Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Spyware or something alse on my computer?


  • This topic is locked This topic is locked
2 replies to this topic

#1 BenLeakey

BenLeakey

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:47 AM

Posted 23 February 2015 - 07:58 AM

Hello there,

 

my first posting was in the wrong threat. I hope that I am now right here with my FRST log.

 

My computer is running sometimes very slowly during starting Windows and using the internet. Sometimes my Antivirus detect and removed various add ons, which i didn´t installed. I also screaned my computer with adw Cleaner. It found and cleaned beneath others "Deltasearch add on". Now I also have a programm called "buzzdock" on my computer. I do not know, where it come from. I didn´t install that and I´m not sure, if it is good to deinstall it with windows settings

 

I´d run FRST on my computer and ask you, if somebody would be so kind and check the log file for giving advice, if there is something to do.

 

I have a sony Vaio notebook

 

Here is the FRST file: 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-02-2015
Ran by ... (administrator) on STEPHANBLANK-PC on 22-02-2015 13:54:15
Running from C:\Users\...\Downloads
Loaded Profiles: ... (Available profiles: ...)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\3 Mobile Broadband\3Connect\BecHelperService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Luis Cobian, CobianSoft) C:\Program Files (x86)\Cobian Backup 11\cbService.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
() C:\Program Files (x86)\3DataManager\WTGService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESGfxMgr.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-01-05] (Intel® Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-12-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [134624 2014-07-23] (Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-28] (AVAST Software)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {00490a07-9cac-11e4-bf34-001e101f859f} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {6e697069-a002-11e4-ab98-3859f9ee31e8} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {7a310d93-a189-11e4-9379-3859f9ee31e8} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {7a310dbd-a189-11e4-9379-3859f9ee31e8} - F:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {7d9bb29f-9749-11e4-9612-a28eab9fc5b2} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {7d9bb4ac-9749-11e4-9612-a28eab9fc5b2} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {7ef47728-97fd-11e4-899c-f0bf9768a697} - F:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {91b7f05d-a172-11e4-b755-001e101f4da1} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {9352db18-9cf9-11e4-9e18-806e6f6e6963} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {cfa3904b-9748-11e4-a11b-806e6f6e6963} - I:\PanzerCorpsWehrmacht-SetupRelease-v103.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {e16dc10a-a260-11e4-9ab7-3859f9ee31e8} - F:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {e31f1bce-9fc2-11e4-8d44-f0bf9768a697} - E:\AutoRun.exe
HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\MountPoints2: {eff3f5c1-9a74-11e4-a959-001e101f8aaa} - F:\Startme.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/de-at/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 83.169.184.161 83.169.184.225
Tcpip\..\Interfaces\{8F209CFD-1138-4000-B708-6117B200EA23}: [NameServer] 213.94.78.17 213.94.78.16
Tcpip\..\Interfaces\{BD5E0201-A624-4C66-8AE3-0E68D7A650AA}: [NameServer] 213.94.78.16 213.94.78.17

FireFox:
========
FF ProfilePath: C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKU\S-1-5-21-3493849748-3862360928-3587676368-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default\searchplugins\google-maps.xml
FF Extension: SparPilot - Gutscheine & mehr... - C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default\Extensions\sparpilot@sparpilot.com [2015-02-22]
FF Extension: Cliqz Beta - C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default\Extensions\cliqz@cliqz.com.xpi [2015-01-15]
FF Extension: Adblock Plus - C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-09]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-28]
FF HKU\S-1-5-21-3493849748-3862360928-3587676368-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\...\AppData\Roaming\Mozilla\Firefox\Profiles\tfhq71zo.default\extensions\cliqz@cliqz.com

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-28]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-28] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-01-28] (Avast Software)
R2 BecHelperService; C:\Program Files (x86)\3 Mobile Broadband\3Connect\BecHelperService.exe [1740696 2011-03-23] ()
S2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-07] (CobianSoft, Luis Cobian) [File not signed]
R2 CobianBackup11; C:\Program Files (x86)\Cobian Backup 11\cbService.exe [1131008 2013-03-07] (Luis Cobian, CobianSoft) [File not signed]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596240 2014-07-23] (Check Point Software Technologies Ltd.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [346832 2012-12-12] ()
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [93712 2014-07-03] (Check Point Software Technologies, Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-28] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-28] ()
S2 mdvrmng; C:\Windows\SysWOW64\drivers\mdvrmng.sys [10240 2011-03-23] () [File not signed]
S3 s1029bus; C:\Windows\System32\DRIVERS\s1029bus.sys [116264 2009-05-25] (MCCI Corporation)
S3 s1029mdfl; C:\Windows\System32\DRIVERS\s1029mdfl.sys [19496 2009-05-25] (MCCI Corporation)
S3 s1029mdm; C:\Windows\System32\DRIVERS\s1029mdm.sys [158760 2009-05-25] (MCCI Corporation)
S3 s1029mgmt; C:\Windows\System32\DRIVERS\s1029mgmt.sys [139304 2009-05-25] (MCCI Corporation)
S3 s1029nd5; C:\Windows\System32\DRIVERS\s1029nd5.sys [34856 2009-05-25] (MCCI Corporation)
S3 s1029obex; C:\Windows\System32\DRIVERS\s1029obex.sys [135208 2009-05-25] (MCCI Corporation)
S3 s1029unic; C:\Windows\System32\DRIVERS\s1029unic.sys [151592 2009-05-25] (MCCI Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-01-28] (Avast Software)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450456 2014-07-23] (Check Point Software Technologies Ltd.)
S3 avchv; system32\DRIVERS\avchv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 13:54 - 2015-02-22 13:55 - 00017713 _____ () C:\Users\...\Downloads\FRST.txt
2015-02-22 13:54 - 2015-02-22 13:54 - 00000000 ____D () C:\FRST
2015-02-22 13:49 - 2015-02-22 13:50 - 02086912 _____ (Farbar) C:\Users\...\Downloads\FRST64.exe
2015-02-22 13:37 - 2015-02-22 13:37 - 00001158 _____ () C:\Users\...\Desktop\Goodgame Empire.lnk
2015-02-22 13:37 - 2015-02-22 13:37 - 00000000 ____D () C:\Users\...\AppData\Roaming\dlg
2015-02-22 13:07 - 2015-02-22 13:07 - 44240384 _____ () C:\Users\...\Documents\Untitled.avi
2015-02-22 12:56 - 2015-02-22 12:56 - 00000000 ____D () C:\Users\...\AppData\Roaming\MonkeyJam
2015-02-22 12:56 - 2015-02-22 12:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MonkeyJam
2015-02-22 12:56 - 2015-02-22 12:56 - 00000000 ____D () C:\Program Files (x86)\MonkeyJam
2015-02-22 12:56 - 2005-02-27 17:11 - 00424960 _____ () C:\Windows\SysWOW64\wavdest.ax
2015-02-22 12:55 - 2015-02-22 12:55 - 00669184 _____ () C:\Users\...\Downloads\MonkeyJamSetup_CB-DL-Manager.exe
2015-02-22 09:57 - 2015-02-22 09:57 - 00000197 _____ () C:\Windows\system32\2015-02-22-08-57-17.056-AvastVBoxSVC.exe-4996.log
2015-02-21 19:44 - 2015-02-21 19:44 - 00000197 _____ () C:\Windows\system32\2015-02-21-18-44-00.009-AvastVBoxSVC.exe-5136.log
2015-02-21 12:48 - 2015-02-21 12:49 - 00000197 _____ () C:\Windows\system32\2015-02-21-11-48-39.033-AvastVBoxSVC.exe-4732.log
2015-02-20 23:48 - 2015-02-20 23:48 - 00000197 _____ () C:\Windows\system32\2015-02-20-22-48-06.023-AvastVBoxSVC.exe-4808.log
2015-02-20 23:46 - 2015-02-22 09:53 - 00000224 _____ () C:\Windows\setupact.log
2015-02-20 23:46 - 2015-02-20 23:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-20 16:16 - 2015-02-20 16:16 - 00000000 ____D () C:\Users\...\Documents\EndNote
2015-02-20 14:00 - 2015-02-20 17:13 - 00000000 ____D () C:\Sicherung_150220
2015-02-20 14:00 - 2015-02-20 14:00 - 00000197 _____ () C:\Windows\system32\2015-02-20-13-00-12.013-AvastVBoxSVC.exe-4648.log
2015-02-20 10:00 - 2015-02-22 12:33 - 00077118 _____ () C:\Windows\WindowsUpdate.log
2015-02-20 10:00 - 2015-02-20 10:00 - 00000197 _____ () C:\Windows\system32\2015-02-20-09-00-49.026-AvastVBoxSVC.exe-4848.log
2015-02-19 19:13 - 2015-02-19 19:13 - 00000197 _____ () C:\Windows\system32\2015-02-19-18-13-41.032-AvastVBoxSVC.exe-4420.log
2015-02-19 18:59 - 2015-02-19 18:59 - 00000197 _____ () C:\Windows\system32\2015-02-19-17-59-11.035-AvastVBoxSVC.exe-4384.log
2015-02-19 11:15 - 2015-02-19 11:15 - 00000197 _____ () C:\Windows\system32\2015-02-19-10-15-44.076-AvastVBoxSVC.exe-5312.log
2015-02-19 11:00 - 2015-02-19 11:10 - 00000000 ____D () C:\AdwCleaner
2015-02-19 11:00 - 2015-02-19 11:00 - 02126848 _____ () C:\Users\...\Downloads\AdwCleaner.exe
2015-02-19 10:26 - 2015-02-19 10:26 - 01203488 _____ () C:\Users\...\Downloads\SuperAntiSpyware - CHIP-Installer.exe
2015-02-19 09:40 - 2015-02-19 09:40 - 00000197 _____ () C:\Windows\system32\2015-02-19-08-40-12.013-AvastVBoxSVC.exe-4912.log
2015-02-19 07:44 - 2015-02-19 07:44 - 00000197 _____ () C:\Windows\system32\2015-02-19-06-44-37.007-AvastVBoxSVC.exe-4136.log
2015-02-18 21:04 - 2015-02-22 13:00 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-18 21:04 - 2015-02-18 22:02 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-18 21:01 - 2015-02-18 21:01 - 00000197 _____ () C:\Windows\system32\2015-02-18-20-01-27.016-AvastVBoxSVC.exe-4672.log
2015-02-18 10:50 - 2015-02-18 10:50 - 00000197 _____ () C:\Windows\system32\2015-02-18-09-50-38.011-AvastVBoxSVC.exe-5080.log
2015-02-17 21:54 - 2015-02-17 21:54 - 00000197 _____ () C:\Windows\system32\2015-02-17-20-54-53.062-AvastVBoxSVC.exe-3892.log
2015-02-17 20:55 - 2015-02-17 20:55 - 00000000 ____D () C:\Users\...\Documents\My Games
2015-02-17 19:48 - 2015-02-17 19:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Slitherine
2015-02-17 19:46 - 2015-02-19 19:53 - 00000000 ____D () C:\Windows\Panzer Corps
2015-02-17 19:46 - 2015-02-17 19:46 - 00000000 ____D () C:\Program Files (x86)\Slitherine
2015-02-17 18:43 - 2015-02-17 18:43 - 00000197 _____ () C:\Windows\system32\2015-02-17-17-43-17.023-AvastVBoxSVC.exe-4892.log
2015-02-17 16:58 - 2015-02-17 16:58 - 00022833 _____ () C:\Users\...\.recently-used.xbel
2015-02-17 12:16 - 2015-02-17 12:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-02-17 12:16 - 2015-02-17 12:16 - 00000000 ____D () C:\Program Files\7-Zip
2015-02-17 12:15 - 2015-02-17 12:15 - 01203488 _____ () C:\Users\...\Downloads\7 Zip 64 Bit - CHIP-Installer.exe
2015-02-17 09:57 - 2015-02-17 09:57 - 00000197 _____ () C:\Windows\system32\2015-02-17-08-57-20.036-AvastVBoxSVC.exe-4472.log
2015-02-16 23:47 - 2015-02-16 23:47 - 00000197 _____ () C:\Windows\system32\2015-02-16-22-47-55.033-AvastVBoxSVC.exe-4364.log
2015-02-16 17:45 - 2015-02-16 17:45 - 00000197 _____ () C:\Windows\system32\2015-02-16-16-45-34.007-AvastVBoxSVC.exe-4508.log
2015-02-16 12:45 - 2015-02-18 00:54 - 00000000 ____D () C:\CC_Registry_Cleaner_Sicherung
2015-02-16 12:42 - 2015-02-16 12:42 - 00002788 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-02-16 12:42 - 2015-02-16 12:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-16 12:42 - 2015-02-16 12:42 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-16 12:17 - 2015-02-16 12:17 - 00000197 _____ () C:\Windows\system32\2015-02-16-11-17-25.063-AvastVBoxSVC.exe-3792.log
2015-02-16 12:12 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-16 12:12 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-16 12:11 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-16 12:11 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-16 12:05 - 2015-02-16 12:05 - 00000197 _____ () C:\Windows\system32\2015-02-16-11-05-03.026-AvastVBoxSVC.exe-4952.log
2015-02-13 13:19 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-13 13:19 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-13 13:19 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-13 13:19 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-13 13:19 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-13 13:19 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-13 13:19 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-13 13:19 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-13 13:19 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-13 13:19 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-13 13:19 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-13 13:19 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-13 13:19 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-13 13:19 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-13 13:19 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-13 13:19 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-13 13:19 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-13 13:19 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-13 13:19 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-13 13:19 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-13 13:19 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-13 13:19 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-13 13:19 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-13 13:19 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-13 13:19 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-13 13:19 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-13 13:19 - 2015-01-12 02:55 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-13 13:19 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-13 13:19 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-13 13:19 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-13 13:19 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-13 13:19 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-13 13:19 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-13 13:19 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-13 13:19 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-13 13:19 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-13 13:19 - 2015-01-12 02:29 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-13 13:19 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-13 13:19 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-13 13:19 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-13 13:19 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-13 13:19 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-13 13:19 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-13 13:19 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-13 13:19 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-13 13:19 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-13 13:18 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-13 13:18 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-13 13:18 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-13 13:18 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-13 13:18 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-13 13:18 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-13 13:18 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-13 13:18 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-13 13:18 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-13 13:18 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-13 13:18 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-13 13:18 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-13 13:18 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-13 13:18 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-13 13:18 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-13 13:18 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-13 13:18 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-13 13:18 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-13 13:18 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-13 13:18 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-13 13:18 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-13 13:18 - 2015-01-12 03:33 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-13 13:18 - 2015-01-12 03:32 - 06041088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-13 13:18 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-13 13:18 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-13 13:18 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-13 13:18 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-13 13:18 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-13 13:18 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-13 13:18 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-13 13:18 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-13 13:18 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-13 13:17 - 2015-02-04 04:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-13 13:17 - 2015-02-04 04:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-13 13:17 - 2015-02-04 04:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-13 13:17 - 2015-02-04 04:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-13 13:17 - 2015-02-04 04:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-13 13:17 - 2015-02-04 04:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-13 13:17 - 2015-02-04 04:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-13 13:17 - 2015-01-28 00:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-13 13:17 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-13 13:17 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-13 13:17 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-13 13:17 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-13 13:17 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-13 13:17 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-13 13:17 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-13 13:17 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-13 13:17 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-13 13:17 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-13 13:17 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-13 13:17 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-13 13:17 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-13 13:17 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-13 13:17 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-13 13:16 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-13 13:16 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-13 13:16 - 2014-10-04 03:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-13 13:16 - 2014-10-04 02:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-13 13:16 - 2014-10-04 02:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-02-13 13:15 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-13 11:49 - 2015-02-13 11:50 - 00000197 _____ () C:\Windows\system32\2015-02-13-10-49-27.086-AvastVBoxSVC.exe-5248.log
2015-02-12 20:04 - 2015-02-12 20:04 - 00000197 _____ () C:\Windows\system32\2015-02-12-19-04-02.036-AvastVBoxSVC.exe-5068.log
2015-02-12 09:36 - 2015-02-12 09:36 - 00000197 _____ () C:\Windows\system32\2015-02-12-08-36-53.080-AvastVBoxSVC.exe-4912.log
2015-02-11 22:02 - 2015-02-11 22:02 - 00000197 _____ () C:\Windows\system32\2015-02-11-21-02-03.096-AvastVBoxSVC.exe-4948.log
2015-02-11 13:52 - 2015-02-11 13:52 - 00000000 ____D () C:\Users\...\Documents\SigmaPlot
2015-02-11 11:02 - 2015-02-11 11:02 - 00000197 _____ () C:\Windows\system32\2015-02-11-10-02-14.025-AvastVBoxSVC.exe-5088.log
2015-02-10 22:18 - 2015-02-10 22:18 - 00000197 _____ () C:\Windows\system32\2015-02-10-21-18-47.081-AvastVBoxSVC.exe-5508.log
2015-02-10 18:07 - 2015-02-10 18:07 - 00000197 _____ () C:\Windows\system32\2015-02-10-17-07-34.042-AvastVBoxSVC.exe-3116.log
2015-02-10 09:47 - 2015-02-10 09:48 - 00000197 _____ () C:\Windows\system32\2015-02-10-08-47-54.044-AvastVBoxSVC.exe-5356.log
2015-02-09 21:05 - 2015-02-09 21:05 - 00000197 _____ () C:\Windows\system32\2015-02-09-20-05-01.077-AvastVBoxSVC.exe-5312.log
2015-02-09 17:01 - 2015-02-09 16:59 - 00040262 _____ () C:\Users\...\Desktop\Chlorophytes_ML_500Bts_new.mts
2015-02-09 10:47 - 2015-02-09 10:47 - 00000197 _____ () C:\Windows\system32\2015-02-09-09-47-10.007-AvastVBoxSVC.exe-5264.log
2015-02-08 12:39 - 2015-02-09 10:54 - 00003290 _____ () C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-3493849748-3862360928-3587676368-1000
2015-02-08 12:38 - 2015-02-08 12:38 - 00000197 _____ () C:\Windows\system32\2015-02-08-11-38-06.051-AvastVBoxSVC.exe-4388.log
2015-02-07 10:22 - 2015-02-07 10:24 - 19996360 _____ () C:\Users\...\Downloads\DrakensangOnlineSetup.exe
2015-02-07 10:10 - 2015-02-07 10:11 - 00000000 ____D () C:\ProgramData\TuneUp Software
2015-02-07 10:10 - 2015-02-07 10:10 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2015-02-07 10:10 - 2015-02-07 10:10 - 00000000 ____D () C:\Users\...\AppData\Roaming\TuneUp Software
2015-02-07 10:10 - 2015-02-07 10:10 - 00000000 ____D () C:\Users\...\AppData\Local\TuneUp Software
2015-02-07 10:08 - 2015-02-07 10:10 - 28598072 _____ (TuneUp Software) C:\Users\...\Downloads\TuneUpUtilities2014_34de-DE.exe
2015-02-07 08:24 - 2015-02-07 08:24 - 00000197 _____ () C:\Windows\system32\2015-02-07-07-24-41.003-AvastVBoxSVC.exe-4060.log
2015-02-06 19:37 - 2015-02-06 19:37 - 00000197 _____ () C:\Windows\system32\2015-02-06-18-37-22.058-AvastVBoxSVC.exe-4600.log
2015-02-06 16:44 - 2015-02-06 16:44 - 00000197 _____ () C:\Windows\system32\2015-02-06-15-44-20.081-AvastVBoxSVC.exe-5540.log
2015-02-06 09:36 - 2015-02-06 09:37 - 00000197 _____ () C:\Windows\system32\2015-02-06-08-36-42.058-AvastVBoxSVC.exe-4864.log
2015-02-05 08:36 - 2015-02-05 08:36 - 00000197 _____ () C:\Windows\system32\2015-02-05-07-36-46.016-AvastVBoxSVC.exe-4672.log
2015-02-04 19:24 - 2015-02-04 19:24 - 00000197 _____ () C:\Windows\system32\2015-02-04-18-24-18.086-AvastVBoxSVC.exe-4792.log
2015-02-04 09:38 - 2015-02-04 09:38 - 00000197 _____ () C:\Windows\system32\2015-02-04-08-38-47.084-AvastVBoxSVC.exe-4824.log
2015-02-04 06:03 - 2015-02-04 06:03 - 00000197 _____ () C:\Windows\system32\2015-02-04-05-03-47.086-AvastVBoxSVC.exe-4636.log
2015-02-03 21:28 - 2015-02-03 21:28 - 00000197 _____ () C:\Windows\system32\2015-02-03-20-28-56.007-AvastVBoxSVC.exe-4368.log
2015-02-03 19:44 - 2015-02-03 19:44 - 00000197 _____ () C:\Windows\system32\2015-02-03-18-44-48.043-AvastVBoxSVC.exe-4356.log
2015-02-03 10:55 - 2015-02-03 10:55 - 00000197 _____ () C:\Windows\system32\2015-02-03-09-55-11.031-AvastVBoxSVC.exe-4328.log
2015-02-02 20:52 - 2015-02-02 20:52 - 00000197 _____ () C:\Windows\system32\2015-02-02-19-52-04.010-AvastVBoxSVC.exe-5024.log
2015-02-02 19:06 - 2015-02-02 19:06 - 00000197 _____ () C:\Windows\system32\2015-02-02-18-06-53.007-AvastVBoxSVC.exe-4712.log
2015-02-02 10:46 - 2015-02-02 10:47 - 00000197 _____ () C:\Windows\system32\2015-02-02-09-46-28.041-AvastVBoxSVC.exe-4236.log
2015-02-01 20:54 - 2015-02-01 20:55 - 00000197 _____ () C:\Windows\system32\2015-02-01-19-54-36.009-AvastVBoxSVC.exe-956.log
2015-02-01 20:53 - 2015-02-01 20:53 - 00000000 _____ () C:\Users...\Sti_Trace.log
2015-02-01 20:52 - 2015-02-01 20:52 - 00000000 ____D () C:\Users\...k\AppData\Roaming\Epson
2015-02-01 13:04 - 2015-02-22 13:04 - 00000911 _____ () C:\Windows\Tasks\EPSON XP-312 313 315 Series Update {6E7111F9-907E-4B79-A32C-3CF8061D7EF0}.job
2015-02-01 13:04 - 2015-02-22 13:04 - 00000725 _____ () C:\Windows\Tasks\EPSON XP-312 313 315 Series Invitation {6E7111F9-907E-4B79-A32C-3CF8061D7EF0}.job
2015-02-01 13:04 - 2015-02-01 13:04 - 00003978 _____ () C:\Windows\System32\Tasks\EPSON XP-312 313 315 Series Update {6E7111F9-907E-4B79-A32C-3CF8061D7EF0}
2015-02-01 13:04 - 2015-02-01 13:04 - 00003792 _____ () C:\Windows\System32\Tasks\EPSON XP-312 313 315 Series Invitation {6E7111F9-907E-4B79-A32C-3CF8061D7EF0}
2015-02-01 13:03 - 2013-10-22 04:04 - 00179712 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMBLFE.DLL
2015-02-01 13:03 - 2011-03-15 03:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BLFE.DLL
2015-02-01 13:03 - 2007-04-10 01:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2015-02-01 12:56 - 2015-02-01 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2015-02-01 12:56 - 2015-02-01 13:04 - 00000000 ____D () C:\Program Files (x86)\EPSON Software
2015-02-01 12:49 - 2015-02-01 13:11 - 00000934 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
2015-02-01 12:49 - 2015-02-01 13:04 - 00000000 ____D () C:\Program Files (x86)\epson
2015-02-01 12:49 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2015-02-01 12:49 - 2012-05-17 00:00 - 00144560 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe
2015-02-01 12:48 - 2015-02-01 12:48 - 21348352 _____ () C:\Users\...\Downloads\epson376820eu.exe
2015-02-01 12:46 - 2015-02-01 12:47 - 23326720 _____ () C:\Users\...\Downloads\epson376821eu.exe
2015-02-01 12:46 - 2015-02-01 12:47 - 06037504 _____ () C:\Users\...\Downloads\epson379671eu.exe
2015-02-01 12:46 - 2015-02-01 12:46 - 04701696 _____ () C:\Users\...\Downloads\epson377960eu.exe
2015-02-01 12:43 - 2015-02-01 13:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-02-01 12:43 - 2015-02-01 13:04 - 00000000 ____D () C:\ProgramData\EPSON
2015-02-01 12:43 - 2015-02-01 12:43 - 00000000 ____D () C:\Program Files\Common Files\EPSON
2015-02-01 12:40 - 2015-02-01 12:40 - 00000197 _____ () C:\Windows\system32\2015-02-01-11-40-45.094-AvastVBoxSVC.exe-4972.log
2015-02-01 12:00 - 2015-02-01 12:01 - 00000197 _____ () C:\Windows\system32\2015-02-01-11-00-56.019-AvastVBoxSVC.exe-4532.log
2015-01-31 20:23 - 2015-01-31 20:23 - 00000197 _____ () C:\Windows\system32\2015-01-31-19-23-37.018-AvastVBoxSVC.exe-4144.log
2015-01-31 08:20 - 2015-01-31 08:20 - 00000197 _____ () C:\Windows\system32\2015-01-31-07-20-48.037-AvastVBoxSVC.exe-4116.log
2015-01-31 00:09 - 2015-01-31 00:09 - 00000197 _____ () C:\Windows\system32\2015-01-30-23-09-39.081-AvastVBoxSVC.exe-4196.log
2015-01-30 19:26 - 2015-01-30 19:26 - 00000197 _____ () C:\Windows\system32\2015-01-30-18-26-59.028-AvastVBoxSVC.exe-4920.log
2015-01-30 09:42 - 2015-01-30 09:42 - 00000197 _____ () C:\Windows\system32\2015-01-30-08-42-37.004-AvastVBoxSVC.exe-4940.log
2015-01-29 20:54 - 2015-01-29 20:55 - 00000197 _____ () C:\Windows\system32\2015-01-29-19-54-49.011-AvastVBoxSVC.exe-4968.log
2015-01-29 18:07 - 2015-01-29 18:07 - 00000197 _____ () C:\Windows\system32\2015-01-29-17-07-17.096-AvastVBoxSVC.exe-4732.log
2015-01-29 11:37 - 2015-01-29 11:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cobian Backup 11
2015-01-29 11:37 - 2015-01-29 11:37 - 00000000 ____D () C:\Program Files (x86)\Cobian Backup 11
2015-01-29 10:38 - 2015-01-29 10:38 - 00000197 _____ () C:\Windows\system32\2015-01-29-09-38-47.022-AvastVBoxSVC.exe-4456.log
2015-01-29 09:06 - 2015-01-29 09:06 - 00000197 _____ () C:\Windows\system32\2015-01-29-08-06-14.083-AvastVBoxSVC.exe-4532.log
2015-01-28 19:16 - 2015-01-28 19:16 - 00000197 _____ () C:\Windows\system32\2015-01-28-18-16-04.009-AvastVBoxSVC.exe-5084.log
2015-01-28 13:22 - 2015-02-22 13:54 - 00000000 ____D () C:\ComputerPflege
2015-01-28 11:58 - 2015-01-28 11:59 - 19709440 _____ (Luis Cobian, CobianSoft) C:\Users\...\Downloads\cbSetup.exe
2015-01-28 11:40 - 2015-01-28 11:40 - 00000197 _____ () C:\Windows\system32\2015-01-28-10-40-07.036-AvastVBoxSVC.exe-5100.log
2015-01-28 11:05 - 2015-01-28 11:05 - 05325208 _____ (Piriform Ltd) C:\Users\...\Downloads\ccsetup502.exe
2015-01-28 11:04 - 2015-01-28 11:04 - 05610841 _____ (Swearware) C:\Users\...\Downloads\ComboFix.exe
2015-01-28 11:00 - 2015-01-28 11:31 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-01-28 11:00 - 2015-01-28 11:00 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-01-28 11:00 - 2015-01-28 11:00 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-01-28 11:00 - 2015-01-28 11:00 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2015-01-28 11:00 - 2015-01-28 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-01-28 11:00 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2015-01-28 10:59 - 2015-01-28 11:01 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-01-28 10:58 - 2015-01-28 10:58 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\...\Downloads\spybot-2.4.exe
2015-01-28 10:56 - 2015-01-28 10:56 - 01191200 _____ () C:\Users\...\Downloads\SpyBot Search Destroy - CHIP-Installer.exe
2015-01-28 10:54 - 2015-01-28 10:54 - 00000247 _____ () C:\Windows\system32\2015-01-28-09-54-11.009-aswFe.exe-3192.log
2015-01-28 10:53 - 2015-01-28 10:55 - 157747287 _____ () C:\Users\...\Downloads\avg_arl_ffi_all_120_141126a8645.zip
2015-01-28 10:50 - 2015-01-28 10:50 - 01191200 _____ () C:\Users\...\Downloads\Trojan Remover - CHIP-Installer.exe
2015-01-28 10:43 - 2015-01-28 10:54 - 00000247 _____ () C:\Windows\system32\2015-01-28-09-43-52.032-aswFe.exe-1336.log
2015-01-28 10:43 - 2015-01-28 10:43 - 00000197 _____ () C:\Windows\system32\2015-01-28-09-43-49.049-AvastVBoxSVC.exe-4856.log
2015-01-28 10:32 - 2015-01-28 10:36 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2015-01-28 10:32 - 2015-01-28 10:36 - 00000000 ____D () C:\Windows\system32\vbox
2015-01-28 10:31 - 2015-02-21 12:47 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-28 10:31 - 2015-01-28 10:37 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-28 10:31 - 2015-01-28 10:31 - 00001964 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-28 10:31 - 2015-01-28 10:31 - 00000000 ____D () C:\Users\...\AppData\Roaming\AVAST Software
2015-01-28 10:31 - 2015-01-28 10:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-28 10:31 - 2015-01-28 10:30 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-01-28 10:31 - 2015-01-28 10:30 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-28 10:31 - 2015-01-28 10:30 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-28 10:31 - 2015-01-28 10:30 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-28 10:31 - 2015-01-28 10:30 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-28 10:31 - 2015-01-28 10:30 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-01-28 10:31 - 2015-01-28 10:30 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-28 10:31 - 2015-01-28 10:30 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-28 10:30 - 2015-01-28 10:30 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-28 10:29 - 2015-01-28 10:29 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-28 10:28 - 2015-01-28 10:30 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-28 06:40 - 2015-02-16 12:43 - 00000000 ____D () C:\Windows\Minidump
2015-01-27 13:50 - 2015-02-17 15:10 - 00000000 ____D () C:\Windows\pss
2015-01-27 12:25 - 2015-02-11 22:05 - 00003866 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1422357903
2015-01-27 12:25 - 2015-01-27 12:25 - 00001139 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-01-27 12:25 - 2015-01-27 12:25 - 00000000 ____D () C:\Users\...\AppData\Roaming\Opera Software
2015-01-27 12:25 - 2015-01-27 12:25 - 00000000 ____D () C:\Users\...\AppData\Local\Opera Software
2015-01-27 12:24 - 2015-02-16 17:47 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-27 12:24 - 2015-01-27 12:24 - 00713120 _____ (Opera Software) C:\Users\...\Downloads\Opera_NI_stable.exe
2015-01-27 12:23 - 2015-01-27 12:23 - 00000000 ____D () C:\Users\...\.jmc
2015-01-27 12:23 - 2015-01-27 12:23 - 00000000 ____D () C:\Users\...\.eclipse
2015-01-27 12:01 - 2015-01-27 12:01 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-27 12:01 - 2015-01-27 12:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-27 12:01 - 2015-01-27 12:01 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-27 12:00 - 2015-01-27 12:00 - 00639912 _____ (Oracle Corporation) C:\Users\...\Downloads\jxpiinstall.exe
2015-01-27 11:55 - 2015-01-27 11:55 - 01191200 _____ () C:\Users\...\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe
2015-01-27 11:51 - 2015-01-27 11:51 - 00000000 ____D () C:\ProgramData\Sun
2015-01-27 11:50 - 2015-01-27 12:02 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-27 11:50 - 2015-01-27 11:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-01-27 11:49 - 2015-01-27 11:50 - 00000000 ____D () C:\Program Files\Java
2015-01-27 11:43 - 2015-01-27 11:44 - 178639264 _____ (Oracle Corporation) C:\Users\...\Downloads\jdk-8u31-windows-x64.exe
2015-01-26 23:03 - 2015-01-26 23:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-25 19:05 - 2015-01-29 23:09 - 00000000 ____D () C:\Users\...\AppData\Roaming\Skype
2015-01-25 19:05 - 2015-01-25 19:05 - 00000000 ____D () C:\Users\...\AppData\Local\Skype
2015-01-25 19:04 - 2015-01-25 19:04 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2015-01-25 19:04 - 2015-01-25 19:04 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-25 19:04 - 2015-01-25 19:04 - 00000000 ____D () C:\ProgramData\Skype
2015-01-25 19:04 - 2015-01-25 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-01-25 19:02 - 2015-01-25 19:02 - 01548384 _____ (Skype Technologies S.A.) C:\Users\...\Downloads\SkypeSetup.exe
2015-01-23 11:24 - 2015-01-23 11:24 - 00431395 _____ () C:\Windows\system32\Drivers\vsconfig.xml
2015-01-23 11:24 - 2015-01-23 11:24 - 00000762 _____ () C:\Users\Public\Desktop\ZoneAlarm Security.lnk
2015-01-23 11:24 - 2015-01-23 11:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2015-01-23 11:24 - 2015-01-23 11:24 - 00000000 ____D () C:\Program Files (x86)\CheckPoint
2015-01-23 11:22 - 2015-01-23 11:22 - 42571128 _____ (Check Point Software Technologies Ltd.) C:\Users\...\Downloads\zafwsetup_19090.exe
2015-01-23 11:22 - 2015-01-23 11:22 - 00000000 ____D () C:\ProgramData\CheckPoint

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 13:04 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2015-02-22 10:03 - 2009-07-14 05:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-22 10:03 - 2009-07-14 05:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-22 09:53 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-21 12:51 - 2011-04-12 08:43 - 00698926 _____ () C:\Windows\system32\perfh007.dat
2015-02-21 12:51 - 2011-04-12 08:43 - 00149034 _____ () C:\Windows\system32\perfc007.dat
2015-02-21 12:51 - 2009-07-14 06:13 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-20 17:43 - 2015-01-21 17:32 - 00000000 ____D () C:\Users\...\AppData\Roaming\3DataManager
2015-02-20 16:26 - 2015-01-14 11:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2015-02-20 16:14 - 2015-01-14 17:11 - 00000000 ____D () C:\Users\...\AppData\Roaming\EndNote
2015-02-19 23:23 - 2015-01-15 23:27 - 00000000 ____D () C:\Users\...\AppData\Roaming\vlc
2015-02-19 16:47 - 2015-01-12 17:35 - 00000000 ____D () C:\DETECTIVE
2015-02-19 11:49 - 2015-01-08 18:06 - 00000218 _____ () C:\Windows\SysWOW64\grucp51.tgz
2015-02-19 11:49 - 2015-01-08 18:06 - 00000204 _____ () C:\Windows\SysWOW64\grucp51.dll
2015-02-19 11:49 - 2015-01-08 18:06 - 00000114 _____ () C:\Windows\SysWOW64\prsgrc.tgz
2015-02-19 11:49 - 2015-01-08 18:06 - 00000100 _____ () C:\Windows\SysWOW64\prsgrc.dll
2015-02-19 11:49 - 2015-01-08 18:06 - 00000086 _____ () C:\Windows\SysWOW64\ssprs.tgz
2015-02-18 22:02 - 2015-01-15 22:12 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-18 22:02 - 2015-01-15 22:12 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-17 20:30 - 2015-01-21 17:30 - 00000000 ____D () C:\Users\...\AppData\Local\Microsoft Games
2015-02-17 17:19 - 2015-01-14 17:01 - 00000000 ____D () C:\Users\Public\Documents\EndNote
2015-02-17 17:19 - 2015-01-14 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote
2015-02-17 17:19 - 2015-01-14 17:01 - 00000000 ____D () C:\Program Files (x86)\EndNote X7
2015-02-17 17:19 - 2015-01-14 16:59 - 00000000 ____D () C:\ProgramData\Thomson.ResearchSoft.Installers
2015-02-17 17:19 - 2015-01-08 16:39 - 00000000 ____D () C:\Users\...
2015-02-17 17:01 - 2015-01-20 14:46 - 00000000 ____D () C:\Users\...\.gimp-2.6
2015-02-17 16:58 - 2015-01-20 15:06 - 00000000 ____D () C:\Users\...\AppData\Roaming\gtk-2.0
2015-02-17 13:35 - 2015-01-19 12:16 - 00000000 ____D () C:\Users\...\AppData\Roaming\MEGA_Global
2015-02-16 14:19 - 2015-01-12 17:29 - 00000000 ____D () C:\SonstigesAsus
2015-02-16 12:43 - 2015-01-08 16:12 - 00000000 ____D () C:\Windows\Panther
2015-02-16 12:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-13 14:32 - 2009-07-14 05:45 - 00341880 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-13 14:31 - 2015-01-08 23:35 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-13 14:31 - 2015-01-08 23:35 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-13 13:30 - 2015-01-09 13:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-13 13:27 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-02-13 13:26 - 2015-01-08 18:56 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-13 13:21 - 2015-01-08 18:56 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-12 10:57 - 2015-01-09 13:40 - 00000000 ____D () C:\Users\...\AppData\Local\Microsoft Help
2015-02-11 10:59 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-08 13:16 - 2015-01-08 16:39 - 00000000 ____D () C:\Users\...\AppData\Local\VirtualStore
2015-02-07 10:09 - 2015-01-16 13:15 - 00000000 ____D () C:\Users\...\AppData\Roaming\DVDVideoSoft
2015-02-07 10:08 - 2015-01-16 13:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-02-07 10:08 - 2015-01-16 13:18 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack
2015-02-07 10:08 - 2015-01-16 13:18 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2015-02-01 13:04 - 2015-01-08 17:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-28 09:52 - 2015-01-09 14:00 - 00000000 ____D () C:\Users\...\AppData\Roaming\LavasoftStatistics
2015-01-28 09:52 - 2015-01-09 13:58 - 00000000 ____D () C:\Users\...\AppData\Roaming\Lavasoft
2015-01-28 09:52 - 2015-01-09 13:53 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-01-27 13:42 - 2015-01-09 14:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-27 11:34 - 2015-01-17 09:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2015-01-27 11:01 - 2015-01-14 11:35 - 00000000 ____D () C:\Software

==================== Files in the root of some directories =======

2015-01-14 12:55 - 2015-01-14 12:55 - 0000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-13 14:00

==================== End Of Log ============================

 

Kind regards

Ben



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,668 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:47 PM

Posted 28 February 2015 - 08:00 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/568030 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,668 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:47 PM

Posted 05 March 2015 - 08:05 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users