Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Power Shell has stopped working! Programs are not responding, slow.


  • This topic is locked This topic is locked
2 replies to this topic

#1 crownful

crownful

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 03 January 2015 - 05:06 AM

I've done alot of virus scans, malware test. And it doesnt detect anything!

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-01-2015
Ran by Hayden (administrator) on PC on 03-01-2015 05:00:00
Running from C:\Users\Hayden\Downloads
Loaded Profile: Hayden (Available profiles: Hayden & fbwuserD308 & fbwuser7BF4 & fbwuser3D02)
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\windows\System32\nvvsvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
() C:\windows\SysWOW64\ASGT.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
() C:\windows\jmesoft\Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\windows\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Bogdan Sharkov) C:\Program Files (x86)\Clownfish\Clownfish.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Lenovo) C:\windows\jmesoft\hotkey.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\windows\jmesoft\JME_LOAD.exe
(Lenovo) C:\Program Files\Lenovo\LVT\LJYZ.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe
(Dropbox, Inc.) C:\Users\Hayden\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Hayden\Downloads\zoek.exe
(Microsoft Corporation) C:\windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\windows\SysWOW64\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\windows\System32\dllhost.exe
(Microsoft Corporation) C:\windows\System32\dllhost.exe
(Farbar) C:\Users\Hayden\Downloads\FRST64 (1).exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-25] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [jmekey] => C:\windows\jmesoft\hotkey.exe [118784 2011-06-08] (Lenovo)
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-03-15] ()
HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-04] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [LVT] => C:\Program Files\Lenovo\LVT\LJYZ.exe [886112 2011-11-24] (Lenovo)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1486144 2013-05-13] (IObit)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1940160 2014-11-18] (Valve Corporation)
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1313536 2014-04-01] (Bogdan Sharkov)
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [MediaFire Tray] => C:\Users\Hayden\AppData\Local\MediaFire Desktop\mf_watch.exe
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [GoogleChromeAutoLaunch_7BA29E3153B77E65C37077A2469120EB] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [856904 2014-12-05] (Google Inc.)
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22869088 2014-10-21] (Google)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hauppauge Device Properties.lnk
ShortcutTarget: Hauppauge Device Properties.lnk -> C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe (Hauppauge Computer Works, Inc.)
Startup: C:\Users\Hayden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
Startup: C:\Users\Hayden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Hayden\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Hayden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Hauppauge Device Central Tray Tool.lnk
ShortcutTarget: Hauppauge Device Central Tray Tool.lnk -> C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDCTrayTool.exe (Hauppauge Computer Works, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [1MediaFireIconError] -> {5EE8C634-CDC0-453D-9731-DF0B19F4E807} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon3_a8cf8.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconSyncing] -> {C4D81971-6B13-4173-AB21-F83AD20CCC04} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon2_a8cf8.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: [MediaFireIconLock] -> {759F3E92-F4E8-4953-8315-238B8B17E0F3} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon4_a8cf8.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: [MediaFireIconReadOnly] -> {7995D0FC-769B-4197-AEC0-991921CB99E1} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon5_a8cf8.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
BootExecute: autocheck autochk * bootdelete
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:56444;https=127.0.0.1:56444
ProxyServer: [S-1-5-21-1201256991-940101453-245219680-1001] => http=127.0.0.1:56444;https=127.0.0.1:56444
HKU\S-1-5-21-1201256991-940101453-245219680-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {28D60D69-401E-445E-9B9A-053C4C8C1FC5} URL = 
SearchScopes: HKU\.DEFAULT -> {28D60D69-401E-445E-9B9A-053C4C8C1FC5} URL = 
SearchScopes: HKU\S-1-5-21-1201256991-940101453-245219680-1001 -> DefaultScope {3F27A8A1-07F1-414D-9030-B84E7C310098} URL = http://rts.dsrlte.com/?q={searchTerms}&r=632
SearchScopes: HKU\S-1-5-21-1201256991-940101453-245219680-1001 -> {28D60D69-401E-445E-9B9A-053C4C8C1FC5} URL = 
SearchScopes: HKU\S-1-5-21-1201256991-940101453-245219680-1001 -> {3F27A8A1-07F1-414D-9030-B84E7C310098} URL = http://rts.dsrlte.com/?q={searchTerms}&r=632
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095} 
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 97.64.209.36 97.64.168.13
 
FireFox:
========
FF ProfilePath: C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default
FF DefaultSearchEngine: Yahoo! Search
FF SelectedSearchEngine: Yahoo! Search
FF NetworkProxy: "type", 
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @exent.com/npExentControl,version=7.1.0.1 -> C:\Program Files (x86)\FreeRide Games\npExentControl.dll (Exent Technologies Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKU\S-1-5-21-1201256991-940101453-245219680-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Hayden\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default\searchplugins\keepmysearch.xml
FF Extension: SearchNewTab - C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default\Extensions\5qa9-fh@mjoclffvtf.com [2013-11-30]
FF Extension: surF and kEep - C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default\Extensions\m5jr.3jdu@kzdudlryvr-.net [2013-11-30]
FF Extension: Yahoo! Toolbar - C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-11-04]
FF Extension: Greasemonkey - C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-09-10]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [Not Found]
FF Extension: No Name - C:\Users\Hayden\AppData\Roaming\Mozilla\Firefox\Profiles\dthvtwef.default\extensions\008abed2-b43a-46c9-9a5b-a771c87b82da@1ad61d53-2bdc-4484-a26b-b888ecae1906.com [Not Found]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://rts.dsrlte.com
CHR StartupUrls: Default -> "hxxp://rts.dsrlte.com"
CHR Profile: C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-21]
CHR Extension: (Google Drive) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21]
CHR Extension: (YouTube) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-21]
CHR Extension: (Adblock Plus) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-12-27]
CHR Extension: (Google Search) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-21]
CHR Extension: (Skype Click to Call) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-11-22]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-12-09]
CHR Extension: (Google Wallet) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-21]
CHR Extension: (Gmail) - C:\Users\Hayden\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-21]
CHR HKU\S-1-5-21-1201256991-940101453-245219680-1001\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [448384 2014-11-27] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R3 HcwDevCentralService; C:\Program Files (x86)\Hauppauge\DeviceCentral\HcwDevCentralService.exe [395536 2014-05-05] (Hauppauge Computer Works, Inc.)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-03-15] () [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-14] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
S3 RoxMediaDBGame1X; C:\Program Files (x86)\Common Files\Roxio Shared\Game1X\SharedCOM\RoxMediaDBGame1X.exe [1099248 2011-02-17] (Sonic Solutions)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation)
S2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S4 McAPExe; "C:\Program Files\McAfee\MSC\McAPExe.exe" [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 CMUSBDAC; C:\Windows\system32\DRIVERS\CMUSBDAC.sys [386560 2013-10-15] (C-Media Inc.)
S3 ElgatoGC658Y; C:\Windows\System32\Drivers\ElgatoGC658.sys [50288 2012-11-12] (UB658)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.)
R3 hcwE5bda; C:\Windows\system32\drivers\hcwE5bda.sys [968792 2014-01-07] (Hauppauge Computer Work, Inc.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-03] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
S3 NPF; C:\Windows\SysWOW64\drivers\npf.sys [30336 2003-04-04] (Politecnico di Torino) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34336 2013-03-26] (IObit.com)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1498768 2012-07-25] (Realtek Semiconductor Corporation                           )
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-05-16] (Anchorfree Inc.)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-03-26] (IObit.com)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
R2 X5XSEx_Pr148; C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.Sys [56136 2012-08-02] (Exent Technologies Ltd.)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-25] (Microsoft Corporation)
R4 IOMap; \??\C:\windows\system32\drivers\IOMap64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-03 05:00 - 2015-01-03 05:00 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (7).exe
2015-01-03 04:59 - 2015-01-03 04:59 - 02123264 _____ (Farbar) C:\Users\Hayden\Downloads\FRST64 (1).exe
2015-01-03 04:57 - 2015-01-03 04:57 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (6).exe
2015-01-03 04:53 - 2015-01-03 04:53 - 04279080 _____ () C:\Users\Hayden\Downloads\zoek (2).rar
2015-01-03 04:52 - 2015-01-03 04:52 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (5).exe
2015-01-03 04:49 - 2015-01-03 04:49 - 04279080 _____ () C:\Users\Hayden\Downloads\zoek (1).rar
2015-01-03 04:49 - 2015-01-03 04:49 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (4).exe
2015-01-03 04:49 - 2015-01-03 04:49 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (3).exe
2015-01-03 04:49 - 2015-01-03 04:49 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (2).exe
2015-01-03 04:38 - 2015-01-03 04:38 - 00003122 _____ () C:\windows\System32\Tasks\{A62F1789-2429-49E7-8084-48FF6DF52E9B}
2015-01-03 04:37 - 2014-12-07 23:06 - 01429293 _____ () C:\Users\Hayden\Desktop\zoek.exe.scr
2015-01-03 04:37 - 2014-12-07 23:06 - 01429293 _____ () C:\Users\Hayden\Desktop\zoek.exe.pif
2015-01-03 04:37 - 2014-12-07 23:06 - 01429293 _____ () C:\Users\Hayden\Desktop\zoek.exe.com
2015-01-03 04:36 - 2015-01-03 04:36 - 04279080 _____ () C:\Users\Hayden\Downloads\zoek.rar
2015-01-03 04:36 - 2015-01-03 04:36 - 04134156 _____ () C:\Users\Hayden\Downloads\Unconfirmed 200096.crdownload
2015-01-03 04:36 - 2015-01-03 04:36 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek.exe
2015-01-03 04:36 - 2015-01-03 04:36 - 01295360 _____ () C:\Users\Hayden\Downloads\zoek (1).exe
2015-01-03 04:36 - 2015-01-03 04:36 - 00000002 _____ () C:\runcheck.txt
2015-01-03 04:36 - 2015-01-03 04:36 - 00000000 ____D () C:\zoek_backup
2015-01-03 04:33 - 2015-01-03 04:33 - 00037350 _____ () C:\Users\Hayden\Downloads\Addition.txt
2015-01-03 04:32 - 2015-01-03 05:00 - 00025806 _____ () C:\Users\Hayden\Downloads\FRST.txt
2015-01-03 04:30 - 2015-01-03 05:00 - 00000000 ____D () C:\FRST
2015-01-03 04:30 - 2015-01-03 04:30 - 02123264 _____ (Farbar) C:\Users\Hayden\Downloads\FRST64.exe
2015-01-03 04:22 - 2015-01-03 04:23 - 00027450 _____ () C:\Users\Hayden\Downloads\ESETPoweliksCleaner.exe_20150103.042211.4020.log
2015-01-03 04:22 - 2015-01-03 04:22 - 00186568 _____ (ESET) C:\Users\Hayden\Downloads\ESETPoweliksCleaner.exe
2015-01-03 01:44 - 2015-01-03 01:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-02 18:54 - 2015-01-02 18:54 - 03894696 _____ (solvusoft Corporation ) C:\Users\Hayden\Downloads\Powershell.exe_Error_Repair_Tool-WinThruster.exe
2015-01-02 14:47 - 2015-01-02 14:47 - 00296744 _____ () C:\windows\Minidump\010215-23484-01.dmp
2015-01-02 14:15 - 2015-01-02 14:15 - 00296776 _____ () C:\windows\Minidump\010215-20421-01.dmp
2015-01-02 13:33 - 2015-01-02 13:33 - 00001184 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-01-02 13:33 - 2015-01-02 13:33 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\IObit
2015-01-02 13:33 - 2015-01-02 13:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-01-02 13:33 - 2015-01-02 13:33 - 00000000 ____D () C:\ProgramData\IObit
2015-01-02 13:33 - 2015-01-02 13:33 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-01-02 13:31 - 2015-01-02 13:31 - 19362952 _____ (IObit ) C:\Users\Hayden\Downloads\imfv2-setup-for-review.exe
2015-01-02 02:27 - 2015-01-03 04:24 - 00129752 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-02 02:08 - 2015-01-02 02:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-02 02:07 - 2015-01-02 02:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-02 02:07 - 2015-01-02 02:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-02 02:07 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-01-02 02:07 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-01-02 02:07 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-01-02 02:00 - 2015-01-02 02:02 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Hayden\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-02 02:00 - 2015-01-02 02:02 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Hayden\Downloads\mbam-setup-2.0.4.1028 (1).exe
2015-01-01 23:40 - 2015-01-01 23:41 - 00000037 _____ () C:\Users\Hayden\Desktop\bo1 overkill.txt
2015-01-01 10:43 - 2015-01-01 10:44 - 00000000 ____D () C:\NPE
2015-01-01 10:33 - 2015-01-03 04:06 - 00000000 ____D () C:\Users\Hayden\AppData\Local\CrashDumps
2015-01-01 10:33 - 2015-01-01 10:33 - 03060320 ____N (Symantec Corporation) C:\Users\Hayden\Downloads\NPE (3).exe
2015-01-01 10:33 - 2015-01-01 10:33 - 03060320 ____N (Symantec Corporation) C:\Users\Hayden\Downloads\NPE (2).exe
2015-01-01 10:31 - 2015-01-01 12:36 - 00000000 ____D () C:\Users\Hayden\AppData\Local\NPE
2015-01-01 10:31 - 2015-01-01 10:31 - 00000000 ____D () C:\ProgramData\Norton
2015-01-01 10:30 - 2015-01-01 10:30 - 03060320 ____N (Symantec Corporation) C:\Users\Hayden\Downloads\NPE (1).exe
2015-01-01 10:28 - 2015-01-01 10:29 - 03060320 _____ (Symantec Corporation) C:\Users\Hayden\Downloads\NPE.exe
2015-01-01 09:31 - 2015-01-01 09:32 - 01358528 _____ () C:\Users\Hayden\Downloads\Hitman Pro 3.7.9 Product Key And Serial Number Full Version Free Download.exe
2015-01-01 09:27 - 2015-01-01 09:27 - 00000000 ____D () C:\Program Files\HitmanPro
2015-01-01 09:26 - 2015-01-01 09:27 - 11222744 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\HitmanPro_x64 (3).exe
2015-01-01 09:26 - 2015-01-01 09:26 - 10284408 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\HitmanPro (2).exe
2015-01-01 09:24 - 2015-01-01 09:25 - 10284408 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\HitmanPro (1).exe
2015-01-01 09:24 - 2015-01-01 09:24 - 01876816 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\hmpalert.exe
2015-01-01 09:22 - 2015-01-01 09:23 - 10284408 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\HitmanPro.exe
2015-01-01 09:14 - 2015-01-01 09:18 - 11222744 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\HitmanPro_x64 (2).exe
2015-01-01 09:13 - 2015-01-01 09:15 - 11222744 _____ (SurfRight B.V.) C:\Users\Hayden\Downloads\HitmanPro_x64 (1).exe
2014-12-31 22:06 - 2014-12-31 22:06 - 00000000 ____D () C:\windows\SysWOW64\Hotspot Shield
2014-12-26 00:34 - 2014-12-26 00:35 - 86746014 _____ () C:\Users\Hayden\Desktop\Private RC.mp4
2014-12-24 00:50 - 2014-12-24 00:53 - 17128209 _____ () C:\Users\Hayden\Desktop\Crowns thingy.mp4
2014-12-23 22:55 - 2014-12-23 22:55 - 34523192 _____ () C:\Users\Hayden\Desktop\HDPVR2_20141223_2239-A.ts
2014-12-23 19:25 - 2014-12-23 20:07 - 1976448404 _____ () C:\Users\Hayden\Desktop\Untitled.MP4
2014-12-23 19:25 - 2014-12-23 19:25 - 00000582 _____ () C:\Users\Hayden\Desktop\UntitledM01.xml
2014-12-23 18:37 - 2014-12-23 18:37 - 00015080 _____ () C:\Users\Hayden\Desktop\Avails new intro_1.mp4.sfk
2014-12-21 19:01 - 2014-12-21 19:01 - 12927532 _____ () C:\Users\Hayden\Desktop\Avails new intro_1.mp4
2014-12-20 23:05 - 2014-12-22 21:19 - 00000000 ____D () C:\Users\Hayden\Desktop\priv match
2014-12-20 21:22 - 2015-01-03 01:32 - 00000000 ____D () C:\Users\Hayden\Desktop\mini
2014-12-16 22:21 - 2014-12-09 02:12 - 00590816 _____ (Microsoft Corporation) C:\windows\system32\AutoUpdate.exe
2014-12-16 22:21 - 2014-12-09 02:12 - 00467408 _____ (Microsoft Corporation) C:\windows\system32\NotificationUI.exe
2014-12-16 21:57 - 2014-12-16 21:55 - 96320616 _____ () C:\Users\Hayden\Desktop\crowns mini.mp4
2014-12-16 18:00 - 2014-12-16 18:00 - 00947500 _____ () C:\Users\Hayden\Downloads\avail pack.rar
2014-12-16 18:00 - 2014-12-06 10:23 - 03135601 _____ () C:\Users\Hayden\Desktop\avail psd.psd
2014-12-16 18:00 - 2014-12-06 10:22 - 00001286 _____ () C:\Users\Hayden\Desktop\avail ai.ai
2014-12-15 19:19 - 2015-01-02 19:38 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\Clipdiary
2014-12-15 19:16 - 2014-12-15 19:16 - 02865080 _____ () C:\Users\Hayden\Downloads\clipdiary_3.5.exe
2014-12-14 12:21 - 2014-12-14 12:21 - 00000000 ____D () C:\Users\Hayden\Documents\EpicBot
2014-12-14 12:21 - 2014-12-14 12:21 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\EpicBot
2014-12-14 12:20 - 2014-12-14 12:21 - 04906607 _____ () C:\Users\Hayden\Desktop\EpicBotOS.jar
2014-12-13 17:01 - 2014-12-13 17:01 - 00045112 ____H (LogMeIn Inc.) C:\windows\system32\Drivers\Hamdrv.sys
2014-12-13 10:34 - 2014-12-13 10:34 - 20163000 _____ () C:\Users\Hayden\Desktop\HDPVR2_20141213_1006-A-A-A.ts
2014-12-13 07:28 - 2014-12-13 07:28 - 00000000 ____D () C:\windows\system32\appraiser
2014-12-10 07:16 - 2014-10-08 23:00 - 01519104 _____ (Microsoft Corporation) C:\windows\system32\vssapi.dll
2014-12-10 07:16 - 2014-10-08 23:00 - 01484288 _____ (Microsoft Corporation) C:\windows\system32\VSSVC.exe
2014-12-10 07:16 - 2014-10-08 23:00 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\vsstrace.dll
2014-12-10 07:16 - 2014-10-08 22:59 - 01195520 _____ (Microsoft Corporation) C:\windows\SysWOW64\vssapi.dll
2014-12-10 07:16 - 2014-10-08 22:59 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\vsstrace.dll
2014-12-10 06:23 - 2014-10-11 02:44 - 19764736 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-12-10 06:23 - 2014-10-11 00:57 - 17562112 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-12-10 06:23 - 2014-10-08 22:59 - 00623616 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2014-12-10 06:23 - 2014-10-08 22:59 - 00212992 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2014-12-10 06:23 - 2014-10-08 22:58 - 00458240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2014-12-10 06:23 - 2014-09-22 00:38 - 00673792 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2014-12-10 06:23 - 2014-09-21 22:56 - 00513536 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmpeg2srcsnk.dll
2014-12-10 06:21 - 2014-11-21 03:38 - 02237952 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-12-10 06:21 - 2014-11-21 03:38 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-12-10 06:21 - 2014-11-21 03:37 - 01409536 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-12-10 06:21 - 2014-11-21 03:37 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2014-12-10 06:21 - 2014-11-21 03:37 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 19283456 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 15400960 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 02655232 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-12-10 06:21 - 2014-11-21 03:36 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-12-10 06:21 - 2014-11-21 03:35 - 01509376 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-12-10 06:21 - 2014-11-21 02:17 - 14364672 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-12-10 06:21 - 2014-11-21 02:17 - 01762816 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-12-10 06:21 - 2014-11-21 02:17 - 01181696 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-12-10 06:21 - 2014-11-21 02:17 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-12-10 06:21 - 2014-11-21 02:17 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-12-10 06:21 - 2014-11-21 02:17 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 13758976 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 02861568 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 02054656 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 01441280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-12-10 06:21 - 2014-11-21 02:16 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-12-10 06:21 - 2014-11-21 02:16 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-12-10 06:21 - 2014-11-21 02:00 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-12-10 06:21 - 2014-11-21 01:54 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-12-10 06:21 - 2014-11-20 23:30 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2014-12-10 06:21 - 2014-11-06 01:50 - 01627648 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-12-10 06:21 - 2014-11-06 00:03 - 01339392 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-12-10 06:20 - 2014-12-04 20:41 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2014-12-10 06:20 - 2014-12-04 20:41 - 00740864 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2014-12-10 06:20 - 2014-12-04 20:41 - 00396288 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2014-12-10 06:20 - 2014-12-04 20:40 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-12-10 06:20 - 2014-12-02 20:48 - 01083392 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-12-10 06:20 - 2014-12-02 20:48 - 00412672 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2014-12-10 06:20 - 2014-12-02 20:48 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2014-12-10 06:19 - 2014-10-30 02:20 - 01890816 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-12-10 06:19 - 2014-10-30 00:22 - 01569792 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-12-09 05:10 - 2014-12-09 05:10 - 00000000 ____D () C:\Users\Hayden\Desktop\cut coms
2014-12-09 02:11 - 2014-12-09 02:12 - 00404544 _____ () C:\Users\Hayden\Desktop\Set crown.mp4.sfk
2014-12-09 02:09 - 2014-12-09 02:09 - 00001277 _____ () C:\Users\Hayden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vegas Pro 12.0 (64-bit).lnk
2014-12-09 01:38 - 2014-12-09 01:38 - 00016505 _____ () C:\Users\Hayden\Downloads\[kickass.so]sony.vegas.pro.11.0.build.370.patch.32.bit.rh.torrent
2014-12-09 01:26 - 2014-12-09 01:26 - 00003368 _____ () C:\windows\System32\Tasks\{BB70C63E-A931-4A37-B728-E2202BCC4B2B}
2014-12-09 01:20 - 2014-12-09 01:20 - 00013136 _____ () C:\Users\Hayden\Downloads\[kickass.so]sony.vegas.pro.13.0.build.373.preactivated.x64.repack.by.d.a.torrent
2014-12-09 01:14 - 2014-12-09 01:14 - 00015478 _____ () C:\Users\Hayden\Downloads\[kickass.so]bone.town.vitality.torrent
2014-12-09 01:12 - 2014-12-09 01:12 - 00020318 _____ () C:\Users\Hayden\Downloads\[kickass.so]sony.vegas.pro.12.build.770.64.bit.patch.keygen.di.chingliu.torrent
2014-12-09 00:57 - 2014-12-09 00:58 - 00015175 _____ () C:\Users\Hayden\Downloads\[kickass.so]sony.vegas.pro.13.0.build.310.64.bit.patch.khg.chingliu.torrent
2014-12-07 02:25 - 2015-01-03 04:25 - 00000000 ___RD () C:\Users\Hayden\Google Drive
2014-12-07 02:25 - 2014-12-07 02:25 - 00001702 _____ () C:\Users\Hayden\Desktop\Google Drive.lnk
2014-12-07 02:22 - 2014-12-07 02:22 - 00880784 _____ (Google Inc.) C:\Users\Hayden\Downloads\googledrivesync.exe
2014-12-07 02:22 - 2014-12-07 02:22 - 00880784 _____ (Google Inc.) C:\Users\Hayden\Downloads\googledrivesync (1).exe
2014-12-07 02:22 - 2014-12-07 02:22 - 00002053 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-12-07 02:22 - 2014-12-07 02:22 - 00002051 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-12-07 02:22 - 2014-12-07 02:22 - 00002041 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-12-07 02:22 - 2014-12-07 02:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-12-04 01:43 - 2014-12-04 01:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2014-12-04 01:43 - 2014-12-04 01:43 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories
2014-12-04 01:42 - 2014-12-04 01:42 - 07878008 _____ (Microsoft Corporation) C:\Users\Hayden\Downloads\Xbox360_64Eng.exe
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-03 05:00 - 2012-07-26 03:12 - 00000000 ____D () C:\windows\system32\sru
2015-01-03 04:55 - 2013-11-22 01:35 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\Skype
2015-01-03 04:44 - 2013-11-21 05:59 - 00000912 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-03 04:29 - 2013-11-02 20:57 - 00003594 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1201256991-940101453-245219680-1001
2015-01-03 04:26 - 2014-07-03 08:07 - 00000000 ___RD () C:\Users\Hayden\Dropbox
2015-01-03 04:26 - 2014-07-03 08:04 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\Dropbox
2015-01-03 04:25 - 2013-11-03 10:48 - 00000000 ____D () C:\Users\Hayden\AppData\Local\Deployment
2015-01-03 04:25 - 2013-11-03 01:10 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-03 04:24 - 2014-05-06 20:13 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-03 04:24 - 2013-11-21 05:59 - 00000908 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-03 04:24 - 2012-07-26 02:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-01-03 04:23 - 2012-07-26 00:26 - 00262144 ___SH () C:\windows\system32\config\BBI
2015-01-03 04:22 - 2013-11-15 18:59 - 10348544 ___SH () C:\Users\Hayden\Desktop\Thumbs.db
2015-01-03 04:13 - 2013-06-24 13:28 - 00000000 ____D () C:\ProgramData\McAfee
2015-01-03 04:12 - 2012-10-09 18:08 - 00128298 _____ () C:\windows\PFRO.log
2015-01-03 04:04 - 2014-06-08 00:20 - 00000000 ____D () C:\Users\Public\Hauppauge Capture
2015-01-03 01:51 - 2012-07-26 03:12 - 00000000 ___HD () C:\windows\ELAMBKUP
2015-01-03 01:33 - 2012-07-26 03:12 - 00000000 __RHD () C:\Users\Public\Libraries
2015-01-02 21:06 - 2013-11-02 20:59 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-02 20:53 - 2013-11-16 01:33 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2015-01-02 20:14 - 2013-11-30 10:50 - 00000000 ____D () C:\Program Files\Blender Foundation
2015-01-02 20:12 - 2013-06-24 13:31 - 00000000 ____D () C:\Program Files\Lenovo
2015-01-02 20:12 - 2013-06-24 13:23 - 00000000 ____D () C:\windows\System32\Tasks\Lenovo
2015-01-02 20:11 - 2014-06-26 02:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2015-01-02 20:11 - 2014-06-26 02:29 - 00000000 ____D () C:\Program Files (x86)\Mirillis
2015-01-02 20:06 - 2013-12-15 13:39 - 00000000 ____D () C:\Fraps
2015-01-02 20:05 - 2014-03-12 03:09 - 00000000 ____D () C:\Users\Hayden\AppData\Local\DM
2015-01-02 20:02 - 2014-05-21 07:20 - 00000000 ____D () C:\Users\Hayden\AppData\Local\Dxtory Software
2015-01-02 20:01 - 2014-05-21 07:08 - 00000000 ____D () C:\Program Files (x86)\OBS
2015-01-02 19:52 - 2014-06-12 16:42 - 00000000 ___HD () C:\Users\Hayden\.mediafire
2015-01-02 19:46 - 2014-08-27 18:12 - 00000000 ____D () C:\Users\Hayden\jagexcache
2015-01-02 19:39 - 2013-11-16 01:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
2015-01-02 19:39 - 2013-11-16 01:31 - 00000000 ____D () C:\Program Files (x86)\Cain
2015-01-02 19:12 - 2014-06-29 09:54 - 00000000 ____D () C:\Program Files (x86)\AVS4YOU
2015-01-02 16:59 - 2013-06-24 13:36 - 01524868 _____ () C:\windows\WindowsUpdate.log
2015-01-02 15:43 - 2014-06-12 16:43 - 00000000 ___RD () C:\Users\Hayden\MediaFire
2015-01-02 14:47 - 2014-03-28 21:50 - 00000000 ____D () C:\windows\Minidump
2015-01-02 14:46 - 2014-03-28 21:50 - 449005138 _____ () C:\windows\MEMORY.DMP
2015-01-02 13:29 - 2014-07-01 10:54 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\systweak
2015-01-01 12:19 - 2014-05-15 05:08 - 00000000 ____D () C:\Breaking Point
2015-01-01 12:15 - 2014-12-03 00:40 - 00000000 ____D () C:\Users\fbwuserDF7D
2015-01-01 12:15 - 2014-12-03 00:40 - 00000000 ____D () C:\Users\fbwuser6A2E
2015-01-01 12:14 - 2014-10-29 16:35 - 00000000 ____D () C:\Users\fbwuserD308
2015-01-01 12:14 - 2014-10-29 16:35 - 00000000 ____D () C:\Users\fbwuser7BF4
2015-01-01 12:14 - 2014-10-29 16:35 - 00000000 ____D () C:\Users\fbwuser3D02
2015-01-01 09:41 - 2013-11-02 20:49 - 00000000 ____D () C:\Users\Hayden
2015-01-01 09:36 - 2014-07-28 13:17 - 00043664 _____ () C:\windows\system32\Drivers\hitmanpro37.sys
2015-01-01 09:20 - 2014-07-28 13:06 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-01-01 08:12 - 2012-07-26 00:26 - 00262144 ___SH () C:\windows\system32\config\ELAM
2014-12-31 16:13 - 2013-11-03 11:12 - 01935360 ___SH () C:\Users\Hayden\Downloads\Thumbs.db
2014-12-31 10:20 - 2014-11-26 08:30 - 00000000 ____D () C:\Users\Hayden\AppData\Local\Popcorn-Time
2014-12-27 22:40 - 2013-12-22 06:45 - 00000000 ____D () C:\Users\Hayden\Desktop\Clips
2014-12-24 04:58 - 2013-11-16 04:13 - 00000000 ____D () C:\Users\Hayden\AppData\Local\Windows Live
2014-12-23 18:42 - 2014-11-11 17:38 - 00000000 ____D () C:\Users\Hayden\Desktop\f and fails
2014-12-18 14:25 - 2014-08-27 18:31 - 00000045 _____ () C:\Users\Hayden\jagex_cl_oldschool_LIVE.dat
2014-12-17 19:16 - 2013-11-22 01:35 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-17 19:16 - 2013-11-22 01:35 - 00000000 ____D () C:\ProgramData\Skype
2014-12-17 18:22 - 2012-07-26 02:59 - 00000000 ____D () C:\windows\CbsTemp
2014-12-15 08:31 - 2014-11-29 22:03 - 00000024 _____ () C:\Users\Hayden\Desktop\New Text Document.txt
2014-12-13 15:42 - 2013-12-19 01:09 - 00000000 ____D () C:\Users\Hayden\AppData\Local\DayZ
2014-12-13 14:02 - 2012-07-26 03:12 - 00000000 ____D () C:\windows\rescache
2014-12-13 08:04 - 2014-07-03 08:07 - 00001026 _____ () C:\Users\Hayden\Desktop\Dropbox.lnk
2014-12-13 08:04 - 2014-07-03 08:06 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-12-13 07:29 - 2012-07-26 03:12 - 00000000 ___RD () C:\windows\ToastData
2014-12-13 07:28 - 2014-07-12 22:07 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-12-13 07:28 - 2012-07-26 03:12 - 00000000 ____D () C:\windows\AppCompat
2014-12-13 07:26 - 2014-08-31 13:22 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\uTorrent
2014-12-13 00:18 - 2013-11-26 14:35 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\Sony
2014-12-10 07:25 - 2013-11-03 10:25 - 00000000 ____D () C:\windows\system32\MRT
2014-12-10 07:17 - 2013-11-03 10:25 - 112710672 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-12-10 02:45 - 2014-11-03 20:52 - 00000000 ____D () C:\Users\Hayden\AppData\Roaming\Audacity
2014-12-09 09:12 - 2012-07-26 03:12 - 00000000 ____D () C:\windows\AUInstallAgent
2014-12-09 01:57 - 2014-10-21 09:56 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-12-08 03:48 - 2014-11-26 08:24 - 00000000 ____D () C:\Users\Hayden\AppData\Local\Popcorn Time
2014-12-07 02:22 - 2013-11-21 05:59 - 00000000 ____D () C:\Users\Hayden\AppData\Local\Google
2014-12-07 02:22 - 2013-11-21 05:59 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-05 20:17 - 2012-07-26 03:12 - 00000000 ____D () C:\windows\system32\NDF
2014-12-05 20:04 - 2012-07-26 02:28 - 00848230 _____ () C:\windows\system32\PerfStringBackup.INI
2014-12-04 18:01 - 2014-12-03 22:43 - 00013191 _____ () C:\Users\Hayden\Desktop\swas.txt
2014-12-04 03:33 - 2014-08-06 20:49 - 00000000 ____D () C:\Users\Hayden\Desktop\LOL
2014-12-04 02:09 - 2014-05-15 07:49 - 00000000 ____D () C:\Users\Hayden\Desktop\MW2 Liberation
2014-12-04 01:43 - 2013-11-03 13:17 - 00201351 _____ () C:\windows\DirectX.log
 
Files to move or delete:
====================
C:\ProgramData\Lenovo-31890.vbs
C:\ProgramData\Lenovo-31942.vbs
C:\Users\Hayden\jagex_cl_oldschool_LIVE.dat
C:\Users\Hayden\jagex_cl_runescape_LIVE.dat
C:\Users\Hayden\jagex_cl_runescape_LIVE1.dat
C:\Users\Hayden\random.dat
 
 
Some content of TEMP:
====================
C:\Users\Hayden\AppData\Local\Temp\7za.exe
C:\Users\Hayden\AppData\Local\Temp\airAEAA.exe
C:\Users\Hayden\AppData\Local\Temp\awesomium_setup.exe
C:\Users\Hayden\AppData\Local\Temp\browsercontrol1562380980655318478.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol2755603973946183165.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol2825523224580173933.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol3381294383823657415.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol3493881565280121383.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol3771636493853366085.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol418045473988997966.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol4853673695627426071.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol4883067781552048413.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol6886896500442394853.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol7332916248927307389.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol750066799830134843.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol8590994115479879815.dll
C:\Users\Hayden\AppData\Local\Temp\browsercontrol9175515931563991787.dll
C:\Users\Hayden\AppData\Local\Temp\CB56a58.exe
C:\Users\Hayden\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\Hayden\AppData\Local\Temp\DevCentralSetup.exe
C:\Users\Hayden\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpuhhqzy.dll
C:\Users\Hayden\AppData\Local\Temp\hcwclear.exe
C:\Users\Hayden\AppData\Local\Temp\hijackthis.exe
C:\Users\Hayden\AppData\Local\Temp\i66ihmcm.dll
C:\Users\Hayden\AppData\Local\Temp\i8lqduxb.dll
C:\Users\Hayden\AppData\Local\Temp\ICReinstall_BlueStacks Download Manager (1).exe
C:\Users\Hayden\AppData\Local\Temp\jna31173581841467520.dll
C:\Users\Hayden\AppData\Local\Temp\jna3201982916762048233.dll
C:\Users\Hayden\AppData\Local\Temp\jna3356321777038550124.dll
C:\Users\Hayden\AppData\Local\Temp\jna3486638127791665779.dll
C:\Users\Hayden\AppData\Local\Temp\jna4741668447467822471.dll
C:\Users\Hayden\AppData\Local\Temp\jna5212025230321638635.dll
C:\Users\Hayden\AppData\Local\Temp\jna5849622733696501863.dll
C:\Users\Hayden\AppData\Local\Temp\jna5907573059205156256.dll
C:\Users\Hayden\AppData\Local\Temp\jna6141029666839069807.dll
C:\Users\Hayden\AppData\Local\Temp\jna6225891681533526829.dll
C:\Users\Hayden\AppData\Local\Temp\jna7527469037350822512.dll
C:\Users\Hayden\AppData\Local\Temp\jna7761376497518334937.dll
C:\Users\Hayden\AppData\Local\Temp\jna8607884772728188849.dll
C:\Users\Hayden\AppData\Local\Temp\jna918856268517840412.dll
C:\Users\Hayden\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Hayden\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Hayden\AppData\Local\Temp\mm3dpw06.dll
C:\Users\Hayden\AppData\Local\Temp\NirCmd.exe
C:\Users\Hayden\AppData\Local\Temp\PEVZ.EXE
C:\Users\Hayden\AppData\Local\Temp\remove.exe
C:\Users\Hayden\AppData\Local\Temp\rureuuxd.dll
C:\Users\Hayden\AppData\Local\Temp\sed.exe
C:\Users\Hayden\AppData\Local\Temp\SfpcHelper_installFinish.exe
C:\Users\Hayden\AppData\Local\Temp\SfpcHelper_installStart.exe
C:\Users\Hayden\AppData\Local\Temp\shortcut.exe
C:\Users\Hayden\AppData\Local\Temp\shutdown1402609117.exe
C:\Users\Hayden\AppData\Local\Temp\swreg.exe
C:\Users\Hayden\AppData\Local\Temp\swxcacls.exe
C:\Users\Hayden\AppData\Local\Temp\t4yaw9c8.dll
C:\Users\Hayden\AppData\Local\Temp\wget.exe
C:\Users\Hayden\AppData\Local\Temp\zoek-delete.exe
C:\Users\Hayden\AppData\Local\Temp\_x1v6fl-.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-01-02 05:47
 
==================== End Of Log ============================


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,703 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 08 January 2015 - 05:10 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/561916 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,703 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:19 PM

Posted 13 January 2015 - 05:15 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users