Logs as requested thank you:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-02-2014 01
Ran by makem (administrator) on NEWLAPPY on 11-02-2014 10:46:47
Running from D:\My Profile\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Trusteer Ltd.) C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
() C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Trusteer Ltd.) C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(中国工商银行) C:\Windows\System32\hhukcert02.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Program Files\Allway Sync\Bin\syncappw.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
(Firetrust Ltd) C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe
() C:\Program Files\DigiGuide TV Guide\digiguide.exe
(Microsoft) C:\Program Files\Microsoft AutoRoute 2010\StreetsOlkShim.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [480608 2009-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [55160 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [521528 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [OutpostFeedBack] - C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe [491272 2011-02-04] (Agnitum Ltd.)
HKLM\...\Run: [OutpostMonitor] - C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe [2898592 2011-02-04] (Agnitum Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [ITSecMng] - C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [80840 2011-04-01] (TOSHIBA CORPORATION)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2408176 2013-02-06] (Synaptics Incorporated)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [2296600 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [IJNetworkScannerSelectorEX] - C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [449168 2012-03-26] (CANON INC.)
HKLM\...\Run: [hhukcert02] - C:\Windows\system32\hhukcert02.exe [109400 2011-10-11] (中国工商银行)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12017368 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] - C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM\...\Run: [RUSB3MON] - C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-19\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2971882474-1144138496-3696702083-1001\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20585120 2013-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-2971882474-1144138496-3696702083-1001\...\Run: [Allway Sync] - C:\Program Files\Allway Sync\Bin\syncappw.exe [94416 2013-10-10] ()
HKU\S-1-5-21-2971882474-1144138496-3696702083-1001\...\Run: [AlcoholAutomount] - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-2971882474-1144138496-3696702083-1001\...\MountPoints2: {b076a430-2c69-11e3-bcad-00a0d1536ebf} - I:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
Startup: C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DigiGuide TV Guide.lnk
ShortcutTarget: DigiGuide TV Guide.lnk -> C:\Program Files\DigiGuide TV Guide\Client.exe (GipsyMedia Limited)
Startup: C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MailWasherPro.lnk
ShortcutTarget: MailWasherPro.lnk -> C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe (Firetrust Ltd)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.duba.com/?f=1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.duba.com/?f=1
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
BHO: No Name - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: ICBC Anti-Phishing class - {BB4491A2-D11A-4c6b-91C0-B53246A3122B} - C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\Icbc_AntiPhishing.dll (中国工商银行)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {0EB487C8-E9AC-43A6-8C4C-083999B0622F} https://mybank.icbc.com.cn/icbc/newperbank/certInStall.dll
DPF: {3D14998A-4CFB-4FC8-A98D-A24F05E4ED88} https://mybank.icbc.com.cn/icbc/icbc_bhdc2vdv.cab
DPF: {5AB9367B-DD7F-411D-A030-DF7DE5E17AAE} http://securitycheck.icbc.com.cn/download/NetBankSecurity_cn.cab
DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} https://mybank.icbc.com.cn/icbc/newperbank/AxSafeControls.cab
DPF: {B1FBC1AD-5644-4084-882A-0F8BA85E7506} https://mybank.icbc.com.cn/icbc/ICBC_NetSign.dll
DPF: {B219E31C-E110-4638-AF01-7BDD5ACA552C} https://mybank.icbc.com.cn/icbc/ICBCQPK_HH.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\makem\AppData\Roaming\Mozilla\Firefox\D:\My Profile\Firefox Profile
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @icbc.com.cn/npicbc_hh_usbkey2gchinese - C:\Program Files\ICBCEbankTools\ICBCEbankPlugin\npicbc_hh_usbkey2gchinese.dll (北京华虹电子系统有限责任公司)
FF Plugin: @icbc.com.cn/npicbc_infosec_certenroll - C:\Program Files\ICBCEbankTools\ICBCEbankPlugin\npicbc_infosec_certenroll.dll ()
FF Plugin: @icbc.com.cn/npicbc_infosec_netsign - C:\Program Files\ICBCEbankTools\ICBCEbankPlugin\npicbc_infosec_netsign.dll ( )
FF Plugin: @icbc/icbc_ms_npClCache,Version=1.0.0.2 - C:\Program Files\ICBCEbankTools\FirefoxPlugins\npClCache.dll ()
FF Plugin: @icbc/icbc_ms_npClientBinding,Version=1.0.0.2 - C:\Program Files\ICBCEbankTools\FirefoxPlugins\npClientBinding.dll ( )
FF Plugin: @icbc/icbc_ms_npFullScreen,Version=1.0.0.2 - C:\Program Files\ICBCEbankTools\FirefoxPlugins\npFullScreen.dll ()
FF Plugin: @icbc/icbc_ms_npsubmit,Version=1.0.0.7 - C:\Program Files\ICBCEbankTools\FirefoxPlugins\npsubmit.dll ( )
FF Plugin: @icbc/icbc_ms_npxxin,Version=1.0.0.8 - C:\Program Files\ICBCEbankTools\FirefoxPlugins\npxxin.dll ( )
FF Plugin: @icbc/npAssistComm,Version=1.0.0.1 - C:\Program Files\ICBCEbankTools\ICBCSetupIntegration\npAssistComm.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @kingsfot.com/npkws - c:\program files\kingsoft\ijinshan_antivierus2013\npkws.dll No File
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-10-04]
========================== Services (Whitelisted) =================
S3 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [804528 2010-12-06] (Acronis)
R2 acssrv; C:\Program Files\Agnitum\Outpost Firewall Pro\acs.exe [2040144 2011-02-04] (Agnitum Ltd.)
S3 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2013-10-01] (Acronis)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S2 AxAutoMntSrv; C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
S3 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [250712 2013-11-08] (Garmin Ltd or its subsidiaries)
R2 ICBC Daemon Service; C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe [422536 2013-06-14] ()
S3 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
S4 kxescore; "c:\program files\kingsoft\ijinshan_antivierus2013\kxescore.exe" /service kxescore [X]
==================== Drivers (Whitelisted) ====================
R1 afw; C:\Windows\System32\DRIVERS\afw.sys [34920 2010-04-20] (Agnitum Ltd.)
R3 afwcore; C:\Windows\System32\drivers\afwcore.sys [328296 2010-09-27] (Agnitum Ltd.)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32408 2011-07-07] (Google Inc)
R3 ASWFilt; C:\Windows\system32\Filt\ASWFilt.dll [72352 2011-02-02] (Agnitum Ltd.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 icbckeyflt2; C:\Windows\icbckeyflt.sys [35184 2012-11-16] (ICBC)
S3 ksapi; C:\Windows\system32\drivers\ksapi.sys [85352 2014-02-02] (Kingsoft Corporation)
R3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [42264 2013-05-23] (Logitech, Inc.)
R3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [10136 2013-05-23] (Logitech, Inc.)
R3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6639616 2010-10-07] (Intel Corporation)
R1 RapportCerberus_59849; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_59849.sys [340432 2013-10-27] ()
S3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [91016 2012-08-27] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [181128 2012-08-27] (Renesas Electronics Corporation)
R1 SandBox; C:\Windows\system32\drivers\SandBox.sys [710824 2011-02-02] (Agnitum Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-01-06] (Duplex Secure Ltd.)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [113688 2011-09-13] (ZTE Incorporated)
S3 zghsmdm; C:\Windows\System32\DRIVERS\zghsmdm.sys [113688 2011-09-13] (ZTE Incorporated)
S3 zghsnmea; C:\Windows\System32\DRIVERS\zghsnmea.sys [113688 2011-09-13] (ZTE Incorporated)
U3 a319omhe; C:\Windows\system32\Drivers\a319omhe.sys [0 ] (Microsoft Corporation)
S3 HHVReader; system32\DRIVERS\HHVRdr.sys [X]
S2 kisknl; \??\C:\Windows\system32\drivers\kisknl.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-11 10:46 - 2014-02-11 10:46 - 00000000 ____D () C:\FRST
2014-02-10 15:08 - 2014-02-10 15:08 - 00004608 ___SH () C:\Users\makem\Desktop\Thumbs.db
2014-02-10 00:50 - 2014-02-10 00:50 - 00001158 _____ () C:\Users\makem\Desktop\JRT.txt
2014-02-10 00:36 - 2014-02-10 00:36 - 00000000 ____D () C:\Windows\ERUNT
2014-02-10 00:23 - 2014-02-10 00:27 - 00000000 ____D () C:\AdwCleaner
2014-02-06 18:32 - 2014-02-06 18:32 - 00000000 ____D () C:\Users\makem\AppData\Local\GARMIN_Corp
2014-02-04 17:16 - 2014-02-04 17:16 - 00000000 ____D () C:\Program Files\kingsoft
2014-02-04 01:09 - 2014-02-04 01:09 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-04 00:06 - 2014-02-04 00:06 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Malwarebytes
2014-02-04 00:06 - 2014-02-04 00:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-03 16:54 - 2014-02-03 16:54 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-02-03 16:54 - 2014-02-03 16:54 - 00000000 ____D () C:\Program Files\Trend Micro
2014-02-03 14:27 - 2014-02-03 14:27 - 00007605 _____ () C:\Users\makem\AppData\Local\Resmon.ResmonCfg
2014-02-03 13:53 - 2014-02-03 13:53 - 00143888 _____ () C:\Windows\Minidump\020314-44819-01.dmp
2014-02-03 13:53 - 2014-02-03 13:53 - 00000000 ____D () C:\Windows\Minidump
2014-02-03 13:16 - 2014-02-03 13:16 - 00000000 ____D () C:\Users\makem\AppData\Roaming\AVG2014
2014-02-03 13:15 - 2014-02-03 13:15 - 00000000 ___HD () C:\$AVG
2014-02-03 13:15 - 2014-02-03 13:15 - 00000000 ____D () C:\ProgramData\AVG2014
2014-02-03 13:11 - 2014-02-03 13:20 - 00000000 ____D () C:\Users\makem\AppData\Local\Avg2014
2014-02-03 01:16 - 2014-02-03 01:16 - 00319811 _____ () C:\Users\makem\AppData\Local\census.cache
2014-02-03 01:15 - 2014-02-03 01:15 - 00128601 _____ () C:\Users\makem\AppData\Local\ars.cache
2014-02-03 00:20 - 2014-02-03 00:20 - 00000036 _____ () C:\Users\makem\AppData\Local\housecall.guid.cache
2014-02-02 18:42 - 2014-02-02 18:47 - 00000000 ____D () C:\ProgramData\DriverGenius
2014-02-02 18:21 - 2014-02-02 18:35 - 00085352 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\ksapi.sys
2014-02-02 00:14 - 2014-02-02 00:14 - 00000000 ____D () C:\Windows\Sun
2014-02-02 00:13 - 2014-02-02 00:13 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-02 00:13 - 2014-02-02 00:13 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-02 00:13 - 2014-02-02 00:13 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-02 00:13 - 2014-02-02 00:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\ProgramData\Sun
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\Program Files\Java
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\2C0A
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0C0A
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0C04
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0816
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0804
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0424
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041F
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041E
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041D
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041B
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0419
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0416
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0415
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0414
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0413
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0412
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0411
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0410
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040E
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040D
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040C
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040B
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040A
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0409
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0408
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0407
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0406
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0405
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0404
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0401
2014-01-31 19:20 - 2014-01-31 19:20 - 00000000 ____D () C:\Program Files\Renesas Electronics
2014-01-31 14:08 - 2014-01-31 14:11 - 00000039 _____ () C:\Windows\vbaddin.ini
2014-01-22 20:37 - 2014-01-22 20:37 - 00107256 _____ (Trusteer Ltd.) C:\Windows\system32\Drivers\RapportKELL.sys
2014-01-15 14:15 - 2014-02-02 18:54 - 00003601 _____ () C:\unintall.log
2014-01-15 14:08 - 2014-02-02 18:35 - 00129904 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\knbdrv.sys
2014-01-15 13:42 - 2014-01-15 13:42 - 00000000 ____D () C:\Program Files\LSI SoftModem
2014-01-15 13:42 - 2012-09-20 08:02 - 01425208 _____ (Logitech, Inc.) C:\Windows\system32\LogiLDA.DLL
2014-01-15 13:42 - 2009-07-21 08:24 - 00058888 _____ (LSI Corporation) C:\Windows\agrsmdel.exe
2014-01-15 13:42 - 2009-07-21 06:18 - 01161760 _____ (LSI Corporation) C:\Windows\system32\Drivers\AGRSM.sys
2014-01-15 13:42 - 2009-03-27 10:12 - 00013824 _____ (LSI Corporation) C:\Windows\system32\agrscoin.dll
2014-01-15 13:36 - 2014-02-04 17:35 - 00000030 _____ () C:\Users\makem\AppData\Roaming\fixcfg.ini
2014-01-15 13:31 - 2014-01-15 13:31 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-01-15 13:30 - 2014-01-15 13:30 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-01-15 13:28 - 2013-11-05 19:47 - 02888536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2014-01-15 13:28 - 2013-11-05 15:48 - 00681905 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-01-15 13:28 - 2013-11-04 19:26 - 00124632 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2014-01-15 13:28 - 2013-11-04 11:11 - 02328792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2014-01-15 13:28 - 2013-10-28 17:29 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2014-01-15 13:28 - 2013-10-11 11:31 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-01-15 13:28 - 2013-10-09 20:12 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-01-15 13:28 - 2013-10-07 11:05 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2014-01-15 13:28 - 2013-09-09 15:32 - 05681192 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-01-15 13:28 - 2013-04-24 17:16 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2014-01-15 13:28 - 2012-01-30 11:42 - 00819648 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll
2014-01-15 13:28 - 2012-01-10 10:20 - 00058264 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll
2014-01-15 13:28 - 2011-11-22 16:28 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2014-01-15 13:28 - 2011-09-02 14:21 - 00214368 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2014-01-15 13:28 - 2011-09-02 14:21 - 00074080 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2014-01-15 13:28 - 2011-09-02 14:21 - 00068960 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2014-01-15 13:28 - 2011-03-17 12:16 - 01379760 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-01-15 13:28 - 2011-03-07 17:03 - 00134584 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-01-15 13:28 - 2010-11-08 07:31 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2014-01-15 13:28 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2014-01-15 13:28 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2014-01-15 13:28 - 2010-11-08 07:31 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2014-01-15 13:28 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2014-01-15 13:28 - 2010-11-08 07:31 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2014-01-15 13:28 - 2009-11-24 09:55 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2014-01-15 13:28 - 2009-11-24 09:55 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2014-01-15 13:28 - 2009-11-24 09:55 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2014-01-15 13:28 - 2009-11-24 09:55 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2014-01-15 13:28 - 2009-11-18 18:42 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2014-01-15 13:27 - 2013-11-05 18:55 - 38385664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2014-01-15 13:27 - 2013-10-16 03:43 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2014-01-15 13:27 - 2013-10-11 12:47 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-01-15 13:27 - 2013-10-09 20:14 - 13881088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2014-01-15 13:27 - 2013-10-09 20:13 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2014-01-15 13:27 - 2013-10-09 20:12 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-01-15 13:27 - 2013-10-09 20:12 - 00859904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2014-01-15 13:27 - 2013-10-07 00:14 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2014-01-15 13:27 - 2013-10-07 00:14 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2014-01-15 13:27 - 2013-10-07 00:14 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2014-01-15 13:27 - 2013-09-10 04:02 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2014-01-15 13:27 - 2013-09-10 04:02 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2014-01-15 13:27 - 2013-09-10 04:01 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2014-01-15 13:27 - 2013-09-10 04:01 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2014-01-15 13:27 - 2013-08-14 16:36 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2014-01-15 13:27 - 2013-08-14 16:36 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-01-15 13:27 - 2013-08-14 16:35 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-01-15 13:27 - 2013-08-05 18:10 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2014-01-15 13:27 - 2012-08-31 19:17 - 07162128 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll
2014-01-15 13:27 - 2012-08-31 19:17 - 00352016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll
2014-01-15 13:27 - 2012-08-31 19:17 - 00106768 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll
2014-01-15 13:27 - 2012-08-31 19:17 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll
2014-01-15 13:27 - 2012-08-31 19:17 - 00062224 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll
2014-01-15 13:27 - 2012-03-08 11:47 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2014-01-15 13:27 - 2011-08-23 17:00 - 00357712 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 01509480 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 01292904 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 01220200 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00654952 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00631400 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00601704 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00458344 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00389736 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00375400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00218728 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll
2014-01-15 13:27 - 2011-05-31 09:42 - 00218216 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll
2014-01-15 13:27 - 2010-09-27 09:34 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-01-15 13:27 - 2009-12-04 15:43 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2014-01-15 10:15 - 2013-11-27 01:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 10:15 - 2013-11-27 01:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 10:15 - 2013-11-27 01:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 10:15 - 2013-11-27 01:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 10:15 - 2013-11-27 01:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 10:15 - 2013-11-27 01:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 10:15 - 2013-11-26 10:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 20:05 - 2014-01-12 20:05 - 00000000 ____D () C:\Users\makem\AppData\Local\IsolatedStorage
2014-01-12 20:04 - 2014-01-12 20:04 - 00000000 ____D () C:\Users\makem\AppData\Local\Ancestry.com
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\Windows\RegisteredPackages
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft WSE 3.0
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\Program Files\Microsoft WSE
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\IExp1.tmp
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-12 20:02 - 2014-01-12 20:03 - 00000000 ____D () C:\Program Files\Family Tree Maker 2010
2014-01-12 20:02 - 2014-01-12 20:03 - 00000000 ____D () C:\Program Files\BCL Technologies
==================== One Month Modified Files and Folders =======
2014-02-11 10:47 - 2013-09-24 20:16 - 00099802 _____ () C:\Windows\system32\config\rules.rdb
2014-02-11 10:46 - 2014-02-11 10:46 - 00000000 ____D () C:\FRST
2014-02-11 10:45 - 2013-10-13 15:00 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-11 10:44 - 2009-07-14 04:34 - 00025552 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-11 10:44 - 2009-07-14 04:34 - 00025552 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-11 10:42 - 2013-09-24 21:53 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-11 10:39 - 2013-09-25 19:58 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Skype
2014-02-11 10:39 - 2013-09-24 17:51 - 01814743 _____ () C:\Windows\WindowsUpdate.log
2014-02-11 10:38 - 2013-09-24 21:16 - 00000000 ____D () C:\Users\makem\AppData\Roaming\MailWasherPro
2014-02-11 10:37 - 2013-10-13 15:00 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-11 10:37 - 2009-07-14 04:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-11 10:37 - 2009-07-14 04:39 - 00058748 _____ () C:\Windows\setupact.log
2014-02-11 00:48 - 2013-09-24 20:20 - 00523676 _____ () C:\Windows\system32\config\afw_db.conf
2014-02-11 00:48 - 2013-09-24 20:20 - 00003348 _____ () C:\Windows\system32\config\afw_hm.conf
2014-02-11 00:37 - 2013-09-29 21:52 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-11 00:25 - 2013-09-24 20:45 - 00000000 ____D () C:\Program Files\DigiGuide TV Guide
2014-02-10 15:08 - 2014-02-10 15:08 - 00004608 ___SH () C:\Users\makem\Desktop\Thumbs.db
2014-02-10 10:55 - 2013-09-24 20:15 - 00000000 ____D () C:\Windows\system32\Filt
2014-02-10 00:50 - 2014-02-10 00:50 - 00001158 _____ () C:\Users\makem\Desktop\JRT.txt
2014-02-10 00:36 - 2014-02-10 00:36 - 00000000 ____D () C:\Windows\ERUNT
2014-02-10 00:27 - 2014-02-10 00:23 - 00000000 ____D () C:\AdwCleaner
2014-02-09 00:31 - 2013-11-12 10:53 - 00000000 ____D () C:\Program Files\Garmin
2014-02-08 13:59 - 2013-11-16 15:07 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-06 20:53 - 2013-11-03 23:00 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Garmin
2014-02-06 19:36 - 2013-11-12 10:53 - 00000000 ____D () C:\ProgramData\Garmin
2014-02-06 18:32 - 2014-02-06 18:32 - 00000000 ____D () C:\Users\makem\AppData\Local\GARMIN_Corp
2014-02-06 18:32 - 2013-11-12 10:54 - 00000000 ____D () C:\Users\makem\AppData\Local\Garmin
2014-02-06 18:31 - 2013-10-04 10:14 - 00000000 ____D () C:\Program Files\DIFX
2014-02-05 22:37 - 2013-09-29 21:52 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-05 22:37 - 2013-09-29 21:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-05 14:49 - 2013-09-25 18:57 - 00258072 _____ () C:\Windows\PFRO.log
2014-02-04 22:28 - 2013-09-24 20:42 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-04 22:28 - 2009-07-14 02:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-04 19:50 - 2013-10-27 16:53 - 00000600 _____ () C:\Users\makem\AppData\Local\PUTTY.RND
2014-02-04 18:13 - 2009-07-14 02:37 - 00000000 ____D () C:\Windows\rescache
2014-02-04 17:35 - 2014-01-15 13:36 - 00000030 _____ () C:\Users\makem\AppData\Roaming\fixcfg.ini
2014-02-04 17:16 - 2014-02-04 17:16 - 00000000 ____D () C:\Program Files\kingsoft
2014-02-04 01:09 - 2014-02-04 01:09 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-04 00:32 - 2014-01-06 21:17 - 00000000 ____D () C:\Users\makem\AppData\Local\genienext
2014-02-04 00:06 - 2014-02-04 00:06 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Malwarebytes
2014-02-04 00:06 - 2014-02-04 00:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-03 19:47 - 2013-09-24 22:59 - 00000600 _____ () C:\Users\makem\AppData\Roaming\winscp.rnd
2014-02-03 19:40 - 2013-09-24 20:10 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-03 16:54 - 2014-02-03 16:54 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-02-03 16:54 - 2014-02-03 16:54 - 00000000 ____D () C:\Program Files\Trend Micro
2014-02-03 16:48 - 2009-07-14 04:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-03 16:48 - 2009-07-14 04:52 - 00000000 ____D () C:\Program Files\DVD Maker
2014-02-03 14:27 - 2014-02-03 14:27 - 00007605 _____ () C:\Users\makem\AppData\Local\Resmon.ResmonCfg
2014-02-03 13:53 - 2014-02-03 13:53 - 00143888 _____ () C:\Windows\Minidump\020314-44819-01.dmp
2014-02-03 13:53 - 2014-02-03 13:53 - 00000000 ____D () C:\Windows\Minidump
2014-02-03 13:20 - 2014-02-03 13:11 - 00000000 ____D () C:\Users\makem\AppData\Local\Avg2014
2014-02-03 13:16 - 2014-02-03 13:16 - 00000000 ____D () C:\Users\makem\AppData\Roaming\AVG2014
2014-02-03 13:15 - 2014-02-03 13:15 - 00000000 ___HD () C:\$AVG
2014-02-03 13:15 - 2014-02-03 13:15 - 00000000 ____D () C:\ProgramData\AVG2014
2014-02-03 13:14 - 2013-09-24 21:57 - 00000000 ____D () C:\Program Files\AVG
2014-02-03 12:30 - 2009-07-14 04:33 - 00278216 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-03 01:16 - 2014-02-03 01:16 - 00319811 _____ () C:\Users\makem\AppData\Local\census.cache
2014-02-03 01:15 - 2014-02-03 01:15 - 00128601 _____ () C:\Users\makem\AppData\Local\ars.cache
2014-02-03 00:20 - 2014-02-03 00:20 - 00000036 _____ () C:\Users\makem\AppData\Local\housecall.guid.cache
2014-02-02 22:57 - 2013-09-24 20:00 - 00061512 _____ () C:\Users\makem\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-02 22:08 - 2013-10-24 12:34 - 00007680 _____ () C:\Users\makem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-02 21:29 - 2013-11-08 15:59 - 00000000 ____D () C:\Program Files\Common Files\Macromedia
2014-02-02 21:26 - 2013-11-08 15:59 - 00000000 ____D () C:\Program Files\Macromedia
2014-02-02 18:54 - 2014-01-15 14:15 - 00003601 _____ () C:\unintall.log
2014-02-02 18:54 - 2013-10-04 10:46 - 00000000 ____D () C:\Users\makem\AppData\Local\liebao
2014-02-02 18:47 - 2014-02-02 18:42 - 00000000 ____D () C:\ProgramData\DriverGenius
2014-02-02 18:35 - 2014-02-02 18:21 - 00085352 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\ksapi.sys
2014-02-02 18:35 - 2014-01-15 14:08 - 00129904 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\knbdrv.sys
2014-02-02 18:35 - 2013-10-04 10:46 - 00097232 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\knbdrv64.sys
2014-02-02 00:14 - 2014-02-02 00:14 - 00000000 ____D () C:\Windows\Sun
2014-02-02 00:13 - 2014-02-02 00:13 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-02 00:13 - 2014-02-02 00:13 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-02 00:13 - 2014-02-02 00:13 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-02 00:13 - 2014-02-02 00:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\ProgramData\Sun
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\Program Files\Java
2014-02-02 00:13 - 2014-02-02 00:13 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-01 01:04 - 2013-09-24 22:59 - 00000000 ____D () C:\Program Files\WinSCP
2014-02-01 00:47 - 2013-10-04 09:44 - 00000000 ____D () C:\ProgramData\Kingsoft
2014-02-01 00:32 - 2013-09-25 19:58 - 00000000 ___RD () C:\Program Files\Skype
2014-02-01 00:32 - 2013-09-25 19:58 - 00000000 ____D () C:\ProgramData\Skype
2014-02-01 00:28 - 2013-09-24 20:10 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-01 00:15 - 2013-09-24 19:54 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\2C0A
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0C0A
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0C04
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0816
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0804
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0424
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041F
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041E
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041D
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\041B
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0419
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0416
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0415
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0414
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0413
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0412
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0411
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0410
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040E
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040D
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040C
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040B
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\040A
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0409
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0408
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0407
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0406
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0405
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0404
2014-02-01 00:14 - 2014-02-01 00:14 - 00000000 ____D () C:\Windows\system32\0401
2014-02-01 00:12 - 2013-09-29 14:10 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-01-31 19:20 - 2014-01-31 19:20 - 00000000 ____D () C:\Program Files\Renesas Electronics
2014-01-31 14:11 - 2014-01-31 14:08 - 00000039 _____ () C:\Windows\vbaddin.ini
2014-01-31 14:09 - 2013-09-24 20:42 - 00000376 _____ () C:\Windows\ODBC.INI
2014-01-29 14:03 - 2009-07-14 04:53 - 00032620 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-26 14:31 - 2013-10-24 20:52 - 00000000 ____D () C:\Users\makem\AppData\Local\QuickPar
2014-01-22 20:37 - 2014-01-22 20:37 - 00107256 _____ (Trusteer Ltd.) C:\Windows\system32\Drivers\RapportKELL.sys
2014-01-21 00:27 - 2013-09-25 18:51 - 00000000 ____D () C:\Users\makem\AppData\Local\Adobe
2014-01-18 16:19 - 2013-10-16 16:52 - 00000000 ____D () C:\Users\makem\AppData\Roaming\IrfanView
2014-01-18 16:10 - 2013-10-16 16:53 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2014-01-16 23:29 - 2013-09-25 21:02 - 00000000 ____D () C:\Program Files\Allway Sync
2014-01-15 14:43 - 2013-09-28 18:56 - 00000000 ____D () C:\Users\makem\AppData\Roaming\vlc
2014-01-15 14:32 - 2009-07-14 02:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-01-15 14:06 - 2013-09-24 18:05 - 00804292 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-15 13:58 - 2009-07-14 02:04 - 00000499 _____ () C:\Windows\win.ini
2014-01-15 13:42 - 2014-01-15 13:42 - 00000000 ____D () C:\Program Files\LSI SoftModem
2014-01-15 13:42 - 2013-10-04 10:14 - 00026158 _____ () C:\Windows\DPINST.LOG
2014-01-15 13:31 - 2014-01-15 13:31 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-01-15 13:30 - 2014-01-15 13:30 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-01-15 10:43 - 2013-09-25 18:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 10:40 - 2013-09-25 18:45 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 20:05 - 2014-01-12 20:05 - 00000000 ____D () C:\Users\makem\AppData\Local\IsolatedStorage
2014-01-12 20:04 - 2014-01-12 20:04 - 00000000 ____D () C:\Users\makem\AppData\Local\Ancestry.com
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\Windows\RegisteredPackages
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\Users\makem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft WSE 3.0
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\Program Files\Microsoft WSE
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\IExp1.tmp
2014-01-12 20:03 - 2014-01-12 20:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-12 20:03 - 2014-01-12 20:02 - 00000000 ____D () C:\Program Files\Family Tree Maker 2010
2014-01-12 20:03 - 2014-01-12 20:02 - 00000000 ____D () C:\Program Files\BCL Technologies
2014-01-12 19:38 - 2013-09-24 21:16 - 00000000 ____D () C:\Program Files\FireTrust
Some content of TEMP:
====================
C:\Users\makem\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-08 20:43
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-02-2014 01
Ran by makem at 2014-02-11 10:48:09
Running from D:\My Profile\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Outpost Firewall Pro (Enabled - Up to date) {578B8A29-863D-0449-EF15-3926A73ACBD3}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: Outpost Firewall Pro (Enabled) {D4D1EAE8-EA68-0A9F-FEFA-AB61226EC615}
==================== Installed Programs ======================
Acronis True Image Home 2011 (Version: 14.0.6597 - Acronis)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (Version: 11.0.06 - Adobe Systems Incorporated)
Allway Sync version 12.16.9 (Version: - Botkind Inc)
AVG 2014 (Version: 14.0.3697 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG 2014 (Version: 2014.0.4259 - AVG Technologies)
AVG PC Tuneup 2011 (Version: - AVG)
BHDC_LCD Ukey Client (Version: 1.12 - BHDC_LCD)
Bluetooth Stack for Windows by Toshiba (Version: v8.00.13(T) - TOSHIBA CORPORATION)
Canon IJ Network Scanner Selector EX (Version: - Canon Inc.)
Canon IJ Network Tool (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (Version: - Canon Inc.)
Canon MG4200 series MP Drivers (Version: 1.01 - Canon Inc.)
Canon My Image Garden (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (Version: 2.0.0 - Canon Inc.)
Compatibility Pack for the 2007 Office system (Version: 12.0.6514.5001 - Microsoft Corporation)
DigiGuide TV Guide (Version: - GipsyMedia Limited)
Elevated Installer (Version: 2.3.16.0 - Garmin Ltd or its subsidiaries) Hidden
eReg (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Family Tree Maker 2010 (Version: 19.0.180 - Ancestry.com)
Family Tree Maker 2010 (Version: 19.0.180 - Ancestry.com) Hidden
Garmin BaseCamp (Version: 4.2.5 - Garmin Ltd or its subsidiaries)
Garmin Express (Version: 2.3.16.0 - Garmin Ltd or its subsidiaries)
Garmin Express (Version: 2.3.16.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (Version: 2.3.16.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin POI Loader (Version: 2.7.3 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Geany 1.23.1 (Version: 1.23.1 - The Geany developer team)
Google Earth (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
GrabIt 1.7.2 Beta 6 (build 1008) (Version: - Ilan Shemes)
HiJackThis (Version: 1.0.0 - Trend Micro)
ICBC Infosec CertEnroll Plugins (Version: - )
ICBC Infosec NetSign Plugins (Version: - )
icbc_hh_usbkey2gchinese_plugin (Version: 1.0.0.6 - Industrial and Commercial Bank of China)
icbc_netbank_client_controls (Version: 2010.11.17.0 - ICBC)
ICBCEBankAssist (Version: 1.2.3.0 - Industrial and Commercial Bank of China)
ICBCEbankPlugins (Version: 1.0.2.0 - icbc)
ICBCSetupInput (Version: 1.0.029 - Industrial and Commercial Bank of China)
IrfanView (remove only) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Macromedia Dreamweaver 8 (Version: 8.0.0.2766 - )
Macromedia Extension Manager (Version: 1.7.240 - Macromedia, Inc.)
Macromedia Extension Manager (Version: 1.7.277 - 公司名称)
MailWasher Pro (Version: - FireTrust Limited)
Microsoft .NET Framework 1.1 (Version: - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft AutoRoute 2010 (Version: 17.0.22.1400 - Microsoft Corporation)
Microsoft Money (Version: 11.0.120 - Microsoft)
Microsoft Money System Pack (Version: 11.0.120 - Microsoft)
Microsoft Office Access database engine 2007 (English) (Version: 12.0.4518.1031 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Visio Professional 2003 (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Outlook Personal Folders Backup (Version: 1.10.0.0 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Streets and Trips 2002 (Version: 9.00.16.2000 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable Package (Version: 1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 (Version: 3.0.5305.0 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
Notepad++ (Version: 6.5.3 - Notepad++ Team)
NVIDIA PhysX (Version: 9.13.0725 - NVIDIA Corporation)
Omron Health Management Software (Version: 1.60.0003 - Omron Healthcare)
OpenAL (Version: - )
Outpost Firewall Pro 7.1 (Version: 7.1 - Agnitum, Ltd.)
Paint Shop Pro 7 ESD (Version: 7.0.0.0000 - Jasc Software Inc)
QuickPar 0.9 (Version: 0.9 - Peter B. Clements)
Rapport (Version: 3.5.1304.46 - Trusteer) Hidden
Realtek High Definition Audio Driver (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.20.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (Version: 3.0.23.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
Skype™ 6.11 (Version: 6.11.102 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (Version: 16.3.10.4 - Synaptics Incorporated)
Texas Instruments PCIxx21/x515/xx12 drivers. (Version: 2.00.0005 - Texas Instruments Inc.)
TightVNC (Version: 2.7.10.0 - GlavSoft LLC.)
TIPCI (Version: 2.00.0005 - Texas Instruments Inc.) Hidden
TOSHIBA Hardware Setup (Version: 2.00.07 - TOSHIBA Corporation)
TOSHIBA Software Modem (Version: 2.1.73 (SM2173ALD0C) - Agere Systems)
TOSHIBA Software Modem (Version: 2.2.97 - LSI Corporation)
TOSHIBA Value Added Package (Version: 1.2.40 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.2.40 - TOSHIBA Corporation) Hidden
Total Commander (Remove or Repair) (Version: 8.01 - Ghisler Software GmbH)
Trusteer Endpoint Protection (Version: 3.5.1304.46 - Trusteer)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.2 (Version: 2.1.2 - VideoLAN)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Driver Package - Intel (NETwLv32) net (10/07/2010 13.4.0.139) (Version: 10/07/2010 13.4.0.139 - Intel)
Windows Driver Package - Logitech (HidUsb) HIDClass (08/31/2012 1.10.77.0) (Version: 08/31/2012 1.10.77.0 - Logitech)
Windows Driver Package - LSI (AgereSoftModem) Modem (07/21/2009 2.2.97) (Version: 07/21/2009 2.2.97 - LSI)
Windows Driver Package - TOSHIBA (FwLnk) System (07/07/2009 1.0.0.6) (Version: 07/07/2009 1.0.0.6 - TOSHIBA)
Windows Media Encoder 9 Series (Version: - )
Windows Media Encoder 9 Series (Version: 9.00.2980 - Microsoft Corporation) Hidden
WinRAR 5.01 (32-位) (Version: 5.01.0 - win.rar GmbH)
WinSCP 5.1.7 (Version: 5.1.7 - Martin Prikryl)
ZTE Handset USB Driver (Version: - ZTE Corporation)
ZTE Handset USB Driver (Version: 5.2066.1.A11B02 - ZTE Corporation)
中国工商银行防钓鱼软件 (Version: 2.2.5 - 中国工商银行)
==================== Restore Points =========================
10-02-2014 21:19:02 Scheduled Checkpoint
==================== Hosts content: ==========================
2009-07-14 02:04 - 2009-06-10 21:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {16A9E29A-CDA1-4409-827F-15DE0A6C18DC} - System32\Tasks\{2A6085E3-F71E-4D1E-B870-66A06B74F29F} => E:\Magic Carpet2\NETHERW.EXE
Task: {1AF307C0-F605-412A-9540-C2AEF4EC7E95} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {1D06CC21-EEEC-4D3B-A038-8113360BCF0C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-13] (Google Inc.)
Task: {25700BC6-46F4-4E2D-BE3F-69158B299834} - System32\Tasks\{4A7A2757-084B-41F6-A162-D3AB9D4C3894} => E:\Magic Carpet2\NETHERW.EXE
Task: {37E42642-FFD5-44D0-944E-677E42518BF4} - System32\Tasks\Start AllwaySync => C:\Program Files\Allway Sync\Bin\syncappw.exe [2013-10-10] ()
Task: {55626543-097B-4C59-B48C-80BFC3193131} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-13] (Google Inc.)
Task: {6440203A-B8ED-40FB-AF28-309FCE940A50} - System32\Tasks\Open Outlook => C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE [2010-06-23] (Microsoft Corporation)
Task: {6AAA93ED-9F12-4C69-BA47-05D9FFA6B678} - System32\Tasks\{4F4566CD-2D52-4518-8017-88D03523A2C6} => E:\Magic Carpet2\NETHERW.EXE
Task: {74A58A72-57BC-4A2B-9C97-178C227AF4FD} - System32\Tasks\{2E1C4BD2-1F70-4EAC-B96D-92181D2143F2} => C:\Program Files\Macromedia\Dreamweaver 8\Dreamweaver.exe [2005-09-27] (Macromedia, Inc.)
Task: {7DEFA022-B170-4C6E-8106-4A3BBF7F26F0} - System32\Tasks\{9A24D509-A6E0-460F-98D6-6D4D33A92A60} => E:\Magic Carpet2\NETHERW.EXE
Task: {7FE0CE83-BC25-4A1E-A37A-CAD86C619234} - System32\Tasks\{EC85E26F-96E3-4761-A82C-FBFF6EEF9E80} => E:\Magic Carpet2\NETHERW.EXE
Task: {9B5F2C12-1531-47B6-B3CE-B4EAC4E41BF4} - System32\Tasks\Close Outlook => D:\pi_syncro\CloseOL.bat [2013-07-29] ()
Task: {D7E84224-A634-4000-8E31-B2F6356D0070} - System32\Tasks\{CF4FB9F2-0B99-4ABC-A968-8F5F71E88A61} => C:\Program Files\Macromedia\Dreamweaver 8\Dreamweaver.exe [2005-09-27] (Macromedia, Inc.)
Task: {E286CA1E-1813-4650-9568-626416017102} - System32\Tasks\{438BD585-6FC2-4FA0-A166-734DEEA3945E} => E:\Magic Carpet2\NETHERW.EXE
Task: {E4665D23-84BC-4F6C-8029-04571F7160E4} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {FEB9C923-1DC7-44A5-989E-5ED48B1972C0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Allway Sync_{48049047AC30CCEFA42EF46968DBC5B2}.job => C:\Program Files\Allway Sync\Bin\syncappw.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-06-27 14:09 - 2012-06-27 14:09 - 00557056 _____ () C:\Program Files\Trusteer\Rapport\bin\js32.dll
2013-09-24 21:50 - 2014-02-03 12:38 - 01125592 _____ () C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportMS.dll
2013-11-28 11:30 - 2010-09-19 15:20 - 00148312 _____ () C:\Windows\System32\hhukey3k02.dll
2013-09-25 21:02 - 2013-10-10 11:48 - 00094416 _____ () C:\Program Files\Allway Sync\Bin\syncappw.exe
2013-09-25 21:02 - 2013-10-10 11:22 - 08214016 _____ () C:\Program Files\Allway Sync\Bin\syncapp.dll
2014-01-12 19:38 - 2010-05-28 13:57 - 00801976 _____ () C:\Program Files\FireTrust\MailWasher Pro\ContactsLib.dll
2014-01-12 19:38 - 2009-06-25 15:40 - 00977080 _____ () C:\Program Files\FireTrust\MailWasher Pro\MCORE.DLL
2014-01-12 19:38 - 2010-04-19 08:48 - 00277904 _____ () C:\Program Files\FireTrust\MailWasher Pro\sqlite3.dll
2014-01-12 19:38 - 2009-08-25 17:51 - 00155320 _____ () C:\Program Files\FireTrust\MailWasher Pro\MailPrefs.dll
2014-01-12 19:38 - 2008-09-12 17:39 - 00611936 _____ () C:\Program Files\FireTrust\MailWasher Pro\MailAnalysis.DLL
2013-09-24 20:45 - 2013-09-24 20:45 - 00390192 _____ () C:\Program Files\DigiGuide TV Guide\digiguide.exe
2013-09-24 20:45 - 2013-09-24 20:45 - 00713216 _____ () C:\Program Files\DigiGuide TV Guide\js32.dll
2013-09-24 20:45 - 2013-09-24 20:45 - 00312832 _____ () C:\Program Files\DigiGuide TV Guide\Network.dll
2013-09-24 20:45 - 2013-09-24 20:45 - 00872448 _____ () C:\Program Files\DigiGuide TV Guide\LIBEAY32.dll
2013-09-24 20:45 - 2013-09-24 20:45 - 00159744 _____ () C:\Program Files\DigiGuide TV Guide\SSLEAY32.dll
2013-11-16 15:07 - 2013-12-12 21:19 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: 00TCrdMain => %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
MSCONFIG\startupreg: ICBCEBankAssist => "C:\Program Files\ICBCEbankTools\ICBCSetupIntegration\RunEBank.exe"
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
==================== Faulty Device Manager Devices =============
Name: kisknl
Description: kisknl
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: kisknl
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/10/2014 01:04:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
System errors:
=============
Error: (02/11/2014 10:38:12 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
Error: (02/11/2014 10:37:07 AM) (Source: Service Control Manager) (User: )
Description: The kisknl service failed to start due to the following error:
%%2
Error: (02/10/2014 11:00:06 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
Error: (02/10/2014 10:59:12 PM) (Source: Service Control Manager) (User: )
Description: The kisknl service failed to start due to the following error:
%%2
Error: (02/10/2014 08:42:10 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
Error: (02/10/2014 08:41:11 PM) (Source: Service Control Manager) (User: )
Description: The kisknl service failed to start due to the following error:
%%2
Error: (02/10/2014 06:51:54 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
Error: (02/10/2014 06:51:03 PM) (Source: Service Control Manager) (User: )
Description: The kisknl service failed to start due to the following error:
%%2
Error: (02/10/2014 05:30:52 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.
Error: (02/10/2014 05:30:00 PM) (Source: Service Control Manager) (User: )
Description: The kisknl service failed to start due to the following error:
%%2
Microsoft Office Sessions:
=========================
Error: (02/10/2014 01:04:47 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\common files\LogiShrd\sp6_uninstall\tools\64\AddBrowsers.exe
CodeIntegrity Errors:
===================================
Date: 2013-10-04 11:01:30.952
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:01:30.936
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:01:28.231
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:01:28.216
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:00:33.325
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:00:33.315
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:00:09.046
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:00:09.030
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:00:08.430
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-10-04 11:00:08.416
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RtkAPO.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 45%
Total physical RAM: 3070.05 MB
Available physical RAM: 1682.64 MB
Total Pagefile: 6136.34 MB
Available Pagefile: 4629.7 MB
Total Virtual: 2047.88 MB
Available Virtual: 1892.96 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:53.85 GB) (Free:19.01 GB) NTFS
Drive d: (Data) (Fixed) (Total:244.14 GB) (Free:71.22 GB) NTFS
Drive f: () (Removable) (Total:14.9 GB) (Free:9.48 GB) NTFS
Drive h: (LEXAR MEDIA) (Removable) (Total:0.96 GB) (Free:0.96 GB) FAT
Drive x: (New_Volume) (Network) (Total:30.03 GB) (Free:29.19 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 298 GB) (Disk ID: A7A526D4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=54 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=244 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 984 MB) (Disk ID: 1405D094)
Partition 1: (Active) - (Size=983 MB) - (Type=06)
========================================================
Disk: 2 (MBR Code: Windows 7 or
(Size: 15 GB) (Disk ID: 135C5BDE)
Partition 1: (Active) - (Size=15 GB) - (Type=07 NTFS)
==================== End Of Log ============================
ESET log
C:\Program Files\Mobogenie\nengine.dll Win32/NextLive.A potentially unwanted application
C:\Program Files\Mobogenie\UpdateMoboGenie.exe a variant of Win32/Mobogenie.A potentially unwanted application
D:\Archive\CD_DVD Burning\SetupImgBurn_2.5.7.0.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
D:\Archive\Communicate\FTP\winscp433setup.exe Win32/OpenCandy potentially unsafe application
D:\Archive\Drivers_manuals\android\UniversalAndroot-1.6.2-beta5.apk multiple threats
D:\Archive\Drivers_manuals\android\u_Root.apk multiple threats
D:\Archive\Music_Video_Audio\Audio\Format Factory\FFSetup270.zip a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
D:\Archive\Operating Systems\Windows 7\Find Windows Product key of installed OS\produkey.zip Win32/PSWTool.ProductKey potentially unsafe application
D:\Archive\Utilities\coretemp_1236.exe a variant of Win32/InstallIQ.A potentially unwanted application
==================== End Of Log ============================
It was necessary to uninstall AVGFree 2014 as I could not find Resident Shield and disabling from sys tray did not deal with it therefore the scan hung.
I also needed to uninstal AVG Tuneup.
I would like to remove kisknl which appears to be a driver for hardware I do not have.
I do not appear to have any problem in the use of the computer which appears to be performing normally.