 GiB free.
E: is FIXED (NTFS) - 258 GiB total, 257.989 GiB free.
F: is CDROM ()
H: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP57: 13/08/2014 04:51:27 Õ - Installed Ma-Config.com (64 bits)
.
==== Installed Programs ======================
.
µTorrent
360 Total Security
3DP Chip v14.06.1
7-Zip 9.20
AC3Filter 2.6.0b
Ad Muncher v4.93.33707
Adobe Flash Player 14 ActiveX
Adobe Flash Player 14 Plugin
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Media Foundation Decoders
Bass Audio Decoder (remove only)
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
DCoder Image Source (remove only)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
DirectVobSub (remove only)
ffdshow v1.3.4530 [2014-02-09]
FFMPEG Core Files (remove only)
FormatFactory 3.3.5.0
Glary Utilities PRO 5.5
Google Chrome
Google Update Helper
Haali Media Splitter
Internet Download Manager
Java 7 Update 65
Java Auto Updater
K-Lite Mega Codec Pack 10.5.0
Kaspersky Internet Security
LAV Filters 0.62.0
Ma-Config.com (64 bits)
MadVR (remove only)
Malwarebytes Anti-Malware version 2.0.2.1012
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (ÇáÚÑÈíÉ)
Microsoft .NET Framework 4.5.1 (ARA)
Microsoft Access MUI (Arabic) 2013
Microsoft DCF MUI (Arabic) 2013
Microsoft Excel MUI (Arabic) 2013
Microsoft Groove MUI (Arabic) 2013
Microsoft InfoPath MUI (Arabic) 2013
Microsoft Lync MUI (Arabic) 2013
Microsoft Office 32-bit Components 2013
Microsoft Office OSM MUI (Arabic) 2013
Microsoft Office OSM UX MUI (Arabic) 2013
Microsoft Office Professional Plus 2013
Microsoft Office Proofing (Arabic) 2013
Microsoft Office Proofing Tools 2013 - ÇááÛÉ ÇáÚÑÈíÉ
Microsoft Office Proofing Tools 2013 - English
Microsoft Office Shared 32-bit MUI (Arabic) 2013
Microsoft Office Shared MUI (Arabic) 2013
Microsoft OneNote MUI (Arabic) 2013
Microsoft Outlook MUI (Arabic) 2013
Microsoft PowerPoint MUI (Arabic) 2013
Microsoft Publisher MUI (Arabic) 2013
Microsoft Silverlight
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Word MUI (Arabic) 2013
Mozilla Firefox 31.0 (x86 en-US)
Mozilla Maintenance Service
Nitro Pro 9
Oracle VM VirtualBox 4.3.12
Outils de vérification linguistique 2013 de Microsoft Office - Français
Palringo
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft Lync 2013 (KB2881013) 64-Bit Edition
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition
Skype™ 6.16
Snagit 12
The KMPlayer (remove only)
UltraISO Premium V9.61
Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2850074) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition
Update for Microsoft Office 2013 (KB2826040) 64-Bit Edition
Update for Microsoft Office 2013 (KB2837644) 64-Bit Edition
Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition
Update for Microsoft Office 2013 (KB2880457) 64-Bit Edition
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition
Update for Microsoft Office 2013 (KB2880464) 64-Bit Edition
Update for Microsoft Office 2013 (KB2880478) 64-Bit Edition
Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition
Update for Microsoft Office 2013 (KB2881074) 64-Bit Edition
Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition
Update for Microsoft Office 2013 (KB2881086) 64-Bit Edition
Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition
Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2881075) 64-Bit Edition
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition
Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition
Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition
ViewSonic Monitor Drivers x64
Winamp
WinRAR 5.01 (64-bit)
Zoom Player (remove only)
.
==== Event Viewer Messages From Past Week ========
.
11/08/2014 09:21:20 ã, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
11/08/2014 09:21:19 ã, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
11/08/2014 09:21:19 ã, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
11/08/2014 09:21:18 ã, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
11/08/2014 09:21:18 ã, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
11/08/2014 08:40:38 Õ, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
10/08/2014 11:31:41 ã, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the QHActiveDefense service.
10/08/2014 02:50:47 ã, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied.
09/08/2014 11:58:55 Õ, Error: EventLog [6008] - The previous system shutdown at 11:55:14 Õ on þ09/þ08/þ2014 was unexpected.
09/08/2014 10:41:06 Õ, Error: EventLog [6008] - The previous system shutdown at 09:23:24 Õ on þ09/þ08/þ2014 was unexpected.
07/08/2014 09:22:35 ã, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
06/08/2014 12:08:51 Õ, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0902: Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB2909210).
.
==== End Of File ===========================

============= FINISH: 5:55:13.91 ===============

Attached Files


Edited by Oh My!, 14 August 2014 - 08:44 AM.
Posted logs


#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,142 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:08:13 AM

Posted 14 August 2014 - 08:39 AM

Greetings nader28 and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that.

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far.

Those settings look fine. Are you having any issues with your computer?

Edited by Oh My!, 14 August 2014 - 08:42 AM.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,142 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:08:13 AM

Posted 17 August 2014 - 08:56 AM

Greetings,

===================================================

3 Day Bump

It has been more than 3 days since my last post.

  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.


Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,142 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:08:13 AM

Posted 19 August 2014 - 10:21 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users