Solved Com Surrogate is killing my cpu all the time

2Blunt Marley · Sep 3, 2014

I don't know what I can do to fix this.

I have 36 com surrogates running in my task manager. I end process on everyone of them and they just pop back up, one by one. I googled what to do and tried some of the things to no avail. I tried antivirus programs and couldn't get them to fix the problem without having to pay to see if they worked first. I found the FRST file in a

I ran FRST64 and these are the log and the addition report:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2014 02
Ran by TwoBlunt Marley (administrator) on TWOBLUNTMARLEY on 03-09-2014 20:45:19
Running from C:\Users\TwoBlunt Marley\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GU3TCNWM
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvchst.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
(BitTorrent Inc.) C:\Users\TwoBlunt Marley\AppData\Roaming\uTorrent\uTorrent.exe
() C:\Program Files\PreSonus\AudioBox\AudioBox.exe
(Comfort Software Group) C:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe
(ooVoo LLC) C:\Program Files (x86)\ooVoo\ooVoo.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvchst.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_14_0_0_145_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2919992 2011-01-26] (Hewlett-Packard Company)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2679592 2011-02-03] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-07] (IDT, Inc.)
HKLM\...\Run: [MfeEpePcMonitor] => C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [200704 2011-02-09] ()
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [656920 2011-02-01] (PDF Complete Inc)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [299576 2011-01-28] (Hewlett-Packard Company)
HKLM-x32\...\Run: [File Sanitizer] => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12274688 2011-02-07] (Hewlett-Packard)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-26] (Intel Corporation)
HKLM-x32\...\Run: [DTRun] => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [517456 2010-11-24] (ArcSoft Inc.)
HKLM-x32\...\Run: [HPConnectionManager] => c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-04-05] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPQuickWebProxy] => c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-11-10] (Hewlett-Packard Company)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-03] (AVAST Software)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [uTorrent] => C:\Users\TwoBlunt Marley\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-01] (BitTorrent Inc.)
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [LiveSupport] => "C:\Program Files (x86)\LiveSupport\LiveSupport.exe" /noshow /log
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [AudioBox VSL] => C:\Program Files\PreSonus\AudioBox\AudioBox.exe [7591424 2014-03-11] ()
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [FreeAC] => C:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe [1553688 2014-02-20] (Comfort Software Group)
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [ooVoo.exe] => C:\Program Files (x86)\ooVoo\oovoo.exe [36247104 2014-03-25] (ooVoo LLC)
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [iLivid] => "C:\Users\TwoBlunt Marley\AppData\Local\iLivid\iLivid.exe" -autorun
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\Run: [HP Photosmart 7520 series (NET)] => C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\RunOnce: [FlashPlayerUpdate] => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe [851632 2014-07-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...\MountPoints2: {c5aef906-df19-11e3-a06b-e4115b59d547} - H:\AutoRun.exe
HKU\S-1-5-21-3885534537-2450782052-1048211442-1001\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Lsa: [Notification Packages] EpePcNp64 DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ie...ND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMNTDF
SearchScopes: HKLM-x32 - DefaultScope {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = http://www.safesear.ch/web/?type=20140519-135-sshome-ie-df&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ie...ND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMNTDF
SearchScopes: HKLM-x32 - {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = http://www.safesear.ch/web/?type=20140519-135-sshome-ie-df&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO-x32: No Name -> {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} -> No File
BHO-x32: Symantec NCO BHO -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
BHO-x32: Symantec Intrusion Prevention -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2011-12-22]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFF
FF Extension: Symantec Intrusion Prevention - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFF [2014-05-19]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_13_2
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_13_2 [2014-09-03]
FF HKLM-x32\...\Firefox\Extensions: [{635abd67-4fe9-1b23-4f01-e679fa7484c1}] - 0\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
FF HKLM-x32\...\Firefox\Extensions: [{jid1-eFRcA0eiPxecTQ@jetpack}] - 0\extensions\{jid1-eFRcA0eiPxecTQ@jetpack}
FF HKLM-x32\...\Firefox\Extensions: [{jid1-vS7biDmom8YxhA@jetpack}] - 0\extensions\{jid1-vS7biDmom8YxhA@jetpack}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-03]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.safesear.ch/?type=20140519-135-ff-sm
Chrome:
=======
CHR HomePage: Default -> 7100C841337EED95248657A452BA17307B17A023298FC6A6C0DAAB3D46E2F428
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> 30B97EC376A5A9402913E39D821F9F2BB6F8DB11DDFA8CBB29DA122D78B8A5B5
CHR DefaultSearchProvider: Default -> 86E0FFB3CC5BF7E311C745DCC7D84BF918272A1CEDA85B77A96B006CABEB8927
CHR DefaultSearchURL: Default -> 06A3936689A2FAE97C1976F57C54EDD1421F95A8EBF0F4AAEA0A9F4478EB2917
CHR Profile: C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-03]
CHR Extension: (Google Docs) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-03]
CHR Extension: (Google Drive) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-03]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-03]
CHR Extension: (YouTube) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-03]
CHR Extension: (Google Search) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-03]
CHR Extension: (Google Sheets) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-03]
CHR Extension: (avast! Online Security) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-03]
CHR Extension: (Google Wallet) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-03]
CHR Extension: (Gmail) - C:\Users\TwoBlunt Marley\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-03] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-09-03] (AVAST Software)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [481104 2011-02-12] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [464440 2011-05-09] (Hewlett-Packard Company)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
S3 HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [36864 2011-01-12] (Hewlett-Packard Development Company, L.P) [File not signed]
R2 HPDayStarterService; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [133688 2011-01-28] (Hewlett-Packard Company)
R2 HPFSService; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [320000 2011-02-07] (Hewlett-Packard) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [281656 2011-01-28] (Hewlett-Packard Company)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1318912 2011-02-09] () [File not signed]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [130008 2011-04-16] (Symantec Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc)
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [502464 2010-11-11] (ArcSoft, Inc.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [32192 2010-11-11] (ArcSoft, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-09-03] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-09-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-09-03] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-09-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-09-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-09-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-09-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-09-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-09-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-09-03] ()
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20140703.001\BHDrvx64.sys [1530160 2014-05-09] (Symantec Corporation)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64312 2011-05-09] (Hewlett-Packard Company)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-19] (Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-06-11] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142128 2014-06-11] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20140717.001\IDSvia64.sys [525016 2014-05-15] (Symantec Corporation)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [168008 2011-02-09] (McAfee, Inc.)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20140717.023\ENG64.SYS [126040 2014-06-14] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20140717.023\EX64.SYS [2099288 2014-06-14] (Symantec Corporation)
S3 paeusbaudio; C:\Windows\System32\DRIVERS\paeusbaudio_x64.sys [259584 2014-03-04] ()
S3 paeusbaudiodsp; C:\Windows\System32\DRIVERS\paeusbaudiodsp_x64.sys [62464 2014-03-11] ()
S3 paeusbaudioks; C:\Windows\System32\DRIVERS\paeusbaudioks_x64.sys [45568 2014-03-04] ()
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1826048 2010-12-21] ()
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [744568 2011-03-30] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [40568 2011-03-30] (Symantec Corporation)
S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1207020.003\SYMDS64.SYS [450680 2011-01-27] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1207020.003\SYMEFA64.SYS [912504 2011-03-14] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2014-05-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [171128 2011-01-27] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [386168 2011-04-20] (Symantec Corporation)
R3 cpuz136; \??\C:\Users\TWOBLU~1\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-03 20:09 - 2014-09-03 20:09 - 00001045 _____ () C:\Users\TwoBlunt Marley\Desktop\DllTool.lnk
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DllTool
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\KSafe
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\ProgramData\KSafe
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\Program Files (x86)\DllTool
2014-09-03 17:14 - 2014-09-03 17:14 - 00004232 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_RS_WeeklyTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00004064 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_RS_DailyTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00003810 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_LG_DailyTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00003684 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_LogonTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00001998 _____ () C:\Users\Public\Desktop\PC HealthBoost.lnk
2014-09-03 17:14 - 2014-09-03 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC HealthBoost
2014-09-03 17:14 - 2014-09-03 17:14 - 00000000 ____D () C:\ProgramData\BoostSoftware
2014-09-03 17:14 - 2014-09-03 17:14 - 00000000 ____D () C:\Program Files (x86)\PC HealthBoost
2014-09-03 15:44 - 2014-09-03 20:44 - 00000298 _____ () C:\windows\Tasks\SpeedUpMyPC Maintenance.job
2014-09-03 15:44 - 2014-09-03 15:44 - 00003268 _____ () C:\windows\System32\Tasks\SpeedUpMyPC Maintenance
2014-09-03 15:44 - 2014-09-03 15:44 - 00002556 _____ () C:\windows\System32\Tasks\SpeedUpMyPC Startup
2014-09-03 15:44 - 2014-09-03 15:44 - 00001129 _____ () C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2014-09-03 15:44 - 2014-09-03 15:44 - 00000292 _____ () C:\windows\Tasks\SpeedUpMyPC Startup.job
2014-09-03 15:44 - 2014-09-03 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
2014-09-03 15:43 - 2014-09-03 15:43 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Uniblue
2014-09-03 15:43 - 2014-09-03 15:43 - 00000000 ____D () C:\Program Files (x86)\Uniblue
2014-09-03 15:38 - 2014-09-03 15:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack
2014-09-03 15:37 - 2014-09-03 15:41 - 00000000 ____D () C:\windows\SysWOW64\C2MP
2014-09-03 15:21 - 2014-09-03 15:21 - 00001070 _____ () C:\Users\TwoBlunt Marley\Desktop\DllSuite.lnk
2014-09-03 15:21 - 2014-09-03 15:21 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2014
2014-09-03 15:21 - 2014-09-03 15:21 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2014-09-03 15:14 - 2014-09-03 15:14 - 00001932 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-09-03 15:13 - 2014-09-03 15:12 - 00028184 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2014-09-03 15:12 - 2014-09-03 15:12 - 00448400 _____ (AVAST Software) C:\windows\system32\Drivers\aswNdisFlt.sys
2014-09-03 14:24 - 2014-09-03 14:24 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\AVAST Software
2014-09-03 14:23 - 2014-09-03 15:31 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-09-03 14:23 - 2014-09-03 15:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-03 14:23 - 2014-09-03 14:23 - 00002219 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-03 14:23 - 2014-09-03 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-03 14:22 - 2014-09-03 14:23 - 00427360 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 01041168 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00307344 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-09-03 14:22 - 2014-09-03 14:22 - 00224896 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00092008 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00079184 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-09-03 14:22 - 2014-09-03 14:22 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-09-03 14:21 - 2014-09-03 14:21 - 00000000 ____D () C:\Program Files\AVAST Software
2014-09-03 14:20 - 2014-09-03 14:21 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-03 12:44 - 2014-09-03 12:44 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-09-03 12:39 - 2014-09-03 14:31 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-03 12:39 - 2014-09-03 12:39 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\MFAData
2014-09-03 12:17 - 2014-09-03 12:17 - 00073959 _____ () C:\Users\TwoBlunt Marley\Downloads\Shortcut.txt
2014-09-03 12:16 - 2014-09-03 12:17 - 00037160 _____ () C:\Users\TwoBlunt Marley\Downloads\Addition.txt
2014-09-03 12:15 - 2014-09-03 12:17 - 00078023 _____ () C:\Users\TwoBlunt Marley\Downloads\FRST.txt
2014-09-03 12:15 - 2014-09-03 12:15 - 02104832 _____ (Farbar) C:\Users\TwoBlunt Marley\Downloads\FRST64.exe
2014-09-03 11:50 - 2014-09-03 20:45 - 00000000 ____D () C:\FRST
2014-09-02 13:30 - 2014-09-02 13:30 - 00000000 ____D () C:\Users\TwoBlunt Marley\Documents\WebCam Media
2014-09-02 13:30 - 2014-09-02 13:30 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\ArcSoft
2014-09-02 13:25 - 2014-09-02 16:04 - 00000000 ____D () C:\ProgramData\webcam 7
2014-09-02 13:24 - 2013-12-21 08:59 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\Webcam 7 PRO 1.2.4.0 Build 38987+Crack[shilpa143]
2014-09-02 13:23 - 2014-09-02 13:23 - 17722305 _____ () C:\Users\TwoBlunt Marley\Downloads\Webcam 7 PRO 1.2.4.0 Build 38987+Crack[shilpa143] [HKRG]- =TEAM OS =-.rar
2014-09-02 00:32 - 2014-09-02 00:32 - 00000000 _____ () C:\windows\SysWOW64\shoFB2.tmp
2014-09-02 00:15 - 2014-09-02 00:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-02 00:11 - 2014-09-02 00:13 - 00000000 ____D () C:\windows\system32\MRT
2014-09-02 00:11 - 2014-07-31 23:41 - 99218768 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-09-02 00:07 - 2014-09-02 00:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-02 00:05 - 2014-09-02 00:05 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-01 23:54 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-09-01 23:54 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-09-01 23:54 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-09-01 23:54 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-09-01 23:54 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-09-01 23:54 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-09-01 23:54 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-09-01 23:54 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-09-01 23:53 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-09-01 23:53 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-09-01 23:52 - 2014-07-31 19:41 - 00348856 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-09-01 23:52 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-09-01 23:52 - 2014-07-25 10:52 - 23645696 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-09-01 23:52 - 2014-07-25 10:02 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-09-01 23:52 - 2014-07-25 10:01 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-09-01 23:52 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-09-01 23:52 - 2014-07-25 09:30 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-09-01 23:52 - 2014-07-25 09:28 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-09-01 23:52 - 2014-07-25 09:28 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-09-01 23:52 - 2014-07-25 09:25 - 02774528 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-09-01 23:52 - 2014-07-25 09:25 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-09-01 23:52 - 2014-07-25 09:11 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-09-01 23:52 - 2014-07-25 09:10 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-09-01 23:52 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-09-01 23:52 - 2014-07-25 09:03 - 00598016 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-09-01 23:52 - 2014-07-25 09:00 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-09-01 23:52 - 2014-07-25 09:00 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-09-01 23:52 - 2014-07-25 08:59 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-09-01 23:52 - 2014-07-25 08:47 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-09-01 23:52 - 2014-07-25 08:40 - 00452096 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-09-01 23:52 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-09-01 23:52 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-09-01 23:52 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-09-01 23:52 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-09-01 23:52 - 2014-07-25 08:28 - 05824512 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-09-01 23:52 - 2014-07-25 08:28 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-09-01 23:52 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-09-01 23:52 - 2014-07-25 08:19 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-09-01 23:52 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-09-01 23:52 - 2014-07-25 08:17 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-09-01 23:52 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-09-01 23:52 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-09-01 23:52 - 2014-07-25 08:10 - 00292864 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-09-01 23:52 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-09-01 23:52 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-09-01 23:52 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-09-01 23:52 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-09-01 23:52 - 2014-07-25 07:47 - 00631808 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-09-01 23:52 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-01 23:52 - 2014-07-25 07:42 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-09-01 23:52 - 2014-07-25 07:39 - 02087936 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-09-01 23:52 - 2014-07-25 07:39 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-09-01 23:52 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-09-01 23:52 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-09-01 23:52 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-09-01 23:52 - 2014-07-25 07:23 - 13547008 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-09-01 23:52 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-09-01 23:52 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-09-01 23:52 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-09-01 23:52 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-09-01 23:52 - 2014-07-25 06:52 - 02266624 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-09-01 23:52 - 2014-07-25 06:26 - 01431040 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-09-01 23:52 - 2014-07-25 06:17 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-09-01 23:52 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-09-01 23:52 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-09-01 23:52 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-09-01 23:52 - 2014-07-15 23:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-09-01 23:52 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-09-01 23:52 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-09-01 23:52 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-09-01 23:52 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-09-01 23:52 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-09-01 23:52 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-09-01 23:52 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-09-01 23:52 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-09-01 23:52 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-09-01 23:52 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-09-01 23:52 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-09-01 23:52 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-09-01 23:52 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-09-01 23:51 - 2014-08-22 22:07 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-09-01 23:51 - 2014-08-22 21:45 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-09-01 23:51 - 2014-08-22 20:59 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-09-01 23:51 - 2014-06-24 22:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-09-01 23:51 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-09-01 23:51 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-09-01 23:51 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-09-01 23:51 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-09-01 23:51 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-09-01 23:47 - 2014-08-06 22:06 - 00529920 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-09-01 23:47 - 2014-08-06 22:01 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-09-01 23:47 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-09-01 23:47 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-09-01 23:39 - 2014-05-14 12:23 - 02477536 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-09-01 23:39 - 2014-05-14 12:23 - 00058336 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-09-01 23:39 - 2014-05-14 12:23 - 00044512 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-09-01 23:39 - 2014-05-14 12:21 - 02620928 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-09-01 23:38 - 2014-05-14 12:23 - 00700384 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-09-01 23:38 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-09-01 23:38 - 2014-05-14 12:23 - 00038880 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-09-01 23:38 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2014-09-01 23:38 - 2014-05-14 12:20 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-09-01 23:38 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-09-01 23:38 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-09-01 23:38 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-09-01 23:38 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-09-01 23:38 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-09-01 22:31 - 2014-09-01 22:31 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-09-01 22:24 - 2014-09-02 13:29 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\Apps\2.0
2014-09-01 10:35 - 2012-11-25 00:24 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\Rob.Papen.SubBoomBass.v1.1.2-R2R
2014-09-01 10:35 - 2012-11-25 00:02 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\Rob.Papen.Blade.v1.0.1-R2R
2014-09-01 10:35 - 2012-11-25 00:01 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\Rob.Papen.RG.v1.6.0f-R2R
2014-09-01 10:35 - 2012-11-25 00:01 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\Rob.Papen.Punch.v1.0.3d-R2R
2014-09-01 10:35 - 2012-11-25 00:01 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\Rob.Papen.Predator.v1.6.3b-R2R
2014-09-01 10:35 - 2012-11-05 14:02 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\_info
2014-08-26 22:10 - 2014-08-26 22:11 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Lets.Be.Cops.2014.CAM.CLEAN.NOSUBS.X264.AAC-RARBG
2014-08-26 02:45 - 2014-08-26 05:24 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Captain Caveman and the Teen Angels [complete]
2014-08-26 02:24 - 2014-08-26 02:29 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Dawn Of The Dead (1978)
2014-08-26 01:33 - 2014-08-26 01:33 - 00000000 __RHD () C:\Users\TwoBlunt Marley\AppData\Roaming\SecuROM
2014-08-26 00:39 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2014-08-26 00:39 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2014-08-26 00:39 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2014-08-26 00:37 - 2014-08-26 00:37 - 00000000 __SHD () C:\windows\ftpcache
2014-08-26 00:20 - 2014-08-26 01:41 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\New folder (2)
2014-08-24 01:33 - 2014-08-24 01:33 - 00000000 ____D () C:\ProgramData\Steam
2014-08-24 01:13 - 2014-08-24 02:13 - 00000000 ____D () C:\Program Files (x86)\Company of Heroes 2
2014-08-23 17:34 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\windows\system32\HPDiscoPMBC11.dll
2014-08-23 17:20 - 2014-08-23 17:20 - 00452684 _____ () C:\Users\TwoBlunt Marley\Desktop\dominos.xps
2014-08-23 01:56 - 2014-08-24 01:33 - 00000000 ____D () C:\Users\TwoBlunt Marley\Documents\My Games
2014-08-23 01:39 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2014-08-23 01:39 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2014-08-23 01:38 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2014-08-23 01:38 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2014-08-23 01:38 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2014-08-23 01:38 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2014-08-23 01:38 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2014-08-23 01:38 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2014-08-23 01:28 - 2006-09-12 07:57 - 350109696 _____ () C:\Users\TwoBlunt Marley\Desktop\DISK1.iso
2014-08-23 00:46 - 2014-08-23 02:43 - 2009704706 _____ () C:\Users\TwoBlunt Marley\Downloads\Company Of Heroes (2006) + CoH - Opposing Fronts (2007).rar
2014-08-22 14:37 - 2014-08-22 14:37 - 00197490 _____ () C:\Users\TwoBlunt Marley\Desktop\changeaddress.xps
2014-08-19 18:14 - 2014-08-19 18:14 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Muppets Most Wanted (2014) [1080p]
2014-08-19 15:23 - 2014-08-19 15:31 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\A Haunted House 2 (2014)
2014-08-19 11:31 - 2014-08-19 11:31 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\New folder
2014-08-13 13:15 - 2014-08-13 13:15 - 00045384 _____ () C:\windows\SysWOW64\DiscHandler.exe
2014-08-12 02:30 - 2014-08-12 02:30 - 04374016 _____ () C:\windows\system32\ffdshow.ax
2014-08-12 02:30 - 2014-08-12 02:30 - 04009984 _____ () C:\windows\system32\ffmpeg.dll
2014-08-12 02:30 - 2014-08-12 02:30 - 00474624 _____ () C:\windows\system32\ff_kernelDeint.dll
2014-08-12 02:30 - 2014-08-12 02:30 - 00127488 _____ () C:\windows\system32\ff_vfw.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 01532928 _____ () C:\windows\system32\ff_samplerate.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00631296 _____ () C:\windows\system32\TomsMoComp_ff.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00222720 _____ () C:\windows\system32\ff_libdts.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00190464 _____ () C:\windows\system32\libmpeg2_ff.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00183296 _____ () C:\windows\system32\ff_unrar.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00156672 _____ () C:\windows\system32\ff_libmad.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00116224 _____ () C:\windows\system32\ff_liba52.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00114688 _____ () C:\windows\system32\ff_wmv9.dll
2014-08-11 22:30 - 2014-08-11 22:30 - 03916288 _____ () C:\windows\SysWOW64\ffmpeg.dll
2014-08-11 22:30 - 2014-08-11 22:30 - 03502080 _____ () C:\windows\SysWOW64\ffdshow.ax
2014-08-11 22:30 - 2014-08-11 22:30 - 00112640 _____ () C:\windows\SysWOW64\ff_vfw.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 01525760 _____ () C:\windows\SysWOW64\ff_samplerate.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00271360 _____ () C:\windows\SysWOW64\TomsMoComp_ff.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00211968 _____ () C:\windows\SysWOW64\ff_libdts.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00157184 _____ () C:\windows\SysWOW64\ff_unrar.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00147456 _____ () C:\windows\SysWOW64\ff_libmad.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00136704 _____ () C:\windows\SysWOW64\libmpeg2_ff.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00114688 _____ () C:\windows\SysWOW64\ff_liba52.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00099840 _____ () C:\windows\SysWOW64\ff_wmv9.dll
2014-08-09 02:04 - 2014-08-09 02:04 - 00001724 _____ () C:\Users\TwoBlunt Marley\Desktop\Play SimCity 2013 Offline.lnk
2014-08-09 02:04 - 2014-08-09 02:04 - 00000000 ____D () C:\Users\TwoBlunt Marley\Documents\SimCity
2014-08-09 02:00 - 2014-08-09 02:04 - 00000000 ____D () C:\Games
2014-08-09 01:37 - 2014-08-09 01:56 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\SimCity 2013 PC game Offline version ^^nosTEAM^^
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-03 20:47 - 2014-05-19 00:13 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\uTorrent
2014-09-03 20:45 - 2014-09-03 11:50 - 00000000 ____D () C:\FRST
2014-09-03 20:44 - 2014-09-03 15:44 - 00000298 _____ () C:\windows\Tasks\SpeedUpMyPC Maintenance.job
2014-09-03 20:44 - 2014-05-18 23:34 - 00000916 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-03 20:34 - 2014-05-19 01:18 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\CrashDumps
2014-09-03 20:27 - 2014-05-19 01:50 - 01237260 _____ () C:\windows\WindowsUpdate.log
2014-09-03 20:11 - 2014-05-18 23:23 - 00003990 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{638546B2-E3BB-4F9D-8D37-4F26A56F77D1}
2014-09-03 20:09 - 2014-09-03 20:09 - 00001045 _____ () C:\Users\TwoBlunt Marley\Desktop\DllTool.lnk
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DllTool
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\KSafe
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\ProgramData\KSafe
2014-09-03 20:09 - 2014-09-03 20:09 - 00000000 ____D () C:\Program Files (x86)\DllTool
2014-09-03 20:00 - 2014-05-18 23:34 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-09-03 17:14 - 2014-09-03 17:14 - 00004232 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_RS_WeeklyTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00004064 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_RS_DailyTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00003810 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_LG_DailyTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00003684 _____ () C:\windows\System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_LogonTask
2014-09-03 17:14 - 2014-09-03 17:14 - 00001998 _____ () C:\Users\Public\Desktop\PC HealthBoost.lnk
2014-09-03 17:14 - 2014-09-03 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC HealthBoost
2014-09-03 17:14 - 2014-09-03 17:14 - 00000000 ____D () C:\ProgramData\BoostSoftware
2014-09-03 17:14 - 2014-09-03 17:14 - 00000000 ____D () C:\Program Files (x86)\PC HealthBoost
2014-09-03 15:44 - 2014-09-03 15:44 - 00003268 _____ () C:\windows\System32\Tasks\SpeedUpMyPC Maintenance
2014-09-03 15:44 - 2014-09-03 15:44 - 00002556 _____ () C:\windows\System32\Tasks\SpeedUpMyPC Startup
2014-09-03 15:44 - 2014-09-03 15:44 - 00001129 _____ () C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2014-09-03 15:44 - 2014-09-03 15:44 - 00000292 _____ () C:\windows\Tasks\SpeedUpMyPC Startup.job
2014-09-03 15:44 - 2014-09-03 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
2014-09-03 15:43 - 2014-09-03 15:43 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Uniblue
2014-09-03 15:43 - 2014-09-03 15:43 - 00000000 ____D () C:\Program Files (x86)\Uniblue
2014-09-03 15:41 - 2014-09-03 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack
2014-09-03 15:41 - 2014-09-03 15:37 - 00000000 ____D () C:\windows\SysWOW64\C2MP
2014-09-03 15:40 - 2009-07-14 00:45 - 00028576 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-03 15:40 - 2009-07-14 00:45 - 00028576 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-03 15:31 - 2014-09-03 14:23 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-09-03 15:30 - 2011-12-22 15:12 - 00000000 ____D () C:\ProgramData\PDFC
2014-09-03 15:29 - 2014-05-18 23:34 - 00000912 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-03 15:29 - 2009-07-14 01:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-03 15:28 - 2010-11-20 23:47 - 00111178 _____ () C:\windows\PFRO.log
2014-09-03 15:28 - 2009-07-14 00:51 - 00075045 _____ () C:\windows\setupact.log
2014-09-03 15:21 - 2014-09-03 15:21 - 00001070 _____ () C:\Users\TwoBlunt Marley\Desktop\DllSuite.lnk
2014-09-03 15:21 - 2014-09-03 15:21 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2014
2014-09-03 15:21 - 2014-09-03 15:21 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2014-09-03 15:14 - 2014-09-03 15:14 - 00001932 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-09-03 15:14 - 2014-09-03 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-03 15:12 - 2014-09-03 15:13 - 00028184 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2014-09-03 15:12 - 2014-09-03 15:12 - 00448400 _____ (AVAST Software) C:\windows\system32\Drivers\aswNdisFlt.sys
2014-09-03 14:31 - 2014-09-03 12:39 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-03 14:24 - 2014-09-03 14:24 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\AVAST Software
2014-09-03 14:24 - 2014-05-18 23:34 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\Google
2014-09-03 14:23 - 2014-09-03 14:23 - 00002219 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-03 14:23 - 2014-09-03 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-03 14:23 - 2014-09-03 14:22 - 00427360 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2014-09-03 14:23 - 2014-05-18 23:34 - 00000000 ____D () C:\Program Files (x86)\Google
2014-09-03 14:22 - 2014-09-03 14:22 - 01041168 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00307344 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-09-03 14:22 - 2014-09-03 14:22 - 00224896 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00093568 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00092008 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00079184 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00065776 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-09-03 14:22 - 2014-09-03 14:22 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-09-03 14:22 - 2014-09-03 14:22 - 00029208 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-09-03 14:21 - 2014-09-03 14:21 - 00000000 ____D () C:\Program Files\AVAST Software
2014-09-03 14:21 - 2014-09-03 14:20 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-03 12:44 - 2014-09-03 12:44 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-09-03 12:39 - 2014-09-03 12:39 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\MFAData
2014-09-03 12:17 - 2014-09-03 12:17 - 00073959 _____ () C:\Users\TwoBlunt Marley\Downloads\Shortcut.txt
2014-09-03 12:17 - 2014-09-03 12:16 - 00037160 _____ () C:\Users\TwoBlunt Marley\Downloads\Addition.txt
2014-09-03 12:17 - 2014-09-03 12:15 - 00078023 _____ () C:\Users\TwoBlunt Marley\Downloads\FRST.txt
2014-09-03 12:15 - 2014-09-03 12:15 - 02104832 _____ (Farbar) C:\Users\TwoBlunt Marley\Downloads\FRST64.exe
2014-09-03 06:49 - 2014-05-19 00:45 - 00000472 ____H () C:\windows\Tasks\Norton Security Scan for TwoBlunt Marley.job
2014-09-02 16:04 - 2014-09-02 13:25 - 00000000 ____D () C:\ProgramData\webcam 7
2014-09-02 13:30 - 2014-09-02 13:30 - 00000000 ____D () C:\Users\TwoBlunt Marley\Documents\WebCam Media
2014-09-02 13:30 - 2014-09-02 13:30 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\ArcSoft
2014-09-02 13:30 - 2014-05-26 07:48 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\ArcSoft
2014-09-02 13:30 - 2014-05-18 23:03 - 00000000 ___HD () C:\ProgramData\ArcSoft
2014-09-02 13:29 - 2014-09-01 22:24 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\Apps\2.0
2014-09-02 13:23 - 2014-09-02 13:23 - 17722305 _____ () C:\Users\TwoBlunt Marley\Downloads\Webcam 7 PRO 1.2.4.0 Build 38987+Crack[shilpa143] [HKRG]- =TEAM OS =-.rar
2014-09-02 00:34 - 2009-07-14 00:45 - 00268392 _____ () C:\windows\system32\FNTCACHE.DAT
2014-09-02 00:32 - 2014-09-02 00:32 - 00000000 _____ () C:\windows\SysWOW64\shoFB2.tmp
2014-09-02 00:32 - 2011-02-11 00:47 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-02 00:31 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-09-02 00:31 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Dism
2014-09-02 00:31 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-09-02 00:28 - 2014-05-20 10:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-09-02 00:28 - 2011-12-22 14:43 - 00800056 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-09-02 00:15 - 2014-09-02 00:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-02 00:15 - 2014-05-18 23:12 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-02 00:15 - 2014-05-18 23:12 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\Skype
2014-09-02 00:15 - 2014-05-18 23:12 - 00000000 ____D () C:\ProgramData\Skype
2014-09-02 00:13 - 2014-09-02 00:11 - 00000000 ____D () C:\windows\system32\MRT
2014-09-02 00:07 - 2014-09-02 00:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-02 00:05 - 2014-09-02 00:05 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-02 00:05 - 2011-12-22 15:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-09-01 23:53 - 2014-05-19 19:07 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-09-01 22:31 - 2014-09-01 22:31 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-09-01 15:29 - 2014-06-28 08:58 - 00003230 _____ () C:\windows\System32\Tasks\HPCeeScheduleForTWOBLUNTMARLEY$
2014-09-01 15:29 - 2014-06-28 08:58 - 00000354 _____ () C:\windows\Tasks\HPCeeScheduleForTWOBLUNTMARLEY$.job
2014-09-01 10:31 - 2014-06-06 01:51 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Rob Papen Plugins Pack - R2R [deepstatus]
2014-09-01 10:24 - 2009-07-14 01:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-09-01 10:24 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-08-28 16:20 - 2014-05-20 10:10 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Roaming\SoftGrid Client
2014-08-26 22:11 - 2014-08-26 22:10 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Lets.Be.Cops.2014.CAM.CLEAN.NOSUBS.X264.AAC-RARBG
2014-08-26 05:24 - 2014-08-26 02:45 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Captain Caveman and the Teen Angels [complete]
2014-08-26 02:29 - 2014-08-26 02:24 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Dawn Of The Dead (1978)
2014-08-26 01:41 - 2014-08-26 00:20 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\New folder (2)
2014-08-26 01:33 - 2014-08-26 01:33 - 00000000 __RHD () C:\Users\TwoBlunt Marley\AppData\Roaming\SecuROM
2014-08-26 00:40 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-26 00:39 - 2011-12-22 15:24 - 00071508 _____ () C:\windows\DirectX.log
2014-08-26 00:37 - 2014-08-26 00:37 - 00000000 __SHD () C:\windows\ftpcache
2014-08-24 02:13 - 2014-08-24 01:13 - 00000000 ____D () C:\Program Files (x86)\Company of Heroes 2
2014-08-24 01:33 - 2014-08-24 01:33 - 00000000 ____D () C:\ProgramData\Steam
2014-08-24 01:33 - 2014-08-23 01:56 - 00000000 ____D () C:\Users\TwoBlunt Marley\Documents\My Games
2014-08-24 01:27 - 2014-06-06 12:01 - 00000000 ____D () C:\Users\TwoBlunt Marley\Desktop\New folder
2014-08-23 17:36 - 2014-07-17 16:46 - 00000000 ____D () C:\Users\TwoBlunt Marley\AppData\Local\HP
2014-08-23 17:34 - 2014-07-17 16:46 - 00000000 ____D () C:\ProgramData\HP
2014-08-23 17:34 - 2014-07-17 16:46 - 00000000 ____D () C:\Program Files\HP
2014-08-23 17:34 - 2014-07-17 16:46 - 00000000 ____D () C:\Program Files (x86)\HP
2014-08-23 17:34 - 2011-12-22 15:03 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-08-23 17:20 - 2014-08-23 17:20 - 00452684 _____ () C:\Users\TwoBlunt Marley\Desktop\dominos.xps
2014-08-23 02:43 - 2014-08-23 00:46 - 2009704706 _____ () C:\Users\TwoBlunt Marley\Downloads\Company Of Heroes (2006) + CoH - Opposing Fronts (2007).rar
2014-08-22 22:07 - 2014-09-01 23:51 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-08-22 21:45 - 2014-09-01 23:51 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-08-22 20:59 - 2014-09-01 23:51 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-08-22 14:37 - 2014-08-22 14:37 - 00197490 _____ () C:\Users\TwoBlunt Marley\Desktop\changeaddress.xps
2014-08-19 18:14 - 2014-08-19 18:14 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Muppets Most Wanted (2014) [1080p]
2014-08-19 15:31 - 2014-08-19 15:23 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\A Haunted House 2 (2014)
2014-08-19 11:31 - 2014-08-19 11:31 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\New folder
2014-08-17 15:03 - 2014-08-03 18:48 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\Mr. Peabody and Sherman (2014)
2014-08-13 13:15 - 2014-08-13 13:15 - 00045384 _____ () C:\windows\SysWOW64\DiscHandler.exe
2014-08-12 02:30 - 2014-08-12 02:30 - 04374016 _____ () C:\windows\system32\ffdshow.ax
2014-08-12 02:30 - 2014-08-12 02:30 - 04009984 _____ () C:\windows\system32\ffmpeg.dll
2014-08-12 02:30 - 2014-08-12 02:30 - 00474624 _____ () C:\windows\system32\ff_kernelDeint.dll
2014-08-12 02:30 - 2014-08-12 02:30 - 00127488 _____ () C:\windows\system32\ff_vfw.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 01532928 _____ () C:\windows\system32\ff_samplerate.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00631296 _____ () C:\windows\system32\TomsMoComp_ff.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00222720 _____ () C:\windows\system32\ff_libdts.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00190464 _____ () C:\windows\system32\libmpeg2_ff.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00183296 _____ () C:\windows\system32\ff_unrar.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00156672 _____ () C:\windows\system32\ff_libmad.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00116224 _____ () C:\windows\system32\ff_liba52.dll
2014-08-12 02:29 - 2014-08-12 02:29 - 00114688 _____ () C:\windows\system32\ff_wmv9.dll
2014-08-11 22:30 - 2014-08-11 22:30 - 03916288 _____ () C:\windows\SysWOW64\ffmpeg.dll
2014-08-11 22:30 - 2014-08-11 22:30 - 03502080 _____ () C:\windows\SysWOW64\ffdshow.ax
2014-08-11 22:30 - 2014-08-11 22:30 - 00112640 _____ () C:\windows\SysWOW64\ff_vfw.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 01525760 _____ () C:\windows\SysWOW64\ff_samplerate.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00271360 _____ () C:\windows\SysWOW64\TomsMoComp_ff.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00211968 _____ () C:\windows\SysWOW64\ff_libdts.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00157184 _____ () C:\windows\SysWOW64\ff_unrar.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00147456 _____ () C:\windows\SysWOW64\ff_libmad.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00136704 _____ () C:\windows\SysWOW64\libmpeg2_ff.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00114688 _____ () C:\windows\SysWOW64\ff_liba52.dll
2014-08-11 22:29 - 2014-08-11 22:29 - 00099840 _____ () C:\windows\SysWOW64\ff_wmv9.dll
2014-08-09 02:04 - 2014-08-09 02:04 - 00001724 _____ () C:\Users\TwoBlunt Marley\Desktop\Play SimCity 2013 Offline.lnk
2014-08-09 02:04 - 2014-08-09 02:04 - 00000000 ____D () C:\Users\TwoBlunt Marley\Documents\SimCity
2014-08-09 02:04 - 2014-08-09 02:00 - 00000000 ____D () C:\Games
2014-08-09 01:56 - 2014-08-09 01:37 - 00000000 ____D () C:\Users\TwoBlunt Marley\Downloads\SimCity 2013 PC game Offline version ^^nosTEAM^^
2014-08-06 22:06 - 2014-09-01 23:47 - 00529920 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-08-06 22:01 - 2014-09-01 23:47 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-05 09:20 - 2010-11-20 23:27 - 00270496 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\TwoBlunt Marley\AppData\Local\Temp\AD4E_oovoo.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\airBA5A.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\airE918.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\bitool.dll
C:\Users\TwoBlunt Marley\AppData\Local\Temp\CpqMC.dll
C:\Users\TwoBlunt Marley\AppData\Local\Temp\drm_dialogs.dll
C:\Users\TwoBlunt Marley\AppData\Local\Temp\drm_dyndata_7330014.dll
C:\Users\TwoBlunt Marley\AppData\Local\Temp\HPSWF.EXE
C:\Users\TwoBlunt Marley\AppData\Local\Temp\LiveSupport_setup.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\nsd53DF.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\nsj575A.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\nsj7BED.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\nslD7FB.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\nso7F67.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\nsvE1FB.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\oi_{817A79F6-290B-444E-AA0A-D31946073F13}.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\OptimizerPro.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\SfpcHelper_installFinish.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\SfpcHelper_installStart.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\SPSetup.exe
C:\Users\TwoBlunt Marley\AppData\Local\Temp\SWHelperQueryW.dll
C:\Users\TwoBlunt Marley\AppData\Local\Temp\UNINSTALL.EXE
C:\Users\TwoBlunt Marley\AppData\Local\Temp\xguvufz.dll

==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-28 22:17
==================== End Of Log ============================

Following is the addition txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-09-2014 02
Ran by TwoBlunt Marley at 2014-09-03 20:47:57
Running from C:\Users\TwoBlunt Marley\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GU3TCNWM
Boot Mode: Normal
==========================================================

==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.)
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95 - WildTangent) Hidden
Ant.com IE add-on (HKLM-x32\...\{B905CAA1-D6FF-4D21-8858-F8C610491C0B}) (Version: 2.2.4.1076 - Ant.com)
ArcSoft TotalMedia (HKLM-x32\...\ArcSoft TotalMedia) (Version: 2.0.39.12 - ArcSoft)
ArcSoft TotalMedia (x32 Version: 1.0.48.25 - ArcSoft) Hidden
ArcSoft Webcam Sharing Manager (HKLM-x32\...\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}) (Version: 2.0.0.30 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
AudioBox version 1.22 (HKLM\...\{554BB593-3543-4AEB-A192-2AC87EC3FF31}_is1) (Version: 1.22 - PreSonus)
avast! Internet Security (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
AVG 2014 (Version: 14.0.4015 - AVG Technologies) Hidden
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
BiFilter v2.3 (HKLM-x32\...\Tone2 BiFilter2_is1) (Version: - Tone2)
Blasterball 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden
Build-a-Lot - The Elizabethan Era (x32 Version: 2.2.0.95 - WildTangent) Hidden
Business Plan Pro 15th Anniversary Edition (HKLM-x32\...\{3E9E68FB-49FA-410A-8787-424F2A506E0F}) (Version: 11.25.0009 - Palo Alto Software, Inc.)
Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 6.0.0.12 - Hewlett-Packard Company)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
DirectWave (HKLM-x32\...\DirectWave) (Version: - Image-Line)
DLL Suite 2013 (HKLM-x32\...\{885843E7-6CAC-4791-B7BF-1CD516017954}_is1) (Version: - )
DllTool 1.0 (HKLM-x32\...\{8C36FC6F-3576-447C-B15D-FF1504C91104}_is1) (Version: - )
Drive Encryption For HP ProtectTools (HKLM\...\{8A0041CD-277C-4C1F-BFE4-7AC508B20B4C}) (Version: 6.0.33.24411 - Hewlett-Packard Company)
ElectraX full (HKLM-x32\...\Tone2 ElectraX full_is1) (Version: - Tone2)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Evernote v. 4.2.2 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.2.3979 - Evernote Corp.)
Face Recognition for HP ProtectTools (HKLM\...\{D3A775F2-2674-4452-8D80-1FC1446052EE}) (Version: 6.00.4303 - Hewlett-Packard Company)
Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden
FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden
File Sanitizer For HP ProtectTools (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 6.0.0.8 - Hewlett-Packard Company)
FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version: - Image-Line)
Free Alarm Clock 3.1.0 (HKLM-x32\...\{8ED5A2F1-338F-4608-8AF7-BCD1ADC1E1F7}_is1) (Version: 3.1 - Comfort Software Group)
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
HP 3D DriveGuard (HKLM\...\{83DA38AB-1014-41C2-A3CD-E2B93832A71A}) (Version: 4.1.4.1 - Hewlett-Packard Company)
HP Auto (Version: 1.0.12494.3472 - Hewlett-Packard Company) Hidden
HP Connection Manager (HKLM-x32\...\{4B21E4B2-89B8-499D-803A-34ABF929401E}) (Version: 4.1.10.1 - Hewlett-Packard Company)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP DayStarter (HKLM\...\{483D5A49-A26B-4CB8-AA2D-0D1811322061}) (Version: 2.0.0.12 - Hewlett-Packard Company)
HP Deskjet 3050 J610 series Basic Device Software (HKLM\...\{6457BD83-98CF-4267-93D7-F173FF3E7C25}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Documentation (HKLM-x32\...\{C6A49140-A2D9-4CA4-BB92-2E1C8CBB6E16}) (Version: 1.3.0.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{CFC1988A-F492-4BC5-B6F7-683A95718AE9}) (Version: 1.1.11.1 - Hewlett-Packard Company)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.5 - WildTangent)
HP HotKey Support (HKLM\...\{7D1C63D1-6520-49DA-B738-958133526E80}) (Version: 4.0.10.1 - Hewlett-Packard Company)
HP Photosmart 7520 series Basic Device Software (HKLM\...\{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Power Assistant (HKLM\...\{3D8EDF72-13CC-4E51-AAB6-32A20524D2E0}) (Version: 2.0.2.0 - Hewlett-Packard Company)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 6.00.888 - Hewlett-Packard Company)
HP ProtectTools Security Manager (Version: 6.00.888 - Hewlett-Packard Company) Hidden
HP QuickWeb (HKLM-x32\...\{3F437675-F102-4866-BDE1-FFFC7B45EC0B}) (Version: 3.1.2.10229 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{03046EBB-CB7C-4B98-BEFB-690EB955DA22}) (Version: 8.5.4526.3645 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{344A1AA2-AC8E-4741-BDB0-65B68FDA883C}) (Version: 3.2.0.0 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{B7F60A16-7A7B-41FB-9AE3-DE9E324FBA06}) (Version: 4.0.112.1 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{531000B3-DBEE-4115-BBF3-DA48B67C053F}) (Version: 8.2.1.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E02FBF01-0DE3-4BCB-89E8-D300FEFC3289}) (Version: 5.2.3.4 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{72E3D563-C37C-4037-9F04-B64C0DAD0EFF}) (Version: 2.2.3 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 2.00 - Hewlett-Packard Company)
HP Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50058.0 - Sonix)
HPAsset component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6365.0 - IDT)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
IL MiniHost (HKLM-x32\...\IL MiniHost) (Version: - Image-Line)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Insaniquarium Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Intel(R) Identity Protection Technology 1.0.71.0 (HKLM-x32\...\{2C43790E-8470-1027-82D3-DF319F3C410F}) (Version: 1.0.71.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2342 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
Jewel Quest II (x32 Version: 2.2.0.95 - WildTangent) Hidden
Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.57.2 - JMicron Technology Corp.)
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Lemonade Tycoon 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft_VC90_CRT_x86 (HKLM-x32\...\{DF2035BE-5820-4965-BD97-7FAF8D4A7879}) (Version: 1.0.0 - Microsoft Corporation)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS (HKLM-x32\...\Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS) (Version: - )
Norton Internet Security (HKLM-x32\...\NIS) (Version: 18.7.2.3 - Symantec Corporation)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.4001 - ooVoo LLC.)
PCHealthBoost 3.0.5 (HKLM-x32\...\PCHealthBoost) (Version: 3.0.5 - Boost Software Inc.)
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.33 - PDF Complete, Inc)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
Performancer (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{dfc86759}) (Version: - 24soft) <==== ATTENTION
Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
PricEuDownloaDDEr (HKLM-x32\...\{2D471A31-4FA7-95BA-1880-D441113ED736}) (Version: - PriiceDoownloAdeR)
Privacy Manager for HP ProtectTools (HKLM\...\{ACA53F68-B003-4D0E-9C3D-0C4EE09D08A8}) (Version: 6.00.831 - Hewlett-Packard Company)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0016 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.11.0706 - REALTEK Semiconductor Corp.)
reFX Nexus 1.0.0 (HKLM-x32\...\{84D04D4F-2201-4AED-BE9A-FFA62069CA19}_is1) (Version: 1.0.0 - reFX)
reFX Nexus 1.0.9 (HKLM-x32\...\reFX Nexus 1.0.9_is1) (Version: - )
reFX Nexus 1.3.0 (HKLM-x32\...\reFX Nexus 1.3.0_is1) (Version: - )
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
SDK (x32 Version: 2.24.025 - Portrait Displays, Inc.) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
SmartCompAAre (HKLM-x32\...\{A9F7A981-09A3-C1F7-2D46-1BA20CFDF02F}) (Version: - SimaarttCompare) <==== ATTENTION
SpeedUpMyPC (HKLM-x32\...\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1) (Version: 6.0.4.2 - Uniblue Systems Limited) <==== ATTENTION
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.11.1 - Synaptics Incorporated)
System Optimizer Pro (HKLM\...\System Optimizer Pro) (Version: 1.0 - 383 Media, Inc.) <==== ATTENTION
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{ADC70B7A-530B-46E3-8384-48D22681A41E}) (Version: 6.0.0.30 - Hewlett-Packard Company)
Theft Recovery for HP ProtectTools (x32 Version: 6.0.0.30 - Hewlett-Packard Company) Hidden
Tone2 AkustiX Enhancer v1.0 X64 (HKLM-x32\...\Tone2 AkustiX Enhancer X64_is1) (Version: - Tone2)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Validity Fingerprint Sensor Driver (HKLM\...\{FFC3E41D-2C2B-45B7-9AD9-5EA19572DD26}) (Version: 4.3.117.0 - Validity Sensors, Inc.)
VIP Access SDK x64(1.0.0.50) (HKLM-x32\...\VIP Access SDK) (Version: 1.0.0.50 - Symantec Inc.)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95 - WildTangent) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Waves Diamond Bundle v5.2 (HKLM-x32\...\Waves Diamond Bundle v5.2) (Version: - )
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (HP Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
Windows 7 Codec Pack 4.1.0 (HKLM-x32\...\Windows 7 - Codec Pack) (Version: 4.1.0 - Windows 7 Codec Pack)
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Argazki Galeria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
WinZip 14.5 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}) (Version: 14.5.9095 - WinZip Computing, S.L. )
Xobni Core (x32 Version: 1.0.0 - Xobni, Inc.) Hidden
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3885534537-2450782052-1048211442-1001_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
==================== Restore Points =========================
03-09-2014 16:32:38 Registry Reviver Restore Point (09/03/14)
03-09-2014 16:43:19 Installed AVG 2014
03-09-2014 16:45:01 Installed AVG 2014
03-09-2014 19:09:08 avast! antivirus system restore point
03-09-2014 19:14:14 Device Driver Package Install: Avast Network Service
03-09-2014 19:43:29 Uniblue SpeedUpMyPC installation
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {04BA7BF3-796B-4150-859D-FDFDEBBFD117} - System32\Tasks\{1EA8C977-6288-44D9-AD23-230432C35EF2} => H:\Hypersonic 2 Setup.exe
Task: {1461661B-A52D-4EFC-8E84-ED24B41B6933} - System32\Tasks\{7764AD75-7097-48C3-BBAC-FA21FDB6A71F} => G:\FM8\setup.exe
Task: {3178E1AE-1A92-491C-AAEC-A3BC2720D697} - System32\Tasks\{6C60F703-92EB-4829-860A-A7447235CBF2} => G:\hs\setup.exe
Task: {34374524-787A-448D-A739-5741DB8BB4DE} - System32\Tasks\{FFA5767D-A482-4465-BFAA-317233CFD318} => G:\hs\setup.exe
Task: {356E23DD-364C-44E6-96FD-D95953C3D70A} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08] (Adobe Systems Incorporated)
Task: {38319FCD-9079-4B1E-B2EC-31549175B3D0} - System32\Tasks\{EDDF5848-87B6-4381-B50A-15FA9E2DEFC0} => G:\Nexus\Windows Setup\Nexus v1.0.9 Setup.exe
Task: {3AE3F79A-B99F-42FF-A892-9C08E850E1EB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-18] (Google Inc.)
Task: {4C16A90D-8122-42EF-810C-1100E8220821} - System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_LG_DailyTask => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe [2014-08-05] ()
Task: {4D0CA602-4F59-4766-BFDE-74C367B12A6A} - System32\Tasks\Symantec\Norton Error Analyzer 18.7.2.3 => C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\SymErr.exe [2012-06-07] (Symantec Corporation)
Task: {4EDC17B3-2D5C-4EBA-9A67-5782B75ADEB7} - System32\Tasks\{5A180BA7-A95D-4DB3-A538-7A3A0C121D94} => H:\Hypersonic 2 Setup.exe
Task: {567D59D0-3B38-41B2-93B8-DA24AF53DEEE} - System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_RS_DailyTask => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe [2014-08-05] ()
Task: {5CD2D5F1-AE4F-4E94-B688-BE35608DE7E8} - System32\Tasks\{FB243F09-6006-4B57-82FF-D6E9D8F34F38} => G:\hs\setup.exe
Task: {604B269B-74F6-4F97-A4F6-A1768EAE20A5} - System32\Tasks\SpeedUpMyPC Maintenance => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2014-09-02] (Uniblue Systems Limited) <==== ATTENTION
Task: {68B4FDE9-8C48-4B01-8507-11ED3A6D51B4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2010-12-09] (Hewlett-Packard Company)
Task: {73594945-C22D-4EB7-BC82-08F1F862B2B1} - System32\Tasks\Symantec\Norton Error Processor 18.7.2.3 => C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\SymErr.exe [2012-06-07] (Symantec Corporation)
Task: {7F5B519A-36BF-4925-A696-85557C7AF2FE} - System32\Tasks\{8F6E691C-12F9-430D-A5D6-DFF8F348E8C8} => H:\Hypersonic 2 Setup.exe
Task: {81090BCF-9B58-4A6D-B3F7-95AE173DE874} - System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_RS_WeeklyTask => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe [2014-08-05] ()
Task: {90A44F8F-7015-48DC-B04D-999D9E48CADD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2010-12-09] (Hewlett-Packard Company)
Task: {B024E56E-5121-4F75-91B6-1F4CD5F830C9} - System32\Tasks\Norton Security Scan for TwoBlunt Marley => C:\Program Files (x86)\Norton Security Scan\Engine\4.1.0.28\Nss.exe [2014-01-27] (Symantec Corporation)
Task: {B60A4E92-AD83-46AD-84AC-666D0C182C7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-18] (Google Inc.)
Task: {C18313D8-2ABA-4353-B684-60E958EE851E} - System32\Tasks\HPCeeScheduleForTWOBLUNTMARLEY$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard)
Task: {CBCEB856-ACD6-407E-9B19-0C9074615E02} - System32\Tasks\PCHB_TwoBlunt Marley_PCHealthBoost_LogonTask => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe [2014-08-05] ()
Task: {DAC86DD1-8140-4355-9C73-AC2A50619ADD} - System32\Tasks\NSManager => C:\Users\TwoBlunt Marley\AppData\Local\NSManager\manager.exe [2014-04-04] ()
Task: {DF7B8F55-693B-48D8-AE1C-6988B251382C} - System32\Tasks\{F56474CC-672B-4871-9918-C1084527223F} => G:\Nexus\Windows Setup\Nexus v1.0.0 Setup.exe
Task: {F0C34F98-AE20-40A9-9B49-C7C266B682A6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-09-03] (AVAST Software)
Task: {F7556A7E-857A-4C5A-9394-97839065A80A} - System32\Tasks\SpeedUpMyPC Startup => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2014-09-02] (Uniblue Systems Limited) <==== ATTENTION
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForTWOBLUNTMARLEY$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\Norton Security Scan for TwoBlunt Marley.job => C:\PROGRA~2\NORTON~3\Engine\410~1.28\Nss.exe
Task: C:\windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe <==== ATTENTION
Task: C:\windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2011-01-31 15:54 - 2011-01-31 15:54 - 00107008 _____ () c:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll
2011-02-09 12:04 - 2011-02-09 12:04 - 02905600 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpFve64.dll
2011-02-09 11:27 - 2011-02-09 11:27 - 00141824 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface64.dll
2010-09-06 13:18 - 2010-09-06 13:18 - 01412608 _____ () C:\windows\system32\LIBEAY32.dll
2011-02-09 11:28 - 2011-02-09 11:28 - 01318912 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
2011-03-25 23:28 - 2011-03-25 23:28 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-02-09 11:51 - 2011-02-09 11:51 - 00200704 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
2014-05-19 20:52 - 2014-03-11 11:04 - 07591424 _____ () C:\Program Files\PreSonus\AudioBox\AudioBox.exe
2011-01-26 22:14 - 2011-01-26 22:14 - 00036408 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Remote.dll
2011-01-26 22:13 - 2011-01-26 22:13 - 00080440 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\HardwareAccess.dll
2011-01-26 22:13 - 2011-01-26 22:13 - 00047160 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\Graphs.dll
2011-12-22 15:15 - 2011-01-26 21:34 - 01083392 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\System.Data.SQLite.dll
2010-06-24 03:21 - 2010-06-24 03:21 - 01102336 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\System.Data.SQLite.dll
2014-09-03 14:22 - 2014-09-03 14:22 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-09-03 14:22 - 2014-09-03 14:22 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\14090300\algo.dll
2011-02-09 11:48 - 2011-02-09 11:48 - 02637824 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcEncryptionProviderPlugin.dll
2011-02-09 11:27 - 2011-02-09 11:27 - 00126976 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface.dll
2011-02-09 11:51 - 2011-02-09 11:51 - 02650112 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpDpHostPlugin.dll
2011-02-09 11:29 - 2011-02-09 11:29 - 02035712 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeCoreEncryptionPlugin.dll
2011-02-09 11:30 - 2011-02-09 11:30 - 01929216 _____ () C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeProductDetectionPlugin.dll
2014-05-19 20:52 - 2014-03-04 13:53 - 00192512 _____ () C:\Program Files\PreSonus\AudioBox\paeusbaudioapi.dll
2014-09-03 14:22 - 2014-09-03 14:22 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2010-06-24 03:19 - 2010-06-24 03:19 - 00514570 _____ () c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\sqlite3.dll
2014-09-02 16:03 - 2014-09-02 16:03 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1e70f9aada009e40c4f131cfdbe52126\IsdiInterop.ni.dll
2014-05-18 22:58 - 2011-01-12 21:56 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================
Application errors:
==================
Error: (09/03/2014 08:34:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc0000005
Fault offset: 0x00136cef
Faulting process id: 0x1d94
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 07:25:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc0000005
Fault offset: 0x00136cef
Faulting process id: 0x2d68
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 06:56:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc0000005
Fault offset: 0x00136cef
Faulting process id: 0x2cf4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 06:29:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc0000005
Fault offset: 0x003cc2ab
Faulting process id: 0x4180
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 05:45:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc00000fd
Fault offset: 0x000ffb8e
Faulting process id: 0x23ac
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 04:47:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: RPCRT4.dll, version: 6.1.7601.18532, time stamp: 0x53c3352a
Exception code: 0xc0020043
Fault offset: 0x0005d111
Faulting process id: 0x26c8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 04:24:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17239, time stamp: 0x53d26078
Exception code: 0xc00000fd
Fault offset: 0x000ffb8e
Faulting process id: 0x1b1c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 04:15:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17239, time stamp: 0x4a5bc6b7
Faulting module name: RPCRT4.dll, version: 6.1.7601.18532, time stamp: 0x53c3352a
Exception code: 0xc0020043
Fault offset: 0x0005d111
Faulting process id: 0x354c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Error: (09/03/2014 03:34:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.17239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1910
Start Time: 01cfc7add19a3f4c
Termination Time: 6
Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Report Id:
Error: (09/03/2014 03:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (09/03/2014 03:31:54 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {FC38B03D-0921-4C97-B736-7CFE5DDA1E5C}
Error: (09/03/2014 03:31:53 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (09/03/2014 03:27:30 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the HPDayStarterService service.
Error: (09/03/2014 02:34:28 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (09/03/2014 02:31:52 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 2:29:21 PM on ‎9/‎3/‎2014 was unexpected.
Error: (09/03/2014 02:27:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NIS service.
Error: (09/03/2014 11:31:39 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the hpqwmiex service.
Error: (09/03/2014 11:31:09 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the hpqwmiex service.
Error: (09/03/2014 02:59:54 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.
Error: (09/03/2014 02:49:05 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Microsoft Office Sessions:
=========================
Error: (09/03/2014 08:34:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7MSHTML.dll11.0.9600.1723953d26078c000000500136cef1d9401cfc7d6735ceaf8C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll2e0d95d9-33cb-11e4-8a04-e4115b585ce6
Error: (09/03/2014 07:25:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7MSHTML.dll11.0.9600.1723953d26078c000000500136cef2d6801cfc7cd0c63294eC:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dlla017db7d-33c1-11e4-8a04-e4115b585ce6
Error: (09/03/2014 06:56:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7MSHTML.dll11.0.9600.1723953d26078c000000500136cef2cf401cfc7c8719c05f9C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll8f9f8f68-33bd-11e4-8a04-e4115b585ce6
Error: (09/03/2014 06:29:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7MSHTML.dll11.0.9600.1723953d26078c0000005003cc2ab418001cfc7c4eba9ce93C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dllc0e57303-33b9-11e4-8a04-e4115b585ce6
Error: (09/03/2014 05:45:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7MSHTML.dll11.0.9600.1723953d26078c00000fd000ffb8e23ac01cfc7bedb370d9fC:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll90fa5b68-33b3-11e4-8a04-e4115b585ce6
Error: (09/03/2014 04:47:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7RPCRT4.dll6.1.7601.1853253c3352ac00200430005d11126c801cfc7b7e5a92dc0C:\Program Files\Internet Explorer\iexplore.exeC:\windows\syswow64\RPCRT4.dll9277220a-33ab-11e4-8a04-e4115b585ce6
Error: (09/03/2014 04:24:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7MSHTML.dll11.0.9600.1723953d26078c00000fd000ffb8e1b1c01cfc7b431520ff3C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll3e1441db-33a8-11e4-8a04-e4115b585ce6
Error: (09/03/2014 04:15:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172394a5bc6b7RPCRT4.dll6.1.7601.1853253c3352ac00200430005d111354c01cfc7b382450368C:\Program Files\Internet Explorer\iexplore.exeC:\windows\syswow64\RPCRT4.dll06da82be-33a7-11e4-8a04-e4115b585ce6
Error: (09/03/2014 03:34:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: IEXPLORE.EXE11.0.9600.17239191001cfc7add19a3f4c6C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Error: (09/03/2014 03:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 53%
Total physical RAM: 8126.36 MB
Available physical RAM: 3764.68 MB
Total Pagefile: 16250.9 MB
Available Pagefile: 10864.99 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:442.88 GB) (Free:128.89 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:17.58 GB) (Free:2.67 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:4.99 GB) (Free:2.11 GB) FAT32
Drive h: (DISK1) (CDROM) (Total:3.99 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 17E9BB97)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=442.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=17.6 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=5 GB) - (Type=0C)
==================== End Of Log ============================

If anyone can help please do

TwinHeadedEagle · Sep 4, 2014

Hello,

They call me TwinHeadedEagle around here, and I'll be working with you.

Before we start please read and note the following:

At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
I visit forum several times at day, making sure to respond to everyone's topic as fast as possible. But bear in mind that I have private life like everyone and I cannot be here 24/7. So please be patient with me. Also, some infections require less, and some more time to be removed completely, so bear this in mind and be patient.
Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. If you solved your problem yourself, set aside two minutes to let me know.
Please attach all report using

button below. Doing this, you make it easier for me to analyze and fix your problem.
Do not ask for help for your business PC. Companies are making revenue via computers, so it is good thing to pay someone to repair it.
If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.

Multiple Resident Protection warning!

Always have one (and no more than one!) AntiVirus program! In this case having more of them will not provide you with better protection - instead they may cause slowness, lock-ups and even mark another ones as harmful, leading to leave your system unstable and even damaged. Please choose only one from the listed below to stay with and uninstall the others:

Norton Internet Security
avast! Antivirus

Uninstallation procedure:

Press the

+ R on your keyboard at the same time. Type appwiz.cpl and click OK.
Search for each uninstalled entry, right-click it and select Uninstall.

This should be done until any other steps will be taken.

Uninstall some programs

We need to uninstall some programs.

Press the

+ R on your keyboard at the same time. Type appwiz.cpl and click OK.
Search there for each entry mentioned below, right-click the entry and click Uninstall one at a time

The list of programs to uninstall:

Performancer
SmartCompAAre
SpeedUpMyPC
System Optimizer Pro

After completing uninstalls, please manually reboot your machine!

Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.

Running it on another one may cause damage and render the system unstable.

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

Right-click on

icon and select

Run as Administrator to start the tool.
(XP users click run after receipt of Windows Security Warning - Open File).
Press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

Fix with AdwCleaner

Please download AdwCleaner by Xplode and save the file to your desktop.

Right-click on

icon and select

Run as Administrator to start the tool.
Follow the prompts and click Scan.
When finished, please click Clean.
Upon completion, click Report. A log (AdwCleaner[S*].txt) will open.

Please include the contents of that file in your reply.

Scan with Malwarebytes' Anti-Malware

Please download Malwarebytes Anti-Malware and save it to your desktop.

Install the progam and select update.
Once updated, click the Settings tab, in the left panel choose Detctions & protection and tick Scan for rootkits.
Click the Scan tab, choose Threat Scan is checked and click Scan Now.
If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
Upon completion of the scan (or after the reboot), click the History tab.
Click Application Logs and double-click the Scan Log.
At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.

2Blunt Marley · Sep 4, 2014

ok.
I ran the fix and this is the result...

it seems to have disappeared but im not sure.

TwinHeadedEagle · Sep 5, 2014

Please run all tools I instructed.

2Blunt Marley · Sep 5, 2014

i just ran both tools and these are the results.

TwinHeadedEagle · Sep 5, 2014

Good

Now we're done.

Below you will find my thoughts about securing your machine. Go ahead through it, you will benefit from some useful advice about safe computing.

Recommended reading:

MUST READ - security tips:

MUST READ - general maintenance:

What to do if your Computer is running slowly?

The Importance of Software Updating:

In order to stay protected it is very important that you regularly update all of your software. Cybercriminals depend on the apathy of users around software updates to keep their malicious endeavor running.

Operating systems, such as Windows, and applications, such as Adobe Reader or JAVA, are used by tens of millions of computers and devices around the world, making them a huge target for cybercriminals. Downloading updates and installing them can sometimes be tedious, but the advantages you get from the updates are certainly worth it.

Recommended additional software:

TFC - to clean unneeded temporary files.

Malwarebytes' Anti-Malware - to scan your system from time to time in search for malware.

Malwarebytes' Anti-Exploit - to prevent plenty of mostly exploited vulnerabilities.

McShield - to prevent infections spread by removable media.

CryptoPrevent - to secure yourself from very severe CryptoLocker infection.

Unchecky - to prevent from installing additional foistware, implemented in legitimate installations.

FiheHippo.com Update Checker - to keep your programs up-to-date.

Adblock - to surf the web without annoying ads!

Post-cleanup procedures:

Download DelFix by Xplode and save it to your desktop.

Run the tool by right click on the

icon and Run as administrator option.
Make sure that these ones are checked:
- Remove disinfection tools
- Purge system restore
- Reset system settings
Push Run and wait until the tool completes his work.
All tools we used should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

My help is free for everybody.
If you're happy with the help provided and/or wish to buy me a beer for the assistance you received, then you can consider a donation:

Thank you!

Stay safe,
TwinHeadedEagle

TwinHeadedEagle · Sep 8, 2014

Since this issue appears to be resolved, I am closing the topic. If that is not the case and you need or wish to continue with this topic, please contact me or any staff member with the address of the thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Search

Solved Com Surrogate is killing my cpu all the time

2Blunt Marley

New Member

TwinHeadedEagle

Level 41

Attachments

2Blunt Marley

New Member

Attachments

TwinHeadedEagle

Level 41

2Blunt Marley

New Member

Attachments

TwinHeadedEagle

Level 41

TwinHeadedEagle

Level 41

Similar threads