Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-09-2014
Ran by Weak (administrator) on WEAK-HP on 24-09-2014 18:06:33
Running from C:\Users\Weak\Downloads
Platform: Windows 7 Home Premium (X64) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(CinemaNow, Inc.) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.0.0.128\ccSvcHst.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Symantec Corporation) C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\A5E82D02\18.0.0.128\InstStub.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corp.) C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2097960 2010-04-23] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6245408 2010-05-26] (Realtek Semiconductor)
HKLM\...\Run: [HPWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-06-19] (Hewlett-Packard Company)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-06-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Bing Bar] => C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe [243544 2010-04-14] (Microsoft Corp.)
HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [288088 2009-11-12] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [602168 2010-06-30] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-02] (Symantec Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-15] (AVAST Software)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard)
HKU\S-1-5-21-2336391664-1370480690-3926189850-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {26FFE6E9-DAB2-4E16-8967-D5B8AD4BCFE2} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM - {4C1C855B-1431-4F69-BCF5-4400F94E95FF} URL = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
SearchScopes: HKLM - {83E94775-A490-413F-ABC5-C05375FAE340} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {26FFE6E9-DAB2-4E16-8967-D5B8AD4BCFE2} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {4C1C855B-1431-4F69-BCF5-4400F94E95FF} URL = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
SearchScopes: HKLM-x32 - {83E94775-A490-413F-ABC5-C05375FAE340} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {26FFE6E9-DAB2-4E16-8967-D5B8AD4BCFE2} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {4C1C855B-1431-4F69-BCF5-4400F94E95FF} URL = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
SearchScopes: HKCU - {83E94775-A490-413F-ABC5-C05375FAE340} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} ->  No File
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Bing Bar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - @C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpWinExt,version=5.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @acestream.net/acestreamplugin,version=2.1.10.1 -> C:\Users\Weak\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)
FF HKLM-x32\...\Firefox\Extensions: [msntoolbar@msn.com] - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\Firefox
FF Extension: Bing Bar - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\Firefox [2010-10-27]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
FF Extension: Search Helper Extension - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2010-10-27]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-15]
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Weak\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Weak\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org [2014-08-19]

Chrome: 
=======
CHR Profile: C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Przelewy24) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiicmmpkicnndkhlnnloilpgncbpkbjj [2014-09-16]
CHR Extension: (Google Docs) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-15]
CHR Extension: (Google Drive) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-15]
CHR Extension: (YouTube) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-15]
CHR Extension: (Google Search) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-15]
CHR Extension: (Eliminator Slajdów) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2014-08-17]
CHR Extension: (AdBlock) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-08-15]
CHR Extension: (avast! Online Security) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-16]
CHR Extension: (Magic Player) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpckgflgdapkpabemgkielbefdildaio [2014-08-20]
CHR Extension: (No Name) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2014-09-16]
CHR Extension: (Google Wallet) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-15]
CHR Extension: (Gmail) - C:\Users\Weak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-15]
CHR HKCU\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Users\Weak\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx [2013-11-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-15]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-15] (AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
R2 HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [121344 2010-06-22] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [27192 2010-06-30] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.0.0.128\ccSvcHst.exe [126904 2010-05-23] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
R2 RtVOsdService; C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe [315392 2010-04-20] (Realtek Semiconductor Corp.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-15] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-15] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-09-21] (Disc Soft Ltd)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20100528.021\ENG64.SYS [117808 2010-05-28] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20100528.021\EX64.SYS [1773104 2010-05-28] (Symantec Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R1 SRTSP; C:\Windows\system32\drivers\NISx64\1200000.080\SRTSP64.SYS [701800 2010-05-24] (Symantec Corporation) [File not signed]
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1200000.080\SRTSPX64.SYS [38248 2010-05-24] (Symantec Corporation) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-24 18:03 - 2014-09-24 18:06 - 00000000 ____D () C:\FRST
2014-09-23 22:36 - 2014-09-23 22:55 - 00000000 ____D () C:\Users\Weak\Desktop\New folder
2014-09-23 22:33 - 2014-09-24 17:33 - 00002452 _____ () C:\Windows\setupact.log
2014-09-23 22:33 - 2014-09-23 22:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-23 22:07 - 2014-09-23 22:07 - 00000000 ____D () C:\Users\Weak\Desktop\KORKI
2014-09-23 20:57 - 2014-09-24 18:06 - 00031885 _____ () C:\Users\Weak\Downloads\Addition.txt
2014-09-23 20:55 - 2014-09-24 18:06 - 00020226 _____ () C:\Users\Weak\Downloads\FRST.txt
2014-09-23 20:53 - 2014-09-23 20:54 - 02106368 _____ (Farbar) C:\Users\Weak\Downloads\FRST64.exe
2014-09-23 20:44 - 2014-09-23 20:44 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-23 20:43 - 2014-09-23 20:42 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-23 20:42 - 2014-09-23 20:42 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-09-23 20:42 - 2014-09-23 20:42 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-09-23 20:42 - 2014-09-23 20:42 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-09-23 20:42 - 2014-09-23 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-23 20:33 - 2014-09-23 20:33 - 00918440 _____ (Oracle Corporation) C:\Users\Weak\Downloads\chromeinstall-7u67.exe
2014-09-23 20:24 - 2014-09-23 20:53 - 39124432 _____ () C:\Users\Weak\Downloads\iplasetup.exe
2014-09-23 13:37 - 2014-09-23 13:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-23 13:37 - 2014-09-23 13:37 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-23 13:37 - 2014-09-23 13:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-09-23 13:35 - 2014-09-23 13:36 - 13087456 _____ (Microsoft Corporation) C:\Users\Weak\Downloads\Silverlight_x64.exe
2014-09-22 21:44 - 2014-09-22 21:44 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-09-22 21:44 - 2014-09-22 21:44 - 00002014 _____ () C:\Users\Public\Desktop\Adobe Reader 9.lnk
2014-09-22 21:39 - 2014-09-22 21:39 - 31668120 _____ (Adobe Systems Incorporated) C:\Users\Weak\Downloads\AdbeRdr950_pl_PL.exe
2014-09-22 21:37 - 2014-09-22 21:38 - 00747456 _____ ( ) C:\Users\Weak\Downloads\Adobe-Reader(12627)-dp.exe
2014-09-21 10:09 - 2014-09-21 10:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-09-21 10:06 - 2014-09-21 10:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-09-21 10:05 - 2014-09-21 10:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2014-09-21 09:58 - 2014-09-21 09:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-09-21 09:56 - 2014-09-21 10:09 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-21 09:56 - 2014-09-21 10:05 - 00000000 ____D () C:\Windows\SHELLNEW
2014-09-21 09:56 - 2014-09-21 09:56 - 00000000 ____D () C:\Users\Weak\AppData\Local\Microsoft Help
2014-09-21 09:54 - 2014-09-21 09:54 - 00000000 __RHD () C:\MSOCache
2014-09-21 09:52 - 2014-09-21 09:52 - 00001954 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-09-21 09:52 - 2014-09-21 09:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-09-21 09:48 - 2014-09-23 21:04 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\DAEMON Tools Lite
2014-09-21 09:48 - 2014-09-21 09:48 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-09-21 09:48 - 2014-09-21 09:48 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-09-21 09:47 - 2014-09-21 09:52 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-09-21 09:45 - 2014-09-21 09:47 - 13429504 _____ (Disc Soft Ltd) C:\Users\Weak\Downloads\DTLite4491-0356.exe
2014-09-20 19:44 - 2014-09-20 21:19 - 64749184 _____ (Lenovo Group Limited ) C:\Users\Weak\Downloads\1awl06ww.exe
2014-09-20 18:42 - 2014-09-20 18:43 - 00000000 ____D () C:\Users\Weak\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-09-20 18:42 - 2014-09-20 18:42 - 00002516 _____ () C:\Users\Weak\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-09-20 18:42 - 2014-09-20 18:42 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-09-20 18:38 - 2014-09-20 18:40 - 02721168 _____ (Microsoft Corporation) C:\Users\Weak\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2014-09-20 18:07 - 2014-09-20 19:34 - 3660185600 _____ () C:\Users\Weak\Downloads\WINDOWS 7 ULTIMATE ZIBI6248.iso
2014-09-20 09:28 - 2014-09-20 09:28 - 00000000 ____D () C:\Users\Weak\Documents\Ashampoo Burning Studio 2014
2014-09-20 09:24 - 2014-09-20 09:24 - 00001307 _____ () C:\Users\Public\Desktop\Ashampoo Burning Studio 2014.lnk
2014-09-20 09:24 - 2014-09-20 09:24 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Ashampoo
2014-09-20 09:24 - 2014-09-20 09:24 - 00000000 ____D () C:\Users\Weak\AppData\Local\ashampoo
2014-09-20 09:24 - 2014-09-20 09:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-09-20 09:23 - 2014-09-20 09:24 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-09-20 09:23 - 2014-09-20 09:23 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-09-20 09:10 - 2014-09-20 09:15 - 91956656 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Weak\Downloads\ashampoo_burning_studio_2014_12.0.5_15396.exe
2014-09-17 19:37 - 2014-09-17 19:37 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-09-16 19:31 - 2014-09-16 19:31 - 00000000 ____D () C:\Users\Weak\Downloads\Microsoft Windows 7 Home Premium 64 bit [PL] [ iso]
2014-09-09 20:42 - 2014-09-22 21:43 - 00000000 ____D () C:\Users\Weak\AppData\Local\Adobe
2014-09-09 04:30 - 2014-09-09 04:29 - 03051796 _____ () C:\Users\Weak\Desktop\Unterrichtsplanung.tif
2014-09-09 04:29 - 2014-09-09 04:29 - 03051796 _____ () C:\Users\Weak\Downloads\Unterrichtsplanung.tif
2014-09-04 18:30 - 2014-09-04 18:30 - 00002144 _____ () C:\Users\Public\Desktop\Brother Creative Center.lnk
2014-09-04 18:30 - 2014-09-04 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-09-04 18:27 - 2014-09-04 18:27 - 00000000 ____D () C:\Program Files (x86)\BrownyInd
2014-09-04 18:27 - 2014-09-04 18:27 - 00000000 ____D () C:\Brother
2014-09-04 18:26 - 2014-09-04 18:26 - 00000000 ____D () C:\Program Files (x86)\Browny02
2014-09-04 18:26 - 2014-09-04 18:26 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-09-04 18:26 - 2012-12-14 03:31 - 00180224 _____ (Brother Industries, Ltd.) C:\Windows\SysWOW64\BROSNMP.DLL
2014-09-04 18:26 - 2012-12-14 03:31 - 00113744 _____ (Brother Industries Ltd) C:\Windows\SysWOW64\BRRBTOOL.EXE
2014-09-04 18:26 - 2012-12-14 03:31 - 00077824 _____ (Brother Industries, Ltd.) C:\Windows\SysWOW64\BRLMW03A.DLL
2014-09-04 18:26 - 2012-12-14 03:31 - 00045056 _____ () C:\Windows\SysWOW64\BRTCPCON.DLL
2014-09-04 18:26 - 2012-12-14 03:31 - 00025299 _____ (Brother Industries, Ltd) C:\Windows\SysWOW64\BRLM03A.DLL
2014-09-04 18:26 - 2012-12-14 03:31 - 00000114 _____ () C:\Windows\SysWOW64\BRLMW03A.INI
2014-09-04 18:26 - 2012-12-14 03:29 - 00000050 _____ () C:\Windows\system32\BRADM12A.DAT
2014-09-04 18:26 - 2012-12-13 18:00 - 00226816 _____ (Brother Industries, Ltd.) C:\Windows\system32\BRCOM12A.DLL
2014-09-04 18:25 - 2014-09-04 18:30 - 00000000 ____D () C:\ProgramData\Brother
2014-09-04 18:25 - 2014-09-04 18:25 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\InstallShield
2014-09-04 18:24 - 2014-09-04 18:24 - 00000000 ____D () C:\Users\Weak\Downloads\install
2014-09-04 18:23 - 2014-09-04 18:24 - 38710344 _____ (A.I.SOFT,INC.) C:\Users\Weak\Downloads\Y12G_C1-inst-A1-eeu.EXE
2014-09-01 20:57 - 2014-09-01 20:58 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-09-01 18:57 - 2014-09-01 18:57 - 00001018 _____ () C:\Users\Weak\Desktop\HL-1110 series - Shortcut.lnk
2014-09-01 18:53 - 2014-09-01 18:53 - 00000000 ____D () C:\Users\Weak\Documents\Fax
2014-09-01 18:49 - 2014-09-01 18:49 - 00243575 _____ () C:\Users\Weak\Documents\as.xps
2014-08-26 12:29 - 2014-08-26 12:29 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-26 12:29 - 2014-08-26 12:29 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-26 12:28 - 2014-08-26 12:28 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-25 22:44 - 2014-08-25 22:44 - 00000000 _____ () C:\Windows\SysWOW64\sho11FF.tmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-24 18:06 - 2014-09-24 18:03 - 00000000 ____D () C:\FRST
2014-09-24 18:06 - 2014-09-23 20:57 - 00031885 _____ () C:\Users\Weak\Downloads\Addition.txt
2014-09-24 18:06 - 2014-09-23 20:55 - 00020226 _____ () C:\Users\Weak\Downloads\FRST.txt
2014-09-24 17:47 - 2010-10-27 10:45 - 01521732 _____ () C:\Windows\WindowsUpdate.log
2014-09-24 17:41 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-24 17:41 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-24 17:34 - 2014-08-15 12:26 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-24 17:33 - 2014-09-23 22:33 - 00002452 _____ () C:\Windows\setupact.log
2014-09-24 17:33 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-23 23:12 - 2014-08-15 20:49 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\SoftGrid Client
2014-09-23 22:55 - 2014-09-23 22:36 - 00000000 ____D () C:\Users\Weak\Desktop\New folder
2014-09-23 22:54 - 2009-07-14 07:13 - 00714754 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-23 22:33 - 2014-09-23 22:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-23 22:31 - 2014-08-15 12:26 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-23 22:07 - 2014-09-23 22:07 - 00000000 ____D () C:\Users\Weak\Desktop\KORKI
2014-09-23 21:04 - 2014-09-21 09:48 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\DAEMON Tools Lite
2014-09-23 21:04 - 2014-08-18 21:14 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Media Player Classic
2014-09-23 21:04 - 2014-08-18 21:05 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\uTorrent
2014-09-23 20:54 - 2014-09-23 20:53 - 02106368 _____ (Farbar) C:\Users\Weak\Downloads\FRST64.exe
2014-09-23 20:53 - 2014-09-23 20:24 - 39124432 _____ () C:\Users\Weak\Downloads\iplasetup.exe
2014-09-23 20:44 - 2014-09-23 20:44 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-23 20:42 - 2014-09-23 20:43 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-23 20:42 - 2014-09-23 20:42 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-09-23 20:42 - 2014-09-23 20:42 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-09-23 20:42 - 2014-09-23 20:42 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-09-23 20:42 - 2014-09-23 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-23 20:42 - 2010-07-11 07:29 - 00000000 ____D () C:\Program Files (x86)\Java
2014-09-23 20:33 - 2014-09-23 20:33 - 00918440 _____ (Oracle Corporation) C:\Users\Weak\Downloads\chromeinstall-7u67.exe
2014-09-23 13:37 - 2014-09-23 13:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-23 13:37 - 2014-09-23 13:37 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-23 13:37 - 2014-09-23 13:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-09-23 13:36 - 2014-09-23 13:35 - 13087456 _____ (Microsoft Corporation) C:\Users\Weak\Downloads\Silverlight_x64.exe
2014-09-22 21:44 - 2014-09-22 21:44 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-09-22 21:44 - 2014-09-22 21:44 - 00002014 _____ () C:\Users\Public\Desktop\Adobe Reader 9.lnk
2014-09-22 21:44 - 2010-07-11 06:29 - 00000000 ____D () C:\ProgramData\Adobe
2014-09-22 21:44 - 2010-07-11 06:29 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-09-22 21:43 - 2014-09-09 20:42 - 00000000 ____D () C:\Users\Weak\AppData\Local\Adobe
2014-09-22 21:39 - 2014-09-22 21:39 - 31668120 _____ (Adobe Systems Incorporated) C:\Users\Weak\Downloads\AdbeRdr950_pl_PL.exe
2014-09-22 21:38 - 2014-09-22 21:37 - 00747456 _____ ( ) C:\Users\Weak\Downloads\Adobe-Reader(12627)-dp.exe
2014-09-22 08:37 - 2014-08-15 12:21 - 00113928 _____ () C:\Users\Weak\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-21 23:38 - 2009-07-14 06:45 - 00427152 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-21 23:32 - 2014-08-15 20:08 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-09-21 18:57 - 2014-08-19 17:46 - 00000000 ___HD () C:\_acestream_cache_
2014-09-21 18:57 - 2014-08-19 17:45 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\.ACEStream
2014-09-21 10:09 - 2014-09-21 10:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-09-21 10:09 - 2014-09-21 09:56 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-21 10:06 - 2014-09-21 10:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-09-21 10:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-09-21 10:05 - 2014-09-21 10:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2014-09-21 10:05 - 2014-09-21 09:56 - 00000000 ____D () C:\Windows\SHELLNEW
2014-09-21 10:05 - 2010-07-11 05:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-09-21 10:01 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-09-21 09:58 - 2014-09-21 09:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-09-21 09:58 - 2014-08-15 20:48 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-09-21 09:57 - 2009-07-14 04:34 - 00000478 _____ () C:\Windows\win.ini
2014-09-21 09:56 - 2014-09-21 09:56 - 00000000 ____D () C:\Users\Weak\AppData\Local\Microsoft Help
2014-09-21 09:54 - 2014-09-21 09:54 - 00000000 __RHD () C:\MSOCache
2014-09-21 09:52 - 2014-09-21 09:52 - 00001954 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-09-21 09:52 - 2014-09-21 09:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-09-21 09:52 - 2014-09-21 09:47 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-09-21 09:48 - 2014-09-21 09:48 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-09-21 09:48 - 2014-09-21 09:48 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-09-21 09:47 - 2014-09-21 09:45 - 13429504 _____ (Disc Soft Ltd) C:\Users\Weak\Downloads\DTLite4491-0356.exe
2014-09-21 09:43 - 2014-08-21 12:39 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\CyberLink
2014-09-21 09:43 - 2014-08-21 12:39 - 00000000 ____D () C:\Users\Public\CyberLink
2014-09-21 09:32 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-09-20 21:19 - 2014-09-20 19:44 - 64749184 _____ (Lenovo Group Limited ) C:\Users\Weak\Downloads\1awl06ww.exe
2014-09-20 19:34 - 2014-09-20 18:07 - 3660185600 _____ () C:\Users\Weak\Downloads\WINDOWS 7 ULTIMATE ZIBI6248.iso
2014-09-20 18:43 - 2014-09-20 18:42 - 00000000 ____D () C:\Users\Weak\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2014-09-20 18:42 - 2014-09-20 18:42 - 00002516 _____ () C:\Users\Weak\Desktop\Windows 7 USB DVD Download Tool.lnk
2014-09-20 18:42 - 2014-09-20 18:42 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2014-09-20 18:40 - 2014-09-20 18:38 - 02721168 _____ (Microsoft Corporation) C:\Users\Weak\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2014-09-20 18:21 - 2014-07-19 14:06 - 00000000 ____D () C:\Users\Weak\Desktop\erap
2014-09-20 09:28 - 2014-09-20 09:28 - 00000000 ____D () C:\Users\Weak\Documents\Ashampoo Burning Studio 2014
2014-09-20 09:24 - 2014-09-20 09:24 - 00001307 _____ () C:\Users\Public\Desktop\Ashampoo Burning Studio 2014.lnk
2014-09-20 09:24 - 2014-09-20 09:24 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Ashampoo
2014-09-20 09:24 - 2014-09-20 09:24 - 00000000 ____D () C:\Users\Weak\AppData\Local\ashampoo
2014-09-20 09:24 - 2014-09-20 09:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-09-20 09:24 - 2014-09-20 09:23 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-09-20 09:23 - 2014-09-20 09:23 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-09-20 09:15 - 2014-09-20 09:10 - 91956656 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Weak\Downloads\ashampoo_burning_studio_2014_12.0.5_15396.exe
2014-09-18 17:15 - 2014-08-20 22:02 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-09-17 19:37 - 2014-09-17 19:37 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-09-16 19:31 - 2014-09-16 19:31 - 00000000 ____D () C:\Users\Weak\Downloads\Microsoft Windows 7 Home Premium 64 bit [PL] [ iso]
2014-09-16 11:30 - 2014-08-21 12:39 - 00000000 ____D () C:\Users\Weak\Documents\CyberLink
2014-09-13 15:40 - 2014-08-15 12:27 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-09 21:55 - 2014-08-15 12:40 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Skype
2014-09-09 20:42 - 2014-08-15 12:24 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Adobe
2014-09-09 04:29 - 2014-09-09 04:30 - 03051796 _____ () C:\Users\Weak\Desktop\Unterrichtsplanung.tif
2014-09-09 04:29 - 2014-09-09 04:29 - 03051796 _____ () C:\Users\Weak\Downloads\Unterrichtsplanung.tif
2014-09-05 07:46 - 2014-08-15 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2014-09-04 18:30 - 2014-09-04 18:30 - 00002144 _____ () C:\Users\Public\Desktop\Brother Creative Center.lnk
2014-09-04 18:30 - 2014-09-04 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-09-04 18:30 - 2014-09-04 18:25 - 00000000 ____D () C:\ProgramData\Brother
2014-09-04 18:27 - 2014-09-04 18:27 - 00000000 ____D () C:\Program Files (x86)\BrownyInd
2014-09-04 18:27 - 2014-09-04 18:27 - 00000000 ____D () C:\Brother
2014-09-04 18:26 - 2014-09-04 18:26 - 00000000 ____D () C:\Program Files (x86)\Browny02
2014-09-04 18:26 - 2014-09-04 18:26 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-09-04 18:26 - 2010-07-11 05:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-04 18:25 - 2014-09-04 18:25 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\InstallShield
2014-09-04 18:24 - 2014-09-04 18:24 - 00000000 ____D () C:\Users\Weak\Downloads\install
2014-09-04 18:24 - 2014-09-04 18:23 - 38710344 _____ (A.I.SOFT,INC.) C:\Users\Weak\Downloads\Y12G_C1-inst-A1-eeu.EXE
2014-09-03 21:22 - 2014-08-15 11:04 - 00000000 ____D () C:\Users\Weak\AppData\Roaming\Hewlett-Packard
2014-09-01 20:58 - 2014-09-01 20:57 - 00000000 ____D () C:\ProgramData\VirtualizedApplications
2014-09-01 18:58 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-09-01 18:57 - 2014-09-01 18:57 - 00001018 _____ () C:\Users\Weak\Desktop\HL-1110 series - Shortcut.lnk
2014-09-01 18:53 - 2014-09-01 18:53 - 00000000 ____D () C:\Users\Weak\Documents\Fax
2014-09-01 18:49 - 2014-09-01 18:49 - 00243575 _____ () C:\Users\Weak\Documents\as.xps
2014-08-26 12:29 - 2014-08-26 12:29 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-26 12:29 - 2014-08-26 12:29 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-26 12:28 - 2014-08-26 12:28 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-25 22:44 - 2014-08-25 22:44 - 00000000 _____ () C:\Windows\SysWOW64\sho11FF.tmp

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-16 07:30

==================== End Of Log ============================