Page 1 of 2 12 LastLast
Results 1 to 10 of 16
  1. #1
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default All Browsers Hijacked Help

    Hi Everyone: last night I foolishly downloaded a flight simulation game which installed a browser hijacker on my computer. I am unable to download any of your help tools from this website because of this issue. I am running Windows 7 with Google Chrome,I E,and Mozilla Firefox for browsers.Thank you...

  2. #2
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello,

    What kind of errors if any are you getting?

    Can you download this:

    Please download Farbar Recovery Scan Tool and save it to your Desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

    • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will produce a log called FRST.txt in the same directory the tool is run from.
    • Please copy and paste log back here.
    • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


    If you can't download Farber Recovery Scan in regular mode.
    Boot the computer to safemode with networking and try it from there.

    To do that:
    Restart the computer, during restart keep tapping the F8 Key, at the windows advanced boot options menu (Black screen with white letters) use the arrow keys and select Safemode with networking then hit enter on the keyboard. Then try to download Farber Recovery Scan Tool.

    If none of this works do a windows system restore and try it then.
    To do a System Restore:
    http://windows.microsoft.com/en-us/w...s-and-settings

    If nothing works we may need another working computer and a usb flash drive.

    Let us know

    Joe
    Last edited by zep516; 12-22-2014 at 03:34 PM.

  3. #3
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default

    Hi Joe:thanks for responding. I don't get any messages just a bunch of different popups informing me of a virus with an 800 number to fix it. I am running Malawarebytes .I will try your suggestions and get back to you...

  4. #4
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Post the Malwarebytes log please too


    • After the restart once you are back at your desktop, open MBAM once more.
    • Click on the Histor tab > Application Logs.
    • Double click on the scan log which shows the Date and time of the scan just performed.
    • Click 'Copy to Clipboard'
    • Paste the contents of the clipboard into your reply.



    Joe

  5. #5
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default

    Hi Joe: no luck. I can't get on the net without getting bombarded with popups. What I do have loaded on my machine is a copy of Hijack This...

  6. #6
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default

    Hi Joe: I got on line and downloaded Farbar recovery tool.
    Last edited by jm47; 12-22-2014 at 08:28 PM.

  7. #7
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default Frst log

    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-12-2014 01
    Ran by Home at 2014-12-22 21:17:21
    Running from C:\Users\Home\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
    Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
    Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
    Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
    Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
    Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
    Brother MFL-Pro Suite MFC-7840W (HKLM-x32\...\{46E1B1F2-A279-4356-9B17-029F9CC72EAE}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
    Consumer Input (remove only) (HKLM-x32\...\Consumer Input Installer) (Version: - Compete Inc.)
    Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
    Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
    D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
    DriverUpdate (HKLM-x32\...\{97C97FAC-9153-409E-A9C8-A19AFABE7547}) (Version: 2.2.38275 - SlimWare Utilities, Inc.)
    Duplicate Email Remover (HKLM-x32\...\{7AA36634-4324-4EF4-8C0C-D8EF1FC2BEA4}) (Version: 2.18.0 - MAPILab Ltd.)
    EzBacktest 1.9.5 (HKLM-x32\...\{7B06F975-4A16-4D58-96C6-F0B912D868BD}_is1) (Version: - S.Segev Software)
    FlaShCoupOn (HKLM-x32\...\{8B114619-78B7-1CFF-55EF-74266954F883}) (Version: - "") <==== ATTENTION
    Flexible Retirement Planner (remove only) (HKLM-x32\...\Flexible Retirement Planner) (Version: - )
    FLVPlayer (HKLM-x32\...\1ClickDownload) (Version: 2.1 Build 26473 - FLVPlayer) <==== ATTENTION
    FreeOCR v4.2 (HKLM-x32\...\freeocr_is1) (Version: - )
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
    Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
    IE New Window Maximizer 2.4 (HKLM-x32\...\IE New Window Maximizer_is1) (Version: - jiiSoft, Jonatan Dahl)
    Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
    LouckyCouuponu (HKLM-x32\...\{BA5D43C9-D633-D0EC-CFEA-2ABA974B333D}) (Version: - "") <==== ATTENTION
    Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
    McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
    Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
    Microsoft IntelliType Pro 8.1 (HKLM\...\Microsoft IntelliType Pro 8.1) (Version: 8.15.406.0 - Microsoft)
    Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
    Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
    Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
    Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
    Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
    Mozilla Thunderbird 24.6.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 en-US)) (Version: 24.6.0 - Mozilla)
    Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.2.0.3 - PC Utilities Software Limited) <==== ATTENTION
    QueenCouppone (HKLM-x32\...\{3DE8A1D7-C77F-E02A-70DD-31D29EC5B988}) (Version: - "") <==== ATTENTION
    QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
    Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
    Sound Blaster X-Fi Go! Pro (HKLM-x32\...\{587B7A6F-CA1F-4639-9083-16F9BB2363B4}) (Version: 1.0 - Creative Technology Limited)
    The Weather Channel App (HKLM-x32\...\{167158CE-1637-4167-8A1C-C2549EEA966A}) (Version: 1.00.0000 - The Weather Channel)
    Unity Web Player (HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\UnityWebPlayer) (Version: 4.6.0f3 - Unity Technologies ApS)
    War Thunder Launcher 1.0.1.467 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
    Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
    World of Warplanes (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813NA}_is1) (Version: - Wargaming.net)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-3245386195-3050435112-2132911706-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Home\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-3245386195-3050435112-2132911706-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Home\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-3245386195-3050435112-2132911706-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Home\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-3245386195-3050435112-2132911706-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Home\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-3245386195-3050435112-2132911706-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Home\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)

    ==================== Restore Points =========================

    14-12-2014 20:43:23 Installed DirectX
    15-12-2014 14:02:17 Windows Update
    18-12-2014 03:00:14 Windows Update
    22-12-2014 12:45:58 Installed Java 7 Update 71

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {4A36B087-03DF-4F4A-85E3-FA513C790F89} - System32\Tasks\DriverUpdate Startup => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [2014-05-14] (SlimWare Utilities, Inc.)
    Task: {55B0E6E1-3CFF-4B18-9B57-3EA73B8EE014} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2011-04-13] (Microsoft Corporation)
    Task: {68C330B7-EBCE-4377-B389-8B0BF6D67739} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-22] (Adobe Systems Incorporated)
    Task: {6C9901D1-2A2F-46F7-81F5-4F75E9CC5E3C} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {8CE1687E-0147-4F6D-AEF2-336FEDC1B959} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-30] (Google Inc.)
    Task: {BF6577D0-2DF9-4F02-ACE3-B25EFC37AD0C} - System32\Tasks\{433B6FC9-DE8B-4375-8665-DF414F67FB53} => pcalua.exe -a C:\Users\Home\Downloads\Setup.exe -d C:\Users\Home\Downloads
    Task: {CA83C467-EE30-4A4F-84CB-E4DF7DA673EA} - System32\Tasks\{97ED01C3-8A41-4B40-B1B8-4971241A3E93} => pcalua.exe -a "C:\Users\Home\Downloads\dxwebsetup (1).exe" -d C:\Users\Home\Downloads
    Task: {D8412B28-D218-4E40-B048-C981C882F0FB} - System32\Tasks\{8FA112EF-4022-4B13-88F3-C995E300BB05} => C:\Games\World_of_Warplanes\WOWpLauncher.exe [2014-10-17] (Wargaming.net)
    Task: {DBAC7871-3A18-4DCB-A9A6-2B2F32758C7D} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro 3.13\OptProLauncher.exe [2014-12-04] (PC Utilities Software Limited) <==== ATTENTION
    Task: {EAE47CB4-453A-40EB-8424-DA8779AF72BB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-30] (Google Inc.)
    Task: {FD24D559-AE55-4370-963D-FDF4C066358F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\DriverUpdate Startup.job => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    ==================== Loaded Modules (whitelisted) =============

    2014-05-29 21:00 - 2009-12-29 15:52 - 00089088 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
    2014-05-29 21:00 - 2010-07-22 15:46 - 00237056 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
    2014-08-27 08:07 - 2014-08-27 08:07 - 00055120 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    2014-08-27 08:07 - 2014-08-27 08:07 - 01164632 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.UI.dll
    2014-08-27 08:07 - 2014-08-27 08:07 - 00259936 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Services.dll
    2014-08-27 08:07 - 2014-08-27 08:07 - 00115552 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Models.dll
    2014-04-05 14:11 - 2005-04-22 12:36 - 00143360 ____N () C:\Windows\system32\BrSNMP64.dll
    2014-04-01 23:01 - 2011-05-26 14:14 - 00685976 _____ () C:\Users\Home\AppData\Roaming\HP SimpleSave Application\HPSSBackupMonitor.exe
    2014-12-13 13:36 - 2014-12-13 13:36 - 03908176 _____ () c:\Program Files (x86)\Optimizer Pro 3.13\OptProMon.dll
    2013-09-04 23:14 - 2013-09-04 23:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
    2010-10-20 14:45 - 2010-10-20 14:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
    2014-05-26 17:15 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
    2014-05-29 21:00 - 2009-12-29 15:50 - 00073728 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
    2014-05-29 21:00 - 2010-07-22 15:45 - 00181760 _____ () C:\Windows\SysWOW64\APOMngr.DLL
    2014-04-01 23:01 - 2010-04-26 14:30 - 00090112 _____ () C:\Users\Home\AppData\Roaming\HP SimpleSave Application\FileMapInfoDB.dll
    2014-04-05 13:19 - 2014-11-26 11:40 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
    2014-12-22 12:44 - 2014-12-22 12:44 - 16843952 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) =============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== MSCONFIG/TASK MANAGER disabled items =========

    (Currently there is no automatic fix for this section.)


    ========================= Accounts: ==========================

    Administrator (S-1-5-21-3245386195-3050435112-2132911706-500 - Administrator - Disabled)
    Guest (S-1-5-21-3245386195-3050435112-2132911706-501 - Limited - Disabled)
    Home (S-1-5-21-3245386195-3050435112-2132911706-1001 - Administrator - Enabled) => C:\Users\Home
    HomeGroupUser$ (S-1-5-21-3245386195-3050435112-2132911706-1003 - Limited - Enabled)

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (12/22/2014 10:40:13 AM) (Source: Application) (EventID: 0) (User: )
    Description: Cannot access a disposed object.
    Object name: 'WebBrowser'.

    Error: (12/21/2014 04:48:25 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:48:25.300]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:48:25 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:48:25.300]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####

    Error: (12/21/2014 04:39:18 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:39:18.953]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:39:18 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:39:18.953]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####

    Error: (12/21/2014 04:37:41 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: CTLCN BrtCTLCN: [2014/12/21 16:37:41.088]: [00003316]: brccMCtl.exe: ErrorMessage.cpp (0241) : -------- error code is [0x00011300].

    Error: (12/21/2014 04:37:40 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:37:40.947]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:37:40 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:37:40.946]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####

    Error: (12/21/2014 04:35:53 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:35:53.115]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:35:53 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWN BrtTWN: [2014/12/21 16:35:53.114]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####


    System errors:
    =============
    Error: (12/22/2014 09:00:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
    Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

    Error: (12/22/2014 08:43:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:43:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:43:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:38:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:38:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:38:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:38:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:36:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068

    Error: (12/22/2014 08:36:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
    Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
    %%1068


    Microsoft Office Sessions:
    =========================
    Error: (12/22/2014 10:40:13 AM) (Source: Application) (EventID: 0) (User: )
    Description: Cannot access a disposed object.
    Object name: 'WebBrowser'.

    Error: (12/21/2014 04:48:25 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:48:25.300]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:48:25 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:48:25.300]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####

    Error: (12/21/2014 04:39:18 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:39:18.953]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:39:18 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:39:18.953]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####

    Error: (12/21/2014 04:37:41 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: CTLCNBrtCTLCN: [2014/12/21 16:37:41.088]: [00003316]: brccMCtl.exe: ErrorMessage.cpp (0241) : -------- error code is [0x00011300].

    Error: (12/21/2014 04:37:40 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:37:40.947]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:37:40 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:37:40.946]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####

    Error: (12/21/2014 04:35:53 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:35:53.115]: [00003316]: Initialize TwdsMain Class failed!

    Error: (12/21/2014 04:35:53 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
    Description: TWNBrtTWN: [2014/12/21 16:35:53.114]: [00003316]: ##### Fatal ERROR!! Create STI-device failed! #####


    ==================== Memory info ===========================

    Processor: Intel(R) Core(TM)2 Quad CPU Q9400 @ 2.66GHz
    Percentage of memory in use: 66%
    Total physical RAM: 4095.12 MB
    Available physical RAM: 1371.63 MB
    Total Pagefile: 8188.41 MB
    Available Pagefile: 5076.27 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.82 MB

    ==================== Drives ================================

    Drive c: () (Fixed) (Total:465.66 GB) (Free:362.37 GB) NTFS
    Drive e: (HP Portable Drive) (Fixed) (Total:698.63 GB) (Free:601.33 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4433821A)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 1 (MBR Code: Windows XP) (Size: 698.6 GB) (Disk ID: 00035265)
    Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================

  8. #8
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-12-2014 01
    Ran by Home (administrator) on HOME-PC on 22-12-2014 21:16:48
    Running from C:\Users\Home\Downloads
    Loaded Profile: Home (Available profiles: Home)
    Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
    (ArcSoft, Inc.) C:\Users\Home\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    (SlimWare Utilities, Inc.) C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    (Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
    (PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro 3.13\OptProReminder.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
    (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
    (Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi Go Pro\Volume Panel\VolPanlu.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe
    () C:\Users\Home\AppData\Roaming\HP SimpleSave Application\HPSSBackupMonitor.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [1860496 2011-04-13] (Microsoft Corporation)
    HKLM\...\Run: [Creative SB Monitoring Utility] => RunDll32 sbavmon.dll,SBAVMonitor
    HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
    HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
    HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi Go Pro\Volume Panel\VolPanlu.exe [241789 2010-02-18] (Creative Technology Ltd)
    HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
    HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\Run: [TWC.Win7] => C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [55120 2014-08-27] ()
    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro 3.13\OptProLauncher.exe [148048 2014-12-04] (PC Utilities Software Limited)
    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\RunOnce: [Adobe Speed Launcher] => 1419299963
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
    ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
    Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP SimpleSave Monitor.lnk
    ShortcutTarget: HP SimpleSave Monitor.lnk -> C:\Users\Home\AppData\Roaming\HP SimpleSave Application\StartHelper.exe ()
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn
    BHO: LouckyCouuponu -> {099dbcd5-4d50-4616-a749-073caa32a8b8} -> C:\ProgramData\LouckyCouuponu\Xtkh2V8auztsex.x64.dll ()
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO: QueenCouppone -> {da3f03b9-d17c-48a8-81ef-cf7f86b9dc4c} -> C:\ProgramData\QueenCouppone\bZYwhAktNWSVnZ.x64.dll ()
    BHO-x32: LouckyCouuponu -> {099dbcd5-4d50-4616-a749-073caa32a8b8} -> C:\ProgramData\LouckyCouuponu\Xtkh2V8auztsex.dll ()
    BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
    BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO-x32: QueenCouppone -> {da3f03b9-d17c-48a8-81ef-cf7f86b9dc4c} -> C:\ProgramData\QueenCouppone\bZYwhAktNWSVnZ.dll ()
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/soft...3/CTPIDPDE.cab
    DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/soft...15/CTSUEng.cab
    DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/soft...0321/CTPID.cab
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 75.75.75.75 75.75.76.76

    FireFox:
    ========
    FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
    FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-3245386195-3050435112-2132911706-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
    FF Extension: QueaEEnoCoupon - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default\Extensions\Ez@k.org [2014-12-22]
    FF Extension: ExTrraoSShopper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default\Extensions\HB@ssR.org [2014-12-22]
    FF Extension: ShoppeRMasteeR - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default\Extensions\Nq@Cz6NDJ.edu [2014-12-22]
    FF HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
    FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

    Chrome:
    =======
    CHR dev: Chrome dev build detected! <======= ATTENTION
    CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Music Maker) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdblcahgpgoandbbidibfjnlfkmpccaf [2014-12-22]
    CHR Extension: (Groolu the Social Coupon Guru) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnecgiinnfijdlbjooeehnjbmdlgihod [2014-12-22]
    CHR Extension: (WebTop Quick login tool) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\phbooabomhiefkllgocicphjpcaijdgi [2014-12-22]
    CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - No Path

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 BackupService; C:\Users\Home\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [83512 2010-07-01] (ArcSoft, Inc.)
    S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-05-29] (Creative Labs) [File not signed]
    S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-05-29] (Creative Labs) [File not signed]
    R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-11] (Creative Technology Ltd) [File not signed]
    R2 eb12ba5e; c:\Program Files (x86)\Optimizer Pro 3.13\OptProMon.dll [3908176 2014-12-13] ()
    R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
    R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13368 2014-05-25] ()
    R3 ksaud; C:\Windows\System32\drivers\ksaud.sys [1587968 2010-08-11] (Creative Technology Ltd.)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
    R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-12-22] (Malwarebytes Corporation)
    R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
    R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2014-05-25] ()
    R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
    S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-22] ()

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-22 21:15 - 2014-12-22 21:16 - 00021591 _____ () C:\Users\Home\Downloads\Addition.txt
    2014-12-22 21:14 - 2014-12-22 21:17 - 00013888 _____ () C:\Users\Home\Downloads\FRST.txt
    2014-12-22 21:13 - 2014-12-22 21:16 - 00000000 ____D () C:\FRST
    2014-12-22 21:06 - 2014-12-22 21:07 - 02122240 _____ (Farbar) C:\Users\Home\Downloads\FRST64.exe
    2014-12-22 14:10 - 2014-12-22 14:10 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(4).exe
    2014-12-22 14:09 - 2014-12-22 14:09 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(3).exe
    2014-12-22 14:08 - 2014-12-22 14:08 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(2).exe
    2014-12-22 14:07 - 2014-12-22 14:07 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(1).exe
    2014-12-22 14:05 - 2014-12-22 14:05 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware.exe
    2014-12-22 13:41 - 2014-12-22 13:41 - 00000000 ____D () C:\ProgramData\LouckyCouuponu
    2014-12-22 13:21 - 2014-12-22 13:21 - 00000000 ____D () C:\ProgramData\FlaShCoupOn
    2014-12-22 12:48 - 2014-12-22 12:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
    2014-12-22 12:48 - 2014-12-22 12:48 - 00000000 ____D () C:\Program Files\McAfee Security Scan
    2014-12-22 12:47 - 2014-12-22 12:47 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
    2014-12-22 12:47 - 2014-12-22 12:47 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
    2014-12-22 12:47 - 2014-12-22 12:47 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
    2014-12-22 12:47 - 2014-12-22 12:47 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
    2014-12-22 12:47 - 2014-12-22 12:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2014-12-22 12:47 - 2014-12-22 12:47 - 00000000 ____D () C:\Program Files (x86)\Java
    2014-12-22 12:44 - 2014-12-22 12:48 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
    2014-12-22 12:44 - 2014-12-22 12:44 - 00000000 ____D () C:\ProgramData\McAfee
    2014-12-22 10:55 - 2014-12-22 10:55 - 00003110 _____ () C:\Windows\System32\Tasks\{433B6FC9-DE8B-4375-8665-DF414F67FB53}
    2014-12-22 08:54 - 2014-12-22 13:41 - 00000000 ____D () C:\ProgramData\b65723593d353dc2
    2014-12-22 08:54 - 2014-12-22 08:54 - 00000000 ____D () C:\ProgramData\QueenCouppone
    2014-12-22 00:46 - 2014-12-22 00:59 - 00000000 ____D () C:\Program Files (x86)\WarThunder
    2014-12-22 00:46 - 2014-12-22 00:46 - 00001105 _____ () C:\Users\Public\Desktop\WarThunder.lnk
    2014-12-22 00:46 - 2014-12-22 00:46 - 00000000 ____D () C:\Users\Home\Documents\My Games
    2014-12-22 00:46 - 2014-12-22 00:46 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
    2014-12-22 00:45 - 2014-12-22 00:45 - 04700448 _____ (Gaijin Entertainment ) C:\Users\Home\Downloads\wt_launcher_1.0.1.467.exe
    2014-12-17 13:18 - 2014-12-13 00:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2014-12-17 13:18 - 2014-12-12 22:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2014-12-15 12:59 - 2014-12-15 12:59 - 00244104 _____ () C:\Users\Home\Downloads\Firefox Setup Stub 34.0.5.exe
    2014-12-14 20:48 - 2014-12-14 20:48 - 00000000 ____D () C:\Users\Home\AppData\Roaming\wargaming.net
    2014-12-14 20:44 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
    2014-12-14 20:44 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
    2014-12-14 20:44 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
    2014-12-14 20:44 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
    2014-12-14 20:44 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
    2014-12-14 20:44 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
    2014-12-14 20:44 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
    2014-12-14 20:44 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
    2014-12-14 20:44 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
    2014-12-14 20:44 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
    2014-12-14 20:44 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
    2014-12-14 20:44 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
    2014-12-14 20:44 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
    2014-12-14 20:44 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
    2014-12-14 20:44 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
    2014-12-14 20:44 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
    2014-12-14 20:44 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
    2014-12-14 20:44 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
    2014-12-14 20:44 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
    2014-12-14 20:44 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
    2014-12-14 20:44 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
    2014-12-14 20:44 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
    2014-12-14 20:44 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
    2014-12-14 20:44 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
    2014-12-14 20:44 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
    2014-12-14 20:44 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
    2014-12-14 20:44 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
    2014-12-14 20:44 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
    2014-12-14 20:44 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
    2014-12-14 20:44 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
    2014-12-14 20:44 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
    2014-12-14 20:44 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
    2014-12-14 20:44 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
    2014-12-14 20:44 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
    2014-12-14 20:44 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
    2014-12-14 20:44 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
    2014-12-14 20:44 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
    2014-12-14 20:44 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
    2014-12-14 20:44 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
    2014-12-14 20:44 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
    2014-12-14 20:44 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
    2014-12-14 20:44 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
    2014-12-14 20:44 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
    2014-12-14 20:44 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
    2014-12-14 20:44 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
    2014-12-14 20:44 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
    2014-12-14 20:44 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
    2014-12-14 20:44 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
    2014-12-14 20:44 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
    2014-12-14 20:44 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
    2014-12-14 20:44 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
    2014-12-14 20:44 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
    2014-12-14 20:44 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
    2014-12-14 20:44 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
    2014-12-14 20:44 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
    2014-12-14 20:44 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
    2014-12-14 20:44 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
    2014-12-14 20:44 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
    2014-12-14 20:44 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
    2014-12-14 20:43 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
    2014-12-14 20:43 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
    2014-12-14 20:43 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
    2014-12-14 20:43 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
    2014-12-14 20:43 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
    2014-12-14 20:43 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
    2014-12-14 20:43 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
    2014-12-14 20:43 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
    2014-12-14 20:43 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
    2014-12-14 20:43 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
    2014-12-14 20:43 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
    2014-12-14 20:43 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
    2014-12-14 20:43 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
    2014-12-14 20:43 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
    2014-12-14 20:43 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
    2014-12-14 20:43 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
    2014-12-14 20:43 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
    2014-12-14 20:43 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
    2014-12-14 20:41 - 2014-12-14 20:41 - 00003132 _____ () C:\Windows\System32\Tasks\{97ED01C3-8A41-4B40-B1B8-4971241A3E93}
    2014-12-14 20:39 - 2014-12-14 20:39 - 00292184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\dxwebsetup (1).exe
    2014-12-14 20:38 - 2014-12-14 20:38 - 00292184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\dxwebsetup.exe
    2014-12-14 20:37 - 2014-12-14 20:37 - 02238600 _____ (Microsoft Corporation) C:\Users\Home\Downloads\DefaultPack.EXE
    2014-12-14 20:27 - 2014-12-14 20:27 - 00002950 _____ () C:\Windows\System32\Tasks\{8FA112EF-4022-4B13-88F3-C995E300BB05}
    2014-12-14 20:02 - 2014-12-22 00:59 - 00000000 ____D () C:\Windows\SysWOW64\directx
    2014-12-14 20:02 - 2014-12-14 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warplanes
    2014-12-14 20:02 - 2014-12-14 20:02 - 00000000 ____D () C:\Games
    2014-12-14 20:01 - 2014-12-14 20:01 - 09463280 _____ (Wargaming.net ) C:\Users\Home\Downloads\WoWP_internet_install_na (1).exe
    2014-12-14 20:00 - 2014-12-14 20:01 - 09463280 _____ (Wargaming.net ) C:\Users\Home\Downloads\WoWP_internet_install_na.exe
    2014-12-13 13:36 - 2014-12-14 01:30 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.13
    2014-12-13 13:36 - 2014-12-13 13:36 - 00003248 _____ () C:\Windows\System32\Tasks\Optimizer Pro Schedule
    2014-12-13 13:36 - 2014-12-13 13:36 - 00000000 ____D () C:\Users\Home\Documents\Optimizer Pro
    2014-12-13 13:36 - 2014-12-13 13:36 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Optimizer Pro
    2014-12-13 13:36 - 2014-12-13 13:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
    2014-12-13 13:35 - 2014-12-13 13:35 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLVPlayer
    2014-12-13 13:35 - 2014-12-13 13:35 - 00000000 ____D () C:\Program Files (x86)\FLVPlayer
    2014-12-13 13:32 - 2014-12-13 13:32 - 00076776 _____ () C:\Users\Home\Downloads\FLVPlayer-Chrome.exe
    2014-12-13 12:13 - 2014-12-13 12:13 - 00000315 _____ () C:\Users\Home\Downloads\DownloadedVcard.vcf
    2014-12-10 22:57 - 2014-10-17 21:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2014-12-10 22:57 - 2014-10-17 20:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2014-12-10 22:57 - 2014-07-06 21:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2014-12-10 22:57 - 2014-07-06 21:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2014-12-10 22:57 - 2014-07-06 21:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2014-12-10 22:57 - 2014-07-06 21:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2014-12-10 22:57 - 2014-07-06 20:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2014-12-10 22:57 - 2014-07-06 20:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2014-12-10 22:57 - 2014-07-06 20:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2014-12-10 22:57 - 2014-07-06 20:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2014-12-10 04:26 - 2014-11-26 20:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2014-12-10 04:26 - 2014-11-26 20:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2014-12-10 04:26 - 2014-11-21 22:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2014-12-10 04:26 - 2014-11-21 22:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2014-12-10 04:26 - 2014-11-21 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2014-12-10 04:26 - 2014-11-21 21:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2014-12-10 04:26 - 2014-11-21 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2014-12-10 04:26 - 2014-11-21 21:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2014-12-10 04:26 - 2014-11-21 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2014-12-10 04:26 - 2014-11-21 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2014-12-10 04:26 - 2014-11-21 21:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2014-12-10 04:26 - 2014-11-21 21:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2014-12-10 04:26 - 2014-11-21 21:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2014-12-10 04:26 - 2014-11-21 21:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2014-12-10 04:26 - 2014-11-21 21:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2014-12-10 04:26 - 2014-11-21 21:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2014-12-10 04:26 - 2014-11-21 21:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2014-12-10 04:26 - 2014-11-21 21:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2014-12-10 04:26 - 2014-11-21 21:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2014-12-10 04:26 - 2014-11-21 21:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2014-12-10 04:26 - 2014-11-21 21:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2014-12-10 04:26 - 2014-11-21 21:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2014-12-10 04:26 - 2014-11-21 21:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2014-12-10 04:26 - 2014-11-21 21:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2014-12-10 04:26 - 2014-11-21 21:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2014-12-10 04:26 - 2014-11-21 21:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2014-12-10 04:26 - 2014-11-21 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2014-12-10 04:26 - 2014-11-21 21:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2014-12-10 04:26 - 2014-11-21 21:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2014-12-10 04:26 - 2014-11-21 20:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2014-12-10 04:26 - 2014-11-21 20:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2014-12-10 04:26 - 2014-11-21 20:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2014-12-10 04:26 - 2014-11-21 20:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2014-12-10 04:26 - 2014-11-21 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2014-12-10 04:26 - 2014-11-21 20:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2014-12-10 04:26 - 2014-11-21 20:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2014-12-10 04:26 - 2014-11-21 20:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2014-12-10 04:26 - 2014-11-21 20:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2014-12-10 04:26 - 2014-11-21 20:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2014-12-10 04:26 - 2014-11-21 20:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2014-12-10 04:26 - 2014-11-21 20:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2014-12-10 04:26 - 2014-11-21 20:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2014-12-10 04:26 - 2014-11-21 20:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2014-12-10 04:26 - 2014-11-21 20:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2014-12-10 04:26 - 2014-11-21 20:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2014-12-10 04:26 - 2014-11-21 20:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2014-12-10 04:26 - 2014-11-21 20:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2014-12-10 04:26 - 2014-11-21 20:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2014-12-10 04:26 - 2014-11-21 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2014-12-10 04:26 - 2014-11-21 20:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2014-12-10 04:26 - 2014-11-21 20:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2014-12-10 04:26 - 2014-11-21 20:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2014-12-10 04:26 - 2014-11-21 19:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2014-12-10 04:26 - 2014-11-21 19:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2014-12-10 04:26 - 2014-11-10 22:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2014-12-10 04:26 - 2014-11-10 21:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2014-12-10 04:26 - 2014-11-10 20:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
    2014-12-10 04:26 - 2014-10-29 21:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
    2014-12-10 04:26 - 2014-10-29 20:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
    2014-12-10 04:26 - 2014-10-02 21:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
    2014-12-10 04:26 - 2014-10-02 21:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
    2014-12-10 04:26 - 2014-10-02 21:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
    2014-12-10 04:26 - 2014-10-02 21:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
    2014-12-10 04:26 - 2014-10-02 21:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
    2014-12-10 04:26 - 2014-10-02 20:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
    2014-12-10 04:26 - 2014-10-02 20:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
    2014-12-10 04:26 - 2014-10-02 20:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
    2014-12-10 04:26 - 2014-10-02 20:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
    2014-12-10 04:26 - 2014-10-02 20:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
    2014-12-10 04:25 - 2014-11-07 22:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2014-12-10 04:25 - 2014-11-07 21:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2014-12-05 15:36 - 2013-07-23 16:05 - 00000000 _____ () C:\Users\Home\Documents\New Text Document.txt
    2014-12-01 13:05 - 2014-12-01 13:05 - 00000000 __SHD () C:\Users\Home\AppData\Local\EmieBrowserModeList
    2014-11-29 20:50 - 2014-11-29 20:50 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Unity
    2014-11-29 20:49 - 2014-11-29 20:49 - 01081992 _____ (Unity Technologies ApS) C:\Users\Home\Downloads\UnityWebPlayer.exe
    2014-11-29 20:49 - 2014-11-29 20:49 - 01081992 _____ (Unity Technologies ApS) C:\Users\Home\Downloads\UnityWebPlayer (1).exe
    2014-11-29 20:49 - 2014-11-29 20:49 - 00000000 ____D () C:\Users\Home\AppData\Local\Unity

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-22 21:12 - 2014-03-29 23:04 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2014-12-22 21:06 - 2009-07-13 23:45 - 00014848 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2014-12-22 21:06 - 2009-07-13 23:45 - 00014848 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2014-12-22 21:03 - 2014-03-29 23:03 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{86A62B8A-D6B7-4EB4-9C94-5ABD82D2D705}
    2014-12-22 21:03 - 2009-07-14 00:13 - 00786538 _____ () C:\Windows\system32\PerfStringBackup.INI
    2014-12-22 21:02 - 2014-03-29 22:56 - 01671938 _____ () C:\Windows\WindowsUpdate.log
    2014-12-22 20:59 - 2014-05-24 12:27 - 00002840 _____ () C:\Windows\System32\Tasks\DriverUpdate Startup
    2014-12-22 20:59 - 2014-05-24 12:27 - 00000416 _____ () C:\Windows\Tasks\DriverUpdate Startup.job
    2014-12-22 20:59 - 2014-05-24 12:26 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
    2014-12-22 20:59 - 2014-03-30 14:01 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2014-12-22 20:59 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2014-12-22 20:59 - 2009-07-13 23:51 - 00024684 _____ () C:\Windows\setupact.log
    2014-12-22 20:15 - 2014-03-29 23:28 - 00036978 _____ () C:\Windows\PFRO.log
    2014-12-22 14:21 - 2014-03-30 12:31 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2014-12-22 13:36 - 2014-03-30 14:01 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2014-12-22 13:08 - 2014-06-11 04:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
    2014-12-22 12:49 - 2014-04-23 12:55 - 00000000 ____D () C:\ProgramData\Oracle
    2014-12-22 12:44 - 2014-03-30 12:31 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2014-12-22 12:44 - 2014-03-30 12:31 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2014-12-22 12:44 - 2014-03-30 12:31 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2014-12-22 12:44 - 2014-03-30 12:11 - 00000000 ____D () C:\Users\Home\AppData\Local\Adobe
    2014-12-22 12:39 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\security
    2014-12-22 11:59 - 2014-03-30 00:43 - 00000000 ____D () C:\Users\Home\Documents\Outlook Files
    2014-12-21 21:44 - 2014-03-29 23:23 - 00000315 _____ () C:\Users\Home\Desktop\UPS Enterprise Portal Log In.url
    2014-12-21 21:44 - 2014-03-29 23:23 - 00000186 _____ () C:\Users\Home\Desktop\Pension.url
    2014-12-18 16:18 - 2014-03-30 12:34 - 00000426 _____ () C:\Windows\BRWMARK.INI
    2014-12-17 12:56 - 2014-09-27 21:42 - 00000058 _____ () C:\Users\Home\AppData\Roaming\ezBackTest recent files.xml
    2014-12-17 12:47 - 2014-09-27 21:42 - 00000129 _____ () C:\Users\Home\AppData\Roaming\ezbacktest.ini
    2014-12-16 16:37 - 2014-05-16 12:09 - 00000177 _____ () C:\ProgramData\LockFilePath.ini
    2014-12-15 13:55 - 2014-04-05 13:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2014-12-15 12:59 - 2014-04-05 13:19 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    2014-12-15 12:59 - 2014-04-05 13:19 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2014-12-15 12:59 - 2014-04-05 13:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2014-12-14 20:44 - 2014-05-26 00:01 - 00009971 _____ () C:\Windows\DirectX.log
    2014-12-12 03:54 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
    2014-12-11 22:38 - 2014-03-30 14:01 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2014-12-10 23:35 - 2014-03-30 12:12 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
    2014-12-10 23:30 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
    2014-12-10 23:03 - 2014-03-29 23:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
    2014-12-10 23:02 - 2014-03-30 00:05 - 00000000 ____D () C:\Windows\system32\MRT
    2014-12-10 22:59 - 2014-03-30 00:05 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2014-12-09 22:35 - 2014-03-29 23:03 - 00000000 ____D () C:\Users\Home\Desktop\Don't Delete
    2014-12-02 15:16 - 2014-03-29 23:04 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2014-12-02 15:16 - 2014-03-29 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2014-12-02 15:16 - 2014-03-29 23:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
    2014-11-24 14:04 - 2014-04-01 13:30 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
    2014-11-23 06:25 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Speech

    Some content of TEMP:
    ====================
    C:\Users\Home\AppData\Local\Temp\freeocr.exe
    C:\Users\Home\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
    C:\Users\Home\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
    C:\Users\Home\AppData\Local\Temp\ochelper.exe
    C:\Users\Home\AppData\Local\Temp\optprosetup.exe
    C:\Users\Home\AppData\Local\Temp\ose00000.exe
    C:\Users\Home\AppData\Local\Temp\_is65E4.exe
    C:\Users\Home\AppData\Local\Temp\_isA0E.exe


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2014-12-15 00:14

    ==================== End Of Log ============================

  9. #9
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default Malaware Log

    Quote Originally Posted by jm47 View Post
    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-12-2014 01
    Ran by Home (administrator) on HOME-PC on 22-12-2014 21:16:48
    Running from C:\Users\Home\Downloads
    Loaded Profile: Home (Available profiles: Home)
    Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
    (ArcSoft, Inc.) C:\Users\Home\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    (SlimWare Utilities, Inc.) C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    (Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
    (Microsoft Corporation) C:\Windows\System32\rundll32.exe
    () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
    (PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro 3.13\OptProReminder.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
    (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
    (Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi Go Pro\Volume Panel\VolPanlu.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe
    () C:\Users\Home\AppData\Roaming\HP SimpleSave Application\HPSSBackupMonitor.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe
    (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [1860496 2011-04-13] (Microsoft Corporation)
    HKLM\...\Run: [Creative SB Monitoring Utility] => RunDll32 sbavmon.dll,SBAVMonitor
    HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
    HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
    HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi Go Pro\Volume Panel\VolPanlu.exe [241789 2010-02-18] (Creative Technology Ltd)
    HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
    HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\Run: [TWC.Win7] => C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [55120 2014-08-27] ()
    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro 3.13\OptProLauncher.exe [148048 2014-12-04] (PC Utilities Software Limited)
    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\RunOnce: [Adobe Speed Launcher] => 1419299963
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
    ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
    Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HP SimpleSave Monitor.lnk
    ShortcutTarget: HP SimpleSave Monitor.lnk -> C:\Users\Home\AppData\Roaming\HP SimpleSave Application\StartHelper.exe ()
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn
    BHO: LouckyCouuponu -> {099dbcd5-4d50-4616-a749-073caa32a8b8} -> C:\ProgramData\LouckyCouuponu\Xtkh2V8auztsex.x64.dll ()
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO: QueenCouppone -> {da3f03b9-d17c-48a8-81ef-cf7f86b9dc4c} -> C:\ProgramData\QueenCouppone\bZYwhAktNWSVnZ.x64.dll ()
    BHO-x32: LouckyCouuponu -> {099dbcd5-4d50-4616-a749-073caa32a8b8} -> C:\ProgramData\LouckyCouuponu\Xtkh2V8auztsex.dll ()
    BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
    BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO-x32: QueenCouppone -> {da3f03b9-d17c-48a8-81ef-cf7f86b9dc4c} -> C:\ProgramData\QueenCouppone\bZYwhAktNWSVnZ.dll ()
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/soft...3/CTPIDPDE.cab
    DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/soft...15/CTSUEng.cab
    DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/soft...0321/CTPID.cab
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 75.75.75.75 75.75.76.76

    FireFox:
    ========
    FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
    FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-3245386195-3050435112-2132911706-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
    FF Extension: QueaEEnoCoupon - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default\Extensions\Ez@k.org [2014-12-22]
    FF Extension: ExTrraoSShopper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default\Extensions\HB@ssR.org [2014-12-22]
    FF Extension: ShoppeRMasteeR - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\5hiig5k2.default\Extensions\Nq@Cz6NDJ.edu [2014-12-22]
    FF HKU\S-1-5-21-3245386195-3050435112-2132911706-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
    FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

    Chrome:
    =======
    CHR dev: Chrome dev build detected! <======= ATTENTION
    CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Music Maker) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdblcahgpgoandbbidibfjnlfkmpccaf [2014-12-22]
    CHR Extension: (Groolu the Social Coupon Guru) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnecgiinnfijdlbjooeehnjbmdlgihod [2014-12-22]
    CHR Extension: (WebTop Quick login tool) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\phbooabomhiefkllgocicphjpcaijdgi [2014-12-22]
    CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - No Path

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 BackupService; C:\Users\Home\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [83512 2010-07-01] (ArcSoft, Inc.)
    S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-05-29] (Creative Labs) [File not signed]
    S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-05-29] (Creative Labs) [File not signed]
    R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-11] (Creative Technology Ltd) [File not signed]
    R2 eb12ba5e; c:\Program Files (x86)\Optimizer Pro 3.13\OptProMon.dll [3908176 2014-12-13] ()
    R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
    R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13368 2014-05-25] ()
    R3 ksaud; C:\Windows\System32\drivers\ksaud.sys [1587968 2010-08-11] (Creative Technology Ltd.)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
    R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-12-22] (Malwarebytes Corporation)
    R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
    R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2014-05-25] ()
    R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
    S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-22] ()

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-22 21:15 - 2014-12-22 21:16 - 00021591 _____ () C:\Users\Home\Downloads\Addition.txt
    2014-12-22 21:14 - 2014-12-22 21:17 - 00013888 _____ () C:\Users\Home\Downloads\FRST.txt
    2014-12-22 21:13 - 2014-12-22 21:16 - 00000000 ____D () C:\FRST
    2014-12-22 21:06 - 2014-12-22 21:07 - 02122240 _____ (Farbar) C:\Users\Home\Downloads\FRST64.exe
    2014-12-22 14:10 - 2014-12-22 14:10 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(4).exe
    2014-12-22 14:09 - 2014-12-22 14:09 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(3).exe
    2014-12-22 14:08 - 2014-12-22 14:08 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(2).exe
    2014-12-22 14:07 - 2014-12-22 14:07 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware(1).exe
    2014-12-22 14:05 - 2014-12-22 14:05 - 20893032 _____ (SUPERAntiSpyware) C:\Users\Home\Downloads\SUPERAntiSpyware.exe
    2014-12-22 13:41 - 2014-12-22 13:41 - 00000000 ____D () C:\ProgramData\LouckyCouuponu
    2014-12-22 13:21 - 2014-12-22 13:21 - 00000000 ____D () C:\ProgramData\FlaShCoupOn
    2014-12-22 12:48 - 2014-12-22 12:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
    2014-12-22 12:48 - 2014-12-22 12:48 - 00000000 ____D () C:\Program Files\McAfee Security Scan
    2014-12-22 12:47 - 2014-12-22 12:47 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
    2014-12-22 12:47 - 2014-12-22 12:47 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
    2014-12-22 12:47 - 2014-12-22 12:47 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
    2014-12-22 12:47 - 2014-12-22 12:47 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
    2014-12-22 12:47 - 2014-12-22 12:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2014-12-22 12:47 - 2014-12-22 12:47 - 00000000 ____D () C:\Program Files (x86)\Java
    2014-12-22 12:44 - 2014-12-22 12:48 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
    2014-12-22 12:44 - 2014-12-22 12:44 - 00000000 ____D () C:\ProgramData\McAfee
    2014-12-22 10:55 - 2014-12-22 10:55 - 00003110 _____ () C:\Windows\System32\Tasks\{433B6FC9-DE8B-4375-8665-DF414F67FB53}
    2014-12-22 08:54 - 2014-12-22 13:41 - 00000000 ____D () C:\ProgramData\b65723593d353dc2
    2014-12-22 08:54 - 2014-12-22 08:54 - 00000000 ____D () C:\ProgramData\QueenCouppone
    2014-12-22 00:46 - 2014-12-22 00:59 - 00000000 ____D () C:\Program Files (x86)\WarThunder
    2014-12-22 00:46 - 2014-12-22 00:46 - 00001105 _____ () C:\Users\Public\Desktop\WarThunder.lnk
    2014-12-22 00:46 - 2014-12-22 00:46 - 00000000 ____D () C:\Users\Home\Documents\My Games
    2014-12-22 00:46 - 2014-12-22 00:46 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
    2014-12-22 00:45 - 2014-12-22 00:45 - 04700448 _____ (Gaijin Entertainment ) C:\Users\Home\Downloads\wt_launcher_1.0.1.467.exe
    2014-12-17 13:18 - 2014-12-13 00:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2014-12-17 13:18 - 2014-12-12 22:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2014-12-15 12:59 - 2014-12-15 12:59 - 00244104 _____ () C:\Users\Home\Downloads\Firefox Setup Stub 34.0.5.exe
    2014-12-14 20:48 - 2014-12-14 20:48 - 00000000 ____D () C:\Users\Home\AppData\Roaming\wargaming.net
    2014-12-14 20:44 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
    2014-12-14 20:44 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
    2014-12-14 20:44 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
    2014-12-14 20:44 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
    2014-12-14 20:44 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
    2014-12-14 20:44 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
    2014-12-14 20:44 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
    2014-12-14 20:44 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
    2014-12-14 20:44 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
    2014-12-14 20:44 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
    2014-12-14 20:44 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
    2014-12-14 20:44 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
    2014-12-14 20:44 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
    2014-12-14 20:44 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
    2014-12-14 20:44 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
    2014-12-14 20:44 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
    2014-12-14 20:44 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
    2014-12-14 20:44 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
    2014-12-14 20:44 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
    2014-12-14 20:44 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
    2014-12-14 20:44 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
    2014-12-14 20:44 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
    2014-12-14 20:44 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
    2014-12-14 20:44 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
    2014-12-14 20:44 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
    2014-12-14 20:44 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
    2014-12-14 20:44 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
    2014-12-14 20:44 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
    2014-12-14 20:44 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
    2014-12-14 20:44 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
    2014-12-14 20:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
    2014-12-14 20:44 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
    2014-12-14 20:44 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
    2014-12-14 20:44 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
    2014-12-14 20:44 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
    2014-12-14 20:44 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
    2014-12-14 20:44 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
    2014-12-14 20:44 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
    2014-12-14 20:44 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
    2014-12-14 20:44 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
    2014-12-14 20:44 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
    2014-12-14 20:44 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
    2014-12-14 20:44 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
    2014-12-14 20:44 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
    2014-12-14 20:44 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
    2014-12-14 20:44 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
    2014-12-14 20:44 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
    2014-12-14 20:44 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
    2014-12-14 20:44 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
    2014-12-14 20:44 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
    2014-12-14 20:44 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
    2014-12-14 20:44 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
    2014-12-14 20:44 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
    2014-12-14 20:44 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
    2014-12-14 20:44 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
    2014-12-14 20:44 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
    2014-12-14 20:44 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
    2014-12-14 20:44 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
    2014-12-14 20:44 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
    2014-12-14 20:44 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
    2014-12-14 20:44 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
    2014-12-14 20:44 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
    2014-12-14 20:44 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
    2014-12-14 20:44 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
    2014-12-14 20:44 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
    2014-12-14 20:44 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
    2014-12-14 20:44 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
    2014-12-14 20:44 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
    2014-12-14 20:44 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
    2014-12-14 20:44 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
    2014-12-14 20:44 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
    2014-12-14 20:44 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
    2014-12-14 20:44 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
    2014-12-14 20:44 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
    2014-12-14 20:44 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
    2014-12-14 20:43 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
    2014-12-14 20:43 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
    2014-12-14 20:43 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
    2014-12-14 20:43 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
    2014-12-14 20:43 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
    2014-12-14 20:43 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
    2014-12-14 20:43 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
    2014-12-14 20:43 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
    2014-12-14 20:43 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
    2014-12-14 20:43 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
    2014-12-14 20:43 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
    2014-12-14 20:43 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
    2014-12-14 20:43 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
    2014-12-14 20:43 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
    2014-12-14 20:43 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
    2014-12-14 20:43 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
    2014-12-14 20:43 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
    2014-12-14 20:43 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
    2014-12-14 20:41 - 2014-12-14 20:41 - 00003132 _____ () C:\Windows\System32\Tasks\{97ED01C3-8A41-4B40-B1B8-4971241A3E93}
    2014-12-14 20:39 - 2014-12-14 20:39 - 00292184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\dxwebsetup (1).exe
    2014-12-14 20:38 - 2014-12-14 20:38 - 00292184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\dxwebsetup.exe
    2014-12-14 20:37 - 2014-12-14 20:37 - 02238600 _____ (Microsoft Corporation) C:\Users\Home\Downloads\DefaultPack.EXE
    2014-12-14 20:27 - 2014-12-14 20:27 - 00002950 _____ () C:\Windows\System32\Tasks\{8FA112EF-4022-4B13-88F3-C995E300BB05}
    2014-12-14 20:02 - 2014-12-22 00:59 - 00000000 ____D () C:\Windows\SysWOW64\directx
    2014-12-14 20:02 - 2014-12-14 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warplanes
    2014-12-14 20:02 - 2014-12-14 20:02 - 00000000 ____D () C:\Games
    2014-12-14 20:01 - 2014-12-14 20:01 - 09463280 _____ (Wargaming.net ) C:\Users\Home\Downloads\WoWP_internet_install_na (1).exe
    2014-12-14 20:00 - 2014-12-14 20:01 - 09463280 _____ (Wargaming.net ) C:\Users\Home\Downloads\WoWP_internet_install_na.exe
    2014-12-13 13:36 - 2014-12-14 01:30 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.13
    2014-12-13 13:36 - 2014-12-13 13:36 - 00003248 _____ () C:\Windows\System32\Tasks\Optimizer Pro Schedule
    2014-12-13 13:36 - 2014-12-13 13:36 - 00000000 ____D () C:\Users\Home\Documents\Optimizer Pro
    2014-12-13 13:36 - 2014-12-13 13:36 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Optimizer Pro
    2014-12-13 13:36 - 2014-12-13 13:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
    2014-12-13 13:35 - 2014-12-13 13:35 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLVPlayer
    2014-12-13 13:35 - 2014-12-13 13:35 - 00000000 ____D () C:\Program Files (x86)\FLVPlayer
    2014-12-13 13:32 - 2014-12-13 13:32 - 00076776 _____ () C:\Users\Home\Downloads\FLVPlayer-Chrome.exe
    2014-12-13 12:13 - 2014-12-13 12:13 - 00000315 _____ () C:\Users\Home\Downloads\DownloadedVcard.vcf
    2014-12-10 22:57 - 2014-10-17 21:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2014-12-10 22:57 - 2014-10-17 20:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2014-12-10 22:57 - 2014-07-06 21:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2014-12-10 22:57 - 2014-07-06 21:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2014-12-10 22:57 - 2014-07-06 21:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2014-12-10 22:57 - 2014-07-06 21:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2014-12-10 22:57 - 2014-07-06 20:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2014-12-10 22:57 - 2014-07-06 20:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2014-12-10 22:57 - 2014-07-06 20:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2014-12-10 22:57 - 2014-07-06 20:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2014-12-10 04:26 - 2014-11-26 20:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2014-12-10 04:26 - 2014-11-26 20:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2014-12-10 04:26 - 2014-11-21 22:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2014-12-10 04:26 - 2014-11-21 22:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2014-12-10 04:26 - 2014-11-21 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2014-12-10 04:26 - 2014-11-21 21:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2014-12-10 04:26 - 2014-11-21 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2014-12-10 04:26 - 2014-11-21 21:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2014-12-10 04:26 - 2014-11-21 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2014-12-10 04:26 - 2014-11-21 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2014-12-10 04:26 - 2014-11-21 21:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2014-12-10 04:26 - 2014-11-21 21:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2014-12-10 04:26 - 2014-11-21 21:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2014-12-10 04:26 - 2014-11-21 21:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2014-12-10 04:26 - 2014-11-21 21:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2014-12-10 04:26 - 2014-11-21 21:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2014-12-10 04:26 - 2014-11-21 21:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2014-12-10 04:26 - 2014-11-21 21:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2014-12-10 04:26 - 2014-11-21 21:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2014-12-10 04:26 - 2014-11-21 21:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2014-12-10 04:26 - 2014-11-21 21:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2014-12-10 04:26 - 2014-11-21 21:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2014-12-10 04:26 - 2014-11-21 21:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2014-12-10 04:26 - 2014-11-21 21:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2014-12-10 04:26 - 2014-11-21 21:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2014-12-10 04:26 - 2014-11-21 21:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2014-12-10 04:26 - 2014-11-21 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2014-12-10 04:26 - 2014-11-21 21:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2014-12-10 04:26 - 2014-11-21 21:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2014-12-10 04:26 - 2014-11-21 20:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2014-12-10 04:26 - 2014-11-21 20:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2014-12-10 04:26 - 2014-11-21 20:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2014-12-10 04:26 - 2014-11-21 20:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2014-12-10 04:26 - 2014-11-21 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2014-12-10 04:26 - 2014-11-21 20:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2014-12-10 04:26 - 2014-11-21 20:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2014-12-10 04:26 - 2014-11-21 20:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2014-12-10 04:26 - 2014-11-21 20:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2014-12-10 04:26 - 2014-11-21 20:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2014-12-10 04:26 - 2014-11-21 20:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2014-12-10 04:26 - 2014-11-21 20:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2014-12-10 04:26 - 2014-11-21 20:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2014-12-10 04:26 - 2014-11-21 20:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2014-12-10 04:26 - 2014-11-21 20:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2014-12-10 04:26 - 2014-11-21 20:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2014-12-10 04:26 - 2014-11-21 20:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2014-12-10 04:26 - 2014-11-21 20:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2014-12-10 04:26 - 2014-11-21 20:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2014-12-10 04:26 - 2014-11-21 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2014-12-10 04:26 - 2014-11-21 20:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2014-12-10 04:26 - 2014-11-21 20:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2014-12-10 04:26 - 2014-11-21 20:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2014-12-10 04:26 - 2014-11-21 19:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2014-12-10 04:26 - 2014-11-21 19:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2014-12-10 04:26 - 2014-11-10 22:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2014-12-10 04:26 - 2014-11-10 21:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2014-12-10 04:26 - 2014-11-10 20:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
    2014-12-10 04:26 - 2014-10-29 21:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
    2014-12-10 04:26 - 2014-10-29 20:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
    2014-12-10 04:26 - 2014-10-02 21:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
    2014-12-10 04:26 - 2014-10-02 21:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
    2014-12-10 04:26 - 2014-10-02 21:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
    2014-12-10 04:26 - 2014-10-02 21:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
    2014-12-10 04:26 - 2014-10-02 21:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
    2014-12-10 04:26 - 2014-10-02 20:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
    2014-12-10 04:26 - 2014-10-02 20:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
    2014-12-10 04:26 - 2014-10-02 20:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
    2014-12-10 04:26 - 2014-10-02 20:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
    2014-12-10 04:26 - 2014-10-02 20:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
    2014-12-10 04:25 - 2014-11-07 22:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2014-12-10 04:25 - 2014-11-07 21:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2014-12-05 15:36 - 2013-07-23 16:05 - 00000000 _____ () C:\Users\Home\Documents\New Text Document.txt
    2014-12-01 13:05 - 2014-12-01 13:05 - 00000000 __SHD () C:\Users\Home\AppData\Local\EmieBrowserModeList
    2014-11-29 20:50 - 2014-11-29 20:50 - 00000000 ____D () C:\Users\Home\AppData\Roaming\Unity
    2014-11-29 20:49 - 2014-11-29 20:49 - 01081992 _____ (Unity Technologies ApS) C:\Users\Home\Downloads\UnityWebPlayer.exe
    2014-11-29 20:49 - 2014-11-29 20:49 - 01081992 _____ (Unity Technologies ApS) C:\Users\Home\Downloads\UnityWebPlayer (1).exe
    2014-11-29 20:49 - 2014-11-29 20:49 - 00000000 ____D () C:\Users\Home\AppData\Local\Unity

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-22 21:12 - 2014-03-29 23:04 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2014-12-22 21:06 - 2009-07-13 23:45 - 00014848 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2014-12-22 21:06 - 2009-07-13 23:45 - 00014848 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2014-12-22 21:03 - 2014-03-29 23:03 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{86A62B8A-D6B7-4EB4-9C94-5ABD82D2D705}
    2014-12-22 21:03 - 2009-07-14 00:13 - 00786538 _____ () C:\Windows\system32\PerfStringBackup.INI
    2014-12-22 21:02 - 2014-03-29 22:56 - 01671938 _____ () C:\Windows\WindowsUpdate.log
    2014-12-22 20:59 - 2014-05-24 12:27 - 00002840 _____ () C:\Windows\System32\Tasks\DriverUpdate Startup
    2014-12-22 20:59 - 2014-05-24 12:27 - 00000416 _____ () C:\Windows\Tasks\DriverUpdate Startup.job
    2014-12-22 20:59 - 2014-05-24 12:26 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
    2014-12-22 20:59 - 2014-03-30 14:01 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2014-12-22 20:59 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2014-12-22 20:59 - 2009-07-13 23:51 - 00024684 _____ () C:\Windows\setupact.log
    2014-12-22 20:15 - 2014-03-29 23:28 - 00036978 _____ () C:\Windows\PFRO.log
    2014-12-22 14:21 - 2014-03-30 12:31 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2014-12-22 13:36 - 2014-03-30 14:01 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2014-12-22 13:08 - 2014-06-11 04:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
    2014-12-22 12:49 - 2014-04-23 12:55 - 00000000 ____D () C:\ProgramData\Oracle
    2014-12-22 12:44 - 2014-03-30 12:31 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2014-12-22 12:44 - 2014-03-30 12:31 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2014-12-22 12:44 - 2014-03-30 12:31 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2014-12-22 12:44 - 2014-03-30 12:11 - 00000000 ____D () C:\Users\Home\AppData\Local\Adobe
    2014-12-22 12:39 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\security
    2014-12-22 11:59 - 2014-03-30 00:43 - 00000000 ____D () C:\Users\Home\Documents\Outlook Files
    2014-12-21 21:44 - 2014-03-29 23:23 - 00000315 _____ () C:\Users\Home\Desktop\UPS Enterprise Portal Log In.url
    2014-12-21 21:44 - 2014-03-29 23:23 - 00000186 _____ () C:\Users\Home\Desktop\Pension.url
    2014-12-18 16:18 - 2014-03-30 12:34 - 00000426 _____ () C:\Windows\BRWMARK.INI
    2014-12-17 12:56 - 2014-09-27 21:42 - 00000058 _____ () C:\Users\Home\AppData\Roaming\ezBackTest recent files.xml
    2014-12-17 12:47 - 2014-09-27 21:42 - 00000129 _____ () C:\Users\Home\AppData\Roaming\ezbacktest.ini
    2014-12-16 16:37 - 2014-05-16 12:09 - 00000177 _____ () C:\ProgramData\LockFilePath.ini
    2014-12-15 13:55 - 2014-04-05 13:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2014-12-15 12:59 - 2014-04-05 13:19 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    2014-12-15 12:59 - 2014-04-05 13:19 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2014-12-15 12:59 - 2014-04-05 13:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2014-12-14 20:44 - 2014-05-26 00:01 - 00009971 _____ () C:\Windows\DirectX.log
    2014-12-12 03:54 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
    2014-12-11 22:38 - 2014-03-30 14:01 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2014-12-10 23:35 - 2014-03-30 12:12 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
    2014-12-10 23:30 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
    2014-12-10 23:03 - 2014-03-29 23:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
    2014-12-10 23:02 - 2014-03-30 00:05 - 00000000 ____D () C:\Windows\system32\MRT
    2014-12-10 22:59 - 2014-03-30 00:05 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2014-12-09 22:35 - 2014-03-29 23:03 - 00000000 ____D () C:\Users\Home\Desktop\Don't Delete
    2014-12-02 15:16 - 2014-03-29 23:04 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2014-12-02 15:16 - 2014-03-29 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2014-12-02 15:16 - 2014-03-29 23:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
    2014-11-24 14:04 - 2014-04-01 13:30 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
    2014-11-23 06:25 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Speech

    Some content of TEMP:
    ====================
    C:\Users\Home\AppData\Local\Temp\freeocr.exe
    C:\Users\Home\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
    C:\Users\Home\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
    C:\Users\Home\AppData\Local\Temp\ochelper.exe
    C:\Users\Home\AppData\Local\Temp\optprosetup.exe
    C:\Users\Home\AppData\Local\Temp\ose00000.exe
    C:\Users\Home\AppData\Local\Temp\_is65E4.exe
    C:\Users\Home\AppData\Local\Temp\_isA0E.exe


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2014-12-15 00:14

    ==================== End Of Log ============================

  10. #10
    Member
    Join Date
    Nov 2008
    Posts
    34
    Points
    0

    Default malaware Log

    Malwarebytes Anti-Malware
    Malwarebytes | Free Anti-Malware & Internet Security Software


    Detection, 12/22/2014 12:50:41 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 64013, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:51:08 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 64013, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:51:09 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 64013, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:51:09 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 64013, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:51:09 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 64013, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:51:09 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 64013, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:32 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 54993, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:32 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 54993, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:41 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 54993, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:46 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 54993, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:48 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 54993, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:50 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.145.244, 54993, Inbound, C:\Windows\System32\svchost.exe,
    Detection, 12/22/2014 12:55:51 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.39.142, 27032, Outbound, C:\Program Files (x86)\WarThunder\launcher.exe,
    Detection, 12/22/2014 12:55:51 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 218.9.39.142, 27032, Outbound, C:\Program Files (x86)\WarThunder\launcher.exe,
    Update, 12/22/2014 1:21:47 AM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.1, 2014.12.22.2,
    Protection, 12/22/2014 1:21:47 AM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 1:21:47 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 1:21:47 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 1:22:08 AM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 1:22:08 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 1:22:09 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Update, 12/22/2014 2:06:14 AM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.2, 2014.12.22.3,
    Protection, 12/22/2014 2:06:14 AM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 2:06:14 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 2:06:14 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 2:06:22 AM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 2:06:22 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 2:06:23 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Scan, 12/22/2014 2:21:28 AM, SYSTEM, HOME-PC, Manual, Start:12/22/2014 2:11:27 AM, Duration:9 min 13 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections,
    Scan, 12/22/2014 2:38:22 AM, SYSTEM, HOME-PC, Manual, Start:12/22/2014 2:29:08 AM, Duration:8 min 27 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections,
    Detection, 12/22/2014 9:27:44 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 54.68.99.67, fastvideoupgrader.com, 65198, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
    Detection, 12/22/2014 9:27:45 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 54.68.99.67, fastvideoupgrader.com, 65198, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
    Detection, 12/22/2014 9:27:45 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, IP, 54.68.99.67, fastvideoupgrader.com, 65199, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
    Update, 12/22/2014 10:24:58 AM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.3, 2014.12.22.4,
    Protection, 12/22/2014 10:24:58 AM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 10:24:58 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 10:24:59 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 10:25:17 AM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 10:25:17 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 10:25:18 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Detection, 12/22/2014 10:37:43 AM, Home, HOME-PC, Protection, Malware Protection, File, PUP.Optional.SoftPulse, C:\Users\Home\Downloads\Setup.exe, Quarantine, [7f5da1c4314bf83e60eb36c27889aa56]
    Protection, 12/22/2014 10:45:32 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 10:45:32 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 10:45:32 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 10:45:46 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Detection, 12/22/2014 10:54:44 AM, Home, HOME-PC, Protection, Malware Protection, File, PUP.Optional.SoftPulse, C:\Users\Home\Downloads\Setup (1).exe, Quarantine, [ac30204588f457dfd873f2067d84ec14]
    Detection, 12/22/2014 10:55:18 AM, SYSTEM, HOME-PC, Protection, Malware Protection, File, PUP.Optional.SoftPulse, C:\Users\Home\Downloads\Setup.exe, Quarantine Failed, 5, Access is denied. , [03d9075eb2caa98daaa1de1a9c65867a]
    Detection, 12/22/2014 10:55:28 AM, SYSTEM, HOME-PC, Protection, Malware Protection, File, PUP.Optional.SoftPulse, C:\Users\Home\Downloads\Setup.exe, Quarantine, [03d9075eb2caa98daaa1de1a9c65867a]
    Protection, 12/22/2014 10:56:50 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Stopping,
    Protection, 12/22/2014 10:56:50 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Stopped,
    Protection, 12/22/2014 10:58:36 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 10:58:36 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 11:02:55 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 11:02:55 AM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 11:02:55 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 11:03:00 AM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Scan, 12/22/2014 11:40:56 AM, SYSTEM, HOME-PC, Manual, Start:12/22/2014 11:27:14 AM, Duration:12 min 35 sec, Threat Scan, Completed, 0 Malware Detections, 4 Non-Malware Detections,
    Update, 12/22/2014 12:20:03 PM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.4, 2014.12.22.5,
    Protection, 12/22/2014 12:20:03 PM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 12:20:03 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 12:20:04 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 12:20:22 PM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 12:20:22 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 12:20:23 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Protection, 12/22/2014 12:40:20 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 12:40:20 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 12:40:21 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 12:40:27 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Scan, 12/22/2014 12:46:26 PM, SYSTEM, HOME-PC, Manual, Start:12/22/2014 12:45:12 PM, Duration:0 min 21 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections,
    Detection, 12/22/2014 1:21:08 PM, SYSTEM, HOME-PC, Protection, Malware Protection, File, PUP.Optional.FlashCoupon.A, C:\ProgramData\FlaShCoupOn\xfTmG0qMhWOx3f.dll, Quarantine, [a63751140973d4622d19b591a3600bf5]
    Detection, 12/22/2014 1:21:14 PM, SYSTEM, HOME-PC, Protection, Malware Protection, File, PUP.Optional.FlashCoupon.A, C:\ProgramData\FlaShCoupOn\xfTmG0qMhWOx3f.x64.dll, Quarantine, [f6e7fc69de9ec96d60e680c60af957a9]
    Update, 12/22/2014 1:24:44 PM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.5, 2014.12.22.7,
    Protection, 12/22/2014 1:24:45 PM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 1:24:45 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 1:24:45 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 1:24:50 PM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 1:24:50 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 1:24:51 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Protection, 12/22/2014 8:15:55 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 8:15:55 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 8:15:55 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 8:16:04 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Update, 12/22/2014 8:16:39 PM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.7, 2014.12.22.11,
    Protection, 12/22/2014 8:16:39 PM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 8:16:39 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 8:16:39 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 8:16:44 PM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 8:16:44 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 8:16:45 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Protection, 12/22/2014 8:21:33 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 8:21:33 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 8:21:33 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 8:21:39 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Protection, 12/22/2014 8:59:29 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Starting,
    Protection, 12/22/2014 8:59:30 PM, SYSTEM, HOME-PC, Protection, Malware Protection, Started,
    Protection, 12/22/2014 8:59:30 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 8:59:35 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,
    Update, 12/22/2014 9:12:42 PM, SYSTEM, HOME-PC, Scheduler, Malware Database, 2014.12.22.11, 2014.12.23.1,
    Protection, 12/22/2014 9:12:43 PM, SYSTEM, HOME-PC, Protection, Refresh, Starting,
    Protection, 12/22/2014 9:12:43 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopping,
    Protection, 12/22/2014 9:12:43 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Stopped,
    Protection, 12/22/2014 9:12:52 PM, SYSTEM, HOME-PC, Protection, Refresh, Success,
    Protection, 12/22/2014 9:12:52 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Starting,
    Protection, 12/22/2014 9:12:52 PM, SYSTEM, HOME-PC, Protection, Malicious Website Protection, Started,

    (end)

Page 1 of 2 12 LastLast