Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

" Futurro Antivirus "pop up malware won't let me do anything

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

" Futurro Antivirus "pop up malware won't let me do anything

Unread postby TiredTrooper » December 3rd, 2013, 6:49 pm

I was using AVG free with no problems. I got Mcafee and installed it and removed AVG. Over the period of a week, firewall began to shut off randomly. I uninstalled Mcafee and as soon as i did a pop up appeared on start up. It looks like a virus scanner program named " Futurro Antivirus Software ". When it's open or on screen nothing works. If you close it I can't get any internet programs , ie Chrome or IE to open. Task manager also fails to start. At the moment all I can do is open my computer in safe mode with networking to be able to access your site. I hope you can help.

DDS

DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2
Run by Angus at 22:33:25 on 2013-12-03
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.8159.6929 [GMT 0:00]
.
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Users\Angus\Downloads\Windows-KB890830-x64-V5.6 (1).exe
i:\8010aaac7a5634cd52\mrtstub.exe
C:\Windows\system32\MRT.exe
C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxps://www.google.co.uk/
uURLSearchHooks: SearchHook Class: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
mWinlogon: Userinit = userinit.exe
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll
BHO: McAfee SafeKey Vault: {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll
TB: McAfee SafeKey: {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [EPSON Stylus Photo 1400 Series] C:\Windows\System32\spool\DRIVERS\x64\3\E_FATIBUE.EXE /FU "C:\Windows\TEMP\E_S32EE.tmp" /EF "HKCU"
uRun: [Google Update] "C:\Users\Angus\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [Spotify Web Helper] "C:\Users\Angus\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [SkyDrive] "C:\Users\Angus\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [DisplayFusion] "C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe"
uRun: [{950CBC59-CC18-378C-4285-933701429031}] C:\Users\Angus\AppData\Roaming\Xao\aremok.exe
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [{188316FD-A962-1966-937A-202F531D3714}] C:\Users\Angus\AppData\Roaming\Edpyuq\goucneo.exe
uRun: [AVSoft] C:\ProgramData\TGFBRPALCBNG.exe\TGFBRPALCBNG.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
mRun: [Name of App] C:\Program Files (x86)\TSST Korea\FW LiveUpdate\FWManager.exe r
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [Jomantha] C:\Program Files (x86)\n52te\razerhid.exe
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mExplorerRun: [21551] c:\progra~3\msubzveeo.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\DL-10.lnk - C:\Program Files (x86)\DC Software 2\DL10XP.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\INSTAL~2.LNK - C:\Program Files (x86)\Common Files\lpuninstall.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\INSTAL~1.LNK - C:\Program Files (x86)\Common Files\lpuninstall.exe
uPolicies-Explorer: TaskbarNoNotification = dword:1
uPolicies-Explorer: HideSCAHealth = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: TaskbarNoNotification = dword:1
mPolicies-Explorer: HideSCAHealth = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-Explorer: TaskbarNoNotification = dword:1
mPolicies-Explorer: HideSCAHealth = dword:1
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm
IE: Open Client to monitor &4 - C:\Windows\web\AOpenClient.htm
IE: SafeKey - C:\Users\Angus\AppData\LocalLow\SafeKey\context.html?cmd=lastpass
IE: SafeKey Fill Forms - C:\Users\Angus\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Users\Angus\Desktop\PartyPoker.lnk
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{55C777F3-4250-4EF2-B08A-5E77578EA8B5} : DHCPNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.2\ViProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: AVG Do Not Track: {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} -
x64-BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-BHO: McAfee SafeKey Vault: {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-TB: McAfee SafeKey: {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
x64-Run: [ProfilerU] C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
x64-Run: [SaiMfd] C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} -
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\
FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?fr=mc ... A111GB0&p=
FF - prefs.js: browser.search.selectedEngine - Secure Search
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.4.0\npsitesafety.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Downloader\npdd.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Angus\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 AiCharger;ASUS Charger Driver;C:\Windows\System32\drivers\AiCharger.sys [2011-10-26 14592]
R0 mv91xx;mv91xx;C:\Windows\System32\drivers\mv91xx.sys [2010-11-22 303408]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2012-9-28 46368]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-11-26 283064]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);C:\Windows\System32\drivers\ICCWDT.sys [2010-8-17 26136]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-10 181248]
R3 SaiK0728;SaiK0728;C:\Windows\System32\drivers\SaiK0728.sys [2008-1-21 129024]
R3 SaiK0CCC;SaiK0CCC;C:\Windows\System32\drivers\SaiK0CCC.sys [2011-11-23 171016]
R3 SaiU0CCC;SaiU0CCC;C:\Windows\System32\drivers\SaiU0CCC.sys [2010-4-29 41096]
S2 Airprint;Airprint;C\Program Files (x86)\Airprint\airprint.exe -s --> C\Program Files (x86)\Airprint\airprint.exe -s [?]
S2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-3-29 241152]
S2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2010-11-3 918144]
S2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [2010-12-2 915584]
S2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2011-10-26 586880]
S2 BCUService;Browser Configuration Utility Service;C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-26 223464]
S2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2013-6-27 173192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 DisplayFusionService;DisplayFusionService;C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [2013-10-15 1375600]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-26 13336]
S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2011-10-26 133800]
S2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-9-23 641832]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-4-4 2666880]
S2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-3-22 93072]
S2 vToolbarUpdater17.1.2;vToolbarUpdater17.1.2;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [2013-11-11 1734680]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-2-14 96768]
S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2013-1-15 49152]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2013-3-2 57856]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-9-12 1512448]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-11-29 111616]
S3 JmtFltr;n52te;C:\Windows\System32\drivers\JmtFltr.sys [2011-10-30 46464]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-4-8 19456]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-4-8 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-4-8 30208]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-10-26 1255736]
S4 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-4-1 183560]
S4 McMPFSvc;McAfee Personal Firewall Service;"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [?]
.
=============== Created Last 30 ================
.
2013-12-03 21:58:48 -------- d-----w- C:\Users\Angus\AppData\Roaming\Nico Mak Computing
2013-12-03 21:58:45 19120 ----a-w- C:\Windows\System32\roboot64.exe
2013-12-03 21:58:44 -------- d-----w- C:\Program Files (x86)\WinZip Registry Optimizer
2013-12-03 21:26:15 -------- d-----w- C:\ProgramData\TGFBRPALCBNG.exe
2013-12-03 20:30:19 -------- d-----w- C:\Users\Angus\AppData\Roaming\Ukusci
2013-12-03 20:30:19 -------- d-----w- C:\Users\Angus\AppData\Roaming\Edpyuq
2013-11-29 05:52:52 28272 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugin-hang-ui.exe
2013-11-29 05:52:52 272496 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2013-11-26 18:58:45 -------- d-----w- C:\Program Files (x86)\Microsoft AutoRoute 2011
2013-11-26 18:50:17 -------- d-----w- C:\Program Files (x86)\MSECache
2013-11-26 18:44:45 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2013-11-26 18:44:38 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2013-11-26 18:23:28 -------- d-----w- C:\Users\Angus\AppData\Roaming\Xao
2013-11-26 18:23:28 -------- d-----w- C:\Users\Angus\AppData\Roaming\Kavisof
2013-11-22 12:53:17 26838560 ----a-w- C:\Program Files (x86)\Common Files\lpuninstall.exe
2013-11-22 12:52:34 -------- d-----w- C:\Program Files (x86)\SafeKey
2013-11-22 12:35:06 -------- d-----w- C:\Program Files\stinger
2013-11-21 17:48:22 -------- d-----w- C:\Users\Angus\AppData\Local\Sage
2013-11-13 06:02:01 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2013-11-13 06:02:01 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-11-12 17:18:55 -------- d-----w- C:\Program Files (x86)\Common Files\InstallEngine
2013-11-12 17:16:49 -------- d-----w- C:\Program Files (x86)\Common Files\Sage Shared
2013-11-12 17:16:48 -------- d-----w- C:\Program Files (x86)\Common Files\Sage Line50
2013-11-12 17:14:23 -------- d-----w- C:\ProgramData\Sage
2013-11-12 17:14:23 -------- d-----w- C:\Program Files (x86)\Common Files\Sage SBD
2013-11-12 17:14:23 -------- d-----w- C:\Program Files (x86)\Common Files\Sage Report Designer 2007
2013-11-12 17:14:19 -------- d-----w- C:\Program Files (x86)\Sage
2013-11-10 12:37:49 -------- d-----w- C:\Program Files\iPod
2013-11-10 12:37:47 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-10 12:37:47 -------- d-----w- C:\Program Files\iTunes
2013-11-10 12:37:47 -------- d-----w- C:\Program Files (x86)\iTunes
2013-11-07 17:37:00 -------- d-----w- C:\Users\Angus\AppData\Roaming\HMRC
2013-11-07 17:34:57 -------- d-----w- C:\Program Files (x86)\HMRC
2013-11-06 21:08:04 -------- d-----w- C:\Users\Angus\AppData\Roaming\AccurateRip
2013-11-06 21:08:03 7261768 ----a-w- C:\Windows\SysWow64\SpoonUninstall.exe
2013-11-06 21:07:57 -------- d-----w- C:\Program Files (x86)\Illustrate
2013-11-05 20:14:09 -------- d-----w- C:\ProgramData\Oracle
2013-11-05 20:13:54 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
.
==================== Find3M ====================
.
2013-11-29 05:50:38 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-29 05:50:38 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-11-19 10:21:41 267936 ------w- C:\Windows\System32\MpSigStub.exe
2013-11-17 15:27:52 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2013-11-17 15:27:52 290184 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2013-11-17 15:27:42 281520 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2013-11-11 16:20:37 46368 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll
2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll
2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-09-30 18:17:01 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll
2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll
2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll
2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll
2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe
2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
.
============= FINISH: 22:34:49.01 ===============


Attach

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 26/10/2011 12:43:48
System Uptime: 03/12/2013 21:56:27 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | SABERTOOTH P67
Processor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz | LGA1155 | 3411/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 931 GiB total, 155.297 GiB free.
D: is CDROM (CDFS)
E: is CDROM ()
F: is FIXED (NTFS) - 466 GiB total, 308.326 GiB free.
H: is Removable
I: is FIXED (NTFS) - 932 GiB total, 407.371 GiB free.
J: is Removable
K: is Removable
L: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e97d-e325-11ce-bfc1-08002be10318}
Description: High Definition Audio Controller
Device ID: PCI\VEN_1002&DEV_AA58&SUBSYS_AA581787&REV_00\4&80E7924&0&0108
Manufacturer: Microsoft
Name: High Definition Audio Controller
PNP Device ID: PCI\VEN_1002&DEV_AA58&SUBSYS_AA581787&REV_00\4&80E7924&0&0108
Service: HDAudBus
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Security Processor Loader Driver
Device ID: ROOT\LEGACY_SPLDR\0000
Manufacturer:
Name: Security Processor Loader Driver
PNP Device ID: ROOT\LEGACY_SPLDR\0000
Service: spldr
.
Class GUID: {4d36e97d-e325-11ce-bfc1-08002be10318}
Description: High Definition Audio Controller
Device ID: PCI\VEN_1002&DEV_AA58&SUBSYS_AA581787&REV_00\4&38AC18AC&0&0109
Manufacturer: Microsoft
Name: High Definition Audio Controller
PNP Device ID: PCI\VEN_1002&DEV_AA58&SUBSYS_AA581787&REV_00\4&38AC18AC&0&0109
Service: HDAudBus
.
Class GUID: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Description: Virtual Hid Device
Device ID: ROOT\HIDCLASS\0000
Manufacturer: Belkin
Name: Virtual Hid Device
PNP Device ID: ROOT\HIDCLASS\0000
Service: vhidmini
.
==== System Restore Points ===================
.
RP423: 22/11/2013 12:11:02 - Removed AVG 2014
RP424: 22/11/2013 12:15:30 - Removed AVG 2014
RP425: 26/11/2013 18:47:09 - Device Driver Package Install: DT Soft Ltd System devices
RP426: 26/11/2013 18:55:47 - Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
RP427: 26/11/2013 18:56:10 - Removed Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
RP428: 26/11/2013 18:57:26 - Removed Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
RP429: 26/11/2013 18:58:35 - Installed Microsoft AutoRoute 2011
RP430: 27/11/2013 06:22:07 - Windows Update
RP431: 27/11/2013 21:44:43 - Windows Update
RP432: 29/11/2013 05:47:50 - McAfee Vulnerability Scanner
RP433: 29/11/2013 05:55:49 - Windows Update
RP434: 30/11/2013 08:20:57 - Installed DirectX
RP435: 30/11/2013 20:33:43 - Installed Microsoft Camera Codec Pack
.
==== Installed Programs ======================
.
AC3File 0.6b
AC3Filter 1.63b
Accounts
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.04)
Advanced Tactical Center™ 1.0
AI Suite II
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Media Foundation Decoders
AMD Wireless Display v3.0
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Application Profiles
applicationupdater
Arma 2 British Armed Forces Uninstall
ARMA 2 Operation Arrowhead Uninstall
ArmA 2 Uninstall
Arma 3 Alpha
ARMA 3 Launcher By Head
ArmA II Launcher
Arma: Cold War Assault
Assassin's Creed Brotherhood
ASUS Ai Charger
ATI AVIVO64 Codecs
ATI Problem Report Wizard
Audacity 1.2.6
Audacity 1.3.14 (Unicode)
AVG Security Toolbar
AviSynth 2.5
Basic PAYE Tools - Real Time Information
Battlefield 1942™
Battlefield 2(TM)
Battlefield 2142 Deluxe Edition
Battlefield 3™
Battlefield 4™ Beta
Battlefield Heroes
Battlefield: Bad Company™ 2
Battlelog Web Plugins
BattlEye for OA Uninstall
BattlEye Uninstall
Bigasoft iPad Video Converter 3.4.3.4196
Bing Bar
Bing Desktop
Blacklight: Retribution
Bonjour
Browser Configuration Utility
calibre
Call of Duty(R) - World at War(TM)
Call of Duty(R) - World at War(TM) 1.2 Patch
Call of Duty(R) - World at War(TM) 1.4 Patch
Call of Duty(R) - World at War(TM) 1.5 Patch
Call of Duty(R) - World at War(TM) 1.6 Patch
Call of Duty(R) - World at War(TM) 1.7 Patch
Call of Duty(R) 4 - Modern Warfare(TM)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
Call of Duty: Black Ops
Call of Duty: Black Ops - Multiplayer
Call of Duty: Modern Warfare 2
Call of Duty: Modern Warfare 2 - Multiplayer
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Crysis Warhead
D3DX10
DAEMON Tools Lite
DayZ Commander
dBpoweramp Music Converter
DC Software 2
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Digital Combat Simulator: A-10C Warthog
DisplayFusion 5.1.1
DivX Setup
Downloader
Driver Sweeper version 3.2.0
EPSON Attach To Email
Epson Easy Photo Print 2
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
EPSON File Manager
Epson Print CD
EPSON Printer Software
EPSON Scan Assistant
erLT
ESN Sonar
F1 2012
Farming Simulator 2013
Free File Opener
Free Video Joiner
Full Tilt Poker
FW LiveUpdate
gamelauncher-ps2-live
gamelauncher-ps2-psg
Google Chrome
Google Earth
Google Update Helper
GrabIt 1.7.2 Beta 6 (build 1008)
High-Definition Video Playback
Hitman 2: Silent Assassin
HydraVision
I Am Alive
iCloud
IL-2 Sturmovik: Forgotten Battles
Intel(R) Management Engine Components
Intel(R) Network Connections 15.6.25.0
Intel(R) Rapid Storage Technology
Intel® Watchdog Timer Driver (Intel® WDT)
Internet TV for Windows Media Center
iTunes
Java 7 Update 45
Java Auto Updater
Java(TM) 7 Update 5 (64-bit)
JMicron JMB36X Driver
Junk Mail filter update
LAME v3.99.3 (for Windows)
M1 Tank Platoon II
Mafia II
marvell 91xx driver
McAfee SafeKey(uninstall only)
Medal of Honor (TM)
Metro 2033
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Access database engine 2010 (English)
Microsoft Application Error Reporting
Microsoft AutoRoute 2011
Microsoft Camera Codec Pack
Microsoft Combat Flight Simulator
Microsoft IntelliPoint 8.2
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Silverlight
Microsoft SkyDrive
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mimo
Movie Maker
Mozilla Firefox 25.0.1 (x86 en-GB)
Mozilla Maintenance Service
Mozilla Thunderbird (8.0)
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
n52te Editor
Nero 10 Menu TemplatePack Basic
Nero 10 Movie ThemePack Basic
Nero BurnRights 10
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero CoverDesigner 10
Nero DiscSpeed 10
Nero Express 10
Nero InfoTool 10
Nero MediaHub 10
Nero Multimedia Suite 10 Essentials
Nero Recode 10
Nero StartSmart 10
Nero Update
Nero Vision 10
NVIDIA PhysX
NZBEE
OpenAL
OpenVPN 2.2.2
Origin
Pando Media Booster
PartyPoker
Photo Common
Photo Gallery
PlanetSide 2
Play withSIX
Portal
Portal 2
Portal 2 Publishing Tool
Premiumplay Codec-C
PunkBuster Services
QuickTime
Realtek High Definition Audio Driver
Red Faction: Armageddon
Renesas Electronics USB 3.0 Host Controller Driver
S.T.A.L.K.E.R. - Clear Sky
Sage 50 Accounts 2009
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Security Update for Microsoft Excel 2010 (KB2826033) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2760781) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 32-Bit Edition
Security Update for Microsoft Outlook 2010 (KB2837597) 32-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Six Updater
Skype Click to Call
Skype™ 6.11
Smart Technology Programming Software 7.0.0.27
Sniper Elite V2
Spotify
Star Trek Online
State of Decay
Steam
TeamSpeak 3 Client
TeamViewer 7
TechPowerUp GPU-Z
The Elder Scrolls V: Skyrim
Tomb Raider III: Adventures of Lara Croft
Tomb Raider: Chronicles
TomTom HOME
TomTom HOME Visual Studio Merge Modules
TSST OEM Content
ubi.com
Ubisoft Game Launcher
Universal AntiCheat 3 v1.060
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition
VC80CRTRedist - 8.0.50727.6195
Videora iPod Converter 6
Visual Studio 2008 x64 Redistributables
Visual Studio 2010 x64 Redistributables
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
VLC media player 2.1.1
VyprVPN
War Thunder Launcher 1.0.1.252
Warhammer 40,000 Space Marine
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Center Add-in for Silverlight
WinRAR 5.00 (64-bit)
WinRAR Free Download Packages
WinZip Registry Optimizer
YouTube Downloader App 3.00
.
==== Event Viewer Messages From Past Week ========
.
30/11/2013 17:17:01, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
03/12/2013 21:57:10, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:57:10, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
03/12/2013 21:57:09, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
03/12/2013 21:57:08, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
03/12/2013 21:57:03, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
03/12/2013 21:56:59, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:56:58, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AsIO AsUpIO discache spldr Wanarpv6
03/12/2013 21:54:13, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:54:12, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
03/12/2013 21:54:12, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
03/12/2013 21:54:00, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AsIO AsUpIO DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr tdx Wanarpv6 WfpLwf
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
03/12/2013 21:54:00, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
03/12/2013 21:51:37, Error: Microsoft-Windows-WMPNSS-Service [14338] - A new media server was not initialized because CoCreateInstance(CLSID_UPnPRegistrar) encountered error '0x80070422'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
03/12/2013 21:51:27, Error: Service Control Manager [7024] - The HomeGroup Listener service terminated with service-specific error %%-2147023143.
03/12/2013 21:51:10, Error: Service Control Manager [7000] - The Airprint service failed to start due to the following error: The system cannot find the file specified.
03/12/2013 21:49:52, Error: Microsoft-Windows-Directory-Services-SAM [12291] - SAM failed to start the TCP/IP or SPX/IPX listening thread
03/12/2013 20:58:35, Error: Service Control Manager [7001] - The McAfee Personal Firewall Service service depends on the Windows Firewall service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
01/12/2013 16:26:57, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
01/12/2013 06:53:14, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk6\DR6.
.
==== End Of File ===========================
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am
Advertisement
Register to Remove

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 3rd, 2013, 7:07 pm

I forgot to say windows firewall does not work either
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby Dakeyras » December 5th, 2013, 8:01 am

Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post the appropriate logs in the Malware Removal forum and wait for help.

Hi and welcome back to Malware Removal. :)

I'm Dakeyras and I am going to try to assist you with your problem. Please take note of the below:

  • I will start working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine!
  • The process is not instant. Please continue to review my answers until I tell you your machine is clear. Absence of symptoms does not mean that everything is clear.
  • If you don't know, stop and ask! Don't keep going on.
  • Please reply to this thread. Do not start a new topic.
  • Refrain from running self fixes as this will hinder the malware removal process.
  • It may prove beneficial if you print of the following instructions or save them to notepad as I post them.
  • Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
Next:

Lets try working outside of the Windows Environment as follows...

Scan with Farbar Recovery Scan Tool:

Please download and save the Farbar Recovery Scan Tool 64-Bit to a Flash/USB drive.

Then insert the Flash/USB drive into your machine.... and enter the System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
On the System Recovery Options menu you will get the following options:

      Startup Repair
      System Restore
      Windows Complete PC Restore
      Windows Memory Diagnostic Tool
      Command Prompt
  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst64.exe and press Enter
Note: Replace letter e with the drive letter of your flash drive.

  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste the contents of the aforementioned notepad file into your next reply.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 6th, 2013, 1:53 pm

Dakeyras

Thank you for your reply. I'm sorry for the late reply but I've been at work. Before you put up your post I had to try and fix my PC as I needed access to it. I used RKill, which stopped the Malware and enabled AVG to install and update. AVG and malewarebytes then went to work and started cleaning the threat. The PC seems to be working again and I can't see any Malware present but I'm not an expert. Do you want me to want me to do DDS again ? I'm really sorry. I hope I haven't wasted your time ?
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby Dakeyras » December 6th, 2013, 4:21 pm

Hi. :)

Thank you for your reply. I'm sorry for the late reply but I've been at work.

You're welcome and not a problem.

Before you put up your post I had to try and fix my PC as I needed access to it. I used RKill, which stopped the Malware and enabled AVG to install and update. AVG and malewarebytes then went to work and started cleaning the threat. The PC seems to be working again and I can't see any Malware present but I'm not an expert. Do you want me to want me to do DDS again ? I'm really sorry. I hope I haven't wasted your time ?

Also not a problem and you have not wasted my time at all I assure you...actually thank you for the courtesy of informing myself. Anyway I think it still prudent for myself to give your machine a check regardless to err on the side of caution...

Next:

If still available I would like to review the following:-

  • Rkill Log
  • Malwarebytes Anti-Malware Log.
Scan with Farbar Recovery Scan Tool:

Please download and save the Farbar Recovery Scan Tool 64-Bit to your Desktop.

  • Right-click on FRST.exe and select Run as Administrator to start FRST >> >> follow the prompt/click on Yes
  • Under Optional Scan ensure both Drivers MD5 and Addition.txt are selected.
  • Now click on the Scan button/radio tab >> at the Scan completed prompt click on OK
  • At the next prompt denoting Addition.txt is saved in the same location FRST tool is run >> click on OK
  • There will now be two logs on your desktop, Addition.txt and FRST.txt. Post the contents of both in your next reply.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 2:53 am

Thanks for getting back to me Dakeyars,

Here are the logs

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.05.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Angus :: ANGUS-PC [administrator]

05/12/2013 18:27:57
mbam-log-2013-12-05 (18-27-57).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 245283
Time elapsed: 7 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 12
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{35B7E48B-9D81-4C6C-9578-5FD4F620D886} (PUP.Spyware.MarketScore) -> Quarantined and deleted successfully.
HKCR\Setup.Player.2K2 (PUP.Spyware.MarketScore) -> Quarantined and deleted successfully.
HKCR\Setup.Player (PUP.Spyware.MarketScore) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CF190686-9E72-403C-B99D-682ABDB63C5B} (PUP.Optional.TopArcadeHits.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011041135} (PUP.Codec.PR) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0000435.BHO (PUP.Codec.PR) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A) -> Quarantined and deleted successfully.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Quarantined and deleted successfully.
HKCU\Software\BabSolution\Redir (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0L1N1H2O1S -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 6
C:\Users\Angus\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8} (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\Users\Angus\AppData\Roaming\BabSolution (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\Angus\AppData\Roaming\BabSolution\Shared (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.

Files Detected: 23
C:\Users\Alice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kyifu.exe (Trojan.Inject.NR) -> Quarantined and deleted successfully.
C:\Users\Angus\AppData\Local\Temp\ICReinstall_ZipExtractorSetup.exe (PUP.Optional.JumpyApps.A) -> Quarantined and deleted successfully.
C:\Users\Angus\Downloads\NCIS.S08E01.720p.HDTV.X264-DIMENSION (1).exe (PUP.Optional.Adpeak) -> Quarantined and deleted successfully.
C:\Users\Angus\Downloads\NCIS.S08E01.720p.HDTV.X264-DIMENSION.exe (PUP.Optional.Adpeak) -> Quarantined and deleted successfully.
C:\Users\Angus\Downloads\ZipExtractorSetup.exe (PUP.Optional.JumpyApps.A) -> Quarantined and deleted successfully.
C:\Users\Angus\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data (PUP.Optional.BProtector.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bl (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\dm (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\00 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\01 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\02 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\03 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\10 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\11 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\12 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\13 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\20 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\21 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\22 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\23 (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\Users\Angus\AppData\Roaming\BabSolution\Shared\EnhancedNT.dll (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.

(end)
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 2:55 am

Rkill 2.6.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/05/2013 05:31:57 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 2:58 am

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-12-2013 01
Ran by Angus (administrator) on ANGUS-PC on 07-12-2013 06:43:33
Running from C:\Users\Angus\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Spotify Ltd) C:\Users\Angus\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Users\Angus\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
() C:\Program Files (x86)\DC Software 2\DL10XP.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
(Razer USA Ltd.) C:\Program Files (x86)\n52te\razerhid.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\loggingserver.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Google Inc.) C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11545192 2010-11-02] (Realtek Semiconductor)
HKLM\...\Run: [IntelliPoint] - C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [ProfilerU] - C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [378880 2010-04-23] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [195072 2010-04-23] (Saitek)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-04] (Valve Corporation)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [EPSON Stylus Photo 1400 Series] - C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIBUE.EXE /FU "C:\Windows\TEMP\E_S32EE.tmp" /EF "HKCU"
HKCU\...\Run: [Google Update] - C:\Users\Angus\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-11-16] (Google Inc.)
HKCU\...\Run: [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Angus\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-08-24] (Spotify Ltd)
HKCU\...\Run: [SkyDrive] - C:\Users\Angus\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-08-14] (Microsoft Corporation)
HKCU\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [380928 2009-09-18] (AMD)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKCU\...\Run: [DisplayFusion] - C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKCU\...\Policies\Explorer: [TaskbarNoNotification] 1
HKCU\...\Policies\Explorer: [HideSCAHealth] 1
MountPoints2: {1ccaaf90-553a-11e3-a071-f46d04e38f47} - E:\dvdrun.exe
MountPoints2: {3b694122-05c6-11e3-8760-806e6f6e6963} - D:\Start.exe
MountPoints2: {a3afa18a-000e-11e1-ae30-806e6f6e6963} - F:\AutoStarter.exe
MountPoints2: {ad590899-5b95-11d9-8c4b-806e6f6e6963} - D:\.\Bin\ASSETUP.exe
MountPoints2: {e7a89067-0002-11e1-8c71-806e6f6e6963} - D:\SETUP.EXE
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [BCU] - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [375000 2009-10-26] (DeviceVM, Inc.)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [ASUS Ai Charger] - C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [465536 2010-10-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [Name of App] - C:\Program Files (x86)\TSST Korea\FW LiveUpdate\FWManager.exe [708721 2013-03-08] ( )
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2420248 2013-11-11] ()
HKLM-x32\...\Run: [Jomantha] - C:\Program Files (x86)\n52te\razerhid.exe [163840 2007-12-12] (Razer USA Ltd.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-01-30] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\alevi.exe ()
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\alevi.exe ()
BootExecute: autocheck autochk * /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart /sync /restart /sync /restartsdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x86947AB0B234CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM, Inc.)
URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
SearchScopes: HKCU - DefaultScope {DDADD2D1-64A7-4fad-B7B0-30BEA83A8F0E} URL = http://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=STDVM
SearchScopes: HKCU - {07EFF238-D70D-4647-9277-E411F93A1A7E} URL = http://uk.search.yahoo.com/search?fr=mc ... A011GB0&p={SearchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=40D800FF643F385E&affID=119357&tt=200813_245&tsp=4980
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={79006DDF-8A7C-454E-922E-3B334D161E34}&mid=aeb7778131dc47d1927d2524420766b4-b5f452c77da757402d9a212558643c7bc53d2262&lang=en&ds=AVG&pr=fr&d=2012-09-28 08:59:25&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {A7E14446-4239-4cfa-9FCF-2F5EA6F3CA21} URL = http://www.bing.com/search?q={searchTerms}&form=SPLBR2&pc=SPLH
SearchScopes: HKCU - {DDADD2D1-64A7-4fad-B7B0-30BEA83A8F0E} URL = http://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=STDVM
BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll No File
BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll (McAfee)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO-x32: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll (McAfee)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll (McAfee)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.1.2.1\AVG Secure Search_toolbar.dll (AVG Secure Search)
Toolbar: HKLM-x32 - McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll (McAfee)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.2\ViProtocol.dll (AVG Secure Search)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default
FF user.js: detected! => C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\user.js
FF Keyword.URL: hxxp://uk.search.yahoo.com/search?fr=mc ... A111GB0&p=
FF SelectedSearchEngine: Secure Search
FF DefaultSearchEngine: Secure Search
FF SearchEngineOrder.1: Secure Search
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.2\\npsitesafety.dll (AVG Technologies)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.3 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.3\npesnsonar.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @gametap.com/npdd,version=1.0 - C:\Program Files (x86)\Downloader\npdd.dll (Metaboli)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Angus\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Angus\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: Codec-V - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\Extensions\crossriderapp435@crossrider.com
FF Extension: No Name - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\Extensions\ffxtlbr@babylon.com
FF Extension: McAfee SafeKey - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\Extensions\{072844D3-7DEE-45F6-A406-E87F76302E4B}
FF Extension: Flash and Video Download - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF Extension: perera.pasindu - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\Extensions\perera.pasindu@gmail.com.xpi
FF Extension: prefs - C:\Users\Angus\AppData\Roaming\Mozilla\Firefox\Profiles\xb1ybjn2.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.1.2.1
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\17.1.2.1
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5

Chrome:
=======
CHR HomePage: hxxp://www.google.co.uk/?gws_rd=cr
CHR RestoreOnStartup: "https://www.google.co.uk/"
CHR DefaultSearchURL: (McAfee) - http://uk.search.yahoo.com/search?fr=mc ... A211GB0&p={searchTerms}
CHR DefaultSuggestURL: (McAfee) - "suggest_url": "",
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Logitech Device Detection) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\elncikmfipkphghakkmemnlnahadedno\1.24.0.9_0\npLogitechDeviceDetection.dll (Logitech, Inc.)
CHR Plugin: (AVG Internet Security) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2161_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll No File
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll No File
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Downloader Detector) - C:\Program Files (x86)\Downloader\npdd.dll (Metaboli)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (McAfee SafeKey) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\agbnjankikoaabjkmfbaceggjliabkbn\2.1.4_0
CHR Extension: (YouTube) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Battlefield Heroes) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh\5.0.203.0_0
CHR Extension: (Adblock for Youtube\u2122) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\2.12_0
CHR Extension: (Google Search) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Logitech Device Detection) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\elncikmfipkphghakkmemnlnahadedno\1.24.0.9_0
CHR Extension: (New Tab Redirect!) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna\2.1.1_0
CHR Extension: (AVG Secure Search) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.1.2.1_0
CHR Extension: (Google Wallet) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Angus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [agbnjankikoaabjkmfbaceggjliabkbn] - C:\Program Files (x86)\SafeKey\lpchrome.crx
CHR HKLM-x32\...\Chrome\Extension: [cgiaikfpllchefojlnehlmpekeogihnm] - C:\Users\Angus\AppData\Local\CRE\cgiaikfpllchefojlnehlmpekeogihnm.crx
CHR HKLM-x32\...\Chrome\Extension: [jpnbdefcbnoefmmcpelplabbkfmfhlho] - C:\Users\Angus\AppData\Local\Premiumplay Codec-C\Chrome\Premiumplay Codec-C.crx
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.1.2.1\avg.crx
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Angus\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-27] (Microsoft Corp.)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [1375600 2013-11-27] (Binary Fortress Software)
R2 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE [102400 2006-04-18] (SEIKO EPSON CORPORATION)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [14848 2011-12-15] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-09-30] ()
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 vToolbarUpdater17.1.2; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [1734680 2013-11-11] (AVG Secure Search)
S2 Airprint; C\Program Files (x86)\Airprint\airprint.exe -s [x]
S4 McMPFSvc; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [x]

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2012-01-21] ()
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-11] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-26] (Disc Soft Ltd)
S3 JmtFltr; C:\Windows\System32\drivers\JmtFltr.sys [46464 2007-09-29] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2012-01-21] ()
R3 SaiK0728; C:\Windows\System32\DRIVERS\SaiK0728.sys [129024 2008-01-21] (Saitek)
R3 SaiK0CCC; C:\Windows\System32\DRIVERS\SaiK0CCC.sys [171016 2010-04-23] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22664 2010-04-23] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [49928 2010-04-23] (Saitek)
R3 SaiU0CCC; C:\Windows\System32\DRIVERS\SaiU0CCC.sys [41096 2010-04-29] (Saitek)
S3 vhidmini; C:\Windows\System32\DRIVERS\vhidmini.sys [13952 2007-09-29] (Windows (R) Codename Longhorn DDK provider)

========================== Drivers MD5 =======================

C:\Windows\System32\DRIVERS\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 79059559E89D06E8B80CE2944BE20228
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AiCharger.sys A41B855EDC1F141851E27F984827942C
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmdag.sys 79CC9BE187E3144E1B58A54B842475E7
C:\Windows\System32\DRIVERS\atikmpag.sys 07561D3B7FD99F6E186C49C2D0628E38
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\SysWow64\drivers\AsIO.sys FEF9DD9EA587F8886ADE43C1BEFBDAFE
C:\Windows\SysWow64\drivers\AsUpIO.sys 1392B92179B07B672720763D9B1028A5
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\drivers\AtihdW76.sys ED3A041014FBBFDC23D6C04F9C7A5D79
C:\Windows\System32\DRIVERS\atksgt.sys B4BDE3F758A34658A37DFED3D9783CD8
C:\Windows\System32\DRIVERS\avgdiska.sys 27CA53E91543B800E16129BCEC3247AD
C:\Windows\System32\DRIVERS\avgidsdrivera.sys 57250DDDE2523115D0927DBBA745F9FA
C:\Windows\System32\DRIVERS\avgidsha.sys 19AD820FC44AA71EDD1BC70B6E3F36B0
C:\Windows\System32\DRIVERS\avgldx64.sys 4BE8BB177B4C2BC3564845EF6D1073F1
C:\Windows\System32\DRIVERS\avgloga.sys D3772CC086FB81F76B5A82C85E1C7C8E
C:\Windows\System32\DRIVERS\avgmfx64.sys A0BCE5DC2C1F1EE5C1CA19A33375AC23
C:\Windows\System32\DRIVERS\avgrkx64.sys 12FAAF366975B2BF2E93F1866C0E480D
C:\Windows\System32\DRIVERS\avgtdia.sys 4E364FABBD147F59E5D524C9EA86D772
C:\Windows\system32\drivers\avgtpx64.sys A1F53D2A00E64679A1D81B61D2333D06
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\system32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys ==> MD5 is legit
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\dtsoftbus01.sys 6A0E850DDCB136AA3D2FB7234382DF12
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\System32\DRIVERS\e1c62x64.sys 6BAFD9819D9FEC2EDBAEBC8493C711A4
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fssfltr.sys B16B626996C74B564005BA855C5DEE90
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys D7921D5A870B11CC1ADAB198A519D50A
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\System32\DRIVERS\ICCWDT.sys C1010ADD3DDAE1196ED21057AF7B2AAE
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\RTKVHD64.sys DAB7318CCFA8081200D5B7B486793F74
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit
C:\Windows\System32\drivers\JmtFltr.sys 112809CE3919156C484C5BBE61EEEE25
C:\Windows\System32\DRIVERS\jraid.sys A577F5DB30F70ECA9708C07C2EACBD9D
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 8F489706472F7E9A06BAAA198703FA64
C:\Windows\System32\Drivers\ksecpkg.sys 868A2CAAB12EFC7A021682BCA0EEC54C
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\L8042Kbd.sys F33C5D79D3273530E1892A0922283A7B
C:\Windows\System32\DRIVERS\LHidFilt.Sys B6552D382FF070B4ED34CBD6737277C0
C:\Windows\System32\DRIVERS\lirsgt.sys 955982BF4421B77722196552B62E8DC2
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\LMouFilt.Sys 73C1F563AB73D459DFFE682D66476558
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECIx64.sys A6518DCC42F7A6E999BB3BEA8FD87567
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mv91xx.sys 38B4C95E821528FB91DF16A78E04450F
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nusb3hub.sys 158AD24745BD85BA9BE3C51C38F48C32
C:\Windows\System32\DRIVERS\nusb3xhc.sys D40A13B2C0891E218F9523B376955DB6
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\point64.sys 4F0878FD62D5F7444C5F1C4C66D9D293
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SaiK0728.sys 476BAA3EEBE9DB94BF6BDFAF46747E5D
C:\Windows\System32\DRIVERS\SaiK0CCC.sys B045B742EE2F8846861C0402CF3ADD54
C:\Windows\System32\DRIVERS\SaiMini.sys 7EA0DBB6983BF61C6CF435C63D7BE123
C:\Windows\System32\drivers\SaiBus.sys 676649CE531BB88FB2060E02DD3149CE
C:\Windows\System32\DRIVERS\SaiU0CCC.sys FAC10E113AAC54DD3905A3F6B633D5D9
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tap0901.sys F9BE29D5E097F03F81D3CD12B794CB66
C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E
C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\Windows\System32\Drivers\usbaapl64.sys C9E9D59C0099A9FF51697E9306A44240
C:\Windows\system32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\System32\DRIVERS\usbccgp.sys ACCEA6BC68D0C9A78EB97EE159028B4E
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 311C1DD1088E55BEAE15954D17F50646
C:\Windows\System32\DRIVERS\usbhub.sys 280E90CBF4B2DDD169F0728CB44D726F
C:\Windows\system32\drivers\usbohci.sys 9406D801042FAF859CF81B2C886413DC
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys A83D0EC9AE4C31704442099D40BA2471
C:\Windows\System32\Drivers\usbvideo.sys 1F775DA4CF1A3A1834207E975A72E9D7
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vhidmini.sys 52290E2E0BFAE61D622AA8B9B3A4CB4E
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 2:59 am

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-07 06:43 - 2013-12-07 06:43 - 00054971 _____ C:\Users\Angus\Downloads\FRST.txt
2013-12-07 06:42 - 2013-12-07 06:42 - 00000000 ____D C:\Users\Angus\Downloads\FRST-OlderVersion
2013-12-06 21:42 - 2013-12-07 06:42 - 01927360 _____ (Farbar) C:\Users\Angus\Downloads\FRST64.exe
2013-12-06 21:42 - 2013-12-07 06:42 - 00000000 ____D C:\FRST
2013-12-05 18:44 - 2013-12-05 18:44 - 00347816 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\MicrosoftFixit.WindowsFirewall.RNP.38309696292346261.1.1.Run.exe
2013-12-05 18:25 - 2013-12-05 18:25 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Malwarebytes
2013-12-05 18:24 - 2013-12-05 18:24 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-05 18:24 - 2013-12-05 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 18:24 - 2013-12-05 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 18:24 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-05 18:20 - 2013-12-05 18:21 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Angus\Downloads\mbam-setup.exe
2013-12-05 18:19 - 2013-12-05 18:20 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Angus\Downloads\rkill.exe
2013-12-05 18:11 - 2013-12-05 18:11 - 02294160 _____ C:\Users\Angus\Downloads\avira_free_antivirus.exe
2013-12-05 17:29 - 2013-12-05 17:32 - 00001420 _____ C:\Users\Angus\Desktop\Rkill.txt
2013-12-05 17:29 - 2013-12-05 17:29 - 01059064 _____ (Bleeping Computer, LLC) C:\Users\Angus\Desktop\rkill64.exe
2013-12-05 17:29 - 2013-12-05 17:29 - 00000000 ____D C:\Users\Angus\Desktop\rkill
2013-12-05 17:16 - 2013-12-05 17:16 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Angus\Desktop\rkill.exe
2013-12-04 18:28 - 2013-12-04 18:29 - 00000177 _____ C:\Windows\system32\avgrep.txt
2013-12-04 18:25 - 2013-12-04 19:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-12-04 18:25 - 2013-12-04 18:25 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-12-04 18:25 - 2013-12-04 18:25 - 00000656 _____ C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2013-12-04 18:25 - 2013-12-04 18:25 - 00000628 _____ C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2013-12-04 18:25 - 2013-12-04 18:25 - 00000458 _____ C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2013-12-04 18:25 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-12-04 18:19 - 2013-12-04 18:24 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Angus\Downloads\spybot-2.2.exe
2013-12-04 18:12 - 2013-12-04 18:14 - 00000177 _____ C:\Users\Angus\Desktop\avgrep.txt
2013-12-03 22:55 - 2013-12-03 22:55 - 00000000 ____D C:\Users\Angus\AppData\Roaming\AVG2014
2013-12-03 22:54 - 2013-12-03 22:54 - 00000965 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-12-03 22:54 - 2013-12-03 22:54 - 00000000 ___HD C:\$AVG
2013-12-03 22:52 - 2013-12-04 18:12 - 00000000 ____D C:\Users\Angus\AppData\Local\Avg2014
2013-12-03 22:52 - 2013-12-03 22:52 - 04435768 _____ (AVG Technologies) C:\Users\Angus\Downloads\avg_avct_stb_all_2014_4259_cm10.exe
2013-12-03 22:34 - 2013-12-03 22:34 - 00025584 _____ C:\Users\Angus\Desktop\dds.txt
2013-12-03 22:34 - 2013-12-03 22:34 - 00021830 _____ C:\Users\Angus\Desktop\attach.txt
2013-12-03 22:32 - 2013-12-03 22:32 - 00688992 ____R (Swearware) C:\Users\Angus\Downloads\dds.scr
2013-12-03 22:10 - 2013-12-03 22:10 - 22791896 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\Windows-KB890830-x64-V5.6 (1).exe
2013-12-03 22:05 - 2013-12-03 22:06 - 22791896 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\Windows-KB890830-x64-V5.6.exe
2013-12-03 21:58 - 2013-12-03 21:58 - 03617248 _____ (WinZip International LLC ) C:\Users\Angus\Downloads\wzro18.exe
2013-12-03 21:58 - 2013-12-03 21:58 - 00001126 _____ C:\Users\Public\Desktop\WinZip Registry Optimizer.lnk
2013-12-03 21:58 - 2013-12-03 21:58 - 00000290 _____ C:\Windows\Tasks\Registry Optimizer.job
2013-12-03 21:58 - 2013-12-03 21:58 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Nico Mak Computing
2013-12-03 21:58 - 2013-12-03 21:58 - 00000000 ____D C:\Program Files (x86)\WinZip Registry Optimizer
2013-12-03 21:58 - 2013-07-10 17:49 - 00019120 _____ (WinZip Computing, S.L.(WinZip Computing)) C:\Windows\system32\roboot64.exe
2013-12-03 21:26 - 2013-12-05 17:28 - 00000000 ____D C:\ProgramData\TGFBRPALCBNG.exe
2013-12-03 20:30 - 2013-12-03 23:01 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Edpyuq
2013-12-03 20:30 - 2013-12-03 22:57 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Ukusci
2013-12-03 20:30 - 2013-12-03 20:30 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp
2013-12-03 20:30 - 2013-12-03 20:30 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp
2013-12-03 11:03 - 2013-12-03 11:03 - 00000222 _____ C:\Users\Angus\Desktop\State of Decay.url
2013-11-30 20:32 - 2013-11-30 20:33 - 15182336 _____ C:\Users\Angus\Downloads\MicrosoftCodecPack_amd64.msi
2013-11-29 05:59 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-29 05:57 - 2013-11-29 05:57 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-29 05:57 - 2013-11-29 05:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-29 05:57 - 2013-11-29 05:57 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-29 05:57 - 2013-11-29 05:57 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-29 05:57 - 2013-11-29 05:57 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-29 05:57 - 2013-11-29 05:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-29 05:57 - 2013-11-29 05:57 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-29 05:57 - 2013-11-29 05:57 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-29 05:57 - 2013-11-29 05:57 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-29 05:57 - 2013-11-29 05:57 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-29 05:57 - 2013-11-29 05:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-29 05:56 - 2013-11-29 05:59 - 00007582 _____ C:\Windows\IE11_main.log
2013-11-29 05:53 - 2013-11-29 05:53 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-29 05:52 - 2013-11-29 05:52 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-29 05:49 - 2013-11-29 05:49 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-28 06:03 - 2013-11-28 06:03 - 00000000 ____D C:\Users\Alice\AppData\Roaming\SafeKey
2013-11-26 19:22 - 2013-11-26 20:46 - 00000000 ____D C:\Users\Angus\Documents\Driving Routes
2013-11-26 18:58 - 2013-11-26 19:00 - 00000000 ____D C:\Program Files (x86)\Microsoft AutoRoute 2011
2013-11-26 18:51 - 2013-11-26 18:52 - 05718872 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\vcredist_x64.exe
2013-11-26 18:50 - 2013-11-26 18:50 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-11-26 18:45 - 2013-11-26 18:45 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-26 18:44 - 2013-11-26 18:47 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-26 18:44 - 2013-11-26 18:44 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-26 18:23 - 2013-12-03 23:00 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Xao
2013-11-26 18:23 - 2013-11-26 19:51 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Kavisof
2013-11-26 17:51 - 2013-11-26 17:51 - 00608391 _____ C:\Users\Angus\Downloads\autoroute 2011.nzb
2013-11-26 17:43 - 2013-11-26 17:43 - 00000720 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (5).nzb
2013-11-26 17:43 - 2013-11-26 17:43 - 00000718 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (6).nzb
2013-11-26 17:43 - 2013-11-26 17:43 - 00000616 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (4).nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00030975 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar.nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00000616 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (3).nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00000615 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (2).nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00000607 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (1).nzb
2013-11-26 17:32 - 2013-11-26 17:32 - 00000503 _____ C:\Users\Angus\Downloads\Microsoft-AutoRoute-ENG.zip.nzb
2013-11-22 12:52 - 2013-11-22 12:55 - 00000000 ____D C:\Program Files (x86)\SafeKey
2013-11-22 12:35 - 2013-11-22 12:37 - 00000000 ____D C:\Program Files\stinger
2013-11-22 12:33 - 2013-11-22 12:34 - 05132336 _____ (McAfee, Inc.) C:\Users\Angus\Downloads\McAfeeSetup.exe
2013-11-21 17:48 - 2013-11-21 17:48 - 00000000 ____D C:\Users\Angus\AppData\Local\Sage
2013-11-20 20:38 - 2013-11-20 20:49 - 00000000 ____D C:\Users\Angus\Downloads\New folder
2013-11-19 17:11 - 2013-11-19 18:30 - 00000000 ____D C:\Users\Angus\Documents\alice art
2013-11-18 21:22 - 2013-11-18 21:22 - 00188807 _____ C:\Users\Angus\Downloads\Katy-Perry-Katy-Perry-Prism-Deluxe-Edition-2013.nzb
2013-11-18 21:17 - 2013-11-18 21:17 - 00024006 _____ C:\Users\Angus\Downloads\Katy Perry - Prism (2013) {Deluxe Edition} [HDTracks 24-44,1].par2.nzb
2013-11-17 13:42 - 2013-11-17 13:43 - 03820824 _____ C:\Users\Angus\Downloads\battlelog-web-plugins_2.3.1_125.exe
2013-11-14 20:09 - 2013-11-14 20:09 - 00106870 _____ C:\Users\Angus\Downloads\37149 ncis.801.hdtv-lol.nzb
2013-11-14 20:06 - 2013-11-14 20:06 - 00012675 _____ C:\Users\Angus\Downloads\[kickass.to]ncis.s08e01.spider.and.the.fly.subita.wtrg.torrent
2013-11-14 19:42 - 2013-11-14 19:42 - 00126458 _____ C:\Users\Angus\Downloads\NCIS.Season.8.Episodes.1-24.nzb
2013-11-13 06:02 - 2013-10-05 20:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 06:02 - 2013-10-05 19:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 06:01 - 2013-10-12 02:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 06:01 - 2013-10-12 02:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 06:01 - 2013-10-12 02:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 06:01 - 2013-10-12 02:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 06:01 - 2013-10-12 02:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 06:01 - 2013-10-04 02:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 06:01 - 2013-10-04 02:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 06:01 - 2013-10-04 02:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 06:01 - 2013-10-04 01:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 06:01 - 2013-10-04 01:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 06:01 - 2013-10-04 01:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 06:01 - 2013-10-03 02:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 06:01 - 2013-10-03 02:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 06:01 - 2013-09-28 01:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 06:01 - 2013-09-25 02:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 06:01 - 2013-09-25 02:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 06:01 - 2013-09-25 02:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 06:01 - 2013-09-25 02:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 06:01 - 2013-09-25 02:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 06:01 - 2013-09-25 02:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 06:01 - 2013-09-25 02:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 06:01 - 2013-09-25 02:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 06:01 - 2013-09-25 01:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 06:01 - 2013-09-25 01:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 06:01 - 2013-09-25 01:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 06:01 - 2013-09-25 01:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 06:01 - 2013-09-25 01:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 06:01 - 2013-07-04 12:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-12 17:18 - 2013-11-12 17:18 - 00002200 _____ C:\Users\Public\Desktop\Sage 50 Accounts 2009.lnk
2013-11-12 17:18 - 2013-11-12 17:18 - 00000949 _____ C:\Windows\SysWOW64\install.log
2013-11-12 17:17 - 2013-11-12 17:17 - 00000179 _____ C:\Windows\ODBCINST.INI
2013-11-12 17:17 - 2013-11-12 17:17 - 00000129 _____ C:\Windows\ODBC.INI
2013-11-12 17:14 - 2013-11-21 17:48 - 00000000 ____D C:\ProgramData\Sage
2013-11-12 17:14 - 2013-11-12 17:15 - 00000000 ____D C:\Program Files (x86)\Sage
2013-11-10 12:38 - 2013-11-10 12:38 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-10 12:37 - 2013-11-10 12:38 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-10 12:37 - 2013-11-10 12:38 - 00000000 ____D C:\Program Files\iTunes
2013-11-10 12:37 - 2013-11-10 12:38 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-10 12:37 - 2013-11-10 12:37 - 00000000 ____D C:\Program Files\iPod
2013-11-07 17:40 - 2013-11-07 17:40 - 00002086 _____ C:\Users\Public\Desktop\BPT-RTI.lnk
2013-11-07 17:38 - 2013-11-07 17:39 - 39565882 _____ C:\Users\Angus\Downloads\payetools-rti-13.2.13232.64-win-assistive.zip
2013-11-07 17:37 - 2013-11-07 17:40 - 00000000 ____D C:\Users\Angus\AppData\Roaming\HMRC
2013-11-07 17:34 - 2013-11-07 17:39 - 00000000 ____D C:\Program Files (x86)\HMRC
2013-11-07 17:32 - 2013-11-07 17:32 - 33449580 _____ C:\Users\Angus\Downloads\payetools-windows.zip
2013-11-07 15:21 - 2013-11-07 15:21 - 00269824 ___SH C:\Users\Angus\Documents\Thumbs.db

==================== One Month Modified Files and Folders =======

2013-12-07 06:43 - 2013-12-07 06:43 - 00054971 _____ C:\Users\Angus\Downloads\FRST.txt
2013-12-07 06:42 - 2013-12-07 06:42 - 00000000 ____D C:\Users\Angus\Downloads\FRST-OlderVersion
2013-12-07 06:42 - 2013-12-06 21:42 - 01927360 _____ (Farbar) C:\Users\Angus\Downloads\FRST64.exe
2013-12-07 06:42 - 2013-12-06 21:42 - 00000000 ____D C:\FRST
2013-12-07 06:42 - 2011-10-26 11:27 - 00000000 ____D C:\ProgramData\MFAData
2013-12-07 06:39 - 2012-04-25 23:05 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-07 06:39 - 2012-01-08 12:49 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-07 06:39 - 2011-11-16 13:28 - 00000908 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000UA.job
2013-12-07 06:39 - 2011-11-16 13:28 - 00000856 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000Core.job
2013-12-06 21:41 - 2012-03-06 02:18 - 00000000 ____D C:\Users\Angus\AppData\Local\Free File Opener
2013-12-06 18:32 - 2012-01-08 12:49 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-05 22:52 - 2013-09-22 09:46 - 00002364 _____ C:\Users\Angus\Desktop\Google Chrome.lnk
2013-12-05 22:45 - 2011-11-16 13:28 - 00003882 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000UA
2013-12-05 22:45 - 2011-11-16 13:28 - 00003486 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000Core
2013-12-05 18:49 - 2009-07-14 04:45 - 00022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-05 18:49 - 2009-07-14 04:45 - 00022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-05 18:48 - 2009-07-14 05:13 - 00797794 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-05 18:44 - 2013-12-05 18:44 - 00347816 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\MicrosoftFixit.WindowsFirewall.RNP.38309696292346261.1.1.Run.exe
2013-12-05 18:42 - 2013-03-02 19:59 - 00000000 ___RD C:\Users\Angus\SkyDrive
2013-12-05 18:42 - 2011-10-26 19:05 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-05 18:41 - 2013-06-03 20:16 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2013-12-05 18:40 - 2013-03-05 17:19 - 00056318 _____ C:\Windows\PFRO.log
2013-12-05 18:40 - 2013-01-30 00:11 - 00030499 _____ C:\Windows\setupact.log
2013-12-05 18:40 - 2009-07-14 05:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-05 18:37 - 2013-08-20 20:02 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-12-05 18:37 - 2011-12-25 10:40 - 00000000 ___RD C:\Users\Alice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-05 18:33 - 2011-10-26 11:43 - 00000000 ____D C:\Users\Angus
2013-12-05 18:28 - 2012-01-08 12:49 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-05 18:27 - 2012-01-08 12:49 - 00003640 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-05 18:25 - 2013-12-05 18:25 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Malwarebytes
2013-12-05 18:24 - 2013-12-05 18:24 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-05 18:24 - 2013-12-05 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 18:24 - 2013-12-05 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 18:21 - 2013-12-05 18:20 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Angus\Downloads\mbam-setup.exe
2013-12-05 18:20 - 2013-12-05 18:19 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Angus\Downloads\rkill.exe
2013-12-05 18:11 - 2013-12-05 18:11 - 02294160 _____ C:\Users\Angus\Downloads\avira_free_antivirus.exe
2013-12-05 17:41 - 2013-03-02 14:31 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-12-05 17:32 - 2013-12-05 17:29 - 00001420 _____ C:\Users\Angus\Desktop\Rkill.txt
2013-12-05 17:29 - 2013-12-05 17:29 - 01059064 _____ (Bleeping Computer, LLC) C:\Users\Angus\Desktop\rkill64.exe
2013-12-05 17:29 - 2013-12-05 17:29 - 00000000 ____D C:\Users\Angus\Desktop\rkill
2013-12-05 17:28 - 2013-12-03 21:26 - 00000000 ____D C:\ProgramData\TGFBRPALCBNG.exe
2013-12-05 17:16 - 2013-12-05 17:16 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Angus\Desktop\rkill.exe
2013-12-05 17:08 - 2011-12-25 10:40 - 00001413 _____ C:\Users\Alice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-04 19:00 - 2013-12-04 18:25 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-12-04 18:29 - 2013-12-04 18:28 - 00000177 _____ C:\Windows\system32\avgrep.txt
2013-12-04 18:25 - 2013-12-04 18:25 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-12-04 18:25 - 2013-12-04 18:25 - 00000656 _____ C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2013-12-04 18:25 - 2013-12-04 18:25 - 00000628 _____ C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2013-12-04 18:25 - 2013-12-04 18:25 - 00000458 _____ C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2013-12-04 18:24 - 2013-12-04 18:19 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Angus\Downloads\spybot-2.2.exe
2013-12-04 18:14 - 2013-12-04 18:12 - 00000177 _____ C:\Users\Angus\Desktop\avgrep.txt
2013-12-04 18:12 - 2013-12-03 22:52 - 00000000 ____D C:\Users\Angus\AppData\Local\Avg2014
2013-12-03 23:01 - 2013-12-03 20:30 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Edpyuq
2013-12-03 23:00 - 2013-11-26 18:23 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Xao
2013-12-03 22:57 - 2013-12-03 20:30 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Ukusci
2013-12-03 22:55 - 2013-12-03 22:55 - 00000000 ____D C:\Users\Angus\AppData\Roaming\AVG2014
2013-12-03 22:54 - 2013-12-03 22:54 - 00000965 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-12-03 22:54 - 2013-12-03 22:54 - 00000000 ___HD C:\$AVG
2013-12-03 22:54 - 2013-09-27 17:10 - 00000000 ____D C:\ProgramData\AVG2014
2013-12-03 22:52 - 2013-12-03 22:52 - 04435768 _____ (AVG Technologies) C:\Users\Angus\Downloads\avg_avct_stb_all_2014_4259_cm10.exe
2013-12-03 22:34 - 2013-12-03 22:34 - 00025584 _____ C:\Users\Angus\Desktop\dds.txt
2013-12-03 22:34 - 2013-12-03 22:34 - 00021830 _____ C:\Users\Angus\Desktop\attach.txt
2013-12-03 22:32 - 2013-12-03 22:32 - 00688992 ____R (Swearware) C:\Users\Angus\Downloads\dds.scr
2013-12-03 22:10 - 2013-12-03 22:10 - 22791896 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\Windows-KB890830-x64-V5.6 (1).exe
2013-12-03 22:06 - 2013-12-03 22:05 - 22791896 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\Windows-KB890830-x64-V5.6.exe
2013-12-03 21:58 - 2013-12-03 21:58 - 03617248 _____ (WinZip International LLC ) C:\Users\Angus\Downloads\wzro18.exe
2013-12-03 21:58 - 2013-12-03 21:58 - 00001126 _____ C:\Users\Public\Desktop\WinZip Registry Optimizer.lnk
2013-12-03 21:58 - 2013-12-03 21:58 - 00000290 _____ C:\Windows\Tasks\Registry Optimizer.job
2013-12-03 21:58 - 2013-12-03 21:58 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Nico Mak Computing
2013-12-03 21:58 - 2013-12-03 21:58 - 00000000 ____D C:\Program Files (x86)\WinZip Registry Optimizer
2013-12-03 21:20 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\system32\NDF
2013-12-03 21:20 - 2005-01-01 01:40 - 01794024 _____ C:\Windows\WindowsUpdate.log
2013-12-03 21:02 - 2012-07-09 16:58 - 00000000 ____D C:\ProgramData\McAfee
2013-12-03 20:30 - 2013-12-03 20:30 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp
2013-12-03 20:30 - 2013-12-03 20:30 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp
2013-12-03 20:30 - 2011-10-26 11:44 - 00000000 ___RD C:\Users\Angus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-03 11:03 - 2013-12-03 11:03 - 00000222 _____ C:\Users\Angus\Desktop\State of Decay.url
2013-12-03 11:03 - 2011-11-01 08:31 - 00000000 ____D C:\Users\Angus\Documents\Outlook Files
2013-11-30 20:37 - 2009-07-14 05:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:35 - 2009-07-14 03:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-30 20:33 - 2013-11-30 20:32 - 15182336 _____ C:\Users\Angus\Downloads\MicrosoftCodecPack_amd64.msi
2013-11-30 20:31 - 2012-12-23 18:47 - 00000000 ____D C:\Users\Angus\AppData\Roaming\vlc
2013-11-30 20:27 - 2012-12-28 16:10 - 00088064 ___SH C:\Users\Angus\Desktop\Thumbs.db
2013-11-30 08:22 - 2013-01-31 21:27 - 00412643 _____ C:\Windows\DirectX.log
2013-11-29 23:00 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\rescache
2013-11-29 20:24 - 2011-10-26 19:45 - 00000000 ____D C:\Users\Angus\AppData\Roaming\TS3Client
2013-11-29 18:36 - 2012-07-29 20:24 - 00000000 ____D C:\Users\Angus\AppData\Local\ArmA 2 OA
2013-11-29 17:55 - 2013-10-15 17:32 - 00000000 ____D C:\Users\Angus\AppData\Roaming\DisplayFusion
2013-11-29 17:55 - 2011-10-26 11:44 - 00001413 _____ C:\Users\Angus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-29 17:52 - 2012-05-07 21:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-29 17:50 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-29 05:59 - 2013-11-29 05:56 - 00007582 _____ C:\Windows\IE11_main.log
2013-11-29 05:57 - 2013-11-29 05:57 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-29 05:57 - 2013-11-29 05:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-29 05:57 - 2013-11-29 05:57 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-29 05:57 - 2013-11-29 05:57 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-29 05:57 - 2013-11-29 05:57 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-29 05:57 - 2013-11-29 05:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-29 05:57 - 2013-11-29 05:57 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-29 05:57 - 2013-11-29 05:57 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-29 05:57 - 2013-11-29 05:57 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-29 05:57 - 2013-11-29 05:57 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-29 05:57 - 2013-11-29 05:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-29 05:57 - 2013-11-29 05:57 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-29 05:57 - 2013-11-29 05:57 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-29 05:54 - 2012-06-14 23:58 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-29 05:54 - 2012-06-14 23:58 - 00000000 ____D C:\ProgramData\Skype
2013-11-29 05:54 - 2012-02-21 16:36 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Skype
2013-11-29 05:53 - 2013-11-29 05:53 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-29 05:53 - 2013-08-29 16:51 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-11-29 05:53 - 2011-11-02 22:08 - 00000000 ____D C:\Program Files\WinRAR
2013-11-29 05:52 - 2013-11-29 05:52 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-29 05:52 - 2011-10-26 12:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-29 05:50 - 2012-04-25 23:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-29 05:50 - 2012-04-25 23:05 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-29 05:50 - 2011-10-26 12:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-29 05:49 - 2013-11-29 05:49 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-29 05:49 - 2011-10-26 16:54 - 00000000 ____D C:\ProgramData\Adobe
2013-11-29 05:49 - 2011-10-26 16:54 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-28 06:06 - 2013-10-15 17:32 - 00001067 _____ C:\Users\Public\Desktop\DisplayFusion.lnk
2013-11-28 06:06 - 2013-10-15 17:31 - 00000000 ____D C:\Users\Angus\Documents\DisplayFusion Backups
2013-11-28 06:06 - 2013-10-15 17:31 - 00000000 ____D C:\Program Files (x86)\DisplayFusion
2013-11-28 06:03 - 2013-11-28 06:03 - 00000000 ____D C:\Users\Alice\AppData\Roaming\SafeKey
2013-11-28 06:03 - 2013-05-13 15:23 - 00000372 _____ C:\Users\Alice\AppData\Roaming\TSSTLiveUpdateConfig.ini
2013-11-27 19:39 - 2011-10-26 11:37 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-27 13:17 - 2012-02-11 19:22 - 00000000 ____D C:\Program Files (x86)\Premiumplay Codec-C
2013-11-26 20:46 - 2013-11-26 19:22 - 00000000 ____D C:\Users\Angus\Documents\Driving Routes
2013-11-26 19:51 - 2013-11-26 18:23 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Kavisof
2013-11-26 19:05 - 2011-10-26 11:44 - 00000000 ____D C:\Users\Angus\AppData\Local\VirtualStore
2013-11-26 19:00 - 2013-11-26 18:58 - 00000000 ____D C:\Program Files (x86)\Microsoft AutoRoute 2011
2013-11-26 18:52 - 2013-11-26 18:51 - 05718872 _____ (Microsoft Corporation) C:\Users\Angus\Downloads\vcredist_x64.exe
2013-11-26 18:50 - 2013-11-26 18:50 - 00000000 ____D C:\Program Files (x86)\MSECache
2013-11-26 18:47 - 2013-11-26 18:44 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-26 18:45 - 2013-11-26 18:45 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-26 18:44 - 2013-11-26 18:44 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-26 18:40 - 2011-10-27 18:55 - 00000000 ____D C:\Users\Angus\AppData\Roaming\GrabIt
2013-11-26 17:51 - 2013-11-26 17:51 - 00608391 _____ C:\Users\Angus\Downloads\autoroute 2011.nzb
2013-11-26 17:43 - 2013-11-26 17:43 - 00000720 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (5).nzb
2013-11-26 17:43 - 2013-11-26 17:43 - 00000718 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (6).nzb
2013-11-26 17:43 - 2013-11-26 17:43 - 00000616 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (4).nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00030975 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar.nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00000616 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (3).nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00000615 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (2).nzb
2013-11-26 17:42 - 2013-11-26 17:42 - 00000607 _____ C:\Users\Angus\Downloads\Microsoft.Autoroute.Euro.2013-LuLZiSO.rar (1).nzb
2013-11-26 17:32 - 2013-11-26 17:32 - 00000503 _____ C:\Users\Angus\Downloads\Microsoft-AutoRoute-ENG.zip.nzb
2013-11-25 21:52 - 2012-11-04 01:36 - 00000000 ____D C:\Program Files (x86)\Full Tilt Poker
2013-11-24 12:48 - 2013-06-21 21:04 - 00000000 ____D C:\Users\Angus\AppData\Local\Arma 3
2013-11-23 08:52 - 2012-03-06 02:18 - 00000000 ____D C:\Program Files (x86)\Free File Opener
2013-11-22 12:55 - 2013-11-22 12:52 - 00000000 ____D C:\Program Files (x86)\SafeKey
2013-11-22 12:39 - 2011-12-08 13:59 - 00001945 _____ C:\Windows\epplauncher.mif
2013-11-22 12:37 - 2013-11-22 12:35 - 00000000 ____D C:\Program Files\stinger
2013-11-22 12:34 - 2013-11-22 12:33 - 05132336 _____ (McAfee, Inc.) C:\Users\Angus\Downloads\McAfeeSetup.exe
2013-11-21 17:48 - 2013-11-21 17:48 - 00000000 ____D C:\Users\Angus\AppData\Local\Sage
2013-11-21 17:48 - 2013-11-12 17:14 - 00000000 ____D C:\ProgramData\Sage
2013-11-20 20:49 - 2013-11-20 20:38 - 00000000 ____D C:\Users\Angus\Downloads\New folder
2013-11-19 18:30 - 2013-11-19 17:11 - 00000000 ____D C:\Users\Angus\Documents\alice art
2013-11-19 10:21 - 2010-11-21 03:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-19 05:56 - 2011-10-28 22:59 - 00000000 ____D C:\Users\Angus\AppData\Local\Adobe
2013-11-18 21:22 - 2013-11-18 21:22 - 00188807 _____ C:\Users\Angus\Downloads\Katy-Perry-Katy-Perry-Prism-Deluxe-Edition-2013.nzb
2013-11-18 21:17 - 2013-11-18 21:17 - 00024006 _____ C:\Users\Angus\Downloads\Katy Perry - Prism (2013) {Deluxe Edition} [HDTracks 24-44,1].par2.nzb
2013-11-17 15:27 - 2011-10-26 18:50 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-17 15:27 - 2011-10-26 16:24 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-17 15:27 - 2011-10-26 16:24 - 00281520 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-17 13:43 - 2013-11-17 13:42 - 03820824 _____ C:\Users\Angus\Downloads\battlelog-web-plugins_2.3.1_125.exe
2013-11-17 13:43 - 2011-10-27 08:05 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-17 13:10 - 2011-12-25 10:40 - 00000000 ____D C:\Users\Alice
2013-11-17 12:57 - 2011-10-28 21:53 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Spotify
2013-11-17 12:57 - 2011-10-28 21:53 - 00000000 ____D C:\Users\Angus\AppData\Local\Spotify
2013-11-15 06:31 - 2013-07-24 17:16 - 00000000 ____D C:\Program Files (x86)\VyprVPN
2013-11-14 20:09 - 2013-11-14 20:09 - 00106870 _____ C:\Users\Angus\Downloads\37149 ncis.801.hdtv-lol.nzb
2013-11-14 20:06 - 2013-11-14 20:06 - 00012675 _____ C:\Users\Angus\Downloads\[kickass.to]ncis.s08e01.spider.and.the.fly.subita.wtrg.torrent
2013-11-14 19:42 - 2013-11-14 19:42 - 00126458 _____ C:\Users\Angus\Downloads\NCIS.Season.8.Episodes.1-24.nzb
2013-11-14 05:17 - 2011-10-26 17:00 - 00000000 ____D C:\Windows\System32\Tasks\Games
2013-11-13 06:34 - 2011-10-27 22:51 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 06:32 - 2013-08-14 21:55 - 00000000 ____D C:\Windows\system32\MRT
2013-11-12 17:19 - 2011-10-26 11:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-12 17:18 - 2013-11-12 17:18 - 00002200 _____ C:\Users\Public\Desktop\Sage 50 Accounts 2009.lnk
2013-11-12 17:18 - 2013-11-12 17:18 - 00000949 _____ C:\Windows\SysWOW64\install.log
2013-11-12 17:17 - 2013-11-12 17:17 - 00000179 _____ C:\Windows\ODBCINST.INI
2013-11-12 17:17 - 2013-11-12 17:17 - 00000129 _____ C:\Windows\ODBC.INI
2013-11-12 17:15 - 2013-11-12 17:14 - 00000000 ____D C:\Program Files (x86)\Sage
2013-11-11 16:20 - 2012-09-28 07:59 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-11-11 16:20 - 2012-09-28 07:59 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search
2013-11-10 12:38 - 2013-11-10 12:38 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-10 12:38 - 2013-11-10 12:37 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-10 12:38 - 2013-11-10 12:37 - 00000000 ____D C:\Program Files\iTunes
2013-11-10 12:38 - 2013-11-10 12:37 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-10 12:37 - 2013-11-10 12:37 - 00000000 ____D C:\Program Files\iPod
2013-11-08 17:41 - 2011-10-27 20:04 - 00000000 ____D C:\Users\Angus\AppData\Roaming\Apple Computer
2013-11-08 17:41 - 2011-10-27 20:04 - 00000000 ____D C:\Users\Angus\AppData\Local\Apple Computer
2013-11-07 17:40 - 2013-11-07 17:40 - 00002086 _____ C:\Users\Public\Desktop\BPT-RTI.lnk
2013-11-07 17:40 - 2013-11-07 17:37 - 00000000 ____D C:\Users\Angus\AppData\Roaming\HMRC
2013-11-07 17:39 - 2013-11-07 17:38 - 39565882 _____ C:\Users\Angus\Downloads\payetools-rti-13.2.13232.64-win-assistive.zip
2013-11-07 17:39 - 2013-11-07 17:34 - 00000000 ____D C:\Program Files (x86)\HMRC
2013-11-07 17:32 - 2013-11-07 17:32 - 33449580 _____ C:\Users\Angus\Downloads\payetools-windows.zip
2013-11-07 16:00 - 2011-10-26 11:18 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-07 15:22 - 2012-07-12 18:36 - 00018944 ___SH C:\Users\Angus\Thumbs.db
2013-11-07 15:21 - 2013-11-07 15:21 - 00269824 ___SH C:\Users\Angus\Documents\Thumbs.db

ZeroAccess:
C:\$Recycle.Bin\S-1-5-21-553059231-2350577800-3689227057-1000\$cace57f966d54ffb995c677291919beb

Files to move or delete:
====================
C:\ProgramData\TGFBRPALCBNG.exe
C:\Users\Angus\BAFsetup.exe


Some content of TEMP:
====================
C:\Users\Alice\AppData\Local\Temp\DivXSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 00:03

==================== End Of Log ============================
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 3:01 am

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2013 01
Ran by Angus at 2013-12-07 06:44:17
Running from C:\Users\Angus\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

AC3File 0.6b (x32 Version: 0.6b)
AC3Filter 1.63b (x32 Version: 1.63b)
Accounts (x32 Version: 15.0.11.159)
Acrobat.com (x32 Version: 1.6.65)
Adobe AIR (x32 Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.152)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader XI (11.0.04) (x32 Version: 11.0.04)
Advanced Tactical Center™ 1.0 (x32 Version: 1.0.0.0)
AI Suite II (x32 Version: 1.01.14)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
AMD Wireless Display v3.0 (Version: 1.0.0.10)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
Application Profiles (x32 Version: 2.0.4315.34200)
applicationupdater (HKCU)
Arma 2 British Armed Forces Uninstall (x32)
ARMA 2 Operation Arrowhead Uninstall (x32)
ArmA 2 Uninstall (x32)
Arma 3 Alpha (x32)
ARMA 3 Launcher By Head (x32 Version: 1.0.0.0)
ArmA II Launcher (x32 Version: 1.4.1.0)
Arma: Cold War Assault (x32)
Assassin's Creed Brotherhood (x32 Version: 1.00)
ASUS Ai Charger (x32 Version: 1.00.09)
ATI AVIVO64 Codecs (Version: 10.10.0.40918)
ATI Problem Report Wizard (Version: 3.0.745.0)
Audacity 1.2.6 (x32)
Audacity 1.3.14 (Unicode) (x32)
AVG 2014 (Version: 14.0.3658)
AVG 2014 (Version: 14.0.4259)
AVG 2014 (Version: 2014.0.4259)
AVG Security Toolbar (x32 Version: 17.1.2.1)
AviSynth 2.5 (x32)
Basic PAYE Tools - Real Time Information (x32 Version: 13.2.13232.64)
Battlefield 1942™ (x32 Version: 1.6.20.0)
Battlefield 2(TM) (x32)
Battlefield 2142 Deluxe Edition (x32 Version: 1.5.1.0)
Battlefield 3™ (x32 Version: 1.4.0.0)
Battlefield 4™ Beta (x32 Version: 1.0.0.0)
Battlefield Heroes (x32)
Battlefield: Bad Company™ 2 (x32 Version: 1.0.0.0)
Battlelog Web Plugins (x32 Version: 2.3.1)
BattlEye for OA Uninstall (x32)
BattlEye Uninstall (x32)
Bigasoft iPad Video Converter 3.4.3.4196 (x32)
Bing Bar (x32 Version: 7.0.619.0)
Bing Desktop (x32 Version: 1.3.174.0)
Blacklight: Retribution (x32)
Bonjour (Version: 3.0.0.10)
Browser Configuration Utility (x32 Version: 1.0.10.0)
calibre (x32 Version: 1.5.0)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0)
Call of Duty(R) - World at War(TM) (x32 Version: 1.7)
Call of Duty(R) - World at War(TM) 1.2 Patch (x32 Version: 1.2)
Call of Duty(R) - World at War(TM) 1.2 Patch (x32)
Call of Duty(R) - World at War(TM) 1.4 Patch (x32 Version: 1.4)
Call of Duty(R) - World at War(TM) 1.4 Patch (x32)
Call of Duty(R) - World at War(TM) 1.5 Patch (x32 Version: 1.5)
Call of Duty(R) - World at War(TM) 1.5 Patch (x32)
Call of Duty(R) - World at War(TM) 1.6 Patch (x32 Version: 1.6)
Call of Duty(R) - World at War(TM) 1.6 Patch (x32)
Call of Duty(R) - World at War(TM) 1.7 Patch (x32 Version: 1.7)
Call of Duty(R) - World at War(TM) 1.7 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32)
Call of Duty: Black Ops - Multiplayer (x32)
Call of Duty: Black Ops (x32)
Call of Duty: Modern Warfare 2 - Multiplayer (x32)
Call of Duty: Modern Warfare 2 (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.0214.2218.39913)
Catalyst Control Center (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0214.2218.39913)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2012.0214.2218.39913)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (x32 Version: 2012.0214.2218.39913)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2012.0214.2217.39913)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2012.0214.2218.39913)
ccc-utility64 (Version: 2013.0328.2218.38225)
CCleaner (Version: 3.12)
Crysis Warhead (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.48.1.0347)
DayZ Commander (x32 Version: 1.09.70)
dBpoweramp Music Converter (x32 Version: Release 14.4)
DC Software 2 (x32)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Digital Combat Simulator: A-10C Warthog (x32)
DisplayFusion 5.1.1 (x32 Version: 5.1.1.0)
DivX Setup (x32 Version: 2.6.1.24)
Downloader (x32)
Driver Sweeper version 3.2.0 (x32 Version: 3.2.0)
EPSON Attach To Email (x32 Version: 1.01.0000)
Epson Easy Photo Print 2 (x32 Version: 2.2.3.1)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (x32 Version: 1.00.0000)
EPSON File Manager (x32 Version: 1.3.2.0)
Epson Print CD (x32 Version: 2.00.00)
EPSON Printer Software
EPSON Scan Assistant (x32 Version: 1.10.00)
erLT (x32 Version: 1.20.0137)
ESN Sonar (x32 Version: 0.70.3)
ESN Sonar (x32 Version: 0.70.4)
F1 2012 (x32)
Farming Simulator 2013 (x32 Version: 1.0)
Free File Opener (x32 Version: 2011.8.0.0)
Free Video Joiner (x32)
Full Tilt Poker (x32 Version: 4.46.1.WIN.FullTilt.COM)
FW LiveUpdate (x32 Version: 3.0.1.2)
gamelauncher-ps2-live (HKCU)
gamelauncher-ps2-psg (HKCU)
Google Chrome (HKCU Version: 31.0.1650.63)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.22.3)
GrabIt 1.7.2 Beta 6 (build 1008) (x32)
High-Definition Video Playback (x32 Version: 7.1.13500.43.0)
Hitman 2: Silent Assassin (x32)
HydraVision (x32 Version: 4.2.114.0)
I Am Alive (x32)
iCloud (Version: 3.0.2.163)
IL-2 Sturmovik: Forgotten Battles (x32 Version: 1.00.0000)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) Network Connections 15.6.25.0 (Version: 15.6.25.0)
Intel(R) Rapid Storage Technology (x32 Version: 10.1.0.1008)
Intel® Watchdog Timer Driver (Intel® WDT) (x32)
Internet TV for Windows Media Center (x32 Version: 4.2.2.0)
iTunes (Version: 11.1.3.8)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Java(TM) 7 Update 5 (64-bit) (Version: 7.0.50)
JMicron JMB36X Driver (x32 Version: 1.17.58.2)
Junk Mail filter update (x32 Version: 16.4.3505.0912)
LAME v3.99.3 (for Windows) (x32)
M1 Tank Platoon II (x32)
Mafia II (x32)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
marvell 91xx driver (x32 Version: 1.0.0.1051)
McAfee SafeKey(uninstall only) (x32)
Medal of Honor (TM) (x32 Version: 1.0.0.0)
Metro 2033 (x32)
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Access database engine 2010 (English) (x32 Version: 14.0.6029.1000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft AutoRoute 2011 (x32 Version: 18.0.29.2700)
Microsoft Camera Codec Pack (Version: 16.4.1970.0624)
Microsoft Combat Flight Simulator (x32)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (x32 Version: 14.0.5120.5000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (HKCU Version: 17.0.2015.0811)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mimo (x32 Version: 0.2.5)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 25.0.1 (x86 en-GB) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
Mozilla Thunderbird (8.0) (x32 Version: 8.0 (en-GB))
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
n52te Editor (x32 Version: 5.01)
Nero 10 Menu TemplatePack Basic (x32 Version: 10.2.10000.0.0)
Nero 10 Movie ThemePack Basic (x32 Version: 10.2.10000.0.0)
Nero BurnRights 10 (x32 Version: 4.2.10500.1.102)
Nero Control Center 10 (x32 Version: 10.2.11100.1.1)
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.5.10000)
Nero Core Components 10 (x32 Version: 2.0.17800.8.5)
Nero CoverDesigner 10 (x32 Version: 5.2.11400.11.100)
Nero DiscSpeed 10 (x32 Version: 6.2.10500.2.100)
Nero Express 10 (x32 Version: 10.2.11500.17.100)
Nero InfoTool 10 (x32 Version: 7.2.10400.5.100)
Nero MediaHub 10 (x32 Version: 1.2.12900.31.100)
Nero Multimedia Suite 10 Essentials (x32 Version: 10.5.10000)
Nero Recode 10 (x32 Version: 4.8.10400.3.100)
Nero StartSmart 10 (x32 Version: 10.2.11300.12.100)
Nero Update (x32 Version: 11.0.10623.22.0)
Nero Vision 10 (x32 Version: 7.2.15100.15.100)
NVIDIA PhysX (x32 Version: 9.10.0513)
NZBEE (x32 Version: 1.5.0.0)
OpenAL (x32)
OpenVPN 2.2.2 (x32 Version: 2.2.2)
Origin (x32 Version: 8.5.0.4554)
Pando Media Booster (x32 Version: 2.6.0.1)
PartyPoker (x32)
Photo Common (x32 Version: 16.4.3505.0912)
Photo Gallery (x32 Version: 16.4.3505.0912)
PlanetSide 2 (HKCU Version: 1.0.3.181)
Play withSIX (x32 Version: 1.00.0102)
Portal (x32)
Portal 2 (x32)
Portal 2 Publishing Tool (x32)
Premiumplay Codec-C (x32 Version: 1.6.146.147)
PunkBuster Services (x32 Version: 0.993)
QuickTime (x32 Version: 7.74.80.86)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6235)
Red Faction: Armageddon (x32)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0)
S.T.A.L.K.E.R. - Clear Sky (x32 Version: 1.0001)
Sage 50 Accounts 2009 (x32 Version: 15.0.11.159)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Six Updater (x32 Version: 2.09.7038)
Skype Click to Call (x32 Version: 5.9.9216)
Skype™ 6.11 (x32 Version: 6.11.102)
Smart Technology Programming Software 7.0.0.27 (Version: 7.0.0.27)
Sniper Elite V2 (x32)
Spotify (HKCU Version: 0.9.1.57.ge7405149)
Spybot - Search & Destroy (x32 Version: 2.2.25)
Star Trek Online (x32)
State of Decay (x32)
Steam (x32 Version: 1.0.0.0)
TeamSpeak 3 Client (Version: 3.0.13.1)
TeamViewer 7 (x32 Version: 7.0.12979)
TechPowerUp GPU-Z (x32)
The Elder Scrolls V: Skyrim (x32)
Tomb Raider III: Adventures of Lara Croft (x32)
Tomb Raider: Chronicles (x32)
TomTom HOME (x32 Version: 2.9.5)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)
TSST OEM Content (x32 Version: 10.0.10300.0.0)
ubi.com (x32)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Universal AntiCheat 3 v1.060 (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2494150) (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Videora iPod Converter 6 (x32 Version: 6)
Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1)
VLC media player 2.1.1 (x32 Version: 2.1.1)
VyprVPN (x32 Version: 1.4.1.601)
War Thunder Launcher 1.0.1.252 (x32)
Warhammer 40,000 Space Marine (x32)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Family Safety (Version: 16.4.3505.0912)
Windows Live Family Safety (x32 Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Mail (x32 Version: 16.4.3505.0912)
Windows Live Messenger (x32 Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
Windows Live Writer (x32 Version: 16.4.3505.0912)
Windows Live Writer Resources (x32 Version: 16.4.3505.0912)
Windows Media Center Add-in for Silverlight (x32 Version: 4.7.3.0)
WinRAR 5.00 (64-bit) (Version: 5.00.0)
WinRAR Free Download Packages (HKCU)
WinZip Registry Optimizer (x32 Version: 1.0)
YouTube Downloader App 3.00 (x32 Version: 3.00)

==================== Restore Points =========================

22-11-2013 12:11:02 Removed AVG 2014
22-11-2013 12:15:30 Removed AVG 2014
26-11-2013 18:47:09 Device Driver Package Install: DT Soft Ltd System devices
26-11-2013 18:55:47 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
26-11-2013 18:56:10 Removed Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
26-11-2013 18:57:26 Removed Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
26-11-2013 18:58:35 Installed Microsoft AutoRoute 2011
27-11-2013 06:22:07 Windows Update
27-11-2013 21:44:43 Windows Update
29-11-2013 05:47:50 McAfee Vulnerability Scanner
29-11-2013 05:55:49 Windows Update
30-11-2013 08:20:57 Installed DirectX
30-11-2013 20:33:43 Installed Microsoft Camera Codec Pack
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 3:01 am

==================== Hosts content: ==========================

2009-07-14 02:34 - 2013-03-02 14:49 - 00446020 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.10sek.com
127.0.0.1 10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 www.123fporn.info
127.0.0.1 123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {0413D9B0-BAD8-4AFB-939F-CAAE1807191F} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {089641E2-E507-4FD1-8B97-47A39266F833} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {0D1F9E4D-B2E2-408F-9023-C10997C0F1AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-08] (Google Inc.)
Task: {158CD2C1-F088-45A1-9E70-C22EC2C96582} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {163E3478-796E-49B3-AF08-FB5262834F80} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000UA => C:\Users\Angus\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-16] (Google Inc.)
Task: {17CBE584-9FC1-40FD-B397-677D75969F26} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-08] (Google Inc.)
Task: {1DDA74FA-B194-430C-AA10-376E0EE3CEE3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000Core => C:\Users\Angus\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-16] (Google Inc.)
Task: {334A62EC-75E7-4523-B57C-810620978D19} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-26] (ASUSTeK Computer Inc.)
Task: {34B90DB8-9413-42AB-9660-0E327C18009C} - System32\Tasks\{4285AC91-7810-4856-9A9C-76D7FF31701D} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe [2011-03-15] ()
Task: {43A59F94-AB3D-4F6A-A4C0-73F002F5953A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5A025651-B211-400C-9A55-0DFAA4566D76} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-29] (Adobe Systems Incorporated)
Task: {5AC1977E-8198-4841-ADF7-E3F5B3174254} - System32\Tasks\{E9C48B5D-805D-4748-977E-383CCEC4C049} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2011-11-05] (Mozilla Messaging)
Task: {67E4BF4C-B2A8-4D91-9E0A-D08FF1B3FA90} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {6B0B6CF3-4B69-47B7-9180-3A128B0C30C6} - System32\Tasks\VyprVPN => C:\Program Files (x86)/VyprVPN\VyprVPN.exe [2012-11-02] (GoldenFrog)
Task: {6EFC6164-CF26-4FF8-AA9F-01F0A3AFBB42} - System32\Tasks\ASUS\ASUS DigiVRM Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe [2010-10-12] (ASUSTeK Computer Inc.)
Task: {742999A6-8FC0-47FA-AFEE-E71563E9D2A4} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
Task: {B8249293-C9C8-46A2-BCF4-C44F4121AE42} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP\{D767EFF4-3906-49DD-AD01-FD14B77CF1F3}.exe
Task: {C1261270-0DFF-4D9B-9526-C238BAA5DCB6} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01] (Microsoft Corporation)
Task: {CEEB115B-0C7D-411C-8696-28AFEDD834C4} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {FC0EA771-C046-45C4-A9C5-ECE7DC909F93} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-553059231-2350577800-3689227057-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{D767EFF4-3906-49DD-AD01-FD14B77CF1F3}.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000Core.job => C:\Users\Angus\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-553059231-2350577800-3689227057-1000UA.job => C:\Users\Angus\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Registry Optimizer.job => C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (whitelisted) =============

2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2011-09-27 06:23 - 2011-09-27 06:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 06:22 - 2011-09-27 06:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-10-26 16:39 - 2013-12-05 18:40 - 00025088 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.13\PEbiosinterface32.dll
2011-10-26 16:39 - 2010-06-29 02:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.13\ATKEX.dll
2013-03-12 17:10 - 2013-11-06 21:48 - 00691200 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2011-10-26 19:07 - 2013-12-04 02:51 - 01135016 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2011-10-26 19:07 - 2013-11-06 21:48 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2012-03-15 07:46 - 2013-06-14 23:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-03-15 07:46 - 2013-06-14 23:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-03-15 07:46 - 2013-06-14 23:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-07-03 18:16 - 2010-07-08 18:34 - 00159744 _____ () C:\Program Files (x86)\DC Software 2\ImgHdlr.dll
2012-07-03 18:16 - 2010-04-05 10:21 - 00061952 _____ () C:\Program Files (x86)\DC Software 2\zlib.dll
2009-06-27 09:11 - 2009-06-27 09:11 - 00503202 _____ () C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
2013-11-11 16:20 - 2013-11-11 16:20 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\log4cplusU.dll
2013-11-11 16:20 - 2013-11-11 16:20 - 00142360 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.2\SiteSafety.dll
2013-02-13 02:38 - 2013-02-13 02:38 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2013-12-04 18:25 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-12-04 18:25 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2011-10-26 16:42 - 2009-05-21 02:14 - 00053248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2011-10-26 16:42 - 2009-05-21 09:14 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2011-10-26 16:39 - 2010-12-02 16:28 - 00143360 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2011-10-26 16:39 - 2010-06-21 14:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2011-10-26 16:39 - 2009-08-12 19:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2011-10-26 16:40 - 2010-10-15 16:40 - 01031680 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll
2011-10-26 16:39 - 2010-11-19 09:53 - 00963584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2011-10-26 16:41 - 2010-11-04 17:30 - 01245184 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2011-10-26 16:39 - 2010-09-27 19:51 - 00881664 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2011-10-26 16:39 - 2010-09-27 19:51 - 01607168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2011-10-26 16:39 - 2010-11-19 09:55 - 01246208 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2011-10-26 16:39 - 2010-08-06 17:11 - 00850944 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2011-10-26 16:39 - 2010-08-06 17:13 - 00886272 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2011-10-26 16:42 - 2011-01-04 09:37 - 00651264 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Thermal Radar\ThermalRadar.dll
2011-10-26 16:39 - 2010-08-23 02:17 - 00662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMLib.dll
2011-10-26 16:39 - 2010-06-21 14:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll
2013-08-15 16:42 - 2013-08-15 16:42 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\eb4812681f6ab4406053f3a1803e6da0\IsdiInterop.ni.dll
2011-10-26 11:03 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2013-12-05 22:52 - 2013-12-04 02:47 - 00702416 _____ () C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-05 22:52 - 2013-12-04 02:47 - 00099792 _____ () C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-05 22:52 - 2013-12-04 02:48 - 04055504 _____ () C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-05 22:52 - 2013-12-04 02:48 - 00399312 _____ () C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-05 22:52 - 2013-12-04 02:47 - 01619408 _____ () C:\Users\Angus\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Faulty Device Manager Devices =============

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Virtual Hid Device
Description: Virtual Hid Device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Belkin
Service: vhidmini
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/05/2013 11:44:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (12/05/2013 06:41:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/05/2013 05:19:56 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/05/2013 05:11:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/05/2013 04:43:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/04/2013 07:01:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/04/2013 06:13:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 11:04:13 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:58:01 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:54:18 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\msiexec.exe /V; Description = Installed AVG 2014; Error = 0x8007043c).


System errors:
=============
Error: (12/05/2013 06:43:17 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (12/05/2013 06:42:47 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422

Error: (12/05/2013 06:42:47 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422

Error: (12/05/2013 06:42:47 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422

Error: (12/05/2013 06:42:47 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422

Error: (12/05/2013 06:42:23 PM) (Source: Service Control Manager) (User: )
Description: The Spybot-S&D 2 Updating Service service failed to start due to the following error:
%%1053

Error: (12/05/2013 06:42:23 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Updating Service service to connect.

Error: (12/05/2013 06:41:52 PM) (Source: Service Control Manager) (User: )
Description: The Airprint service failed to start due to the following error:
%%2

Error: (12/05/2013 06:41:30 PM) (Source: Service Control Manager) (User: )
Description: The Spybot-S&D 2 Security Center Service service depends on the Security Center service which failed to start because of the following error:
%%1058

Error: (12/05/2013 06:41:30 PM) (Source: Service Control Manager) (User: )
Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:
%%1053


Microsoft Office Sessions:
=========================
Error: (12/05/2013 11:44:34 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (12/05/2013 06:41:59 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/05/2013 05:19:56 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/05/2013 05:11:44 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/05/2013 04:43:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/04/2013 07:01:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/04/2013 06:13:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 11:04:13 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:58:01 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/03/2013 10:54:18 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\msiexec.exe /VInstalled AVG 20140x8007043c


==================== Memory info ===========================

Percentage of memory in use: 28%
Total physical RAM: 8159.14 MB
Available physical RAM: 5802.41 MB
Total Pagefile: 16316.46 MB
Available Pagefile: 11745.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:155.18 GB) NTFS
Drive d: (SageAccounts2009) (CDROM) (Total:0.59 GB) (Free:0 GB) CDFS
Drive e: (ARX_2011) (CDROM) (Total:2.3 GB) (Free:0 GB) UDF
Drive i: (External) (Fixed) (Total:931.51 GB) (Free:407.41 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F0DD6AA3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 932 GB) (Disk ID: 000BFEBC)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

==================== End Of Log ============================
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 3:10 am

I had to use microsoft's Windows Repair and Recovery to get the firewall to start after I'd used AVG, Malawarebytes
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby Dakeyras » December 7th, 2013, 5:20 am

Hi,

I have bad news I'm afraid. :(

One or more of the identified infections is the extremely severe Zero Access Rootkit plus undoubtedly other comprising malware!

OK since we are dealing with the aforementioned infection(s) I would be providing your good self with a disservice if I did not make you aware of the ramifications below:

This allows hackers to remotely control your computer, steal critical system information and Download and Execute files.

I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Although an attempt could be made to clean this machine, it could never be considered to be truly clean, secure, or trustworthy. We could not say definitively that unknown and unseen malware will have been removed, nor will your system be restored to its pre-infection state. We cannot remedy unknown changes the malware may likely have made in order to allow itself access, nor can we repair the damage it may possibly have caused to vital system files. Additionally, it is quite possible that changes made to the system by the malware may impact negatively on your computer during the removal process. In short, your system may never regain its former stability or its full functionality without a reformat. Therefore, your best and safest course of action is a reformat and reinstallation of the Windows Operating System, and that is the course we strongly recommend.

Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?

When Should I Format, How Should I Reinstall

I can attempt to clean this machine(anything I try may not be successful) but I cannot guarantee that it will be at all secure afterwards.

Should you have any questions, please feel free to ask.

Please let myself know what you have decided to do in your next post.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby TiredTrooper » December 7th, 2013, 1:35 pm

Thanks Dakeyras,

I'll reformat it immediately.

Will all the malware be gone afterwards or will it be in my bios aswell ?

My son has his pc connected to my router using sockets plugged into the house wiring. My wife and daughter also have lap tops which use wi fi. Will theses computers be infected as well ?
TiredTrooper
Regular Member
 
Posts: 32
Joined: March 10th, 2009, 11:34 am

Re: " Futurro Antivirus "pop up malware won't let me do anyt

Unread postby Dakeyras » December 8th, 2013, 5:41 am

Hi. :)

Thanks Dakeyras,

I'll reformat it immediately.

You're welcome and a wise decision, if it was one of my own machines I would not hesitate to follow my own advice.

Will all the malware be gone afterwards or will it be in my bios aswell ?

Indeed it should be if you carry out a reformat and reinstallation of the Windows Operating System. The BIOS(basic input outpoint system) chip's firmware of your machine has not been compromised at this time.

My son has his pc connected to my router using sockets plugged into the house wiring. My wife and daughter also have lap tops which use wi fi. Will theses computers be infected as well ?

There is no indication the TCPIP(transmission control protocol-internet protocol) stack of your machine has been compromised...

Unless your machine, wife and daughter's are set up in a actual LAN(local area network) to share files, nothing to worry about from a security point of view. The below link is worth reading:-

Securing Your Router

As is this: Computer Security - a short guide to staying safer online

Next:

Any questions? Feel free to ask, if not stay safe!
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 58 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware