Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Thought I wasn't infected anymore, but...

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Thought I wasn't infected anymore, but...

Unread postby ChrisMasterSky » June 7th, 2014, 4:27 pm

I was infected and Nunped helped me. Unfortunately, I didn't realize we weren't finished and I didn't get an email notification the last time he replied to me (very sorry Nunped, final exams were starting and it slipped my mind), so my topic was closed and I don't know if I'm clear. Here is my log :

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by Christian (administrator) on PCDECHRISTIAN on 07-06-2014 12:19:54
Running from C:\Users\Christian\Downloads
Platform: Windows 8 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\n360.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\n360.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(AVM Software Inc.) C:\Program Files (x86)\Paltalk Messenger\paltalk.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCWebServer.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10592256 2013-10-08] (Broadcom Corporation)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1307720 2013-05-06] (Realtek Semiconductor)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3933496 2012-09-20] (Logitech, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740376 2013-02-06] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585048 2014-04-17] (Razer Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2709282161-3102555306-2552918505-1002\...\Run: [GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [866632 2014-02-01] (Google Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-05-02] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [201576 2013-05-02] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PalTalk.lnk
ShortcutTarget: PalTalk.lnk -> C:\Program Files (x86)\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.3.0.12\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: WinMonitor - {3679AB80-ECDF-4FDF-B425-31A8EC23AB43} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.3.0.12\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\coIEPlg.dll (Symantec Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\zz4pbiut.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @sony.com/ReaderDesktop - C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-06-05]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2013-12-05]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR HomePage:
CHR StartupUrls: "hxxp://www.google.ca/"
CHR Extension: (Documents Google) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-17]
CHR Extension: (Google Drive) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-17]
CHR Extension: (YouTube) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-17]
CHR Extension: (Recherche Google) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-17]
CHR Extension: (Skype Click to Call) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-03-09]
CHR Extension: (Norton Identity Safe for Google Chrome™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-02-17]
CHR Extension: (Google Wallet) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-17]
CHR Extension: (Gmail) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-17]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\Exts\Chrome.crx [2014-05-24]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2227992 2013-01-23] (Broadcom Corporation.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2266296 2014-05-16] (Microsoft Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.3.0.12\N360.exe [265040 2014-05-11] (Symantec Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639584 2013-02-05] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-02-06] (Sony Corporation)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-27] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6099968 2013-10-08] (Broadcom Corporation)

==================== Drivers (Whitelisted) ====================

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [169240 2013-01-23] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6957744 2013-10-08] (Broadcom Corporation)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140510.001\BHDrvx64.sys [1530160 2014-05-09] (Symantec Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-25] (Microsoft Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1503000.00C\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-27] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140606.002\IDSvia64.sys [525016 2014-03-26] (Symantec Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-05-31] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140606.018\ENG64.SYS [126040 2014-05-11] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140606.018\EX64.SYS [2099288 2014-05-11] (Symantec Corporation)
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39080 2014-04-08] (Razer Inc)
R1 RzFilter; C:\Windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)
S3 rzmpos; C:\Windows\System32\drivers\rzmpos.sys [34984 2014-04-08] (Razer Inc)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-14] (Synaptics Incorporated)
R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1503000.00C\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1503000.00C\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1503000.00C\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1503000.00C\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1503000.00C\SymELAM.sys [23568 2013-09-09] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-27] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1503000.00C\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1503000.00C\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-05 22:03 - 2014-06-05 22:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-31 15:44 - 2014-05-31 15:54 - 00066968 _____ () C:\Users\Christian\Downloads\SystemLook.txt
2014-05-31 15:43 - 2014-05-31 15:43 - 00096256 _____ () C:\Users\Christian\Downloads\SystemLook_x64.exe
2014-05-31 15:38 - 2014-05-31 15:38 - 00000000 ____D () C:\Users\Christian\AppData\Local\Razer
2014-05-31 15:33 - 2014-05-31 15:33 - 00000000 ____D () C:\Users\Christian\AppData\Local\Razer_Inc
2014-05-31 14:27 - 2014-05-31 14:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-05-31 14:27 - 2014-05-31 14:27 - 00000000 ____D () C:\Windows\Razer Core
2014-05-31 14:27 - 2014-04-18 11:02 - 00129472 _____ (Razer, Inc.) C:\Windows\system32\Drivers\RzDxgk.sys
2014-05-31 14:27 - 2014-04-18 11:02 - 00074432 _____ (Razer, Inc.) C:\Windows\system32\Drivers\RzFilter.sys
2014-05-31 14:26 - 2014-05-31 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-30 23:58 - 2014-05-31 15:37 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-30 23:58 - 2014-05-31 14:27 - 00000000 ____D () C:\ProgramData\Razer
2014-05-30 23:38 - 2014-06-07 12:19 - 00000000 ____D () C:\Users\Christian\Downloads\FRST-OlderVersion
2014-05-30 23:31 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-30 23:30 - 2014-05-31 15:35 - 00000000 ____D () C:\AdwCleaner
2014-05-30 23:28 - 2014-05-30 23:28 - 01327971 _____ () C:\Users\Christian\Downloads\AdwCleaner.exe
2014-05-30 23:13 - 2014-05-30 23:13 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-PCDECHRISTIAN-Microsoft-Windows-8-(64-bit).dat
2014-05-30 23:13 - 2014-05-30 23:13 - 00000000 ____D () C:\RegBackup
2014-05-30 23:12 - 2014-05-30 23:12 - 00002239 _____ () C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2014-05-30 23:12 - 2014-05-30 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-05-30 23:11 - 2014-05-30 23:11 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-05-30 23:09 - 2014-05-30 23:09 - 04057608 _____ () C:\Users\Christian\Downloads\tweaking.com_registry_backup_setup.exe
2014-05-30 18:13 - 2014-06-06 17:10 - 00000000 ____D () C:\Users\Christian\AppData\Local\ftblauncher
2014-05-30 18:10 - 2014-05-30 18:19 - 40144607 _____ () C:\Users\Christian\Downloads\Direwolf20_1_6_4.zip
2014-05-29 20:13 - 2014-05-29 20:13 - 00000982 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-05-29 18:10 - 2014-05-29 18:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-05-29 18:10 - 2014-05-29 18:10 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-05-29 07:32 - 2014-05-29 07:32 - 00080384 _____ (Razer Inc) C:\Windows\system32\RazerCoinstaller.dll
2014-05-24 12:55 - 2014-05-24 12:55 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2014-05-20 13:25 - 2014-05-31 15:37 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-20 13:25 - 2014-05-20 13:25 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-20 13:25 - 2014-05-20 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-20 13:25 - 2014-05-20 13:25 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-20 13:25 - 2014-05-20 13:25 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-20 13:25 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-20 13:25 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-20 13:25 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-20 13:24 - 2014-05-20 13:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Christian\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-19 19:49 - 2014-05-19 19:50 - 00033797 _____ () C:\Users\Christian\Downloads\Addition.txt
2014-05-19 19:48 - 2014-06-07 12:20 - 00000000 ____D () C:\FRST
2014-05-19 19:48 - 2014-06-07 12:19 - 02072576 _____ (Farbar) C:\Users\Christian\Downloads\FRST64.exe
2014-05-19 19:48 - 2014-06-07 12:19 - 00022533 _____ () C:\Users\Christian\Downloads\FRST.txt
2014-05-19 19:44 - 2014-05-19 19:44 - 00030520 _____ () C:\Users\Christian\Desktop\dds.txt
2014-05-19 19:44 - 2014-05-19 19:44 - 00003734 _____ () C:\Users\Christian\Desktop\attach.txt
2014-05-19 19:43 - 2014-05-19 19:43 - 00688992 ____R (Swearware) C:\Users\Christian\Downloads\dds.scr
2014-05-19 19:14 - 2014-05-25 18:58 - 00005108 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for PCDECHRISTIAN-Christian PCdeChristian
2014-05-14 21:45 - 2014-04-12 05:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 21:45 - 2014-04-12 05:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 21:45 - 2014-04-12 05:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-05-14 21:45 - 2014-04-12 05:09 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-05-14 21:45 - 2014-04-12 05:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 21:45 - 2014-04-12 05:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 21:45 - 2014-04-12 05:08 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 21:45 - 2014-04-12 05:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 21:45 - 2014-04-12 05:08 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-05-14 21:45 - 2014-04-12 05:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 21:45 - 2014-04-12 05:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 21:45 - 2014-04-12 03:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-05-14 21:45 - 2014-04-12 03:23 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-05-14 21:45 - 2014-04-12 03:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 21:45 - 2014-04-12 03:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 21:45 - 2014-04-12 03:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 21:45 - 2014-04-12 03:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 21:45 - 2014-04-12 03:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 21:45 - 2014-04-12 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-05-14 21:45 - 2014-03-10 23:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 21:45 - 2014-03-10 23:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 21:45 - 2014-03-10 20:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 21:45 - 2014-03-10 20:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 21:45 - 2014-03-10 20:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 21:45 - 2014-03-10 20:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 21:45 - 2014-03-10 20:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 21:45 - 2014-03-10 20:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 21:45 - 2014-03-10 20:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 21:45 - 2014-03-10 20:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-05-14 21:45 - 2014-03-10 20:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 21:45 - 2014-03-10 20:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 21:45 - 2014-03-10 20:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 21:45 - 2014-03-09 23:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-14 21:45 - 2014-03-09 21:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 21:45 - 2014-03-03 19:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-05-14 21:40 - 2014-03-28 04:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 21:40 - 2014-03-28 02:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 21:39 - 2014-03-28 15:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-05-14 21:39 - 2014-03-23 18:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-05-14 21:36 - 2014-05-06 01:14 - 19274752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 21:36 - 2014-05-06 01:14 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 21:36 - 2014-03-28 04:23 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-05-14 21:35 - 2014-05-05 23:48 - 14367232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 21:35 - 2014-05-05 23:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 21:35 - 2014-05-05 23:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 21:35 - 2014-05-05 23:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 21:30 - 2014-03-01 05:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-14 21:30 - 2014-03-01 05:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-05-14 21:30 - 2014-03-01 04:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-05-14 21:30 - 2014-03-01 02:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-14 21:30 - 2014-02-26 19:18 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-05-14 21:30 - 2014-02-26 19:18 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-05-14 21:30 - 2014-02-26 19:18 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-05-14 21:30 - 2014-02-26 19:18 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-05-14 21:30 - 2014-02-15 00:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys

==================== One Month Modified Files and Folders =======

2014-06-07 12:20 - 2014-05-19 19:48 - 00022533 _____ () C:\Users\Christian\Downloads\FRST.txt
2014-06-07 12:20 - 2014-05-19 19:48 - 00000000 ____D () C:\FRST
2014-06-07 12:20 - 2014-02-05 20:20 - 00000000 ____D () C:\Users\Christian\AppData\Roaming\Skype
2014-06-07 12:20 - 2013-09-23 20:33 - 00000000 ____D () C:\Users\Christian\AppData\Local\Temp
2014-06-07 12:19 - 2014-05-30 23:38 - 00000000 ____D () C:\Users\Christian\Downloads\FRST-OlderVersion
2014-06-07 12:19 - 2014-05-19 19:48 - 02072576 _____ (Farbar) C:\Users\Christian\Downloads\FRST64.exe
2014-06-07 12:15 - 2014-03-18 07:47 - 00000000 ___HD () C:\$Windows.~BT
2014-06-07 12:15 - 2013-07-30 22:16 - 01340420 _____ () C:\Windows\WindowsUpdate.log
2014-06-06 19:00 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\sru
2014-06-06 18:22 - 2014-02-17 20:17 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-06 17:10 - 2014-05-30 18:13 - 00000000 ____D () C:\Users\Christian\AppData\Local\ftblauncher
2014-06-06 17:10 - 2013-09-28 12:35 - 00000000 ____D () C:\Users\Christian\Desktop\FTB
2014-06-06 13:55 - 2013-09-24 16:31 - 00000000 ____D () C:\Users\Christian\AppData\Local\PMB Files
2014-06-06 13:54 - 2013-10-24 18:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-06 13:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-05 22:04 - 2014-06-05 22:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-05 19:46 - 2013-07-30 22:54 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Temp
2014-06-05 19:22 - 2014-02-17 20:17 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-04 20:13 - 2013-09-24 16:31 - 00000000 ____D () C:\ProgramData\PMB Files
2014-06-04 18:37 - 2013-12-05 23:45 - 00000000 ____D () C:\Users\Christian\AppData\Local\CrashDumps
2014-06-04 18:17 - 2013-10-24 19:07 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2709282161-3102555306-2552918505-1002
2014-06-04 15:51 - 2012-07-26 03:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-04 15:50 - 2012-07-26 01:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-05-31 15:54 - 2014-05-31 15:44 - 00066968 _____ () C:\Users\Christian\Downloads\SystemLook.txt
2014-05-31 15:43 - 2014-05-31 15:43 - 00096256 _____ () C:\Users\Christian\Downloads\SystemLook_x64.exe
2014-05-31 15:38 - 2014-05-31 15:38 - 00000000 ____D () C:\Users\Christian\AppData\Local\Razer
2014-05-31 15:37 - 2014-05-30 23:58 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-31 15:37 - 2014-05-20 13:25 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-31 15:37 - 2014-03-22 13:34 - 00471960 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-31 15:36 - 2012-08-02 22:22 - 00136540 _____ () C:\Windows\PFRO.log
2014-05-31 15:35 - 2014-05-30 23:30 - 00000000 ____D () C:\AdwCleaner
2014-05-31 15:33 - 2014-05-31 15:33 - 00000000 ____D () C:\Users\Christian\AppData\Local\Razer_Inc
2014-05-31 14:28 - 2013-07-30 22:44 - 00086896 _____ () C:\Windows\DPINST.LOG
2014-05-31 14:27 - 2014-05-31 14:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-05-31 14:27 - 2014-05-31 14:27 - 00000000 ____D () C:\Windows\Razer Core
2014-05-31 14:27 - 2014-05-30 23:58 - 00000000 ____D () C:\ProgramData\Razer
2014-05-31 14:27 - 2012-07-26 03:21 - 00024486 _____ () C:\Windows\setupact.log
2014-05-31 14:26 - 2014-05-31 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-30 23:28 - 2014-05-30 23:28 - 01327971 _____ () C:\Users\Christian\Downloads\AdwCleaner.exe
2014-05-30 23:28 - 2014-02-05 20:20 - 00000000 ____D () C:\ProgramData\Skype
2014-05-30 23:27 - 2014-02-05 20:20 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-30 23:27 - 2013-10-24 17:37 - 00000000 ____D () C:\Update
2014-05-30 23:26 - 2012-07-26 01:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-05-30 23:23 - 2012-07-26 04:12 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-05-30 23:21 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2014-05-30 23:13 - 2014-05-30 23:13 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-PCDECHRISTIAN-Microsoft-Windows-8-(64-bit).dat
2014-05-30 23:13 - 2014-05-30 23:13 - 00000000 ____D () C:\RegBackup
2014-05-30 23:12 - 2014-05-30 23:12 - 00002239 _____ () C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2014-05-30 23:12 - 2014-05-30 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-05-30 23:11 - 2014-05-30 23:11 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-05-30 23:09 - 2014-05-30 23:09 - 04057608 _____ () C:\Users\Christian\Downloads\tweaking.com_registry_backup_setup.exe
2014-05-30 18:22 - 2013-09-28 12:34 - 00000000 ____D () C:\Users\Christian\AppData\Roaming\ftblauncher
2014-05-30 18:19 - 2014-05-30 18:10 - 40144607 _____ () C:\Users\Christian\Downloads\Direwolf20_1_6_4.zip
2014-05-30 17:20 - 2013-09-24 16:07 - 00000000 ____D () C:\Users\Christian\AppData\Roaming\.minecraft
2014-05-29 20:14 - 2013-07-30 23:21 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-05-29 20:14 - 2013-07-30 23:00 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation
2014-05-29 20:13 - 2014-05-29 20:13 - 00000982 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-05-29 20:13 - 2013-07-30 23:08 - 00000000 ____D () C:\Program Files\Sony
2014-05-29 20:13 - 2013-07-30 22:47 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-29 18:10 - 2014-05-29 18:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-05-29 18:10 - 2014-05-29 18:10 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-05-29 18:10 - 2013-10-29 18:18 - 00001931 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-05-29 18:10 - 2013-10-29 18:18 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-05-29 07:32 - 2014-05-29 07:32 - 00080384 _____ (Razer Inc) C:\Windows\system32\RazerCoinstaller.dll
2014-05-25 18:58 - 2014-05-19 19:14 - 00005108 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for PCDECHRISTIAN-Christian PCdeChristian
2014-05-24 12:55 - 2014-05-24 12:55 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2014-05-24 12:49 - 2013-10-24 18:26 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-05-24 12:49 - 2013-10-24 18:26 - 00000000 ____D () C:\Windows\system32\Drivers\N360x64
2014-05-24 12:48 - 2013-12-05 23:15 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-05-24 12:48 - 2013-10-24 18:26 - 00002319 _____ () C:\Users\Public\Desktop\Norton 360.lnk
2014-05-23 20:53 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\rescache
2014-05-23 15:49 - 2013-10-24 18:43 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-05-22 23:45 - 2014-04-24 19:33 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-22 20:16 - 2013-10-24 18:02 - 00799196 _____ () C:\Windows\system32\perfh00C.dat
2014-05-22 20:16 - 2013-10-24 18:02 - 00155218 _____ () C:\Windows\system32\perfc00C.dat
2014-05-22 20:16 - 2012-07-26 03:28 - 01793362 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-20 14:38 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\schemas
2014-05-20 14:37 - 2014-04-25 19:16 - 00000000 ____D () C:\temp
2014-05-20 14:37 - 2014-02-13 23:03 - 00000000 ____D () C:\ProgramData\savoinshOp
2014-05-20 14:37 - 2014-01-05 18:48 - 00000000 ____D () C:\ProgramData\easytoshhop
2014-05-20 13:25 - 2014-05-20 13:25 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-20 13:25 - 2014-05-20 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-20 13:25 - 2014-05-20 13:25 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-20 13:25 - 2014-05-20 13:25 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-20 13:24 - 2014-05-20 13:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Christian\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-19 19:50 - 2014-05-19 19:49 - 00033797 _____ () C:\Users\Christian\Downloads\Addition.txt
2014-05-19 19:44 - 2014-05-19 19:44 - 00030520 _____ () C:\Users\Christian\Desktop\dds.txt
2014-05-19 19:44 - 2014-05-19 19:44 - 00003734 _____ () C:\Users\Christian\Desktop\attach.txt
2014-05-19 19:43 - 2014-05-19 19:43 - 00688992 ____R (Swearware) C:\Users\Christian\Downloads\dds.scr
2014-05-19 19:20 - 2014-01-05 18:48 - 00000000 ____D () C:\ProgramData\ded9dbee99d5f4e0
2014-05-19 18:45 - 2013-09-23 20:34 - 00000000 ___RD () C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-19 18:45 - 2013-09-23 20:34 - 00000000 ___RD () C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-19 18:42 - 2014-05-07 17:14 - 00000000 ____D () C:\Program Files (x86)\SuperFastPC
2014-05-19 18:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ToastData
2014-05-19 18:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-19 18:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-19 18:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-05-19 18:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-19 18:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-15 23:13 - 2012-07-26 03:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-05-15 23:11 - 2013-09-25 20:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-15 23:08 - 2013-09-25 20:37 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-15 18:11 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\NDF

Some content of TEMP:
====================
C:\Users\Christian\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2014-05-14 21:45] - [2014-04-12 05:10] - 0578048 ____A (Microsoft Corporation) 75DD70A14145499C9F7D903CF9A8C91B

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-06-05 16:12

==================== End Of Log ============================

Can someone tell me if I'm clear or if I still have some malware on my computer ? Tahnk you and again apologies for not replying last time.
ChrisMasterSky
Active Member
 
Posts: 8
Joined: May 19th, 2014, 7:30 pm
Advertisement
Register to Remove

Re: Thought I wasn't infected anymore, but...

Unread postby MWR 3 day Mod » June 11th, 2014, 6:55 pm

Hi,

We are sorry to see your topic is over three days old and no one has yet been able to respond and offer help.

If you still require assistance, please post a link to your topic in our Waiting for help with malware removal? forum, and our staff will make an effort to assist you as promptly as possible. Only post a LINK to this topic, DO NOT post your DDS log!

Please do not reply to this topic.

If you haven't posted within two days in the "Waiting for help with malware removal?" forum, we will assume you have been able to get assistance in other ways and this topic will be closed.
MWR 3 day Mod
MRU Undergrad
MRU Undergrad
 
Posts: 2534
Joined: April 4th, 2008, 8:40 am

Re: Thought I wasn't infected anymore, but...

Unread postby nunped » June 14th, 2014, 2:23 pm

Hi ChrisMasterSky,

I'm sorry for the delay...
I'd like you to run SystemLook as before:
SystemLook
Please download SystemLook from the link below and save it to your Desktop.

For 64 bit Systems
  • Right-click SystemLook.exe and select "Run as Administrator" to run it.
  • Copy and paste the content of the following codebox into the main textfield: Do not include the words Code: select all
  • (Click the select all button next to code to select the entire script).

    Code: Select all
    :filefind
    *Fun4IM*
    *Bandoo*
    *Searchqu*
    *iLivid*
    *whitesmoke*
    *datamngr*
    *trolltech*
    *regclean*
    *DioSecouuntLocAutor*
    *TXTfiilesConvert*
    *systweak*
    *optimizer*
    
    :folderfind
    *Fun4IM*
    *Bandoo*
    *Searchqu*
    *iLivid*
    *whitesmoke*
    *datamngr*
    *trolltech*
    *regclean*
    *DioSecouuntLocAutor*
    *TXTfiilesConvert*
    *systweak*
    *optimizer*
    
    :Regfind
    Fun4IM
    Bandoo
    Searchqu
    iLivid
    whitesmoke
    datamngr
    kelkoopartners
    trolltech
    regclean
    DioSecouuntLocAutor
    TXTfiilesConvert
    systweak
    optimizer
    
  • Click the Look button to start the scan.
    The scan may take 15 minutes or a bit more to run on a large machine. Please be patient.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Thought I wasn't infected anymore, but...

Unread postby ChrisMasterSky » June 15th, 2014, 12:04 pm

Thank you for answering nunped, here is the System Look scna you wanted me to post:


SystemLook 04.09.10 by jpshortstuff
Log created at 11:52 on 15/06/2014 by Christian
Administrator - Elevation successful

========== filefind ==========

Searching for "*Fun4IM*"
No files found.

Searching for "*Bandoo*"
No files found.

Searching for "*Searchqu*"
No files found.

Searching for "*iLivid*"
No files found.

Searching for "*whitesmoke*"
No files found.

Searching for "*datamngr*"
No files found.

Searching for "*trolltech*"
No files found.

Searching for "*regclean*"
C:\FRST\Quarantine\C\Windows\System32\Tasks\RegClean Pro.xBAD --a---- 3108 bytes [23:30 24/04/2014] [23:30 24/04/2014] D8113471914AF22112C7EF7C7837A406
C:\Program Files\Sony\VAIO Care\langregion\AP\en-US\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\AP\fr-FR\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\AP\ko-KR\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\AP\th-TH\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\AP\tr-TR\Config\RegCleanerSetting.config --a---- 177 bytes [20:21 07/12/2012] [20:21 07/12/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\AP\zh-CN\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\AP\zh-TW\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\CN\zh-CN\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\bg-BG\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\cs-CZ\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\de-DE\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\el-GR\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\en-GB\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\es-ES\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\fr-FR\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\hu-HU\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\it-IT\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\nl-NL\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\pl-PL\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\ro-RO\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\ru-RU\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\sk-SK\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\EU\tr-TR\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\JP\ja-JP\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\US\en-CA\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\US\en-US\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\US\es-MX\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\US\fr-CA\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A
C:\Program Files\Sony\VAIO Care\langregion\US\pt-BR\Config\RegCleanerSetting.config --a---- 177 bytes [20:44 21/05/2012] [20:44 21/05/2012] 7717685604E5E9D0C524CB4EB332C93A

Searching for "*DioSecouuntLocAutor*"
C:\Users\Christian\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat --a---- 80751 bytes [23:58 24/01/2014] [22:49 03/02/2014] 28D3623A03D6B4B4E533D0868FBCCC2E
C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat --a---- 144 bytes [22:48 05/01/2014] [22:48 05/01/2014] 23C308104C1D6D78C20D4A3FB3F183E8
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat --a---- 148 bytes [22:48 05/01/2014] [22:48 05/01/2014] 868C21B68A279F35B601E60E9CB7B84E

Searching for "*TXTfiilesConvert*"
C:\Users\Christian\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat --a---- 59379 bytes [22:49 03/02/2014] [22:49 03/02/2014] A34337A19936A25678DB0049E03C25BE
C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat --a---- 144 bytes [21:40 31/01/2014] [21:40 31/01/2014] 23C308104C1D6D78C20D4A3FB3F183E8
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat --a---- 148 bytes [21:40 31/01/2014] [21:40 31/01/2014] 868C21B68A279F35B601E60E9CB7B84E

Searching for "*systweak*"
No files found.

Searching for "*optimizer*"
C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VIOptimizer.exe --a---- 981648 bytes [19:30 06/03/2013] [19:30 06/03/2013] 6E46E7660D4E71E909ACA147DCCAEA65
C:\ProgramData\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_1.xml --a---- 1483 bytes [19:30 06/03/2013] [19:30 06/03/2013] 536DD76C5C4ADEFF3AD732DF53DE3B7A
C:\ProgramData\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_2.xml --a---- 1893 bytes [19:30 06/03/2013] [19:30 06/03/2013] 096C5AC9B983A11C8705EED51435C9AB
C:\ProgramData\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_3.xml --a---- 1559 bytes [19:30 06/03/2013] [19:30 06/03/2013] 607196D1564D628DAEDF082B2128EBA2
C:\ProgramData\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_4.xml --a---- 1821 bytes [19:30 06/03/2013] [19:30 06/03/2013] 7506ABEA7B9021FCCFC0DB6572334F78
C:\Users\All Users\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_1.xml --a---- 1483 bytes [19:30 06/03/2013] [19:30 06/03/2013] 536DD76C5C4ADEFF3AD732DF53DE3B7A
C:\Users\All Users\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_2.xml --a---- 1893 bytes [19:30 06/03/2013] [19:30 06/03/2013] 096C5AC9B983A11C8705EED51435C9AB
C:\Users\All Users\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_3.xml --a---- 1559 bytes [19:30 06/03/2013] [19:30 06/03/2013] 607196D1564D628DAEDF082B2128EBA2
C:\Users\All Users\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_4.xml --a---- 1821 bytes [19:30 06/03/2013] [19:30 06/03/2013] 7506ABEA7B9021FCCFC0DB6572334F78

========== folderfind ==========

Searching for "*Fun4IM*"
No folders found.

Searching for "*Bandoo*"
No folders found.

Searching for "*Searchqu*"
No folders found.

Searching for "*iLivid*"
No folders found.

Searching for "*whitesmoke*"
No folders found.

Searching for "*datamngr*"
No folders found.

Searching for "*trolltech*"
No folders found.

Searching for "*regclean*"
No folders found.

Searching for "*DioSecouuntLocAutor*"
C:\AdwCleaner\Quarantine\C\ProgramData\DioSecouuntLocAutor d------ [19:35 31/05/2014]

Searching for "*TXTfiilesConvert*"
No folders found.

Searching for "*systweak*"
No folders found.

Searching for "*optimizer*"
C:\AdwCleaner\Quarantine\C\Users\Christian\Documents\Optimizer Pro d------ [19:35 31/05/2014]
C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer d------ [03:24 31/07/2013]

========== Regfind ==========

Searching for "Fun4IM"
No data found.

Searching for "Bandoo"
No data found.

Searching for "Searchqu"
[HKEY_CURRENT_USER\Software\Classes\ActivatableClasses\CLSID\{DF4516C8-BD7C-533B-8859-236CAC8D028A}]
"ActivatableClassId"="AppEx.Sports.Services.TypeDefs.Request.AppSearchQuery"
[HKEY_CURRENT_USER\Software\Classes\ActivatableClasses\Package\Microsoft.BingSports_1.8.0.51_x64__8wekyb3d8bbwe\ActivatableClassId\AppEx.Sports.Services.TypeDefs.Request.AppSearchQuery]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Interface\{AB310581-AC80-11D1-8DF3-00C04FB6EF63}]
@="ISearchQueryHelper"
[HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002\Software\Classes\ActivatableClasses\CLSID\{DF4516C8-BD7C-533B-8859-236CAC8D028A}]
"ActivatableClassId"="AppEx.Sports.Services.TypeDefs.Request.AppSearchQuery"
[HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002\Software\Classes\ActivatableClasses\Package\Microsoft.BingSports_1.8.0.51_x64__8wekyb3d8bbwe\ActivatableClassId\AppEx.Sports.Services.TypeDefs.Request.AppSearchQuery]
[HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002_Classes\ActivatableClasses\CLSID\{DF4516C8-BD7C-533B-8859-236CAC8D028A}]
"ActivatableClassId"="AppEx.Sports.Services.TypeDefs.Request.AppSearchQuery"
[HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002_Classes\ActivatableClasses\Package\Microsoft.BingSports_1.8.0.51_x64__8wekyb3d8bbwe\ActivatableClassId\AppEx.Sports.Services.TypeDefs.Request.AppSearchQuery]

Searching for "iLivid"
No data found.

Searching for "whitesmoke"
No data found.

Searching for "datamngr"
No data found.

Searching for "kelkoopartners"
No data found.

Searching for "trolltech"
[HKEY_CURRENT_USER\Software\Trolltech]
[HKEY_CURRENT_USER\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.8\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]
[HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002\Software\Trolltech]
[HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.8\com.trolltech.Qt.QImageIOHandlerFactoryInterface:]

Searching for "regclean"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8}]
@="IRegCleaner"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8}]
@="IRegCleaner"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\Interface\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8}]
@="IRegCleaner"

Searching for "DioSecouuntLocAutor"
No data found.

Searching for "TXTfiilesConvert"
No data found.

Searching for "systweak"
No data found.

Searching for "optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62079164-233b-41f8-a80f-f01705f514a8}]
@="EVR Graph Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\729C7955A9207A640A0CD8BA9D98A105]
"VAIOImageOptimizer"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\729C7955A9207A640A0CD8BA9D98A105]
"ProductName"="VAIO Image Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\729C7955A9207A640A0CD8BA9D98A105\SourceList]
"PackageName"="VAIO Image Optimizer.msi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{30146000-87BF-11D1-BE74-C94E44925F69}\InprocServer32]
@="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{30146000-87BF-11D1-BE74-C94E44925F69}\InprocServer32]
"InprocServer32"="[nASC^C0e=nw`.`K5EhAVAIOImageOptimizer>rS8-Vj0GO9PUs{,z2l5L"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{62079164-233b-41f8-a80f-f01705f514a8}]
@="EVR Graph Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{97952D20-B180-11CF-8410-00A024EC9DA6}\InprocServer32]
@="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{97952D20-B180-11CF-8410-00A024EC9DA6}\InprocServer32]
"InprocServer32"="[nASC^C0e=nw`.`K5EhAVAIOImageOptimizer>rS8-Vj0GO9PUs{,z2l5L"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F2300E20-11C9-11D2-AE38-0000F49503A9}\InprocServer32]
@="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F2300E20-11C9-11D2-AE38-0000F49503A9}\InprocServer32]
"InprocServer32"="[nASC^C0e=nw`.`K5EhAVAIOImageOptimizer>rS8-Vj0GO9PUs{,z2l5L"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0B0C3CD447431F043B3288159EC9B3FD]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstJapan.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1D66BDFE3E0754E4E97EE1AC7E07CC07]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E966155B62194D4FB39A2CAB5E41BEE]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstItaly.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1FF2D52DC86419C4A8E389C648D99B3C]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\GpuClbCheck.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\25BEEEF7F32503E43A08D8E4FBB9A88C]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstCommon.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\39B32C2D7658F2040AE7E4459ABFC996]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KSTVideoCore.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F6212AA07249A340AE22EDD786A962B]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstGerman.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\410DF7F84C7C7C246B9490F138E59A07]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B4F21EF0F23AD04FA2E5E96EDD49E04]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\rcpehdr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6034AF3848063EF4C9EF34967F944AB8]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KSTEngine.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63363A125B82DB24BAC0A3FAF5AAC5E2]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\sgpuclb.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64FEC0246323B54479D35EDFD14EB12B]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VIOTask.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A990725D65286049AB36D3681B18866]
"729C7955A9207A640A0CD8BA9D98A105"="C:\ProgramData\Sony Corporation\PMB\RelationXML\VIOptimizer_UI1_4.xml"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\72B675A043AAADB4C9CABFDF2F6F5484]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\coreHDR.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D1AA19F06A7084F8061826649760BE]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\coreSNR.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\793CD693F5B0F6640981EC4EE91537CE]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\libiomp5md.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8501396E31648284F8FDDC13588A5902]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstRussian.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8AB1621AC99D1DB47B6C6BEF6E46BC5C]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstTChinese.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8B8EC2F6058A7B741BA7192EEB2DA41E]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KSTCommonCore.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90567FC451B64A94F94AC309BB784D80]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KSTImageCore.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\91E23BD58938BA941BDB7184FC689DDE]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstFrench.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\92394C453CBE6324799ACBDA8B20A673]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\sgcuupc.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A0E7996EEA436AF4CB465FCDAAEACAB3]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\rcpdblripp_t.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A79F4E6342116204C9123C499B02C195]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\libmmd.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A85499A01C06D794D8580AAD6078614B]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstNetherlands.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ABE42DD67678E714C9C7386D39DC5707]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\diva.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE7BFA712DE95E34A8348ACC192DF707]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VAIOUpdate.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B052DFB670C44CF4998B7E20C957C990]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstPoland.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCC4C5EC173A6B145B88FDB57537C78E]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\rcpdblr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEC41F180B1E0654DBEA138E3E2D5FD4]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstSpain.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C198E27659E49DB40BDF62D52156B5E0]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstBrazil.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C4101422D437BAB4DBE04C487C744D1E]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\rcpesnr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9684F8E26BAAF240931A9A1B842B8EE]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstEnglish.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DE0472CAEF174284B96534208D465589]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstKorea.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4945482228567E459C6EB46D664515A]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VIOptimizer.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4945482228567E459C6EB46D664515A\729C7955A9207A640A0CD8BA9D98A105]
"File"="vioptimizer.exe.2768A63E_677B_4B90_A271_C0957076E79C"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E7486F161C215874F91AA4B19485DEDE]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KstSChinese.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8CC907373FF895488DCAE7F493E9624]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\sgcudme.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F392FC56A03976A4699A992475BED454]
"729C7955A9207A640A0CD8BA9D98A105"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VSSUProcess.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F484DA94D5569CC41BFB5EC5A4DA2C12]
"729C7955A9207A640A0CD8BA9D98A105"="C:\?Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VIOUtility.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\729C7955A9207A640A0CD8BA9D98A105\Features]
"VAIOImageOptimizer"="7y)eW8l7_eO9MkbIdFwUpR^pXI`Quoe8MkbIdFwUk8E_9W*CLl*9MkbIdFwUk8E_9W*CLlu8MkbIdFwU7y)eW8l7_e?9MkbIdFwUpR^pXI`Quou8MkbIdFwUpR^pXI`Quo*9MkbIdFwU53^pXAtQuou8MkbIdFwUj&^pX@{Quou8MkbIdFwUr$^pX.}Quou8MkbIdFwUv!^pXW}Quou8MkbIdFwU53^pXAtQuo*9MkbIdFwU^)^pX$zQuou8MkbIdFwUb(^pXMzQuou8MkbIdFwUv!^pXW}Quo*9MkbIdFwUn%^pXe{Quou8MkbIdFwUf'^pXrzQuou8MkbIdFwUr$^pX.}Quo*9MkbIdFwUn%^pXe{Quo*9MkbIdFwUj&^pX@{Quo*9MkbIdFwU8_IsYU6Oi(u8MkbIdFwUOy!sY(Vti(u8MkbIdFwUf'^pXrzQuo*9MkbIdFwUpQn_9%AlKlu8MkbIdFwUVOAsYKAXi(u8MkbIdFwUb(^pXMzQuo*9MkbIdFwU1-,sY3Oki(u8MkbIdFwU^)^pX$zQuo*9MkbIdFwUg6,sYGKki(u8MkbIdFwU8_IsYU6Oi(*9MkbIdFwUIcb_9gKzKlu8MkbIdFwUVOAsYKAXi(*9MkbIdFwU1-,sY3Oki(*9MkbIdFwU-'v_9xpcKlu8MkbIdFwUOy!sY(Vti(*9MkbIdFwU{3^rY&wBj(u8MkbIdFwUJG'`9U{UKlu8MkbIdFwUg6,sYGKki(*9MkbIdFwUYZc_9hlwKlu8MkbIdFwU{3^rY&wBj(*9MkbIdFwUpQn_9%AlKl*9MkbIdFwU6O&`90kVKlu8MkbIdFwUHBe_989vKlu8MkbIdFw
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\729C7955A9207A640A0CD8BA9D98A105\InstallProperties]
"InstallLocation"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\729C7955A9207A640A0CD8BA9D98A105\InstallProperties]
"DisplayName"="VAIO Image Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Installed Software\Modules\VAIO Image Optimizer 198273]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Installed Software\Modules\VAIO Image Optimizer 198273]
"VersionPath"="%ProgramFiles(x86)%\Sony\VAIO Creations\VAIO Image Optimizer\Version.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Common Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Common Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOCommon.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Engine Base Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Engine Base Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOEngineBase.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Engine Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Engine Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOEngine.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Localizatoin Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Localizatoin Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOLocalization.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Main App Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Main App Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOMainApp.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Relation XML Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Relation XML Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIORelationXML.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer SDKDLL Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer SDKDLL Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOSDKDLL.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Task Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer Task Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOTask.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer VCHelp]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer VSSU Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer VSSU Merge Module]
"Version"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VersionVIOVSSU.txt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator CMMN_Stereo3DCheck Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator Common Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator Drp Common Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator DrpLicense Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator ReferenceVI Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator Sample Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Sony Corporation\Shared Info\VersionPath\VAIO Image Optimizer/VAIO Movie Creator SGPUCLB Common Merge Module]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}]
"DisplayName"="VAIO Image Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}]
"InstallLocation"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5597C927-029A-46A7-A0C0-8DABD9891A50}]
"InstallLocation"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5597C927-029A-46A7-A0C0-8DABD9891A50}]
"DisplayName"="VAIO Image Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\Shared Info\AppDB\VAIO Image Optimizer]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\Shared Info\AppDB\VAIO Image Optimizer]
"appname"="VAIO Image Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer\1.0]
"ApplicationName"="VAIO Image Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer\1.0]
"InstalledPath"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\VIOptimizer.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer\1.0\App]
"EnginePath"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\KSTEngine.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer\1.0\App]
"ApplicationDir"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer\1.0\PMB]
"InstalledLocation"="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Sony Corporation\VAIO Image Optimizer\1.0\PMB]
"ExeName"="VIOptimizer.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{30146000-87BF-11D1-BE74-C94E44925F69}\InprocServer32]
@="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{30146000-87BF-11D1-BE74-C94E44925F69}\InprocServer32]
"InprocServer32"="[nASC^C0e=nw`.`K5EhAVAIOImageOptimizer>rS8-Vj0GO9PUs{,z2l5L"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{62079164-233b-41f8-a80f-f01705f514a8}]
@="EVR Graph Optimizer"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{97952D20-B180-11CF-8410-00A024EC9DA6}\InprocServer32]
@="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{97952D20-B180-11CF-8410-00A024EC9DA6}\InprocServer32]
"InprocServer32"="[nASC^C0e=nw`.`K5EhAVAIOImageOptimizer>rS8-Vj0GO9PUs{,z2l5L"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{F2300E20-11C9-11D2-AE38-0000F49503A9}\InprocServer32]
@="C:\Program Files (x86)\Sony\VAIO Creations\VAIO Image Optimizer\SMVD.ax"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{F2300E20-11C9-11D2-AE38-0000F49503A9}\InprocServer32]
"InprocServer32"="[nASC^C0e=nw`.`K5EhAVAIOImageOptimizer>rS8-Vj0GO9PUs{,z2l5L"

-= EOF =-

Hope to hear from you soon.

ChrisMasterSky
ChrisMasterSky
Active Member
 
Posts: 8
Joined: May 19th, 2014, 7:30 pm

Re: Thought I wasn't infected anymore, but...

Unread postby nunped » June 15th, 2014, 2:06 pm

Hi ChrisMasterSky,

Let's fix a few things more:

  • Click Start
  • Type notepad.exe in the search programs and files box and click Enter.
  • A blank Notepad page should open.
    • Copy and Paste the following script into Notepad, Do not include the words Code: select all
    • (Click the select all button next to code to select the entire script).
    Code: Select all
    C:\Users\Christian\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat
    C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat
    C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat
    C:\Users\Christian\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat
    C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat
    C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat
    :reg reg.exe delete "HKEY_CURRENT_USER\Software\Trolltech"
    :reg reg.exe delete "HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002\Software\Trolltech"
    
  • Save it to your Desktop as filename fixlist.txt.
  • Right-click FRST.exe and select " Run as administrator " to run it.
  • Press the Fix button just once. Then wait.
  • When finished, it will create a Fixlog.txt log on your Desktop.
  • Please post the content of the Fixlog.txt in your next reply.

Step 2
Malwarebytes' Anti-Malware Image
Please save any items you were working on... close any open programs. You may be asked to reboot your machine.
Please download Malwarebytes Anti-Malware and save it to your desktop. Alternate downloads available here or here.
    If needed...User Guide in HTML or PDF formats. Be advised, many options are disabled in the free version.
    Make sure you are connected to the Internet, you'll need to check for updates.
  1. Double-click on mbam-setup.exe to install the application.
  2. When the installation begins, follow the prompts, accept the License Agreement... Please use the default settings for installation.
    When installation has finished, you'll be presented with the MBAM interface.

    • When the free version is first run, you see a message "Your free trial has expired! ... just ignore it... click the "End free Trial" link to remove the message.
    • You'll see an alert that "Your databases are out of date" Click the "Fix it now button.
    • Press the Scan Settings icon on the top bar of the MBAM interface, make sure Threat Scan is checked.
  3. Press the Scan Now >> button.
    When the scan is finished:
    If clean, a message will be displayed "The scan completed successfully! No malicious items were detected!
    If infections were found you will be notified there were malicious items detected. Malicious items are automatically quarantined.
  4. Press the View detailed log >> link to display the results log.
  5. Press the Copy to Clipboard button.
  6. Copy and paste the scan results in your next reply and exit MBAM.
Using the default History Settings ... Log files can be found in these locations:
Windows Vista, Win 7, Win 8 or 8.1: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

Tell me how the computer is behaving, please.
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Thought I wasn't infected anymore, but...

Unread postby ChrisMasterSky » June 15th, 2014, 4:31 pm

Hello
Here is the FRST log :
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 15-06-2014
Ran by Christian at 2014-06-15 16:24:07 Run:2
Running from C:\Users\Christian\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Users\Christian\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat
C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat
C:\Users\Christian\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat
C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat
:reg reg.exe delete "HKEY_CURRENT_USER\Software\Trolltech"
:reg reg.exe delete "HKEY_USERS\S-1-5-21-2709282161-3102555306-2552918505-1002\Software\Trolltech"

*****************

C:\Users\Christian\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat => Moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat => Moved successfully.
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{8D8C4348-9977-D1E0-3A86-6D9BD825C349}\DioSecouuntLocAutor.2.7.dat => Moved successfully.
C:\Users\Christian\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat => Moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat => Moved successfully.
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{70B65263-7A19-7AB3-F931-8878225BB515}\TXTfiilesConvert.2.7.dat => Moved successfully.

==== End of Fixlog ====

I'm not exiting this site to run Malware Removal and will come back with that result.
ChrisMasterSky
Active Member
 
Posts: 8
Joined: May 19th, 2014, 7:30 pm

Re: Thought I wasn't infected anymore, but...

Unread postby ChrisMasterSky » June 15th, 2014, 4:58 pm

The scan from Malware Bytes says that no threats were found. The computer seems to be behaving fine.
ChrisMasterSky
Active Member
 
Posts: 8
Joined: May 19th, 2014, 7:30 pm

Re: Thought I wasn't infected anymore, but...

Unread postby nunped » June 16th, 2014, 10:09 am

Hi ChrisMasterSky,

Good job! Your computer appears to be free from malware.

Now, some clean-up steps:

Delfix - Delete Fix Processes Image
  1. Please download delfix by Xplode and save it to your desktop.
  2. Right-click on delfix.exe and select " Run as administrator " to run it.
    An application window opens with check box options... The "Remove disinfection tools" option is checked by default.
  3. =================Check ALL the boxes... then press Run.

Don't forget to re-enable your security programs!

Stay informed.
To help minimize the chances of becoming re-infected, please read.
Computer Security - a short guide to staying safer online

If your computer is running slowly after your clean up, please read.
What to do if your Computer is running slowly

Please reply to this post so I know you have read it. If you don't have any further questions this thread will be closed.

Safe surfing! ;)
User avatar
nunped
MRU Honors Grad Emeritus
 
Posts: 1210
Joined: August 17th, 2011, 5:03 pm
Location: Portugal

Re: Thought I wasn't infected anymore, but...

Unread postby NonSuch » June 19th, 2014, 5:02 pm

As this issue appears to be resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 28747
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 290 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware