Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 92790 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

svchost high cpu usage, internet speed limited to zero [Solved]

svchost no internet no virus found

  • This topic is locked This topic is locked
10 replies to this topic

#1 Profaned

Profaned

    New Member

  • Authentic Member
  • Pip
  • 6 posts

Posted 10 November 2014 - 03:03 AM

Goodday whatthetech support,

 

I had some weird startpage and toolbar, usually I remove those for other people. 

So I tried to remove this one aswell, i thought i succeeded.

The toolbar and startpage stay away, but now i can not access the internet like it should.

Maybe i wrecked it, or maybe the infection did.

 

When i connect with wifi I have a few seconds the internet speed im used to, for like 5 seconds max.

After that it wont load anything in a browser, also downloading with Avast for updates without browser fails.

Although it still states i have normal access to the internet.

 

I would be much obliged with all the help you give me.

 

Kind Regards, 

 

Jasper

 

 

aswMBR version 1.0.1.2201 Copyright© 2014 AVAST Software
Run date: 2014-11-10 09:32:26
-----------------------------
09:32:26.407    OS Version: Windows x64 6.1.7601 Service Pack 1
09:32:26.407    Number of processors: 8 586 0x1A05
09:32:26.407    ComputerName: VIDEOBEWERKING  UserName: Sony HDR-NX5E
09:32:27.240    Initialize success
09:32:27.261    VM: initialized successfully
09:32:27.262    VM: Intel CPU supported virtualized 
09:32:43.230    VM: supported disk I/O ataport.SYS
09:32:43.350    AVAST engine defs: 14110901
09:33:00.370    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
09:33:00.373    Disk 0 Vendor: WDC_WD20EARS-00S8B1 80.00A80 Size: 1907729MB BusType: 3
09:33:00.380    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-3
09:33:00.384    Disk 1 Vendor: WDC_WD20EARS-00S8B1 80.00A80 Size: 1907729MB BusType: 3
09:33:00.468    Disk 0 MBR read successfully
09:33:00.473    Disk 0 MBR scan
09:33:00.478    Disk 0 Windows 7 default MBR code
09:33:00.484    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
09:33:00.495    Disk 0 Boot: NTFS     code=1
09:33:00.504    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       102299 MB offset 206848
09:33:00.519    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS      1805327 MB offset 209715200
09:33:00.545    Disk 0 scanning C:\Windows\system32\drivers
09:33:09.833    Service scanning
09:33:26.370    Modules scanning
09:33:26.377    Disk 0 trace - called modules:
09:33:26.395    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys 
09:33:26.401    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006561790]
09:33:26.408    3 CLASSPNP.SYS[fffff880019c743f] -> nt!IofCallDriver -> [0xfffffa8006327520]
09:33:26.415    5 ACPI.sys[fffff88000d647a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa8006323680]
09:33:26.636    AVAST engine scan C:\Windows
09:33:27.855    AVAST engine scan C:\Windows\system32
09:36:07.345    AVAST engine scan C:\Windows\system32\drivers
09:36:19.145    AVAST engine scan C:\Users\Sony HDR-NX5E
09:39:37.339    AVAST engine scan C:\ProgramData
09:41:04.139    Disk 0 statistics 4451384/0/0 @ 5,90 MB/s
09:41:04.145    Scan finished successfully
09:42:02.340    Disk 0 MBR has been saved successfully to "H:\WhattheTech\MBR.dat"
09:42:02.448    The log file has been saved successfully to "H:\WhattheTech\aswMBR.txt"
 
 
 
FRST64:
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2014 01
Ran by Sony HDR-NX5E (administrator) on VIDEOBEWERKING on 10-11-2014 09:45:13
Running from C:\Users\Sony HDR-NX5E\Desktop
Loaded Profile: Sony HDR-NX5E (Available profiles: Sony HDR-NX5E & Guest)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) E:\OS\Alwil Software\Avast5\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Cisco Systems, Inc.) E:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVAST Software) E:\OS\Alwil Software\Avast5\AvastUI.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM-x32\...\Run: [AvastUI.exe] => E:\OS\Alwil Software\Avast5\AvastUI.exe [5225064 2014-11-08] (AVAST Software)
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-30] (Piriform Ltd)
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\MountPoints2: {4f7beb37-76ec-11df-8430-485b391de27a} - "M:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\MountPoints2: {5d1ee1b7-880f-11df-93fd-485b391de27a} - G:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-01] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll => C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll File Not Found
AppInit_DLLs:  C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll => C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll => "C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll" File Not Found
AppInit_DLLs-x32:  C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll => "C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll" File Not Found
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\OS\Alwil Software\Avast5\ashShA64.dll (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/...=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://nl.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAE847B3C150BCB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nl
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearc...r=517880778&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/...=AVASDF&PC=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://start.mysearc...r=517880778&ir=
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearc...=1123310097&ir=
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://start.mysearc...r=517880778&ir=
SearchScopes: HKLM - {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = 
SearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/...=AVASDF&PC=AV01
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/...=AVASDF&PC=AV01
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://search.imesh....q={searchTerms}
SearchScopes: HKCU - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/...=AVASDF&PC=AV01
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/...=AVASDF&PC=AV01
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = 
SearchScopes: HKCU - {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = http://www.google.nl...q={searchTerms}
SearchScopes: HKCU - {AAE4438D-3B75-464C-87B8-A83149A21D22} URL = http://Lasaoren.com/...r=419445503&ir=
BHO: No Name -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ->  No File
BHO: No Name -> {474597C5-AB09-49d6-A4D5-2E8D7341384E} ->  No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\OS\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} ->  No File
BHO-x32: No Name -> {074C1DC5-9320-4A9A-947D-C042949C6216} ->  No File
BHO-x32: No Name -> {474597C5-AB09-49d6-A4D5-2E8D7341384E} ->  No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\OS\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - No Name - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} -  No File
Toolbar: HKLM-x32 - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKLM-x32 - No Name - {28387537-e3f9-4ed7-860c-11e69af4a8a0} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 212.54.40.25 212.54.44.54
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3756899593-3909723925-4124827114-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Sony HDR-NX5E\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3756899593-3909723925-4124827114-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Sony HDR-NX5E\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - E:\Programs\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - E:\Programs\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010-06-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - E:\OS\Alwil Software\Avast5\WebRep\FF
FF Extension: Avast Online Security - E:\OS\Alwil Software\Avast5\WebRep\FF [2011-07-16]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.nl/
CHR StartupUrls: Default -> "hxxp://google.nl/", "https://mijn.ing.nl/...ervlet?sso=true", "hxxp://monitor.livep2000.nl/", "https://radhm.comprise.nl/?pageid=P_LOGIN"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-04]
CHR Extension: (AdBlock) - C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-05-14]
CHR Extension: (Avast Online Security) - C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-11-08]
CHR Extension: (Google Wallet) - C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-11]
CHR Extension: (Bitdefender QuickScan) - C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2014-11-08]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\OS\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx [2014-11-08]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR StartMenuInternet: Google Chrome - C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 avast! Antivirus; E:\OS\Alwil Software\Avast5\AvastSvc.exe [50344 2014-11-08] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 CVPND; E:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe [1529856 2011-03-04] (Cisco Systems, Inc.)
S3 FirebirdServerMAGIXInstance; E:\Magix\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®) [File not signed]
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 msvsmon80; C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4476096 2005-09-23] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-09-15] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-08] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-08] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-08] ()
S3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [306536 2011-03-04] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-11-08] (Disc Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S0 ovanvq; No ImagePath
S0 ssuhop; No ImagePath
R3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2009-09-30] (C-Media Electronics Inc)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U3 aswMBR; \??\C:\Users\SONYHD~1\AppData\Local\Temp\aswMBR.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-11-10 09:45 - 2014-11-10 09:45 - 00017359 _____ () C:\Users\Sony HDR-NX5E\Desktop\FRST.txt
2014-11-10 09:44 - 2014-11-10 09:45 - 00000000 ____D () C:\FRST
2014-11-10 09:31 - 2014-11-10 09:27 - 05194752 _____ (AVAST Software) C:\Users\Sony HDR-NX5E\Desktop\aswMBR.exe
2014-11-10 09:30 - 2014-11-10 09:29 - 02116096 _____ (Farbar) C:\Users\Sony HDR-NX5E\Desktop\FRST64.exe
2014-11-09 22:38 - 2014-11-09 22:38 - 00000067 _____ () C:\gdbdrem.dat
2014-11-09 22:30 - 2014-11-09 22:30 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\AVAST Software
2014-11-09 22:24 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-11-09 22:24 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-11-09 22:24 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-11-09 22:24 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-11-09 22:24 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-11-09 22:24 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-11-09 22:24 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-11-09 22:24 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-11-09 22:24 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-11-09 22:24 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-11-09 22:24 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-11-09 22:24 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-11-09 22:24 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-11-09 22:24 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-11-09 22:24 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-11-09 22:24 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-11-09 22:24 - 2013-10-01 21:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-09 22:24 - 2013-10-01 21:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-11-09 22:23 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-09 22:23 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-09 22:23 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-11-09 22:23 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-11-09 22:23 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-11-09 22:23 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-08 23:51 - 2014-11-10 09:16 - 00000560 _____ () C:\Windows\setupact.log
2014-11-08 23:51 - 2014-11-08 23:51 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-08 23:50 - 2014-11-08 23:50 - 00000821 _____ () C:\Windows\system32\Drivers\etc\hosts.ccebak
2014-11-08 23:50 - 2014-11-08 23:50 - 00000000 ____D () C:\CCE_Quarantine
2014-11-08 22:23 - 2014-11-08 22:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-11-08 22:22 - 2014-11-08 22:23 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\DAEMON Tools Lite
2014-11-08 22:22 - 2014-11-08 22:22 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-11-08 22:22 - 2014-11-08 22:22 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-11-08 22:15 - 2014-11-08 22:23 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-11-08 21:52 - 2014-11-08 21:52 - 00002788 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-11-08 21:51 - 2014-11-08 21:52 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-08 21:35 - 2014-11-08 21:35 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\QuickScan
2014-11-08 20:20 - 2014-11-08 20:38 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2014-11-08 19:09 - 2014-11-09 20:26 - 00000000 ____D () C:\x64
2014-11-08 19:05 - 2014-11-08 19:20 - 00000000 ____D () C:\Program Files\HitmanPro
2014-11-08 11:38 - 2014-11-08 11:38 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\AVAST Software
2014-11-08 11:06 - 2014-11-08 11:06 - 00000939 _____ () C:\Users\Sony HDR-NX5E\Desktop\Open Broadcaster Software.lnk
2014-11-08 03:23 - 2014-11-08 03:23 - 00000959 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-08 03:22 - 2014-11-08 03:22 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-08 03:22 - 2014-11-08 03:22 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-11-08 03:22 - 2014-11-08 03:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-08 03:22 - 2014-11-08 03:22 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-08 03:08 - 2014-11-10 09:17 - 00004162 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-08 03:08 - 2014-11-08 03:22 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-08 03:08 - 2014-11-08 03:22 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-08 03:08 - 2014-11-08 03:22 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-08 03:08 - 2014-11-08 03:08 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-11-07 18:54 - 2014-11-07 19:10 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-07 18:54 - 2014-11-07 18:54 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Local\MFAData
2014-11-07 18:54 - 2014-11-07 18:54 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Local\Avg2015
2014-11-07 18:46 - 2014-11-07 19:35 - 00001920 _____ () C:\Windows\system32\ASOROSet.bin
2014-11-07 18:45 - 2014-11-07 18:46 - 00000000 ____D () C:\Windows\system32\config\RCCBakup
2014-11-07 18:42 - 2014-11-07 18:42 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\AdvancedSystemProtector
2014-11-07 18:42 - 2014-11-07 18:42 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Local\StormFall
2014-11-07 18:41 - 2014-11-07 18:47 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\Systweak
2014-11-07 18:41 - 2014-11-07 18:41 - 00003346 _____ () C:\Windows\System32\Tasks\ASP
2014-11-07 18:41 - 2014-10-06 16:36 - 00020296 _____ () C:\Windows\system32\roboot64.exe
2014-11-07 17:46 - 2014-11-07 17:50 - 00000000 ____D () C:\Windows\5FDC06BF3D3D43678FFB4FAFCB61972D.TMP
2014-11-07 17:46 - 2014-11-07 17:49 - 00001615 _____ () C:\Windows\VPNUnInstall.MIF
2014-11-07 17:42 - 2014-11-07 17:42 - 00000000 ____D () C:\Users\Sony HDR-NX5E\5FDC06BF3D3D43678FFB4FAFCB61972D.TMP
2014-11-07 17:39 - 2014-11-07 17:39 - 00001822 _____ () C:\Users\Sony HDR-NX5E\Desktop\FirstBackup.spg
2014-11-07 13:18 - 2014-11-07 13:19 - 00000000 ____D () C:\Users\Sony HDR-NX5E\Downloads\Diaburn
2014-11-06 20:33 - 2014-11-06 20:33 - 00000132 _____ () C:\Users\Sony HDR-NX5E\AppData\Roaming\Adobe GIF Format CS5 Prefs
2014-11-06 20:10 - 2014-11-06 20:10 - 04717617 _____ () C:\Users\Sony HDR-NX5E\Downloads\W.zip
2014-11-06 20:09 - 2014-11-06 20:09 - 08371778 _____ () C:\Users\Sony HDR-NX5E\Downloads\Outlook.com.zip
2014-11-04 18:54 - 2014-11-04 18:54 - 00000505 _____ () C:\Users\Sony HDR-NX5E\Downloads\kanis vrachtwagen.htm
2014-10-30 23:17 - 2014-10-30 23:17 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\AMD
2014-10-30 16:00 - 2014-11-08 11:33 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\OBS
2014-10-30 16:00 - 2014-11-08 11:06 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-10-30 16:00 - 2014-10-30 16:00 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-10-30 16:00 - 2014-10-30 16:00 - 00000000 ____D () C:\Program Files\OBS
2014-10-29 19:56 - 2014-10-29 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-25 00:10 - 2014-10-25 00:10 - 00000000 ____D () C:\Users\Sony HDR-NX5E\Documents\Anno 1404
2014-10-24 20:38 - 2014-11-07 18:46 - 00000919 _____ () C:\Users\Sony HDR-NX5E\AppData\Roaming\trace_FilterInstaller.txt
2014-10-24 20:38 - 2014-11-07 18:46 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-10-24 20:38 - 2014-11-07 18:46 - 00000000 _____ () C:\Users\Sony HDR-NX5E\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-10-24 20:38 - 2014-10-24 20:42 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-10-24 20:38 - 2014-10-24 20:38 - 00001181 _____ () C:\Users\Sony HDR-NX5E\AppData\Roaming\trace_FilterInstaller.1.txt
2014-10-24 20:38 - 2014-10-24 20:38 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\NCH Software
2014-10-24 20:38 - 2014-10-24 20:38 - 00000000 ____D () C:\ProgramData\NCH Software
2014-10-18 12:29 - 2014-10-18 12:29 - 00000000 ____D () C:\Users\Sony HDR-NX5E\Documents\ANNO 1404 Venice
2014-10-18 11:52 - 2014-10-18 12:29 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\Ubisoft
2014-10-18 11:51 - 2014-10-18 11:51 - 00000000 ____D () C:\ProgramData\Solidshield
2014-10-17 15:22 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-17 15:22 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-17 15:22 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-17 15:22 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-17 15:22 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-17 15:22 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-17 15:22 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-17 15:22 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-17 15:22 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-17 15:22 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-17 15:22 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-17 15:22 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-17 15:22 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-17 15:22 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-17 15:22 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-17 15:22 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-17 15:22 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-17 15:22 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-17 15:22 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-17 15:22 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-17 15:22 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-17 15:22 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-17 15:22 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-17 15:22 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-17 15:22 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-17 15:22 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-17 15:22 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-17 15:22 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-17 15:22 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-17 15:22 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-17 15:22 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-17 15:22 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-17 15:22 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-17 15:22 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-17 15:22 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-17 15:22 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-17 15:22 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-17 15:22 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-17 15:22 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-17 15:22 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-17 15:22 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-17 15:22 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-17 15:22 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-17 15:22 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-17 15:22 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-17 15:22 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-17 15:22 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-17 15:22 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-17 15:22 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-17 15:22 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-17 15:22 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-17 15:22 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-17 15:22 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-17 15:22 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-17 15:22 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-17 15:22 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-17 15:22 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-17 15:22 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-17 15:22 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-17 15:22 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-17 15:22 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-17 15:22 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-17 15:22 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-17 15:22 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-17 15:22 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-17 15:22 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-17 15:21 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-17 15:21 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-17 15:21 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-17 15:21 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-17 15:20 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-17 15:20 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-17 15:20 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-17 15:20 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-17 15:20 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-17 15:20 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-17 15:20 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-17 15:20 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-17 15:20 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-17 15:20 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-17 15:20 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-17 15:20 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-17 15:20 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-13 16:51 - 2014-10-13 16:51 - 00001812 _____ () C:\Users\Sony HDR-NX5E\Desktop\AALauncher32 - Shortcut.lnk
2014-10-12 10:48 - 2014-10-12 10:48 - 00052676 _____ () C:\Windows\SysWOW64\CCCInstall_201410121148323221.log
2014-10-12 10:48 - 2014-10-12 10:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-10-12 10:48 - 2014-10-12 10:48 - 00000000 ____D () C:\ProgramData\ATI
2014-10-12 10:48 - 2014-10-12 10:48 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-10-11 12:26 - 2014-10-11 12:26 - 00000000 __SHD () C:\Users\Sony HDR-NX5E\AppData\Local\icsxml
2014-10-11 12:25 - 2014-10-11 12:29 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Local\MetaGeek,_LLC
2014-10-11 12:25 - 2014-10-11 12:25 - 00000037 ___SH () C:\Users\Sony HDR-NX5E\AppData\Local\1b0eb7175138d304ee6949.24068060
2014-10-11 11:48 - 2014-10-11 11:48 - 00001094 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Network Stumbler.lnk
2014-10-11 11:48 - 2014-10-11 11:48 - 00001082 _____ () C:\Users\Guest\Desktop\Network Stumbler.lnk
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-11-10 09:42 - 2010-06-13 14:58 - 00790900 _____ () C:\Windows\system32\perfh013.dat
2014-11-10 09:42 - 2010-06-13 14:58 - 00171498 _____ () C:\Windows\system32\perfc013.dat
2014-11-10 09:42 - 2009-07-14 06:13 - 01804906 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-10 09:32 - 2010-06-13 19:56 - 01175986 _____ () C:\Windows\WindowsUpdate.log
2014-11-10 09:24 - 2009-07-14 05:45 - 00020880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-10 09:24 - 2009-07-14 05:45 - 00020880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-10 09:23 - 2011-10-21 10:19 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3756899593-3909723925-4124827114-1001UA.job
2014-11-10 09:16 - 2013-12-04 11:31 - 00001052 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-10 09:16 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-09 22:45 - 2010-06-15 13:16 - 00007631 _____ () C:\Users\Sony HDR-NX5E\AppData\Local\Resmon.ResmonCfg
2014-11-09 22:29 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-09 22:27 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-11-09 22:09 - 2013-12-04 11:31 - 00001056 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-09 00:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-08 21:56 - 2014-06-08 20:53 - 00000000 ____D () C:\Windows\Minidump
2014-11-08 21:56 - 2013-10-28 13:57 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\FileZilla
2014-11-08 21:56 - 2010-06-14 05:52 - 00000000 ____D () C:\Windows\Panther
2014-11-08 20:52 - 2014-04-21 15:52 - 00000000 ____D () C:\Users\Sony HDR-NX5E\Desktop\jasper
2014-11-08 14:40 - 2009-07-14 06:08 - 00032622 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-08 14:31 - 2010-06-13 15:18 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-11-08 14:31 - 2010-06-13 15:16 - 00000000 ____D () C:\ProgramData\Adobe
2014-11-08 14:30 - 2011-10-21 10:19 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Local\Google
2014-11-08 11:33 - 2014-05-02 09:36 - 00000000 ____D () C:\Windows\pss
2014-11-08 03:22 - 2011-07-16 14:51 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-11-08 03:22 - 2010-06-15 13:18 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-11-08 03:22 - 2010-06-15 13:18 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-08 03:08 - 2010-06-15 13:18 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-11-07 20:23 - 2012-05-02 15:39 - 00000000 ____D () C:\Users\Guest
2014-11-07 20:23 - 2010-06-13 14:01 - 00000000 ____D () C:\Users\Sony HDR-NX5E
2014-11-07 19:35 - 2009-07-14 03:34 - 97255424 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-11-07 19:35 - 2009-07-14 03:34 - 19136512 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-11-07 19:35 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-11-07 19:30 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-11-07 18:37 - 2011-08-18 12:09 - 00000000 __HDC () C:\ProgramData\~0
2014-11-07 17:52 - 2013-10-28 13:19 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\uTorrent
2014-11-07 17:22 - 2011-10-21 10:19 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3756899593-3909723925-4124827114-1001Core.job
2014-11-07 16:58 - 2013-11-14 15:43 - 00001456 _____ () C:\Users\Sony HDR-NX5E\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-11-07 10:39 - 2014-04-29 15:08 - 00000098 _____ () C:\Users\Sony HDR-NX5E\AppData\Roaming\WB.CFG
2014-11-06 20:37 - 2014-05-22 11:16 - 00030208 ___SH () C:\Users\Sony HDR-NX5E\Documents\Thumbs.db
2014-11-05 23:08 - 2013-05-01 17:49 - 00000000 ____D () C:\Users\Sony HDR-NX5E\AppData\Roaming\Skype
2014-11-05 20:11 - 2013-12-04 11:32 - 00002042 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-11-05 20:11 - 2013-12-04 11:32 - 00002040 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-11-05 20:11 - 2013-12-04 11:32 - 00002030 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-11-05 20:11 - 2013-12-04 11:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-10-29 20:02 - 2011-10-21 10:19 - 00002434 _____ () C:\Users\Sony HDR-NX5E\Desktop\Google Chrome.lnk
2014-10-29 19:57 - 2013-05-01 17:48 - 00000000 ____D () C:\ProgramData\Skype
2014-10-29 19:56 - 2014-02-28 20:21 - 00002513 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-10-29 19:56 - 2014-02-28 20:21 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-10-28 06:34 - 2010-06-13 14:12 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-22 19:03 - 2014-10-07 14:53 - 00012886 _____ () C:\Windows\system32\lvcoinst.log
2014-10-19 16:17 - 2011-10-21 10:19 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3756899593-3909723925-4124827114-1001UA
2014-10-19 16:17 - 2011-10-21 10:19 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3756899593-3909723925-4124827114-1001Core
2014-10-18 21:54 - 2013-12-04 11:31 - 00004052 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-18 21:54 - 2013-12-04 11:31 - 00003800 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-18 21:39 - 2013-06-03 21:01 - 00291512 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-10-18 21:39 - 2013-06-03 20:54 - 00291512 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-10-18 21:39 - 2013-06-03 20:54 - 00291096 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-10-18 17:31 - 2014-07-10 15:54 - 00000000 ____D () C:\Windows\rescache
2014-10-18 11:45 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-18 11:33 - 2010-07-05 11:40 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-17 19:46 - 2009-07-14 05:45 - 05066216 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-17 19:44 - 2014-05-06 22:18 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-17 17:01 - 2010-06-15 13:26 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-17 16:58 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-17 16:56 - 2013-08-14 23:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-17 16:52 - 2010-06-13 14:32 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-12 10:48 - 2014-06-09 21:56 - 00000000 ____D () C:\ProgramData\AMD
2014-10-12 10:43 - 2014-06-09 21:52 - 00000000 ____D () C:\ProgramData\Package Cache
2014-10-12 10:40 - 2014-06-09 21:51 - 00000000 ____D () C:\AMD
 
Some content of TEMP:
====================
C:\Users\Guest\AppData\Local\Temp\proxy_vole5799308022028129127.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-11-07 10:22
 
==================== End Of Log ============================
 
 
ADDITION.TXT:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-11-2014 01
Ran by Sony HDR-NX5E at 2014-11-10 09:45:48
Running from C:\Users\Sony HDR-NX5E\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{288DB08D-0708-4A94-B055-55B99E39EB62}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player Packages (HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Adobe Flash Player Packages) (Version:  - ) <==== ATTENTION
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
America's Army: Proving Grounds Beta (HKLM-x32\...\Steam App 203290) (Version:  - )
ANNO 1404 - Gold Edition (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 3.10.0000 - Ubisoft)
AppCloudUpdater (HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\AppCloudUpdater) (Version:  - AppCloudUpdater) <==== ATTENTION
Apple Application Support (HKLM-x32\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.0.2208 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
Cisco Systems VPN Client 5.0.07.0440 (HKLM\...\{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}) (Version: 5.0.7 - Cisco Systems, Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Episodes From Liberty City v1.1 / RePack by Baracuda (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}_is1) (Version:  - )
File Association Helper (HKLM\...\{C168639F-5810-4EC8-B1E8-0251AA8A771C}) (Version: 1.2.225.65451 - WinZip Computing International, LLC)
FileZilla Client 3.8.0 (HKLM-x32\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\Firebird SQL Server UK) (Version: 2.0.1.13 - MAGIX AG)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKU\S-1-5-21-3756899593-3909723925-4124827114-1001\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Grand Theft Auto IV v1.0 / RePack by Baracuda (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}_is1) (Version:  - )
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.212 - SurfRight B.V.)
iCloud (HKLM\...\{8B485965-8EFE-464A-842F-CF8F18C3DFD7}) (Version: 1.1.0.40 - Apple Inc.)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.650 - Oracle)
Knoll Light Factory EZ Studio (HKLM-x32\...\Knoll Light Factory EZ Studio) (Version:  - )
Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version:  - )
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
MAGIX Music Maker 15 Premium Trial 15.0.1.5 (UK) (HKLM-x32\...\MAGIX Music Maker 15 Premium Trial UK) (Version: 15.0.1.5 - MAGIX AG)
MAGIX Screenshare 4.3.6.1987 (UK) (HKLM-x32\...\MAGIX Screenshare UK) (Version: 4.3.6.1987 - MAGIX AG)
Microsoft .NET Compact Framework 1.0 SP3 Developer (HKLM-x32\...\{6C531060-84FB-4F96-8F33-29DF020632EB}) (Version: 1.0.4292 - Microsoft Corporation)
Microsoft .NET Compact Framework 2.0 (HKLM-x32\...\{625386A4-B6B6-4911-A6E8-23189C3F2D15}) (Version: 2.0.5238 - Microsoft Corporation)
Microsoft .NET Framework 2.0 SDK (x64) - ENU (HKLM\...\Microsoft .NET Framework 2.0 SDK (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Device Emulator version 1.0 - ENU (HKLM-x32\...\{78B75C6D-E53C-424C-BF83-4B63BD4A6682}) (Version: 1.0.50727.42 - Microsoft Corporation)
Microsoft Document Explorer 2005 (HKLM-x32\...\Microsoft Document Explorer 2005) (Version:  - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 64bit Prerequisites (x64) - ENU (HKLM\...\{75F299F3-8234-47CD-BB40-2994C1B1105E}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual Studio 2005 Professional Edition - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Professional Edition - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Professional Edition - ENU Service Pack 1 (KB926601) (HKLM-x32\...\KB926601.T2_29ToU260_29) (Version: 1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neverending Nightmares (HKLM-x32\...\Steam App 253330) (Version:  - Infinitap Games)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Pinnacle Creative Pack Volume 1 (HKLM-x32\...\{7EE8ED57-682B-4AB0-860C-2E079BCD90B1}) (Version: 1.00.0000.17 - Pinnacle Systems)
Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Studio Ultimate Collection Plugins (HKLM-x32\...\{F5C372A1-40F3-49DA-A049-F75CDE9177DC}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle videodriver (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.0.02.11130 - Sony Corporation)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Portal 2 Publishing Tool (HKLM-x32\...\Steam App 644) (Version:  - )
proDAD Heroglyph 2.5 (HKLM-x32\...\proDAD-Heroglyph-2.5) (Version:  - )
proDAD Vitascene 1.0 (HKLM-x32\...\proDAD-Vitascene-1.0) (Version:  - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.989 - Even Balance, Inc.)
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Red Giant ToonIt Studio (HKLM-x32\...\Red Giant ToonIt Studio) (Version:  - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Studio 11 Bonus DVD (HKLM-x32\...\{45A1BF92-700A-4408-B95E-79F462E3D67D}) (Version: 11.0.0.0 - Pinnacle Systems)
Studio 11 Ultimate (HKLM-x32\...\{CC874CBB-BD87-4126-9465-AE73BB62D6E0}) (Version: 11.00.0010 - Pinnacle Systems)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
Trapcode 3DStroke Studio (HKLM-x32\...\Trapcode 3DStroke Studio) (Version:  - )
Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version:  - )
Trapcode Shine Studio (HKLM-x32\...\Trapcode Shine Studio) (Version:  - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0413-0000-0000000FF1CE}_ENTERPRISE_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version:  - Microsoft)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0413-0000-0000000FF1CE}_ENTERPRISE_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version:  - Microsoft)
Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0413-0000-0000000FF1CE}_ENTERPRISE_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version:  - Microsoft)
Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
Write-N-Cite (HKLM-x32\...\{F16A0C93-5400-48FB-B18D-A19611DCFB13}) (Version: 4.2.1141 - RefWorks-COS)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-3756899593-3909723925-4124827114-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Sony HDR-NX5E\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3756899593-3909723925-4124827114-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Sony HDR-NX5E\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll (Google Inc.)
 
==================== Restore Points  =========================
 
09-11-2014 21:23:00 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2014-11-08 23:53 - 00000821 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost
 

 


    Advertisements

Register to Remove


#2 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 10 November 2014 - 06:30 AM

Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0413-0000-0000000FF1CE}_ENTERPRISE

 

Is this an enterprise machine?


Proud Member of UNITE & TB
 

#3 Profaned

Profaned

    New Member

  • Authentic Member
  • Pip
  • 6 posts

Posted 10 November 2014 - 07:50 AM

Not that im aware of?



#4 Profaned

Profaned

    New Member

  • Authentic Member
  • Pip
  • 6 posts

Posted 10 November 2014 - 09:49 AM

btw i have found out that when i open OBS.exe (Open Broadcast Software) and start streaming to twitch. I can stream like always and i can now open a browser and listen to songs on youtube like there is nothing wrong..  But only when streaming.. 

 

i hope this can help to a solution



#5 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 11 November 2014 - 09:23 AM

We Need to Diagnose a Possible Problem with WGA
This may be preventing you from installing that service pack.

  • Please download MGADiag and save it to your desktop.
  • Double click the mgadiag.png icon on your desktop.
  • Click Continue
  • Click Copy
  • Go to Start -> Run and type in "Notepad"
  • Go to Edit -> Paste in notepad.
  • x out all of the numbers and letters in the line beginning with "Windows Product Key:"
  • Copy and paste that log here.


Proud Member of UNITE & TB
 

#6 Profaned

Profaned

    New Member

  • Authentic Member
  • Pip
  • 6 posts

Posted 11 November 2014 - 10:11 AM

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
 
Validation Code: 0
Cached Online Validation Code: 0x0
Windows Product Key: *****-*****-xxxxx-xxxxx-xxxxx
Windows Product Key Hash: xx/xxxxxxxxxxxxxxxxxxx/+xxx=
Windows Product ID: 00426-OEM-8992662-00006
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010100.1.0.001
ID: {58121425-E95E-4BD0-A741-88595DEC41E5}(1)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Ultimate
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.140303-2144
TTS Error: 
Validation Diagnostic: 
Resolution Status: N/A
 
Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
 
Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002
 
OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002
 
OGA Data-->
Office Status: 103 Blocked VLK
Microsoft Office Enterprise 2007 - 103 Blocked VLK
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3
 
Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Users\Sony HDR-NX5E\AppData\Local\Google\Chrome\Application\chrome.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed
 
File Scan Data-->
 
Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{58121425-E95E-4BD0-A741-88595DEC41E5}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.001</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-HYRR2</PKey><PID>00426-OEM-8992662-00006</PID><PIDType>2</PIDType><SID>S-1-5-21-3756899593-3909723925-4124827114</SID><SYSTEM><Manufacturer>System manufacturer</Manufacturer><Model>System Product Name</Model></SYSTEM><BIOS><Manufacturer>American Megatrends Inc.</Manufacturer><Version>0805   </Version><SMBIOSVersion major="2" minor="5"/><Date>20100224000000.000000+000</Date></BIOS><HWID>350B3D07018400FE</HWID><UserLCID>0413</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>W. Europe Standard Time(GMT+01:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>ACRSYS</OEMID><OEMTableID>ACRPRDCT</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>103</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>103</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>ACD7202654E586</Val><Hash>fFic3JgCreGGRxyF8uMWB4R4Jcg=</Hash><Pid>89388-707-1528066-65071</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="103"/><App Id="16" Version="12" Result="103"/><App Id="18" Version="12" Result="103"/><App Id="19" Version="12" Result="103"/><App Id="1A" Version="12" Result="103"/><App Id="1B" Version="12" Result="103"/><App Id="44" Version="12" Result="103"/><App Id="A1" Version="12" Result="103"/><App Id="BA" Version="12" Result="103"/></Applications></Office></Software></GenuineResults>  
 
Spsys.log Content: 0x80070002
 
Licensing Data-->
Software licensing service version: 6.1.7601.17514
 
Name: Windows® 7, Ultimate edition
Description: Windows Operating System - Windows® 7, OEM_SLP channel
Activation ID: 7cfd4696-69a9-4af7-af36-ff3d12b6b6c8
Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
Extended PID: 00426-00178-926-600006-02-1043-7600.0000-1642010
Installation ID: 002104002681081623359082916430391643366310447913334145
Processor Certificate URL: http://go.microsoft....k/?LinkID=88338
Product Key Certificate URL: http://go.microsoft....k/?LinkID=88340
Partial Product Key: HYRR2
License Status: Licensed
Remaining Windows rearm count: 4
Trusted time: 11-11-2014 17:02:47
 
Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: 0x00000000
HealthStatus: 0x0000000000000000
Event Time Stamp: 9:15:2014 18:59
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:
 
 
HWID Data-->
HWID Hash Current: RAAAAAMABgABAAEAAQAEAAAAAwABAAEAonZYfRU/dxbu2IwmRrxoZYQ0CIUKgIifFmt39mI9frqrdREuNtxAVw7o6oI=
 
OEM Activation 1.0 Data-->
N/A
 
OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name OEMID Value OEMTableID Value
  APIC 022410 APIC1405
  FACP 022410 FACP1405
  HPET 022410 OEMHPET 
  MCFG 022410 OEMMCFG 
  OEMB 022410 OEMB1405
  OSFR 022410 OEMOSFR 
  SSDT DpgPmm CpuPm
  SLIC ACRSYS ACRPRDCT


#7 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 12 November 2014 - 10:10 AM

May this be a pirated version of windows? ;)


Proud Member of UNITE & TB
 

#8 Profaned

Profaned

    New Member

  • Authentic Member
  • Pip
  • 6 posts

Posted 12 November 2014 - 12:04 PM

Lol.. i asked my father, the actual buyer, he said a friend of ours assembled the computer including the windows installation.
So i guess its indeed pirated.. Do you assume it is the cause of all troubles?

#9 Profaned

Profaned

    New Member

  • Authentic Member
  • Pip
  • 6 posts

Posted 13 November 2014 - 04:31 PM

I believe I actually solved it.. by resetting the router to factory defaults.
Sidenote: strange it only affected that one and only (pirated) computer.
I'll let you know if the trouble returns.

Thanks TB-Psychotic for your time and assistance.
Please keep up the good noble work you do :D

#10 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 14 November 2014 - 07:30 AM

You´re welcome! :)


Proud Member of UNITE & TB
 

#11 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 14 November 2014 - 07:30 AM

Since this issue appears to be resolved ... this Topic has been closed. Glad we could be of assistance.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please follow the instructions here http://forums.whatth...ed_t106388.html
and start a New Topic.
Proud Member of UNITE & TB
 

Related Topics




Also tagged with one or more of these keywords: svchost, no internet, no virus found

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users