svchost.exe(Trojan), help please!

[cloud2828]

I've tried everything, I saw google links to this website very often showing how to remove this, but I couldn't try it because it was dangerous, so I finally decided to make one myself. So let me get this straight, I'm decent with PCs, I've tried 4 other anti-virus and malware fighter programs and none of them worked, this svchost.eve just keeps coming back every time, I think it's the reason I can't run certain programs on my PC atm. I cannot system restore because the virus only just started getting bad, I tried system restoring before and it didn't work so I've obviously had the virus a long time now. i would like some assistance from a professional please.

[cloud2828]

Bump. Please, I really need help with this, it is preventing me from doing a lot of things and deleting my important files.

[kevinf80]

What operating system do you have?

[cloud2828]

What operating system do you have?

Windows 7 Ultimate.

[kevinf80]

Hello and

 

P2P/Piracy Warning:

 

   

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

 

Run Malwarebytes,  Open > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick scan

Make sure that everything is checked, and click Remove Selected on any found items.

 

Post the produced log

 

Next,

 

Download Farbar Recovery Scan Tool and save it to your desktop.

 

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

• 
  

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

Kevin

[cloud2828]

Malwarebytes Anti-Malware (Trial) 1.75.0.1300

www.malwarebytes.org

 

Database version: v2014.03.01.03

 

Windows 7 x64 NTFS

Internet Explorer 9.0.8112.16421

Jabari :: JABARI-PC [administrator]

 

Protection: Enabled

 

3/1/2014 2:35:41 PM

MBAM-log-2014-03-01 (14-50-42).txt

 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 251370

Time elapsed: 14 minute(s), 39 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 22

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01} (PUP.Optional.DefaultTab.A) -> No action taken.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01} (PUP.Optional.DefaultTab.A) -> No action taken.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01} (PUP.Optional.DefaultTab.A) -> No action taken.

HKCU\SOFTWARE\DEFAULT TAB (PUP.Optional.DefaultTab.A) -> No action taken.

HKCU\SOFTWARE\DELTA\DELTA (PUP.Optional.Delta.A) -> No action taken.

HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> No action taken.

HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> No action taken.

HKCU\Software\AppDataLow\Software\Crossrider (PUP.Optional.CrossRider.A) -> No action taken.

HKCU\Software\AppDataLow\Software\DefaultTab (PUP.Optional.DefaultTab.A) -> No action taken.

HKCU\Software\AppDataLow\Software\Discount Buddy (PUP.Optional.DiscountBuddy.A) -> No action taken.

HKCU\Software\AppDataLow\Software\PriceGong (PUP.Optional.PriceGong.A) -> No action taken.

HKCU\Software\AppDataLow\Software\Search Protection (PUP.Optional.MyEmoticons.A) -> No action taken.

HKCU\SOFTWARE\BI (PUP.Optional.FilesFrog.A) -> No action taken.

HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> No action taken.

HKCU\Software\Cr_Installer\26766 (PUP.Optional.CrossRider.A) -> No action taken.

HKCU\SOFTWARE\DELTA\DELTA\IESTRG (PUP.Optional.Delta.A) -> No action taken.

HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> No action taken.

HKCU\Software\InstalledBrowserExtensions\Innovative Apps (PUP.Optional.CrossRider.A) -> No action taken.

HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings (PUP.Optional.BProtector.A) -> No action taken.

HKCU\Software\MozillaPlugins\@tnt2ghost.com/Plugin (PUP.Optional.TidyNetwork.A) -> No action taken.

HKCU\SOFTWARE\SOMOTO\SDP (PUP.Optional.Somoto.A) -> No action taken.

HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> No action taken.

 

Registry Values Detected: 10

HKCU\SOFTWARE\Default Tab|Version (PUP.Optional.DefaultTab.A) -> Data: 2.2.8.0 -> No action taken.

HKCU\SOFTWARE\Delta\Delta|tlbrSrchUrl (PUP.Optional.Delta.A) -> Data:  -> No action taken.

HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Data: http://search.babylon.com/?babsrc=HP_ss_sps&mntrId=E4EE8C89A582901C&affID=44444&tsp=4928 -> No action taken.

HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|bProtectorDefaultScope (PUP.BProtector) -> Data: {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} -> No action taken.

HKCU\Software\BI|ui_path_filesfrog (PUP.Optional.FilesFrog.A) -> Data: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker -> No action taken.

HKCU\Software\Delta\delta|lastB (PUP.Optional.Delta.A) -> Data: http://www.delta-search.com/?babsrc=HP_ss&mntrId=E4EE8C89A582901C&affID=44444&tsp=4928 -> No action taken.

HKCU\Software\Delta\delta\iestrg|tlbrsrchurl (PUP.Optional.Delta.A) -> Data:  -> No action taken.

HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: zszw1J1F0X1G1UtI0DtFyD -> No action taken.

HKCU\Software\Somoto\SDP|affid (PUP.Optional.Somoto.A) -> Data: network_adworkmedia_1 -> No action taken.

HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: 11111111 -> No action taken.

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 6

C:\Users\Jabari\AppData\Local\Temp\utt6568.tmp (PUP.Optional.OpenCandy) -> No action taken.

C:\Windows\Temp\phatk121016.cl (Trojan.BitcoinMiner) -> No action taken.

C:\Windows\Temp\scrypt130511.cl (Trojan.BitcoinMiner) -> No action taken.

C:\Windows\Temp\diablo130302.cl (Trojan.BitcoinMiner) -> No action taken.

C:\Windows\Temp\poclbm130302.cl (Trojan.BitcoinMiner) -> No action taken.

C:\Windows\Temp\diakgcn121016.cl (Trojan.BitcoinMiner) -> No action taken.

 

(end)

[cloud2828]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-03-2014

Ran by Jabari at 2014-03-01 14:53:29

Running from C:\Users\Jabari\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: ThreatTrack Security VIPRE (Enabled - Up to date) {FFE93D16-FD09-0282-C7D3-8B1731B6A051}

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: ThreatTrack Security VIPRE (Enabled - Up to date) {4488DCF2-DB33-0D0C-FD63-B0654A31EAEC}

AS: IObit Malware Fighter (Disabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}

 

==================== Installed Programs ======================

 

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)

µTorrent (HKCU\...\uTorrent) (Version: 3.4.0.30620 - BitTorrent Inc.)

64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden

Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.7.700.202 - Adobe Systems Incorporated)

Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.7.700.202 - Adobe Systems Incorporated)

Adobe Reader X (10.1.3) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)

Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)

Advanced Archive Password Recovery (HKCU\...\Advanced Archive Password Recovery) (Version: 4.53 - ElcomSoft Co. Ltd.)

Advanced SystemCare 7 (HKLM-x32\...\Advanced SystemCare 7_is1) (Version: 7.2.0 - IObit)

Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.12.2553) (Version: 1.12.2553 - Aeria Games & Entertainment)

Aeria Ignite (x32 Version: 1.12.2553 - Aeria Games & Entertainment) Hidden

Aion (HKCU\...\NCsoft-Aion) (Version:  - NCsoft)

Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)

AOL Uninstaller (Choose which Products to Remove) (HKLM-x32\...\AOL Uninstaller) (Version:  - AOL Inc.)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

applicationupdater (HKCU\...\SOE-C:/Users/Jabari/AppData/Local/Sony Online Entertainment/ApplicationUpdater) (Version:  - Sony Online Entertainment)

Arctic Combat (HKLM-x32\...\{9C84DFF4-A98C-42d5-A09F-6985A05205B2}_is1) (Version: 1.0.0.1 - Webzen)

Audition (HKLM-x32\...\{EA9B4B3E-4C46-4A5F-8D12-6A1331C114A6}) (Version: 1.00.0000 - Redbana)

AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)

AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden

Avro Keyboard 5.1.0 (HKLM-x32\...\Avro Keyboard_is1) (Version: 5.1.0 - OmicronLab)

Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )

BBSAK (HKLM-x32\...\{E2B4FE1C-2CFA-47EE-A88C-A14D0FF1F0B0}) (Version: 1.9.11 - JMT Labs)

beanfun! (HKCU\...\beanfun!) (Version: 2.1.2.7 - Gamania Inc.)

Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)

BlackBerry Desktop Software 6.1 (HKLM-x32\...\BlackBerry_Desktop) (Version: 6.1.0.36 - Research In Motion Ltd.)

BlackBerry Desktop Software 6.1 (x32 Version: 6.1.0.36 - Research In Motion Ltd.) Hidden

Blacklight Retribution (HKLM-x32\...\{DB97CB5A-82B2-4FB1-9E5E-C03661A1482A}) (Version: 1.00.09500 - Perfect World Entertainment)

BlueSoleil 8.0.356.0 (HKLM\...\{0506E878-CE62-4491-AA26-743924FEE236}) (Version: 8.0.356.0 - IVT Corporation)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

BrickForce 1.9.87 (HKLM-x32\...\BrickForce) (Version: 1.9.87 - Infernum Productions AG)

BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden

Bullet Run (HKCU\...\SOE-Bullet Run) (Version:  - Sony Online Entertainment)

Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version:  - Infinity Ward - Sledgehammer Games)

CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)

Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version:  - Dark Byte)

Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )

Combat Arms (HKLM-x32\...\Combat Arms) (Version:  - )

CORE Client (HKLM-x32\...\{7A625369-34A4-4D62-9165-2EFCFA41DA1D}) (Version: 1.00.0000 - Perfect World Entertainment)

Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)

Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated) <==== ATTENTION

Crysis® (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.21.0000 - Electronic Arts)

Crysis®3 MP Open Beta (HKLM-x32\...\{02454664-23E6-46B3-9CB3-30870AE3645E}) (Version: 1.0.0.0 - Electronic Arts)

D1600 (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)

DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden

Divina (HKLM-x32\...\{C71E95EB-55E8-4822-9B02-63CFB6763067}) (Version: 1.11.0100 - Gamania)

DJ_SF_06_D1600_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden

Dolby Axon - 1.5.1.1 (HKLM-x32\...\{17936630-5344-4F18-9970-616129E2A114}_is1) (Version: 1.5.1.1 - Dolby Laboratories)

Dragon Nest SEA (HKLM-x32\...\{3566D7DB-EA10-49DE-A95B-F4AB41FC0A93}) (Version: 1.45.0000 - Shanda Games International)

Dragon Saga (HKLM-x32\...\{807D33FC-2F92-413D-BA30-96CE5AA6C38C}) (Version: 0.2.1 - Gravity Interactive, Inc.)

Dragon Saga (HKLM-x32\...\{D59B4C08-0E15-4AD7-B80F-182531FDC879}) (Version: 0.0.2.6 - Gravity Interactive, Inc.)

DriverNavigator 2.7.5 (HKLM\...\DriverNavigator_is1) (Version: 2.7.5.0 - Easeware)

DriverTuner 3.1.0.0 (HKLM-x32\...\{520C1D80-935C-42B9-9340-E883849D804F}_is1) (Version: 3.1.0.0 - LionSea SoftWare)

Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)

Dxtory version 2.0.122 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.122 - Dxtory Software)

Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)

Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden

Elsword version v2.0530.1.1 (HKLM-x32\...\{E655DDFC-24DB-4FC3-8474-271E911309B4}_is1) (Version: v2.0530.1.1 - Kill3rCombo)

Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)

Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden

EVGA Precision 2.1.1 (HKLM-x32\...\Precision) (Version: 2.1.1 - EVGA Corporation)

EVGA Precision X 3.0.4 (HKLM-x32\...\PrecisionX) (Version: 3.0.4 - EVGA Corporation)

Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)

Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)

ffdshow [rev 3154] [2009-12-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )

FIFA 13 (HKLM-x32\...\{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}) (Version: 1.1.0.0 - Electronic Arts)

FLV Player (HKCU\...\FLV Player) (Version: 1.0 - Somoto Ltd.) <==== ATTENTION

Flyff (HKLM-x32\...\{88838D48-0421-4F2B-AF81-D08D206DEE4C}_is1) (Version: Flyff - Gala-Net)

FormatFactory 2.95 (HKLM-x32\...\FormatFactory) (Version: 2.95 - Free Time)

Freestyle GunZ version 7.0 (HKLM-x32\...\{B46FB5E0-11F2-4C63-A2A5-32E30106CD0C}_is1) (Version: 7.0 - FreestylersWorld)

gamelauncher-ps2-live (HKCU\...\SOE-C:/Users/Public/Sony Online Entertainment/Installed Games/PlanetSide 2) (Version:  - Sony Online Entertainment)

GamersFirst LIVE! (HKLM-x32\...\GamersFirst LIVE!) (Version:  - GamersFirst)

GameSpy Comrade (HKLM-x32\...\{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}) (Version: 1.5.0.156 - GameSpy)

GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden

Google Chrome (HKCU\...\Google Chrome) (Version: 28.0.1500.72 - Google Inc.)

GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden

Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)

Guitar Hero III (HKLM-x32\...\{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}) (Version: 1.3 - Aspyr)

GunZ (HKLM-x32\...\Gunz) (Version:  - )

GunZ 2: The Second Duel (HKLM-x32\...\Steam App 242720) (Version:  - MAIET Entertainment)

Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)

HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)

HP Deskjet D1600 Printer Driver Software 14.0 Rel. 6 (HKLM\...\{96178C0A-BAF9-4E49-A2A5-CDE76722105B}) (Version: 14.0 - HP)

HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)

HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)

HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)

HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)

HP Update (HKLM-x32\...\{74DC0593-6BC6-4001-AD5F-D810AFB68D86}) (Version: 5.002.002.002 - Hewlett-Packard)

HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden

HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden

HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden

iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.)

IObit Apps Toolbar v7.0 (HKLM-x32\...\{4ED7341F-1942-4623-A27C-9C4F3838172F}) (Version: 7.0 - Spigot, Inc.) <==== ATTENTION

IObit Malware Fighter (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 2.0 - IObit)

IObit Toolbar v7.0 (HKLM-x32\...\{3800E4B7-3457-42D9-B22D-2CBAAAEDF0A1}) (Version: 7.0 - Spigot, Inc.) <==== ATTENTION

IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.1.8.2434 - IObit)

iTunes (HKLM\...\{F73A118B-8271-47E2-8790-0C636B2539C5}) (Version: 11.1.0.126 - Apple Inc.)

Java 7 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.400 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

Java 6 Update 30 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216030FF}) (Version: 6.0.300 - Oracle)

JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)

League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)

League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden

LogMeIn (HKLM-x32\...\{976475B8-63E9-4559-BE2C-D26086BE4C40}) (Version: 4.1.2126 - LogMeIn, Inc.)

LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.1.0.294 - LogMeIn, Inc.)

LogMeIn Hamachi (x32 Version: 2.1.0.294 - LogMeIn, Inc.) Hidden

LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.7.9.31 - www.leaguereplays.com)

Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )

Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)

MapleStory (HKLM-x32\...\MapleStory) (Version:  - )

MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden

Mass Effect™ 3 Demo (HKLM-x32\...\{A1683CA7-4850-4A21-982B-C6D853C79AF7}) (Version: 1.0.0.0 - Electronic Arts)

Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)

Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)

Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft VC9 runtime libraries (x32 Version: 1.0.0 - AOL Inc.) Hidden

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)

MotioninJoy ds3 driver version 0.5.0002 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.5.0002 - www.motioninjoy.com)

MouseServer version 1.3.0.0 (HKLM-x32\...\{E13018F5-FFC7-4729-9C1B-1A85807D03E6}_is1) (Version: 1.3.0.0 - Necta Co.)

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\TkFSVVRPU0hJUFBVREVOVWx0aW1hdGVOaW5qYVNUT1JNM0Z1~D4302771_is1) (Version: 1 - )

NCsoft Launcher (HKLM-x32\...\{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}) (Version: 1.5.19002 - NCsoft)

Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version:  - )

Nokia Connectivity Cable Driver (HKLM-x32\...\{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}) (Version: 7.0.2.0 - Nokia)

NVIDIA 3D Vision Controller Driver 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.82 - NVIDIA Corporation)

NVIDIA 3D Vision Driver 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.82 - NVIDIA Corporation)

NVIDIA Control Panel 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden

NVIDIA GeForce Experience 1.8.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2 - NVIDIA Corporation)

NVIDIA Graphics Driver 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden

NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden

NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)

NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden

NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden

NVIDIA Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden

NVIDIA Update Core (Version: 11.10.11 - NVIDIA Corporation) Hidden

NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)

ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)

PaintCOST Estimator Trial (HKLM-x32\...\{350CDDB4-C751-48F6-BC5A-E597475B5BAB}) (Version: 11.00.0000 - CPR, Inc.)

Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)

PC Connectivity Solution (HKLM-x32\...\{83258E90-1F76-4E13-9F60-A0F8ED41E76F}) (Version: 8.22.7.0 - Nokia)

PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )

PlanetSide 2 (HKCU\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)

Portforward Static IP Address 1.0.47 (HKLM-x32\...\Portforward Static IP Address) (Version: 1.0.47 - Portforward.com)

Proxifier version 3.15 (HKLM-x32\...\Proxifier_is1) (Version: 3.15 - )

PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)

QPST (HKLM-x32\...\{31228E31-2BFF-11D2-8866-00805F0D9D40}) (Version:  - )

QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)

RaiderZ (HKLM-x32\...\{23258CCA-EDBF-4BA6-99C8-8278848C500C}) (Version: 1.00.0000 - Perfect World Entertainment)

Raptr (HKLM-x32\...\Raptr) (Version:  - )

Razer Comms (HKLM-x32\...\Razer Comms) (Version: 1.40.6 - Razer Inc.)

Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.22 - Razer Inc)

Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 3.7 - Razer USA Ltd)

Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.14.4 - Razer Inc.)

REACTOR (HKLM-x32\...\{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}) (Version: 1.00.0000 - ijji)

Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - )

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 3.50 - Realtek Semiconductor Corp.)

RegCure Pro (HKLM-x32\...\{C547F361-5750-4CD1-9FB6-BC93827CB6C1}) (Version: 3.1.2.0 - ParetoLogic, Inc.)

Registry Cleaner Free (HKLM-x32\...\RegistryCleanerFree) (Version: 2.4.6.8 - )

Remote Helper (HKLM-x32\...\{C14ACB14-1995-493E-8543-E560071197AB}) (Version: 4.2.9 - Remote HD)

Remote Helper+ 1.0 (HKLM-x32\...\Remote Helper+ 1.0) (Version:  - )

RoofCOST Estimator Trial (HKLM-x32\...\{3A7940D4-6474-4ACC-9701-4C34A6630EB2}) (Version: 10.00.0000 - CPR, Inc.)

RuneScape Launcher 1.2.3 (HKLM-x32\...\{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}) (Version: 1.2.3 - Jagex Ltd)

Search Protection (HKCU\...\Search Protection) (Version: 7.5.0.1 - Spigot, Inc.)

Search.us.com (HKCU\...\{0556C7B6-2E09-4515-8F20-21690F93C537}) (Version:  - Search.us.com)

SelectionLinks (HKLM-x32\...\sl-dlc) (Version: 1.0 - SelectionLinks) <==== ATTENTION

SharpKeys (HKLM-x32\...\{636E94DA-99C0-448F-A931-3DAD83B4975F}) (Version: 3.5.0000 - RandyRants.com)

SHIELD Streaming (Version: 1.7.306 - NVIDIA Corporation) Hidden

Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)

Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)

Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)

Smart Defrag 2 (HKLM-x32\...\Smart Defrag 2_is1) (Version: 2.7 - IObit)

SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden

Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 0.1.1051.1 - Hi-Rez Studios)

SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden

Sonic Generations (HKLM-x32\...\Sonic Generations_is1) (Version: 1.0 - SEGA)

Splashtop Connect for Firefox (HKLM-x32\...\{45D49CA7-D7D8-4659-B35A-EBD98C30AF28}) (Version: 1.1.8.4 - Splashtop Inc.)

Splashtop Connect IE (HKLM-x32\...\{F9F5EF72-18CF-4DCF-A721-EC86B94DAC46}) (Version: 1.1.12.1 - Splashtop Inc.)

Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden

Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)

Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

System Requirements Lab CYRI (HKLM-x32\...\{E362724E-9320-4946-AF34-874E7B6B2927}) (Version: 6.0.7.0 - Husdawg, LLC)

TalesRunner_GSP (HKLM-x32\...\{B22F57AC-3893-485E-8307-55C3772203C4}) (Version: 1.1.1.5 - Rhaon Entainment)

TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.11 - TeamSpeak Systems GmbH)

TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.18930 - TeamViewer)

Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden

TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden

Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2468871) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2533523) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600217) (Version: 1 - Microsoft Corporation)

Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)

Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)

Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)

Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)

Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)

Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{FF2E1543-EDB3-4B96-989C-A97DA428D88E}) (Version:  - Microsoft)

Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)

Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)

Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)

Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)

Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)

VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden

Vindictus (HKLM-x32\...\Vindictus) (Version:  - )

VIPRE Antivirus (HKLM-x32\...\{C1D1FC57-3EB9-4B21-BCA3-F1C927508200}) (Version: 7.0.6.2 - ThreatTrack Security, Inc.)

VIPRE Antivirus (x32 Version: 7.0.6.2 - ThreatTrack Security, Inc.) Hidden

Visual C++ 2008 Runtime (x64) (x32 Version: 1.0.1 - Highresolution Enterprises) Hidden

Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)

Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

VLC media player 2.0.2 (HKLM-x32\...\VLC media player) (Version: 2.0.2 - VideoLAN)

Warframe (HKLM-x32\...\{A59E59D8-2800-49EC-A133-288A77B34A06}) (Version: 1.0.0 - Digital Extremes)

WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)

WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden

WEBZEN Browser Extension (HKLM-x32\...\{95723791-2C44-454B-9220-C65D47D70E9C}) (Version: 1.01.020 - WEBZEN)

WiFiSendServer -- iPhone/iPad for your computers (HKLM-x32\...\WiFiSendServer) (Version:  - Benzle Inc.)

Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)

Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden

Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden

Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)

WinRAR 4.10 beta 4 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.10.4 - win.rar GmbH)

X-Mouse Button Control 2.5 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.5 - Highresolution Enterprises)

 

==================== Restore Points  =========================

 

21-02-2014 23:48:59 Removed AVG 2014

21-02-2014 23:51:16 Removed AVG 2014

01-03-2014 01:33:59 Installed Microsoft Fix it 50267

 

==================== Hosts content: ==========================

 

2009-07-13 23:34 - 2013-09-03 17:19 - 00000833 ____A C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {0B735FD6-D094-4B17-8E1E-EB322DDFD2B3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core => C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-05] (Google Inc.)

Task: {10216033-93CC-442E-B25E-C34A75BFD391} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)

Task: {15E95DBF-45DC-460F-9C3A-055931E45281} - \BitGuard No Task File

Task: {1968F4F8-8631-4D19-99EF-F2B8AF183438} - System32\Tasks\{F6C8B272-C7D7-45DA-9DC9-8B44A7D54DFA} => D:\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe

Task: {21B2CAB8-C5BB-4678-B4B1-C122BA74E73E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {27A9DD40-1D94-41CB-ACB2-3580818DD026} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)

Task: {27D9A88D-3D05-4725-AA1B-B26140DA16E7} - System32\Tasks\RegCure Pro => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

Task: {42D9F2C1-A3DD-40DC-B5A6-F3A402081092} - System32\Tasks\{83211730-E165-4B4D-9F42-2741D2B75F0C} => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

Task: {44B1EEE6-27A0-4BA1-A4A3-1669FDDE0194} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [2014-02-11] (IObit)

Task: {4B6072DC-4C7D-4076-A3B7-3F28DF5BFCC2} - System32\Tasks\{C6C6D48B-5226-44BE-9B46-EB44DB46F870} => C:\Program Files (x86)\Gravity\DragonSaga\Patcher.exe

Task: {5623AEDF-2322-4CED-B7C7-EEDC705D06B3} - System32\Tasks\{4F127ED8-9509-44E1-AB5F-889CD5FA679B} => D:\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe

Task: {6466F68F-F652-408F-BAB6-0766849EBE93} - System32\Tasks\{BC25D715-0D7A-40D6-9DF4-6AA12AFEFD82} => Chrome.exe http://ui.skype.com/ui/0/6.3.73.105.457/en/abandoninstall?page=tsWLM

Task: {6897DA0C-0CD6-4590-AEE1-B315AF9FACA7} - System32\Tasks\{7A8F642D-9D50-42FA-9F24-C659E18568C4} => C:\AeriaGames\GunZ\Gunz.exe

Task: {85F4E603-DC6E-4610-80AB-D94D91DA1372} - \ParetoLogic Update Version3 No Task File

Task: {89CE1694-1823-4D00-916E-61B19A9D3744} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-02-13] (IObit)

Task: {A744370D-CC95-476C-8F58-28A9C6716B61} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA => C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-05] (Google Inc.)

Task: {A7F0166B-11F5-49B8-90F6-FC61BECEBB70} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core => C:\Users\Jabari\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)

Task: {ABF12A66-98E2-4B59-A870-59052ECA1805} - System32\Tasks\{78F9C766-3911-40F3-8714-BC82B30668EA} => Iexplore.exe http://ui.skype.com/ui/0/5.10.0.114/en/go/help.faq.installer?LastError=1618

Task: {ACC12171-4BB1-46C0-9ED9-4C61DCB8AB05} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA => C:\Users\Jabari\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)

Task: {B26B4814-FD43-4F38-99EF-2AA8700619F4} - System32\Tasks\{EDFD8959-4681-4927-916C-711B772C9C30} => D:\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe

Task: {B35C7668-7D55-4E21-A57D-C8007EB04A95} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-14] (Adobe Systems Incorporated)

Task: {B5392EA9-D5A4-477A-BF06-0BD2A80AADAB} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe

Task: {C07B1B55-71CC-4129-B703-4919166B15C2} - System32\Tasks\ASC7_SkipUac_Jabari => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2014-02-14] (IObit)

Task: {C513D3A2-16DA-422C-A241-7BB232B25A8F} - System32\Tasks\{68998905-EAE7-42C0-95DF-AE586375497F} => C:\AeriaGames\GunZ\aeria_launcher.exe

Task: {C536D553-DD45-4E70-8B27-5D3C3761B46E} - \ParetoLogic Registration3 No Task File

Task: {D3E00D5F-3822-4977-BB50-AD6399763319} - System32\Tasks\{84D8FF4A-7B62-4664-B070-DEB52F49B77A} => Chrome.exe http://ui.skype.com/ui/0/6.3.73.105.457/en/abandoninstall?page=tsWLM

Task: {DB628C0E-A5E4-41B1-A77D-559AD07D61C7} - System32\Tasks\ParetoLogic Update Version3 Startup Task => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe

Task: {E36081B1-114C-412F-BF49-2AB2CE411504} - System32\Tasks\Razer_Game_Booster_AutoUpdate => D:\BGM\AutoUpdate.exe

Task: {E40965C2-5D17-4D2A-868C-2AF5AB0E571C} - System32\Tasks\{5A69E9B5-8625-4C03-9CFD-60C93762D367} => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

Task: {E53C0CA9-AE89-4CBE-82B8-1A7A982C07C7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)

Task: {E7D68CB6-F5A6-4371-871A-8EE7A4F906FD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe

Task: {F0C4B272-246B-447D-AC4E-5879A48742DF} - System32\Tasks\Google Updater and Installer => C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-05] (Google Inc.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core.job => C:\Users\Jabari\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA.job => C:\Users\Jabari\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core.job => C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA.job => C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe

Task: C:\Windows\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

 

==================== Loaded Modules (whitelisted) =============

 

2012-07-07 07:53 - 2012-04-02 19:24 - 00056936 _____ () C:\Windows\system32\PrxerNsp.dll

2011-04-13 17:08 - 2011-04-13 17:08 - 00022016 _____ () C:\Windows\System32\BsTrace.dll

2012-01-07 05:19 - 2013-01-03 14:07 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe

2011-03-20 18:33 - 2013-11-11 12:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2011-04-13 17:08 - 2011-04-13 17:08 - 00022016 _____ () C:\Windows\system32\BsTrace.dll

2014-02-23 18:06 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\sqlite3.dll

2012-02-20 22:26 - 2012-02-20 22:26 - 00160768 _____ () C:\Program Files (x86)\VIPRE\unrar.dll

2014-02-21 21:00 - 2014-02-07 10:24 - 00190752 _____ () C:\Program Files (x86)\VIPRE\Definitions\libBase64.dll

2014-02-21 21:00 - 2014-02-07 10:24 - 00178464 _____ () C:\Program Files (x86)\VIPRE\Definitions\libMachoUniv.dll

2014-02-23 18:06 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll

2014-03-01 00:13 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madExcept_.bpl

2014-03-01 00:13 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madBasic_.bpl

2014-03-01 00:13 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madDisAsm_.bpl

2014-03-01 00:13 - 2013-05-03 13:02 - 06766592 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\WebUI.dll

2014-03-01 00:13 - 2010-11-26 12:18 - 00175616 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll

2014-03-01 00:13 - 2011-06-23 13:41 - 00138752 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll

2014-02-23 18:06 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl

2014-02-23 18:06 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl

2014-02-23 18:06 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl

2013-07-12 22:10 - 2013-07-12 15:48 - 00601552 _____ () C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\libglesv2.dll

2013-07-12 22:10 - 2013-07-12 15:48 - 00123344 _____ () C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\libegl.dll

2013-07-12 22:10 - 2013-07-12 15:48 - 01597392 _____ () C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll

2013-07-12 22:10 - 2013-07-12 15:49 - 13599184 _____ () C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll

2013-07-12 22:10 - 2013-07-12 15:49 - 04052944 _____ () C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll

2013-07-12 22:10 - 2013-07-12 15:49 - 00396240 _____ () C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll

2014-02-19 18:59 - 2013-12-12 19:19 - 00142848 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll

2014-02-19 18:59 - 2013-11-04 22:12 - 00890592 _____ () C:\Program Files (x86)\Steam\libavutil-52.dll

2013-03-25 14:23 - 2014-02-10 23:34 - 00751616 _____ () C:\Program Files (x86)\Steam\SDL2.dll

2012-01-06 04:12 - 2014-02-25 18:57 - 01135296 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL

2012-01-06 04:12 - 2014-01-10 20:33 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll

2012-03-16 05:54 - 2013-06-14 20:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll

2012-03-16 05:54 - 2013-06-14 20:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll

2012-03-16 05:54 - 2013-06-14 20:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

AlternateDataStreams: C:\ProgramData\TEMP:2B19720F

 

==================== Safe Mode (whitelisted) ===================

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\33794635.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBPIMSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\33794635.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SBAMSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SBPIMSvc => ""="Service"

 

==================== Disabled items from MSCONFIG ==============

 

MSCONFIG\Services: AdobeARMservice => 2

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3

MSCONFIG\Services: AdvancedSystemCareService6 => 2

MSCONFIG\Services: AOL ACS => 3

MSCONFIG\Services: Apple Mobile Device => 2

MSCONFIG\Services: Application Updater => 2

MSCONFIG\Services: BBSvc => 2

MSCONFIG\Services: BitGuard => 2

MSCONFIG\Services: BlueSoleilCS => 2

MSCONFIG\Services: Bonjour Service => 2

MSCONFIG\Services: BsHelpCS => 3

MSCONFIG\Services: BsMobileCS => 2

MSCONFIG\Services: CSObjectsSrv => 2

MSCONFIG\Services: DefaultTabSearch => 2

MSCONFIG\Services: DefaultTabUpdate => 2

MSCONFIG\Services: Hamachi2Svc => 2

MSCONFIG\Services: hshld => 2

MSCONFIG\Services: HssSrv => 2

MSCONFIG\Services: HssTrayService => 3

MSCONFIG\Services: HssWd => 2

MSCONFIG\Services: IDriverT => 3

MSCONFIG\Services: IMFservice => 2

MSCONFIG\Services: iPod Service => 3

MSCONFIG\Services: LMIGuardianSvc => 2

MSCONFIG\Services: LMIMaint => 2

MSCONFIG\Services: LogMeIn => 2

MSCONFIG\Services: NVSvc => 2

MSCONFIG\Services: nvUpdatusService => 2

MSCONFIG\Services: RzOvlMon => 2

MSCONFIG\Services: SCBackService => 2

MSCONFIG\Services: ServiceLayer => 3

MSCONFIG\Services: Skype C2C Service => 2

MSCONFIG\Services: SkypeUpdate => 2

MSCONFIG\Services: Steam Client Service => 3

MSCONFIG\Services: Stereo Service => 2

MSCONFIG\Services: TeamViewer8 => 2

MSCONFIG\Services: WCUService_STC_FF => 2

MSCONFIG\Services: WCUService_STC_IE => 2

MSCONFIG\Services: XMouseButton Launcher => 2

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamersFirst LIVE!.lnk => C:\Windows\pss\GamersFirst LIVE!.lnk.CommonStartup

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup

MSCONFIG\startupfolder: C:^Users^Jabari^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^9dfcac215795dbc83191bd3d93f2fe5d.exe => C:\Windows\pss\9dfcac215795dbc83191bd3d93f2fe5d.exe.Startup

MSCONFIG\startupreg: 9dfcac215795dbc83191bd3d93f2fe5d => "C:\Users\Jabari\AppData\Local\Temp\fifa14.exe" ..

MSCONFIG\startupreg: AdobeUpdate => wscript "C:\Users\Jabari\AppData\Roaming\Adobex86\invis.vbs" "C:\Users\Jabari\AppData\Roaming\Adobex86\bat.exe"

MSCONFIG\startupreg: Advanced SystemCare 5 => 

MSCONFIG\startupreg: Advanced SystemCare 6 => "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart

MSCONFIG\startupreg: Aeria Ignite => 

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Jabari\AppData\Local\Akamai\netsession_win.exe"

MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

MSCONFIG\startupreg: avast5 => 

MSCONFIG\startupreg: AVG-Secure-Search-Update_0214c => C:\Users\Jabari\AppData\Roaming\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe /PROMPT /mid=fc9d334b81ff47d0b6cad14acce4e9e6-b0417f0c90085c253b112e7b96738b7e923b1668 /CMPID=0214c

MSCONFIG\startupreg: AVP => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe"

MSCONFIG\startupreg: Avro Keyboard => C:\Program Files (x86)\Avro Keyboard\Avro Keyboard.exe

MSCONFIG\startupreg: BtTray => "C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.exe"

MSCONFIG\startupreg: Clownfish => "C:\Program Files (x86)\Clownfish\Clownfish.exe"

MSCONFIG\startupreg: Comrade.exe => C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe

MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

MSCONFIG\startupreg: Dxtory Update Checker 2.0 => C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe

MSCONFIG\startupreg: EADM => 

MSCONFIG\startupreg: Facebook Update => "C:\Users\Jabari\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

MSCONFIG\startupreg: FLV Player => C:\Users\Jabari\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe

MSCONFIG\startupreg: Google Update => "C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe" /c

MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

MSCONFIG\startupreg: HostManager => C:\Program Files (x86)\Common Files\AOL\1327698619\ee\AOLSoftware.exe

MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

MSCONFIG\startupreg: iFunBoxConnector => 

MSCONFIG\startupreg: IObit Malware Fighter => "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

MSCONFIG\startupreg: LogMeIn GUI => 

MSCONFIG\startupreg: LogMeIn Hamachi Ui => 

MSCONFIG\startupreg: MouseServer => "C:\Program Files (x86)\MouseServer\MouseServer.exe"

MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup

MSCONFIG\startupreg: Razer Nostromo Driver => C:\Program Files (x86)\Razer\Nostromo\RazerNostromoSysTray.exe

MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"

MSCONFIG\startupreg: RemoteHelper => C:\Program Files (x86)\Remote HD\Remote Helper\RemoteHelper.exe

MSCONFIG\startupreg: RIMBBLaunchAgent.exe => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

MSCONFIG\startupreg: SBRegRebootCleaner => "C:\Users\Jabari\AppData\Local\VIPRE\Setup\CartSdk\sbrc.exe"

MSCONFIG\startupreg: SDP => C:\Users\Jabari\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto 

MSCONFIG\startupreg: SearchProtection => "C:\Users\Jabari\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart

MSCONFIG\startupreg: SearchSettings => "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"

MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

MSCONFIG\startupreg: STCAgent => "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"

MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

MSCONFIG\startupreg: uTorrent => "C:\Users\Jabari\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

MSCONFIG\startupreg: WiFiSendServer => "C:\Program Files (x86)\Benzle\WiFiSendServer\WiFiSendServer.exe"

MSCONFIG\startupreg: ZyngaGamesAgent => "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"

 

==================== Faulty Device Manager Devices =============

 

Name: sptd

Description: sptd

Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Manufacturer: 

Service: sptd

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

 

Name: LogMeIn Kernel Information Provider

Description: LogMeIn Kernel Information Provider

Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Manufacturer: 

Service: LMIInfo

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

 

Name: Hamachi Network Interface

Description: Hamachi Network Interface

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: LogMeIn, Inc.

Service: hamachi

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (03/01/2014 01:59:55 PM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.

Invalid Xml syntax.

 

Error: (03/01/2014 01:12:29 PM) (Source: Winlogon) (User: )

Description: Windows license activation failed. Error 0x00000000.

 

Error: (03/01/2014 01:12:29 PM) (Source: Software Protection Platform Service) (User: )

Description: License Activation (slui.exe) failed with the following error code:

0x80070005

 

Error: (03/01/2014 00:55:25 PM) (Source: Winlogon) (User: )

Description: Windows license activation failed. Error 0x00000000.

 

Error: (03/01/2014 00:55:25 PM) (Source: Software Protection Platform Service) (User: )

Description: License Activation (slui.exe) failed with the following error code:

0x80070005

 

Error: (03/01/2014 00:39:29 PM) (Source: Winlogon) (User: )

Description: Windows license activation failed. Error 0x00000000.

 

Error: (03/01/2014 00:39:29 PM) (Source: Software Protection Platform Service) (User: )

Description: License Activation (slui.exe) failed with the following error code:

0x80070005

 

Error: (03/01/2014 00:29:56 PM) (Source: Winlogon) (User: )

Description: Windows license activation failed. Error 0x00000000.

 

Error: (03/01/2014 00:29:56 PM) (Source: Software Protection Platform Service) (User: )

Description: License Activation (slui.exe) failed with the following error code:

0x80070005

 

Error: (03/01/2014 00:23:57 PM) (Source: Winlogon) (User: )

Description: Windows license activation failed. Error 0x00000000.

 

 

System errors:

=============

Error: (03/01/2014 01:10:29 PM) (Source: DCOM) (User: )

Description: {73C9DFA0-750D-11E1-B0C4-0800200C9A66}

 

Error: (03/01/2014 00:57:53 PM) (Source: Service Control Manager) (User: )

Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (03/01/2014 00:57:31 PM) (Source: DCOM) (User: )

Description: {FE7E09CE-BBF4-4698-8BC1-37C9002DAA43}

 

Error: (03/01/2014 00:56:10 PM) (Source: DCOM) (User: )

Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

 

Error: (03/01/2014 00:56:06 PM) (Source: Service Control Manager) (User: )

Description: The Windows Search service failed to start due to the following error: 

%%1053

 

Error: (03/01/2014 00:56:06 PM) (Source: Service Control Manager) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.

 

Error: (03/01/2014 00:54:53 PM) (Source: Service Control Manager) (User: )

Description: The following boot-start or system-start driver(s) failed to load: 

BTHidMgr

sptd

 

Error: (03/01/2014 00:54:43 PM) (Source: Service Control Manager) (User: )

Description: The LogMeIn Kernel Information Provider service failed to start due to the following error: 

%%2

 

Error: (03/01/2014 00:54:41 PM) (Source: Service Control Manager) (User: )

Description: The avast! Antivirus service failed to start due to the following error: 

%%2

 

Error: (03/01/2014 00:54:20 PM) (Source: sptd) (User: )

Description: Driver detected an internal error in its data structures for .

 

 

Microsoft Office Sessions:

=========================

 

==================== Memory info =========================== 

 

Percentage of memory in use: 82%

Total physical RAM: 4095.18 MB

Available physical RAM: 705.89 MB

Total Pagefile: 8188.5 MB

Available Pagefile: 3295.76 MB

Total Virtual: 8192 MB

Available Virtual: 8191.81 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:186.3 GB) (Free:91.03 GB) NTFS ==>[system with boot components (obtained from reading drive)]

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 186 GB) (Disk ID: B2B3B75C)

 

Partition: GPT Partition Type.

 

==================== End Of Log ============================

[cloud2828]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-03-2014

Ran by Jabari (administrator) on JABARI-PC on 01-03-2014 14:51:48

Running from C:\Users\Jabari\Downloads

Windows 7 Ultimate (X64) OS Language: English(US)

Internet Explorer Version 9

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version:

Download link for 64-Bit Version:

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

() C:\Windows\SysWOW64\PnkBstrA.exe

(ThreatTrack Security, Inc.) C:\Program Files (x86)\VIPRE\SBPIMSvc.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

(ThreatTrack Security, Inc.) C:\Program Files (x86)\VIPRE\SBAMSvc.exe

(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(ThreatTrack Security, Inc.) C:\Program Files (x86)\VIPRE\SBAMTray.exe

(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe

(Google Inc.) C:\Users\Jabari\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Jabari\AppData\Local\Google\Chrome\Application\chrome.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Google Inc.) C:\Users\Jabari\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Jabari\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Jabari\AppData\Local\Google\Chrome\Application\chrome.exe

(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe

(Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

(Microsoft Corporation) C:\Windows\system32\taskmgr.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM-x32\...\Run: [] - [X]

HKLM-x32\...\Run: [AvastUI.exe] - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

HKLM-x32\...\Run: [sBAMTray] - C:\Program Files (x86)\VIPRE\SBAMTray.exe [3216272 2013-09-05] (ThreatTrack Security, Inc.)

HKLM-x32\...\Run: [iObit Malware Fighter] - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1486144 2013-05-13] (IObit)

Winlogon\Notify\klogon: %SystemRoot%\System32\klogon.dll [X]

HKU\S-1-5-21-660441659-1580900725-3899382566-1000\...\Run: [PlayNC Launcher] - [X]

HKU\S-1-5-21-660441659-1580900725-3899382566-1000\...\Run: [Google Update] - C:\Users\Jabari\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-01-05] (Google Inc.)

HKU\S-1-5-21-660441659-1580900725-3899382566-1000\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2288928 2014-02-11] (IObit)

HKU\S-1-5-21-660441659-1580900725-3899382566-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)

HKU\S-1-5-21-660441659-1580900725-3899382566-1000\...\Run: [uTorrent] - "C:\Users\Jabari\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

AppInit_DLLs-x32: c:\progra~3\bitguard\271832~1.68\{c16c1~1\bitguard.dll => "c:\progra~3\bitguard\271832~1.68\{c16c1~1\bitguard.dll" File Not Found

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.b1.org/?bsrc=4hixr&chid=c162341

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss_sps&mntrId=E4EE8C89A582901C&affID=44444&tsp=4928

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x88BE981E0C57CD01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Before = http://www.google.tt/

HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?babsrc=HP_ss_sps&mntrId=E4EE8C89A582901C&affID=44444&tsp=4928

URLSearchHook: HKLM-x32 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871}

URLSearchHook: HKCU - (No Name) - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - No File

URLSearchHook: HKCU - (No Name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File

URLSearchHook: HKCU - (No Name) - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - No File

URLSearchHook: HKCU - (No Name) - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - No File

URLSearchHook: HKCU - (No Name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - No File

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

SearchScopes: HKCU - DefaultScope {EF0CB8B8-2752-4DF2-969A-D976932A5530} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=512435&p={searchTerms}

SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKCU - {06E1F30F-F384-492C-BFA6-81E973B6FA39} URL = http://www.mysearchresults.com/search?c=2402&t=15&q={searchTerms}

SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E4EE8C89A582901C&affID=44444&tsp=4928

SearchScopes: HKCU - {2C4060CE-FB88-4df1-BBFC-4BCCF6413939} URL = http://www.google.com/cse?cx=partner-pub-3794288947762788%3A4107735745&ie=UTF-8&q=&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4107735745&q={searchTerms}

SearchScopes: HKCU - {511C8A22-1EA5-4218-B10D-3881B2AF09A2} URL = http://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=PROTOSV

SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2504091

SearchScopes: HKCU - {EF0CB8B8-2752-4DF2-969A-D976932A5530} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=512435&p={searchTerms}

BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)

BHO: No Name - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -  No File

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: No Name - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -  No File

BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: VIPRE Search Guard Helper - {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} - C:\Program Files (x86)\VIPRE\VSG.dll ()

BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)

BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll (Microsoft Corporation.)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)

Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File

Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll (Microsoft Corporation.)

Toolbar: HKLM-x32 - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File

Toolbar: HKLM-x32 - VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSG.dll ()

Toolbar: HKCU - No Name - {BA14329E-9550-4989-B3F2-9732E92D17CC} -  No File

Toolbar: HKCU - No Name - {00000000-0000-0000-0000-000000000000} -  No File

Toolbar: HKCU - No Name - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} -  No File

DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)

Handler: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} -  No File

Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Handler-x32: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\VSG.dll ()

Winsock: Catalog5 10 C:\Windows\SysWOW64\PrxerNsp.dll [56424] ()

Winsock: Catalog9 01 C:\Windows\SysWOW64\WTFastDrv.dll [69360] (Initex)

Winsock: Catalog9 02 C:\Windows\SysWOW64\WTFastDrv.dll [69360] (Initex)

Winsock: Catalog9 03 C:\Windows\SysWOW64\WTFastDrv.dll [69360] (Initex)

Winsock: Catalog9 04 C:\Windows\SysWOW64\WTFastDrv.dll [69360] (Initex)

Winsock: Catalog9 05 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)

Winsock: Catalog9 06 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)

Winsock: Catalog9 07 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)

Winsock: Catalog9 08 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)

Winsock: Catalog9 20 C:\Windows\SysWOW64\WTFastDrv.dll [69360] (Initex)

Winsock: Catalog9 21 C:\Windows\SysWOW64\PrxerDrv.dll [70248] (Initex)

Winsock: Catalog5-x64 10 %SystemRoot%\system32\PrxerNsp.dll [56936] ()

Winsock: Catalog9-x64 01 %SystemRoot%\system32\WTFastDrv.dll [77040] (Initex)

Winsock: Catalog9-x64 02 %SystemRoot%\system32\WTFastDrv.dll [77040] (Initex)

Winsock: Catalog9-x64 03 %SystemRoot%\system32\WTFastDrv.dll [77040] (Initex)

Winsock: Catalog9-x64 04 %SystemRoot%\system32\WTFastDrv.dll [77040] (Initex)

Winsock: Catalog9-x64 05 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)

Winsock: Catalog9-x64 06 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)

Winsock: Catalog9-x64 07 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)

Winsock: Catalog9-x64 08 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)

Winsock: Catalog9-x64 20 %SystemRoot%\system32\WTFastDrv.dll [77040] (Initex)

Winsock: Catalog9-x64 21 %SystemRoot%\system32\PrxerDrv.dll [76392] (Initex)

Tcpip\Parameters: [DhcpNameServer] 200.1.104.35 200.1.104.36

 

FireFox:

========

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)

FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF Plugin-x32: @ogplanet.com/npOGPPlugin - C:\Windows\system32\npOGPPlugin.dll No File

FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()

FF Plugin-x32: @Webzen.com/NPBrowserExt - C:\Program Files (x86)\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Jabari\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF Plugin HKCU: @tightropeinteractive.com/Plugin - C:\Users\Jabari\AppData\Local\TNT2\2.0.0.1534\npTNT2.dll No File

FF Plugin HKCU: @tnt2ghost.com/Plugin - C:\Users\Jabari\AppData\Local\TNT2\2.0.0.1534\npTNT2ghost.dll No File

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Jabari\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Jabari\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Jabari\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File

FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-05-30]

FF HKLM-x32\...\Firefox\Extensions: [{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}

FF HKLM-x32\...\Firefox\Extensions: [{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}

FF HKLM-x32\...\Firefox\Extensions: [{d9284e50-81fc-11da-a72b-0800200c9a66}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66}

FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-05-30]

 

Chrome: 

=======

CHR Plugin: (Remoting Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()

CHR Plugin: (Shockwave Flash) - C:\Users\Jabari\AppData\Local\Google\Chrome\Application\28.0.1500.72\gcswf32.dll No File

CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File

CHR Plugin: (Skype Toolbars) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll No File

CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)

CHR Plugin: (Java Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

CHR Plugin: (npruntime scriptable plugin for beanfun) - C:\Users\Jabari\AppData\Local\Google\Chrome\Application\plugins\npBFPlugin.dll ( )

CHR Plugin: (RIM Handheld Application Loader) - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()

CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File

CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

CHR Plugin: (MetaStream 3 Plugin) - C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll No File

CHR Plugin: (WEBZEN Browser Extension) - C:\Program Files (x86)\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN)

CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)

CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Jabari\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

CHR Plugin: (Google Update) - C:\Users\Jabari\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File

CHR Extension: (Angry Birds) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2012-02-16]

CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd [2014-02-23]

CHR Extension: (YouTube) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-01-05]

CHR Extension: (Google Search) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-01-05]

CHR Extension: (Ratchet & Clank Future 2) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhfomhehcinmhgnlhdpghklkjgppdmn [2012-01-05]

CHR Extension: (Free Smileys & Emoticons) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl [2013-01-19]

CHR Extension: (Select Links App) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndmgamnfinnidgmaiclfjeabdjennhp [2013-07-17]

CHR Extension: (AdBlock) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-12-16]

CHR Extension: (Improved Search) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\hahpjplbmicfkmoccokbjejahjjpnena [2013-02-11]

CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2013-04-17]

CHR Extension: (Nova Raider) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\hepkkenngllopgnkkiajgnhdoncjfohm [2013-06-26]

CHR Extension: (Similar Sites Pro) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\hidjnkeodmholilgafgdlgmgggbhnigl [2012-12-21]

CHR Extension: (Metal Slug 3) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoohaidjoleeifhoeiipjofgjhkmhppk [2012-02-03]

CHR Extension: (Domain Error Assistant) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2013-04-17]

CHR Extension: (Skype Click to Call) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-03-28]

CHR Extension: (Savings-Slider) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2013-04-17]

CHR Extension: (Need for Speed World) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk [2012-10-25]

CHR Extension: (Nyan Cat Lost In Space) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocolcbginmpjiobmipdgimnpeplgbghg [2012-02-14]

CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp [2013-04-17]

CHR Extension: (Gmail) - C:\Users\Jabari\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-01-05]

CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\urladvisor.crx [2012-01-05]

CHR HKLM-x32\...\Chrome\Extension: [fndmgamnfinnidgmaiclfjeabdjennhp] - C:\Program Files (x86)\OApps\chrome-sl.crx [2012-01-05]

CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\virtkbd.crx [2012-01-05]

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]

CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\ab.crx [2013-05-14]

CHR StartMenuInternet: Google Chrome - C:\Users\Jabari\AppData\Local\Google\Chrome\Application\chrome.exe

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

 

==================== Services (Whitelisted) =================

 

R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()

S4 BlueSoleilCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [1006080 2011-04-29] (IVT Corporation)

S4 BsHelpCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsHelpCS.exe [192000 2011-04-13] (IVT Corporation)

S4 BsMobileCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsMobileCS.exe [147563 2011-04-13] (IVT Corporation)

R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)

S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4369656 2012-11-18] (INCA Internet Co., Ltd.)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-20] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-20] (NVIDIA Corporation)

R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-01-03] ()

S4 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32984 2013-07-31] (Razer)

R2 SBAMSvc; C:\Program Files (x86)\VIPRE\SBAMSvc.exe [3937472 2013-09-05] (ThreatTrack Security, Inc.)

R2 SBPIMSvc; C:\Program Files (x86)\VIPRE\SBPIMSvc.exe [176016 2013-09-05] (ThreatTrack Security, Inc.)

S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]

S4 Hamachi2Svc; No ImagePath

S2 HiPatchService; No ImagePath

S4 LMIGuardianSvc; No ImagePath

S4 LMIMaint; No ImagePath

S4 LogMeIn; No ImagePath

S4 WCUService_STC_FF; C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [X]

S4 WCUService_STC_IE; C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [X]

 

==================== Drivers (Whitelisted) ====================

 

S3 1394hub; C:\Windows\System32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-19] (AVAST Software)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-02-19] (AVAST Software)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-02-19] ()

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-19] (AVAST Software)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-19] (AVAST Software)

S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-19] (AVAST Software)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-19] ()

S3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [36360 2009-06-17] (IVT Corporation.)

S3 BlueletAudio; C:\Windows\SysWOW64\DRIVERS\blueletaudio.sys [36360 2009-06-17] (IVT Corporation.)

S3 BlueletSCOAudio; C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys [36872 2009-06-17] (IVT Corporation.)

S3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [20488 2010-08-19] (IVT Corporation.)

S3 BTCOM; C:\Windows\System32\DRIVERS\btcomport.sys [29448 2010-08-27] (IVT Corporation.)

R3 BTCOMBUS; C:\Windows\System32\Drivers\btcombus.sys [25352 2010-08-27] (IVT Corporation.)

S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [42888 2010-06-24] (IVT Corporation.)

R0 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [23944 2010-04-06] (IVT Corporation.)

R3 btnetBUs; C:\Windows\System32\Drivers\btnetBus.sys [30088 2010-04-06] ()

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-05-23] (DT Soft Ltd)

S3 EagleX64; No ImagePath

R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)

S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [41032 2013-05-23] (ThreatTrack Security)

R3 gfiutil; C:\Windows\System32\drivers\gfiutil.sys [31264 2013-09-04] (ThreatTrack Security)

S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-01-05] ()

R3 IvtBtBUs; C:\Windows\System32\Drivers\IvtBtBus.sys [27016 2010-04-06] (IVT Corporation.)

S2 LMIInfo; No ImagePath

S4 LMIRfsClientNP; No ImagePath

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4774 2012-03-06] (INCA Internet Co., Ltd.)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)

R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34336 2013-03-26] (IObit.com)

S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [74752 2011-07-25] (Research In Motion Limited)

R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44032 2011-07-20] (Research in Motion Ltd)

R3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [33464 2013-09-13] (Razer Inc)

R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [128984 2013-07-31] (Razer USA Ltd)

R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39096 2013-09-13] (Razer Inc)

R0 RzFilter; C:\Windows\System32\drivers\RzFilter.sys [74456 2013-07-31] (Razer USA Ltd)

S3 rzjoystk; C:\Windows\System32\DRIVERS\rzjoystk.sys [19968 2011-03-24] (Razer USA Ltd)

S3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27832 2013-09-13] (Razer Inc)

S3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [32952 2013-09-13] (Razer Inc)

S3 RzSynapse; C:\Windows\System32\DRIVERS\RzSynapse.sys [157184 2011-07-14] (Razer USA Ltd)

R3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [30904 2013-09-13] (Razer Inc)

R2 sbapifs; C:\Windows\System32\DRIVERS\sbapifs.sys [88928 2013-06-18] (ThreatTrack Security, Inc.)

R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2010-11-26] ()

S0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-05-23] (Duplex Secure Ltd.)

R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-03-26] (IObit.com)

S3 VHidMinidrv; C:\Windows\System32\drivers\VHIDMini.sys [18824 2010-04-06] (IVT Corporation.)

R3 vwhid; C:\Windows\System32\DRIVERS\vwhid.sys [27296 2013-01-28] (Windows ® Win 7 DDK provider)

S3 X6va006; No ImagePath

S3 X6va008; No ImagePath

S3 X6va011; No ImagePath

S3 X6va012; No ImagePath

S0 BTHidEnum; System32\Drivers\vbtenum.sys [X]

S0 BTHidMgr; System32\Drivers\BTHidMgr.sys [X]

S3 VComm; system32\DRIVERS\VComm.sys [X]

S3 VcommMgr; System32\Drivers\VcommMgr.sys [X]

S3 WinRing0_1_2_0; \??\D:\BGM\Driver\WinRing0x64.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-03-01 14:51 - 2014-03-01 14:52 - 00031705 _____ () C:\Users\Jabari\Downloads\FRST.txt

2014-03-01 14:51 - 2014-03-01 14:51 - 00000000 ____D () C:\FRST

2014-03-01 14:36 - 2014-03-01 14:36 - 02155520 _____ (Farbar) C:\Users\Jabari\Downloads\FRST64.exe

2014-03-01 14:33 - 2014-03-01 14:33 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Malwarebytes

2014-03-01 13:57 - 2014-03-01 13:57 - 00000000 ____D () C:\Windows\LastGood

2014-03-01 13:56 - 2014-03-01 14:25 - 00000000 ____D () C:\Users\Jabari\Desktop\IMPORTANT

2014-03-01 13:28 - 2014-03-01 13:28 - 00000853 _____ () C:\Users\Jabari\Desktop\µTorrent.lnk

2014-03-01 13:28 - 2014-03-01 13:28 - 00000833 _____ () C:\Users\Jabari\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk

2014-03-01 12:39 - 2014-03-01 13:58 - 00000968 _____ () C:\Windows\setupact.log

2014-03-01 12:39 - 2014-03-01 12:39 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\VirtualStore

2014-03-01 12:39 - 2014-03-01 12:39 - 00000000 _____ () C:\Windows\setuperr.log

2014-03-01 12:23 - 2014-03-01 12:29 - 00003748 _____ () C:\Windows\PFRO.log

2014-03-01 12:20 - 2014-03-01 12:20 - 00000739 _____ () C:\Users\Public\Desktop\Freestyle GunZ.lnk

2014-03-01 12:19 - 2014-03-01 12:20 - 00000000 ____D () C:\Users\Dunnoguy\Desktop\Freestyle GunZ

2014-03-01 12:09 - 2014-03-01 12:09 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\CrashDumps

2014-03-01 11:52 - 2014-03-01 12:18 - 00000000 ____D () C:\ProgramData\HitmanPro

2014-03-01 11:52 - 2014-03-01 12:02 - 00000000 ____D () C:\AdwCleaner

2014-03-01 11:52 - 2014-03-01 11:52 - 10820032 _____ (SurfRight B.V.) C:\Users\Dunnoguy\Downloads\HitmanPro_x64.exe

2014-03-01 11:52 - 2014-03-01 11:52 - 01244192 _____ () C:\Users\Dunnoguy\Downloads\adwcleaner.exe

2014-03-01 11:48 - 2014-03-01 11:48 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk

2014-03-01 11:47 - 2014-03-01 11:47 - 04765152 _____ (Piriform Ltd) C:\Users\Dunnoguy\Downloads\ccsetup411.exe

2014-03-01 11:46 - 2014-03-01 11:46 - 00002750 _____ () C:\Users\Dunnoguy\Desktop\RKreport[0]_D_03012014_114620.txt

2014-03-01 11:45 - 2014-03-01 11:45 - 00002655 _____ () C:\Users\Dunnoguy\Desktop\RKreport[0]_S_03012014_114549.txt

2014-03-01 11:39 - 2014-03-01 11:41 - 00002324 _____ () C:\Users\Dunnoguy\Desktop\Rkill.txt

2014-03-01 11:39 - 2014-03-01 11:39 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Dunnoguy\Downloads\rkill.com

2014-03-01 11:35 - 2014-03-01 11:35 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Apple Computer

2014-03-01 01:25 - 2014-03-01 01:25 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\Razer

2014-03-01 00:32 - 2014-03-01 00:32 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\LolClient

2014-03-01 00:19 - 2014-03-01 00:19 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-01 00:19 - 2014-03-01 00:19 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Malwarebytes

2014-03-01 00:19 - 2014-03-01 00:19 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-01 00:19 - 2014-03-01 00:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-03-01 00:19 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-03-01 00:17 - 2014-03-01 00:17 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Dunnoguy\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-01 00:14 - 2014-03-01 00:14 - 00001173 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk

2014-03-01 00:13 - 2014-03-01 00:13 - 19362952 _____ (IObit ) C:\Users\Dunnoguy\Downloads\imfv2-setup-for-review (1).exe

2014-03-01 00:12 - 2014-03-01 00:13 - 19362952 _____ (IObit ) C:\Users\Dunnoguy\Downloads\imfv2-setup-for-review.exe

2014-03-01 00:10 - 2014-03-01 13:12 - 00000500 _____ () C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job

2014-03-01 00:10 - 2014-03-01 04:39 - 00000416 _____ () C:\Windows\Tasks\RegCure Pro.job

2014-03-01 00:10 - 2014-03-01 00:10 - 05162600 _____ (ParetoLogic, Inc.) C:\Users\Dunnoguy\Downloads\Repair-tool.exe

2014-03-01 00:10 - 2014-03-01 00:10 - 00003346 _____ () C:\Windows\System32\Tasks\RegCure Pro

2014-03-01 00:10 - 2014-03-01 00:10 - 00002932 _____ () C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task

2014-02-28 22:57 - 2014-02-28 22:57 - 00001136 _____ () C:\Users\Dunnoguy\Desktop\Activate Splashtop Connect.lnk

2014-02-28 22:57 - 2014-02-28 22:57 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Macromedia

2014-02-28 22:57 - 2014-02-28 22:57 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Adobe

2014-02-28 22:47 - 2014-02-28 22:47 - 00448512 _____ (OldTimer Tools) C:\Users\Dunnoguy\Downloads\TFC.exe

2014-02-28 22:43 - 2014-02-28 22:43 - 01025024 _____ (Farbar) C:\Users\Dunnoguy\Downloads\ListParts64.exe

2014-02-28 22:43 - 2014-02-28 22:43 - 00001863 _____ () C:\Users\Dunnoguy\Downloads\Result.txt

2014-02-28 22:42 - 2014-03-01 11:46 - 00000000 ____D () C:\Users\Dunnoguy\Desktop\RK_Quarantine

2014-02-28 22:41 - 2014-02-28 22:41 - 03819008 _____ () C:\Users\Dunnoguy\Downloads\RogueKiller.exe

2014-02-28 22:38 - 2014-02-28 22:38 - 00688992 ____R (Swearware) C:\Users\Dunnoguy\Downloads\dds.com

2014-02-28 22:33 - 2014-02-28 22:33 - 00991232 _____ () C:\Users\Dunnoguy\Downloads\MicrosoftFixit50267.msi

2014-02-28 22:13 - 2014-02-28 22:13 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\Dunnoguy\Downloads\tdsskiller.exe

2014-02-28 22:09 - 2014-02-28 22:09 - 04745728 _____ (AVAST Software) C:\Users\Dunnoguy\Downloads\aswMBR.exe

2014-02-28 22:09 - 2014-02-28 22:09 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\WinRAR

2014-02-28 22:01 - 2014-02-28 22:01 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Dunnoguy\Downloads\rkill.exe

2014-02-28 21:58 - 2014-02-28 23:09 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\Google

2014-02-28 21:53 - 2014-02-28 21:53 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\NVIDIA Corporation

2014-02-28 21:52 - 2014-03-01 00:30 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\IObit

2014-02-28 21:52 - 2014-02-28 23:43 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\VIPRE

2014-02-28 21:52 - 2014-02-28 21:52 - 00115752 _____ () C:\Users\Dunnoguy\AppData\Local\GDIPFONTCACHEV1.DAT

2014-02-28 21:52 - 2014-02-28 21:52 - 00001443 _____ () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2014-02-28 21:52 - 2014-02-28 21:52 - 00001409 _____ () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk

2014-02-28 21:52 - 2014-02-28 21:52 - 00000884 __RSH () C:\Users\Dunnoguy\ntuser.pol

2014-02-28 21:52 - 2014-02-28 21:52 - 00000020 ___SH () C:\Users\Dunnoguy\ntuser.ini

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ___RD () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ___RD () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\NVIDIA

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ____D () C:\Users\Dunnoguy

2014-02-28 21:52 - 2012-01-19 01:38 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\Microsoft Help

2014-02-28 21:52 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2014-02-28 21:52 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2014-02-28 19:34 - 2014-02-28 19:34 - 00000219 _____ () C:\Users\Jabari\Desktop\Counter-Strike Source.url

2014-02-28 18:25 - 2014-02-28 18:25 - 00001023 _____ () C:\Users\Public\Desktop\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst.lnk

2014-02-23 18:53 - 2014-02-23 19:06 - 00000000 ___SD () C:\32788R22FWJFW

2014-02-23 18:53 - 2014-02-23 18:53 - 00000000 ____D () C:\Windows\erdnt

2014-02-23 18:17 - 2014-02-23 18:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0

2014-02-23 18:12 - 2014-02-23 18:12 - 42315776 _____ () C:\Windows\system32\config\components.iobit

2014-02-23 18:07 - 2014-02-28 21:31 - 00000000 ____D () C:\ProgramData\ProductData

2014-02-23 18:07 - 2014-02-23 18:07 - 00003096 _____ () C:\Windows\System32\Tasks\ASC7_PerformanceMonitor

2014-02-23 18:07 - 2014-02-23 18:07 - 00002888 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator

2014-02-23 18:07 - 2014-02-23 18:07 - 00001228 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk

2014-02-23 18:06 - 2014-02-26 18:32 - 00002205 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk

2014-02-23 18:06 - 2014-02-23 18:06 - 00002852 _____ () C:\Windows\System32\Tasks\ASC7_SkipUac_Jabari

2014-02-23 17:31 - 2014-02-23 17:31 - 00003178 _____ () C:\Windows\System32\Tasks\{219AAB82-3819-40C6-81B8-AE237CD8B4EA}

2014-02-23 17:30 - 2014-02-23 17:30 - 00003166 _____ () C:\Windows\System32\Tasks\{FB731DFA-2205-432B-9E6E-4630EEA95937}

2014-02-23 16:48 - 2014-02-23 16:48 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk

2014-02-23 14:09 - 2013-11-14 08:55 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2014-02-23 14:09 - 2013-11-14 08:55 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00357152 _____ () C:\Windows\system32\NvIFROpenGL.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00314656 _____ () C:\Windows\SysWOW64\NvIFROpenGL.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2014-02-23 14:09 - 2013-11-14 08:55 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2014-02-23 14:09 - 2013-11-14 08:55 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2014-02-21 21:01 - 2013-09-04 13:57 - 00031264 _____ (ThreatTrack Security) C:\Windows\system32\Drivers\gfiutil.sys

2014-02-21 21:01 - 2013-05-23 07:39 - 00041032 _____ (ThreatTrack Security) C:\Windows\system32\Drivers\gfiark.sys

2014-02-21 20:55 - 2014-02-28 21:52 - 00000000 ____D () C:\ProgramData\VIPRE

2014-02-21 20:55 - 2014-02-21 20:55 - 00001882 _____ () C:\Users\Public\Desktop\VIPRE.lnk

2014-02-21 20:55 - 2014-02-21 20:55 - 00000000 ____D () C:\ProgramData\Downloaded Installations

2014-02-21 20:55 - 2013-09-05 21:33 - 00048016 _____ (ThreatTrack Security, Inc.) C:\Windows\system32\sbbd.exe

2014-02-21 15:59 - 2014-02-21 20:23 - 00000408 _____ () C:\Windows\system32\sbrc.dat

2014-02-21 15:58 - 2014-02-21 23:30 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\VIPRE

2014-02-21 15:58 - 2014-02-21 21:01 - 00000000 ____D () C:\Program Files (x86)\VIPRE

2014-02-21 15:58 - 2014-02-21 15:58 - 00000000 ____D () C:\Users\Jabari\AppData\Local\VIPRE

2014-02-20 19:13 - 2008-07-12 10:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll

2014-02-20 19:13 - 2008-07-12 10:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll

2014-02-20 19:13 - 2008-07-12 10:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll

2014-02-20 19:12 - 2014-02-20 19:12 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk

2014-02-20 19:12 - 2014-02-20 19:12 - 00000000 ____D () C:\Riot Games

2014-02-20 19:11 - 2014-03-01 13:54 - 00000000 ____D () C:\Users\Jabari\AppData\Local\PMB Files

2014-02-20 19:11 - 2014-03-01 13:54 - 00000000 ____D () C:\ProgramData\PMB Files

2014-02-20 19:09 - 2014-02-20 19:11 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Riot Games

2014-02-20 17:55 - 2014-02-20 17:55 - 00000000 ____D () C:\Users\Jabari\Documents\Gunz2

2014-02-20 17:37 - 2014-02-20 17:37 - 00000222 _____ () C:\Users\Jabari\Desktop\GunZ 2 The Second Duel.url

2014-02-20 17:13 - 2014-02-20 17:13 - 00000000 ____D () C:\Users\Jabari\AppData\Local\NVIDIA Corporation

2014-02-20 17:12 - 2014-02-20 17:12 - 00000000 ____D () C:\Users\Jabari\AppData\Local\NVIDIA

2014-02-20 17:12 - 2014-01-20 23:54 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2014-02-20 17:12 - 2014-01-20 23:54 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2014-02-20 17:10 - 2014-02-20 17:10 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies

2014-02-20 17:00 - 2013-12-27 15:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2014-02-20 17:00 - 2013-12-27 15:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll

2014-02-20 17:00 - 2013-12-27 15:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2014-02-20 16:59 - 2014-01-15 20:13 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433467.dll

2014-02-20 16:59 - 2014-01-15 20:13 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433467.dll

2014-02-20 16:59 - 2013-11-14 08:55 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2014-02-20 16:59 - 2013-11-14 08:55 - 00023754 _____ () C:\Windows\system32\nvinfo.pb

2014-02-19 20:28 - 2014-02-21 20:51 - 00000000 ____D () C:\ProgramData\AVG2014

2014-02-19 20:28 - 2014-02-21 20:50 - 00000000 ___HD () C:\$AVG

2014-02-19 20:28 - 2014-02-19 20:28 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\AVG2014

2014-02-19 20:24 - 2014-02-22 07:51 - 00000000 ____D () C:\ProgramData\MFAData

2014-02-19 20:24 - 2014-02-21 20:53 - 00000000 ____D () C:\Users\Jabari\AppData\Local\Avg2014

2014-02-19 20:24 - 2014-02-19 20:24 - 00000000 ____D () C:\Users\Jabari\AppData\Local\MFAData

2014-02-19 20:23 - 2014-02-19 20:23 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\myvqrciq.sys

2014-02-19 20:21 - 2014-02-19 20:21 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\xcentkzm.sys

2014-02-19 20:21 - 2014-02-19 20:21 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\osalmbek.sys

2014-02-19 20:17 - 2014-02-19 20:17 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\uaajnava.sys

2014-02-19 20:16 - 2014-02-19 20:16 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\owpsrpac.sys

2014-02-19 20:11 - 2014-02-19 20:11 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update

2014-02-19 20:11 - 2014-02-19 20:11 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk

2014-02-19 20:11 - 2014-02-19 20:10 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

2014-02-19 20:10 - 2014-02-19 20:10 - 00207904 _____ () C:\Windows\system32\Drivers\aswVmm.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys

2014-02-19 20:09 - 2014-02-19 20:09 - 00000000 ____D () C:\ProgramData\AVAST Software

2014-02-19 18:56 - 2014-02-19 18:56 - 00000000 ____D () C:\Program Files (x86)\GUM1C85.tmp

2014-02-19 17:57 - 2014-02-08 15:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll

2014-02-19 17:57 - 2014-02-08 15:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll

2014-02-19 17:57 - 2013-11-14 08:55 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2014-02-19 17:57 - 2013-11-14 08:55 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2014-02-19 17:57 - 2013-11-14 08:55 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2014-02-19 17:57 - 2013-11-14 08:55 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2014-02-19 17:17 - 2014-02-28 20:20 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Adobex86

2014-02-19 17:17 - 2014-02-21 23:30 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Adobe18

 

==================== One Month Modified Files and Folders =======

 

2014-03-01 14:52 - 2014-03-01 14:51 - 00031705 _____ () C:\Users\Jabari\Downloads\FRST.txt

2014-03-01 14:51 - 2014-03-01 14:51 - 00000000 ____D () C:\FRST

2014-03-01 14:41 - 2012-01-05 18:20 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA.job

2014-03-01 14:36 - 2014-03-01 14:36 - 02155520 _____ (Farbar) C:\Users\Jabari\Downloads\FRST64.exe

2014-03-01 14:33 - 2014-03-01 14:33 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Malwarebytes

2014-03-01 14:33 - 2012-12-17 13:12 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-03-01 14:25 - 2014-03-01 13:56 - 00000000 ____D () C:\Users\Jabari\Desktop\IMPORTANT

2014-03-01 14:25 - 2009-07-14 01:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-03-01 14:25 - 2009-07-14 01:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-03-01 14:20 - 2012-01-22 04:10 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA.job

2014-03-01 14:08 - 2012-01-06 04:09 - 00000000 ____D () C:\Program Files (x86)\Steam

2014-03-01 13:58 - 2014-03-01 12:39 - 00000968 _____ () C:\Windows\setupact.log

2014-03-01 13:57 - 2014-03-01 13:57 - 00000000 ____D () C:\Windows\LastGood

2014-03-01 13:54 - 2014-02-20 19:11 - 00000000 ____D () C:\Users\Jabari\AppData\Local\PMB Files

2014-03-01 13:54 - 2014-02-20 19:11 - 00000000 ____D () C:\ProgramData\PMB Files

2014-03-01 13:28 - 2014-03-01 13:28 - 00000853 _____ () C:\Users\Jabari\Desktop\µTorrent.lnk

2014-03-01 13:28 - 2014-03-01 13:28 - 00000833 _____ () C:\Users\Jabari\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk

2014-03-01 13:12 - 2014-03-01 00:10 - 00000500 _____ () C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job

2014-03-01 13:01 - 2009-07-14 02:13 - 00796638 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-03-01 12:59 - 2012-01-05 11:36 - 01299966 _____ () C:\Windows\WindowsUpdate.log

2014-03-01 12:54 - 2012-01-05 18:37 - 00000000 ____D () C:\ProgramData\NVIDIA

2014-03-01 12:54 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-03-01 12:54 - 2009-07-14 01:45 - 00036864 _____ () C:\Windows\system32\umstartup.etl

2014-03-01 12:49 - 2009-07-14 01:45 - 00021504 _____ () C:\Windows\system32\umstartup000.etl

2014-03-01 12:39 - 2014-03-01 12:39 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\VirtualStore

2014-03-01 12:39 - 2014-03-01 12:39 - 00000000 _____ () C:\Windows\setuperr.log

2014-03-01 12:29 - 2014-03-01 12:23 - 00003748 _____ () C:\Windows\PFRO.log

2014-03-01 12:20 - 2014-03-01 12:20 - 00000739 _____ () C:\Users\Public\Desktop\Freestyle GunZ.lnk

2014-03-01 12:20 - 2014-03-01 12:19 - 00000000 ____D () C:\Users\Dunnoguy\Desktop\Freestyle GunZ

2014-03-01 12:18 - 2014-03-01 11:52 - 00000000 ____D () C:\ProgramData\HitmanPro

2014-03-01 12:09 - 2014-03-01 12:09 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\CrashDumps

2014-03-01 12:02 - 2014-03-01 11:52 - 00000000 ____D () C:\AdwCleaner

2014-03-01 11:52 - 2014-03-01 11:52 - 10820032 _____ (SurfRight B.V.) C:\Users\Dunnoguy\Downloads\HitmanPro_x64.exe

2014-03-01 11:52 - 2014-03-01 11:52 - 01244192 _____ () C:\Users\Dunnoguy\Downloads\adwcleaner.exe

2014-03-01 11:48 - 2014-03-01 11:48 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk

2014-03-01 11:48 - 2013-10-25 21:02 - 00002778 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC

2014-03-01 11:48 - 2013-10-25 21:02 - 00000000 ____D () C:\Program Files\CCleaner

2014-03-01 11:47 - 2014-03-01 11:47 - 04765152 _____ (Piriform Ltd) C:\Users\Dunnoguy\Downloads\ccsetup411.exe

2014-03-01 11:46 - 2014-03-01 11:46 - 00002750 _____ () C:\Users\Dunnoguy\Desktop\RKreport[0]_D_03012014_114620.txt

2014-03-01 11:46 - 2014-02-28 22:42 - 00000000 ____D () C:\Users\Dunnoguy\Desktop\RK_Quarantine

2014-03-01 11:45 - 2014-03-01 11:45 - 00002655 _____ () C:\Users\Dunnoguy\Desktop\RKreport[0]_S_03012014_114549.txt

2014-03-01 11:41 - 2014-03-01 11:39 - 00002324 _____ () C:\Users\Dunnoguy\Desktop\Rkill.txt

2014-03-01 11:39 - 2014-03-01 11:39 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Dunnoguy\Downloads\rkill.com

2014-03-01 11:35 - 2014-03-01 11:35 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Apple Computer

2014-03-01 11:04 - 2013-10-08 17:15 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Adobe86x

2014-03-01 11:04 - 2012-01-05 11:41 - 00000000 ____D () C:\Users\Jabari

2014-03-01 04:39 - 2014-03-01 00:10 - 00000416 _____ () C:\Windows\Tasks\RegCure Pro.job

2014-03-01 02:41 - 2012-01-05 18:20 - 00000860 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core.job

2014-03-01 01:25 - 2014-03-01 01:25 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\Razer

2014-03-01 00:32 - 2014-03-01 00:32 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\LolClient

2014-03-01 00:30 - 2014-02-28 21:52 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\IObit

2014-03-01 00:19 - 2014-03-01 00:19 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-01 00:19 - 2014-03-01 00:19 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Malwarebytes

2014-03-01 00:19 - 2014-03-01 00:19 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-01 00:19 - 2014-03-01 00:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-03-01 00:17 - 2014-03-01 00:17 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Dunnoguy\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-01 00:15 - 2013-06-27 18:14 - 00001078 _____ () C:\Users\Public\Desktop\µTorrent.lnk

2014-03-01 00:14 - 2014-03-01 00:14 - 00001173 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk

2014-03-01 00:14 - 2013-10-22 17:33 - 00002318 _____ () C:\Users\Jabari\Desktop\FLV Player.lnk

2014-03-01 00:13 - 2014-03-01 00:13 - 19362952 _____ (IObit ) C:\Users\Dunnoguy\Downloads\imfv2-setup-for-review (1).exe

2014-03-01 00:13 - 2014-03-01 00:12 - 19362952 _____ (IObit ) C:\Users\Dunnoguy\Downloads\imfv2-setup-for-review.exe

2014-03-01 00:10 - 2014-03-01 00:10 - 05162600 _____ (ParetoLogic, Inc.) C:\Users\Dunnoguy\Downloads\Repair-tool.exe

2014-03-01 00:10 - 2014-03-01 00:10 - 00003346 _____ () C:\Windows\System32\Tasks\RegCure Pro

2014-03-01 00:10 - 2014-03-01 00:10 - 00002932 _____ () C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task

2014-02-28 23:43 - 2014-02-28 21:52 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\VIPRE

2014-02-28 23:09 - 2014-02-28 21:58 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\Google

2014-02-28 22:57 - 2014-02-28 22:57 - 00001136 _____ () C:\Users\Dunnoguy\Desktop\Activate Splashtop Connect.lnk

2014-02-28 22:57 - 2014-02-28 22:57 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Macromedia

2014-02-28 22:57 - 2014-02-28 22:57 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\Adobe

2014-02-28 22:53 - 2012-08-24 02:36 - 00000000 ____D () C:\Users\Default\AppData\Roaming\IObit

2014-02-28 22:53 - 2012-08-24 02:36 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\IObit

2014-02-28 22:53 - 2012-01-05 12:15 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{0DFB0CA3-4A2D-46CC-8D4D-31A6E17292E8}

2014-02-28 22:47 - 2014-02-28 22:47 - 00448512 _____ (OldTimer Tools) C:\Users\Dunnoguy\Downloads\TFC.exe

2014-02-28 22:43 - 2014-02-28 22:43 - 01025024 _____ (Farbar) C:\Users\Dunnoguy\Downloads\ListParts64.exe

2014-02-28 22:43 - 2014-02-28 22:43 - 00001863 _____ () C:\Users\Dunnoguy\Downloads\Result.txt

2014-02-28 22:41 - 2014-02-28 22:41 - 03819008 _____ () C:\Users\Dunnoguy\Downloads\RogueKiller.exe

2014-02-28 22:38 - 2014-02-28 22:38 - 00688992 ____R (Swearware) C:\Users\Dunnoguy\Downloads\dds.com

2014-02-28 22:33 - 2014-02-28 22:33 - 00991232 _____ () C:\Users\Dunnoguy\Downloads\MicrosoftFixit50267.msi

2014-02-28 22:13 - 2014-02-28 22:13 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\Dunnoguy\Downloads\tdsskiller.exe

2014-02-28 22:09 - 2014-02-28 22:09 - 04745728 _____ (AVAST Software) C:\Users\Dunnoguy\Downloads\aswMBR.exe

2014-02-28 22:09 - 2014-02-28 22:09 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Roaming\WinRAR

2014-02-28 22:01 - 2014-02-28 22:01 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Dunnoguy\Downloads\rkill.exe

2014-02-28 21:57 - 2012-01-05 18:21 - 00002648 _____ () C:\Users\Jabari\Desktop\Google Chrome.lnk

2014-02-28 21:53 - 2014-02-28 21:53 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\NVIDIA Corporation

2014-02-28 21:52 - 2014-02-28 21:52 - 00115752 _____ () C:\Users\Dunnoguy\AppData\Local\GDIPFONTCACHEV1.DAT

2014-02-28 21:52 - 2014-02-28 21:52 - 00001443 _____ () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2014-02-28 21:52 - 2014-02-28 21:52 - 00001409 _____ () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk

2014-02-28 21:52 - 2014-02-28 21:52 - 00000884 __RSH () C:\Users\Dunnoguy\ntuser.pol

2014-02-28 21:52 - 2014-02-28 21:52 - 00000020 ___SH () C:\Users\Dunnoguy\ntuser.ini

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ___RD () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ___RD () C:\Users\Dunnoguy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ____D () C:\Users\Dunnoguy\AppData\Local\NVIDIA

2014-02-28 21:52 - 2014-02-28 21:52 - 00000000 ____D () C:\Users\Dunnoguy

2014-02-28 21:52 - 2014-02-21 20:55 - 00000000 ____D () C:\ProgramData\VIPRE

2014-02-28 21:31 - 2014-02-23 18:07 - 00000000 ____D () C:\ProgramData\ProductData

2014-02-28 20:20 - 2014-02-19 17:17 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Adobex86

2014-02-28 19:34 - 2014-02-28 19:34 - 00000219 _____ () C:\Users\Jabari\Desktop\Counter-Strike Source.url

2014-02-28 19:34 - 2012-02-04 11:39 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2014-02-28 18:25 - 2014-02-28 18:25 - 00001023 _____ () C:\Users\Public\Desktop\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst.lnk

2014-02-28 18:21 - 2012-10-02 17:23 - 00000000 ____D () C:\Program Files (x86)\osu!

2014-02-28 17:23 - 2012-05-23 14:53 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\DAEMON Tools Lite

2014-02-28 17:20 - 2012-01-22 04:10 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core.job

2014-02-28 12:44 - 2012-07-12 21:54 - 00000000 ____D () C:\Users\Jabari\AppData\Local\CrashDumps

2014-02-26 18:32 - 2014-02-23 18:06 - 00002205 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk

2014-02-23 19:06 - 2014-02-23 18:53 - 00000000 ___SD () C:\32788R22FWJFW

2014-02-23 18:53 - 2014-02-23 18:53 - 00000000 ____D () C:\Windows\erdnt

2014-02-23 18:44 - 2012-01-05 11:32 - 00000000 ____D () C:\Windows\Panther

2014-02-23 18:18 - 2012-03-28 14:51 - 00000000 ___RD () C:\Program Files (x86)\Skype

2014-02-23 18:18 - 2012-03-28 14:51 - 00000000 ____D () C:\ProgramData\Skype

2014-02-23 18:18 - 2012-01-05 17:52 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Skype

2014-02-23 18:17 - 2014-02-23 18:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0

2014-02-23 18:17 - 2012-01-06 09:21 - 00000000 ____D () C:\Windows\Minidump

2014-02-23 18:12 - 2014-02-23 18:12 - 42315776 _____ () C:\Windows\system32\config\components.iobit

2014-02-23 18:07 - 2014-02-23 18:07 - 00003096 _____ () C:\Windows\System32\Tasks\ASC7_PerformanceMonitor

2014-02-23 18:07 - 2014-02-23 18:07 - 00002888 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator

2014-02-23 18:07 - 2014-02-23 18:07 - 00001228 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk

2014-02-23 18:07 - 2012-02-15 17:37 - 00000000 ____D () C:\Program Files (x86)\IObit

2014-02-23 18:06 - 2014-02-23 18:06 - 00002852 _____ () C:\Windows\System32\Tasks\ASC7_SkipUac_Jabari

2014-02-23 18:06 - 2012-02-15 17:38 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\IObit

2014-02-23 18:06 - 2012-02-15 17:37 - 00000000 ____D () C:\ProgramData\IObit

2014-02-23 17:31 - 2014-02-23 17:31 - 00003178 _____ () C:\Windows\System32\Tasks\{219AAB82-3819-40C6-81B8-AE237CD8B4EA}

2014-02-23 17:30 - 2014-02-23 17:30 - 00003166 _____ () C:\Windows\System32\Tasks\{FB731DFA-2205-432B-9E6E-4630EEA95937}

2014-02-23 17:23 - 2012-01-05 18:48 - 00000000 ___HD () C:\Windows\msdownld.tmp

2014-02-23 17:23 - 2012-01-05 18:48 - 00000000 ____D () C:\Windows\SysWOW64\directx

2014-02-23 16:48 - 2014-02-23 16:48 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk

2014-02-23 15:26 - 2013-10-29 18:01 - 00000884 __RSH () C:\Users\Jabari\ntuser.pol

2014-02-23 14:14 - 2012-01-05 18:37 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation

2014-02-22 07:51 - 2014-02-19 20:24 - 00000000 ____D () C:\ProgramData\MFAData

2014-02-21 23:30 - 2014-02-21 15:58 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\VIPRE

2014-02-21 23:30 - 2014-02-19 17:17 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Adobe18

2014-02-21 23:30 - 2012-07-05 07:34 - 00000000 ____D () C:\Windows\pss

2014-02-21 23:30 - 2012-01-05 13:13 - 00000000 ____D () C:\Program Files (x86)\Nero 7.10.1.0

2014-02-21 23:29 - 2011-10-07 05:19 - 00000000 ____D () C:\Users\Jabari\Desktop\New Windows 7 Activator [2010]

2014-02-21 21:01 - 2014-02-21 15:58 - 00000000 ____D () C:\Program Files (x86)\VIPRE

2014-02-21 20:55 - 2014-02-21 20:55 - 00001882 _____ () C:\Users\Public\Desktop\VIPRE.lnk

2014-02-21 20:55 - 2014-02-21 20:55 - 00000000 ____D () C:\ProgramData\Downloaded Installations

2014-02-21 20:53 - 2014-02-19 20:24 - 00000000 ____D () C:\Users\Jabari\AppData\Local\Avg2014

2014-02-21 20:51 - 2014-02-19 20:28 - 00000000 ____D () C:\ProgramData\AVG2014

2014-02-21 20:50 - 2014-02-19 20:28 - 00000000 ___HD () C:\$AVG

2014-02-21 20:23 - 2014-02-21 15:59 - 00000408 _____ () C:\Windows\system32\sbrc.dat

2014-02-21 15:58 - 2014-02-21 15:58 - 00000000 ____D () C:\Users\Jabari\AppData\Local\VIPRE

2014-02-21 14:53 - 2009-07-14 01:45 - 00447904 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-02-21 14:36 - 2012-07-27 01:30 - 00000000 ____D () C:\BrickForce

2014-02-20 19:12 - 2014-02-20 19:12 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk

2014-02-20 19:12 - 2014-02-20 19:12 - 00000000 ____D () C:\Riot Games

2014-02-20 19:11 - 2014-02-20 19:09 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Riot Games

2014-02-20 17:55 - 2014-02-20 17:55 - 00000000 ____D () C:\Users\Jabari\Documents\Gunz2

2014-02-20 17:37 - 2014-02-20 17:37 - 00000222 _____ () C:\Users\Jabari\Desktop\GunZ 2 The Second Duel.url

2014-02-20 17:13 - 2014-02-20 17:13 - 00000000 ____D () C:\Users\Jabari\AppData\Local\NVIDIA Corporation

2014-02-20 17:13 - 2010-01-02 00:32 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

2014-02-20 17:12 - 2014-02-20 17:12 - 00000000 ____D () C:\Users\Jabari\AppData\Local\NVIDIA

2014-02-20 17:12 - 2012-01-05 18:35 - 00000000 ____D () C:\Program Files\NVIDIA Corporation

2014-02-20 17:10 - 2014-02-20 17:10 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies

2014-02-20 04:36 - 2012-01-05 18:20 - 00003888 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000UA

2014-02-20 04:36 - 2012-01-05 18:20 - 00003492 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-660441659-1580900725-3899382566-1000Core

2014-02-19 21:51 - 2013-10-23 18:17 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Adobe64x

2014-02-19 21:05 - 2012-12-13 18:11 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft

2014-02-19 21:05 - 2009-07-14 00:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy

2014-02-19 21:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy

2014-02-19 21:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF

2014-02-19 21:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\registration

2014-02-19 21:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\AppCompat

2014-02-19 20:58 - 2013-11-02 18:46 - 00000000 ____D () C:\Users\Jabari\Documents\PCSX2

2014-02-19 20:28 - 2014-02-19 20:28 - 00000000 ____D () C:\Users\Jabari\AppData\Roaming\AVG2014

2014-02-19 20:24 - 2014-02-19 20:24 - 00000000 ____D () C:\Users\Jabari\AppData\Local\MFAData

2014-02-19 20:23 - 2014-02-19 20:23 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\myvqrciq.sys

2014-02-19 20:21 - 2014-02-19 20:21 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\xcentkzm.sys

2014-02-19 20:21 - 2014-02-19 20:21 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\osalmbek.sys

2014-02-19 20:17 - 2014-02-19 20:17 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\uaajnava.sys

2014-02-19 20:16 - 2014-02-19 20:16 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\owpsrpac.sys

2014-02-19 20:11 - 2014-02-19 20:11 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update

2014-02-19 20:11 - 2014-02-19 20:11 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk

2014-02-19 20:10 - 2014-02-19 20:11 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

2014-02-19 20:10 - 2014-02-19 20:10 - 00207904 _____ () C:\Windows\system32\Drivers\aswVmm.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

2014-02-19 20:10 - 2014-02-19 20:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys

2014-02-19 20:10 - 2012-01-05 13:14 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr

2014-02-19 20:09 - 2014-02-19 20:09 - 00000000 ____D () C:\ProgramData\AVAST Software

2014-02-19 19:59 - 2013-11-02 13:53 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files

2014-02-19 18:56 - 2014-02-19 18:56 - 00000000 ____D () C:\Program Files (x86)\GUM1C85.tmp

2014-02-19 17:42 - 2012-01-05 11:50 - 00115752 _____ () C:\Users\Jabari\AppData\Local\GDIPFONTCACHEV1.DAT

2014-02-08 15:34 - 2014-02-19 17:57 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll

2014-02-08 15:34 - 2014-02-19 17:57 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll

 

Files to move or delete:

====================

C:\Users\Jabari\jagex_cl_runescape_LIVE.dat

C:\Users\Jabari\random.dat

C:\Users\Jabari\AppData\Roaming\Origin\update.vbe

 

 

Some content of TEMP:

====================

C:\Users\Dunnoguy\AppData\Local\Temp\ntdll_dump.dll

C:\Users\Dunnoguy\AppData\Local\Temp\Quarantine.exe

C:\Users\Dunnoguy\AppData\Local\Temp\Update.exe

C:\Users\Dunnoguy\AppData\Local\Temp\{619DC3DD-10C4-4EB3-8CF6-AA8793ABA3D1}.exe

C:\Users\Jabari\AppData\Local\Temp\fifa14.exe

C:\Users\Jabari\AppData\Local\Temp\swt-win32-3349.dll

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

 

 

LastRegBack: 2014-03-01 04:34

 

==================== End Of Log ============================

[kevinf80]

Malwarebytes log shows "no action taken" against all entries, can you re-run and make sure all entries are removed...

Next,

Uninstall/remove all entries related to 10Bit or Advanced System Care, that program has dubious history..

Personally I would not trust installing any software from a company that resorts to stealing someone's technology to sell their product.
Please see the following links and make up your own mind if you want to keep this on your system. If needed I can help you remove it.

IOBit Steals Malwarebytes' Intellectual Property
IOBit's Denial of Theft Unconvincing
IOBit Theft Conclusion
IObit: Trusting Your Antivirus Vendor
Malwarebytes: IObit Stole Our Signatures Database
IObit accused of stealing from Malwarebytes
http://shanegowland.com/opinions/2012/iobit-is-a-sucky-company/

Next,

Upload a File to Virustotal
Go to http://www.virustotal.com/

• Click the Choose file button
• Navigate to the file C:\Windows\system32\Drivers\myvqrciq.sys or just copy/paste it in.
• Click the Scan it tab
• If you get a message saying File has already been analyzed: click Reanalyze file now
• Copy and paste the results back here please.
• Repeat the above steps for the following files

C:\Windows\system32\Drivers\xcentkzm.sys
C:\Windows\system32\Drivers\osalmbek.sys
C:\Windows\system32\Drivers\uaajnava.sys
C:\Windows\system32\Drivers\owpsrpac.sys

[AdvancedSetup]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!