Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

gameharbor.org pop-ups are killing me


  • This topic is locked This topic is locked
4 replies to this topic

#1 pieterT

pieterT

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:53 PM

Posted 13 September 2014 - 07:29 AM

I have this problem ; everytime i start my pc , this website (gameharbor.org) pops up , and it's really getting on my nerves!

 

so i downloaded FRST for 64-bits , and after the scan , i got this :

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by pieter (administrator) on PIETERACER on 13-09-2014 12:42:49
Running from C:\Users\pieter\Downloads
Platform: Windows 8.1 (X64) OS Language: Nederlands (Nederland)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Pokki) C:\Users\pieter\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe
(Spotify Ltd) C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
() C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TODO: <Company name>) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(TODO: <Company name>) C:\Program Files\Acer\User Experience Improvement Program\Plugin\AppMonitor\AppMonitorPlugIn.exe
(Spotify Ltd) C:\Users\pieter\AppData\Roaming\Spotify\spotify.exe
() C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2350880 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-08-25] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2640408 2014-08-25] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-04-02] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-399605320-4244599798-3228410714-1002\...\Run: [Pokki] => "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
HKU\S-1-5-21-399605320-4244599798-3228410714-1002\...\Run: [Spotify Web Helper] => C:\Users\pieter\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1245752 2014-08-22] (Spotify Ltd)
HKU\S-1-5-21-399605320-4244599798-3228410714-1002\...\Run: [CMD] => cmd.exe /c start http://extendedunlimited.org && exit <===== ATTENTION
ShellIconOverlayIdentifiers: ACloudSyncedRF -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} =>  No File
ShellIconOverlayIdentifiers: ACloudSyncedSF -> {5D5F18B7-D59B-4B18-A3E9-0A4BDCCCB699} =>  No File
ShellIconOverlayIdentifiers: ACloudSyncing -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} =>  No File
ShellIconOverlayIdentifiers: ACloudToBeSynced -> {307523FA-DDC0-4068-983F-2A6B34627744} =>  No File
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM - DefaultScope {F561BF75-67C9-4081-AB44-1654736BA6CF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {F561BF75-67C9-4081-AB44-1654736BA6CF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKLM-x32 - DefaultScope {F561BF75-67C9-4081-AB44-1654736BA6CF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {F561BF75-67C9-4081-AB44-1654736BA6CF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {F561BF75-67C9-4081-AB44-1654736BA6CF} URL = 
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={69A130A8-FB7A-4C2F-8AFF-5BB8DCE4609E}&mid=c79620030e5847d2a1dfb14bd4f26eb0-8751736ec4b28879cd5ccb164ec00064b2738afc&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-08-01 06:38:25&v=18.1.8.643&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {F561BF75-67C9-4081-AB44-1654736BA6CF} URL = 
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\18.1.9.799\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.9.799\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 195.130.130.129 195.130.131.129
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.9\\npsitesafety.dll No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher -> C:\Users\pieter\AppData\Local\Roblox\Versions\version-7965aa4926cc425a\\NPRobloxProxy.dll ( ROBLOX Corporation)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://mysearch.avg.com?cid={69A130A8-FB7A-4C2F-8AFF-5BB8DCE4609E}&mid=c79620030e5847d2a1dfb14bd4f26eb0-8751736ec4b28879cd5ccb164ec00064b2738afc&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-08-01 06:38:25&v=18.1.8.643&pid=safeguard&sg=&sap=hp
CHR StartupUrls: Default -> "hxxp://mysearch.avg.com?cid={69A130A8-FB7A-4C2F-8AFF-5BB8DCE4609E}&mid=c79620030e5847d2a1dfb14bd4f26eb0-8751736ec4b28879cd5ccb164ec00064b2738afc&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-08-01 06:38:25&v=18.1.8.643&pid=safeguard&sg=&sap=hp"
CHR DefaultSearchKeyword: Default -> mysearch.avg.com
CHR DefaultSearchURL: Default -> http://mysearch.avg.com/search?cid={69A130A8-FB7A-4C2F-8AFF-5BB8DCE4609E}&mid=c79620030e5847d2a1dfb14bd4f26eb0-8751736ec4b28879cd5ccb164ec00064b2738afc&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-08-01 06:38:25&v=18.1.8.643&pid=safeguard&sg=&sap=dsp&q={searchTerms}
CHR DefaultSuggestURL: Default -> http://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\pieter\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Users\pieter\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-13]
CHR Extension: (Google Wallet) - C:\Users\pieter\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-13]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-04-02] (Windows ® Win 7 DDK provider)
S2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1417160 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3058944 2014-08-06] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573544 2014-03-21] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>) [File not signed]
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [459496 2014-03-17] (Acer Incorporate)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457960 2014-03-22] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-03-22] (Acer Incorporate)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-25] (acer)
R2 vToolbarUpdater18.1.9; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184 2014-08-12] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-07] (Qualcomm Atheros Communications, Inc.)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-12] (AVG Technologies)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [270104 2014-06-30] (AVG Technologies CZ, s.r.o.)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-04-02] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-10-01] (Synaptics Incorporated)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-13 12:42 - 2014-09-13 12:43 - 00021763 _____ () C:\Users\pieter\Downloads\FRST.txt
2014-09-13 12:42 - 2014-09-13 12:42 - 02105856 _____ (Farbar) C:\Users\pieter\Downloads\FRST64.exe
2014-09-13 12:42 - 2014-09-13 12:42 - 00000000 ____D () C:\FRST
2014-09-13 12:26 - 2014-08-16 04:40 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-13 12:26 - 2014-08-16 04:04 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-13 12:26 - 2014-08-16 04:00 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-13 12:26 - 2014-08-16 04:00 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-13 12:26 - 2014-08-16 03:56 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-13 12:26 - 2014-08-16 03:54 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-13 12:26 - 2014-08-16 03:45 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-13 12:26 - 2014-08-16 03:43 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-13 12:26 - 2014-08-16 03:32 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-13 12:26 - 2014-08-16 03:25 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-13 12:26 - 2014-08-16 03:22 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-13 12:26 - 2014-08-16 03:20 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-13 12:26 - 2014-08-16 03:19 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-13 12:26 - 2014-08-16 03:18 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-13 12:26 - 2014-08-16 03:18 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-13 12:26 - 2014-08-16 03:11 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-13 12:26 - 2014-08-16 03:06 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-13 12:26 - 2014-08-16 03:05 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-13 12:26 - 2014-08-16 03:05 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-13 12:26 - 2014-08-16 03:03 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-13 12:26 - 2014-08-16 03:03 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-13 12:26 - 2014-08-16 02:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-13 12:26 - 2014-08-16 02:56 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-13 12:26 - 2014-08-16 02:53 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-13 12:26 - 2014-08-16 02:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-13 12:26 - 2014-08-16 02:53 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-13 12:26 - 2014-08-16 02:51 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-13 12:26 - 2014-08-16 02:45 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-13 12:26 - 2014-08-16 02:44 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-13 12:26 - 2014-08-16 02:44 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-13 12:26 - 2014-08-16 02:34 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-13 12:26 - 2014-08-16 02:20 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-13 12:26 - 2014-08-16 02:18 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-13 12:26 - 2014-08-16 02:14 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-13 12:26 - 2014-08-16 02:12 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-13 00:01 - 2014-09-13 00:01 - 516800168 _____ () C:\Windows\MEMORY.DMP
2014-09-13 00:01 - 2014-09-13 00:01 - 00672760 _____ () C:\Windows\Minidump\091314-55921-01.dmp
2014-09-13 00:01 - 2014-09-13 00:01 - 00000000 ____D () C:\Windows\Minidump
2014-09-12 23:21 - 2014-09-12 23:21 - 00642712 _____ (Microsoft Corporation) C:\Users\pieter\Downloads\gfwlivesetup.exe
2014-09-12 23:20 - 2014-09-12 23:20 - 00000829 _____ () C:\Users\pieter\Desktop\Far Cry 3.lnk
2014-09-12 23:20 - 2014-09-12 23:20 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Far Cry 3
2014-09-12 18:59 - 2014-09-12 18:59 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-09-12 18:58 - 2014-09-12 18:58 - 00001629 _____ () C:\Users\pieter\Desktop\Play Crysis 3.lnk
2014-09-10 15:32 - 2014-09-05 04:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-09-10 15:32 - 2014-09-05 04:31 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 15:32 - 2014-09-05 02:48 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 15:31 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2014-09-10 15:31 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2014-09-10 15:28 - 2014-08-02 02:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-09-07 11:28 - 2014-09-07 11:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 3
2014-09-06 12:18 - 2014-09-06 12:18 - 00001816 _____ () C:\Users\pieter\Desktop\Play The Elder Scrolls V Skyrim.lnk
2014-09-02 07:31 - 2014-09-02 07:31 - 00000611 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saints Row IV.lnk
2014-08-29 00:36 - 2014-08-29 00:36 - 00000222 _____ () C:\Users\pieter\Desktop\Call of Duty Black Ops II - Multiplayer.url
2014-08-28 23:49 - 2014-08-28 23:50 - 05911327 _____ () C:\Users\pieter\Downloads\Windows6.1-KB2670838-x86.msu
2014-08-28 23:49 - 2014-08-28 23:49 - 11840839 _____ () C:\Users\pieter\Downloads\Windows6.1-KB2670838-x64.msu
2014-08-28 23:11 - 2014-08-23 02:42 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 09:15 - 2014-08-28 09:16 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-28 09:15 - 2014-08-28 09:15 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-28 09:15 - 2014-08-28 09:15 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-28 09:15 - 2014-08-28 09:15 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-28 09:15 - 2014-08-28 09:15 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-28 09:15 - 2014-08-28 09:15 - 00000000 ____D () C:\ProgramData\Sun
2014-08-28 09:15 - 2014-08-28 09:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-28 09:15 - 2014-08-28 09:15 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-28 09:10 - 2014-08-28 09:10 - 00918440 _____ (Oracle Corporation) C:\Users\pieter\Downloads\chromeinstall-7u67.exe
2014-08-28 09:09 - 2014-08-28 18:46 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\.minecraft
2014-08-28 09:09 - 2014-08-28 09:09 - 00002185 _____ () C:\Users\pieter\Desktop\Minecraft.lnk
2014-08-28 09:09 - 2014-08-28 09:09 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-08-28 09:04 - 2014-08-28 09:04 - 00442867 ____T () C:\Users\pieter\Downloads\Iggy Azalea - Fancy (Yellow Claw Trap Remix).mp3.asd
2014-08-25 21:38 - 2014-08-25 21:38 - 00046587 _____ () C:\Users\pieter\Downloads\The.Purge.2013.720p.BluRay.x264.YIFY58307.srt
2014-08-25 15:01 - 2014-08-25 15:01 - 00032888 _____ () C:\Users\pieter\Downloads\59a53c4f947217db09222920df60e454cf5ec943.zip
2014-08-24 21:21 - 2014-08-24 21:21 - 00022402 _____ () C:\Users\pieter\Downloads\harry-potter-and-the-deathly-hallows-part-2-dutch-yify-8980.zip
2014-08-24 20:33 - 2014-08-24 20:33 - 00022569 _____ () C:\Users\pieter\Downloads\harry-potter-and-the-deathly-hallows-part-2_dutch-493708.zip
2014-08-24 12:40 - 2014-08-24 12:40 - 00042473 _____ () C:\Users\pieter\Downloads\harry-potter-and-the-deathly-hallows-part-1_english-424483.zip
2014-08-22 14:10 - 2014-08-22 14:10 - 00007181 _____ () C:\Users\pieter\Desktop\ableton.auz
2014-08-22 14:05 - 2014-08-28 09:03 - 00000000 ____D () C:\ProgramData\Ableton
2014-08-22 14:05 - 2014-08-22 14:05 - 00000877 _____ () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton .lnk
2014-08-22 13:57 - 2014-08-22 13:57 - 00000000 ____D () C:\Users\pieter\Documents\Ableton
2014-08-22 13:52 - 2014-08-22 13:58 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Ableton
2014-08-22 13:52 - 2014-08-22 13:52 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-08-22 13:46 - 2014-08-22 14:09 - 00000000 ____D () C:\Users\pieter\Desktop\Patch
2014-08-22 13:45 - 2014-08-22 13:45 - 00000901 _____ () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Suite.lnk
2014-08-22 13:34 - 2014-08-22 13:35 - 00000000 ____D () C:\Users\pieter\Downloads\Ableton Live 9 Suite 9.1.0 (Win 64 bit) (patch IO) [ChingLiu]
2014-08-22 13:30 - 2014-08-22 13:30 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Watch Dogs
2014-08-19 15:07 - 2014-08-19 15:07 - 00000000 ____D () C:\ProgramData\Origin
2014-08-19 11:46 - 2014-08-19 11:52 - 00000000 ____D () C:\Users\pieter\Documents\DayZ
2014-08-19 11:46 - 2014-08-19 11:52 - 00000000 ____D () C:\Users\pieter\AppData\Local\DayZ
2014-08-19 11:17 - 2014-08-19 11:17 - 00000222 _____ () C:\Users\pieter\Desktop\DayZ.url
2014-08-18 15:45 - 2014-08-18 15:45 - 00000222 _____ () C:\Users\pieter\Desktop\Unturned.url
2014-08-18 14:29 - 2014-09-10 16:02 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Skype
2014-08-18 14:29 - 2014-08-18 14:30 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-18 14:29 - 2014-08-18 14:29 - 00002529 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-08-18 14:29 - 2014-08-18 14:29 - 00000000 ____D () C:\Users\pieter\AppData\Local\Skype
2014-08-18 14:29 - 2014-08-18 14:29 - 00000000 ____D () C:\ProgramData\Skype
2014-08-18 14:29 - 2014-08-18 14:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-18 14:28 - 2014-08-18 14:28 - 35594856 _____ (Skype Technologies S.A.) C:\Users\pieter\Downloads\SkypeSetupFull.exe
2014-08-18 06:58 - 2014-08-18 06:58 - 00000220 _____ () C:\Users\pieter\Desktop\Garry's Mod.url
2014-08-17 12:32 - 2014-08-17 12:32 - 00033153 _____ () C:\Users\pieter\Downloads\Harry.Potter.and.the.Half.Blood.Prince.2009.REPACK.1080p.BluRay.x264-METiS.rar
2014-08-16 15:50 - 2014-08-16 15:50 - 00000000 ____D () C:\Users\pieter\AppData\Local\SCE
2014-08-16 13:44 - 2014-09-02 22:06 - 00706016 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-16 13:44 - 2014-09-02 22:06 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-15 14:44 - 2014-08-15 14:44 - 00000000 ____D () C:\Users\pieter\Documents\Rockstar Games
2014-08-15 14:39 - 2014-08-15 14:39 - 00000221 _____ () C:\Users\pieter\Desktop\Grand Theft Auto IV.url
2014-08-15 10:17 - 2014-08-15 10:17 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-08-15 10:17 - 2014-08-15 10:17 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-08-14 16:41 - 2014-08-22 08:23 - 00000000 ____D () C:\Users\pieter\Desktop\games
2014-08-14 15:57 - 2014-08-14 15:57 - 00000000 ____D () C:\Users\pieter\AppData\Local\SKIDROW
2014-08-14 15:56 - 2014-08-14 15:56 - 11915444 _____ () C:\Users\pieter\Downloads\SR3.Up4.LAN.Fix-Royalgamer06.rar
2014-08-14 15:51 - 2014-08-14 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\saints row the third
2014-08-14 15:34 - 2014-09-13 12:08 - 00000940 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-14 15:34 - 2014-09-10 16:08 - 00003828 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-14 15:32 - 2014-08-14 15:35 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-08-14 15:11 - 2014-08-14 16:14 - 00000000 ____D () C:\ProgramData\Tunngle
2014-08-14 15:11 - 2014-08-14 15:46 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Tunngle
2014-08-14 15:11 - 2014-08-14 15:13 - 00000000 ____D () C:\Program Files (x86)\Tunngle
2014-08-14 15:11 - 2014-08-14 15:11 - 00001007 _____ () C:\Users\Public\Desktop\Tunngle beta.lnk
2014-08-14 15:11 - 2014-08-14 15:11 - 00000000 ____D () C:\Users\Public\Documents\Tunngle
2014-08-14 15:11 - 2014-08-14 15:11 - 00000000 ____D () C:\Users\pieter\Documents\Tunngle
2014-08-14 15:11 - 2014-08-14 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2014-08-14 15:11 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2014-08-14 15:10 - 2014-08-14 15:10 - 04055968 _____ (Tunngle.net GmbH ) C:\Users\pieter\Downloads\Tunngle_Setup_v4.5.1.4b.exe
2014-08-14 14:15 - 2014-08-14 14:15 - 00680182 _____ () C:\Users\pieter\Downloads\Black Ops II Zombies Trainer v4.0_mpgh.net.rar
2014-08-14 14:15 - 2014-02-08 06:33 - 02216960 _____ () C:\Users\pieter\Desktop\Black Ops II Zombies Trainer v4.0.exe
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-13 12:43 - 2014-09-13 12:42 - 00021763 _____ () C:\Users\pieter\Downloads\FRST.txt
2014-09-13 12:42 - 2014-09-13 12:42 - 02105856 _____ (Farbar) C:\Users\pieter\Downloads\FRST64.exe
2014-09-13 12:42 - 2014-09-13 12:42 - 00000000 ____D () C:\FRST
2014-09-13 12:39 - 2014-07-29 12:14 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Spotify
2014-09-13 12:36 - 2014-07-29 12:14 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-399605320-4244599798-3228410714-1002
2014-09-13 12:32 - 2014-07-29 12:11 - 00002227 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-13 12:32 - 2014-07-29 12:11 - 00001074 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-13 12:32 - 2014-07-29 12:09 - 00000000 ___DO () C:\Users\pieter\OneDrive
2014-09-13 12:30 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-13 12:29 - 2014-08-03 11:24 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-13 12:28 - 2014-06-04 00:31 - 01079346 _____ () C:\Windows\WindowsUpdate.log
2014-09-13 12:28 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-09-13 12:27 - 2014-07-30 13:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-13 12:27 - 2014-07-30 13:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-13 12:27 - 2014-07-30 13:34 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-13 12:27 - 2014-07-30 13:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-13 12:26 - 2014-08-03 11:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-13 12:26 - 2014-07-30 13:34 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-13 12:26 - 2014-07-30 13:34 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-13 12:26 - 2014-07-30 13:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-13 12:26 - 2014-07-30 13:34 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-13 12:26 - 2014-07-30 13:34 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-13 12:24 - 2014-08-03 11:33 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-13 12:21 - 2014-07-29 11:58 - 00000000 ____D () C:\Users\pieter\AppData\Local\Pokki
2014-09-13 12:16 - 2014-07-29 12:11 - 00001078 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-13 12:08 - 2014-08-14 15:34 - 00000940 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-13 12:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-09-13 11:53 - 2014-07-31 02:28 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-13 11:51 - 2014-07-29 11:58 - 00000000 ____D () C:\Users\pieter
2014-09-13 11:51 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-09-13 09:58 - 2014-07-29 12:11 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-09-13 07:43 - 2014-07-29 12:14 - 00000000 ____D () C:\Users\pieter\AppData\Local\Spotify
2014-09-13 07:41 - 2014-07-29 12:10 - 00003970 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E1F542EE-4895-452D-A432-7E823AED8C04}
2014-09-13 07:40 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-09-13 07:37 - 2014-07-29 12:07 - 00000000 _____ () C:\Windows\system32\newflow.dat
2014-09-13 00:01 - 2014-09-13 00:01 - 516800168 _____ () C:\Windows\MEMORY.DMP
2014-09-13 00:01 - 2014-09-13 00:01 - 00672760 _____ () C:\Windows\Minidump\091314-55921-01.dmp
2014-09-13 00:01 - 2014-09-13 00:01 - 00000000 ____D () C:\Windows\Minidump
2014-09-12 23:55 - 2014-04-24 08:43 - 00016878 _____ () C:\Windows\PFRO.log
2014-09-12 23:21 - 2014-09-12 23:21 - 00642712 _____ (Microsoft Corporation) C:\Users\pieter\Downloads\gfwlivesetup.exe
2014-09-12 23:20 - 2014-09-12 23:20 - 00000829 _____ () C:\Users\pieter\Desktop\Far Cry 3.lnk
2014-09-12 23:20 - 2014-09-12 23:20 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Far Cry 3
2014-09-12 23:20 - 2014-07-31 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-09-12 23:20 - 2014-07-30 13:09 - 00000000 ____D () C:\Users\pieter\Documents\My Games
2014-09-12 23:20 - 2014-07-30 12:48 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-12 23:17 - 2014-07-29 12:59 - 00099622 _____ () C:\Windows\DirectX.log
2014-09-12 23:16 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-09-12 23:01 - 2014-07-29 13:42 - 00000000 ____D () C:\games
2014-09-12 23:00 - 2014-07-30 13:18 - 00000000 ____D () C:\ProgramData\Orbit
2014-09-12 21:02 - 2014-07-29 12:26 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\BitTorrent
2014-09-12 18:59 - 2014-09-12 18:59 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-09-12 18:58 - 2014-09-12 18:58 - 00001629 _____ () C:\Users\pieter\Desktop\Play Crysis 3.lnk
2014-09-11 23:22 - 2014-07-29 13:38 - 00000000 ____D () C:\Users\pieter\AppData\Local\CrashDumps
2014-09-10 16:08 - 2014-08-14 15:34 - 00003828 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-10 16:02 - 2014-08-18 14:29 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Skype
2014-09-07 11:28 - 2014-09-07 11:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 3
2014-09-06 15:14 - 2014-07-30 12:32 - 00030720 ___SH () C:\Users\pieter\Downloads\Thumbs.db
2014-09-06 12:18 - 2014-09-06 12:18 - 00001816 _____ () C:\Users\pieter\Desktop\Play The Elder Scrolls V Skyrim.lnk
2014-09-05 04:36 - 2014-09-10 15:32 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-09-05 04:31 - 2014-09-10 15:32 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-05 02:48 - 2014-09-10 15:32 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-03 15:41 - 2014-07-31 02:33 - 00000995 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-09-03 15:41 - 2014-07-31 02:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-09-02 22:06 - 2014-08-16 13:44 - 00706016 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-02 22:06 - 2014-08-16 13:44 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-02 07:31 - 2014-09-02 07:31 - 00000611 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saints Row IV.lnk
2014-09-01 07:40 - 2014-07-29 12:17 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-09-01 06:34 - 2014-07-29 12:06 - 00002335 _____ () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-08-29 09:21 - 2014-07-29 12:07 - 00002164 _____ () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
2014-08-29 09:17 - 2013-08-22 16:44 - 00346992 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-29 00:36 - 2014-08-29 00:36 - 00000222 _____ () C:\Users\pieter\Desktop\Call of Duty Black Ops II - Multiplayer.url
2014-08-28 23:50 - 2014-08-28 23:49 - 05911327 _____ () C:\Users\pieter\Downloads\Windows6.1-KB2670838-x86.msu
2014-08-28 23:49 - 2014-08-28 23:49 - 11840839 _____ () C:\Users\pieter\Downloads\Windows6.1-KB2670838-x64.msu
2014-08-28 18:46 - 2014-08-28 09:09 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\.minecraft
2014-08-28 09:16 - 2014-08-28 09:15 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-28 09:15 - 2014-08-28 09:15 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-28 09:15 - 2014-08-28 09:15 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-28 09:15 - 2014-08-28 09:15 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-28 09:15 - 2014-08-28 09:15 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-28 09:15 - 2014-08-28 09:15 - 00000000 ____D () C:\ProgramData\Sun
2014-08-28 09:15 - 2014-08-28 09:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-28 09:15 - 2014-08-28 09:15 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-28 09:10 - 2014-08-28 09:10 - 00918440 _____ (Oracle Corporation) C:\Users\pieter\Downloads\chromeinstall-7u67.exe
2014-08-28 09:09 - 2014-08-28 09:09 - 00002185 _____ () C:\Users\pieter\Desktop\Minecraft.lnk
2014-08-28 09:09 - 2014-08-28 09:09 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-08-28 09:04 - 2014-08-28 09:04 - 00442867 ____T () C:\Users\pieter\Downloads\Iggy Azalea - Fancy (Yellow Claw Trap Remix).mp3.asd
2014-08-28 09:03 - 2014-08-22 14:05 - 00000000 ____D () C:\ProgramData\Ableton
2014-08-25 23:03 - 2014-08-02 12:47 - 00000000 ____D () C:\films
2014-08-25 23:02 - 2014-08-08 17:03 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\vlc
2014-08-25 21:38 - 2014-08-25 21:38 - 00046587 _____ () C:\Users\pieter\Downloads\The.Purge.2013.720p.BluRay.x264.YIFY58307.srt
2014-08-25 15:01 - 2014-08-25 15:01 - 00032888 _____ () C:\Users\pieter\Downloads\59a53c4f947217db09222920df60e454cf5ec943.zip
2014-08-25 13:09 - 2014-08-01 06:37 - 00000000 ____D () C:\Program Files\AVG SafeGuard toolbar
2014-08-25 13:08 - 2014-08-01 06:37 - 00000000 ____D () C:\Program Files (x86)\AVG SafeGuard toolbar
2014-08-24 21:21 - 2014-08-24 21:21 - 00022402 _____ () C:\Users\pieter\Downloads\harry-potter-and-the-deathly-hallows-part-2-dutch-yify-8980.zip
2014-08-24 20:33 - 2014-08-24 20:33 - 00022569 _____ () C:\Users\pieter\Downloads\harry-potter-and-the-deathly-hallows-part-2_dutch-493708.zip
2014-08-24 12:40 - 2014-08-24 12:40 - 00042473 _____ () C:\Users\pieter\Downloads\harry-potter-and-the-deathly-hallows-part-1_english-424483.zip
2014-08-23 02:42 - 2014-08-28 23:11 - 04148224 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 14:10 - 2014-08-22 14:10 - 00007181 _____ () C:\Users\pieter\Desktop\ableton.auz
2014-08-22 14:09 - 2014-08-22 13:46 - 00000000 ____D () C:\Users\pieter\Desktop\Patch
2014-08-22 14:05 - 2014-08-22 14:05 - 00000877 _____ () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton .lnk
2014-08-22 13:58 - 2014-08-22 13:52 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Ableton
2014-08-22 13:57 - 2014-08-22 13:57 - 00000000 ____D () C:\Users\pieter\Documents\Ableton
2014-08-22 13:52 - 2014-08-22 13:52 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-08-22 13:45 - 2014-08-22 13:45 - 00000901 _____ () C:\Users\pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Suite.lnk
2014-08-22 13:35 - 2014-08-22 13:34 - 00000000 ____D () C:\Users\pieter\Downloads\Ableton Live 9 Suite 9.1.0 (Win 64 bit) (patch IO) [ChingLiu]
2014-08-22 13:30 - 2014-08-22 13:30 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Watch Dogs
2014-08-22 08:23 - 2014-08-14 16:41 - 00000000 ____D () C:\Users\pieter\Desktop\games
2014-08-19 15:07 - 2014-08-19 15:07 - 00000000 ____D () C:\ProgramData\Origin
2014-08-19 11:52 - 2014-08-19 11:46 - 00000000 ____D () C:\Users\pieter\Documents\DayZ
2014-08-19 11:52 - 2014-08-19 11:46 - 00000000 ____D () C:\Users\pieter\AppData\Local\DayZ
2014-08-19 11:17 - 2014-08-19 11:17 - 00000222 _____ () C:\Users\pieter\Desktop\DayZ.url
2014-08-18 15:45 - 2014-08-18 15:45 - 00000222 _____ () C:\Users\pieter\Desktop\Unturned.url
2014-08-18 14:30 - 2014-08-18 14:29 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-18 14:29 - 2014-08-18 14:29 - 00002529 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-08-18 14:29 - 2014-08-18 14:29 - 00000000 ____D () C:\Users\pieter\AppData\Local\Skype
2014-08-18 14:29 - 2014-08-18 14:29 - 00000000 ____D () C:\ProgramData\Skype
2014-08-18 14:29 - 2014-08-18 14:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-18 14:28 - 2014-08-18 14:28 - 35594856 _____ (Skype Technologies S.A.) C:\Users\pieter\Downloads\SkypeSetupFull.exe
2014-08-18 06:58 - 2014-08-18 06:58 - 00000220 _____ () C:\Users\pieter\Desktop\Garry's Mod.url
2014-08-17 23:44 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2014-08-17 12:32 - 2014-08-17 12:32 - 00033153 _____ () C:\Users\pieter\Downloads\Harry.Potter.and.the.Half.Blood.Prince.2009.REPACK.1080p.BluRay.x264-METiS.rar
2014-08-16 15:50 - 2014-08-16 15:50 - 00000000 ____D () C:\Users\pieter\AppData\Local\SCE
2014-08-16 13:50 - 2014-06-04 01:10 - 00806704 _____ () C:\Windows\system32\perfh013.dat
2014-08-16 13:50 - 2014-06-04 01:10 - 00162170 _____ () C:\Windows\system32\perfc013.dat
2014-08-16 13:50 - 2014-04-24 08:45 - 01823174 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-16 13:40 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData
2014-08-16 13:40 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-16 13:40 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-08-16 13:40 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\FileManager
2014-08-16 13:40 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Camera
2014-08-16 04:40 - 2014-09-13 12:26 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-16 04:04 - 2014-09-13 12:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-16 04:00 - 2014-09-13 12:26 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-16 04:00 - 2014-09-13 12:26 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-16 03:56 - 2014-09-13 12:26 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-16 03:54 - 2014-09-13 12:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-16 03:45 - 2014-09-13 12:26 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-16 03:43 - 2014-09-13 12:26 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-16 03:32 - 2014-09-13 12:26 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-16 03:25 - 2014-09-13 12:26 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-16 03:22 - 2014-09-13 12:26 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-16 03:20 - 2014-09-13 12:26 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-16 03:19 - 2014-09-13 12:26 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-16 03:18 - 2014-09-13 12:26 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-16 03:18 - 2014-09-13 12:26 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-16 03:11 - 2014-09-13 12:26 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-16 03:06 - 2014-09-13 12:26 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-16 03:05 - 2014-09-13 12:26 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-16 03:05 - 2014-09-13 12:26 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-16 03:03 - 2014-09-13 12:26 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-16 03:03 - 2014-09-13 12:26 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-16 02:58 - 2014-09-13 12:26 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-16 02:56 - 2014-09-13 12:26 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-16 02:53 - 2014-09-13 12:26 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-16 02:53 - 2014-09-13 12:26 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-16 02:53 - 2014-09-13 12:26 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-16 02:51 - 2014-09-13 12:26 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-16 02:45 - 2014-09-13 12:26 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-16 02:44 - 2014-09-13 12:26 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-16 02:44 - 2014-09-13 12:26 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-16 02:34 - 2014-09-13 12:26 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-16 02:20 - 2014-09-13 12:26 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-16 02:18 - 2014-09-13 12:26 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-16 02:14 - 2014-09-13 12:26 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-16 02:12 - 2014-09-13 12:26 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-15 14:44 - 2014-08-15 14:44 - 00000000 ____D () C:\Users\pieter\Documents\Rockstar Games
2014-08-15 14:39 - 2014-08-15 14:39 - 00000221 _____ () C:\Users\pieter\Desktop\Grand Theft Auto IV.url
2014-08-15 10:17 - 2014-08-15 10:17 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-08-15 10:17 - 2014-08-15 10:17 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-08-14 16:14 - 2014-08-14 15:11 - 00000000 ____D () C:\ProgramData\Tunngle
2014-08-14 15:57 - 2014-08-14 15:57 - 00000000 ____D () C:\Users\pieter\AppData\Local\SKIDROW
2014-08-14 15:56 - 2014-08-14 15:56 - 11915444 _____ () C:\Users\pieter\Downloads\SR3.Up4.LAN.Fix-Royalgamer06.rar
2014-08-14 15:51 - 2014-08-14 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\saints row the third
2014-08-14 15:46 - 2014-08-14 15:11 - 00000000 ____D () C:\Users\pieter\AppData\Roaming\Tunngle
2014-08-14 15:35 - 2014-08-14 15:32 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-08-14 15:13 - 2014-08-14 15:11 - 00000000 ____D () C:\Program Files (x86)\Tunngle
2014-08-14 15:11 - 2014-08-14 15:11 - 00001007 _____ () C:\Users\Public\Desktop\Tunngle beta.lnk
2014-08-14 15:11 - 2014-08-14 15:11 - 00000000 ____D () C:\Users\Public\Documents\Tunngle
2014-08-14 15:11 - 2014-08-14 15:11 - 00000000 ____D () C:\Users\pieter\Documents\Tunngle
2014-08-14 15:11 - 2014-08-14 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2014-08-14 15:10 - 2014-08-14 15:10 - 04055968 _____ (Tunngle.net GmbH ) C:\Users\pieter\Downloads\Tunngle_Setup_v4.5.1.4b.exe
2014-08-14 14:15 - 2014-08-14 14:15 - 00680182 _____ () C:\Users\pieter\Downloads\Black Ops II Zombies Trainer v4.0_mpgh.net.rar
 
Some content of TEMP:
====================
C:\Users\pieter\AppData\Local\Temp\oct98AD.tmp.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-09-13 02:19
 
==================== End Of Log ===========================
 
i have no idea what i have to do next , i'd greatly appreciate if someone were to help me 
thanks for reading! please don't mind my english
 

Attached Files

  • Attached File  FRST.txt   55.22KB   1 downloads


BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:53 PM

Posted 13 September 2014 - 07:35 AM

Hi,

please run this fix:


Please download this attached Attached File  fixlist.txt   284bytes   10 downloads and save it in the same directory as FRST.
  • Start FRST with Administrator privileges.
  • Press the Fix button.
  • When finished, a log file (Fixlog.txt) pops up and is saved to the same location the tool was run from.
    Please copy and paste its contents in your next reply.


#3 pieterT

pieterT
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:53 PM

Posted 13 September 2014 - 08:49 AM

it worked!

thank you so much!



#4 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:53 PM

Posted 13 September 2014 - 11:21 AM

You're welcome.

My help is free for everybody.
If you want to support me fighting against malware or buy me a beer for the assistance you received, then you can consider a donation: btn_donate_SM.gif.
Thank you!

#5 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:53 PM

Posted 19 September 2014 - 03:27 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users