Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 91698 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Unable to Restore/Proxy Settings Keep Changing [Closed]


  • This topic is locked This topic is locked
27 replies to this topic

#16 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 15 June 2014 - 10:41 PM

Could you look in the C:\ directory for the file C:\ComboFix.txt please? If it is there, please post that. :)

Next

Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it to the same location where FRST.exe is located as fixlist.txt (If asked to overwrite existing one please allow)

start
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Policies\system: [DisableRegistryTools] 1
2014-05-29 11:40 - 2014-05-29 11:39 - 03227936 _____ (Security Stronghold ) C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe
2014-05-30 19:06 - 2014-02-24 19:32 - 00000109 _____ () C:\Windows\[TheMoonlight].txt
2014-06-04 01:37 - 2014-02-06 18:06 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\genienext
2014-06-04 01:37 - 2014-03-04 06:21 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\uTorrent
2014-06-04 01:37 - 2014-03-03 01:31 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Azureus
2014-06-04 01:37 - 2014-02-24 19:32 - 00000000 _RSHD () C:\Windows\M57151
GroupPolicy: Group Policy on Chrome detected
IFEO\msconfig.exe: [Debugger] C:\Windows\notepad.exe
IFEO\regedit.exe: [Debugger] C:\Windows\notepad.exe
end

NOTICE: It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST again like we did before but this time press the Fix button just once and wait.
The tool will make a log on the same location the tool is saved (Fixlog.txt) please post it to your reply.

Next

Please download SystemLook (64-bit) and save it to your Desktop.
Download Mirror #1

  • Double-click SystemLook_x64.exe to run it.
  • Copy the content of the following codebox into the textfield:
    :dir
    C:\Windows\SysWOW64\X51335go
    
    :filefind
    curriculum vittae.zip
    USE_RAR_To_Extract.ace
    ZIPPED.zip
    FILEATTACH.bz2
    Doc.gz
    file.bz2
    thisfile.gz
    TITTA'S Picture.jar
    TutoriaL HAcking*.exe
    Lagu – Server*.scr
    Data DosenKu*.exe
    Titip Folder Jangan DiHapus*.exe
    Love Song*.scr
    New mp3 BaraT !!*.exe
    THe Best Ungu*.scr
    Blink 182*.exe
    Norman virus Control 5.18*.exe
    Windows Vista setup*.scr
    Gallery*.scr
    RaHasIA*.exe
    *Porn.exe
    New Folder(2).exe
    New Folder.scr
    
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt

In your next reply, please provide the following:

  • Fixlog.txt
  • the log created from the first CF run.
  • SystemLook.txt
  • Description of how your PC is running.

Regards,

Richard :wavey:


Posted Image
Richard
Proud Graduate of WTT Classroom

    Advertisements

Register to Remove


#17 KristinaChapa

KristinaChapa

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 17 June 2014 - 05:08 AM

ComboFix 14-06-13.01 - Frankiej 06/15/2014   7:52.2.2 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.2943.1577 [GMT -7:00]
Running from: c:\users\Frankiej\Desktop\ComboFix.exe
AV: AVG Premium Security 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Premium Security 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
.
(((((((((((((((((((((((((   Files Created from 2014-05-15 to 2014-06-15  )))))))))))))))))))))))))))))))
.
.
2014-06-15 15:05 . 2014-06-15 15:05 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2014-06-15 15:05 . 2014-06-15 15:05 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-06-14 19:04 . 2014-06-14 19:04 -------- d-----w- c:\program files\Microsoft Mouse and Keyboard Center
2014-06-11 18:41 . 2014-05-30 07:50 1068032 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2014-06-09 22:33 . 2014-06-14 10:12 -------- d-----w- C:\FRST
2014-06-06 10:47 . 2014-06-06 10:47 4558848 ----a-w- c:\windows\SysWow64\GPhotos.scr
2014-06-06 09:30 . 2014-04-15 23:23 40248 ----a-w- c:\windows\system32\TURegOpt.exe
2014-06-06 09:30 . 2014-04-15 23:23 29496 ----a-w- c:\windows\system32\authuitu.dll
2014-06-06 09:30 . 2014-04-15 23:23 25400 ----a-w- c:\windows\SysWow64\authuitu.dll
2014-06-06 09:29 . 2014-06-06 09:29 -------- d-----w- c:\users\Frankiej\AppData\Local\AVG
2014-06-06 09:23 . 2014-06-07 04:07 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-05 09:09 . 2014-06-05 09:09 -------- d-----w- c:\users\Frankiej\AppData\Roaming\AVG2014
2014-06-04 07:19 . 2014-06-05 09:03 -------- d-----w- C:\$AVG
2014-06-04 07:19 . 2014-06-05 10:26 -------- d-----w- c:\programdata\AVG2014
2014-06-02 03:03 . 2014-06-04 08:36 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-31 05:22 . 2014-06-04 08:37 -------- d-----w- c:\users\Frankiej\AppData\Roaming\SUPERAntiSpyware.com
2014-05-31 05:22 . 2014-06-04 08:37 -------- d-----w- c:\program files\SUPERAntiSpyware
2014-05-31 05:22 . 2014-05-31 05:22 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-05-30 08:26 . 2014-05-30 08:26 -------- d-----w- c:\programdata\Sophos
2014-05-30 08:12 . 2014-06-05 11:38 -------- d-----w- c:\users\Frankiej\AppData\Local\Avg2014
2014-05-30 06:53 . 2014-05-30 06:53 -------- d-----w- c:\program files (x86)\MyPC Backup
2014-05-30 06:51 . 2014-06-04 08:37 -------- d-----w- c:\programdata\PC1Data
2014-05-29 19:55 . 2014-06-05 10:26 -------- d-----w- c:\users\Frankiej\AppData\Roaming\VideoPlus
2014-05-29 19:54 . 2014-05-29 19:54 -------- d-----w- c:\users\Frankiej\AppData\Roaming\VideoDrivers
2014-05-29 18:40 . 2014-02-17 22:56 81920 ----a-w- c:\windows\eSellerateControl350.dll
2014-05-29 18:40 . 2014-02-17 22:56 356352 ----a-w- c:\windows\eSellerateEngine.dll
2014-05-29 18:40 . 2014-02-17 22:56 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll
2014-05-29 18:40 . 2014-02-17 22:56 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll
2014-05-29 08:27 . 2014-01-24 18:17 30752 ----a-w- c:\windows\system32\drivers\ElRawDsk.sys
2014-05-29 08:27 . 2014-05-30 19:54 -------- d-----w- c:\programdata\iolo
2014-05-29 08:27 . 2014-05-29 08:27 -------- d-----w- c:\users\Frankiej\AppData\Roaming\iolo
2014-05-25 21:17 . 2014-05-25 21:17 -------- d-sh--w- c:\users\Frankiej\AppData\Local\EmieUserList
2014-05-25 21:17 . 2014-05-25 21:17 -------- d-sh--w- c:\users\Frankiej\AppData\Local\EmieSiteList
2014-05-25 20:50 . 2014-05-25 20:50 -------- d-----w- c:\users\Frankiej\AppData\Local\DriverToolkit
2014-05-25 20:50 . 2014-06-01 16:21 -------- d-----w- c:\program files (x86)\DriverToolkit
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-14 09:28 . 2012-08-17 20:54 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-14 09:28 . 2012-08-17 20:54 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-06-12 16:29 . 2012-06-01 18:18 95414520 ----a-w- c:\windows\system32\MRT.exe
2014-05-13 21:20 . 2014-05-13 21:20 235800 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2014-05-13 21:20 . 2014-05-13 21:20 273176 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2014-05-13 21:06 . 2014-05-13 21:06 323352 ----a-w- c:\windows\system32\drivers\avgloga.sys
2014-05-13 21:05 . 2014-05-13 21:05 191768 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2014-05-13 21:05 . 2014-05-13 21:05 152344 ----a-w- c:\windows\system32\drivers\avgdiska.sys
2014-05-13 21:05 . 2014-05-13 21:05 130328 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2014-05-13 21:04 . 2014-05-13 21:04 236312 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2014-05-13 21:04 . 2014-05-13 21:04 31512 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2014-04-15 09:34 . 2014-04-15 09:34 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-04-15 03:13 . 2014-04-16 17:57 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-12 02:22 . 2014-05-14 01:32 155072 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:22 . 2014-05-14 01:32 95680 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:19 . 2014-05-14 01:32 29184 ----a-w- c:\windows\system32\sspisrv.dll
2014-04-12 02:19 . 2014-05-14 01:32 136192 ----a-w- c:\windows\system32\sspicli.dll
2014-04-12 02:19 . 2014-05-14 01:32 28160 ----a-w- c:\windows\system32\secur32.dll
2014-04-12 02:19 . 2014-05-14 01:32 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-04-12 02:19 . 2014-05-14 01:32 31232 ----a-w- c:\windows\system32\lsass.exe
2014-04-12 02:12 . 2014-05-14 01:32 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-04-12 02:10 . 2014-05-14 01:32 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-03-25 02:43 . 2014-05-14 01:32 14175744 ----a-w- c:\windows\system32\shell32.dll
2014-03-19 22:23 . 2014-03-19 22:23 50896 ----a-w- c:\windows\system32\drivers\point64.sys
2014-03-19 22:23 . 2014-03-19 22:23 29904 ----a-w- c:\windows\system32\drivers\nuidfltr.sys
2013-11-12 19:59 2048 --sha-w- c:\windows\actofvl\clip.exe
.
<pre>
c:\program files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe
c:\program files (x86)\Common Files\microsoft shared\New mp3 BaraT !!                                                             .exe
</pre>
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2014-01-06 6563608]
"TouchFreeze"="c:\users\Frankiej\AppData\Local\Programs\TouchFreeze\TouchFreeze.exe" [2012-07-25 40960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files (x86)\Analog Devices\Core\smax4pnp.exe" [2007-02-22 1183744]
"AVG_UI"="c:\program files (x86)\AVG\AVG2014\avgui.exe" [2014-05-13 5181456]
.
c:\users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
MyPC Backup.lnk - c:\program files (x86)\MyPC Backup\MyPC Backup.exe [2014-3-14 2901032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-10-06 02:43 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ   \0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 BackupStack;Computer Backup (MyPC Backup);c:\program files (x86)\MyPC Backup\BackupStack.exe;c:\program files (x86)\MyPC Backup\BackupStack.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 Generalusbserialser20675;USB Legacy Serial Communication 20675;c:\windows\system32\DRIVERS\CT_U_USBSER.sys;c:\windows\SYSNATIVE\DRIVERS\CT_U_USBSER.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\ElRawDsk.sys;c:\windows\SYSNATIVE\drivers\ElRawDsk.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 pcCMService64;pcCMService64;c:\program files\Common Files\Motive\pcCMService.exe;c:\program files\Common Files\Motive\pcCMService.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys;c:\windows\SYSNATIVE\Drivers\ATSwpWDF.sys [x]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ   w3svc was
apphost REG_MULTI_SZ   apphostsvc
hpdevmgmt REG_MULTI_SZ   hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [N/A]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-14 04:25 1091912 ----a-w- c:\program files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-06-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-17 09:28]
.
2014-06-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-21 05:54]
.
2014-06-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-21 05:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [N/A]
"Broadcom Wireless Manager UI"="c:\program files\Broadcom\Broadcom 802.11\WLTRAY.exe" [2014-03-07 4789248]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <-loopback>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Frankiej\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
Trusted Zone: $talisma_url$
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{DD80CDAD-ACC0-431A-A580-8E9481B847F2}: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{ED2CECE6-9F2D-4E51-A412-261397F25E48}: NameServer = 8.8.8.8,8.8.4.4
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_125_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_125_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_125_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_125_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.14"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2014-06-15  08:11:46
ComboFix-quarantined-files.txt  2014-06-15 15:11
ComboFix2.txt  2014-06-15 14:19
.
Pre-Run: 12,867,436,544 bytes free
Post-Run: 12,562,206,720 bytes free
.
- - End Of File - - 83F7D03FB9D2A8A8E1816C077140D461
5FB38429D5D77768867C76DCBDB35194


#18 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 17 June 2014 - 12:20 PM

 

 

ComboFix2.txt  2014-06-15 14:19
.
Pre-Run: 12,867,436,544 bytes free
Post-Run: 12,562,206,720 bytes free
.
- - End Of File - - 83F7D03FB9D2A8A8E1816C077140D461
5FB38429D5D77768867C76DCBDB35194

I believe that is the same ComboFix2.txt log you posted earlier. I'm guessing the ComboFix.txt file without the "2" could not be located? ;)

 

Please proceed with the rest of the instructions whenever you are ready. :thumbup: 


Regards,

Richard :wavey:

 


Posted Image
Richard
Proud Graduate of WTT Classroom

#19 KristinaChapa

KristinaChapa

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 17 June 2014 - 01:07 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 16-06-2014
Ran by Frankiej at 2014-06-17 05:45:30 Run:2
Running from C:\Users\Frankiej\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Policies\system: [DisableRegistryTools] 1
2014-05-29 11:40 - 2014-05-29 11:39 - 03227936 _____ (Security Stronghold ) C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe
2014-05-30 19:06 - 2014-02-24 19:32 - 00000109 _____ () C:\Windows\[TheMoonlight].txt
2014-06-04 01:37 - 2014-02-06 18:06 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\genienext
2014-06-04 01:37 - 2014-03-04 06:21 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\uTorrent
2014-06-04 01:37 - 2014-03-03 01:31 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Azureus
2014-06-04 01:37 - 2014-02-24 19:32 - 00000000 _RSHD () C:\Windows\M57151
GroupPolicy: Group Policy on Chrome detected
IFEO\msconfig.exe: [Debugger] C:\Windows\notepad.exe
IFEO\regedit.exe: [Debugger] C:\Windows\notepad.exe
end
*****************
 
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableRegistryTools => Value not found.
C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe => Moved successfully.
C:\Windows\[TheMoonlight].txt => Moved successfully.
C:\Users\Frankiej\AppData\Local\genienext => Moved successfully.
C:\Users\Frankiej\AppData\Roaming\uTorrent => Moved successfully.
C:\Users\Frankiej\AppData\Roaming\Azureus => Moved successfully.
C:\Windows\M57151 => Moved successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\msconfig.exe'=> Key not found.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\regedit.exe'=> Key not found.
 
 
The system needed a reboot. 
 
==== End of Fixlog ====
Hi Richard - Just came home for lunch and saw your post. Ihope this is the right one.I wont be done until after 8 pm.Please bear with me. I hope it's not asking too much. I'm laying 500 square feet of tile solo! Have a great day. Regards....


#20 KristinaChapa

KristinaChapa

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 17 June 2014 - 01:10 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 16-06-2014
Ran by Frankiej at 2014-06-17 05:45:30 Run:2
Running from C:\Users\Frankiej\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Policies\system: [DisableRegistryTools] 1
2014-05-29 11:40 - 2014-05-29 11:39 - 03227936 _____ (Security Stronghold ) C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe
2014-05-30 19:06 - 2014-02-24 19:32 - 00000109 _____ () C:\Windows\[TheMoonlight].txt
2014-06-04 01:37 - 2014-02-06 18:06 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\genienext
2014-06-04 01:37 - 2014-03-04 06:21 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\uTorrent
2014-06-04 01:37 - 2014-03-03 01:31 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Azureus
2014-06-04 01:37 - 2014-02-24 19:32 - 00000000 _RSHD () C:\Windows\M57151
GroupPolicy: Group Policy on Chrome detected
IFEO\msconfig.exe: [Debugger] C:\Windows\notepad.exe
IFEO\regedit.exe: [Debugger] C:\Windows\notepad.exe
end
*****************
 
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableRegistryTools => Value not found.
C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe => Moved successfully.
C:\Windows\[TheMoonlight].txt => Moved successfully.
C:\Users\Frankiej\AppData\Local\genienext => Moved successfully.
C:\Users\Frankiej\AppData\Roaming\uTorrent => Moved successfully.
C:\Users\Frankiej\AppData\Roaming\Azureus => Moved successfully.
C:\Windows\M57151 => Moved successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\msconfig.exe'=> Key not found.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\regedit.exe'=> Key not found.
 
 
The system needed a reboot. 
 
==== End of Fixlog ====
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-06-2014 02
Ran by Frankiej (administrator) on FRANKIEJ-PC on 14-06-2014 03:08:58
Running from C:\Users\Frankiej\Desktop
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
() C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcCMService.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
() C:\Users\Frankiej\AppData\Local\Programs\TouchFreeze\TouchFreeze.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [4789248 2014-03-07] (Broadcom Corporation)
HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1183744 2007-02-21] (Analog Devices, Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe , "C:\Windows\M57151\Ja634608bLay.com" [X]
HKLM-x32\...\Winlogon: [Shell] explorer.exe, "C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Templates\O64746Z\TuxO64746Z.exe" [260096 ] () <=== ATTENTION
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Frankiej\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-01-06] (SUPERAntiSpyware)
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Run: [TouchFreeze] => C:\Users\Frankiej\AppData\Local\Programs\TouchFreeze\TouchFreeze.exe [40960 2012-07-24] ()
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Policies\system: [DisableRegistryTools] 1
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\MountPoints2: {96d15567-3e1c-11e2-9923-001f297fea98} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Setup.exe
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\MountPoints2: {c8d77cd3-67ca-11e2-b9dc-001f297fea98} - E:\V8000_ZTE.exe
IFEO\msconfig.exe: [Debugger] C:\Windows\notepad.exe
IFEO\regedit.exe: [Debugger] C:\Windows\notepad.exe
Startup: C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
BootExecute: 
AlternateShell: 
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
ProxyServer: http=127.0.0.1:44444;https=127.0.0.1:44444
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x407F0C4BC480CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/...r=503977909&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/...r=503977909&ir=
URLSearchHook: HKCU - (No Name) - {cce665dd-f6dd-4808-968e-eaec971f70ef} - No File
SearchScopes: HKLM - {31090377-0740-419E-BEFC-A56E50500D5B} URL = http://speedial.com/...r=503977909&ir=
SearchScopes: HKCU - DefaultScope {8358C066-388C-4692-906D-8E379EC6BF00} URL = https://www.google.c...q={searchTerms}
SearchScopes: HKCU - {8358C066-388C-4692-906D-8E379EC6BF00} URL = https://www.google.c...q={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKCU - No Name - {CCE665DD-F6DD-4808-968E-EAEC971F70EF} -  No File
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
DPF: HKLM-x32 {E0FEE963-BB53-4215-81AD-B28C77384644} https://pattcw.att.m...Installer64.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{DD80CDAD-ACC0-431A-A580-8E9481B847F2}: [NameServer]8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{ED2CECE6-9F2D-4E51-A412-261397F25E48}: [NameServer]8.8.8.8,8.8.4.4
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Motive.com/NpMotive,version=1.0 - C:\Program Files (x86)\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Frankiej\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\Web Assistant\Firefox
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-11-27]
FF HKCU\...\Firefox\Extensions: [sp2@sp.com] - C:\Program Files (x86)\Social Privacy\FF\
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-11-27]
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR Extension: (Google Docs) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-31]
CHR Extension: (Google Drive) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-31]
CHR Extension: (Speedial) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd [2014-05-25]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-24]
CHR Extension: (YouTube) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-31]
CHR Extension: (Facebook Color Changer) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\clnnapikbigkpjmgckhedmkgfkochicj [2014-06-03]
CHR Extension: (Google Search) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-31]
CHR Extension: (Speed Test) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhjlgjphgjlijjbilomfnohfnljllmo [2014-06-03]
CHR Extension: (Online Antivirus AVG, Avira, Bitdefender) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekodkoiccchffhnhklfaaefocmiopldj [2014-06-04]
CHR Extension: (Quote Roller) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\eonldhmaohklgbbbhpbaajfgafbdlegp [2014-06-03]
CHR Extension: (Skill Builder Spelling - By Kaiserapps) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\glhnohphdlpegcogaebhdnfbhpifddmf [2014-06-03]
CHR Extension: (Color Changer for Facebook) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnafahpcndghkcdngfombklgpffkehmg [2014-06-03]
CHR Extension: (Ultimate Fonts) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbjdlaifgnadeanlpdipkcdfjoonkehh [2014-06-03]
CHR Extension: (SingleClick Cleaner) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfjmdabjeeddgcfjejbkaffmcehgiilf [2014-06-03]
CHR Extension: (Calculator) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\inhhlmhdllknkepmabbkhnlbaddllabl [2014-06-03]
CHR Extension: (Pixlr Touch Up) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\jklljiahjgoglchglekebfljnmbaleig [2014-06-03]
CHR Extension: (Free Invoice Maker) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kebnkbogolcjifklpmgidaaoogjflajp [2014-06-03]
CHR Extension: (Sketchpad 3.5) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkghjbajgkcialbbimbifdcjilhcgoim [2014-06-03]
CHR Extension: (Onlive Clock) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2014-06-03]
CHR Extension: (InspirARTion - Sketch & Draw!) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhbmpilemgmpbdaniehhmodkkppkelec [2014-06-03]
CHR Extension: (Fix Cleaner) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\njeicbdoddkeedpdhlcjncealfhflhml [2014-06-03]
CHR Extension: (Google Wallet) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-16]
CHR Extension: (System) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocjnemjmlhjkeilmaidemofakmpclcbi [2014-06-03]
CHR Extension: (My Chrome Theme) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2014-06-03]
CHR Extension: (Floor Plan Creator) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogbnemfckmdpkeeccieeahplnemmbcfg [2014-06-03]
CHR Extension: (ToonXn - Offline Games) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocncdpjafpninblmaonahdfdocbbdok [2014-06-03]
CHR Extension: (Click&Clean App) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2014-06-03]
CHR Extension: (Gmail) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-31]
CHR Extension: (Secure Shell) - C:\Users\Frankiej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhechapfaindjhompbnflcldabbghjo [2014-06-03]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx [2014-06-03]
CHR HKLM-x32\...\Chrome\Extension: [jmfkcklnlgedgbglfkkgedjfmejoahla] - C:\Program Files (x86)\AVG\AVG2012\Chrome\safesearch.crx [2014-06-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [80384 2007-02-06] (Andrea Electronics Corporation)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36392 2014-03-14] (Just Develop It)
S3 FLCDLOCK; C:\Windows\SysWOW64\flcdlock.exe [362040 2009-10-05] (Hewlett-Packard Ltd)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-23] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-23] (Hewlett-Packard Co.) [File not signed]
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 pcCMService; C:\Program Files (x86)\Common Files\Motive\pcCMService.exe [361472 2012-06-18] (Alcatel-Lucent) [File not signed]
R2 pcCMService64; C:\Program Files\Common Files\Motive\pcCMService.exe [441344 2012-06-18] (Alcatel-Lucent) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2185528 2014-04-15] (AVG)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [4202496 2014-03-07] (Broadcom Corporation) [File not signed]
S2 HPSLPSVC; C:\Users\Frankiej\AppData\Local\Temp\7zS6EDB\hpslpsvc64.dll [X]
 
==================== Drivers (Whitelisted) ====================
 
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236312 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [191768 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [323352 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130328 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [273176 2014-05-13] (AVG Technologies CZ, s.r.o.)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [40760 2009-09-08] (Hewlett-Packard Development Company L.P.)
R1 ElRawDisk; C:\Windows\system32\drivers\ElRawDsk.sys [30752 2014-01-24] (EldoS Corporation)
S3 Generalusbserialser20675; C:\Windows\System32\DRIVERS\CT_U_USBSER.sys [128328 2012-04-20] (Incorporated)
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2012-06-14] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MREMP50a64; C:\Program Files\Common Files\Motive\MREMP50a64.sys [43008 2012-06-14] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2012-06-14] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50a64; C:\Program Files\Common Files\Motive\MRESP50a64.sys [40960 2012-06-14] (Printing Communications Assoc., Inc. (PCAUSA))
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-03-26] (TuneUp Software)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [52736 2012-07-09] (Apple, Inc.) [File not signed]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-06-14 03:08 - 2014-06-14 03:08 - 00000000 ____D () C:\Users\Frankiej\Desktop\FRST-OlderVersion
2014-06-14 03:07 - 2014-06-14 03:07 - 00003562 _____ () C:\Users\Frankiej\Desktop\fixlist.txt
2014-06-13 14:26 - 2014-06-13 14:26 - 00335021 _____ () C:\Users\Frankiej\Downloads\jonathan-s-harris_art-brewery.zip
2014-06-13 14:24 - 2014-06-13 14:24 - 00052751 _____ () C:\Users\Frankiej\Downloads\typesetit_great-vibes.zip
2014-06-13 14:23 - 2014-06-13 14:23 - 00588449 _____ () C:\Users\Frankiej\Downloads\måns-grebäck_sverige-script-demo.zip
2014-06-13 11:36 - 2014-06-13 11:36 - 00002072 _____ () C:\Users\Frankiej\Desktop\karsen.lnk
2014-06-11 11:42 - 2014-05-30 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 11:42 - 2014-05-30 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 11:42 - 2014-05-30 02:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 11:42 - 2014-05-30 02:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 11:42 - 2014-05-30 02:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 11:42 - 2014-05-30 02:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 11:42 - 2014-05-30 02:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 11:42 - 2014-05-30 02:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 11:42 - 2014-05-30 02:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 11:42 - 2014-05-30 01:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 11:42 - 2014-05-30 01:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 11:42 - 2014-05-30 01:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 11:42 - 2014-05-30 01:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 11:42 - 2014-05-30 01:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 11:42 - 2014-05-30 01:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 11:42 - 2014-05-30 01:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 11:42 - 2014-05-30 01:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 11:42 - 2014-05-30 01:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 11:42 - 2014-05-30 01:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 11:42 - 2014-05-30 01:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 11:42 - 2014-05-30 01:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 11:42 - 2014-05-30 01:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 11:42 - 2014-05-30 01:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 11:42 - 2014-05-30 01:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 11:42 - 2014-05-30 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 11:42 - 2014-05-30 00:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 11:42 - 2014-05-30 00:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 11:42 - 2014-05-30 00:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 11:42 - 2014-05-30 00:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 11:42 - 2014-05-08 02:32 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-11 11:42 - 2014-04-24 19:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 11:42 - 2014-04-24 19:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 11:42 - 2014-04-04 19:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 11:42 - 2014-04-04 19:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 11:42 - 2014-03-26 07:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 11:42 - 2014-03-26 07:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 11:42 - 2014-03-26 07:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 11:42 - 2014-03-26 07:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 11:42 - 2014-03-26 07:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 11:42 - 2014-03-26 07:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 11:42 - 2014-03-26 07:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 11:42 - 2014-03-26 07:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 11:42 - 2013-11-26 04:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-06-11 11:41 - 2014-05-30 03:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 11:41 - 2014-05-30 02:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 11:41 - 2014-05-30 02:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 11:41 - 2014-05-30 02:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 11:41 - 2014-05-30 02:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 11:41 - 2014-05-30 02:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 11:41 - 2014-05-30 02:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 11:41 - 2014-05-30 02:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 11:41 - 2014-05-30 02:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 11:41 - 2014-05-30 01:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 11:41 - 2014-05-30 01:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 11:41 - 2014-05-30 01:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 11:41 - 2014-05-30 01:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 11:41 - 2014-05-30 01:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 11:41 - 2014-05-30 01:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 11:41 - 2014-05-30 01:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 11:41 - 2014-05-30 00:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 11:41 - 2014-05-30 00:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 11:41 - 2014-05-30 00:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 11:41 - 2014-05-30 00:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 11:41 - 2014-05-30 00:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 11:41 - 2014-05-30 00:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 11:41 - 2014-05-30 00:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-10 00:19 - 2014-06-10 00:19 - 00000047 _____ () C:\Users\Frankiej\AppData\Roaming\WB.CFG
2014-06-09 19:39 - 2014-06-09 19:39 - 00000544 _____ () C:\Users\Frankiej\Desktop\MBR.zip
2014-06-09 19:35 - 2014-06-09 19:46 - 00003273 _____ () C:\Users\Frankiej\Desktop\aswMBR.txt
2014-06-09 19:35 - 2014-06-09 19:35 - 00000512 _____ () C:\Users\Frankiej\Desktop\MBR.dat
2014-06-09 18:44 - 2014-06-13 01:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2014-06-09 17:19 - 2014-06-09 17:22 - 04745728 _____ (AVAST Software) C:\Users\Frankiej\Desktop\aswMBR.exe
2014-06-09 15:36 - 2014-06-09 17:04 - 00037083 _____ () C:\Users\Frankiej\Desktop\Addition.txt
2014-06-09 15:34 - 2014-06-14 03:09 - 00021951 _____ () C:\Users\Frankiej\Desktop\FRST.txt
2014-06-09 15:33 - 2014-06-14 03:09 - 00000000 ____D () C:\FRST
2014-06-09 15:31 - 2014-06-14 03:08 - 02081792 _____ (Farbar) C:\Users\Frankiej\Desktop\FRST64.exe
2014-06-08 22:57 - 2014-06-08 22:57 - 00001379 _____ () C:\Users\Frankiej\Desktop\DVDMaker - Shortcut.lnk
2014-06-08 22:16 - 2014-06-08 22:16 - 00003182 _____ () C:\Windows\System32\Tasks\{D56D1574-3FB6-43F4-90A5-ED033E9B8F6F}
2014-06-08 16:55 - 2014-06-08 16:55 - 00002762 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-06-06 03:47 - 2014-06-06 03:47 - 04558848 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2014-06-06 02:30 - 2014-06-06 02:30 - 00002189 _____ () C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2014-06-06 02:30 - 2014-06-06 02:30 - 00002165 _____ () C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2014-06-06 02:30 - 2014-04-15 16:23 - 00040248 _____ (AVG) C:\Windows\system32\TURegOpt.exe
2014-06-06 02:30 - 2014-04-15 16:23 - 00029496 _____ (AVG) C:\Windows\system32\authuitu.dll
2014-06-06 02:30 - 2014-04-15 16:23 - 00025400 _____ (AVG) C:\Windows\SysWOW64\authuitu.dll
2014-06-06 02:29 - 2014-06-06 02:29 - 00002177 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk
2014-06-06 02:29 - 2014-06-06 02:29 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\AVG
2014-06-06 02:29 - 2014-06-06 02:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014
2014-06-06 02:23 - 2014-06-06 21:07 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-06 01:01 - 2014-06-06 01:01 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TouchFreeze
2014-06-06 00:57 - 2014-06-06 00:57 - 00274432 _____ () C:\Users\Frankiej\Downloads\TouchFreeze-1.1.0.msi
2014-06-05 23:49 - 2014-06-05 23:52 - 70431144 _____ (AVG) C:\Users\Frankiej\Downloads\avg_tuht_stf_all_2014_423.exe
2014-06-05 22:33 - 2014-06-05 22:33 - 00024646 _____ () C:\Users\Frankiej\Desktop\farbar-recovery-scan-tool.htm
2014-06-05 14:38 - 2014-06-12 20:21 - 00002556 _____ () C:\Windows\PFRO.log
2014-06-05 14:19 - 2014-06-12 20:22 - 00000467 _____ () C:\Windows\setupact.log
2014-06-05 14:19 - 2014-06-05 14:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-06-05 05:14 - 2014-06-05 05:18 - 70431144 _____ (AVG) C:\Users\Frankiej\Downloads\avg_tuh_stf_all_2014_423_24c45.exe
2014-06-05 02:09 - 2014-06-05 02:09 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\AVG2014
2014-06-05 02:01 - 2014-06-05 02:01 - 00000925 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-06-05 02:01 - 2014-06-05 02:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-06-04 00:19 - 2014-06-05 03:26 - 00000000 ____D () C:\ProgramData\AVG2014
2014-06-04 00:19 - 2014-06-05 02:03 - 00000000 ___HD () C:\$AVG
2014-06-01 20:03 - 2014-06-04 01:36 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-31 20:38 - 2014-05-31 20:38 - 00003544 ____N () C:\bootsqm.dat
2014-05-30 22:22 - 2014-06-04 01:37 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\SUPERAntiSpyware.com
2014-05-30 22:22 - 2014-06-04 01:37 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-30 22:22 - 2014-05-30 22:22 - 00001824 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-30 22:22 - 2014-05-30 22:22 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-30 22:08 - 2014-05-30 22:08 - 00003070 _____ () C:\Windows\System32\Tasks\{5700E80F-8081-4093-8D92-280B02499DAF}
2014-05-30 22:01 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Public\Downloads\Love Song                                                             .scr
2014-05-30 22:01 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\DefaultAppPool\Downloads\THe Best Ungu                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Public\Downloads\Norman virus Control 5.18                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Public\Downloads\Gallery                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\DefaultAppPool\Downloads\TutoriaL HAcking                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\DefaultAppPool\Downloads\Norman virus Control 5.18                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default\Downloads\Windows Vista setup                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default\Downloads\Data DosenKu                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default User\Downloads\Windows Vista setup                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default User\Downloads\Data DosenKu                                                             .exe
2014-05-30 01:26 - 2014-05-30 01:26 - 00000000 ____D () C:\ProgramData\Sophos
2014-05-30 01:12 - 2014-06-05 04:38 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\Avg2014
2014-05-30 01:11 - 2014-05-30 01:12 - 04487240 _____ (AVG Technologies) C:\Users\Frankiej\Downloads\avg_isit_stb_all_2014_4592.exe
2014-05-30 01:08 - 2014-05-30 01:14 - 94770984 _____ (Sophos Limited) C:\Users\Frankiej\Downloads\Sophos Virus Removal Tool.exe
2014-05-30 01:03 - 2014-05-30 01:05 - 27769568 _____ (Microsoft Corporation) C:\Users\Frankiej\Downloads\Windows-KB890830-x64-V5.12.exe
2014-05-29 23:53 - 2014-05-29 23:53 - 00001047 _____ () C:\Users\Frankiej\Desktop\MyPC Backup.lnk
2014-05-29 23:53 - 2014-05-29 23:53 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-05-29 23:53 - 2014-05-29 23:53 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-05-29 23:52 - 2014-05-29 23:50 - 05073168 _____ (PC Cleaners) C:\ProgramData\pclunst.exe
2014-05-29 23:51 - 2014-06-04 01:37 - 00000000 ____D () C:\ProgramData\PC1Data
2014-05-29 23:50 - 2014-05-29 23:50 - 05073168 _____ (PC Cleaners) C:\Users\Frankiej\Downloads\app2_en.exe
2014-05-29 23:21 - 2014-05-29 23:21 - 00000000 _____ () C:\END
2014-05-29 12:55 - 2014-06-05 03:26 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\VideoPlus
2014-05-29 12:55 - 2014-05-29 12:55 - 00003334 _____ () C:\Windows\System32\Tasks\Video Plus
2014-05-29 12:53 - 2014-05-30 12:55 - 00003332 _____ () C:\Windows\System32\Tasks\UpdateService
2014-05-29 12:30 - 2014-05-29 12:31 - 02580315 _____ ( ) C:\Users\Frankiej\Downloads\RegUtility_Setup.exe
2014-05-29 11:40 - 2014-02-17 15:56 - 01122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2014-05-29 11:40 - 2014-02-17 15:56 - 00356352 _____ (eSellerate Inc.) C:\Windows\eSellerateEngine.dll
2014-05-29 11:40 - 2014-02-17 15:56 - 00274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2014-05-29 11:40 - 2014-02-17 15:56 - 00081920 _____ (eSellerate Inc.) C:\Windows\eSellerateControl350.dll
2014-05-29 11:39 - 2014-05-29 11:40 - 03227936 _____ (Security Stronghold ) C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe
2014-05-29 11:13 - 2014-05-29 11:13 - 00003130 _____ () C:\Windows\System32\Tasks\{B0B271B0-459B-46AD-9A1B-2915ECCC5201}
2014-05-29 10:39 - 2014-05-29 10:39 - 00003118 _____ () C:\Windows\System32\Tasks\{9DA7B07B-3A81-48F1-A106-B9A0DFEF2F51}
2014-05-29 10:26 - 2014-05-29 10:26 - 00003218 _____ () C:\Windows\System32\Tasks\{9C2BF5C6-98BA-4A17-8C40-C171BAEB2A23}
2014-05-29 10:19 - 2014-05-29 10:20 - 01875632 _____ (001Micron Tools ) C:\Users\Frankiej\Downloads\MicronUSBDigiMediaDemo.exe
2014-05-29 10:12 - 2014-05-29 10:12 - 00003268 _____ () C:\Windows\System32\Tasks\{154D9D8D-05BE-42DB-80CC-73EA8A34EC5E}
2014-05-29 10:05 - 2014-05-29 10:05 - 00003134 _____ () C:\Windows\System32\Tasks\{4FA4670A-1FE9-45C1-AD0F-2E3476031448}
2014-05-29 10:04 - 2014-05-29 10:04 - 00003138 _____ () C:\Windows\System32\Tasks\{3414CF17-8A5A-4C04-A7C2-2277092EDB55}
2014-05-29 01:27 - 2014-05-30 12:54 - 00000000 ____D () C:\ProgramData\iolo
2014-05-29 01:27 - 2014-05-29 01:27 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\iolo
2014-05-29 01:27 - 2014-01-24 11:17 - 00030752 _____ (EldoS Corporation) C:\Windows\system32\Drivers\ElRawDsk.sys
2014-05-25 14:41 - 2014-05-25 14:41 - 00003058 _____ () C:\Windows\System32\Tasks\{23AF68C0-108E-4C87-8CAD-8D1AB57BEE05}
2014-05-25 14:38 - 2014-05-25 14:39 - 17529160 _____ (Google Inc.) C:\Users\Frankiej\Downloads\PicasaSetup.exe
2014-05-25 14:37 - 2014-05-25 14:37 - 00003058 _____ () C:\Windows\System32\Tasks\{65A8EE0D-D34F-4AD2-981A-014E84A5334F}
2014-05-25 14:37 - 2014-05-25 14:37 - 00003044 _____ () C:\Windows\System32\Tasks\{614EA0B0-D6DA-48AA-8A06-60CA5FDD6E4E}
2014-05-25 14:32 - 2014-06-04 01:37 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-05-25 14:30 - 2014-05-25 14:30 - 00000000 ____D () C:\Users\Frankiej\Downloads\FastStone_Image_Viewer_TSV18Y4UC
2014-05-25 14:25 - 2014-05-25 14:25 - 00002701 _____ () C:\Users\Frankiej\Downloads\legitcheck.hta
2014-05-25 14:25 - 2014-05-25 14:25 - 00002701 _____ () C:\Users\Frankiej\Downloads\legitcheck (1).hta
2014-05-25 14:22 - 2014-05-25 14:22 - 00003270 _____ () C:\Windows\System32\Tasks\{1B05F0DB-21B1-4D58-86BD-4AA458E860AC}
2014-05-25 14:19 - 2014-06-14 02:19 - 00000304 _____ () C:\Windows\Tasks\Speedial.job
2014-05-25 14:19 - 2014-05-25 14:19 - 00003256 _____ () C:\Windows\System32\Tasks\Speedial
2014-05-25 14:18 - 2014-06-04 01:37 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Speedial
2014-05-25 14:17 - 2014-05-25 14:17 - 00000000 __SHD () C:\Users\Frankiej\AppData\Local\EmieUserList
2014-05-25 14:17 - 2014-05-25 14:17 - 00000000 __SHD () C:\Users\Frankiej\AppData\Local\EmieSiteList
2014-05-25 14:15 - 2014-05-25 14:15 - 00003058 _____ () C:\Windows\System32\Tasks\{56B8F314-10CA-404D-8B30-7F35E1003E60}
2014-05-25 14:14 - 2014-05-25 14:14 - 00003080 _____ () C:\Windows\System32\Tasks\{30376243-60AF-4A8B-9F7E-738AD46A7D01}
2014-05-25 14:01 - 2014-05-25 14:01 - 00003172 _____ () C:\Windows\System32\Tasks\{A9B1E11B-96D7-47E7-AC14-463703613A31}
2014-05-25 14:01 - 2014-05-25 14:01 - 00003140 _____ () C:\Windows\System32\Tasks\{F6AAA9BB-90E8-481D-9DBB-957910785A7D}
2014-05-25 14:01 - 2014-05-25 14:01 - 00003064 _____ () C:\Windows\System32\Tasks\{D030D95D-1F8B-4756-9385-5A82004AC689}
2014-05-25 14:00 - 2014-05-25 14:00 - 00003126 _____ () C:\Windows\System32\Tasks\{8B8A28D9-D33F-4AAE-B233-09046B0C6153}
2014-05-25 13:50 - 2014-06-01 09:21 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit
2014-05-25 13:50 - 2014-05-25 13:50 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\DriverToolkit
2014-05-25 13:49 - 2014-05-25 13:50 - 02395840 _____ (Megaify Software ) C:\Users\Frankiej\Downloads\driver_setup.exe
2014-05-21 00:25 - 2014-05-21 00:25 - 00000000 ____D () C:\Users\Frankiej\Desktop\6008751190
2014-05-20 02:27 - 2014-05-20 02:27 - 00000000 ____D () C:\Users\Frankiej\Desktop\Quotes
2014-05-19 12:09 - 2014-05-19 12:09 - 00069340 _____ () C:\Users\Frankiej\Downloads\BA_Estimating_Worksheet_sample1.xlsm
2014-05-19 12:03 - 2014-05-19 12:03 - 00082432 _____ () C:\Users\Frankiej\Downloads\BA_Itemized_Bid_Worksheet_KB.xls
2014-05-19 12:03 - 2014-05-19 12:03 - 00082432 _____ () C:\Users\Frankiej\Downloads\BA_Itemized_Bid_Worksheet_KB (1).xls
2014-05-19 12:02 - 2014-05-19 12:02 - 00157696 _____ () C:\Users\Frankiej\Downloads\BA_Estimating_Worksheet_1.1.14.xls
 
==================== One Month Modified Files and Folders =======
 
2014-06-14 03:11 - 2012-05-30 23:32 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\Temp
2014-06-14 03:10 - 2014-06-09 15:34 - 00021951 _____ () C:\Users\Frankiej\Desktop\FRST.txt
2014-06-14 03:09 - 2014-06-09 15:33 - 00000000 ____D () C:\FRST
2014-06-14 03:08 - 2014-06-14 03:08 - 00000000 ____D () C:\Users\Frankiej\Desktop\FRST-OlderVersion
2014-06-14 03:08 - 2014-06-09 15:31 - 02081792 _____ (Farbar) C:\Users\Frankiej\Desktop\FRST64.exe
2014-06-14 03:07 - 2014-06-14 03:07 - 00003562 _____ () C:\Users\Frankiej\Desktop\fixlist.txt
2014-06-14 02:33 - 2012-08-17 13:54 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-14 02:28 - 2012-08-17 13:54 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-14 02:28 - 2012-08-17 13:54 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-14 02:28 - 2012-08-17 13:54 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-14 02:24 - 2013-02-20 22:54 - 00000902 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-14 02:20 - 2009-07-13 21:45 - 00020640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-14 02:20 - 2009-07-13 21:45 - 00020640 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-14 02:19 - 2014-05-25 14:19 - 00000304 _____ () C:\Windows\Tasks\Speedial.job
2014-06-14 01:46 - 2012-10-07 05:35 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-13 22:43 - 2012-05-28 23:13 - 01283738 _____ () C:\Windows\WindowsUpdate.log
2014-06-13 21:34 - 2013-02-20 22:54 - 00002143 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-13 21:24 - 2013-02-20 22:54 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-13 21:23 - 2012-05-31 01:24 - 00003950 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{EDDBD917-B1F7-464B-BDED-81ABEA2E4F21}
2014-06-13 14:26 - 2014-06-13 14:26 - 00335021 _____ () C:\Users\Frankiej\Downloads\jonathan-s-harris_art-brewery.zip
2014-06-13 14:24 - 2014-06-13 14:24 - 00052751 _____ () C:\Users\Frankiej\Downloads\typesetit_great-vibes.zip
2014-06-13 14:23 - 2014-06-13 14:23 - 00588449 _____ () C:\Users\Frankiej\Downloads\måns-grebäck_sverige-script-demo.zip
2014-06-13 11:36 - 2014-06-13 11:36 - 00002072 _____ () C:\Users\Frankiej\Desktop\karsen.lnk
2014-06-13 01:09 - 2014-06-09 18:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2014-06-12 20:22 - 2014-06-05 14:19 - 00000467 _____ () C:\Windows\setupact.log
2014-06-12 20:22 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-12 20:21 - 2014-06-05 14:38 - 00002556 _____ () C:\Windows\PFRO.log
2014-06-12 09:42 - 2013-08-14 03:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 09:29 - 2012-06-01 11:18 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-12 09:24 - 2013-09-30 05:33 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-10 00:19 - 2014-06-10 00:19 - 00000047 _____ () C:\Users\Frankiej\AppData\Roaming\WB.CFG
2014-06-09 19:46 - 2014-06-09 19:35 - 00003273 _____ () C:\Users\Frankiej\Desktop\aswMBR.txt
2014-06-09 19:39 - 2014-06-09 19:39 - 00000544 _____ () C:\Users\Frankiej\Desktop\MBR.zip
2014-06-09 19:35 - 2014-06-09 19:35 - 00000512 _____ () C:\Users\Frankiej\Desktop\MBR.dat
2014-06-09 18:05 - 2012-08-05 00:16 - 00000000 ____D () C:\Users\Frankiej\Desktop\Kristina
2014-06-09 17:22 - 2014-06-09 17:19 - 04745728 _____ (AVAST Software) C:\Users\Frankiej\Desktop\aswMBR.exe
2014-06-09 17:04 - 2014-06-09 15:36 - 00037083 _____ () C:\Users\Frankiej\Desktop\Addition.txt
2014-06-08 22:57 - 2014-06-08 22:57 - 00001379 _____ () C:\Users\Frankiej\Desktop\DVDMaker - Shortcut.lnk
2014-06-08 22:16 - 2014-06-08 22:16 - 00003182 _____ () C:\Windows\System32\Tasks\{D56D1574-3FB6-43F4-90A5-ED033E9B8F6F}
2014-06-08 16:55 - 2014-06-08 16:55 - 00002762 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-06-08 16:45 - 2009-07-13 22:08 - 00032656 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-07 22:40 - 2014-02-24 18:53 - 00000496 __RSH () C:\ProgramData\ntuser.pol
2014-06-06 21:08 - 2014-02-07 02:57 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe online update program
2014-06-06 21:08 - 2012-12-26 23:34 - 00003704 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2014-06-06 21:07 - 2014-06-06 02:23 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-06 21:07 - 2013-09-30 05:33 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\Microsoft Help
2014-06-06 21:07 - 2013-04-07 23:36 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\hpqLog
2014-06-06 03:47 - 2014-06-06 03:47 - 04558848 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2014-06-06 02:34 - 2012-12-26 23:28 - 00000000 ____D () C:\ProgramData\AVG
2014-06-06 02:30 - 2014-06-06 02:30 - 00002189 _____ () C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2014-06-06 02:30 - 2014-06-06 02:30 - 00002165 _____ () C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2014-06-06 02:29 - 2014-06-06 02:29 - 00002177 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk
2014-06-06 02:29 - 2014-06-06 02:29 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\AVG
2014-06-06 02:29 - 2014-06-06 02:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014
2014-06-06 02:29 - 2012-12-26 23:29 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\AVG
2014-06-06 02:28 - 2012-06-09 14:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-06-06 01:01 - 2014-06-06 01:01 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TouchFreeze
2014-06-06 00:57 - 2014-06-06 00:57 - 00274432 _____ () C:\Users\Frankiej\Downloads\TouchFreeze-1.1.0.msi
2014-06-05 23:52 - 2014-06-05 23:49 - 70431144 _____ (AVG) C:\Users\Frankiej\Downloads\avg_tuht_stf_all_2014_423.exe
2014-06-05 22:33 - 2014-06-05 22:33 - 00024646 _____ () C:\Users\Frankiej\Desktop\farbar-recovery-scan-tool.htm
2014-06-05 14:19 - 2014-06-05 14:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-06-05 05:28 - 2014-02-24 19:32 - 00000000 ____D () C:\Windows\SysWOW64\X51335go
2014-06-05 05:25 - 2014-03-07 10:39 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-05 05:18 - 2014-06-05 05:14 - 70431144 _____ (AVG) C:\Users\Frankiej\Downloads\avg_tuh_stf_all_2014_423_24c45.exe
2014-06-05 05:11 - 2013-03-11 12:52 - 00000000 ____D () C:\Users\Frankiej\Documents\kristina
2014-06-05 05:01 - 2012-06-01 11:17 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-06-05 04:57 - 2014-02-06 18:00 - 00000000 ____D () C:\Program Files (x86)\GrabRez
2014-06-05 04:56 - 2009-07-13 20:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-05 04:38 - 2014-05-30 01:12 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\Avg2014
2014-06-05 03:30 - 2012-07-19 01:03 - 00000000 ____D () C:\Windows\Minidump
2014-06-05 03:26 - 2014-06-04 00:19 - 00000000 ____D () C:\ProgramData\AVG2014
2014-06-05 03:26 - 2014-05-29 12:55 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\VideoPlus
2014-06-05 02:09 - 2014-06-05 02:09 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\AVG2014
2014-06-05 02:03 - 2014-06-04 00:19 - 00000000 ___HD () C:\$AVG
2014-06-05 02:01 - 2014-06-05 02:01 - 00000925 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-06-05 02:01 - 2014-06-05 02:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-06-04 01:37 - 2014-05-30 22:22 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\SUPERAntiSpyware.com
2014-06-04 01:37 - 2014-05-30 22:22 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-06-04 01:37 - 2014-05-29 23:51 - 00000000 ____D () C:\ProgramData\PC1Data
2014-06-04 01:37 - 2014-05-25 14:32 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-06-04 01:37 - 2014-05-25 14:18 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Speedial
2014-06-04 01:37 - 2014-03-04 06:21 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\uTorrent
2014-06-04 01:37 - 2014-03-03 01:31 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Azureus
2014-06-04 01:37 - 2014-02-24 19:32 - 00000000 _RSHD () C:\Windows\M57151
2014-06-04 01:37 - 2014-02-06 18:06 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\newnext.me
2014-06-04 01:37 - 2014-02-06 18:06 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\genienext
2014-06-04 01:37 - 2013-11-16 10:01 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Apowersoft
2014-06-04 01:37 - 2012-09-25 02:07 - 00000000 ____D () C:\Users\DefaultAppPool
2014-06-04 01:36 - 2014-06-01 20:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-04 01:36 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\registration
2014-06-04 01:33 - 2012-08-17 09:48 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\Google
2014-06-04 00:48 - 2012-05-30 23:32 - 00000000 ____D () C:\Users\Frankiej
2014-06-01 20:03 - 2013-12-25 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-01 09:28 - 2014-02-07 13:05 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\FileTypeAssistant
2014-06-01 09:27 - 2013-02-23 11:11 - 00000000 ____D () C:\Program Files (x86)\File Type Assistant
2014-06-01 09:26 - 2014-02-09 01:41 - 00000000 ____D () C:\Program Files (x86)\Amine Dries
2014-06-01 09:25 - 2014-03-07 12:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broadcom Wireless
2014-06-01 09:25 - 2009-07-13 22:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-06-01 09:25 - 2009-07-13 22:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-06-01 09:25 - 2009-07-13 20:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-01 09:25 - 2009-07-13 20:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-01 09:25 - 2009-07-13 20:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-01 09:21 - 2014-05-25 13:50 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit
2014-05-31 20:38 - 2014-05-31 20:38 - 00003544 ____N () C:\bootsqm.dat
2014-05-30 22:22 - 2014-05-30 22:22 - 00001824 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-30 22:22 - 2014-05-30 22:22 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-30 22:19 - 2012-05-30 23:35 - 00000000 ___RD () C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-30 22:08 - 2014-05-30 22:08 - 00003070 _____ () C:\Windows\System32\Tasks\{5700E80F-8081-4093-8D92-280B02499DAF}
2014-05-30 21:55 - 2012-06-14 23:39 - 00000000 ____D () C:\Program Files (x86)\Ares
2014-05-30 19:06 - 2014-02-24 19:32 - 00000109 _____ () C:\Windows\[TheMoonlight].txt
2014-05-30 15:58 - 2012-06-03 22:22 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\FrostWire
2014-05-30 15:41 - 2014-03-15 10:33 - 00000000 ____D () C:\Program Files (x86)\Froyo_Android_Driver
2014-05-30 12:55 - 2014-05-29 12:53 - 00003332 _____ () C:\Windows\System32\Tasks\UpdateService
2014-05-30 12:54 - 2014-05-29 01:27 - 00000000 ____D () C:\ProgramData\iolo
2014-05-30 03:21 - 2014-06-11 11:41 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 03:02 - 2014-06-11 11:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 03:02 - 2014-06-11 11:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 02:45 - 2014-06-11 11:42 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 02:39 - 2014-06-11 11:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 02:39 - 2014-06-11 11:41 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 02:38 - 2014-06-11 11:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 02:28 - 2014-06-11 11:41 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 02:27 - 2014-06-11 11:41 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 02:24 - 2014-06-11 11:41 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 02:21 - 2014-06-11 11:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 02:21 - 2014-06-11 11:41 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 02:20 - 2014-06-11 11:41 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 02:18 - 2014-06-11 11:42 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 02:11 - 2014-06-11 11:41 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 02:08 - 2014-06-11 11:41 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 02:06 - 2014-06-11 11:42 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 02:02 - 2014-06-11 11:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 01:55 - 2014-06-11 11:42 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 01:49 - 2014-06-11 11:41 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 01:46 - 2014-06-11 11:41 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 01:44 - 2014-06-11 11:41 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 01:44 - 2014-06-11 11:41 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 01:43 - 2014-06-11 11:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 01:42 - 2014-06-11 11:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 01:38 - 2014-06-11 11:42 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 01:35 - 2014-06-11 11:42 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 01:34 - 2014-06-11 11:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 01:33 - 2014-06-11 11:42 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 01:30 - 2014-06-11 11:42 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 01:29 - 2014-06-11 11:42 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 01:28 - 2014-06-11 11:41 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 01:27 - 2014-06-11 11:42 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 01:26 - 2014-05-30 01:26 - 00000000 ____D () C:\ProgramData\Sophos
2014-05-30 01:24 - 2014-06-11 11:41 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 01:23 - 2014-06-11 11:42 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 01:16 - 2014-06-11 11:42 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 01:14 - 2014-05-30 01:08 - 94770984 _____ (Sophos Limited) C:\Users\Frankiej\Downloads\Sophos Virus Removal Tool.exe
2014-05-30 01:12 - 2014-05-30 01:11 - 04487240 _____ (AVG Technologies) C:\Users\Frankiej\Downloads\avg_isit_stb_all_2014_4592.exe
2014-05-30 01:10 - 2014-06-11 11:42 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 01:06 - 2014-06-11 11:41 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 01:05 - 2014-05-30 01:03 - 27769568 _____ (Microsoft Corporation) C:\Users\Frankiej\Downloads\Windows-KB890830-x64-V5.12.exe
2014-05-30 01:04 - 2014-06-11 11:42 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 01:02 - 2014-06-11 11:42 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 00:56 - 2014-06-11 11:41 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 00:56 - 2014-06-11 11:41 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 00:54 - 2014-06-11 11:42 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 00:50 - 2014-06-11 11:41 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 00:49 - 2014-06-11 11:42 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 00:43 - 2014-06-11 11:41 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 00:40 - 2014-06-11 11:42 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 00:30 - 2014-06-11 11:42 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 00:21 - 2014-06-11 11:41 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 00:15 - 2014-06-11 11:42 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 00:13 - 2014-06-11 11:41 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 00:13 - 2014-06-11 11:41 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-29 23:53 - 2014-05-29 23:53 - 00001047 _____ () C:\Users\Frankiej\Desktop\MyPC Backup.lnk
2014-05-29 23:53 - 2014-05-29 23:53 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-05-29 23:53 - 2014-05-29 23:53 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-05-29 23:50 - 2014-05-29 23:52 - 05073168 _____ (PC Cleaners) C:\ProgramData\pclunst.exe
2014-05-29 23:50 - 2014-05-29 23:50 - 05073168 _____ (PC Cleaners) C:\Users\Frankiej\Downloads\app2_en.exe
2014-05-29 23:29 - 2012-06-14 23:39 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\Ares
2014-05-29 23:21 - 2014-05-29 23:21 - 00000000 _____ () C:\END
2014-05-29 12:55 - 2014-05-29 12:55 - 00003334 _____ () C:\Windows\System32\Tasks\Video Plus
2014-05-29 12:31 - 2014-05-29 12:30 - 02580315 _____ ( ) C:\Users\Frankiej\Downloads\RegUtility_Setup.exe
2014-05-29 11:40 - 2014-05-29 11:39 - 03227936 _____ (Security Stronghold ) C:\Users\Frankiej\Downloads\Jermy.ARemovalTool.exe
2014-05-29 11:13 - 2014-05-29 11:13 - 00003130 _____ () C:\Windows\System32\Tasks\{B0B271B0-459B-46AD-9A1B-2915ECCC5201}
2014-05-29 10:39 - 2014-05-29 10:39 - 00003118 _____ () C:\Windows\System32\Tasks\{9DA7B07B-3A81-48F1-A106-B9A0DFEF2F51}
2014-05-29 10:26 - 2014-05-29 10:26 - 00003218 _____ () C:\Windows\System32\Tasks\{9C2BF5C6-98BA-4A17-8C40-C171BAEB2A23}
2014-05-29 10:20 - 2014-05-29 10:19 - 01875632 _____ (001Micron Tools ) C:\Users\Frankiej\Downloads\MicronUSBDigiMediaDemo.exe
2014-05-29 10:12 - 2014-05-29 10:12 - 00003268 _____ () C:\Windows\System32\Tasks\{154D9D8D-05BE-42DB-80CC-73EA8A34EC5E}
2014-05-29 10:05 - 2014-05-29 10:05 - 00003134 _____ () C:\Windows\System32\Tasks\{4FA4670A-1FE9-45C1-AD0F-2E3476031448}
2014-05-29 10:04 - 2014-05-29 10:04 - 00003138 _____ () C:\Windows\System32\Tasks\{3414CF17-8A5A-4C04-A7C2-2277092EDB55}
2014-05-29 01:27 - 2014-05-29 01:27 - 00000000 ____D () C:\Users\Frankiej\AppData\Roaming\iolo
2014-05-29 01:04 - 2014-05-08 08:33 - 00000000 ____D () C:\Users\Frankiej\Desktop\Sylvia
2014-05-28 06:01 - 2009-07-13 22:13 - 00762556 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-25 14:41 - 2014-05-25 14:41 - 00003058 _____ () C:\Windows\System32\Tasks\{23AF68C0-108E-4C87-8CAD-8D1AB57BEE05}
2014-05-25 14:40 - 2013-09-06 22:15 - 00001066 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-05-25 14:39 - 2014-05-25 14:38 - 17529160 _____ (Google Inc.) C:\Users\Frankiej\Downloads\PicasaSetup.exe
2014-05-25 14:37 - 2014-05-25 14:37 - 00003058 _____ () C:\Windows\System32\Tasks\{65A8EE0D-D34F-4AD2-981A-014E84A5334F}
2014-05-25 14:37 - 2014-05-25 14:37 - 00003044 _____ () C:\Windows\System32\Tasks\{614EA0B0-D6DA-48AA-8A06-60CA5FDD6E4E}
2014-05-25 14:30 - 2014-05-25 14:30 - 00000000 ____D () C:\Users\Frankiej\Downloads\FastStone_Image_Viewer_TSV18Y4UC
2014-05-25 14:25 - 2014-05-25 14:25 - 00002701 _____ () C:\Users\Frankiej\Downloads\legitcheck.hta
2014-05-25 14:25 - 2014-05-25 14:25 - 00002701 _____ () C:\Users\Frankiej\Downloads\legitcheck (1).hta
2014-05-25 14:22 - 2014-05-25 14:22 - 00003270 _____ () C:\Windows\System32\Tasks\{1B05F0DB-21B1-4D58-86BD-4AA458E860AC}
2014-05-25 14:19 - 2014-05-25 14:19 - 00003256 _____ () C:\Windows\System32\Tasks\Speedial
2014-05-25 14:17 - 2014-05-25 14:17 - 00000000 __SHD () C:\Users\Frankiej\AppData\Local\EmieUserList
2014-05-25 14:17 - 2014-05-25 14:17 - 00000000 __SHD () C:\Users\Frankiej\AppData\Local\EmieSiteList
2014-05-25 14:15 - 2014-05-25 14:15 - 00003058 _____ () C:\Windows\System32\Tasks\{56B8F314-10CA-404D-8B30-7F35E1003E60}
2014-05-25 14:14 - 2014-05-25 14:14 - 00003080 _____ () C:\Windows\System32\Tasks\{30376243-60AF-4A8B-9F7E-738AD46A7D01}
2014-05-25 14:01 - 2014-05-25 14:01 - 00003172 _____ () C:\Windows\System32\Tasks\{A9B1E11B-96D7-47E7-AC14-463703613A31}
2014-05-25 14:01 - 2014-05-25 14:01 - 00003140 _____ () C:\Windows\System32\Tasks\{F6AAA9BB-90E8-481D-9DBB-957910785A7D}
2014-05-25 14:01 - 2014-05-25 14:01 - 00003064 _____ () C:\Windows\System32\Tasks\{D030D95D-1F8B-4756-9385-5A82004AC689}
2014-05-25 14:00 - 2014-05-25 14:00 - 00003126 _____ () C:\Windows\System32\Tasks\{8B8A28D9-D33F-4AAE-B233-09046B0C6153}
2014-05-25 13:50 - 2014-05-25 13:50 - 00000000 ____D () C:\Users\Frankiej\AppData\Local\DriverToolkit
2014-05-25 13:50 - 2014-05-25 13:49 - 02395840 _____ (Megaify Software ) C:\Users\Frankiej\Downloads\driver_setup.exe
2014-05-21 00:25 - 2014-05-21 00:25 - 00000000 ____D () C:\Users\Frankiej\Desktop\6008751190
2014-05-20 02:27 - 2014-05-20 02:27 - 00000000 ____D () C:\Users\Frankiej\Desktop\Quotes
2014-05-19 12:09 - 2014-05-19 12:09 - 00069340 _____ () C:\Users\Frankiej\Downloads\BA_Estimating_Worksheet_sample1.xlsm
2014-05-19 12:03 - 2014-05-19 12:03 - 00082432 _____ () C:\Users\Frankiej\Downloads\BA_Itemized_Bid_Worksheet_KB.xls
2014-05-19 12:03 - 2014-05-19 12:03 - 00082432 _____ () C:\Users\Frankiej\Downloads\BA_Itemized_Bid_Worksheet_KB (1).xls
2014-05-19 12:02 - 2014-05-19 12:02 - 00157696 _____ () C:\Users\Frankiej\Downloads\BA_Estimating_Worksheet_1.1.14.xls
2014-05-15 05:45 - 2012-05-30 23:35 - 00000000 ___RD () C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-15 05:39 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
 
Files to move or delete:
====================
C:\ProgramData\pclunst.exe
C:\Users\Frankiej\opera.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-03-01 18:06
 
==================== End Of Log ============================


#21 KristinaChapa

KristinaChapa

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 18 June 2014 - 03:06 AM

Hi Richard - Ok I'm gonna try this again.....hope it's what you are asking for. Here you go. 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-06-2014 02
Ran by Frankiej at 2014-06-14 03:11:57 Run:1
Running from C:\Users\Frankiej\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
C:\Users\Frankiej\AppData\Roaming\Speedial
C:\Windows\Tasks\Speedial.job
C:\Users\Frankiej\AppData\Local\Temp\SoftUpdater.exe
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe , "C:\Windows\M57151\Ja634608bLay.com" [X]
C:\Windows\M57151\Ja634608bLay.com
HKLM-x32\...\Winlogon: [Shell] explorer.exe, "C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Templates\O64746Z\TuxO64746Z.exe"
C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Templates\O64746Z
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Frankiej\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
C:\Users\Frankiej\AppData\Roaming\newnext.me
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/...r=503977909&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/...r=503977909&ir=
URLSearchHook: HKCU - (No Name) - {cce665dd-f6dd-4808-968e-eaec971f70ef} - No File
SearchScopes: HKLM - {31090377-0740-419E-BEFC-A56E50500D5B} URL = http://speedial.com/...r=503977909&ir=
Toolbar: HKCU - No Name - {CCE665DD-F6DD-4808-968E-EAEC971F70EF} -  No File
2014-05-30 22:01 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Public\Downloads\Love Song                                                             .scr
2014-05-30 22:01 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\DefaultAppPool\Downloads\THe Best Ungu                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Public\Downloads\Norman virus Control 5.18                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Public\Downloads\Gallery                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\DefaultAppPool\Downloads\TutoriaL HAcking                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\DefaultAppPool\Downloads\Norman virus Control 5.18                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default\Downloads\Windows Vista setup                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default\Downloads\Data DosenKu                                                             .exe
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default User\Downloads\Windows Vista setup                                                             .scr
2014-05-30 17:12 - 2006-10-11 20:09 - 00260096 _____ () C:\Users\Default User\Downloads\Data DosenKu                                                             .exe
C:\Program Files (x86)\SearchProtect
ProxyServer: http=127.0.0.1:44444;https=127.0.0.1:44444
C:\ProgramData\pclunst.exe
C:\Users\Frankiej\opera.exe
C:\Users\Frankiej\AppData\Local\Mobogenie
C:\ProgramData\Microsoft\Network\Downloader\Blink 182                                                             .exe
C:\ProgramData\Microsoft\Network\Downloader\Gallery                                                             .scr
C:\ProgramData\Microsoft\Network\Downloader\Love Song                                                             .scr
C:\ProgramData\Microsoft\Network\Downloader\New mp3 BaraT !!                                                             .exe
end
*****************
 
C:\Users\Frankiej\AppData\Roaming\Speedial => Moved successfully.
C:\Windows\Tasks\Speedial.job => Moved successfully.
"C:\Users\Frankiej\AppData\Local\Temp\SoftUpdater.exe" => File/Directory not found.
HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
C:\Windows\M57151\Ja634608bLay.com => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value was restored successfully.
C:\Users\Frankiej\AppData\Roaming\Microsoft\Windows\Templates\O64746Z => Moved successfully.
HKU\S-1-5-21-4173978000-302764023-2076146801-1000\Software\Microsoft\Windows\CurrentVersion\Run\\NextLive => value deleted successfully.
C:\Users\Frankiej\AppData\Roaming\newnext.me => Moved successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{cce665dd-f6dd-4808-968e-eaec971f70ef} => value deleted successfully.
'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B}' => Key deleted successfully.
'HKCR\CLSID\{31090377-0740-419E-BEFC-A56E50500D5B}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCE665DD-F6DD-4808-968E-EAEC971F70EF} => value deleted successfully.
'HKCR\CLSID\{CCE665DD-F6DD-4808-968E-EAEC971F70EF}'=> Key not found.
C:\Users\Public\Downloads\Love Song                                                             .scr => Moved successfully.
C:\Users\DefaultAppPool\Downloads\THe Best Ungu                                                             .scr => Moved successfully.
C:\Users\Public\Downloads\Norman virus Control 5.18                                                             .exe => Moved successfully.
C:\Users\Public\Downloads\Gallery                                                             .scr => Moved successfully.
C:\Users\DefaultAppPool\Downloads\TutoriaL HAcking                                                             .exe => Moved successfully.
C:\Users\DefaultAppPool\Downloads\Norman virus Control 5.18                                                             .exe => Moved successfully.
C:\Users\Default\Downloads\Windows Vista setup                                                             .scr => Moved successfully.
C:\Users\Default\Downloads\Data DosenKu                                                             .exe => Moved successfully.
"C:\Users\Default User\Downloads\Windows Vista setup                                                             .scr" => File/Directory not found.
"C:\Users\Default User\Downloads\Data DosenKu                                                             .exe" => File/Directory not found.
C:\Program Files (x86)\SearchProtect => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
C:\ProgramData\pclunst.exe => Moved successfully.
C:\Users\Frankiej\opera.exe => Moved successfully.
C:\Users\Frankiej\AppData\Local\Mobogenie => Moved successfully.
C:\ProgramData\Microsoft\Network\Downloader\Blink 182                                                             .exe => Moved successfully.
C:\ProgramData\Microsoft\Network\Downloader\Gallery                                                             .scr => Moved successfully.
C:\ProgramData\Microsoft\Network\Downloader\Love Song                                                             .scr => Moved successfully.
C:\ProgramData\Microsoft\Network\Downloader\New mp3 BaraT !!                                                             .exe => Moved successfully.
 
==== End of Fixlog ====

 

ComboFix 14-06-13.01 - Frankiej 06/15/2014   7:52.2.2 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.2943.1577 [GMT -7:00]
Running from: c:\users\Frankiej\Desktop\ComboFix.exe
AV: AVG Premium Security 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Premium Security 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
.
(((((((((((((((((((((((((   Files Created from 2014-05-15 to 2014-06-15  )))))))))))))))))))))))))))))))
.
.
2014-06-15 15:05 . 2014-06-15 15:05 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2014-06-15 15:05 . 2014-06-15 15:05 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-06-14 19:04 . 2014-06-14 19:04 -------- d-----w- c:\program files\Microsoft Mouse and Keyboard Center
2014-06-11 18:41 . 2014-05-30 07:50 1068032 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2014-06-09 22:33 . 2014-06-14 10:12 -------- d-----w- C:\FRST
2014-06-06 10:47 . 2014-06-06 10:47 4558848 ----a-w- c:\windows\SysWow64\GPhotos.scr
2014-06-06 09:30 . 2014-04-15 23:23 40248 ----a-w- c:\windows\system32\TURegOpt.exe
2014-06-06 09:30 . 2014-04-15 23:23 29496 ----a-w- c:\windows\system32\authuitu.dll
2014-06-06 09:30 . 2014-04-15 23:23 25400 ----a-w- c:\windows\SysWow64\authuitu.dll
2014-06-06 09:29 . 2014-06-06 09:29 -------- d-----w- c:\users\Frankiej\AppData\Local\AVG
2014-06-06 09:23 . 2014-06-07 04:07 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-05 09:09 . 2014-06-05 09:09 -------- d-----w- c:\users\Frankiej\AppData\Roaming\AVG2014
2014-06-04 07:19 . 2014-06-05 09:03 -------- d-----w- C:\$AVG
2014-06-04 07:19 . 2014-06-05 10:26 -------- d-----w- c:\programdata\AVG2014
2014-06-02 03:03 . 2014-06-04 08:36 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-31 05:22 . 2014-06-04 08:37 -------- d-----w- c:\users\Frankiej\AppData\Roaming\SUPERAntiSpyware.com
2014-05-31 05:22 . 2014-06-04 08:37 -------- d-----w- c:\program files\SUPERAntiSpyware
2014-05-31 05:22 . 2014-05-31 05:22 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-05-30 08:26 . 2014-05-30 08:26 -------- d-----w- c:\programdata\Sophos
2014-05-30 08:12 . 2014-06-05 11:38 -------- d-----w- c:\users\Frankiej\AppData\Local\Avg2014
2014-05-30 06:53 . 2014-05-30 06:53 -------- d-----w- c:\program files (x86)\MyPC Backup
2014-05-30 06:51 . 2014-06-04 08:37 -------- d-----w- c:\programdata\PC1Data
2014-05-29 19:55 . 2014-06-05 10:26 -------- d-----w- c:\users\Frankiej\AppData\Roaming\VideoPlus
2014-05-29 19:54 . 2014-05-29 19:54 -------- d-----w- c:\users\Frankiej\AppData\Roaming\VideoDrivers
2014-05-29 18:40 . 2014-02-17 22:56 81920 ----a-w- c:\windows\eSellerateControl350.dll
2014-05-29 18:40 . 2014-02-17 22:56 356352 ----a-w- c:\windows\eSellerateEngine.dll
2014-05-29 18:40 . 2014-02-17 22:56 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll
2014-05-29 18:40 . 2014-02-17 22:56 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll
2014-05-29 08:27 . 2014-01-24 18:17 30752 ----a-w- c:\windows\system32\drivers\ElRawDsk.sys
2014-05-29 08:27 . 2014-05-30 19:54 -------- d-----w- c:\programdata\iolo
2014-05-29 08:27 . 2014-05-29 08:27 -------- d-----w- c:\users\Frankiej\AppData\Roaming\iolo
2014-05-25 21:17 . 2014-05-25 21:17 -------- d-sh--w- c:\users\Frankiej\AppData\Local\EmieUserList
2014-05-25 21:17 . 2014-05-25 21:17 -------- d-sh--w- c:\users\Frankiej\AppData\Local\EmieSiteList
2014-05-25 20:50 . 2014-05-25 20:50 -------- d-----w- c:\users\Frankiej\AppData\Local\DriverToolkit
2014-05-25 20:50 . 2014-06-01 16:21 -------- d-----w- c:\program files (x86)\DriverToolkit
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-14 09:28 . 2012-08-17 20:54 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-14 09:28 . 2012-08-17 20:54 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-06-12 16:29 . 2012-06-01 18:18 95414520 ----a-w- c:\windows\system32\MRT.exe
2014-05-13 21:20 . 2014-05-13 21:20 235800 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2014-05-13 21:20 . 2014-05-13 21:20 273176 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2014-05-13 21:06 . 2014-05-13 21:06 323352 ----a-w- c:\windows\system32\drivers\avgloga.sys
2014-05-13 21:05 . 2014-05-13 21:05 191768 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2014-05-13 21:05 . 2014-05-13 21:05 152344 ----a-w- c:\windows\system32\drivers\avgdiska.sys
2014-05-13 21:05 . 2014-05-13 21:05 130328 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2014-05-13 21:04 . 2014-05-13 21:04 236312 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2014-05-13 21:04 . 2014-05-13 21:04 31512 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2014-04-15 09:34 . 2014-04-15 09:34 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-04-15 03:13 . 2014-04-16 17:57 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-12 02:22 . 2014-05-14 01:32 155072 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:22 . 2014-05-14 01:32 95680 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:19 . 2014-05-14 01:32 29184 ----a-w- c:\windows\system32\sspisrv.dll
2014-04-12 02:19 . 2014-05-14 01:32 136192 ----a-w- c:\windows\system32\sspicli.dll
2014-04-12 02:19 . 2014-05-14 01:32 28160 ----a-w- c:\windows\system32\secur32.dll
2014-04-12 02:19 . 2014-05-14 01:32 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-04-12 02:19 . 2014-05-14 01:32 31232 ----a-w- c:\windows\system32\lsass.exe
2014-04-12 02:12 . 2014-05-14 01:32 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-04-12 02:10 . 2014-05-14 01:32 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-03-25 02:43 . 2014-05-14 01:32 14175744 ----a-w- c:\windows\system32\shell32.dll
2014-03-19 22:23 . 2014-03-19 22:23 50896 ----a-w- c:\windows\system32\drivers\point64.sys
2014-03-19 22:23 . 2014-03-19 22:23 29904 ----a-w- c:\windows\system32\drivers\nuidfltr.sys
2013-11-12 19:59 2048 --sha-w- c:\windows\actofvl\clip.exe
.
<pre>
c:\program files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe
c:\program files (x86)\Common Files\microsoft shared\New mp3 BaraT !!                                                             .exe
</pre>
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2014-01-06 6563608]
"TouchFreeze"="c:\users\Frankiej\AppData\Local\Programs\TouchFreeze\TouchFreeze.exe" [2012-07-25 40960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files (x86)\Analog Devices\Core\smax4pnp.exe" [2007-02-22 1183744]
"AVG_UI"="c:\program files (x86)\AVG\AVG2014\avgui.exe" [2014-05-13 5181456]
.
c:\users\Frankiej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
MyPC Backup.lnk - c:\program files (x86)\MyPC Backup\MyPC Backup.exe [2014-3-14 2901032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-10-06 02:43 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ   \0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 BackupStack;Computer Backup (MyPC Backup);c:\program files (x86)\MyPC Backup\BackupStack.exe;c:\program files (x86)\MyPC Backup\BackupStack.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 Generalusbserialser20675;USB Legacy Serial Communication 20675;c:\windows\system32\DRIVERS\CT_U_USBSER.sys;c:\windows\SYSNATIVE\DRIVERS\CT_U_USBSER.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\ElRawDsk.sys;c:\windows\SYSNATIVE\drivers\ElRawDsk.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 pcCMService64;pcCMService64;c:\program files\Common Files\Motive\pcCMService.exe;c:\program files\Common Files\Motive\pcCMService.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys;c:\windows\SYSNATIVE\Drivers\ATSwpWDF.sys [x]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ   w3svc was
apphost REG_MULTI_SZ   apphostsvc
hpdevmgmt REG_MULTI_SZ   hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [N/A]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-14 04:25 1091912 ----a-w- c:\program files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-06-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-17 09:28]
.
2014-06-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-21 05:54]
.
2014-06-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-21 05:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [N/A]
"Broadcom Wireless Manager UI"="c:\program files\Broadcom\Broadcom 802.11\WLTRAY.exe" [2014-03-07 4789248]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <-loopback>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Frankiej\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
Trusted Zone: $talisma_url$
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{DD80CDAD-ACC0-431A-A580-8E9481B847F2}: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{ED2CECE6-9F2D-4E51-A412-261397F25E48}: NameServer = 8.8.8.8,8.8.4.4
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_125_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_125_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_125_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_125_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.14"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2014-06-15  08:11:46
ComboFix-quarantined-files.txt  2014-06-15 15:11
ComboFix2.txt  2014-06-15 14:19
.
Pre-Run: 12,867,436,544 bytes free
Post-Run: 12,562,206,720 bytes free
.
- - End Of File - - 83F7D03FB9D2A8A8E1816C077140D461
5FB38429D5D77768867C76DCBDB35194
 
 
SystemLook 30.07.11 by jpshortstuff
Log created at 19:15 on 17/06/2014 by Frankiej
Administrator - Elevation successful
 
========== dir ==========
 
C:\Windows\SysWOW64\X51335go - Unable to find folder.
 
========== filefind ==========
 
Searching for "curriculum vittae.zip"
No files found.
 
Searching for "USE_RAR_To_Extract.ace"
No files found.
 
Searching for "ZIPPED.zip"
No files found.
 
Searching for "FILEATTACH.bz2"
No files found.
 
Searching for "Doc.gz"
No files found.
 
Searching for "file.bz2"
No files found.
 
Searching for "thisfile.gz"
No files found.
 
Searching for "TITTA'S Picture.jar"
No files found.
 
Searching for "TutoriaL HAcking*.exe"
C:\FRST\Quarantine\C\Users\Frankiej\AppData\Local\Mobogenie\Download\TutoriaL HAcking                                                             .exe --a---- 260096 bytes [05:01 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "Lagu – Server*.scr"
No files found.
 
Searching for "Data DosenKu*.exe"
C:\Program Files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Users\Frankiej\AppData\Local\Ares\My Shared Folder\Data DosenKu                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "Titip Folder Jangan DiHapus*.exe"
C:\FRST\Quarantine\C\Users\Frankiej\AppData\Roaming\Azureus\shares\Titip Folder Jangan DiHapus                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Users\Frankiej\AppData\Local\Ares\My Shared Folder\Titip Folder Jangan DiHapus                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "Love Song*.scr"
No files found.
 
Searching for "New mp3 BaraT !!*.exe"
C:\FRST\Quarantine\C\Users\Frankiej\AppData\Local\Mobogenie\Download\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\FRST\Quarantine\C\Users\Frankiej\AppData\Roaming\Azureus\shares\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [05:01 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Program Files\Common Files\Microsoft Shared\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Program Files (x86)\Common Files\microsoft shared\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\ProgramData\Downloaded Installations\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [05:01 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Users\All Users\Downloaded Installations\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [05:01 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Users\Frankiej\AppData\Roaming\FrostWire\.AppSpecialShare\New mp3 BaraT !!                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "THe Best Ungu*.scr"
C:\FRST\Quarantine\C\Users\Frankiej\AppData\Roaming\uTorrent\share\THe Best Ungu                                                             .scr --a---- 260096 bytes [05:01 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\ProgramData\Downloaded Installations\THe Best Ungu                                                             .scr --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Users\All Users\Downloaded Installations\THe Best Ungu                                                             .scr --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "Blink 182*.exe"
C:\FRST\Quarantine\C\Users\Frankiej\AppData\Roaming\Azureus\shares\Blink 182                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\ProgramData\Downloaded Installations\Blink 182                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
C:\Users\All Users\Downloaded Installations\Blink 182                                                             .exe --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "Norman virus Control 5.18*.exe"
No files found.
 
Searching for "Windows Vista setup*.scr"
C:\Program Files\Common Files\Microsoft Shared\Windows Vista setup                                                             .scr --a---- 260096 bytes [00:12 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "Gallery*.scr"
No files found.
 
Searching for "RaHasIA*.exe"
C:\Users\Frankiej\AppData\Local\Ares\My Shared Folder\RaHasIA                                                             .exe --a---- 260096 bytes [05:01 31/05/2014] [03:09 12/10/2006] FEF4C6D038917DB0C6321F41E6A36F5F
 
Searching for "*Porn.exe"
No files found.
 
Searching for "New Folder(2).exe"
No files found.
 
Searching for "New Folder.scr"
No files found.
 
-= EOF =-
 
:wall:  As far as how my pc is running :rant2:  :rant2: I'm sitting here so frustrated trying to type 2-3 characters at a time :whistling: . Whenever my cursor goes away, I notice the blue title barwhere all the tabs are at the top of the screen flashes from its normal royal blue to light blue the way it would it I were to click on another window from this one. WTH!!!! does that even make sense? Like if it was gonna go into NOT RESPONDING. :angry:  :angry:  :angry:  :angry:  :angry:  However, if I'm playing a game or something that does not require typing, it works fine... Thank you for all your help,Richard. I am very grateful. Good night. :banana: (just had to insert the banana :banana:)


#22 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 18 June 2014 - 01:55 PM

:thumbup:


CFSCRIPT
---------------

  • Please open Notepad and copy/paste the text present inside the code box into the notepad:
    http://forums.whatthetech.com/index.php?showtopic=128247
    
    collect::
    C:\Program Files (x86)\Common Files\microsoft shared\New mp3 BaraT !!                                                             .exe
    
    DDS::
    Trusted Zone: $talisma_url$
    
    Folder::
    C:\Users\Frankiej\AppData\Local\Ares
    C:\Users\Frankiej\AppData\Roaming\FrostWire
    
    File::
    C:\Program Files\Common Files\Microsoft Shared\Windows Vista setup                                                             .scr
    C:\Users\All Users\Downloaded Installations\Blink 182                                                             .exe
    C:\ProgramData\Downloaded Installations\Blink 182                                                             .exe
    C:\Users\All Users\Downloaded Installations\THe Best Ungu                                                             .scr
    C:\ProgramData\Downloaded Installations\THe Best Ungu                                                             .scr
    C:\ProgramData\Downloaded Installations\New mp3 BaraT !!                                                             .exe
    C:\Program Files\Common Files\Microsoft Shared\New mp3 BaraT !!                                                             .exe
    C:\Program Files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe
    C:\Users\All Users\Downloaded Installations\New mp3 BaraT !!                                                             .exe
    
    ClearJavaCache::
    
  • Save this as CFScript.txt and change the 'Save as type' to 'All Files' and place it on your Desktop.
  • Close any open browsers.
  • Close/disable all antivirus and anti-malware programs so they do not interfere with the running of ComboFix.
    CFScript.gif
  • Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
  • ComboFix will now run a scan on your system. It may reboot your system when it finishes. This is normal.
  • When finished, it shall produce a log for you.
  • Copy and paste the contents of the log in your next reply.

CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.


**Note**
When CF finishes running, the ComboFix log will open along with a message box--do not be alarmed. With the above script, ComboFix will capture files to submit for analysis.

  • Ensure you are connected to the internet and click OK on the message box.

Next
 




It is extremely difficult for me to type anything. Seems like the cursor is jumping back and forth betweentwo programs or something yet I only have this window open. I can type two or three characters and then I have to pause and wait for the cursor to come back.

I am only able to type maybe 4 characters at a time before my cursor disappears or stops blinking. I am not able to type until I tap on the mousepad (touchpad) or until I see the cursor begin to blink again.I notice that when my cursor stops blinking, the blue bar at the top of the screen where the tabs are, Blinks (actually, the tabs do not blink just the blue bar across the top When I googled it, I noticed a lot of comments regarding moving my wrist over the touchpad - but I can assure you this is not what's happening with me. For some reason the cursor freezes or hangs for about 2 - 10 seconds.

I see you have TouchFreeze installed on your machine. TouchFreeze is a utility that automatically disables your touchpad whenever you type, but it doesn't work on every laptop. Please uninstall TouchFreeze and let me know if the problem persists. :)

Next

P2P - I see you have P2P software Vuze and Ares installed on your machine. We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It likely contributed to your current situation. This page will give you further information.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

Please see this topic for more information:
Perils of P2P File Sharing.

I would strongly recommend that you uninstall this/these now. You can do so via Control Panel >> Programs and Features.


In your next reply, please provide the following:

  • CF log.
  • Update on how your PC is running.

 

Regards,

Richard :wavey:


Posted Image
Richard
Proud Graduate of WTT Classroom

#23 KristinaChapa

KristinaChapa

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 20 June 2014 - 11:01 AM

ComboFix 14-06-19.01 - Frankiej 06/19/2014   4:18.3.2 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.1.1033.18.2943.1826 [GMT -7:00]
Running from: c:\users\Frankiej\Desktop\ComboFix.exe
Command switches used :: c:\users\Frankiej\Desktop\CFScript.txt
AV: AVG Premium Security 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Premium Security 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
FILE ::
"c:\program files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe"
"c:\program files\Common Files\Microsoft Shared\New mp3 BaraT !!                                                             .exe"
"c:\program files\Common Files\Microsoft Shared\Windows Vista setup                                                             .scr"
"c:\programdata\Downloaded Installations\Blink 182                                                             .exe"
"c:\programdata\Downloaded Installations\New mp3 BaraT !!                                                             .exe"
"c:\programdata\Downloaded Installations\THe Best Ungu                                                             .scr"
"c:\users\All Users\Downloaded Installations\Blink 182                                                             .exe"
"c:\users\All Users\Downloaded Installations\New mp3 BaraT !!                                                             .exe"
"c:\users\All Users\Downloaded Installations\THe Best Ungu                                                             .scr"
.
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Frankiej\AppData\Local\Ares
c:\users\Frankiej\AppData\Local\Ares\Data\ChatroomIPs.dat
c:\users\Frankiej\AppData\Local\Ares\Data\default.m3u
c:\users\Frankiej\AppData\Local\Ares\Data\DHTnodes.dat
c:\users\Frankiej\AppData\Local\Ares\Data\FailedSNodes.dat
c:\users\Frankiej\AppData\Local\Ares\Data\PHashIdx.dat
c:\users\Frankiej\AppData\Local\Ares\Data\Shared Folders.txt
c:\users\Frankiej\AppData\Local\Ares\Data\ShareH.dat
c:\users\Frankiej\AppData\Local\Ares\Data\ShareL.dat
c:\users\Frankiej\AppData\Local\Ares\Data\SNodes.dat
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\- bso el ultimo mohicano.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\- same ho's60.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\-ok a groovy kind of love.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\(00)sancudo boludo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\(07) mirror.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\(80's freestyle) lil suzy- in a dream.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\(linear) - don t you come crying.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\[1] [0] adele - rolling in the deep(12).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\001-amado carrillo478.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\004 perro mal agradecido.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-50k_prod_by_sizzle__tm88.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-gucci_mane-24_hours.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-maggot brain ft silk-e.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-messy_marv_and_berner-well_connected.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-snoop_dogg-welcome_to_the_hood.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-too_short-what_the_fuck.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01-trinere - alone at last.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - el poder del chapo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - los originales de san juan - alineando cabrones(4)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - shout out to the real (feat meek mill, ace hood & plies).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - tha joker - freestyle prod by dtrain.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - the jacka, ap 9 & husalah - sicilian breeze(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - the jacka, ap 9 & husalah - sicilian breeze.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - this stuff pound (feat stressmatic).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 - without me (prod by zaytoven) (datpiff exclusive).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 arrullo de dios(2)466.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 black out.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 chuy y mauricio.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 dreamin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 el cajón de muerto.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 i do (feat k la).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 im fly.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 jealous.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 la arana.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 las nieves de enero.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 little friend (ft bun B) - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 mi padre querido.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 my middle name is crime.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 negra cruz.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 neva be the same.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 phone numbers ft trae tha truth and big sean.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 push it up(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 push it up.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 secret lover.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 the california.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 track 01 19.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 we are the pioneers.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01 whistle.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\01_e_40_ft_50_cent_and_too_short_-_bitch_(remix)_(clean)-djleak.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\011 te vas o te quedas.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-fed-x - cocaine cowboys-.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-gucci_mane-i_m_up_feat_2_chainz_prod_by_drumma_boy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-j-diggs-hood-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-jacka-thunder_ft _husalah-cr(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-messy_marv_and_berner-dollas_(ft _shoboat).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-pitbull-shut_it_down_feat _akon-noir1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the jacka - rich ft i-rocc - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka-a_real_feeling(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka-just_a_celebrity_ft _sky_balla(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka-we_mafia_feat_yung_lott.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka_and_berner-17708_(feat _young_bossy_joe_blow).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka_b-legit_and_blanco-4-20-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka_husalah-on_my_mama_(unreleased_version)-cr(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka_husalah-on_my_mama_(unreleased_version)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-the_jacka_sleepy_d_d-lo-mobbin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-too_short-get_her_like.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-yelawolf_feat_gucci_mane-i_just_wanna_party(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02-yelawolf_feat_gucci_mane-i_just_wanna_party.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 - gucci mane-bite me feat waka flocka.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 - slide through (feat tyga).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 - take a look around (remezclada por timbaland).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 - the way life used to be.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 boogie (w bb king & albert collins(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 didn't i tell you(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 el gato de guanajuato.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 era - dont go away.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 i'm gone.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 just another day.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 los lechugazos.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 party en jalisco.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 pechera ajustada sample.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 robin thicke its in the morning feat snoop dogg(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 roscoe dash and t-pain (feat fabo) - my own step (theme from step up 3d).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 sheesh (feat stresmatic).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\02 the good108.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\027-vendo herramienta.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-a g _the_jacka_san_quinn_matt_blaque-im_winnin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-clyde_carson-(two)_2_step_(main_radio_version).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-dj_khaled-money_(ludacris_jeezy)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-drumma_boy_feat_young_dolph_dose-can_you_hear_me_now.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-gucci_mane_feat_2_chainz-okay_wit_me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-messy_marv_and_berner-blow_(ft _joe_blow).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-nu_jerzey_devil_ft _clyde_carson-ill_be_back.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-pride and joy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-snoop_dogg-my_own_way_ft _mr _porter.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-the jacka - reign god-rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-the jacka - so high - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-the_jacka-no_future.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-the_jacka_and_ampichino-no_tears.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-the_jacka_and_laroo-dont_be_scared_(ft _matt_blaque)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03-the_jacka_and_laroo-dont_be_scared_(ft _matt_blaque).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - davina - bay luv (feat jacka big tone).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - destino ingrato.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - devore amante.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - lupillo_rivera - toros_de_la_mafia - www solodown com - orlandopg1976(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - lupillo_rivera - toros_de_la_mafia - www solodown com - orlandopg1976.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - smoke that stuff.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 - wooh da kid feat gucci mane-talkers(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 1980(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 dont be scared (ft matt blaque).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 dunk (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 everyday.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 fire fighter (feat knotch).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 get you down153.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 gucci mane - rich nigga stuff.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 i want that.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 mastiksoul & dada feat akon & paul g - bang it all.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 niggas doin to much(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 niggas doin to much.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 outstanding (12_ version).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 part of the game(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 scandalous hoe.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 watch me 1(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\03 yo gotti - u understand.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\033-el gato de oaxaca.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-dj khaled ft waka flocka flame & ace hood - i'm thuggin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-fed_x _the_jacka_berner_baldhead_rick-battlefield-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-los_originales_de_san_juan-las_aguilas_andan_solas-fam(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-meek_mill-traumatized(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-messy_marv_and_berner-picture_me_(ft _brisco_and_cozmo).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-snoop_dogg-house_shoes-ftd.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04-the_jacka_and_blanco-huslte_dont_stop-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 beat it up(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 countin money (feat baygeen) 1(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 countin money (feat baygeen) 1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 im thuggin (ft waka flocka and ace hood) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 la navidad de un preso.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 las parcelas de mendoza.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 los compas.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 ridin dirty.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 track 04 19.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 track 4.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 try.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 tu pendejo(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04 whip out.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04) rick ross, wale, meek mill & pill - by any means.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\04_greatest alive ft e-40 & mitchy slick_the jacka.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\046 - por que sera - toby love feat aventura (2010).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-e-40-whats_my_name.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-gucci_mane_feat_snoop_dogg-awesome.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-lil_wayne_rick_ross_busta_rhymes_dj_khaled_fat_joe_r kelly_and_etc-speedin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-messy_marv_and_berner-doin_time__feat _husalah_goldtoes_.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-snoop_dogg_and_wiz_khalifa-talent_show.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-take_it_back_ft _woodie_big_tone.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-the jacka - thinkin of you - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-the jacka, rydah j klyde and fed-x - the same thing everyday-.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-the_jacka_the_gorilla_pits-keep_pushin-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-wale_(feat _meek_mill_frech_montana)-actin_up.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05-yo_gotti_feat_gucci_mane-for_the_hood.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 amigo mesero(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 catch a fade.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 el potro guero.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 ###### em (feat 2 chainz & wale) [prod by academy productionz].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 la muerte de chayo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 money motivated.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 quiero quemarme la boca.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 santo toribio romo(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 santo toribio romo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 they ready (feat j cole, big k r(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 they ready (feat j cole, big k r.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05 track 5.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\05) snoop dogg & wiz khalifa - wet (dj delz remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06-e-40-slummin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06-rescoe_dash-one_night_stand-enemy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06-the_game_of_life.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06-the_jacka_and_lee_majors-hey_world_ft _fed-x_matt_blaque(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06-yelawolf-pop_the_trunk.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 - dj kahled ft game busta rhymes cee-lo - ill sleep when im gone.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 - go away feat kokane.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 - wiz khalifa-smoker face.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 a fregar a otra parte.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 anotha thug (ft mac dre and mac mall).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 anotha thug (ft mac dre and mac.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 avemano orchestral era the mass 128kbps.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 blues at sunrise.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 con la misma tijera(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 doin my thang.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 hustlin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 las tres ramitas46.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 lets go study im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 steve ray vaughan and double trouble - rude mood.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\06 thinking of you.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\061-judas y lucifer.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-ap 9, husalah, the jacka and mike marshall - got to make her mine-rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-architects-red_eyes.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-berner_the_jacka_dubee-my_life-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-e-40-beastin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-e-40-club_on_lock_ft _matt_blaque_and_laroo_t h h.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-gucci_mane-better_baby.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-meek_mill_feat_kirko_bangz-young_and_gettin_it.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-the_jacka-wont_be_right_ft _cellski(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-the_jacka-wont_be_right_ft _cellski.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-too_short-i_got_caught_(feat _martin_luther0.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07-waka_flocka_flame_feat_gucci_mane_oj_da_juiceman_david_blayne-flexxin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 - entrepreneur.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 - future ft drake - tony montana.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 - lets it go.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 - we will roam.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 a week ago.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 el pelotero.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 maldita pobreza(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 maldita pobreza(4)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 ride with me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 track 07 18.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07 westcoast pimp.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\07estoy en el rincon de una cantina(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-dj khaled - cant stop (birdman, t-pain)-rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-dj khaled ft buju banton, busta rhymes & bounty killer-killing me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-i-cry.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-messy_marv_and_berner-hit_em_(feat _shoboat_freeze).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-the jacka - on my side ft c-bo and smigg dirtee - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-the_jacka-crown_me(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-the_jacka-crown_me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-the_jacka-keep_callin_ft _devin_the_dude.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08-too_short-im_a_stop_(feat _50_cent).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 - anastasia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 - clyde carson - doin' that-rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 - the fatha figga.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 - the jacka, ap 9 & husalah - hott head(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 bajale de huevos - slick(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 do you remember (feat kurupt & battlecat).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 el sello de la mafia los originales de san juan.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 era - sombre day.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 fuiste todo para mi.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 look up(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 my beat 1(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 my beat 1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 og (ft currensy) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 sometimes i.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 treinta mil matitas.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 two occasions.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08 wtf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08) big k r i t ft ludacris - country stuff.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\08_the_jacka_j-stalin_lil_blood_-_ridin-djleak.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-berner_equipto_jimmy_roses_and_shown_du-city_boyz.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-cyeah_cyeah_cyeah_cyeah.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-e-40-i_love_my_momma_ft _r o d _and_mic_conn.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-j stalin_the_jacka_shady_nate-pay_ya_self-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-money_pile_prod_by_terryondabeats.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-the jacka - god ft styles p - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09-too_short-hog_ridin_(feat _richie_rich).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 - all around the world (feat j stalin).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 - cold shot.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 - not for me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 - trevor jones; randy edelman - top of the world.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 alfonso madrigal.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 devilz reject.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 era - enae volare.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 homicide ft chevy woods.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 murder on my mind.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 tarde.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09 tu pica hielo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\09_fabolous_ft_meek_mill_and_red_cafe_-_yall_dont_hear_me_tho_(majormix)-djleak com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\092-el milagro de un trailero.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10-gucci mane and waka flocka flame - pacman-rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10-the_jacka-scared_money_ft _krondon_ap _9.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10-the_jacka_and_berner-the_world_(feat _ampichino).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10-the_jacka_j _stalin_ac_shady_nate-changing-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 - here we are (feat 12g shotie).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 - sean garret ft plies and akon - come on in.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 - tu y las nubes.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 el señor de la m.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 era - cathar rhythm.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 go(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 go.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 gucci mane & future - can't turn me down [prod by mike will].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 it could be easy im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 la herencia de mi padre.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 me encanta el cristal.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 my life (ft akon and b o B) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 my stapler.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 perdon.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10 un mundo raro.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\10_gucci_mane_-_get_up_off_me_(feat _wooh_da_kid)-djleak.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\103-dj_khaled-she_s_fine_(feat_sean_paul_and_missy_elliot_and_busta_rhymes)-cocmp3.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11-escape_ft _big_tone(2) - copy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11-escape_ft _big_tone(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11-the jacka - streetlife - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 - lupillo rivera - pechera ajustada.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 - the jacka, ap 9 & husalah - my 15th birthday.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 feelin it(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 gucci mane - thank you (prod by drumma boy)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 hell yeah.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 que perra.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 suicidal thoughts (feat mavado)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 suicidal thoughts (feat mavado).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\11 world class im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\111-j _stalin_g-stack_the_jacka-hustle_hard-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\113 - eternia - blue angel.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12-gucci mane and waka flocka flame - she be puttin' on ft slim dunkin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12-messy_marv_and_berner-everything_is_wrong_(ft _equipto).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12-too_short-baller_feat _david_banner-exe.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 - one foot (feat suga free).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 - story to tell.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 can you feel it.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 fall down 1(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 like a muthafucka -f- kenex90.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 track 12 17.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\12 track 12.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\121-the_jacka_husalah-get_money-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 - you aint a friend [explicit].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 el trabado de michoacan.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 if we ain't ******' (feat t nelson).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 in da past.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 like u like it.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 money.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 por ella.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 track 13.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\13 tres noches y no aterrizo(2) - copia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-future-turn_on_the_lights.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-gucci_mane_feat_waka_flocka_flame-stoned.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-messy_marv_and_berner-gold_club_(ft _j _stalin_and_goldtoes)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-sleepwalkin_exclusive.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-the_jacka-callin_my_name_ft _mistah_f a b.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-the_jacka_and_taj_he_spitz-slow_down-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-yg_feat_meek_mill-i_m_a_thug.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14-yo_gotti_feat_juelz_santana_gucci_mane-colors.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 - everyday.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 - mac dre ft dubee, j-diggs & coolio - crest stuff.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 - the jacka - callin my name ft mistah f a b - rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 akon - clap again [bonus track].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 blind world.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 fantasy girl(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14 real life.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\14_fo'_life.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15-e-40-rear_view_mirror_ft _b-legit_and_stresmatic.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15-e-40-sliding_down_the_pole_(feat _too_short)(2)(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15-snoop_dogg-take_u_home_ft _too_short_daz_and_kokane.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15-the_jacka-what_happened_to_the_world.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15-the_jacka_and_berner-circles_(feat _cellski_fed-x).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15 - chicken room feat rocko (produced by fatboi).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15 - the jacka, ap 9 & husalah - life sentence(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15 - the jacka, ap 9 & husalah - life sentence.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\15 - track 15.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\16 - str8 like that ft 2 chainz louie v (datpiff exclusive).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\16 - toasted (feat decadez).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\16 chamillionaire ft akon ridin dirty remix - media4i com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\16 clyde carson feat avant - one night.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\16 prepared.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\16_whatchu_talkin'_bout.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17-e-40-trapped_ft _mike_marshall.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17-rick_ross-bible_on_the_dash.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 - cali.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 - cartel de tijuana477.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 - leave me alone.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 chris brown ft tyga- deuces.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 from the hood ft husalah, san.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 memory lane.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\17 monday like a friday.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\18-laroo_b-legit_big_rich_the_jacka_hood_stars_e-40_cellski_harm_killa_tay_eddi_p-20_bricks_(remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\18-ludacris_feat _chriss_brown-what_them_girls_like-cr(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\18 - the jacka - our heroes ft dubb 20, j stalin - rgf(1)(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\18 gucci mane - sometimes (feat future) (prod by drumma boy).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\18 round me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\19-messy_marv_big_tone_jacka-imma_hustla-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\19-the_jacka-fuck_everybody.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\19 bartender [clean edit].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\19 ten toes down - 8-ball & mug.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\20-e-40-tuff_times_ft _bosko_and_netta_b.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\20-gucci_mane_feat _shawty_lo-ain_t_nothing_to_lose.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\20 eladio mora.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\20 it's d only thang.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\20 never too much (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\203-beyonce_-_dance_for_you (43).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\21-snoop dogg-can't say goodbye (featuring charlie wilson).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\21-the_jacka-the_end(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\21 blessed.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\21 bun b feat young jeezy - just like that.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\210-roscoe_dash-cool_me_down.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\218-roscoe_dash-i_do_(feat _k_la).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\21f) my prerogative.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\22-que dios te perdone.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\22-the jacka-i try ft ampichino, jynx (go dav)-rgf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\22) dreads hang - pastor troy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\23-berner_the_jacka_b-legit_matt_blaque-blowin_purp_forever(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\24 gucci mane - street nigga - copia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\24 hours(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\25-el trabado de michoacan.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\25 - drumma boy - bonus beat.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\25 sangre de traficante.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\25 sweet sensation - if wishes came true.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\27 - steve ray vaughan - texas flood.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\27_slap the 55 round.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\2pac - broken wings429.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\2pac - changes.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\2pac - million dollar spot (rare).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\2pac & eminem ft akon - future (byts & rox).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\2pac ft too short, mc b - loyal to the game - we do this.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\33 lupillo rivera - un puño de tierra.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\4 corners-bow wow.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\40_glocc-can_i_borrow_you_for_a_minute_ft_akon(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\47 - michael sackler berner - true blue.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\50 cent - pimp.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\50 cent & mann - buzzin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\50 cent & too short - first date.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\70's funk - rick james-she's a brick house.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\8 ball & mjg juvenile, too short - ride - down south(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\8 snoop dogg - smokin' on (feat wiz khalifa & juicy j) - newjams net.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\80's freestyle - soave - crying over you.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\80s freestyle-hanson & davis - hungry for your love.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\80s freestyle-sweet sensation - never let you go(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\80s freestyle-sweet sensation - never let you go.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\80s freestyle - cynthia - thief of heart(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\aaliyah - one in a million.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\adan chalino sanchez y lupillo rivera - nieves de enero (en vivo)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\aerosmith - crazy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\africa bambata and the soul sonic force - play at your own risk (full length 12'' version).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\against all odds (take a look of me now).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon - dont matter.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon - love you no more im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon - party animal (prod by david guetta) - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon - trouble - journey.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon & pitbul- give me to night.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon feat dj khaled & rick ross - criminal mind [thrilla].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon feat keri hilson - oh africa.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon ft ludacris - drop down.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon_ft_ludacris_diddy_lil_jon-get_buck_in_here.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\akon_sunny_day.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ap9 - too short - bust a nutt.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\attitude ft yo gotti - i be like (prod by drumma boy) - hotnewhiphop com(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\aventura_feat _akon__wisin___yandel_-_all_up_to_you376.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\banda el recodo narcos de tijuana.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bass patrol - bass national anthem.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bay area music - clyde carson - hyphy juice remix.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bb king & stevie ray vaughn - stevie ray vaughn - matchbox blues.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\beast.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\belly - she ride (feat gucci mane & jrdn) - newjams net.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ben harper_slide guitar.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner- crime.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner-no_middle_man.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner - car full of killers (new november 2010).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner - certified freak feat juicy j & chevy woods.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner - like mine (feat wiz khalifa & lola monroe) - newjams net.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner ft chris brown & problem - shut up_digitaldripped com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner ft juicy j chevy woods - certified freak - hiphopearly t14896.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner ft wiz khalifa - the plug (fuleteo co).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner, goldtoes- i don't lean like a cholo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner_and_ampichino-05-wit_it_(ft _lee_majors)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\berner_and_ampichino-15-movie-cr - copy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big krit ft ludacris,bun b - country stuff (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big sean & kanye west feat jay-z - clique bmf.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big sean ft nicki minaj - dance (rear) (remix) (cdq)_digitaldripped com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big time rush ft ludacris - baby(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big tone - you can try.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big tone ft a-wax, x o & the jacka of mob figaz - thug stuff.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big tone ft dwele - whats up intimacy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big_tone-04-hustla_feat_messy_marv_the_jacka_ricc-cr(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\big_tone-14-cruzin_feat_laced_davina-cr(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\black n brown thizz big tone ft chino montana & goldtoes & davina--throw yo ts up.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bo strangles ft the jacka - she know i get high.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bob marley & ub 40 - red red wine.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bobby brackins feat clyde carson - my rims - dopehood com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bobby brown - lost in love - best slow jams - rock wit'cha.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\body on me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bohemio de aficion.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bon jobi - allways(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bon jovi - livin on a prayer.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\boot hill.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bounce (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bow wow ft dj khaled - lil wayne - stunt when i see you - 2008.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\boyfriend = big time rush ft snoop dog.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\brisco ft the jacka- the drama www hiphopearly com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\brooke hogan ft e-40 - about us (remix) (by traxamillion).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\bust a nut.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\busta rhymes ft gucci mane & tity boi - murder im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\by the sword(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\celine dion - falling into you - all by myself.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\celtic spirit medley.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\chalino sanchez y lupillo rivera - se les pelo baltazar(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson - hood stomped.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson - in her ear - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson - slow down - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson - something to speak about feat game.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson - strip for me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson ft kaz kyzah & jamillions - all night im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson ft sean kingston - doin 2.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson ft the game-tonight.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde carson ft the game & sean kingson- in da club.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde_carson-california_state_of_mind_(ft _the_game)351382.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde_carson_-_ride_around_town__prod _by_c-major_.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde_carson_-_slow_down_-_hotnewhiphop.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde_carson_-_two_step_(dubcnn).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\clyde_carson_ft_sean_kingston_-_doin_that.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\connie - funky little beat.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\copia de copy of copy of lupillo rivera - gavino barrera362267.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\copia de los dinamicos del norte - alta y delgadita(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\copy (2) of the_jacka-08-sometimes_i_ft _mob_figaz-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\corridos - los tucanes de tijuana - el chapo guzman.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\daddy yanke y snoop dog - gansta zone.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\Data DosenKu                                                             .exe
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\david guetta feat akon - nosy neighbour (extended remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\david guetta ft akon - crank it up im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\david guetta ft akon - where is the dance new 2011.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\david guetta ft akon & pitbull - sexy hotel ###### ( remix 2010 ) - copia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\davina ft big tone -gansta eyes(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dc398.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\debbie deb - it's automatic.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\devilz_rejectz_(the_jacka_and_ampichino)-05-problems_(feat _yukmouth)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\devilz_rejectz_(the_jacka_and_ampichino)-06-mystery-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\devilz_rejectz_(the_jacka_and_ampichino)-12-starz-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\devilz_rejectz_(the_jacka_and_ampichino)-19-hustlen_sence_(feat _ridiculous)-cr(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\devilz_rejectz_(the_jacka_and_ampichino)-20-droptop_(feat _pretty_black)-cr(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dinamicos - amigo tuve una novia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dinamicos del norte - eres flor, eres hermosa(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj drama - oh my ft fabolous, roscoe dash, & wiz khalifa.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj drama ft 2 chainz, meek mill & jeremih - my moment [umd] (1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj drama ft fabolous, roscoe dash & wiz khalifa - oh my im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj felli fel ft three 6 mafia, lil jon & fatman scoop - i wanna get drunk im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj fury - computer bass.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj fury - super bass(2)102.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled - drop that.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled - go hard.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled - still fly.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled - take it to the head (feat rick ross, chris brown, nicki minaj & lil wayne) - newjams ent.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled [ft ace hood, meek mill, big sean, wale, & vado] - future.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled _ft ludacris_ snoop dogg_ rick ross _ t-pain_ - all i do is win - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled feat lil wayne, usher, young jeezy, rick ross & drake - fed up-mixfiend.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled feat paul wall, lilwayne, rick ross, fat joe, pitbull - holla at me baby.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft akon & b o b - my life im1(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft akon & b o b - my life im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft akon, rick ross, plies, trick daddy, lil wayne, lil boosie & ace hood - out here grindin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft birdman & t-pain - cant stop im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft chris brown, keyshia cole & ne-yo - legendary im1(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft chris brown, rick ross, nicki minaj & lil' wayne - take it to the head.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft chris brown, rick ross, nicki minaj & lil wayne - take it to the head (www flowhot net).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled ft paul wall, lil wayne, rick ross, fat joe pitbull - holla at me baby.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj khaled take it to the head (dirty) fe.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj smallz - drumma boy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj smallz - southern smoke (feat drumma boy, alley boy & eastside jody).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj_khaled-born_n_raised_(feat _trick_daddy_rick_ross_and_pitbull).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dj_khaled_ft[1] _rick_ross_ft_t-pain_ace_gutta_-_cash_flow.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dlo ft the jacka and mistah fab - no hoe remix.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dmx ft scarface, snoop dog & ruff ryders - world war iii.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\doin that.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dont be cruel.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\driven soundtrack - mother.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\drumma boy - i got em (feat gucci mane & j-futuristic) - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\drumma boy ft dj paul & young buck - get rowdy im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\drumma boy ft gucci mane, 2 chainz & young buck - i'm on worldstar im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\drumma boy ft[1] gucci mane and j money- i got em.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\drumma_boy_ft _rick_ross-_stop_and_stare_www hiphopearly com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\dubee aka sugawolf pimp & psd - the way we roll.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40-15-yee_ft _too_short_budda-cr(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40-they point feat 2 chainz & juicy j.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40 - function feat yg, iamsu & problem.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40 - that candy paint (feat bun b & slim thug)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40 & too short - say i (feat wiz khalifa) - newjams net.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40 feat t-pain.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40 ft too short, snoop dogg & jazze pha - can't stop the boss im1(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40 ft too short, snoop dogg & jazze pha - can't stop the boss im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e-40_-_show_me_what_you_working_wit_feat _too_short_-_newjams ne197.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\e41 el avionazo (lupillo rivera).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\eagles - kansas - dust in the wind.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\eightball & mjg & too short & ugk - dayam - the game ain t rated.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\el Último mohicano.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\el hijo del chapo guzman(2)124.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\electrik_red_ft _ludacris_-_we_fuck_you_(remix)_[wegotitfirst com].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\eminem - im sorry mama387.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\eminem - not afraid(4).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\era - divano.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\era - looking for something.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\era - sentence(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\era - the mass cdm - don't go away(2)260.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\era - the_mass-bwa.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\era & sara brightman - gregorian.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\etta james - misty blue.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\expose - seasons change(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\faithless - fired up! - insomnia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\flash back set mix funk melody by marcone lemos.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\flo-rida - good feeling (mastered) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\flo-rida ft sia - wild ones im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\foolish (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\foreigner - say you will.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\forever my lady - roscoe dash ft bow wow.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\freestyle - trinere - how can we be wrong.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\game - celebration (feat chris brown, tyga, wiz khalifa & lil wayne) cdq - newjams net.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gap band - ride the white horse.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gerry rafferty - baker street.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\get money.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\get rowdy - song by drumma boy feat dj paul & young buck @hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gkqu.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\goldtoes feat baby bash_ jimmy roses _ berner - thick n juicy _ exclusive -2oo7 _ _ www mzhiphop com _.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane - el chapo - hotnewhiphop.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane - millions.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane - rack city (remix) - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane - young nigga feat waka flocka flame.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane & waka flocka - stoned.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane & waka flocka flame ft slim dunkin - she be puttin on im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane (ft waka flocka flame) - walking lick - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane (ft waka flocka flame) - young nigga - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane ft chris brown & lil wayne - cyeah cyeah cyeah cyeah (www flowhot net).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane ft rick ross - 'all about the money' [ new music video + lyrics + download ].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci mane ft rocko - plain jane.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci_mane-recently_(feat_50_cent)-2dope.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci_mane_-_recently_feat _50_cent.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci_mane_&_waka_flocka_flame-bite_me-(nodjzone com).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\gucci_mane_feat_fabolous_&_8_ball-dont_make_no_sense_prod_by_dj_spinz.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\guns and roses - g n r lies - one in a million.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\guns and roses - terminator 2 - you could be mine.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\hey jude (live).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\hi-five - hi-five - i like the way (kissing game).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\hi-five - i like the way (kissing game).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\husalah-animal planet-you look nasty.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\husalah - ways and means(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\i got em(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\i got em.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\india arie ft akon - i am not my hair.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\inquietos del norte & los amos de n l - 18 primas.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\it's over.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\j-diggs-07-circumstances_and_consequences_(ft _psd)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\j-diggs-09-all_day_all_night-cr(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\j-diggs - connected.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\j-diggs - it's a party.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\j-stalin_jacka-the_party_jumpin(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jacka - gunshots.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jacka - my buddy feat big hollis & balance - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jacka - the jack artist - 04 - get on out there.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jacka feat husalah - love how it feels(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jacka of mob figaz - life (feat cormega & the hoodfellas)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jacka, ap 9 & husalah - sicilian breeze.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jagged edge - jagged edge - lets get married.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jalil lopez ft rick ross & dj khaled - americas most wanted.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\james brown, ray charles, marvin gaye, sam cooke - georgia on my mind.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jimmy page, joe satriani, steve vai, stevie ray vaughan, eric johnson, allan holdsworth - little.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\joe satriani - flamenco.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\jon bon jovi - all about loving you.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\journey - when the lights go down in.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\juan rivera - cabron y medio.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\juicy j - bands a make her dance.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\kafani ft e40 & clyde carson - tail light im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\kc & jojo - now and forever.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ke$ha ft wiz khalifa, andre 3000, t i & lil wayne - sleazy remix 2 0 (get sleazier) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\keith sweat - nobody.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\kendrick lamar - swimming pools (drank) - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\kid cudi - i do my thing (feat snoop dogg) - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\kid ink - la la la_digitaldripped com(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\kid n play - rollin' with kid 'n play (1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\la caspa del diablo(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\la chacalosa(4).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\las botas de charro - lupil.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lil-wayne-ft -eminem-&-ludacris-breaking-down-(new-song-2012).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lil scrappy ft sean paul & e-40 - oh yeah(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lionel_richie_ft _akon_-_just_go487.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los amos de nuevo leon - por las putas32.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los amos pedo y cocodrilo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los compas de almoloya los tucanes de tijuana - tucanes de plata - 11 -.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los dinamicos del norte - amigo tuve una novia33.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los dinamicos del norte - la rubia y la morena.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los inquetos del norte - somos locos.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los inquietos del norte - perro confudido.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de la sierra.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan-mi padre querido-03 morena la causa fuiste254.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan-mi padre querido-04 el morralito(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan-mi padre querido-04 el morralito.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan - del brazo de otro.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan - el coco lineas(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan - el morralito.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan - la santa muerte.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan - party en jalisco141.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los originales de san juan - tus caderas te traicionan.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los orijinales de san juan - el lechero.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los razos de sacramento - los capos - el pendejo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los tucanes de tijuana - el chapo guzman(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los_rakas_ft _krypto_&_the_jacka_-_gangsta_(bcr).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\los+originales+de+san+juan+-+el+patroncito.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ludacris - the red light district - blue berry yum yum.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ludacris ft gucci mane - shake n fries im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ludacris ft pharrell - money maker.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ludacris ft waka flocka-rich and flexin (dirty).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ludacris_ft _trae_and_gucci_mane_-_don_t_love_her _leakjones com_.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo - si yo te bajara el sol(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo juan y jenny rivera - 18 corridos - la chacalosas.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera- por una mujer bonita.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera- yukon gris(2)453370.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera-la diferencia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - 20 mujeres de negro(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - ando volando bajo(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - ando volando bajo(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - ando volando bajo486.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - el moreño(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - el moreño135266.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - el novillo despuntado(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - gabino barrera.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera - la que se fue.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera -01- amado carrillo211.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo rivera mi funeral.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\lupillo,juan, y jenny rivera - la chacalosa.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\mac dre - casual (ft dubee, j diggs)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\mac dre - don't snitch.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\mac_dre-11-on_da_run_(ft _j-diggs_mac_mall_duna_bosshogg)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\maino ft roscoe dash-let it fly (dirty).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\maino ft roscoe dash, dj khaled, ace hood, meek mill, jim jones & wale - let it fly (remix) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\mann feat snoop dogg & iyaz - the mack.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\mariano barba & lupillo rivera - un dia con otro.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\marvin gaye - oldies but goodies - everybody plays the fool.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\me canse de rogarle-lupillo rivera(3).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\me contagias-lupillo rivera.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\me la pelaron los narcos.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\meek mill- flexin on em (prod jahlil beats) - hotnewhiphop(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\meek mill- flexin on em (prod jahlil beats) - hotnewhiphop.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\meek mill - face down feat trey songz wale sam sneaker.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\meek mill - house party feat young chris.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\meek mill - ya'll dont hear me (freestyle).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\messy marv & berner_03_the format(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\mia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\michael jackson feat slash - give into me(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\michael jackson ft akon & will i am - wanna be starting something 2008(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\money on the floor (feat e-40).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\money.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\money_to_blow_drumma_boy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\murder was the case (soundtrack) - 04 - 21 jumpstreet - snoop doggy dogg & tray deee.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\nelly feat drumma boy, t i & 2 chainz - country rear nigga.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\nelly ft akon & t-pain - move that body im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\no me da verguenza.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\norteñas-lupillo rivera - sufriendo a solas.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\notorious b i g ft fabolous, snoop dogg, nate dogg, busta rhymes & foxy brown - running your mouth.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\old school gangsta(4).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\oobie ft too short - thats how it goes down.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\oxlo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\phil collins - but seriously - another day in paradise.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\phil collins - tarzan soundtrack - you'll be in my heart237361.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\phil collins & genesis - one more night.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\pink floyd - comfortably numb.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\pink floyd - mother164.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\pink floyd - the wall - hey you(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\pitbull feat akon - act like you know (elcorillord com).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\player - baby come back.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\player - baby come back145.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\plies ft ludacris & jeremih - just (the tip) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\por una mujer bonita.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\pretenders - back on the chain gang.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\psyph - checkin' my fresh.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\psyph - like a muthafucka.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\psyph morrison - like us.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\psyph_morrison_-___go.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\push up on me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\put your hands up.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\r kelly_ft _clyde_carson_-_take_it_to_the_hotel__remix__im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\racismo-chuy jr[1].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\RaHasIA                                                             .exe
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\ray charles & nina simone - baby, it's cold outside.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\red house (live).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\rick ross - 9 piece (remix) feat lil wayne [dirty].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\rick ross & dj khaled - m i yayo - kick in the door.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\riviera paradise.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\rollin' with kid n' play.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash - awesome.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash - ballin ft kalio [step up 3d song].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash - feelin' like dis.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash - good ####### night - hiphopearly t7838.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash - good ####### night(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash - good good night im1 - cópia.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe dash ft t-pain & fabo- my own step - hiphopearly com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\roscoe_dash_feat_nico_&_y_t_-hurricane.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\round me.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\savage - let me see your hips swing(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\scarface dr dre, ice cube & too short - gameover.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\se les peló baltazar.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\sean kingston & clyde carson - doin that.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\sean paul feat san quinn & berner - we got it.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\shaggy ft akon - whats love.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\signed, sealed, delivered.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dog & dr dre & xibit & eminem - bling bling416.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dogg- 02 - i can't take the heat.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dogg - eyez closed feat kanye west & john legend.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dogg - platinum feat r kelly (prod by lex luger)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dogg - whateva u do.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dogg - you & you (www lacienagaonline com).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop dogg feat pharrell williams - let's get blown.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop doggy dogg & the dog pound - the dog pound - bomb rear ######.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop_dogg-new_years_eve.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop_dogg_-_choose.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\snoop_dogg_-_let_it_rain_prod _scott_storch(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\soulja_boy_feat_gucci_mane_-_pretty_boy_swag_remix.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\soundtracks - disney - tarzan - you'll be in my heart - phil collins.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve r v - long way from home buddy guy.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve ray vaughan - blue jeans blues168.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve ray vaughan - come on.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve ray vaughan - scuttle buttin183.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve ray vaughan - the house is rockin'.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve ray vaughn - voodo.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve vai & stevie ray vaughn - amazing grace.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\steve vai, joe satriani, stevie ray vaughan - angel.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevey ray vaughn - if the house is rockin'.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughan & double trouble - say what!.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughan & jimmy page & robert plant & steve vai-litt.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughan eric johnson joe satriani steve vai steve morse rush - little wing.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughn - lenny202.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughn - life by the drop.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughn - look at little sister(2)198.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughn - pipeline.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughn - willie the wimp.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie ray vaughn & buddy guy - champagne and reefer.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stevie_b_-_in_my_eyes.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\stop & stare.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\superstition(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\sweet november.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\swizz beats.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\t-pain ft joe galaxy - booty wurk (one cheek at a time) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\take you down (remix) - e-40 feat mistah fab & clyde carson - the hyphy movement mixta.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tay dizm ft akon - dream girl [wegotitfirst com].mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tech n9ne - the worst - get blowed.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tech n9ne, hobo tone, big krizz kaliko, & bochapm - in my city.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tha jacka - all the girls say.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tha jacka - cuz i'm the mack 15.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\that's her (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the delegations - oh honey(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the eagles - classic rock - lying eyes.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the gap band - outstanding(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the gap band - party train.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka- ###### everybody.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka- hott head.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka - california gangsta (livin it up) ft fed-x.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka - lookin' at it ft yukmouth, keak da sneak.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka - mac hand.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka - the party jumpin (ft j stalin).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka ft husalah - turf stuff.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka ft matt blaque -all over me(2)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka husalah - get money.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka, ap 9 & husalah - mob hit(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka, woodie - northern expozure, vol 4 - no suckaz207.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the jacka, woodie - northern expozure, vol 4 - no suckaz473.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the last of the mohicans soundtrack.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the lonely island ft akon - i just had sex (www flowhot net).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_game_clyde_carson_ya_boy_juice_and_phat_rat_-_we_out_here_fresh.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka-10-so_smooth-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka-10-this_is_for_(ft _yukmouth_and_pretty_black)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka-12-drug_war_(ft _messy_marv)-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka, ap 9 & husalah -03 mob hit.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka_and_12_gauge_shotie-12-all_my_niggaz-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka_and_lee_majors-10-kash_kings-cr.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka_feat_andre_nickatina_-_you_see_me(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\the_jacka_ft _rick_ross,_mistah_fab,_the_pack,_the_cataracs,_&_shady_nate_-_marshawn_lynch(1).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\they_dont_know_ft _freeway#the_jacka#tear_gas#.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\three doors down - the better life - kryptonite91.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\time flies ft berner.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\Titip Folder Jangan DiHapus                                                             .exe
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tony yayo - haters (feat 50 cent, shawty lo, & roscoe dash) (cdq).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tony yayo ft shawty lo, 50 cent & roscoe dash - haters(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\too shoort ft ugk-life is.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\too short - can i get a ######.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\too short - where you at (messy marv diss).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\too short f china white, lil jon - and the eastside boys - bia bia - just a ######.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\too short ft twista ~ do you wanna ride.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\travis porter ft too short - bring it back (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\trey songz (ft gucci mane & wiz khalifa) - bottoms up (remix) - currenthiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\trillville feat snoop dogg & pitbull - some cut (remix).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\trillville ft e40 - im pimpin.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\trinere - they're playing our song.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\trinere & pretty tony - can't get enough (jam packed).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\tupac - i'd rather be your nigga.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\turn_around__5_4_3_2_1_.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\twdy f too short & mac mall - player's holiday (bill withers - lovely day remix)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\twista ft kurupt, eightball, & too short - creepin'.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\upside down.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\vangelis - last of the mohicans - enya - promentory.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\waap.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\waka flocka flame - no hands (feat roscoe dash & wale) - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\waka flocka, lil b, soulja boy - all i know - hotnewhiphop com.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\whitney houston - i will always love you(2)232.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\why you up in here im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wit the stuff ft joe blow & j diggs.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wiz khalifa - different cloth feat busta rhymes - hotnewhiphop.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wiz khalifa - say yeah (dirty).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wiz khalifa - work hard play hard.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wiz khalifa ft chevy woods & berner - oz's & lbs.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wiz khalifa ft chevy woods & neako - reefer party im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wiz khalifa ft chevy woods & young jeezy - homicide (remix) im1.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\wtxe.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\yg feat tyga, snoop dogg, nipsey hussle & 2 chainz - snitches ain't ( 2o12 ).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\young jeezy - i put on (ludacris and lil wayne and rick ross remix)(20).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\young jeezy feat lloyd & too short - tear it up (remix)(2).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\young jeezy halloween massacre.mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\zion feat akon-the way she moves (the perfect melody).mp3
c:\users\Frankiej\AppData\Local\Ares\My Shared Folder\zion ft akon - the way she moves(2).mp3
c:\users\Frankiej\AppData\Roaming\FrostWire
c:\users\Frankiej\AppData\Roaming\FrostWire\.AppSpecialShare\frostwire-5.3.6.windows.exe.torrent
c:\users\Frankiej\AppData\Roaming\FrostWire\.AppSpecialShare\hostiles.txt.39.zip
c:\users\Frankiej\AppData\Roaming\FrostWire\.AppSpecialShare\Lagu - Server                                                             .scr
c:\users\Frankiej\AppData\Roaming\FrostWire\.AppSpecialShare\New mp3 BaraT !!                                                             .exe
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\.certs
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\.keystore
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\.lock
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\active\F8DDBB4D2AAFE5883DEC5B116E458AF4AC95853C.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\azureus.config
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\azureus.statistics
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\dht\addresses.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\dht\contacts.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\dht\diverse.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\dht\general.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\dht\version.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\downloads.config
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\ipfilter.cache
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339316501962_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339437445824_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339455308832_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339557722745_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339563761531_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339635416401_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\logs\save\1339645050982_debug_1.log
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\net\pm_7018.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\net\pm_default.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\torrents\frostwire-5.3.6.windows.exe.torrent
c:\users\Frankiej\AppData\Roaming\FrostWire\azureus\torrents\hostiles.txt.39.zip.torrent
c:\users\Frankiej\AppData\Roaming\FrostWire\createtimes.cache
c:\users\Frankiej\AppData\Roaming\FrostWire\downloads.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\fileurns.cache
c:\users\Frankiej\AppData\Roaming\FrostWire\filters.props
c:\users\Frankiej\AppData\Roaming\FrostWire\frostwire.props
c:\users\Frankiej\AppData\Roaming\FrostWire\gnutella.net
c:\users\Frankiej\AppData\Roaming\FrostWire\hostiles.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\hostiles.txt
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\banners\220x500frostwire_tshirt_blue_pink1.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\banners\220x500frostwire_tshirt_blue_pink2.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\baiyu_fanfair_overlay.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\cinema_sleep_overlay2.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\hi-rez_overlay.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\jermaine_riley__overlay2.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\john_graham_success_in_retrograde.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\manter__overlay.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\prosthetik_man_cave_overlay.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\senor_kaos_overlay2.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\image_cache\static.frostwire.com\images\overlays\sweetheart_overlay.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\installation.props
c:\users\Frankiej\AppData\Roaming\FrostWire\installer.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\intent.props
c:\users\Frankiej\AppData\Roaming\FrostWire\library.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\mojito.props
c:\users\Frankiej\AppData\Roaming\FrostWire\overlays.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\overlays\updateme_frostwire4_overlay.jpg
c:\users\Frankiej\AppData\Roaming\FrostWire\questions.props
c:\users\Frankiej\AppData\Roaming\FrostWire\responses.cache
c:\users\Frankiej\AppData\Roaming\FrostWire\seenMessages.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\spam.dat
c:\users\Frankiej\AppData\Roaming\FrostWire\tables.props
c:\users\Frankiej\AppData\Roaming\FrostWire\themes\frostwirePro_theme.fwtp
c:\users\Frankiej\AppData\Roaming\FrostWire\themes\frostwirePro_theme\theme.txt
c:\users\Frankiej\AppData\Roaming\FrostWire\themes\frostwirePro_theme\version.txt
.
.
(((((((((((((((((((((((((   Files Created from 2014-05-19 to 2014-06-19  )))))))))))))))))))))))))))))))
.
.
2014-06-19 11:42 . 2014-06-19 11:42 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2014-06-19 11:42 . 2014-06-19 11:42 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-06-14 19:04 . 2014-06-14 19:04 -------- d-----w- c:\program files\Microsoft Mouse and Keyboard Center
2014-06-11 18:41 . 2014-05-30 07:50 1068032 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2014-06-09 22:33 . 2014-06-17 12:45 -------- d-----w- C:\FRST
2014-06-06 10:47 . 2014-06-06 10:47 4558848 ----a-w- c:\windows\SysWow64\GPhotos.scr
2014-06-06 09:30 . 2014-04-15 23:23 40248 ----a-w- c:\windows\system32\TURegOpt.exe
2014-06-06 09:30 . 2014-04-15 23:23 29496 ----a-w- c:\windows\system32\authuitu.dll
2014-06-06 09:30 . 2014-04-15 23:23 25400 ----a-w- c:\windows\SysWow64\authuitu.dll
2014-06-06 09:29 . 2014-06-06 09:29 -------- d-----w- c:\users\Frankiej\AppData\Local\AVG
2014-06-06 09:23 . 2014-06-07 04:07 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-05 09:09 . 2014-06-05 09:09 -------- d-----w- c:\users\Frankiej\AppData\Roaming\AVG2014
2014-06-04 07:19 . 2014-06-05 09:03 -------- d-----w- C:\$AVG
2014-06-04 07:19 . 2014-06-05 10:26 -------- d-----w- c:\programdata\AVG2014
2014-06-02 03:03 . 2014-06-04 08:36 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-31 05:22 . 2014-06-04 08:37 -------- d-----w- c:\users\Frankiej\AppData\Roaming\SUPERAntiSpyware.com
2014-05-31 05:22 . 2014-06-04 08:37 -------- d-----w- c:\program files\SUPERAntiSpyware
2014-05-31 05:22 . 2014-05-31 05:22 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-05-30 08:26 . 2014-05-30 08:26 -------- d-----w- c:\programdata\Sophos
2014-05-30 08:12 . 2014-06-05 11:38 -------- d-----w- c:\users\Frankiej\AppData\Local\Avg2014
2014-05-30 06:53 . 2014-06-17 03:28 -------- d-----w- c:\program files (x86)\MyPC Backup
2014-05-30 06:51 . 2014-06-04 08:37 -------- d-----w- c:\programdata\PC1Data
2014-05-29 19:55 . 2014-06-05 10:26 -------- d-----w- c:\users\Frankiej\AppData\Roaming\VideoPlus
2014-05-29 19:54 . 2014-05-29 19:54 -------- d-----w- c:\users\Frankiej\AppData\Roaming\VideoDrivers
2014-05-29 18:40 . 2014-02-17 22:56 81920 ----a-w- c:\windows\eSellerateControl350.dll
2014-05-29 18:40 . 2014-02-17 22:56 356352 ----a-w- c:\windows\eSellerateEngine.dll
2014-05-29 18:40 . 2014-02-17 22:56 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll
2014-05-29 18:40 . 2014-02-17 22:56 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll
2014-05-29 08:27 . 2014-01-24 18:17 30752 ----a-w- c:\windows\system32\drivers\ElRawDsk.sys
2014-05-29 08:27 . 2014-05-30 19:54 -------- d-----w- c:\programdata\iolo
2014-05-29 08:27 . 2014-05-29 08:27 -------- d-----w- c:\users\Frankiej\AppData\Roaming\iolo
2014-05-25 21:17 . 2014-05-25 21:17 -------- d-sh--w- c:\users\Frankiej\AppData\Local\EmieUserList
2014-05-25 21:17 . 2014-05-25 21:17 -------- d-sh--w- c:\users\Frankiej\AppData\Local\EmieSiteList
2014-05-25 20:50 . 2014-05-25 20:50 -------- d-----w- c:\users\Frankiej\AppData\Local\DriverToolkit
2014-05-25 20:50 . 2014-06-01 16:21 -------- d-----w- c:\program files (x86)\DriverToolkit
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-14 09:28 . 2012-08-17 20:54 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-14 09:28 . 2012-08-17 20:54 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-06-12 16:29 . 2012-06-01 18:18 95414520 ----a-w- c:\windows\system32\MRT.exe
2014-05-13 21:20 . 2014-05-13 21:20 235800 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2014-05-13 21:20 . 2014-05-13 21:20 273176 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2014-05-13 21:06 . 2014-05-13 21:06 323352 ----a-w- c:\windows\system32\drivers\avgloga.sys
2014-05-13 21:05 . 2014-05-13 21:05 191768 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2014-05-13 21:05 . 2014-05-13 21:05 152344 ----a-w- c:\windows\system32\drivers\avgdiska.sys
2014-05-13 21:05 . 2014-05-13 21:05 130328 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2014-05-13 21:04 . 2014-05-13 21:04 236312 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2014-05-13 21:04 . 2014-05-13 21:04 31512 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2014-04-15 09:34 . 2014-04-15 09:34 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-04-15 03:13 . 2014-04-16 17:57 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-12 02:22 . 2014-05-14 01:32 155072 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:22 . 2014-05-14 01:32 95680 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:19 . 2014-05-14 01:32 29184 ----a-w- c:\windows\system32\sspisrv.dll
2014-04-12 02:19 . 2014-05-14 01:32 136192 ----a-w- c:\windows\system32\sspicli.dll
2014-04-12 02:19 . 2014-05-14 01:32 28160 ----a-w- c:\windows\system32\secur32.dll
2014-04-12 02:19 . 2014-05-14 01:32 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-04-12 02:19 . 2014-05-14 01:32 31232 ----a-w- c:\windows\system32\lsass.exe
2014-04-12 02:12 . 2014-05-14 01:32 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-04-12 02:10 . 2014-05-14 01:32 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-03-25 02:43 . 2014-05-14 01:32 14175744 ----a-w- c:\windows\system32\shell32.dll
2013-11-12 19:59 2048 --sha-w- c:\windows\actofvl\clip.exe
.
<pre>
c:\program files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe
c:\program files (x86)\Common Files\microsoft shared\New mp3 BaraT !!                                                             .exe
</pre>
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2014-01-06 6563608]
"TouchFreeze"="c:\users\Frankiej\AppData\Local\Programs\TouchFreeze\TouchFreeze.exe" [2012-07-25 40960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files (x86)\Analog Devices\Core\smax4pnp.exe" [2007-02-22 1183744]
"AVG_UI"="c:\program files (x86)\AVG\AVG2014\avgui.exe" [2014-05-13 5181456]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-10-06 02:43 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ   \0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 Generalusbserialser20675;USB Legacy Serial Communication 20675;c:\windows\system32\DRIVERS\CT_U_USBSER.sys;c:\windows\SYSNATIVE\DRIVERS\CT_U_USBSER.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\ElRawDsk.sys;c:\windows\SYSNATIVE\drivers\ElRawDsk.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 pcCMService64;pcCMService64;c:\program files\Common Files\Motive\pcCMService.exe;c:\program files\Common Files\Motive\pcCMService.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys;c:\windows\SYSNATIVE\Drivers\ATSwpWDF.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ   w3svc was
apphost REG_MULTI_SZ   apphostsvc
hpdevmgmt REG_MULTI_SZ   hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [N/A]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-14 04:25 1091912 ----a-w- c:\program files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-06-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-17 09:28]
.
2014-06-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-21 05:54]
.
2014-06-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-21 05:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [N/A]
"Broadcom Wireless Manager UI"="c:\program files\Broadcom\Broadcom 802.11\WLTRAY.exe" [2014-03-07 4789248]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <-loopback>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Frankiej\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{DD80CDAD-ACC0-431A-A580-8E9481B847F2}: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{ED2CECE6-9F2D-4E51-A412-261397F25E48}: NameServer = 8.8.8.8,8.8.4.4
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_125_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_125_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_125_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_125_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.14"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_125.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
.
**************************************************************************
.
Completion time: 2014-06-19  04:54:19 - machine was rebooted
ComboFix-quarantined-files.txt  2014-06-19 11:54
ComboFix2.txt  2014-06-15 15:11
ComboFix3.txt  2014-06-15 14:19
.
Pre-Run: 10,445,414,400 bytes free
Post-Run: 9,808,756,736 bytes free
.
- - End Of File - - 85D95B914DA0681B9A5BBD30E1D7AADA
5FB38429D5D77768867C76DCBDB35194
 
Hi Richard - PC is running the same. Nothing's changed. Have a great day.


#24 KristinaChapa

KristinaChapa

    New Member

  • Authentic Member
  • Pip
  • 16 posts

Posted 21 June 2014 - 01:39 PM

Hi Richad -I don't know what is happening. There must be a giant black cloud over me because last nightwhen I wnt to poweup my laptop and the screen was just BLACIK.. It wouldnt show a single thing;I had to hook up a screen to it. What should I do. 



#25 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 21 June 2014 - 03:10 PM

the Ares Shared Folder contained copies of the worm that infected your computer and a large amount of .mp3 files. Do you still need any legitimate files from that shared directory or have them backed up at another location? :) 

This infection in your computer spreads via peer-to-peer (P2P) file sharing programs by making copies of itself in the shared directories of P2P file sharing programs. Other users of Ares can remotely access your shared directory. This way, they may voluntarily download the infected files to their computers, thinking that they are useful computer programs. However, they will be actually downloading a copy of the worm to their computers. :thumbdown:

 
CFSCRIPT
---------------
  • Please open Notepad and copy/paste the text present inside the code box into the notepad:
    renv::
    c:\program files (x86)\Common Files\microsoft shared\Data DosenKu                                                             .exe
    c:\program files (x86)\Common Files\microsoft shared\New mp3 BaraT !!                                                             .exe
    
    ClearJavaCache::
  • Save this as CFScript.txt and change the 'Save as type' to 'All Files' and place it on your Desktop.
  • Close any open browsers.
  • Close/disable all antivirus and anti-malware programs so they do not interfere with the running of ComboFix.
    CFScript.gif
  • Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
  • ComboFix will now run a scan on your system. It may reboot your system when it finishes. This is normal.
  • When finished, it shall produce a log for you.
  • Copy and paste the contents of the log in your next reply.
CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.

Next

ADWCLEANER
----------------------------
Download AdwCleaner from here and save it to your desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished...
  • This time, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
Next

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
In your next reply, please provide the following:
  • CF log.
  • AdwCleaner log.
  • JRT.txt.
Regards,

Richard :wavey:
Posted Image
Richard
Proud Graduate of WTT Classroom

    Advertisements

Register to Remove


#26 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 21 June 2014 - 03:23 PM

Hi Richad -I don't know what is happening. There must be a giant black cloud over me because last nightwhen I wnt to poweup my laptop and the screen was just BLACIK.. It wouldnt show a single thing;I had to hook up a screen to it. What should I do.

 

 

does the laptop power up and work normally with the screen hooked up to it?

Regards,
Richard :wavey:


Posted Image
Richard
Proud Graduate of WTT Classroom

#27 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 25 June 2014 - 03:55 PM

It has been two days or more since my last post. Do you still need help or more time? :)



Regards,

Richard :wavey:


Posted Image
Richard
Proud Graduate of WTT Classroom

#28 TechieRanger

TechieRanger

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,017 posts

Posted 30 June 2014 - 04:47 PM

Due to inactivity this topic will be closed.
If you need help please start a new thread.

New members follow the instructions here http://forums.whatth...ed_t106388.html and start a new topic

Posted Image
Richard
Proud Graduate of WTT Classroom

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users