Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

virus causing mouse to double click please help


  • This topic is locked This topic is locked
6 replies to this topic

#1 green_stuff

green_stuff

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:06 PM

Posted 14 January 2015 - 07:02 AM

so i have been to an internet cyber cafe, its like a room in the street it has computers with internet and you pay according to the time u spent , i went there for the fast internet and the mouse on that computer always releases the clicks or even double clicks sometimes so i thought it was a hardware problem as the mouse could be busted, anyway when i brought back all the things i downloaded, they had viruses in them so i deleted them using avira anti virus, but now my mouse behaves exactly like the mouse at that cyber cafe so im pretty sure its not a hardware problem but some kind of malware or something, i thought avira could detect it all , anyway if anyone has had a similar experience and knows a fix please help
 i just tried using the touch-pad i cliked and held the window and started moving it all around the screen and suddenly it got released while i was still holding the left click and ended up highlighting some text on the page which means it double clicked automatically, im very sure its some virus, please help or i might have to format the laptop , if u need any additional info just tell me how i can get it and i will



BC AdBot (Login to Remove)

 


#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:06:06 PM

Posted 14 January 2015 - 10:31 AM

Hey my friend. :)

Please download FRST (by Farbar) from the link below and save it to your Desktop.

Download Mirror #1

If you are unsure whether you have 32-Bit or 64-Bit Windows, see here
  • Disable all anti-virus and anti-malware software to prevent them inhibiting FRST in any way. If you are unsure how to do this, see THIS.
  • Double-click FRST.exe/FRST64.exe (depending on which version you downloaded) to run it. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • When the disclaimer appears, click Yes.
  • Click Scan to start FRST.
  • When FRST finishes scanning, two logs, FRST.txt and Addition.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of both of these logs into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 green_stuff

green_stuff
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:06 PM

Posted 14 January 2015 - 04:49 PM

edit 1 : hello i just found an exe file in my downloads folder called swoff35.exe. and avira anti virus detected it as an adware.gen, i scanned the whole folder after and it didnt have anymore. the whole double clicking seems to have stopped now i wont know for sure yet though

 

 

frst log

 

can result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-01-2015 01
Ran by 7 (administrator) on 7-PC on 14-01-2015 21:16:37
Running from C:\Users\7\Downloads\Programs
Loaded Profiles: 7 (Available profiles: 7)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
(GoldSolution Software, Inc.) C:\Program Files (x86)\PC Auto Shutdown\ShutdownService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(IDEVFH) C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Solveig Multimedia, Hyperionics) C:\Program Files (x86)\HyperCam 3\SMM_HyperCam.exe
(MPC-HC Team) C:\Program Files (x86)\MPC-HC\mpc-hc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322712 2014-10-09] (Intel Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [126200 2014-11-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672 2014-12-24] (Tonec Inc.)
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (Tonec Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-sa/?ocid=iehp
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Tcpip\..\Interfaces\{00824E69-83DC-4CF0-A738-D6F1CB3CE52D}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{445466B4-DA0C-4D45-88F7-E0C880F61A45}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{647C2CD6-5122-497E-950C-16FCB0B80E8D}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{AB7114F6-27E2-43B3-AB58-B29D3D7529E8}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{DD5AA6B3-6BCB-436C-9010-BF7FF0E3B383}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{F3F05E69-387A-4417-B3D8-46BA7D559192}: [NameServer] 62.251.230.241 212.217.1.1

FireFox:
========
FF ProfilePath: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\Extensions\abs@avira.com [2014-12-22]
FF Extension: Memory Fox - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2015-01-14]
FF Extension: Adblock Plus - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-21]
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\7\AppData\Roaming\IDM\idmmzcc5 [2014-12-24]
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5

Chrome:
=======
CHR Profile: C:\Users\7\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-23]
CHR Extension: (Google Docs) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-23]
CHR Extension: (Google Drive) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-23]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-24]
CHR Extension: (YouTube) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-23]
CHR Extension: (Google Search) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-23]
CHR Extension: (Google Sheets) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-23]
CHR Extension: (AdBlock) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-12-25]
CHR Extension: (IDM Integration Module) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn [2014-12-24]
CHR Extension: (Google Wallet) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-23]
CHR Extension: (Gmail) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-23]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-12-16]
CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-12-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [166192 2014-11-20] (Avira Operations GmbH & Co. KG)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18584 2014-10-09] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Corporation)
S2 Internet Mobile. RunOuc; C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe [655712 2014-12-23] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation)
S4 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2820424 2014-10-15] (CybelSoft)
R2 PCAutoShutdown_Service; C:\Program Files (x86)\PC Auto Shutdown\ShutdownService.exe [442136 2011-11-14] (GoldSolution Software, Inc.)
S2 SwOffScheduler; C:\Program Files\Airytec\Switch Off\swoff.exe [173056 2014-09-23] (Airytec) [File not signed]
S2 SwOffWeb; C:\Program Files\Airytec\Switch Off\swoff.exe [173056 2014-09-23] (Airytec) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [25088 2015-01-07] (Windows ® Codename Longhorn DDK provider) [File not signed]
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131608 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30360 2014-10-09] (Intel Corporation)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [119680 2015-01-07] (TCT International Mobile Ltd) [File not signed]
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2014-02-24] (CybelSoft)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation)
S3 ALSysIO; \??\C:\Users\7\AppData\Local\Temp\ALSysIO64.sys [X]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-14 21:10 - 2015-01-14 21:16 - 00000000 ____D () C:\FRST
2015-01-14 10:29 - 2015-01-14 10:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-11 00:18 - 2015-01-10 18:57 - 63251756 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E07.Your.Place.or.Mine.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull.mp4
2015-01-11 00:18 - 2015-01-10 18:49 - 49294745 _____ () C:\Users\7\Desktop\Watch ray 106 med avi.mp4
2015-01-11 00:18 - 2015-01-10 18:40 - 65932769 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E05.Look.Don't.Touch.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull.mp4
2015-01-11 00:18 - 2015-01-10 18:36 - 63490964 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E04.Standard.Deviation.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull.mp4
2015-01-11 00:18 - 2015-01-10 18:32 - 63781394 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E02.I.Love.You.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull_2.mp4
2015-01-10 14:24 - 2015-01-10 14:24 - 00001888 _____ () C:\Users\7\Desktop\Crazy - Shortcut.lnk
2015-01-10 14:00 - 2015-01-10 14:00 - 00001503 _____ () C:\Users\7\Desktop\Nouveau dossier - Shortcut.lnk
2015-01-10 13:53 - 2015-01-10 13:53 - 00001766 _____ () C:\Users\7\Desktop\07 Piste 7 - Shortcut.lnk
2015-01-08 19:06 - 2015-01-08 19:06 - 00000000 ____D () C:\Windows\pss
2015-01-07 17:59 - 2015-01-07 17:59 - 00000000 ____D () C:\Users\7\AppData\Roaming\Temp
2015-01-07 10:54 - 2015-01-07 10:54 - 00119680 _____ (TCT International Mobile Ltd) C:\Windows\system32\Drivers\jrdusbser.sys
2015-01-07 10:54 - 2015-01-07 10:54 - 00025088 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\system32\Drivers\AlcatelUsb.sys
2015-01-04 20:58 - 2015-01-04 20:58 - 00000815 _____ () C:\Users\7\Desktop\Starter - Shortcut.lnk
2015-01-03 18:50 - 2015-01-03 18:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sys Toolbox Pro
2015-01-03 18:50 - 2015-01-03 18:50 - 00000000 ____D () C:\Program Files (x86)\FIRST AND LAST Co., Ltd
2015-01-03 18:50 - 2010-07-01 03:32 - 00067312 _____ (Just Great Software) C:\Windows\UnDeployV.exe
2015-01-03 16:20 - 2015-01-03 16:22 - 00000000 ____D () C:\City Car Driving
2015-01-03 16:11 - 2015-01-03 16:11 - 00000000 ____D () C:\Users\7\AppData\Roaming\WinRAR
2015-01-03 16:11 - 2015-01-03 16:11 - 00000000 ____D () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-03 16:11 - 2015-01-03 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-03 16:10 - 2015-01-03 16:11 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-02 06:50 - 2015-01-02 06:50 - 00000000 ____D () C:\Windows\Minidump
2015-01-02 06:49 - 2015-01-02 06:49 - 403835161 _____ () C:\Windows\MEMORY.DMP
2014-12-30 16:40 - 2014-12-30 16:40 - 00000000 ____D () C:\Users\7\AppData\Roaming\TeamViewer
2014-12-30 16:37 - 2014-12-30 16:38 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-12-30 16:37 - 2014-12-30 16:37 - 00001051 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2014-12-30 16:37 - 2014-12-30 16:37 - 00001039 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2014-12-30 14:31 - 2014-12-30 14:31 - 00001065 _____ () C:\Windows\NLSDownlevelMapping.log
2014-12-30 13:10 - 2014-12-30 14:44 - 00000000 ____D () C:\Users\7\Downloads\City Car Driving 2.2.5 kat.ph
2014-12-30 07:06 - 2014-12-30 07:06 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2014-12-29 13:56 - 2015-01-10 13:22 - 00000000 ____D () C:\Users\7\AppData\Roaming\Audacity
2014-12-29 13:45 - 2014-12-29 13:45 - 00001027 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-12-29 13:45 - 2014-12-29 13:45 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-12-29 07:19 - 2014-12-29 07:19 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-29 07:19 - 2014-12-29 07:19 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-12-29 07:18 - 2014-12-30 07:06 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-26 11:37 - 2014-12-26 11:37 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-12-26 05:04 - 2014-12-26 05:04 - 00000000 ____D () C:\Users\7\AppData\Local\Logitech® Webcam Software
2014-12-26 04:56 - 2014-12-26 04:56 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-12-26 04:55 - 2015-01-05 18:32 - 00026563 _____ () C:\Windows\system32\lvcoinst.log
2014-12-26 04:55 - 2014-12-26 04:55 - 00000000 ____D () C:\Users\7\AppData\Roaming\Leadertech
2014-12-26 04:54 - 2015-01-05 18:30 - 00000000 ____D () C:\Program Files\Common Files\logishrd
2014-12-26 04:54 - 2014-12-26 04:55 - 00003947 _____ () C:\Windows\LDPINST.LOG
2014-12-26 04:54 - 2014-12-26 04:55 - 00000000 ____D () C:\Program Files (x86)\Logitech
2014-12-26 04:54 - 2014-12-26 04:54 - 00001628 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2014-12-26 04:54 - 2014-12-26 04:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-12-25 06:49 - 2015-01-14 20:57 - 00044544 _____ () C:\Users\7\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-25 06:49 - 2014-12-25 06:49 - 00000000 ____D () C:\Users\7\AppData\Roaming\Solveig Multimedia
2014-12-25 06:44 - 2015-01-14 21:12 - 00000000 ____D () C:\Users\7\Documents\HyperCam3
2014-12-25 06:44 - 2014-12-25 06:44 - 00001051 _____ () C:\Users\7\Desktop\HyperCam 3.lnk
2014-12-25 06:44 - 2014-12-25 06:44 - 00000000 ____D () C:\Users\7\AppData\Roaming\HyperCam
2014-12-25 06:44 - 2014-12-25 06:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HyperCam 3
2014-12-24 20:18 - 2014-12-24 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Capture
2014-12-24 20:18 - 2014-12-24 20:18 - 00000000 ____D () C:\Program Files (x86)\FastStone Capture
2014-12-24 19:23 - 2014-12-24 19:23 - 00000000 ____D () C:\Users\7\AppData\Roaming\FastStone
2014-12-24 19:19 - 2015-01-13 20:32 - 00000000 ____D () C:\Users\7\AppData\Roaming\vlc
2014-12-24 19:18 - 2014-12-24 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-24 19:18 - 2014-12-24 19:18 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-12-24 15:10 - 2014-12-24 15:10 - 00000000 ____D () C:\Users\7\Documents\Any Video Converter
2014-12-24 15:09 - 2014-12-24 15:10 - 00000000 ____D () C:\Users\7\AppData\Roaming\Anvsoft
2014-12-24 15:09 - 2014-12-24 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2014-12-24 15:09 - 2014-12-24 15:09 - 00000000 ____D () C:\Program Files (x86)\Anvsoft
2014-12-24 15:06 - 2014-12-24 15:03 - 00043064 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-12-24 15:03 - 2014-12-24 15:03 - 00000000 ____D () C:\Users\7\AppData\Roaming\Avira
2014-12-24 15:02 - 2014-11-24 10:23 - 00131608 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-12-24 15:02 - 2014-11-24 10:23 - 00119272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-12-24 15:02 - 2014-11-24 10:23 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-12-24 09:42 - 2014-12-24 09:42 - 00000000 ____D () C:\ProgramData\FastStone
2014-12-24 09:41 - 2014-12-24 09:41 - 00000000 ____D () C:\Users\7\AppData\Local\FastStone
2014-12-24 09:21 - 2015-01-14 21:15 - 00000000 ____D () C:\Users\7\AppData\Roaming\Skype
2014-12-24 09:21 - 2014-12-24 09:21 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-24 09:21 - 2014-12-24 09:21 - 00000000 ____D () C:\Users\7\AppData\Local\Skype
2014-12-24 09:21 - 2014-12-24 09:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-12-24 09:20 - 2014-12-24 09:21 - 00000000 ____D () C:\ProgramData\Skype
2014-12-24 09:17 - 2014-12-24 09:17 - 00003144 _____ () C:\Windows\System32\Tasks\{4DC7E16F-3AF1-480C-9704-A4E960ED23BB}
2014-12-24 07:53 - 2014-12-24 07:53 - 00003654 _____ () C:\Windows\System32\Tasks\klcp_update
2014-12-24 07:53 - 2014-12-24 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-12-24 07:53 - 2014-12-24 07:53 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-12-24 07:53 - 2014-12-02 14:10 - 00260184 _____ () C:\Windows\system32\unrar64.dll
2014-12-24 07:53 - 2014-12-02 14:10 - 00218712 _____ () C:\Windows\SysWOW64\unrar.dll
2014-12-24 06:50 - 2014-12-24 06:50 - 00003148 _____ () C:\Windows\System32\Tasks\{88744516-0AD5-4561-BEC8-C0DA29C5491F}
2014-12-24 03:52 - 2015-01-14 19:08 - 00000000 ____D () C:\Users\7\AppData\Roaming\DMCache
2014-12-24 03:52 - 2015-01-09 11:38 - 00000000 ____D () C:\Users\7\Downloads\Compressed
2014-12-24 03:52 - 2015-01-08 12:54 - 00000000 ____D () C:\Users\7\Downloads\Video
2014-12-24 03:52 - 2014-12-24 07:02 - 00000000 ____D () C:\Users\7\AppData\Roaming\IDM
2014-12-24 03:52 - 2014-12-24 05:36 - 00000000 ____D () C:\Program Files (x86)\Internet Download Manager
2014-12-24 03:52 - 2014-12-24 03:52 - 00000000 ____D () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2014-12-24 03:52 - 2014-12-24 03:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2014-12-24 03:52 - 2014-12-24 03:52 - 00000000 ____D () C:\ProgramData\IDM
2014-12-24 03:37 - 2014-12-24 03:37 - 00000827 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-12-24 03:37 - 2014-12-24 03:37 - 00000000 ____D () C:\ProgramData\APN
2014-12-24 03:36 - 2014-12-31 16:43 - 00000000 ____D () C:\Users\7\AppData\Roaming\uTorrent
2014-12-24 03:35 - 2014-12-24 03:36 - 01688656 _____ (BitTorrent Inc.) C:\Users\7\Downloads\uTorrent.exe
2014-12-23 17:41 - 2014-12-23 17:41 - 00000945 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Airytec Switch Off.lnk
2014-12-23 17:41 - 2014-12-23 17:41 - 00000000 ____D () C:\Users\7\AppData\Roaming\Airytec
2014-12-23 17:41 - 2014-12-23 17:41 - 00000000 ____D () C:\Program Files\Airytec
2014-12-23 17:40 - 2014-12-23 17:40 - 00255272 _____ () C:\Users\7\Downloads\swoff35(1).exe
2014-12-23 17:40 - 2014-12-23 17:40 - 00231920 _____ () C:\Users\7\Downloads\swoff35.exe
2014-12-23 17:39 - 2014-12-23 17:39 - 00868440 _____ (GoldSolution Software, Inc. ) C:\Users\7\Downloads\AutoShutdown(1).exe
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\ProgramData\PC Auto Shutdown
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Auto Shutdown
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\Program Files (x86)\PC Auto Shutdown
2014-12-23 17:36 - 2014-12-23 17:36 - 00003015 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Auto Shutdown.lnk
2014-12-23 17:36 - 2014-12-23 17:36 - 00000000 ____D () C:\Program Files (x86)\Media Freeware
2014-12-23 17:35 - 2014-12-23 17:35 - 01084416 _____ () C:\Users\7\Downloads\autoshutdown_setup.msi
2014-12-23 16:56 - 2014-12-23 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-23 16:46 - 2015-01-14 20:51 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-23 16:46 - 2015-01-14 16:51 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-23 16:46 - 2014-12-23 16:56 - 00000000 ____D () C:\Users\7\AppData\Local\Google
2014-12-23 16:46 - 2014-12-23 16:56 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-23 16:46 - 2014-12-23 16:46 - 00003884 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-23 16:46 - 2014-12-23 16:46 - 00003632 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-23 16:44 - 2014-12-23 16:45 - 00880784 _____ (Google Inc.) C:\Users\7\Downloads\ChromeSetup.exe
2014-12-23 14:38 - 2014-12-23 14:38 - 00001099 _____ () C:\Users\7\Desktop\Internet Mobile.lnk
2014-12-23 14:38 - 2014-12-23 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Mobile
2014-12-23 14:38 - 2014-12-23 14:38 - 00000000 ____D () C:\ProgramData\Internet Mobile
2014-12-23 14:37 - 2014-12-23 14:38 - 00000000 ____D () C:\ProgramData\DatacardService
2014-12-23 14:37 - 2014-12-23 14:38 - 00000000 ____D () C:\Program Files (x86)\Internet Mobile
2014-12-23 14:37 - 2014-12-23 14:37 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01001472 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00421888 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00223744 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00223232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00117248 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00098304 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00087040 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00072192 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00032768 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00028672 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00022016 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00013952 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-12-23 11:21 - 2014-12-23 11:21 - 00000000 ____D () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-12-23 11:20 - 2014-12-23 11:20 - 00417064 _____ () C:\Users\7\Downloads\DellSystemDetect(1).exe
2014-12-23 07:53 - 2014-12-23 07:54 - 08780754 _____ () C:\Users\7\Downloads\xlive.zip
2014-12-23 07:09 - 2014-12-23 07:10 - 02723264 _____ (Microsoft Corporation) C:\Users\7\Downloads\vcredist_x86.exe
2014-12-23 07:05 - 2014-12-23 07:05 - 00001342 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2014-12-23 07:05 - 2014-12-23 07:05 - 00000000 ____D () C:\Windows\SysWOW64\xlive
2014-12-23 07:05 - 2014-12-23 07:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2014-12-23 07:05 - 2014-12-23 07:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-12-23 07:03 - 2014-12-23 07:03 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-12-23 06:50 - 2014-12-23 06:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto IV
2014-12-22 15:13 - 2014-12-22 15:13 - 00000000 ____D () C:\Users\7\Documents\Multisoft
2014-12-22 15:09 - 2014-12-22 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Forward Development
2014-12-22 14:07 - 2014-12-22 15:54 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-22 14:07 - 2014-12-22 15:54 - 00000000 ____D () C:\Program Files\IDT
2014-12-22 14:07 - 2011-01-25 01:57 - 11941376 _____ (IDT, Inc.) C:\Windows\system32\idtsg64.cpl
2014-12-22 14:07 - 2011-01-25 01:57 - 04637184 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 01499136 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 00651776 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 00520192 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-12-22 14:07 - 2011-01-25 01:57 - 00431616 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 00220160 _____ (IDT, Inc.) C:\Windows\system32\st646324.dll
2014-12-22 14:07 - 2010-01-27 02:30 - 00162816 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2014-12-22 14:07 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTEC64.dll
2014-12-22 14:07 - 2009-03-03 01:58 - 00068608 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2014-12-22 13:57 - 2014-12-22 13:57 - 00000000 ____D () C:\Windows\Dell
2014-12-22 13:52 - 2014-12-22 13:57 - 28859960 _____ (Dell Inc.) C:\Users\7\Downloads\DRVR_WIN_R297613.EXE
2014-12-22 13:49 - 2014-12-22 13:57 - 00004910 _____ () C:\Windows\DPINST.LOG
2014-12-22 13:49 - 2014-12-22 13:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-12-22 13:49 - 2009-07-14 19:21 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2014-12-22 13:48 - 2014-12-22 13:48 - 00000000 ____D () C:\ProgramData\Dell
2014-12-22 13:47 - 2014-12-22 13:55 - 16306920 _____ (Dell Inc.) C:\Users\7\Downloads\DRVR_WIN_R300787.EXE
2014-12-22 13:47 - 2014-12-22 13:50 - 08466720 _____ (Dell Inc.) C:\Users\7\Downloads\DRVR_WIN_R304291.EXE
2014-12-22 13:46 - 2014-12-22 13:46 - 00000000 ____D () C:\Dell
2014-12-22 13:37 - 2014-12-22 15:54 - 00000000 ____D () C:\Users\7\AppData\Local\dell
2014-12-22 13:37 - 2014-12-22 13:42 - 27085528 _____ () C:\Users\7\Downloads\CV_WBF_Setup_Y2GT8_64bit_ZPE.exe
2014-12-22 13:37 - 2011-04-16 07:00 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-12-22 13:36 - 2014-12-22 13:46 - 69274472 _____ (Dell Inc.) C:\Users\7\Downloads\Input_Driver_VW486_WN_8.1200.101.134_A07.EXE
2014-12-22 13:25 - 2014-12-24 15:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-12-22 13:25 - 2014-12-22 15:54 - 00000000 ____D () C:\ProgramData\Avira
2014-12-22 13:25 - 2014-12-22 15:54 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-12-22 13:25 - 2014-12-22 13:25 - 04549888 _____ (Avira Operations & Co. KG) C:\Users\7\Downloads\avira_en_av___ws.exe
2014-12-22 13:25 - 2014-12-22 13:25 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-12-22 13:25 - 2014-12-22 13:25 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-22 13:23 - 2014-12-23 11:21 - 00000000 ____D () C:\Users\7\AppData\Local\Deployment
2014-12-22 13:23 - 2014-12-22 13:23 - 00417064 _____ () C:\Users\7\Downloads\DellSystemDetect.exe
2014-12-22 13:23 - 2014-12-22 13:23 - 00000000 ____D () C:\Users\7\AppData\Local\Apps\2.0
2014-12-22 11:26 - 2014-12-22 11:26 - 00001276 _____ () C:\Users\7\Desktop\Among the sleep.lnk
2014-12-22 11:26 - 2014-12-22 11:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-12-22 11:24 - 2014-12-22 11:24 - 00000000 ____D () C:\Users\7\AppData\Roaming\Among the sleep
2014-12-22 11:24 - 2014-12-22 11:24 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2014-12-22 07:48 - 2014-12-22 07:49 - 00000000 ____D () C:\Users\7\Desktop\Brothers - A Tale of Two Sons
2014-12-22 01:09 - 2014-12-22 01:09 - 00001459 _____ () C:\Users\7\Desktop\Core Temp - Shortcut.lnk
2014-12-21 10:39 - 2015-01-14 20:39 - 00356324 _____ () C:\Windows\WindowsUpdate.log
2014-12-21 10:39 - 2014-12-21 10:39 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-12-21 10:38 - 2014-12-21 10:38 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-12-21 10:38 - 2014-12-21 10:38 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-12-21 10:38 - 2014-12-21 10:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-12-21 10:35 - 2014-12-21 02:49 - 00000000 ____D () C:\Windows\Panther
2014-12-21 09:40 - 2014-12-21 09:40 - 00000000 ____D () C:\Users\7\AppData\Roaming\Macromedia
2014-12-21 09:40 - 2014-12-21 09:40 - 00000000 ____D () C:\Users\7\AppData\Roaming\Adobe
2014-12-21 09:40 - 2014-12-21 09:40 - 00000000 ____D () C:\Users\7\AppData\Local\Macromedia
2014-12-21 09:39 - 2014-12-21 09:39 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-21 09:39 - 2014-12-21 09:39 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-21 09:39 - 2014-12-21 09:39 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-12-21 09:39 - 2014-12-21 09:39 - 00000000 ____D () C:\Windows\system32\Macromed
2014-12-21 09:32 - 2014-12-29 07:22 - 00000000 ____D () C:\Users\7\AppData\Local\Adobe
2014-12-21 09:18 - 2014-12-21 09:24 - 00000000 ____D () C:\Users\7\Documents\My Games
2014-12-21 09:18 - 2014-12-21 09:18 - 00000000 ____D () C:\Users\7\AppData\Local\EMU
2014-12-21 09:16 - 2015-01-10 22:47 - 00000000 ____D () C:\Users\7\AppData\Roaming\MPC-HC
2014-12-21 09:16 - 2014-12-21 09:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2014-12-21 09:16 - 2014-12-21 09:16 - 00000000 ____D () C:\Program Files (x86)\MPC-HC
2014-12-21 08:41 - 2014-12-21 08:41 - 00009857 _____ () C:\Windows\DirectX.log
2014-12-21 08:41 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-21 08:41 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-12-21 08:41 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-21 08:41 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-12-21 08:41 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-12-21 08:41 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-12-21 08:41 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-12-21 08:41 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-12-21 08:41 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-12-21 08:41 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-12-21 08:41 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-12-21 08:41 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-12-21 08:41 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-12-21 08:41 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-12-21 08:41 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-12-21 08:41 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-12-21 08:41 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-12-21 08:41 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-12-21 08:41 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-12-21 08:41 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-12-21 08:41 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-12-21 08:41 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-12-21 08:41 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-12-21 08:41 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-12-21 08:41 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-12-21 08:41 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-12-21 08:41 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-12-21 08:41 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-12-21 08:41 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-12-21 08:41 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-12-21 08:41 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-12-21 08:41 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-12-21 08:41 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-12-21 08:41 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-12-21 08:41 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-12-21 08:41 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-12-21 08:41 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-12-21 08:41 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-12-21 08:41 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-12-21 08:41 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-12-21 08:41 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-12-21 08:41 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-12-21 08:41 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-21 08:41 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-21 08:41 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-12-21 08:41 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-12-21 08:41 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-12-21 08:41 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-12-21 08:41 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-12-21 08:41 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-12-21 08:41 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-12-21 08:41 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-12-21 08:41 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-12-21 08:41 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-12-21 08:41 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-12-21 08:41 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-12-21 08:41 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-12-21 08:41 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-12-21 08:41 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-12-21 08:41 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-12-21 08:41 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-12-21 08:41 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-12-21 08:41 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-12-21 08:41 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-12-21 08:41 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-12-21 08:41 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-12-21 08:41 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-12-21 08:41 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-12-21 08:41 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-12-21 08:41 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-12-21 08:41 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-12-21 08:41 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-12-21 08:41 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-12-21 08:41 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-12-21 08:40 - 2014-12-21 08:40 - 00002191 _____ () C:\Users\Public\Desktop\Crysis 2.lnk
2014-12-21 08:40 - 2014-12-21 08:40 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-12-21 08:40 - 2014-12-21 08:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. BoxPack
2014-12-21 08:26 - 2014-12-21 08:28 - 00000000 ____D () C:\Program Files (x86)\R.G. BoxPack
2014-12-21 07:19 - 2014-12-21 07:19 - 01689384 _____ (techPowerUp (www.techpowerup.com)) C:\Users\7\Downloads\GPU-Z.0.8.0.exe
2014-12-21 07:05 - 2014-12-21 07:05 - 00000873 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-12-21 07:05 - 2014-12-21 07:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-12-21 07:05 - 2014-12-21 07:05 - 00000000 ____D () C:\Program Files\CPUID
2014-12-21 07:01 - 2014-12-21 07:01 - 01577464 _____ ( ) C:\Users\7\Downloads\cpu-z_1.71.1-setup-en.exe
2014-12-21 06:53 - 2015-01-06 16:45 - 00000000 ____D () C:\New folder
2014-12-21 06:46 - 2015-01-14 09:16 - 00047336 _____ () C:\Windows\SysWOW64\Gms.log
2014-12-21 06:41 - 2014-12-30 16:42 - 00057560 _____ () C:\Users\7\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-21 06:41 - 2014-12-21 06:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-12-21 06:41 - 2014-12-21 06:41 - 00000000 ____D () C:\Users\7\AppData\Roaming\Intel Corporation
2014-12-21 06:38 - 2014-12-21 06:41 - 00000000 ____D () C:\Program Files\Intel
2014-12-21 06:38 - 2014-12-21 06:38 - 00003967 _____ () C:\Windows\system32\WmiConf.txt
2014-12-21 06:38 - 2014-12-21 06:38 - 00000212 _____ () C:\Windows\system32\WINS.txt
2014-12-21 06:38 - 2014-12-21 06:38 - 00000131 _____ () C:\Windows\system32\StaticIP.txt
2014-12-21 06:38 - 2014-12-21 06:37 - 00001904 ____N () C:\Windows\system32\SetupBD.din
2014-12-21 06:37 - 2014-12-21 06:38 - 00000000 ____D () C:\Users\7\Downloads\19_5_CD
2014-12-21 06:37 - 2014-12-21 06:37 - 00403256 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2014-12-21 06:37 - 2014-12-21 06:37 - 00316736 _____ (Intel Corporation) C:\Windows\system32\PRONtObj.dll
2014-12-21 06:37 - 2014-12-21 06:37 - 00163528 _____ (Intel Corporation) C:\Windows\system32\Drivers\iANSW60e.sys
2014-12-21 06:36 - 2014-12-21 06:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-12-21 06:35 - 2014-12-21 06:36 - 12443632 _____ (Intel Corporation) C:\Users\7\Downloads\irst_13.5.0.1056_pv.exe
2014-12-21 06:34 - 2014-12-21 06:34 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-12-21 06:31 - 2012-07-26 04:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-12-21 06:31 - 2012-07-26 04:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-12-21 06:31 - 2012-07-26 02:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-12-21 06:31 - 2012-06-02 14:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-12-21 06:26 - 2014-12-21 06:26 - 00016162 _____ () C:\Windows\system32\results.xml
2014-12-21 06:19 - 2014-12-21 06:41 - 00798516 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-21 06:18 - 2014-12-22 13:37 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-21 06:18 - 2014-12-21 06:34 - 00000000 ____D () C:\ProgramData\Intel
2014-12-21 06:18 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-12-21 06:18 - 2012-05-15 07:13 - 00020992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-12-21 06:18 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-12-21 06:18 - 2012-05-15 06:20 - 00017920 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-12-21 06:13 - 2014-12-21 06:13 - 00000000 ____D () C:\Users\7\Intel
2014-12-21 06:08 - 2014-12-21 06:14 - 81494865 _____ () C:\Users\7\Downloads\19_5_CD.zip
2014-12-21 05:48 - 2014-12-21 06:08 - 104864544 _____ (Intel Corporation) C:\Users\7\Downloads\Intel_Management_Engine_Interface_5M_10.0.31.1000.exe
2014-12-21 05:48 - 2014-12-21 06:04 - 145417920 _____ (Intel Corporation) C:\Users\7\Downloads\win64_152822.exe
2014-12-21 05:45 - 2014-12-21 05:45 - 00255880 _____ () C:\Users\7\Downloads\MaConfig_win.exe
2014-12-21 05:45 - 2014-12-21 05:45 - 00000953 _____ () C:\Users\Public\Desktop\Ma-Config.com - Start the detection.lnk
2014-12-21 05:45 - 2014-12-21 05:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
2014-12-21 05:45 - 2014-12-21 05:45 - 00000000 ____D () C:\ProgramData\ma-config.com
2014-12-21 05:45 - 2014-12-21 05:45 - 00000000 ____D () C:\Program Files\ma-config.com
2014-12-21 05:43 - 2015-01-14 13:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-21 05:43 - 2014-12-21 05:43 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-12-21 05:43 - 2014-12-21 05:43 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-12-21 05:43 - 2014-12-21 05:43 - 00000000 ____D () C:\Users\7\AppData\Roaming\Mozilla
2014-12-21 05:43 - 2014-12-21 05:43 - 00000000 ____D () C:\Users\7\AppData\Local\Mozilla
2014-12-21 05:43 - 2014-12-21 05:43 - 00000000 ____D () C:\ProgramData\Mozilla
2014-12-21 05:41 - 2014-12-21 05:41 - 00000000 ____D () C:\Users\7\AppData\Roaming\Roxio Log Files
2014-12-21 05:37 - 2014-12-21 05:37 - 00000000 ____D () C:\Windows\Options
2014-12-21 05:37 - 2009-06-09 13:28 - 00064000 ____N (LSI Corporation) C:\Windows\SysWOW64\agrsmdel.exe
2014-12-21 05:37 - 2009-03-27 18:12 - 00014848 ____N (LSI Corporation) C:\Windows\SysWOW64\agrsco64.dll
2014-12-21 05:37 - 2009-03-27 18:12 - 00013824 ____N (LSI Corporation) C:\Windows\SysWOW64\agrscoin.dll
2014-12-21 02:50 - 2014-12-21 02:50 - 00001417 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-12-21 02:49 - 2015-01-14 15:33 - 00000000 ____D () C:\Users\7
2014-12-21 02:49 - 2014-12-22 11:26 - 00000000 ____D () C:\Users\7\AppData\Local\VirtualStore
2014-12-21 02:49 - 2014-12-21 02:50 - 00001451 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-21 02:49 - 2014-12-21 02:49 - 00000020 ___SH () C:\Users\7\ntuser.ini
2014-12-21 02:49 - 2009-07-14 04:54 - 00000000 ___RD () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-21 02:49 - 2009-07-14 04:49 - 00000000 ___RD () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-16 12:41 - 2014-11-29 00:37 - 00180648 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-14 20:33 - 2009-07-14 04:45 - 00016640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-14 20:33 - 2009-07-14 04:45 - 00016640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-14 09:13 - 2009-07-14 05:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-14 09:13 - 2009-07-14 04:51 - 00041180 _____ () C:\Windows\setupact.log
2015-01-13 18:45 - 2009-07-14 05:13 - 00783114 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-11 13:56 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-07 13:28 - 2010-11-21 07:16 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-01-04 09:08 - 2010-11-21 03:47 - 00141922 _____ () C:\Windows\PFRO.log
2015-01-03 15:15 - 2014-09-19 14:37 - 00000000 ____D () C:\Windows.old
2014-12-31 07:30 - 2009-07-14 04:45 - 00275432 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-23 07:06 - 2009-07-14 03:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-12-23 07:05 - 2009-07-14 05:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-22 15:54 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\registration
2014-12-22 12:56 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\rescache
2014-12-21 10:38 - 2009-07-14 04:46 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-12-21 10:38 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-12-21 10:36 - 2010-11-21 07:16 - 00000000 ____D () C:\Windows\CSC
2014-12-21 10:35 - 2013-04-16 19:47 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-12-21 10:35 - 2009-07-14 05:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-12-21 10:35 - 2009-07-14 05:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-12-21 08:48 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-12-21 07:11 - 2009-07-14 03:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-21 06:40 - 2009-07-14 03:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-21 06:37 - 2014-05-02 12:02 - 00495376 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1c62x64.sys
2014-12-21 06:37 - 2009-07-14 05:32 - 00000000 ____D () C:\Windows\system32\restore
2014-12-21 06:18 - 2013-04-17 08:24 - 00000000 ____D () C:\Intel
2014-12-21 05:41 - 2014-02-18 13:40 - 00000000 ____D () C:\SWSetup
2014-12-21 02:49 - 2013-04-16 10:00 - 00000000 __SHD () C:\Recovery
2014-12-21 02:49 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\Recovery

Some content of TEMP:
====================
C:\Users\7\AppData\Local\Temp\avgnt.exe
C:\Users\7\AppData\Local\Temp\mfc80.dll
C:\Users\7\AppData\Local\Temp\mfc80u.dll
C:\Users\7\AppData\Local\Temp\mfcm80.dll
C:\Users\7\AppData\Local\Temp\mfcm80u.dll
C:\Users\7\AppData\Local\Temp\msvcm80.dll
C:\Users\7\AppData\Local\Temp\msvcp80.dll
C:\Users\7\AppData\Local\Temp\msvcr80.dll
C:\Users\7\AppData\Local\Temp\OSU.exe
C:\Users\7\AppData\Local\Temp\Uninstaller.exe
C:\Users\7\AppData\Local\Temp\utt49B5.tmp.exe
C:\Users\7\AppData\Local\Temp\WtgDriverInstallX.dll
C:\Users\7\AppData\Local\Temp\WTGXMLUtil.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-14 18:26

==================== End Of Log ============================

 

 

 

additional log

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-01-2015 01
Ran by 7 at 2015-01-14 21:17:55
Running from C:\Users\7\Downloads\Programs
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\uTorrent) (Version: 3.4.2.37594 - BitTorrent Inc.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Airytec Switch Off (HKLM\...\Airytec Switch Off) (Version: 3.5 - Airytec)
Among the sleep (HKLM-x32\...\Among the sleep_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Any Video Converter 5.7.6 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Avira (HKLM-x32\...\{e7c7c227-b742-4878-9425-f09bbf9951db}) (Version: 1.1.27.25527 - Avira Operations & Co. KG)
Avira (x32 Version: 1.1.27.25527 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
City Car Driving 1.2.2 (HKLM-x32\...\{CC457F3D-5CDE-4CE8-9685-90A4EDE81374}_is1) (Version:  - Forward Development)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Crysis 2 (HKLM-x32\...\{D879A56D-5282-4157-A7EB-EF5B1F00B403}_is1) (Version: 1.9 - R.G.BoxPack)
Dell System Detect (HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\73f463568823ebbe) (Version: 5.13.0.1 - Dell)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FastStone Capture 7.3 (HKLM-x32\...\FastStone Capture) (Version: 7.3 - FastStone Soft)
FIRST AND LAST Co., Ltd. Sys Toolbox Pro 2.3.0.0 (HKLM-x32\...\Sys Toolbox Pro) (Version: 2.3.0.0 - FIRST AND LAST Co., Ltd.)
Free Auto Shutdown (HKLM-x32\...\{06F6873A-C03B-4417-A7BB-8A7F788EBEB3}) (Version: 1.0.0 - Media Freeware)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Grand Theft Auto IV_is1) (Version: 1.0.4.0 - )
HyperCam 3 (HKLM-x32\...\HyperCam 3 3.5.1210.30) (Version: 3.5.1210.30 - Solveig Multimedia)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation)
Intel® Network Connections 19.5.300.2 (HKLM\...\PROSetDX) (Version: 19.5.300.2 - Intel)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3517 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.5.0.1056 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
Internet Mobile (HKLM-x32\...\Internet Mobile) (Version: 21.005.22.00.162 - Huawei Technologies Co.,Ltd)
K-Lite Codec Pack 10.9.0 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.9.0 - )
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Ma-Config.com (64 bits) (HKLM\...\{97B0A315-547D-44DE-97FE-8D8C3FB2009A}) (Version: 7.1.5.0 - Cybelsoft)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 35.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 35.0 (x86 en-US)) (Version: 35.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MPC-HC 1.7.7 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.7 - MPC-HC Team)
PC Auto Shutdown 5.6 (HKLM-x32\...\PC Auto Shutdown_is1) (Version: 5.6 - GoldSolution Software, Inc.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
System Requirements Lab Detection (HKLM-x32\...\{DE6586E2-6FEC-4A80-9AB0-2CAC69EF1362}) (Version: 2.2.4.0 - Husdawg, LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

09-01-2015 11:48:17 Removed Microsoft Visual C++ 2005 Redistributable
09-01-2015 11:49:25 Removed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 02:34 - 2009-06-10 21:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {44B59949-C1D1-462B-9457-C8D977F48F5C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {55DAC14A-4208-489A-AB60-607AC934ECA8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {89880C2D-116F-40F0-AF3C-E0B2B5F1D2A3} - System32\Tasks\{88744516-0AD5-4561-BEC8-C0DA29C5491F} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.64.106&LastError=12031
Task: {A1F32212-0E62-4364-86A3-696ACB1D9751} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {AE2EAA4C-F6D0-4935-B5A3-71EC00764060} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2014-12-12] ()
Task: {C9CA4631-58EB-49DC-9C4B-9646564C4B71} - System32\Tasks\{4DC7E16F-3AF1-480C-9704-A4E960ED23BB} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=7.0.0.102&LastError=12031
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-03-14 15:27 - 2011-03-14 15:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2014-12-23 14:38 - 2014-12-23 14:37 - 00655712 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
2014-03-20 08:34 - 2014-03-20 08:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00514560 _____ () C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
2014-12-23 14:38 - 2014-12-23 14:37 - 00011362 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\mingwm10.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 00043008 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\libgcc_s_dw2-1.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 02415104 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtCore4.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 01148416 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtNetwork4.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 00835072 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QueryStrategy.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 00398336 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtXml4.dll
2014-12-25 06:43 - 2012-10-30 13:25 - 00121712 _____ () C:\Program Files (x86)\HyperCam 3\SMM_OverlayHook.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00430592 _____ () C:\Program Files (x86)\Internet Mobile\core.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00264192 _____ () C:\Program Files (x86)\Internet Mobile\sdk.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00011362 _____ () C:\Program Files (x86)\Internet Mobile\mingwm10.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00043008 _____ () C:\Program Files (x86)\Internet Mobile\libgcc_s_dw2-1.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 02415104 _____ () C:\Program Files (x86)\Internet Mobile\QtCore4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 09515520 _____ () C:\Program Files (x86)\Internet Mobile\QtGui4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 15675904 _____ () C:\Program Files (x86)\Internet Mobile\QtWebKit4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01148416 _____ () C:\Program Files (x86)\Internet Mobile\QtNetwork4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 03962880 _____ () C:\Program Files (x86)\Internet Mobile\QtXmlPatterns4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00306176 _____ () C:\Program Files (x86)\Internet Mobile\phonon4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00382464 _____ () C:\Program Files (x86)\Internet Mobile\Proxy.DLL
2014-12-23 14:37 - 2014-12-23 14:37 - 00218112 _____ () C:\Program Files (x86)\Internet Mobile\Common.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00135168 _____ () C:\Program Files (x86)\Internet Mobile\Trace.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00545280 _____ () C:\Program Files (x86)\Internet Mobile\PluginContainer.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00238080 _____ () C:\Program Files (x86)\Internet Mobile\AtCodec.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00304128 _____ () C:\Program Files (x86)\Internet Mobile\DeviceSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00238592 _____ () C:\Program Files (x86)\Internet Mobile\NetSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00133120 _____ () C:\Program Files (x86)\Internet Mobile\OSDialup.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00161792 _____ () C:\Program Files (x86)\Internet Mobile\XCodec.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00157184 _____ () C:\Program Files (x86)\Internet Mobile\DataServicePlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00176128 _____ () C:\Program Files (x86)\Internet Mobile\CallSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00264704 _____ () C:\Program Files (x86)\Internet Mobile\AddrBookSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00217600 _____ () C:\Program Files (x86)\Internet Mobile\SmsSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00142336 _____ () C:\Program Files (x86)\Internet Mobile\USSDSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00156672 _____ () C:\Program Files (x86)\Internet Mobile\STKSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00154624 _____ () C:\Program Files (x86)\Internet Mobile\GpsSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00339968 _____ () C:\Program Files (x86)\Internet Mobile\DeviceAppPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00065536 _____ () C:\Program Files (x86)\Internet Mobile\OSPowerMgr.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00114688 _____ () C:\Program Files (x86)\Internet Mobile\Win7Support.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01078272 _____ () C:\Program Files (x86)\Internet Mobile\AddrBookPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00670720 _____ () C:\Program Files (x86)\Internet Mobile\SmsAppPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00182272 _____ () C:\Program Files (x86)\Internet Mobile\CallAppPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00547840 _____ () C:\Program Files (x86)\Internet Mobile\CallLogSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00158720 _____ () C:\Program Files (x86)\Internet Mobile\NetConnectSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00211968 _____ () C:\Program Files (x86)\Internet Mobile\DialUpPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00102400 _____ () C:\Program Files (x86)\Internet Mobile\OSAdapt.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00180736 _____ () C:\Program Files (x86)\Internet Mobile\NDISPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00131072 _____ () C:\Program Files (x86)\Internet Mobile\OSNDIS.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01101824 _____ () C:\Program Files (x86)\Internet Mobile\NDISAPI.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00278528 _____ () C:\Program Files (x86)\Internet Mobile\NetInfoSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00062976 _____ () C:\Program Files (x86)\Internet Mobile\OSCall.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00539648 _____ () C:\Program Files (x86)\Internet Mobile\DeviceMgrUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00398336 _____ () C:\Program Files (x86)\Internet Mobile\QtXml4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00123392 _____ () C:\Program Files (x86)\Internet Mobile\ATR2SMgr.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00184832 _____ () C:\Program Files (x86)\Internet Mobile\XFramePlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00309760 _____ () C:\Program Files (x86)\Internet Mobile\StatusBarMgrPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00117760 _____ () C:\Program Files (x86)\Internet Mobile\LayoutPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00446976 _____ () C:\Program Files (x86)\Internet Mobile\DialupUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00093184 _____ () C:\Program Files (x86)\Internet Mobile\NotifyServicePlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00335360 _____ () C:\Program Files (x86)\Internet Mobile\NetConnectPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00297472 _____ () C:\Program Files (x86)\Internet Mobile\MenuMgrPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00486400 _____ () C:\Program Files (x86)\Internet Mobile\NetInfoUIExPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00827392 _____ () C:\Program Files (x86)\Internet Mobile\SMSUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00771584 _____ () C:\Program Files (x86)\Internet Mobile\AddrBookUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00210944 _____ () C:\Program Files (x86)\Internet Mobile\ToolBarMgrPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00693760 _____ () C:\Program Files (x86)\Internet Mobile\LiveUpdateInterface.DLL
2014-12-23 14:37 - 2014-12-23 14:37 - 00082944 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qgif4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00081920 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qico4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00192000 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qjpeg4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00350720 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qmng4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00370176 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qtiff4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00197632 _____ () C:\Program Files (x86)\Internet Mobile\plugins\codecs\qcncodecs4.dll
2014-11-10 12:12 - 2014-11-10 12:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-12-23 16:56 - 2014-12-06 01:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-23 16:56 - 2014-12-06 01:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-23 16:56 - 2014-12-06 01:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-23 16:56 - 2014-12-06 01:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
2015-01-14 10:29 - 2015-01-14 10:29 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-12-25 06:44 - 2012-10-30 13:25 - 00915824 _____ () C:\Program Files (x86)\Common Files\Solveig Multimedia\HCBar.dll
2014-12-21 09:39 - 2014-12-21 09:39 - 16843952 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: MaConfigAgent => 2
MSCONFIG\startupfolder: C:^Users^7^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Product Registration.lnk => C:\Windows\pss\Logitech . Product Registration.lnk.Startup
MSCONFIG\startupreg: Airytec Switch Off => "C:\Program Files\Airytec\Switch Off\swoff.exe" -auto
MSCONFIG\startupreg: DellSystemDetect => C:\Users\7\AppData\Local\Apps\2.0\TJOL8Q4O.O51\5ZBRJG3B.MXH\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
MSCONFIG\startupreg: IDMan => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: PC Auto Shutdown => "C:\Program Files (x86)\PC Auto Shutdown\AutoShutdown.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\7\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

========================= Accounts: ==========================

7 (S-1-5-21-4103414334-2902596384-2875847003-1000 - Administrator - Enabled) => C:\Users\7
Administrator (S-1-5-21-4103414334-2902596384-2875847003-500 - Administrator - Disabled)
Guest (S-1-5-21-4103414334-2902596384-2875847003-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Broadcom USH
Description: Broadcom USH
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Mass Storage Controller
Description: Mass Storage Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Network Controller
Description: Network Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/14/2015 03:24:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Skype.exe version 7.0.0.102 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 7a0

Start Time: 01d02fe0cb0767fc

Termination Time: 146

Application Path: C:\Program Files (x86)\Skype\Phone\Skype.exe

Report Id:

Error: (01/14/2015 03:24:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 35.0.0.5486 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1794

Start Time: 01d03005f4200d98

Termination Time: 177

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id:

Error: (01/14/2015 00:50:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Starter.exe, version: 0.0.0.0, time stamp: 0x4ef409a1
Faulting module name: mangalore.dll, version: 0.0.0.0, time stamp: 0x4eef1fbf
Exception code: 0xc0000005
Fault offset: 0x000ccab0
Faulting process id: 0xee8
Faulting application start time: 0xStarter.exe0
Faulting application path: Starter.exe1
Faulting module path: Starter.exe2
Report Id: Starter.exe3

Error: (01/14/2015 09:15:22 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/13/2015 03:05:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/13/2015 00:27:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/12/2015 03:18:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/12/2015 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/11/2015 04:31:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Starter.exe, version: 0.0.0.0, time stamp: 0x4ef409a1
Faulting module name: d3d9renderer.dll, version: 0.0.0.0, time stamp: 0x4eef2209
Exception code: 0xc0000005
Fault offset: 0x0000b9a0
Faulting process id: 0x404
Faulting application start time: 0xStarter.exe0
Faulting application path: Starter.exe1
Faulting module path: Starter.exe2
Report Id: Starter.exe3

Error: (01/11/2015 02:20:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/14/2015 09:13:43 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Internet Mobile. OUC service failed to start due to the following error:
%%1053

Error: (01/14/2015 09:13:43 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Internet Mobile. OUC service to connect.

Error: (01/13/2015 03:03:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Internet Mobile. OUC service failed to start due to the following error:
%%1053

Error: (01/13/2015 03:03:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Internet Mobile. OUC service to connect.

Error: (01/13/2015 00:26:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Internet Mobile. OUC service failed to start due to the following error:
%%1053

Error: (01/13/2015 00:26:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Internet Mobile. OUC service to connect.

Error: (01/13/2015 01:33:17 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/12/2015 03:20:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Rapid Storage Technology service to connect.

Error: (01/12/2015 03:16:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Internet Mobile. OUC service failed to start due to the following error:
%%1053

Error: (01/12/2015 03:16:50 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Internet Mobile. OUC service to connect.


Microsoft Office Sessions:
=========================
Error: (01/14/2015 03:24:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe7.0.0.1027a001d02fe0cb0767fc146C:\Program Files (x86)\Skype\Phone\Skype.exe

Error: (01/14/2015 03:24:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe35.0.0.5486179401d03005f4200d98177C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Error: (01/14/2015 00:50:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Starter.exe0.0.0.04ef409a1mangalore.dll0.0.0.04eef1fbfc0000005000ccab0ee801d02ff5fd9d1486C:\City Car Driving\bin\win32\Starter.exeC:\City Car Driving\bin\win32\mangalore.dlle57f7219-9beb-11e4-8d94-001e101f8924

Error: (01/14/2015 09:15:22 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/13/2015 03:05:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/13/2015 00:27:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/12/2015 03:18:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/12/2015 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/11/2015 04:31:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Starter.exe0.0.0.04ef409a1d3d9renderer.dll0.0.0.04eef2209c00000050000b9a040401d02dbc03a057dbC:\City Car Driving\bin\win32\Starter.exeC:\City Car Driving\bin\win32\d3d9renderer.dll45c21079-99af-11e4-89b5-001e101fabdd

Error: (01/11/2015 02:20:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Processor: Intel® Core™ i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 68%
Total physical RAM: 3976.9 MB
Available physical RAM: 1260.5 MB
Total Pagefile: 7952 MB
Available Pagefile: 3710.36 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:298.09 GB) (Free:135.23 GB) NTFS ==>[Drive with boot components (obtained from BCD)]


Edited by green_stuff, 15 January 2015 - 07:10 AM.


#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:06:06 PM

Posted 15 January 2015 - 10:17 AM

That's not the full Addition Log. Please repost. Also, please move FRST to your Desktop. :)

Step 1: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1
  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.
Note: The log can also be found in here: C:\AdwCleaner\

Step 2: Malwarebytes

Please download Malwarebytes Anti-Malware to your desktop Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings.JPG

Go back to the Dashboard and select Scan Now

MBAMScan.JPG

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG

MBAMLog.JPG

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log

Step 3: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 green_stuff

green_stuff
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:06 PM

Posted 15 January 2015 - 06:12 PM

adware cleaner log

 

# AdwCleaner v4.107 - Report created 15/01/2015 at 20:46:25
# Updated 07/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : 7 - 7-PC
# Running from : C:\Users\7\Downloads\Programs\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
File Deleted : C:\Users\7\AppData\Local\Temp\uninstaller.exe
File Deleted : C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKCU\Software\Softonic

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7601.17514


-\\ Mozilla Firefox v35.0 (x86 en-US)


-\\ Google Chrome v39.0.2171.95


*************************

AdwCleaner[R0].txt - [1742 octets] - [15/01/2015 20:41:06]
AdwCleaner[S0].txt - [1633 octets] - [15/01/2015 20:46:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1693 octets] ##########
 

anti malware

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/15/2015
Scan Time: 9:01:04 PM
Logfile: sa.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.15.13
Rootkit Database: v2015.01.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: 7

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 326218
Time Elapsed: 44 min, 17 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

junkware

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 7 Ultimate x64
Ran by 7 on Thu 01/15/2015 at 22:48:52.70
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\Windows\prefetch\DRIVERSETUP.EXE-BB39CF0A.pf



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\7\AppData\Roaming\mozilla\firefox\profiles\ztyw3ic9.default\minidumps [3 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 01/15/2015 at 22:52:03.97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

FRST log

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-01-2015 01
Ran by 7 (administrator) on 7-PC on 15-01-2015 22:56:38
Running from C:\Users\7\Desktop
Loaded Profiles: 7 &  (Available profiles: 7)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
(GoldSolution Software, Inc.) C:\Program Files (x86)\PC Auto Shutdown\ShutdownService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Thisisu) C:\Users\7\Downloads\Programs\JRT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(IDEVFH) C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322712 2014-10-09] (Intel Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [126200 2014-11-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672 2014-12-24] (Tonec Inc.)
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672 2014-12-24] (Tonec Inc.)
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672 2014-12-24] (Tonec Inc.)
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (Tonec Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-sa/?ocid=iehp
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-sa/?ocid=iehp
HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-sa/?ocid=iehp
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Tcpip\..\Interfaces\{00824E69-83DC-4CF0-A738-D6F1CB3CE52D}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{445466B4-DA0C-4D45-88F7-E0C880F61A45}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{647C2CD6-5122-497E-950C-16FCB0B80E8D}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{AB7114F6-27E2-43B3-AB58-B29D3D7529E8}: [NameServer] 212.217.0.12 212.217.1.12
Tcpip\..\Interfaces\{DD5AA6B3-6BCB-436C-9010-BF7FF0E3B383}: [NameServer] 62.251.230.241 212.217.1.1
Tcpip\..\Interfaces\{F3F05E69-387A-4417-B3D8-46BA7D559192}: [NameServer] 62.251.230.241 212.217.1.1

FireFox:
========
FF ProfilePath: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\Extensions\abs@avira.com [2014-12-22]
FF Extension: Memory Fox - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2015-01-14]
FF Extension: Adblock Plus - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\ztyw3ic9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-21]
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\7\AppData\Roaming\IDM\idmmzcc5 [2014-12-24]
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\7\AppData\Roaming\IDM\idmmzcc5

Chrome:
=======
CHR Profile: C:\Users\7\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-23]
CHR Extension: (Google Docs) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-23]
CHR Extension: (Google Drive) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-23]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-24]
CHR Extension: (YouTube) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-23]
CHR Extension: (Google Search) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-23]
CHR Extension: (Google Sheets) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-23]
CHR Extension: (AdBlock) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-12-25]
CHR Extension: (IDM Integration Module) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn [2014-12-24]
CHR Extension: (Google Wallet) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-23]
CHR Extension: (Gmail) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-23]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-12-16]
CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-12-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [166192 2014-11-20] (Avira Operations GmbH & Co. KG)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18584 2014-10-09] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Corporation)
S2 Internet Mobile. RunOuc; C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe [655712 2014-12-23] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation)
S4 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2820424 2014-10-15] (CybelSoft)
R2 PCAutoShutdown_Service; C:\Program Files (x86)\PC Auto Shutdown\ShutdownService.exe [442136 2011-11-14] (GoldSolution Software, Inc.)
S2 SwOffScheduler; C:\Program Files\Airytec\Switch Off\swoff.exe [173056 2014-09-23] (Airytec) [File not signed]
S2 SwOffWeb; C:\Program Files\Airytec\Switch Off\swoff.exe [173056 2014-09-23] (Airytec) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [25088 2015-01-07] (Windows ® Codename Longhorn DDK provider) [File not signed]
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131608 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30360 2014-10-09] (Intel Corporation)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [119680 2015-01-07] (TCT International Mobile Ltd) [File not signed]
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2014-02-24] (CybelSoft)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-15] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation)
S3 ALSysIO; \??\C:\Users\7\AppData\Local\Temp\ALSysIO64.sys [X]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-15 22:56 - 2015-01-15 22:57 - 00020097 _____ () C:\Users\7\Desktop\FRST.txt
2015-01-15 22:54 - 2015-01-15 22:54 - 00001050 _____ () C:\Users\7\Desktop\sa.txt
2015-01-15 22:52 - 2015-01-15 22:52 - 00000832 _____ () C:\Users\7\Desktop\JRT.txt
2015-01-15 22:48 - 2015-01-15 22:48 - 00000000 ____D () C:\Windows\ERUNT
2015-01-15 20:55 - 2015-01-15 21:01 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-15 20:54 - 2015-01-15 20:54 - 00001110 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-15 20:54 - 2015-01-15 20:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-15 20:54 - 2015-01-15 20:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-15 20:54 - 2015-01-15 20:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-15 20:54 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-15 20:54 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-15 20:54 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-15 20:40 - 2015-01-15 20:46 - 00000000 ____D () C:\AdwCleaner
2015-01-15 20:18 - 2015-01-15 20:20 - 30349014 _____ () C:\Users\7\Downloads\Race%20the%20Traffic%20Moto.apk
2015-01-15 17:49 - 2011-09-25 00:55 - 00069929 _____ () C:\Users\7\Desktop\Thor.2011.BluRay.1080p.DTSMA.dxva.x264-FLAWL3SS.srt
2015-01-15 17:19 - 2011-08-26 13:15 - 00071760 _____ () C:\Users\7\Desktop\Thor 2011 720p BRRip XviD AC3-ViSiON.srt
2015-01-15 17:07 - 2015-01-15 17:08 - 13080859 _____ () C:\Users\7\Downloads\RockPlayer2-2.3.2.apk
2015-01-14 21:10 - 2015-01-15 22:56 - 00000000 ____D () C:\FRST
2015-01-14 21:09 - 2015-01-14 21:09 - 02125312 _____ (Farbar) C:\Users\7\Desktop\FRST64.exe
2015-01-14 10:29 - 2015-01-14 10:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-13 23:00 - 2015-01-14 17:29 - 00000000 ____D () C:\Users\7\Desktop\lol
2015-01-13 12:27 - 2015-01-13 09:29 - 561418240 ____R () C:\Users\7\Microsoft.Office.Professional.2007.FRENCH.REPACK.iSO-iND-David91.iso
2015-01-11 00:18 - 2015-01-10 18:57 - 63251756 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E07.Your.Place.or.Mine.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull.mp4
2015-01-11 00:18 - 2015-01-10 18:49 - 49294745 _____ () C:\Users\7\Desktop\Watch ray 106 med avi.mp4
2015-01-11 00:18 - 2015-01-10 18:40 - 65932769 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E05.Look.Don't.Touch.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull.mp4
2015-01-11 00:18 - 2015-01-10 18:36 - 63490964 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E04.Standard.Deviation.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull.mp4
2015-01-11 00:18 - 2015-01-10 18:32 - 63781394 _____ () C:\Users\7\Desktop\Watch Everybody.Loves.Raymond.S01E02.I.Love.You.480p.WEB-DL.x264-Sticky83.mkv.mp4 online - VidBull_2.mp4
2015-01-11 00:18 - 2015-01-10 18:21 - 42506490 _____ () C:\Users\7\Desktop\176 The Puerto Rican Day.mpg - DivxStage.flv
2015-01-10 14:24 - 2015-01-10 14:24 - 00001888 _____ () C:\Users\7\Desktop\Crazy - Shortcut.lnk
2015-01-10 14:00 - 2015-01-10 14:00 - 00001503 _____ () C:\Users\7\Desktop\Nouveau dossier - Shortcut.lnk
2015-01-10 13:53 - 2015-01-10 13:53 - 00001766 _____ () C:\Users\7\Desktop\07 Piste 7 - Shortcut.lnk
2015-01-08 19:06 - 2015-01-08 19:06 - 00000000 ____D () C:\Windows\pss
2015-01-07 17:59 - 2015-01-07 17:59 - 00000000 ____D () C:\Users\7\AppData\Roaming\Temp
2015-01-07 10:54 - 2015-01-07 10:54 - 00119680 _____ (TCT International Mobile Ltd) C:\Windows\system32\Drivers\jrdusbser.sys
2015-01-07 10:54 - 2015-01-07 10:54 - 00025088 _____ (Windows ® Codename Longhorn DDK provider) C:\Windows\system32\Drivers\AlcatelUsb.sys
2015-01-06 18:26 - 2015-01-06 18:27 - 00000000 ____D () C:\Users\7\Desktop\New folder (4)
2015-01-06 13:04 - 2015-01-13 19:27 - 00000000 ____D () C:\Users\7\Desktop\clean
2015-01-04 20:58 - 2015-01-04 20:58 - 00000815 _____ () C:\Users\7\Desktop\Starter - Shortcut.lnk
2015-01-03 18:50 - 2015-01-03 18:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sys Toolbox Pro
2015-01-03 18:50 - 2015-01-03 18:50 - 00000000 ____D () C:\Program Files (x86)\FIRST AND LAST Co., Ltd
2015-01-03 18:50 - 2010-07-01 03:32 - 00067312 _____ (Just Great Software) C:\Windows\UnDeployV.exe
2015-01-03 16:20 - 2015-01-03 16:22 - 00000000 ____D () C:\City Car Driving
2015-01-03 16:11 - 2015-01-03 16:11 - 00000000 ____D () C:\Users\7\AppData\Roaming\WinRAR
2015-01-03 16:11 - 2015-01-03 16:11 - 00000000 ____D () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-03 16:11 - 2015-01-03 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-03 16:10 - 2015-01-03 16:11 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-02 06:50 - 2015-01-02 06:50 - 00000000 ____D () C:\Windows\Minidump
2015-01-02 06:49 - 2015-01-02 06:49 - 403835161 _____ () C:\Windows\MEMORY.DMP
2014-12-31 16:36 - 2015-01-03 14:57 - 00000000 ____D () C:\Users\7\Desktop\New folder (3)
2014-12-30 16:40 - 2014-12-30 16:40 - 00000000 ____D () C:\Users\7\AppData\Roaming\TeamViewer
2014-12-30 16:37 - 2014-12-30 16:38 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-12-30 16:37 - 2014-12-30 16:37 - 00001051 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2014-12-30 16:37 - 2014-12-30 16:37 - 00001039 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2014-12-30 14:31 - 2014-12-30 14:31 - 00001065 _____ () C:\Windows\NLSDownlevelMapping.log
2014-12-30 13:10 - 2014-12-30 14:44 - 00000000 ____D () C:\Users\7\Downloads\City Car Driving 2.2.5 kat.ph
2014-12-30 07:06 - 2014-12-30 07:06 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2014-12-29 13:56 - 2015-01-10 13:22 - 00000000 ____D () C:\Users\7\AppData\Roaming\Audacity
2014-12-29 13:45 - 2014-12-29 13:45 - 00001027 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-12-29 13:45 - 2014-12-29 13:45 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-12-29 07:19 - 2014-12-29 07:19 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-29 07:19 - 2014-12-29 07:19 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-12-29 07:18 - 2014-12-30 07:06 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-26 11:37 - 2014-12-26 11:37 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-12-26 09:58 - 2014-12-26 09:58 - 03368767 _____ () C:\Users\7\Desktop\Video_2014-12-26_095827.wmv
2014-12-26 05:04 - 2014-12-26 05:04 - 00000000 ____D () C:\Users\7\AppData\Local\Logitech® Webcam Software
2014-12-26 04:56 - 2014-12-26 04:56 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-12-26 04:55 - 2015-01-05 18:32 - 00026563 _____ () C:\Windows\system32\lvcoinst.log
2014-12-26 04:55 - 2014-12-26 04:55 - 00000000 ____D () C:\Users\7\AppData\Roaming\Leadertech
2014-12-26 04:54 - 2015-01-05 18:30 - 00000000 ____D () C:\Program Files\Common Files\logishrd
2014-12-26 04:54 - 2014-12-26 04:55 - 00003947 _____ () C:\Windows\LDPINST.LOG
2014-12-26 04:54 - 2014-12-26 04:55 - 00000000 ____D () C:\Program Files (x86)\Logitech
2014-12-26 04:54 - 2014-12-26 04:54 - 00001628 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2014-12-26 04:54 - 2014-12-26 04:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-12-26 04:38 - 2015-01-15 01:19 - 00000086 _____ () C:\Users\7\Desktop\New Text Document.txt
2014-12-25 14:14 - 2014-12-25 14:14 - 00000000 ____D () C:\New folder (2)
2014-12-25 06:49 - 2015-01-15 19:44 - 00046080 _____ () C:\Users\7\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-25 06:49 - 2014-12-25 06:49 - 00000000 ____D () C:\Users\7\AppData\Roaming\Solveig Multimedia
2014-12-25 06:44 - 2015-01-15 19:20 - 00000000 ____D () C:\Users\7\Documents\HyperCam3
2014-12-25 06:44 - 2014-12-25 06:44 - 00001051 _____ () C:\Users\7\Desktop\HyperCam 3.lnk
2014-12-25 06:44 - 2014-12-25 06:44 - 00000000 ____D () C:\Users\7\AppData\Roaming\HyperCam
2014-12-25 06:44 - 2014-12-25 06:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HyperCam 3
2014-12-25 06:43 - 2014-12-25 06:44 - 00000000 ____D () C:\Program Files (x86)\HyperCam 3
2014-12-25 06:40 - 2014-12-25 06:40 - 00000000 ____D () C:\Users\7\Downloads\HyperCam 3.5 + Serial
2014-12-25 06:21 - 2014-12-25 06:24 - 00000000 ____D () C:\Users\7\Downloads\oCam Screen Recorder 23.0 RePack (& Portable) by KpoJIuK
2014-12-24 20:18 - 2014-12-24 20:18 - 00000000 ____D () C:\Users\7\Downloads\FastStone Capture v7.3 with Key [h33t][iahq76]
2014-12-24 20:18 - 2014-12-24 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Capture
2014-12-24 20:18 - 2014-12-24 20:18 - 00000000 ____D () C:\Program Files (x86)\FastStone Capture
2014-12-24 19:47 - 2014-12-24 19:52 - 00000000 ____D () C:\Users\7\Downloads\FastStone Capture 7.4 Incl Serials - SceneDL
2014-12-24 19:23 - 2014-12-24 19:23 - 00000000 ____D () C:\Users\7\AppData\Roaming\FastStone
2014-12-24 19:19 - 2015-01-13 20:32 - 00000000 ____D () C:\Users\7\AppData\Roaming\vlc
2014-12-24 19:18 - 2014-12-24 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-24 19:18 - 2014-12-24 19:18 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-12-24 15:10 - 2014-12-24 15:10 - 00000000 ____D () C:\Users\7\Documents\Any Video Converter
2014-12-24 15:09 - 2014-12-24 15:10 - 00000000 ____D () C:\Users\7\AppData\Roaming\Anvsoft
2014-12-24 15:09 - 2014-12-24 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2014-12-24 15:09 - 2014-12-24 15:09 - 00000000 ____D () C:\Program Files (x86)\Anvsoft
2014-12-24 15:06 - 2014-12-24 15:03 - 00043064 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-12-24 15:03 - 2014-12-24 15:03 - 00000000 ____D () C:\Users\7\AppData\Roaming\Avira
2014-12-24 15:02 - 2014-11-24 10:23 - 00131608 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-12-24 15:02 - 2014-11-24 10:23 - 00119272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-12-24 15:02 - 2014-11-24 10:23 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-12-24 09:42 - 2014-12-24 09:42 - 00000000 ____D () C:\ProgramData\FastStone
2014-12-24 09:41 - 2014-12-24 09:41 - 00000000 ____D () C:\Users\7\AppData\Local\FastStone
2014-12-24 09:32 - 2014-12-24 09:38 - 00000000 ____D () C:\Users\7\Downloads\FastStone Capture 7.9 Final RePack (& portable) by D!akov
2014-12-24 09:21 - 2015-01-15 22:55 - 00000000 ____D () C:\Users\7\AppData\Roaming\Skype
2014-12-24 09:21 - 2014-12-24 09:21 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-24 09:21 - 2014-12-24 09:21 - 00000000 ____D () C:\Users\7\AppData\Local\Skype
2014-12-24 09:21 - 2014-12-24 09:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-12-24 09:20 - 2014-12-24 09:21 - 00000000 ____D () C:\ProgramData\Skype
2014-12-24 09:17 - 2014-12-24 09:17 - 00003144 _____ () C:\Windows\System32\Tasks\{4DC7E16F-3AF1-480C-9704-A4E960ED23BB}
2014-12-24 07:53 - 2014-12-24 07:53 - 00003654 _____ () C:\Windows\System32\Tasks\klcp_update
2014-12-24 07:53 - 2014-12-24 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-12-24 07:53 - 2014-12-24 07:53 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-12-24 07:53 - 2014-12-02 14:10 - 00260184 _____ () C:\Windows\system32\unrar64.dll
2014-12-24 07:53 - 2014-12-02 14:10 - 00218712 _____ () C:\Windows\SysWOW64\unrar.dll
2014-12-24 06:50 - 2014-12-24 06:50 - 00003148 _____ () C:\Windows\System32\Tasks\{88744516-0AD5-4561-BEC8-C0DA29C5491F}
2014-12-24 03:52 - 2015-01-15 17:49 - 00000000 ____D () C:\Users\7\Downloads\Compressed
2014-12-24 03:52 - 2015-01-15 02:16 - 00000000 ____D () C:\Users\7\AppData\Roaming\DMCache
2014-12-24 03:52 - 2015-01-14 22:07 - 00000000 ____D () C:\Users\7\Downloads\Video
2014-12-24 03:52 - 2014-12-24 07:02 - 00000000 ____D () C:\Users\7\AppData\Roaming\IDM
2014-12-24 03:52 - 2014-12-24 05:36 - 00000000 ____D () C:\Program Files (x86)\Internet Download Manager
2014-12-24 03:52 - 2014-12-24 03:52 - 00000000 ____D () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2014-12-24 03:52 - 2014-12-24 03:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2014-12-24 03:52 - 2014-12-24 03:52 - 00000000 ____D () C:\ProgramData\IDM
2014-12-24 03:39 - 2014-12-24 03:45 - 00000000 ____D () C:\Users\7\Downloads\Internet Download Manager (IDM) 6.21 Build 17 + Crack [KaranPC]
2014-12-24 03:37 - 2014-12-24 03:37 - 00000827 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-12-24 03:36 - 2014-12-31 16:43 - 00000000 ____D () C:\Users\7\AppData\Roaming\uTorrent
2014-12-24 03:35 - 2014-12-24 03:36 - 01688656 _____ (BitTorrent Inc.) C:\Users\7\Downloads\uTorrent.exe
2014-12-23 17:41 - 2014-12-23 17:41 - 00000945 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Airytec Switch Off.lnk
2014-12-23 17:41 - 2014-12-23 17:41 - 00000000 ____D () C:\Users\7\AppData\Roaming\Airytec
2014-12-23 17:41 - 2014-12-23 17:41 - 00000000 ____D () C:\Program Files\Airytec
2014-12-23 17:40 - 2014-12-23 17:40 - 00255272 _____ () C:\Users\7\Downloads\swoff35(1).exe
2014-12-23 17:39 - 2014-12-23 17:39 - 00868440 _____ (GoldSolution Software, Inc. ) C:\Users\7\Downloads\AutoShutdown(1).exe
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\ProgramData\PC Auto Shutdown
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Auto Shutdown
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\Program Files (x86)\PC Auto Shutdown
2014-12-23 17:36 - 2014-12-23 17:36 - 00003015 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Auto Shutdown.lnk
2014-12-23 17:36 - 2014-12-23 17:36 - 00000000 ____D () C:\Program Files (x86)\Media Freeware
2014-12-23 17:35 - 2014-12-23 17:35 - 01084416 _____ () C:\Users\7\Downloads\autoshutdown_setup.msi
2014-12-23 16:56 - 2014-12-23 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-23 16:46 - 2015-01-15 22:51 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-23 16:46 - 2015-01-15 20:50 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-23 16:46 - 2014-12-23 16:56 - 00000000 ____D () C:\Users\7\AppData\Local\Google
2014-12-23 16:46 - 2014-12-23 16:56 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-23 16:46 - 2014-12-23 16:46 - 00003884 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-23 16:46 - 2014-12-23 16:46 - 00003632 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-23 16:44 - 2014-12-23 16:45 - 00880784 _____ (Google Inc.) C:\Users\7\Downloads\ChromeSetup.exe
2014-12-23 14:38 - 2014-12-23 14:38 - 00001099 _____ () C:\Users\7\Desktop\Internet Mobile.lnk
2014-12-23 14:38 - 2014-12-23 14:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Mobile
2014-12-23 14:38 - 2014-12-23 14:38 - 00000000 ____D () C:\ProgramData\Internet Mobile
2014-12-23 14:37 - 2014-12-23 14:38 - 00000000 ____D () C:\ProgramData\DatacardService
2014-12-23 14:37 - 2014-12-23 14:38 - 00000000 ____D () C:\Program Files (x86)\Internet Mobile
2014-12-23 14:37 - 2014-12-23 14:37 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01001472 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00421888 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00223744 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00223232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00117248 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00098304 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00087040 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00072192 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00032768 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00028672 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00022016 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00013952 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2014-12-23 14:37 - 2014-12-23 14:37 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-12-23 11:21 - 2014-12-23 11:21 - 00000000 ____D () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-12-23 11:20 - 2014-12-23 11:20 - 00417064 _____ () C:\Users\7\Downloads\DellSystemDetect(1).exe
2014-12-23 07:53 - 2014-12-23 07:54 - 08780754 _____ () C:\Users\7\Downloads\xlive.zip
2014-12-23 07:09 - 2014-12-23 07:10 - 02723264 _____ (Microsoft Corporation) C:\Users\7\Downloads\vcredist_x86.exe
2014-12-23 07:05 - 2014-12-23 07:05 - 00001342 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2014-12-23 07:05 - 2014-12-23 07:05 - 00000000 ____D () C:\Windows\SysWOW64\xlive
2014-12-23 07:05 - 2014-12-23 07:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2014-12-23 07:05 - 2014-12-23 07:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-12-23 07:03 - 2014-12-23 07:03 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-12-23 06:50 - 2014-12-23 06:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto IV
2014-12-22 15:13 - 2014-12-22 15:13 - 00000000 ____D () C:\Users\7\Documents\Multisoft
2014-12-22 15:09 - 2014-12-22 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Forward Development
2014-12-22 14:07 - 2014-12-22 15:54 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-22 14:07 - 2014-12-22 15:54 - 00000000 ____D () C:\Program Files\IDT
2014-12-22 14:07 - 2011-01-25 01:57 - 11941376 _____ (IDT, Inc.) C:\Windows\system32\idtsg64.cpl
2014-12-22 14:07 - 2011-01-25 01:57 - 04637184 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 01499136 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 00651776 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 00520192 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-12-22 14:07 - 2011-01-25 01:57 - 00431616 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-12-22 14:07 - 2011-01-25 01:57 - 00220160 _____ (IDT, Inc.) C:\Windows\system32\st646324.dll
2014-12-22 14:07 - 2010-01-27 02:30 - 00162816 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2014-12-22 14:07 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTEC64.dll
2014-12-22 14:07 - 2009-03-03 01:58 - 00068608 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2014-12-22 13:57 - 2014-12-22 13:57 - 00000000 ____D () C:\Windows\Dell
2014-12-22 13:52 - 2014-12-22 13:57 - 28859960 _____ (Dell Inc.) C:\Users\7\Downloads\DRVR_WIN_R297613.EXE
2014-12-22 13:49 - 2014-12-22 13:57 - 00004910 _____ () C:\Windows\DPINST.LOG
2014-12-22 13:49 - 2014-12-22 13:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-12-22 13:49 - 2009-07-14 19:21 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2014-12-22 13:48 - 2014-12-22 13:48 - 00000000 ____D () C:\ProgramData\Dell
2014-12-22 13:47 - 2014-12-22 13:55 - 16306920 _____ (Dell Inc.) C:\Users\7\Downloads\DRVR_WIN_R300787.EXE
2014-12-22 13:47 - 2014-12-22 13:50 - 08466720 _____ (Dell Inc.) C:\Users\7\Downloads\DRVR_WIN_R304291.EXE
2014-12-22 13:46 - 2014-12-22 13:46 - 00000000 ____D () C:\Dell
2014-12-22 13:37 - 2014-12-22 15:54 - 00000000 ____D () C:\Users\7\AppData\Local\dell
2014-12-22 13:37 - 2014-12-22 13:42 - 27085528 _____ () C:\Users\7\Downloads\CV_WBF_Setup_Y2GT8_64bit_ZPE.exe
2014-12-22 13:37 - 2011-04-16 07:00 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-12-22 13:36 - 2014-12-22 13:46 - 69274472 _____ (Dell Inc.) C:\Users\7\Downloads\Input_Driver_VW486_WN_8.1200.101.134_A07.EXE
2014-12-22 13:25 - 2014-12-24 15:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-12-22 13:25 - 2014-12-22 15:54 - 00000000 ____D () C:\ProgramData\Avira
2014-12-22 13:25 - 2014-12-22 15:54 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-12-22 13:25 - 2014-12-22 13:25 - 04549888 _____ (Avira Operations & Co. KG) C:\Users\7\Downloads\avira_en_av___ws.exe
2014-12-22 13:25 - 2014-12-22 13:25 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-12-22 13:25 - 2014-12-22 13:25 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-22 13:23 - 2014-12-23 11:21 - 00000000 ____D () C:\Users\7\AppData\Local\Deployment
2014-12-22 13:23 - 2014-12-22 13:23 - 00417064 _____ () C:\Users\7\Downloads\DellSystemDetect.exe
2014-12-22 13:23 - 2014-12-22 13:23 - 00000000 ____D () C:\Users\7\AppData\Local\Apps\2.0
2014-12-22 11:26 - 2014-12-22 11:26 - 00001276 _____ () C:\Users\7\Desktop\Among the sleep.lnk
2014-12-22 11:26 - 2014-12-22 11:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-12-22 11:24 - 2014-12-22 11:24 - 00000000 ____D () C:\Users\7\AppData\Roaming\Among the sleep
2014-12-22 11:24 - 2014-12-22 11:24 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2014-12-22 07:49 - 2014-12-22 07:45 - 13895857 _____ () C:\Users\7\Desktop\A weird Chinese song, very funny - YouTube.mp4
2014-12-22 07:49 - 2014-12-22 07:44 - 24890372 _____ () C:\Users\7\Desktop\现打斑鸠现钳毛 - YouTube.mp4
2014-12-22 07:48 - 2014-12-22 07:49 - 00000000 ____D () C:\Users\7\Desktop\Brothers - A Tale of Two Sons
2014-12-22 01:09 - 2014-12-22 01:09 - 00001459 _____ () C:\Users\7\Desktop\Core Temp - Shortcut.lnk
2014-12-21 10:39 - 2015-01-15 21:40 - 00371769 _____ () C:\Windows\WindowsUpdate.log
2014-12-21 10:39 - 2014-12-21 10:39 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-12-21 10:38 - 2014-12-21 10:38 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-12-21 10:38 - 2014-12-21 10:38 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-12-21 10:38 - 2014-12-21 10:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-12-21 10:35 - 2014-12-21 02:49 - 00000000 ____D () C:\Windows\Panther
2014-12-21 10:21 - 2015-01-03 15:00 - 00000000 ____D () C:\Windows.old.000
2014-12-21 09:40 - 2014-12-21 09:40 - 00000000 ____D () C:\Users\7\AppData\Roaming\Macromedia
2014-12-21 09:40 - 2014-12-21 09:40 - 00000000 ____D () C:\Users\7\AppData\Roaming\Adobe
2014-12-21 09:40 - 2014-12-21 09:40 - 00000000 ____D () C:\Users\7\AppData\Local\Macromedia
2014-12-21 09:39 - 2014-12-21 09:39 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-21 09:39 - 2014-12-21 09:39 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-21 09:39 - 2014-12-21 09:39 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-12-21 09:39 - 2014-12-21 09:39 - 00000000 ____D () C:\Windows\system32\Macromed
2014-12-21 09:32 - 2014-12-29 07:22 - 00000000 ____D () C:\Users\7\AppData\Local\Adobe
2014-12-21 09:18 - 2014-12-21 09:24 - 00000000 ____D () C:\Users\7\Documents\My Games
2014-12-21 09:18 - 2014-12-21 09:18 - 00000000 ____D () C:\Users\7\AppData\Local\EMU
2014-12-21 09:16 - 2015-01-10 22:47 - 00000000 ____D () C:\Users\7\AppData\Roaming\MPC-HC
2014-12-21 09:16 - 2014-12-21 09:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2014-12-21 09:16 - 2014-12-21 09:16 - 00000000 ____D () C:\Program Files (x86)\MPC-HC
2014-12-21 08:41 - 2014-12-21 08:41 - 00009857 _____ () C:\Windows\DirectX.log
2014-12-21 08:41 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-21 08:41 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-21 08:41 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-12-21 08:41 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-12-21 08:41 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-12-21 08:41 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-12-21 08:41 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-12-21 08:41 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-12-21 08:41 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-12-21 08:41 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-12-21 08:41 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-21 08:41 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-12-21 08:41 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-21 08:41 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-21 08:41 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-12-21 08:41 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-12-21 08:41 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-12-21 08:41 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-12-21 08:41 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-12-21 08:41 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-12-21 08:41 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-12-21 08:41 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-12-21 08:41 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-12-21 08:41 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-12-21 08:41 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-12-21 08:41 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-12-21 08:41 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-12-21 08:41 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-12-21 08:41 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-12-21 08:41 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-12-21 08:41 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-12-21 08:41 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-12-21 08:41 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-12-21 08:41 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-12-21 08:41 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-12-21 08:41 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-12-21 08:41 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-12-21 08:41 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-12-21 08:41 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-12-21 08:41 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-12-21 08:41 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-12-21 08:41 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-12-21 08:41 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-12-21 08:41 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-12-21 08:41 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-12-21 08:41 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-12-21 08:41 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-12-21 08:41 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-12-21 08:41 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-12-21 08:41 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-12-21 08:41 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-12-21 08:41 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-12-21 08:41 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-12-21 08:41 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-12-21 08:41 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-12-21 08:41 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-12-21 08:41 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-12-21 08:41 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-12-21 08:41 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-12-21 08:41 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-12-21 08:41 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-21 08:41 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-21 08:41 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-12-21 08:41 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-12-21 08:41 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-12-21 08:41 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-12-21 08:41 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-12-21 08:41 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-12-21 08:41 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-12-21 08:41 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-12-21 08:41 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-12-21 08:41 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-12-21 08:41 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-12-21 08:41 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-12-21 08:41 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-12-21 08:41 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-12-21 08:41 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-12-21 08:41 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-12-21 08:41 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-12-21 08:41 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-12-21 08:41 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-12-21 08:41 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-12-21 08:41 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-12-21 08:41 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-12-21 08:41 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-12-21 08:41 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-12-21 08:41 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-12-21 08:41 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-12-21 08:41 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-12-21 08:41 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-12-21 08:41 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-12-21 08:41 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-12-21 08:40 - 2014-12-21 08:40 - 00002191 _____ () C:\Users\Public\Desktop\Crysis 2.lnk
2014-12-21 08:40 - 2014-12-21 08:40 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-12-21 08:40 - 2014-12-21 08:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. BoxPack
2014-12-21 08:26 - 2014-12-21 08:28 - 00000000 ____D () C:\Program Files (x86)\R.G. BoxPack
2014-12-21 07:19 - 2014-12-21 07:19 - 01689384 _____ (techPowerUp (www.techpowerup.com)) C:\Users\7\Downloads\GPU-Z.0.8.0.exe
2014-12-21 07:05 - 2014-12-21 07:05 - 00000873 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-12-21 07:05 - 2014-12-21 07:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-12-21 07:05 - 2014-12-21 07:05 - 00000000 ____D () C:\Program Files\CPUID
2014-12-21 07:01 - 2014-12-21 07:01 - 01577464 _____ ( ) C:\Users\7\Downloads\cpu-z_1.71.1-setup-en.exe
2014-12-21 06:53 - 2015-01-15 16:21 - 00000000 ____D () C:\New folder
2014-12-21 06:46 - 2015-01-15 20:53 - 00044896 _____ () C:\Windows\SysWOW64\Gms.log
2014-12-21 06:41 - 2014-12-30 16:42 - 00057560 _____ () C:\Users\7\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-21 06:41 - 2014-12-21 06:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-12-21 06:41 - 2014-12-21 06:41 - 00000000 ____D () C:\Users\7\AppData\Roaming\Intel Corporation
2014-12-21 06:38 - 2014-12-21 06:41 - 00000000 ____D () C:\Program Files\Intel
2014-12-21 06:38 - 2014-12-21 06:38 - 00003967 _____ () C:\Windows\system32\WmiConf.txt
2014-12-21 06:38 - 2014-12-21 06:38 - 00000212 _____ () C:\Windows\system32\WINS.txt
2014-12-21 06:38 - 2014-12-21 06:38 - 00000131 _____ () C:\Windows\system32\StaticIP.txt
2014-12-21 06:38 - 2014-12-21 06:37 - 00001904 ____N () C:\Windows\system32\SetupBD.din
2014-12-21 06:37 - 2014-12-21 06:38 - 00000000 ____D () C:\Users\7\Downloads\19_5_CD
2014-12-21 06:37 - 2014-12-21 06:37 - 00403256 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2014-12-21 06:37 - 2014-12-21 06:37 - 00316736 _____ (Intel Corporation) C:\Windows\system32\PRONtObj.dll
2014-12-21 06:37 - 2014-12-21 06:37 - 00163528 _____ (Intel Corporation) C:\Windows\system32\Drivers\iANSW60e.sys
2014-12-21 06:36 - 2014-12-21 06:36 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-12-21 06:35 - 2014-12-21 06:36 - 12443632 _____ (Intel Corporation) C:\Users\7\Downloads\irst_13.5.0.1056_pv.exe
2014-12-21 06:34 - 2014-12-21 06:34 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-12-21 06:31 - 2012-07-26 04:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-12-21 06:31 - 2012-07-26 04:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-12-21 06:31 - 2012-07-26 02:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-12-21 06:31 - 2012-06-02 14:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-12-21 06:26 - 2014-12-21 06:26 - 00016162 _____ () C:\Windows\system32\results.xml
2014-12-21 06:19 - 2014-12-21 06:41 - 00798516 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-21 06:18 - 2014-12-22 13:37 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-21 06:18 - 2014-12-21 06:34 - 00000000 ____D () C:\ProgramData\Intel
2014-12-21 06:18 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-12-21 06:18 - 2012-05-15 07:13 - 00020992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-12-21 06:18 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-12-21 06:18 - 2012-05-15 06:20 - 00017920 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-12-21 06:13 - 2014-12-21 06:13 - 00000000 ____D () C:\Users\7\Intel
2014-12-21 06:08 - 2014-12-21 06:14 - 81494865 _____ () C:\Users\7\Downloads\19_5_CD.zip
2014-12-21 05:48 - 2014-12-21 06:08 - 104864544 _____ (Intel Corporation) C:\Users\7\Downloads\Intel_Management_Engine_Interface_5M_10.0.31.1000.exe
2014-12-21 05:48 - 2014-12-21 06:04 - 145417920 _____ (Intel Corporation) C:\Users\7\Downloads\win64_152822.exe
2014-12-21 05:45 - 2014-12-21 05:45 - 00255880 _____ () C:\Users\7\Downloads\MaConfig_win.exe
2014-12-21 05:45 - 2014-12-21 05:45 - 00000953 _____ () C:\Users\Public\Desktop\Ma-Config.com - Start the detection.lnk
2014-12-21 05:45 - 2014-12-21 05:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
2014-12-21 05:45 - 2014-12-21 05:45 - 00000000 ____D () C:\ProgramData\ma-config.com
2014-12-21 05:45 - 2014-12-21 05:45 - 00000000 ____D () C:\Program Files\ma-config.com
2014-12-21 05:43 - 2015-01-15 10:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-21 05:43 - 2014-12-21 05:43 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-12-21 05:43 - 2014-12-21 05:43 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-12-21 05:43 - 2014-12-21 05:43 - 00000000 ____D () C:\Users\7\AppData\Roaming\Mozilla
2014-12-21 05:43 - 2014-12-21 05:43 - 00000000 ____D () C:\Users\7\AppData\Local\Mozilla
2014-12-21 05:43 - 2014-12-21 05:43 - 00000000 ____D () C:\ProgramData\Mozilla
2014-12-21 05:41 - 2014-12-21 05:41 - 00000000 ____D () C:\Users\7\AppData\Roaming\Roxio Log Files
2014-12-21 05:37 - 2014-12-21 05:37 - 00000000 ____D () C:\Windows\Options
2014-12-21 05:37 - 2009-06-09 13:28 - 00064000 ____N (LSI Corporation) C:\Windows\SysWOW64\agrsmdel.exe
2014-12-21 05:37 - 2009-03-27 18:12 - 00014848 ____N (LSI Corporation) C:\Windows\SysWOW64\agrsco64.dll
2014-12-21 05:37 - 2009-03-27 18:12 - 00013824 ____N (LSI Corporation) C:\Windows\SysWOW64\agrscoin.dll
2014-12-21 02:50 - 2014-12-21 02:50 - 00001417 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-12-21 02:49 - 2015-01-15 11:59 - 00000000 ____D () C:\Users\7
2014-12-21 02:49 - 2014-12-22 11:26 - 00000000 ____D () C:\Users\7\AppData\Local\VirtualStore
2014-12-21 02:49 - 2014-12-21 02:50 - 00001451 _____ () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-21 02:49 - 2014-12-21 02:49 - 00000020 ___SH () C:\Users\7\ntuser.ini
2014-12-21 02:49 - 2009-07-14 04:54 - 00000000 ___RD () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-21 02:49 - 2009-07-14 04:49 - 00000000 ___RD () C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-16 12:41 - 2014-11-29 00:37 - 00180648 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-15 22:55 - 2009-07-14 04:45 - 00016640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-15 22:55 - 2009-07-14 04:45 - 00016640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-15 21:47 - 2009-07-14 04:51 - 00041404 _____ () C:\Windows\setupact.log
2015-01-15 20:49 - 2010-11-21 03:47 - 00142236 _____ () C:\Windows\PFRO.log
2015-01-15 20:49 - 2009-07-14 05:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-15 20:24 - 2009-07-14 05:13 - 00783114 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-11 13:56 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-07 13:28 - 2010-11-21 07:16 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-01-03 15:15 - 2014-09-19 14:37 - 00000000 ____D () C:\Windows.old
2014-12-31 07:30 - 2009-07-14 04:45 - 00275432 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-23 07:06 - 2009-07-14 03:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-12-23 07:05 - 2009-07-14 05:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-22 15:54 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\registration
2014-12-22 12:56 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\rescache
2014-12-21 10:38 - 2009-07-14 04:46 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-12-21 10:38 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-12-21 10:36 - 2010-11-21 07:16 - 00000000 ____D () C:\Windows\CSC
2014-12-21 10:35 - 2013-04-16 19:47 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-12-21 10:35 - 2009-07-14 05:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-12-21 10:35 - 2009-07-14 05:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-12-21 08:48 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-12-21 07:11 - 2009-07-14 03:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-21 06:40 - 2009-07-14 03:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-21 06:37 - 2014-05-02 12:02 - 00495376 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1c62x64.sys
2014-12-21 06:37 - 2009-07-14 05:32 - 00000000 ____D () C:\Windows\system32\restore
2014-12-21 06:18 - 2013-04-17 08:24 - 00000000 ____D () C:\Intel
2014-12-21 05:41 - 2014-02-18 13:40 - 00000000 ____D () C:\SWSetup
2014-12-21 02:49 - 2013-04-16 10:00 - 00000000 __SHD () C:\Recovery
2014-12-21 02:49 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\system32\Recovery

Some content of TEMP:
====================
C:\Users\7\AppData\Local\Temp\avgnt.exe
C:\Users\7\AppData\Local\Temp\mfc80.dll
C:\Users\7\AppData\Local\Temp\mfc80u.dll
C:\Users\7\AppData\Local\Temp\mfcm80.dll
C:\Users\7\AppData\Local\Temp\mfcm80u.dll
C:\Users\7\AppData\Local\Temp\msvcm80.dll
C:\Users\7\AppData\Local\Temp\msvcp80.dll
C:\Users\7\AppData\Local\Temp\msvcr80.dll
C:\Users\7\AppData\Local\Temp\OSU.exe
C:\Users\7\AppData\Local\Temp\Quarantine.exe
C:\Users\7\AppData\Local\Temp\sqlite3.dll
C:\Users\7\AppData\Local\Temp\utt49B5.tmp.exe
C:\Users\7\AppData\Local\Temp\WtgDriverInstallX.dll
C:\Users\7\AppData\Local\Temp\WTGXMLUtil.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-14 18:26

==================== End Of Log ============================

 

additional frst log

 

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
System Requirements Lab Detection (HKLM-x32\...\{DE6586E2-6FEC-4A80-9AB0-2CAC69EF1362}) (Version: 2.2.4.0 - Husdawg, LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

09-01-2015 11:48:17 Removed Microsoft Visual C++ 2005 Redistributable
09-01-2015 11:49:25 Removed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 02:34 - 2009-06-10 21:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {44B59949-C1D1-462B-9457-C8D977F48F5C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {55DAC14A-4208-489A-AB60-607AC934ECA8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {89880C2D-116F-40F0-AF3C-E0B2B5F1D2A3} - System32\Tasks\{88744516-0AD5-4561-BEC8-C0DA29C5491F} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.64.106&LastError=12031
Task: {A1F32212-0E62-4364-86A3-696ACB1D9751} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-23] (Google Inc.)
Task: {AE2EAA4C-F6D0-4935-B5A3-71EC00764060} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2014-12-12] ()
Task: {C9CA4631-58EB-49DC-9C4B-9646564C4B71} - System32\Tasks\{4DC7E16F-3AF1-480C-9704-A4E960ED23BB} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=7.0.0.102&LastError=12031
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-03-14 15:27 - 2011-03-14 15:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2014-12-23 14:38 - 2014-12-23 14:37 - 00655712 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
2014-03-20 08:34 - 2014-03-20 08:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00514560 _____ () C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
2014-12-23 14:38 - 2014-12-23 14:37 - 00011362 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\mingwm10.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 00043008 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\libgcc_s_dw2-1.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 02415104 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtCore4.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 01148416 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtNetwork4.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 00835072 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QueryStrategy.dll
2014-12-23 14:38 - 2014-12-23 14:37 - 00398336 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtXml4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00430592 _____ () C:\Program Files (x86)\Internet Mobile\core.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00264192 _____ () C:\Program Files (x86)\Internet Mobile\sdk.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00011362 _____ () C:\Program Files (x86)\Internet Mobile\mingwm10.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00043008 _____ () C:\Program Files (x86)\Internet Mobile\libgcc_s_dw2-1.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 02415104 _____ () C:\Program Files (x86)\Internet Mobile\QtCore4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 09515520 _____ () C:\Program Files (x86)\Internet Mobile\QtGui4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 15675904 _____ () C:\Program Files (x86)\Internet Mobile\QtWebKit4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01148416 _____ () C:\Program Files (x86)\Internet Mobile\QtNetwork4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 03962880 _____ () C:\Program Files (x86)\Internet Mobile\QtXmlPatterns4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00306176 _____ () C:\Program Files (x86)\Internet Mobile\phonon4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00382464 _____ () C:\Program Files (x86)\Internet Mobile\Proxy.DLL
2014-12-23 14:37 - 2014-12-23 14:37 - 00218112 _____ () C:\Program Files (x86)\Internet Mobile\Common.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00135168 _____ () C:\Program Files (x86)\Internet Mobile\Trace.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00545280 _____ () C:\Program Files (x86)\Internet Mobile\PluginContainer.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00238080 _____ () C:\Program Files (x86)\Internet Mobile\AtCodec.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00304128 _____ () C:\Program Files (x86)\Internet Mobile\DeviceSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00238592 _____ () C:\Program Files (x86)\Internet Mobile\NetSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00133120 _____ () C:\Program Files (x86)\Internet Mobile\OSDialup.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00161792 _____ () C:\Program Files (x86)\Internet Mobile\XCodec.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00157184 _____ () C:\Program Files (x86)\Internet Mobile\DataServicePlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00176128 _____ () C:\Program Files (x86)\Internet Mobile\CallSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00264704 _____ () C:\Program Files (x86)\Internet Mobile\AddrBookSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00217600 _____ () C:\Program Files (x86)\Internet Mobile\SmsSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00142336 _____ () C:\Program Files (x86)\Internet Mobile\USSDSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00156672 _____ () C:\Program Files (x86)\Internet Mobile\STKSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00154624 _____ () C:\Program Files (x86)\Internet Mobile\GpsSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00339968 _____ () C:\Program Files (x86)\Internet Mobile\DeviceAppPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00065536 _____ () C:\Program Files (x86)\Internet Mobile\OSPowerMgr.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00114688 _____ () C:\Program Files (x86)\Internet Mobile\Win7Support.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01078272 _____ () C:\Program Files (x86)\Internet Mobile\AddrBookPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00670720 _____ () C:\Program Files (x86)\Internet Mobile\SmsAppPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00182272 _____ () C:\Program Files (x86)\Internet Mobile\CallAppPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00547840 _____ () C:\Program Files (x86)\Internet Mobile\CallLogSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00158720 _____ () C:\Program Files (x86)\Internet Mobile\NetConnectSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00211968 _____ () C:\Program Files (x86)\Internet Mobile\DialUpPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00102400 _____ () C:\Program Files (x86)\Internet Mobile\OSAdapt.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00180736 _____ () C:\Program Files (x86)\Internet Mobile\NDISPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00131072 _____ () C:\Program Files (x86)\Internet Mobile\OSNDIS.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 01101824 _____ () C:\Program Files (x86)\Internet Mobile\NDISAPI.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00278528 _____ () C:\Program Files (x86)\Internet Mobile\NetInfoSrvPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00062976 _____ () C:\Program Files (x86)\Internet Mobile\OSCall.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00539648 _____ () C:\Program Files (x86)\Internet Mobile\DeviceMgrUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00398336 _____ () C:\Program Files (x86)\Internet Mobile\QtXml4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00123392 _____ () C:\Program Files (x86)\Internet Mobile\ATR2SMgr.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00184832 _____ () C:\Program Files (x86)\Internet Mobile\XFramePlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00309760 _____ () C:\Program Files (x86)\Internet Mobile\StatusBarMgrPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00117760 _____ () C:\Program Files (x86)\Internet Mobile\LayoutPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00446976 _____ () C:\Program Files (x86)\Internet Mobile\DialupUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00093184 _____ () C:\Program Files (x86)\Internet Mobile\NotifyServicePlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00335360 _____ () C:\Program Files (x86)\Internet Mobile\NetConnectPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00297472 _____ () C:\Program Files (x86)\Internet Mobile\MenuMgrPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00486400 _____ () C:\Program Files (x86)\Internet Mobile\NetInfoUIExPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00827392 _____ () C:\Program Files (x86)\Internet Mobile\SMSUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00771584 _____ () C:\Program Files (x86)\Internet Mobile\AddrBookUIPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00210944 _____ () C:\Program Files (x86)\Internet Mobile\ToolBarMgrPlugin.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00693760 _____ () C:\Program Files (x86)\Internet Mobile\LiveUpdateInterface.DLL
2014-12-23 14:37 - 2014-12-23 14:37 - 00082944 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qgif4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00081920 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qico4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00192000 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qjpeg4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00350720 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qmng4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00370176 _____ () C:\Program Files (x86)\Internet Mobile\plugins\imageformats\qtiff4.dll
2014-12-23 14:37 - 2014-12-23 14:37 - 00197632 _____ () C:\Program Files (x86)\Internet Mobile\plugins\codecs\qcncodecs4.dll
2014-11-10 12:12 - 2014-11-10 12:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-01-14 10:29 - 2015-01-14 10:29 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: MaConfigAgent => 2
MSCONFIG\startupfolder: C:^Users^7^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Product Registration.lnk => C:\Windows\pss\Logitech . Product Registration.lnk.Startup
MSCONFIG\startupreg: Airytec Switch Off => "C:\Program Files\Airytec\Switch Off\swoff.exe" -auto
MSCONFIG\startupreg: DellSystemDetect => C:\Users\7\AppData\Local\Apps\2.0\TJOL8Q4O.O51\5ZBRJG3B.MXH\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
MSCONFIG\startupreg: IDMan => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: PC Auto Shutdown => "C:\Program Files (x86)\PC Auto Shutdown\AutoShutdown.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\7\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

========================= Accounts: ==========================

7 (S-1-5-21-4103414334-2902596384-2875847003-1000 - Administrator - Enabled) => C:\Users\7
Administrator (S-1-5-21-4103414334-2902596384-2875847003-500 - Administrator - Disabled)
Guest (S-1-5-21-4103414334-2902596384-2875847003-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: Broadcom USH
Description: Broadcom USH
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Mass Storage Controller
Description: Mass Storage Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Network Controller
Description: Network Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/15/2015 10:56:02 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (01/15/2015 10:56:02 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\7\Downloads\Programs\SoftonicDownloader_for_skype.exe


==================== Memory info ===========================

Processor: Intel® Core™ i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 48%
Total physical RAM: 3976.9 MB
Available physical RAM: 2067.93 MB
Total Pagefile: 7952 MB
Available Pagefile: 5631.05 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:298.09 GB) (Free:122.91 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Internet Mobile) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 5FFC4E6C)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:06:06 PM

Posted 16 January 2015 - 07:57 AM

Hey, :)

Step 1: FRST Fix
  • Please open Notepad.exe. Make sure that you don't use any other software than Notepad.exe!
  • Copy and Paste the content of the codebox below into the empty textfile:

    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: E - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672 2014-12-24] (Tonec Inc.)
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: E - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: E - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {067c5559-8ff0-11e4-b5d2-001e101f9843} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {2dda991c-8b1b-11e4-ad1c-001e101f1f81} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {34af4305-93f1-11e4-96b3-001e101f63cf} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {6d7ab01e-8e59-11e4-b07e-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {b01fab31-9978-11e4-a9a4-001e101f7fb6} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {d8ba3023-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
    HKU\S-1-5-21-4103414334-2902596384-2875847003-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\MountPoints2: {d8ba3031-8aaf-11e4-9ce1-5c260a670e8d} - E:\AutoRun.exe
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    Emptytemp:
  • Then click on File >> Save as
    • File Name: Fixlist.txt
    • From the Save as type drop down list, choose All Files
  • It is very important that you save this textfile on your Desktop!
Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe (Note: If FRST advises there is a new updated version to be downloaded, allow this.)and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply
Step 2: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.
Step 3: ESET

Please run a free online scan with the ESET Online Scanner:

IMPORTANT: You MUST use Internet Explorer for this step!
  • Visit the ESET Online Scanner Web Page
  • Select the blue Run ESET Online Scanner button:
    ESET1_zps23a5e840.png
  • Tick the box next to YES, I accept the Terms of Use and click Start
    ESET_EULA2_zps9451f1c3.png
  • When asked, allow the ActiveX control to install.
  • Select Enable detection of potentially unwanted applications and select Advanced Settings:
    ESET2_zpsc701c045.png
  • Make sure to check the options Remove found threats and Enable Anti-Stealth technology are checked:
    ESET4_zps0afafd0d.png
  • Click Start. (This scan can take several hours, so please be patient):
    ESET3_zpsccd1657d.png
  • Once the scan is completed, select List of found threats:
    ESET5_zpsd27be299.png
  • Select Export to text file... and save the file as ESETlog.txt on your Desktop:
    ESET6_zpsc17d154e.png
  • Click the Back button.
  • Click the Finish button:
    ESET9_zps51587217.png
  • Use Notepad to open the saved log file (on your Desktop- ESET.txt)[/b]
  • Copy and paste that log as a reply to this topic.
Step 4: Question

How is your PC running?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#7 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:06:06 PM

Posted 20 January 2015 - 11:35 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users