Advanced system protector help removal

Status
Not open for further replies.
OK, just hang in, I am out of ideas, need another set of eyes to look this over, thanks for sticking with me on this, be back as soon as I have more info
 
You need to enable windows to show all files and folders, instructions Here

Go to VirusTotal and submit this file for analysis, just use the browse feature and then Send File, if it says this file has been checked before, have them recheck it. When the scan is done just copy and paste the link back to this forum for me to see.

C:\Windows\System32\roboot64.exe <--This file

If the site is busy you can try this one
http://virusscan.jotti.org/en





Please create a new system restore point before running Malwarebytes Anti-Rootkit if you can.

Download Malwarebytes Anti-Rootkit from Here
  • Unzip the contents to a folder in a convenient location.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log.txt and system-log.txt







Please download Farbar Recovery Scan Tool and save it to your desktop.

(You need the 64Bit Version)
Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
 
For whatever reason I cant seem to find a roboot64.exe on my system. Also the malware came up with nothing after the scan.






Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-12-2013 02
Ran by Thor (administrator) on THOR-PC on 21-12-2013 04:12:03
Running from C:\Users\Thor\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Systweak Software, (www.systweak.com)) C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
(Hi-Rez Studios) J:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
() C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ACD Systems) C:\Program Files\ACD Systems\ACDSee Pro\6.0\ACDSeePro6InTouch2.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) J:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(drahtwerk) C:\Program Files (x86)\drahtwerk\iWebcamera\iWebcameraApp.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(Logitech Inc.) H:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Cloanto Corporation) C:\Program Files (x86)\Common Files\Cloanto\Software Director\softdir.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Corel) C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [8290584 2013-08-02] (Logitech Inc.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1360600 2013-10-21] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-09-27] (Intel Corporation)
HKLM\...\Run: [ACPW06EN] - C:\Program Files\ACD Systems\ACDSee Pro\6.0\ACDSeePro6InTouch2.exe [1234120 2012-12-17] (ACD Systems)
Winlogon\Notify\LBTWlgn: C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
HKCU\...\Run: [ISUSPM Startup] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-18] (DT Soft Ltd)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20587680 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [Steam] - J:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-12] (Valve Corporation)
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-17] (InstallShield Software Corporation)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31072 2008-10-25] (Microsoft Corporation)
HKLM-x32\...\Run: [Standby] - C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe [105632 2010-01-07] (Corel)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LWS] - H:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [CloantoSoftwareDirector] - C:\Program Files (x86)\Common Files\Cloanto\Software Director\softdir.exe [370512 2013-02-02] (Cloanto Corporation)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
ShortcutTarget: ERUNT AutoBackup.lnk -> C:\Program Files (x86)\ERUNT\AUTOBACK.EXE ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://battlelog.battlefield.com/bf3/gate/?returnUrl=|bf3|servers|
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE285D0F3796CCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} http://download.gigabyte.com.tw/object/Dldrv.ocx
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default
FF user.js: detected! => C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @mammoth.com.au/BigPondMediaDownloader,version=1.0.0 - C:\ProgramData\Downloader\npBigPondMediaDownloaderDetector.dll (Mammoth Media)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @lightspark.github.com/Lightspark;version=1 - C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll ( )
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Thor\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Thor\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: mammothmedia.com.au/BigPondMediaDownloaderDetector - C:\ProgramData\Downloader\npBigPondMediaDownloaderDetector.dll (Mammoth Media)
FF Extension: Greasemonkey Shared Script Folder - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\greasemonkeybcsf@stpors.net
FF Extension: YTshowRating - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\jid1-m7xzZLMj29zzjA@jetpack
FF Extension: gTranslator - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\jyboy.yy@gmail.com
FF Extension: Redirector - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\redirector@einaregilsson.com
FF Extension: Flashblock - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
FF Extension: Easy YouTube Video Downloader - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
FF Extension: Adblock Plus - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Greasemonkey - C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: google.com.au
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Plugin: (Shockwave Flash) - C:\Users\Thor\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Thor\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Thor\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Conduit Chrome Plugin) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpijjmpahflnipadmlpgbjmagmjchkk\10.11.21.5_0\plugins/ConduitChromeApiPlugin.dll No File
CHR Plugin: (Conduit Radio Plugin) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpijjmpahflnipadmlpgbjmagmjchkk\10.11.21.5_0\plugins/np-cwmp.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (BigPond Media Downloader Detector) - C:\ProgramData\Downloader\npBigPondMediaDownloaderDetector.dll (Mammoth Media)
CHR Plugin: (Google Update) - C:\Users\Thor\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Magic Actions for YouTube\u2122) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif\6.7.0_0
CHR Extension: (Save as) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajffocjdcmpgjmdfdfkdfdbkjafbkcke\2.1.1_0
CHR Extension: (YouTube) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (FlashBlock) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdngiadmnkhgemkimkhiilgffbjijcie\1.2.11.12_0
CHR Extension: (Adblock Plus) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0
CHR Extension: (YouTube\u2122 Ratings Preview) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbhdenfmgbagncdmgbholejjpmmiank\3.1.1.1_0
CHR Extension: (OneTab) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall\1.6_0
CHR Extension: (Google Search) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.2.733_0
CHR Extension: (Session Buddy) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko\3.2.4_0
CHR Extension: (Youtube Video Downloader) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcgdjbcjnihndbfmmggceololenekadg\1.2_0
CHR Extension: (Virtual Keyboard) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.2.733_0
CHR Extension: (Chromium Wheel Smooth Scroller) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb\1.3.4_0
CHR Extension: (Google Wallet) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Anti-Banner) - C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.2.733_0
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\ab.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Thor\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 ASO3DiskOptimizer; C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe [264488 2013-09-05] (Systweak Software, (www.systweak.com))
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
S2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992 2009-12-21] (Infowatch)
R2 DES2 Service; C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [68136 2009-06-17] ()
R2 HiPatchService; J:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2012-06-26] (Hi-Rez Studios)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-09-27] (Intel Corporation)
R2 KinoniSvc; C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [525312 2013-02-27] ()
S3 MatSvc; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [343856 2011-06-13] (Microsoft Corporation)
S3 MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15122208 2013-10-18] (NVIDIA Corporation)
S3 PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] ()
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625816 2012-06-22] (Pandora.TV)
S2 PinnacleUpdateSvc; C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe [430080 2011-05-09] (PowerUp Software, LLC)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-29] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-09-11] ()
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.)
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWow64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
S3 SPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [745368 2012-11-26] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [85048 2009-12-14] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [66104 2009-12-14] (Infowatch)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-04-22] (DT Soft Ltd)
S3 EagleX64; No ImagePath
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-11-30] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-09-27] (Intel Corporation)
R3 kinonivd; C:\Windows\System32\DRIVERS\kinonivd.sys [2782848 2013-02-27] (Windows (R) Win 7 DDK provider)
R3 KINONI_Wave; C:\Windows\System32\drivers\kinonivad.sys [23040 2013-02-27] (Windows (R) Win 7 DDK provider)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [458032 2011-10-20] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [13616 2011-10-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [636760 2012-11-01] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29488 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
S3 LADF_DHP2; C:\Windows\System32\DRIVERS\ladfDHP2amd64.sys [62168 2010-09-29] (Logitech)
S3 LADF_SBVM; C:\Windows\System32\DRIVERS\ladfSBVMamd64.sys [377176 2010-09-29] (Logitech)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-31] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-31] (Logitech Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VLAN; C:\Windows\System32\DRIVERS\RtVLAN60.sys [24064 2007-12-03] (Windows (R) Codename Longhorn DDK provider)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-21 04:12 - 2013-12-21 04:12 - 00029392 _____ C:\Users\Thor\Desktop\FRST.txt
2013-12-21 04:11 - 2013-12-21 04:11 - 02193141 _____ (Farbar) C:\Users\Thor\Desktop\FRST64.exe
2013-12-21 04:11 - 2013-12-21 04:11 - 00000000 ____D C:\FRST
2013-12-21 04:04 - 2013-12-21 04:10 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-21 04:04 - 2013-12-21 04:04 - 00117464 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-21 04:00 - 2013-12-21 04:10 - 00000000 ____D C:\Users\Thor\Desktop\mbar
2013-12-21 04:00 - 2013-12-21 04:00 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-21 04:00 - 2013-12-21 03:59 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Thor\Desktop\mbar-1.07.0.1008.exe
2013-12-21 02:31 - 2013-12-21 02:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{CBB65506-5BBC-4ABC-91A1-AEAACE9CE046}
2013-12-20 20:38 - 2013-12-20 20:38 - 00000492 _____ C:\Windows\PFRO.log
2013-12-20 20:38 - 2013-12-20 20:38 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Systweak
2013-12-20 20:38 - 2013-12-20 20:38 - 00000000 ____D C:\ProgramData\Systweak
2013-12-20 19:45 - 2013-12-20 20:39 - 00000336 _____ C:\Windows\setupact.log
2013-12-20 19:45 - 2013-12-20 19:45 - 00000000 _____ C:\Windows\setuperr.log
2013-12-20 14:31 - 2013-12-20 14:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{B6003203-FA2A-4357-8401-28D131955D34}
2013-12-20 11:28 - 2013-12-20 11:28 - 00002239 _____ C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2013-12-20 03:13 - 2013-12-20 03:10 - 04359168 _____ C:\Users\Thor\Desktop\RogueKillerX64.exe
2013-12-20 02:31 - 2013-08-06 02:05 - 00001113 _____ C:\Users\Thor\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-20 02:30 - 2013-12-20 02:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{84383498-766C-4D70-9D43-0DF3B99CB927}
2013-12-20 01:51 - 2013-12-20 01:51 - 00000000 ____D C:\_OTL
2013-12-20 01:02 - 2013-12-20 03:53 - 00027402 _____ C:\Users\Thor\Desktop\SystemLook.txt
2013-12-20 01:01 - 2013-12-20 01:01 - 00165376 _____ C:\Users\Thor\Desktop\SystemLook_x64.exe
2013-12-20 00:18 - 2013-12-20 03:15 - 00000000 ____D C:\Users\Thor\Desktop\RK_Quarantine
2013-12-19 23:37 - 2013-12-19 23:37 - 00151042 _____ C:\Users\Thor\Desktop\Extras.Txt
2013-12-19 23:36 - 2013-12-19 23:36 - 00155878 _____ C:\Users\Thor\Desktop\OTL.Txt
2013-12-19 23:31 - 2013-12-19 23:30 - 00602112 _____ (OldTimer Tools) C:\Users\Thor\Desktop\OTL.exe
2013-12-19 22:25 - 2013-12-19 22:25 - 00038866 _____ C:\Users\Thor\Desktop\combofix.txt
2013-12-19 22:24 - 2013-12-19 22:24 - 00038866 _____ C:\ComboFix.txt
2013-12-19 22:04 - 2011-06-26 16:15 - 00256000 _____ C:\Windows\PEV.exe
2013-12-19 22:04 - 2010-11-08 02:50 - 00208896 _____ C:\Windows\MBR.exe
2013-12-19 22:04 - 2009-04-20 14:26 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-19 22:04 - 2000-08-31 09:30 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-19 22:04 - 2000-08-31 09:30 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-19 22:04 - 2000-08-31 09:30 - 00098816 _____ C:\Windows\sed.exe
2013-12-19 22:04 - 2000-08-31 09:30 - 00080412 _____ C:\Windows\grep.exe
2013-12-19 22:04 - 2000-08-31 09:30 - 00068096 _____ C:\Windows\zip.exe
2013-12-19 22:03 - 2013-12-19 22:24 - 00000000 ____D C:\Qoobox
2013-12-19 22:01 - 2013-12-19 22:01 - 05154906 ____R (Swearware) C:\Users\Thor\Desktop\ComboFix.exe
2013-12-19 14:29 - 2013-12-19 14:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{D896A6DE-27B1-486C-8661-003AD9160B72}
2013-12-19 02:28 - 2013-12-19 02:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{849A18FE-AF8B-4FF6-846B-DF1D2C3E9BAB}
2013-12-18 14:28 - 2013-12-18 14:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{D0CE82F9-7496-422F-AFE7-FC402F805256}
2013-12-18 14:14 - 2013-12-20 22:59 - 00000000 ____D C:\Users\Thor\AppData\Local\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00002835 _____ C:\Users\Public\Desktop\ACDSee Pro 6 (64-bit).lnk
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\Users\Thor\AppData\Roaming\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\ProgramData\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\Program Files\Common Files\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\Program Files\ACD Systems
2013-12-18 14:11 - 2013-12-18 14:11 - 00000057 _____ C:\Windows\system32\Drivers\etc\hosts.txt
2013-12-18 13:47 - 2013-12-18 13:47 - 00001109 _____ C:\Users\Public\Desktop\FastStone Image Viewer.lnk
2013-12-18 13:47 - 2013-12-18 13:47 - 00000000 ____D C:\Users\Thor\AppData\Roaming\FastStone
2013-12-18 13:47 - 2013-12-18 13:47 - 00000000 ____D C:\Program Files (x86)\FastStone Image Viewer
2013-12-18 13:45 - 2013-12-18 13:45 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2013-12-18 13:45 - 2013-12-18 13:45 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-18 13:23 - 2013-12-18 13:23 - 00000000 ____D C:\Users\Thor\Documents\ZPS15
2013-12-18 02:27 - 2013-12-18 02:27 - 00000000 ____D C:\Users\Thor\AppData\Local\{17FA845B-4390-45F9-9C53-B3AE303C6BDC}
2013-12-17 17:44 - 2013-12-21 04:03 - 00000000 ____D C:\Users\Thor\Desktop\adsadsadsadsf
2013-12-17 14:26 - 2013-12-17 14:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{6F1E42CA-6542-40D4-989F-1D1BCC68FDC2}
2013-12-17 02:25 - 2013-12-17 02:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{7EFE4767-E25A-479F-90FE-6B8EC2FBA0B9}
2013-12-16 22:50 - 2013-12-16 22:50 - 00002848 _____ C:\Windows\System32\Tasks\ASC7_SkipUac_Thor
2013-12-16 22:50 - 2013-12-16 22:50 - 00000000 ____D C:\Users\Thor\AppData\Roaming\IObit
2013-12-16 22:50 - 2013-12-16 22:50 - 00000000 ____D C:\ProgramData\IObit
2013-12-16 22:49 - 2013-12-16 22:49 - 00000000 ____D C:\Program Files (x86)\IObit
2013-12-16 22:17 - 2013-12-16 22:17 - 00000000 ____D C:\Users\Thor\AppData\Local\Xenocode
2013-12-16 14:24 - 2013-12-16 14:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{05D9B1BD-0ABB-4281-8C48-AE7521084C38}
2013-12-16 02:24 - 2013-12-16 02:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{35D9B639-F1E0-42CF-BD3E-2A9F0DD5A87C}
2013-12-15 13:18 - 2013-12-15 13:19 - 00000000 ____D C:\Users\Thor\AppData\Local\{CB0FAAFD-BFC6-411C-832D-CD0970224273}
2013-12-14 13:10 - 2013-12-14 13:11 - 00000000 ____D C:\Users\Thor\AppData\Local\{58B18ED8-1332-4A67-A458-0DEDFBC6D60D}
2013-12-14 01:04 - 2013-12-14 01:05 - 00000000 ____D C:\Users\Thor\AppData\Local\{29775709-3D35-44AF-9151-708B1E796672}
2013-12-13 13:04 - 2013-12-13 13:04 - 00000000 ____D C:\Users\Thor\AppData\Local\{A226EA76-B129-4A0C-AE7D-6A51C0ED1E99}
2013-12-13 12:01 - 2013-12-13 12:01 - 04583424 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2013-12-13 00:26 - 2013-12-13 00:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{98520726-C8CF-46AC-9463-EC3C3400665C}
2013-12-12 12:26 - 2013-12-12 12:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{4DC0664C-4775-40EE-A99D-A4C4BA0CFAE1}
2013-12-12 00:25 - 2013-12-12 00:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{767901AF-AF47-4E4E-9B54-8EAA61A36891}
2013-12-11 12:25 - 2013-12-11 12:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{7C8D0E92-6CB8-4E77-B845-5976A5E4AF5A}
2013-12-11 00:24 - 2013-12-11 00:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{E88792A9-D1D6-40B2-8686-1F0F0C48F005}
2013-12-10 12:24 - 2013-12-10 12:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{F9DCA46E-C9B9-46F0-8C1A-E75D2B92FC18}
2013-12-10 00:23 - 2013-12-10 00:23 - 00000000 ____D C:\Users\Thor\AppData\Local\{D215823D-FFB8-421B-99A5-016D68B04E70}
2013-12-09 12:23 - 2013-12-09 12:23 - 00000000 ____D C:\Users\Thor\AppData\Local\{40BCAD90-914B-4D58-8468-B54427F806F9}
2013-12-09 00:22 - 2013-12-09 00:22 - 00000000 ____D C:\Users\Thor\AppData\Local\{A495DBF5-7F43-4FF7-BD7E-38B001F7B858}
2013-12-08 23:24 - 2013-12-08 23:24 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.3
2013-12-08 23:23 - 2013-12-08 23:31 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-08 23:23 - 2013-12-08 23:24 - 00000000 ____D C:\Users\Thor\AppData\Local\Mobogenie
2013-12-08 23:23 - 2013-12-08 23:23 - 00000000 ____D C:\Users\Thor\Documents\Mobogenie
2013-12-08 23:23 - 2013-12-08 23:23 - 00000000 ____D C:\Users\Thor\AppData\Local\cache
2013-12-08 23:23 - 2013-12-08 23:23 - 00000000 _____ C:\Users\Thor\daemonprocess.txt
2013-12-08 22:45 - 2013-12-08 22:45 - 00000000 ____D C:\Users\Thor\Documents\My Cheat Tables
2013-12-08 22:42 - 2013-12-08 22:42 - 00000000 ____D C:\Users\Thor\Documents\FLiNGTrainer
2013-12-08 12:22 - 2013-12-08 12:22 - 00000000 ____D C:\Users\Thor\AppData\Local\{175E7DCA-2C44-4838-B8B3-D6B22D0A5FE8}
2013-12-07 18:49 - 2013-12-07 18:50 - 00000000 ____D C:\Users\Thor\AppData\Local\{EE83E89D-966E-4BD9-8D0D-5E44346B37EC}
2013-12-07 06:49 - 2013-12-07 06:49 - 00000000 ____D C:\Users\Thor\AppData\Local\{E2E4E388-7322-4AE9-BD3D-CB5B3D1DD7A7}
2013-12-06 17:32 - 2013-12-06 17:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{EDC693A7-9D62-4FBC-B7DB-864969FB56AF}
2013-12-06 16:21 - 2013-12-06 16:23 - 00000000 ____D C:\Program Files (x86)\PDF24
2013-12-06 16:21 - 2013-12-06 16:21 - 00000000 ____D C:\Users\Thor\AppData\Local\PDF24
2013-12-06 05:31 - 2013-12-06 05:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{CEC9543C-9113-4ADE-88D3-E7F878DED8DC}
2013-12-06 04:51 - 2013-12-06 04:51 - 00000220 _____ C:\Users\Thor\Desktop\Star Trek Online.url
2013-12-05 23:32 - 2013-12-05 23:32 - 00000222 _____ C:\Users\Thor\Desktop\Batman Arkham City GOTY.url
2013-12-05 17:31 - 2013-12-05 17:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{E4304F79-64ED-41DC-8A0D-1D5F7D169A8D}
2013-12-05 15:34 - 2013-12-05 15:34 - 00000222 _____ C:\Users\Thor\Desktop\Broken Sword 5.url
2013-12-05 05:30 - 2013-12-05 05:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{EF8758E8-ECB9-48D1-A1C6-83010D984F9F}
2013-12-04 17:30 - 2013-12-04 17:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{A42E06A3-CECA-47A1-AB70-C20F4995DA0D}
2013-12-04 12:53 - 2013-12-04 12:53 - 00002414 _____ C:\Users\Thor\Desktop\aswMBR.txt
2013-12-04 12:53 - 2013-12-04 12:53 - 00000512 _____ C:\Users\Thor\Desktop\MBR.dat
2013-12-04 12:43 - 2013-12-04 12:42 - 04745728 _____ (AVAST Software) C:\Users\Thor\Desktop\aswMBR (1).exe
2013-12-04 12:41 - 2013-12-04 12:41 - 00005257 _____ C:\Users\Thor\Desktop\attach.zip
2013-12-04 12:36 - 2013-12-04 12:36 - 00035388 _____ C:\Users\Thor\Desktop\dds.txt
2013-12-04 12:36 - 2013-12-04 12:36 - 00015596 _____ C:\Users\Thor\Desktop\attach.txt
2013-12-04 12:35 - 2013-12-04 12:35 - 00688992 ____R (Swearware) C:\Users\Thor\Desktop\dds.scr
2013-12-04 12:32 - 2013-12-04 12:32 - 00000909 _____ C:\Users\UpdatusUser.Thor-PC.000\Desktop\ERUNT.lnk
2013-12-04 12:32 - 2013-12-04 12:32 - 00000909 _____ C:\Users\Thor\Desktop\ERUNT.lnk
2013-12-04 12:32 - 2013-12-04 12:32 - 00000000 ____D C:\Program Files (x86)\ERUNT
2013-12-04 06:54 - 2013-12-16 15:24 - 00000000 ____D C:\hijackthis
2013-12-04 05:29 - 2013-12-04 05:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{AB432236-8B46-4604-9F0C-A7E8A84B67E1}
2013-12-03 17:29 - 2013-12-03 17:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{B62718D9-4665-4CD9-8013-C0E70091B7A6}
2013-12-03 05:28 - 2013-12-03 05:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{F53F9816-300E-4A94-BA28-70447A2DBC1E}
2013-12-02 17:28 - 2013-12-02 17:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{6E7578EC-75AD-4A04-BF3D-E724CBEED224}
2013-12-02 05:27 - 2013-12-02 05:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{3ADC6853-BA48-4CB6-A2F4-98DCFC3203C9}
2013-12-01 18:56 - 2013-12-01 18:56 - 00000893 _____ C:\Users\Public\Desktop\The Witcher 2 - Assassins of Kings Enhanced Edition.lnk
2013-12-01 17:27 - 2013-12-01 17:27 - 00000000 ____D C:\Users\Thor\AppData\Local\{D4AF4D06-D8E7-4BB5-A6EE-CBB25B89B34C}
2013-12-01 05:26 - 2013-12-01 05:27 - 00000000 ____D C:\Users\Thor\AppData\Local\{EDC45451-3EB8-45F7-8987-CCEAEA462EF4}
2013-11-30 17:26 - 2013-11-30 17:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{73457022-53B1-463B-97DC-15B7484FB346}
2013-11-30 17:14 - 2013-11-30 17:14 - 00000000 ____D C:\Users\Thor\AppData\Roaming\MPC-HC
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-11-30 17:09 - 2013-08-23 03:39 - 00256088 _____ C:\Windows\system32\unrar64.dll
2013-11-30 05:25 - 2013-11-30 05:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{E9921A5E-AC51-42E1-9AEB-1AAAA11AF817}
2013-11-29 19:11 - 2013-12-20 20:39 - 00003108 _____ C:\Windows\System32\Tasks\ASO-System Protector_startup
2013-11-29 17:24 - 2013-11-29 17:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{DA3C05D3-61CB-4359-8160-3AA938F1B1D2}
2013-11-29 05:24 - 2013-11-29 05:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{A4B42952-B061-4C8A-80E9-6FB5A73CC9EA}
2013-11-28 17:23 - 2013-11-28 17:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{F0331BDD-5A4B-4A3D-B0C5-07E9763A6F23}
2013-11-28 04:15 - 2013-11-28 04:15 - 00000000 ____D C:\Users\Thor\AppData\Local\{A045844B-BACC-4D46-AECF-44ECEB853DDA}
2013-11-27 16:14 - 2013-11-27 16:15 - 00000000 ____D C:\Users\Thor\AppData\Local\{9AD0B4FA-71CD-4421-B5D7-350208F28F0D}
2013-11-27 04:04 - 2013-11-27 04:04 - 00000000 ____D C:\Users\Thor\AppData\Local\{8945C753-1FE8-4C07-9241-4E9A9BC6B685}
2013-11-26 15:32 - 2013-11-26 15:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{454F3AF2-BAF4-4490-931A-A8DB2A1DE4B9}
2013-11-25 19:57 - 2013-11-25 19:58 - 00000000 ____D C:\Users\Thor\AppData\Local\{454AC5C1-992C-40DF-9F2F-2D1B159C8076}
2013-11-25 04:48 - 2013-11-25 04:48 - 00000000 ____D C:\Users\Thor\AppData\Local\{87BCAB07-A8FA-4768-8631-71C9EF63D695}
2013-11-24 16:31 - 2013-11-24 16:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{38DD516B-B5CC-444B-BECD-7EE74F9197BA}
2013-11-24 14:44 - 2013-11-24 14:44 - 00274869 _____ C:\Users\Thor\Desktop\ccc.htm
2013-11-24 04:30 - 2013-11-24 04:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{D4234DD3-C092-48B4-AB82-4A9F8CB388E9}
2013-11-23 16:30 - 2013-11-23 16:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{D618B4A1-94D4-4348-85A2-6514E168F301}
2013-11-23 04:29 - 2013-11-23 04:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{569D1019-96E4-4641-B6E6-D7A695F164D5}
2013-11-22 16:29 - 2013-11-22 16:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{8155AEA8-B1CC-44C0-B49B-FD7892403DB8}
2013-11-22 03:33 - 2013-11-22 03:33 - 00000000 ____D C:\Users\Thor\AppData\Local\{28474E01-1D0D-4632-86A4-ABDFFD66BC7B}
2013-11-21 15:32 - 2013-11-21 15:33 - 00000000 ____D C:\Users\Thor\AppData\Local\{2144590C-67FE-4CA1-AE1D-0707156D5923}
2013-11-21 03:32 - 2013-11-21 03:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{031CA1E0-963A-493D-BEEF-0E60AE20B098}

==================== One Month Modified Files and Folders =======

2013-12-21 04:12 - 2013-12-21 04:12 - 00029392 _____ C:\Users\Thor\Desktop\FRST.txt
2013-12-21 04:11 - 2013-12-21 04:11 - 02193141 _____ (Farbar) C:\Users\Thor\Desktop\FRST64.exe
2013-12-21 04:11 - 2013-12-21 04:11 - 00000000 ____D C:\FRST
2013-12-21 04:10 - 2013-12-21 04:04 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-21 04:10 - 2013-12-21 04:00 - 00000000 ____D C:\Users\Thor\Desktop\mbar
2013-12-21 04:08 - 2009-07-14 14:15 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-21 04:08 - 2009-07-14 14:15 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-21 04:04 - 2013-12-21 04:04 - 00117464 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-21 04:03 - 2013-12-17 17:44 - 00000000 ____D C:\Users\Thor\Desktop\adsadsadsadsf
2013-12-21 04:02 - 2011-09-07 14:33 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Azureus
2013-12-21 04:00 - 2013-12-21 04:00 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-21 04:00 - 2011-12-21 15:24 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Skype
2013-12-21 03:59 - 2013-12-21 04:00 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Thor\Desktop\mbar-1.07.0.1008.exe
2013-12-21 03:13 - 2012-06-05 18:12 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2318490905-3519499422-1171420628-1000UA.job
2013-12-21 03:01 - 2011-09-11 21:39 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Winamp
2013-12-21 02:32 - 2013-12-21 02:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{CBB65506-5BBC-4ABC-91A1-AEAACE9CE046}
2013-12-21 02:32 - 2011-09-06 19:28 - 00000000 ____D C:\Users\Thor\AppData\Local\Windows Live
2013-12-21 02:17 - 2011-09-06 16:02 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-20 23:32 - 2011-10-22 00:54 - 00000000 ____D C:\Users\Thor\AppData\Local\Corel
2013-12-20 23:02 - 2011-10-22 00:52 - 00006318 ___SH C:\ProgramData\KGyGaAvL.sys
2013-12-20 23:02 - 2011-10-22 00:49 - 00000000 ____D C:\Users\Thor\Documents\My PSP Files
2013-12-20 22:59 - 2013-12-18 14:14 - 00000000 ____D C:\Users\Thor\AppData\Local\ACD Systems
2013-12-20 21:46 - 2011-09-06 17:50 - 00608354 _____ C:\Windows\system32\perfh008.dat
2013-12-20 21:46 - 2011-09-06 17:50 - 00419460 _____ C:\Windows\system32\perfh011.dat
2013-12-20 21:46 - 2011-09-06 17:50 - 00122392 _____ C:\Windows\system32\perfc011.dat
2013-12-20 21:46 - 2011-09-06 17:50 - 00111190 _____ C:\Windows\system32\perfc008.dat
2013-12-20 21:46 - 2009-07-14 14:43 - 02027386 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-20 20:42 - 2011-09-06 15:15 - 01319311 _____ C:\Windows\WindowsUpdate.log
2013-12-20 20:39 - 2013-12-20 19:45 - 00000336 _____ C:\Windows\setupact.log
2013-12-20 20:39 - 2013-11-29 19:11 - 00003108 _____ C:\Windows\System32\Tasks\ASO-System Protector_startup
2013-12-20 20:38 - 2013-12-20 20:38 - 00000492 _____ C:\Windows\PFRO.log
2013-12-20 20:38 - 2013-12-20 20:38 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Systweak
2013-12-20 20:38 - 2013-12-20 20:38 - 00000000 ____D C:\ProgramData\Systweak
2013-12-20 20:38 - 2011-09-27 16:01 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2013-12-20 20:38 - 2011-09-12 10:41 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-20 20:38 - 2009-07-14 14:38 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-20 19:45 - 2013-12-20 19:45 - 00000000 _____ C:\Windows\setuperr.log
2013-12-20 19:42 - 2013-11-16 20:50 - 00000000 ____D C:\Users\Thor\AppData\Local\CrashDumps
2013-12-20 19:42 - 2012-05-31 22:21 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-12-20 14:31 - 2013-12-20 14:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{B6003203-FA2A-4357-8401-28D131955D34}
2013-12-20 12:27 - 2011-11-19 04:14 - 00000000 ____D C:\Users\Thor\AppData\Roaming\HandBrake
2013-12-20 12:13 - 2012-06-05 18:12 - 00000852 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2318490905-3519499422-1171420628-1000Core.job
2013-12-20 11:28 - 2013-12-20 11:28 - 00002239 _____ C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2013-12-20 03:53 - 2013-12-20 01:02 - 00027402 _____ C:\Users\Thor\Desktop\SystemLook.txt
2013-12-20 03:15 - 2013-12-20 00:18 - 00000000 ____D C:\Users\Thor\Desktop\RK_Quarantine
2013-12-20 03:10 - 2013-12-20 03:13 - 04359168 _____ C:\Users\Thor\Desktop\RogueKillerX64.exe
2013-12-20 02:30 - 2013-12-20 02:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{84383498-766C-4D70-9D43-0DF3B99CB927}
2013-12-20 01:53 - 2012-10-21 02:21 - 00119296 _____ C:\Windows\SysWOW64\zlib.dll
2013-12-20 01:51 - 2013-12-20 01:51 - 00000000 ____D C:\_OTL
2013-12-20 01:01 - 2013-12-20 01:01 - 00165376 _____ C:\Users\Thor\Desktop\SystemLook_x64.exe
2013-12-19 23:37 - 2013-12-19 23:37 - 00151042 _____ C:\Users\Thor\Desktop\Extras.Txt
2013-12-19 23:36 - 2013-12-19 23:36 - 00155878 _____ C:\Users\Thor\Desktop\OTL.Txt
2013-12-19 23:30 - 2013-12-19 23:31 - 00602112 _____ (OldTimer Tools) C:\Users\Thor\Desktop\OTL.exe
2013-12-19 22:25 - 2013-12-19 22:25 - 00038866 _____ C:\Users\Thor\Desktop\combofix.txt
2013-12-19 22:24 - 2013-12-19 22:24 - 00038866 _____ C:\ComboFix.txt
2013-12-19 22:24 - 2013-12-19 22:03 - 00000000 ____D C:\Qoobox
2013-12-19 22:12 - 2009-07-14 12:04 - 00000215 _____ C:\Windows\system.ini
2013-12-19 22:01 - 2013-12-19 22:01 - 05154906 ____R (Swearware) C:\Users\Thor\Desktop\ComboFix.exe
2013-12-19 14:29 - 2013-12-19 14:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{D896A6DE-27B1-486C-8661-003AD9160B72}
2013-12-19 02:29 - 2013-12-19 02:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{849A18FE-AF8B-4FF6-846B-DF1D2C3E9BAB}
2013-12-18 14:28 - 2013-12-18 14:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{D0CE82F9-7496-422F-AFE7-FC402F805256}
2013-12-18 14:14 - 2013-12-18 14:14 - 00002835 _____ C:\Users\Public\Desktop\ACDSee Pro 6 (64-bit).lnk
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\Users\Thor\AppData\Roaming\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\ProgramData\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\Program Files\Common Files\ACD Systems
2013-12-18 14:14 - 2013-12-18 14:14 - 00000000 ____D C:\Program Files\ACD Systems
2013-12-18 14:13 - 2013-03-28 17:00 - 00000000 ____D C:\Users\Thor\AppData\Local\Downloaded Installations
2013-12-18 14:11 - 2013-12-18 14:11 - 00000057 _____ C:\Windows\system32\Drivers\etc\hosts.txt
2013-12-18 13:47 - 2013-12-18 13:47 - 00001109 _____ C:\Users\Public\Desktop\FastStone Image Viewer.lnk
2013-12-18 13:47 - 2013-12-18 13:47 - 00000000 ____D C:\Users\Thor\AppData\Roaming\FastStone
2013-12-18 13:47 - 2013-12-18 13:47 - 00000000 ____D C:\Program Files (x86)\FastStone Image Viewer
2013-12-18 13:46 - 2012-06-05 18:12 - 00000000 ____D C:\Users\Thor\AppData\Local\Google
2013-12-18 13:45 - 2013-12-18 13:45 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2013-12-18 13:45 - 2013-12-18 13:45 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-18 13:23 - 2013-12-18 13:23 - 00000000 ____D C:\Users\Thor\Documents\ZPS15
2013-12-18 13:23 - 2011-09-07 15:03 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Zoner
2013-12-18 13:23 - 2011-09-07 15:03 - 00000000 ____D C:\Users\Thor\AppData\Local\Zoner
2013-12-18 13:23 - 2011-09-07 15:03 - 00000000 ____D C:\Program Files\Zoner
2013-12-18 02:27 - 2013-12-18 02:27 - 00000000 ____D C:\Users\Thor\AppData\Local\{17FA845B-4390-45F9-9C53-B3AE303C6BDC}
2013-12-17 16:09 - 2011-09-06 20:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-17 14:26 - 2013-12-17 14:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{6F1E42CA-6542-40D4-989F-1D1BCC68FDC2}
2013-12-17 03:53 - 2011-10-02 21:18 - 00000000 ____D C:\Program Files\PeerBlock
2013-12-17 02:25 - 2013-12-17 02:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{7EFE4767-E25A-479F-90FE-6B8EC2FBA0B9}
2013-12-16 22:57 - 2013-03-26 22:39 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Sony
2013-12-16 22:57 - 2011-09-07 07:10 - 00000000 ____D C:\Windows\Panther
2013-12-16 22:50 - 2013-12-16 22:50 - 00002848 _____ C:\Windows\System32\Tasks\ASC7_SkipUac_Thor
2013-12-16 22:50 - 2013-12-16 22:50 - 00000000 ____D C:\Users\Thor\AppData\Roaming\IObit
2013-12-16 22:50 - 2013-12-16 22:50 - 00000000 ____D C:\ProgramData\IObit
2013-12-16 22:49 - 2013-12-16 22:49 - 00000000 ____D C:\Program Files (x86)\IObit
2013-12-16 22:24 - 2011-12-01 01:58 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
2013-12-16 22:24 - 2011-09-23 18:10 - 00000000 ____D C:\Users\Thor\Desktop\Games
2013-12-16 22:24 - 2011-09-17 15:22 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-12-16 22:24 - 2011-09-07 15:02 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-16 22:23 - 2013-10-30 13:47 - 00000000 ____D C:\Users\UpdatusUser.Thor-PC.000
2013-12-16 22:23 - 2012-12-01 22:22 - 00000000 ____D C:\Users\Thor\Documents\Shiner
2013-12-16 22:23 - 2012-05-09 13:58 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Vphonet
2013-12-16 22:23 - 2012-01-04 12:35 - 00000000 ____D C:\Users\Thor\AppData\Local\LogMeIn Hamachi
2013-12-16 22:23 - 2011-09-06 15:15 - 00000000 ____D C:\Users\Thor
2013-12-16 22:17 - 2013-12-16 22:17 - 00000000 ____D C:\Users\Thor\AppData\Local\Xenocode
2013-12-16 15:24 - 2013-12-04 06:54 - 00000000 ____D C:\hijackthis
2013-12-16 14:25 - 2013-12-16 14:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{05D9B1BD-0ABB-4281-8C48-AE7521084C38}
2013-12-16 02:24 - 2013-12-16 02:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{35D9B639-F1E0-42CF-BD3E-2A9F0DD5A87C}
2013-12-15 13:19 - 2013-12-15 13:18 - 00000000 ____D C:\Users\Thor\AppData\Local\{CB0FAAFD-BFC6-411C-832D-CD0970224273}
2013-12-14 16:34 - 2013-08-09 19:12 - 00000000 ____D C:\Users\Thor\AppData\Roaming\vlc
2013-12-14 13:11 - 2013-12-14 13:10 - 00000000 ____D C:\Users\Thor\AppData\Local\{58B18ED8-1332-4A67-A458-0DEDFBC6D60D}
2013-12-14 13:10 - 2013-01-25 11:54 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-14 13:10 - 2011-12-21 15:24 - 00000000 ____D C:\ProgramData\Skype
2013-12-14 01:05 - 2013-12-14 01:04 - 00000000 ____D C:\Users\Thor\AppData\Local\{29775709-3D35-44AF-9151-708B1E796672}
2013-12-13 13:04 - 2013-12-13 13:04 - 00000000 ____D C:\Users\Thor\AppData\Local\{A226EA76-B129-4A0C-AE7D-6A51C0ED1E99}
2013-12-13 13:03 - 2009-07-14 14:15 - 05192872 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-13 12:01 - 2013-12-13 12:01 - 04583424 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2013-12-13 00:26 - 2013-12-13 00:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{98520726-C8CF-46AC-9463-EC3C3400665C}
2013-12-12 16:02 - 2011-09-10 01:01 - 00000000 ____D C:\Program Files\CPUID
2013-12-12 14:41 - 2012-09-17 17:15 - 00000000 ____D C:\Users\Thor\AppData\Roaming\TeamViewer
2013-12-12 14:41 - 2011-09-06 15:17 - 00207976 _____ C:\Users\Thor\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-12 14:21 - 2012-02-01 20:53 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2013-12-12 12:26 - 2013-12-12 12:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{4DC0664C-4775-40EE-A99D-A4C4BA0CFAE1}
2013-12-12 00:26 - 2013-12-12 00:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{767901AF-AF47-4E4E-9B54-8EAA61A36891}
2013-12-11 12:25 - 2013-12-11 12:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{7C8D0E92-6CB8-4E77-B845-5976A5E4AF5A}
2013-12-11 00:25 - 2013-12-11 00:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{E88792A9-D1D6-40B2-8686-1F0F0C48F005}
2013-12-10 12:24 - 2013-12-10 12:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{F9DCA46E-C9B9-46F0-8C1A-E75D2B92FC18}
2013-12-10 00:23 - 2013-12-10 00:23 - 00000000 ____D C:\Users\Thor\AppData\Local\{D215823D-FFB8-421B-99A5-016D68B04E70}
2013-12-09 18:37 - 2011-09-17 15:21 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Dropbox
2013-12-09 12:23 - 2013-12-09 12:23 - 00000000 ____D C:\Users\Thor\AppData\Local\{40BCAD90-914B-4D58-8468-B54427F806F9}
2013-12-09 00:22 - 2013-12-09 00:22 - 00000000 ____D C:\Users\Thor\AppData\Local\{A495DBF5-7F43-4FF7-BD7E-38B001F7B858}
2013-12-08 23:31 - 2013-12-08 23:23 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-08 23:24 - 2013-12-08 23:24 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.3
2013-12-08 23:24 - 2013-12-08 23:23 - 00000000 ____D C:\Users\Thor\AppData\Local\Mobogenie
2013-12-08 23:23 - 2013-12-08 23:23 - 00000000 ____D C:\Users\Thor\Documents\Mobogenie
2013-12-08 23:23 - 2013-12-08 23:23 - 00000000 ____D C:\Users\Thor\AppData\Local\cache
2013-12-08 23:23 - 2013-12-08 23:23 - 00000000 _____ C:\Users\Thor\daemonprocess.txt
2013-12-08 22:45 - 2013-12-08 22:45 - 00000000 ____D C:\Users\Thor\Documents\My Cheat Tables
2013-12-08 22:42 - 2013-12-08 22:42 - 00000000 ____D C:\Users\Thor\Documents\FLiNGTrainer
2013-12-08 12:22 - 2013-12-08 12:22 - 00000000 ____D C:\Users\Thor\AppData\Local\{175E7DCA-2C44-4838-B8B3-D6B22D0A5FE8}
2013-12-07 18:50 - 2013-12-07 18:49 - 00000000 ____D C:\Users\Thor\AppData\Local\{EE83E89D-966E-4BD9-8D0D-5E44346B37EC}
2013-12-07 12:08 - 2012-06-05 18:12 - 00003876 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2318490905-3519499422-1171420628-1000UA
2013-12-07 12:08 - 2012-06-05 18:12 - 00003480 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2318490905-3519499422-1171420628-1000Core
 

Attachments

2013-12-07 06:49 - 2013-12-07 06:49 - 00000000 ____D C:\Users\Thor\AppData\Local\{E2E4E388-7322-4AE9-BD3D-CB5B3D1DD7A7}
2013-12-06 17:32 - 2013-12-06 17:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{EDC693A7-9D62-4FBC-B7DB-864969FB56AF}
2013-12-06 16:23 - 2013-12-06 16:21 - 00000000 ____D C:\Program Files (x86)\PDF24
2013-12-06 16:21 - 2013-12-06 16:21 - 00000000 ____D C:\Users\Thor\AppData\Local\PDF24
2013-12-06 05:31 - 2013-12-06 05:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{CEC9543C-9113-4ADE-88D3-E7F878DED8DC}
2013-12-06 04:51 - 2013-12-06 04:51 - 00000220 _____ C:\Users\Thor\Desktop\Star Trek Online.url
2013-12-05 23:32 - 2013-12-05 23:32 - 00000222 _____ C:\Users\Thor\Desktop\Batman Arkham City GOTY.url
2013-12-05 17:31 - 2013-12-05 17:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{E4304F79-64ED-41DC-8A0D-1D5F7D169A8D}
2013-12-05 15:34 - 2013-12-05 15:34 - 00000222 _____ C:\Users\Thor\Desktop\Broken Sword 5.url
2013-12-05 05:31 - 2013-12-05 05:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{EF8758E8-ECB9-48D1-A1C6-83010D984F9F}
2013-12-04 17:30 - 2013-12-04 17:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{A42E06A3-CECA-47A1-AB70-C20F4995DA0D}
2013-12-04 12:53 - 2013-12-04 12:53 - 00002414 _____ C:\Users\Thor\Desktop\aswMBR.txt
2013-12-04 12:53 - 2013-12-04 12:53 - 00000512 _____ C:\Users\Thor\Desktop\MBR.dat
2013-12-04 12:42 - 2013-12-04 12:43 - 04745728 _____ (AVAST Software) C:\Users\Thor\Desktop\aswMBR (1).exe
2013-12-04 12:41 - 2013-12-04 12:41 - 00005257 _____ C:\Users\Thor\Desktop\attach.zip
2013-12-04 12:36 - 2013-12-04 12:36 - 00035388 _____ C:\Users\Thor\Desktop\dds.txt
2013-12-04 12:36 - 2013-12-04 12:36 - 00015596 _____ C:\Users\Thor\Desktop\attach.txt
2013-12-04 12:35 - 2013-12-04 12:35 - 00688992 ____R (Swearware) C:\Users\Thor\Desktop\dds.scr
2013-12-04 12:33 - 2013-08-06 11:24 - 00000000 ____D C:\Windows\ERDNT
2013-12-04 12:32 - 2013-12-04 12:32 - 00000909 _____ C:\Users\UpdatusUser.Thor-PC.000\Desktop\ERUNT.lnk
2013-12-04 12:32 - 2013-12-04 12:32 - 00000909 _____ C:\Users\Thor\Desktop\ERUNT.lnk
2013-12-04 12:32 - 2013-12-04 12:32 - 00000000 ____D C:\Program Files (x86)\ERUNT
2013-12-04 12:32 - 2011-09-06 15:15 - 00000000 ____D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-04 12:19 - 2013-03-28 17:07 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2013-12-04 06:53 - 2011-09-06 15:15 - 00000000 ____D C:\Users\Thor\AppData\Local\VirtualStore
2013-12-04 06:20 - 2009-07-14 12:04 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts.original
2013-12-04 05:30 - 2013-12-04 05:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{AB432236-8B46-4604-9F0C-A7E8A84B67E1}
2013-12-03 17:29 - 2013-12-03 17:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{B62718D9-4665-4CD9-8013-C0E70091B7A6}
2013-12-03 05:29 - 2013-12-03 05:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{F53F9816-300E-4A94-BA28-70447A2DBC1E}
2013-12-02 17:28 - 2013-12-02 17:28 - 00000000 ____D C:\Users\Thor\AppData\Local\{6E7578EC-75AD-4A04-BF3D-E724CBEED224}
2013-12-02 05:28 - 2013-12-02 05:27 - 00000000 ____D C:\Users\Thor\AppData\Local\{3ADC6853-BA48-4CB6-A2F4-98DCFC3203C9}
2013-12-01 18:56 - 2013-12-01 18:56 - 00000893 _____ C:\Users\Public\Desktop\The Witcher 2 - Assassins of Kings Enhanced Edition.lnk
2013-12-01 17:27 - 2013-12-01 17:27 - 00000000 ____D C:\Users\Thor\AppData\Local\{D4AF4D06-D8E7-4BB5-A6EE-CBB25B89B34C}
2013-12-01 05:27 - 2013-12-01 05:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{EDC45451-3EB8-45F7-8987-CCEAEA462EF4}
2013-11-30 19:38 - 2011-09-06 19:58 - 00030528 _____ C:\Windows\GVTDrv64.sys
2013-11-30 17:26 - 2013-11-30 17:26 - 00000000 ____D C:\Users\Thor\AppData\Local\{73457022-53B1-463B-97DC-15B7484FB346}
2013-11-30 17:14 - 2013-11-30 17:14 - 00000000 ____D C:\Users\Thor\AppData\Roaming\MPC-HC
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-11-30 17:08 - 2013-04-21 00:54 - 00000000 ____D C:\Program Files\DirectVobSub
2013-11-30 17:01 - 2011-09-07 00:23 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\etdrv.sys
2013-11-30 16:39 - 2013-03-13 11:17 - 00000000 ____D C:\Program Files\K-Lite Codec Pack x64
2013-11-30 05:25 - 2013-11-30 05:25 - 00000000 ____D C:\Users\Thor\AppData\Local\{E9921A5E-AC51-42E1-9AEB-1AAAA11AF817}
2013-11-29 20:18 - 2013-11-10 03:46 - 00002272 _____ C:\Windows\system32\ASOROSet.bin
2013-11-29 20:18 - 2009-07-14 12:04 - 95420416 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-11-29 20:18 - 2009-07-14 12:04 - 28311552 _____ C:\Windows\system32\config\SYSTEM.bak
2013-11-29 20:18 - 2009-07-14 12:04 - 00032768 _____ C:\Windows\system32\config\SECURITY.bak
2013-11-29 20:14 - 2009-07-14 12:04 - 00028672 _____ C:\Windows\system32\config\SAM.bak
2013-11-29 17:25 - 2013-11-29 17:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{DA3C05D3-61CB-4359-8160-3AA938F1B1D2}
2013-11-29 05:24 - 2013-11-29 05:24 - 00000000 ____D C:\Users\Thor\AppData\Local\{A4B42952-B061-4C8A-80E9-6FB5A73CC9EA}
2013-11-28 17:24 - 2013-11-28 17:23 - 00000000 ____D C:\Users\Thor\AppData\Local\{F0331BDD-5A4B-4A3D-B0C5-07E9763A6F23}
2013-11-28 04:15 - 2013-11-28 04:15 - 00000000 ____D C:\Users\Thor\AppData\Local\{A045844B-BACC-4D46-AECF-44ECEB853DDA}
2013-11-27 16:15 - 2013-11-27 16:14 - 00000000 ____D C:\Users\Thor\AppData\Local\{9AD0B4FA-71CD-4421-B5D7-350208F28F0D}
2013-11-27 04:04 - 2013-11-27 04:04 - 00000000 ____D C:\Users\Thor\AppData\Local\{8945C753-1FE8-4C07-9241-4E9A9BC6B685}
2013-11-26 15:32 - 2013-11-26 15:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{454F3AF2-BAF4-4490-931A-A8DB2A1DE4B9}
2013-11-25 19:58 - 2013-11-25 19:57 - 00000000 ____D C:\Users\Thor\AppData\Local\{454AC5C1-992C-40DF-9F2F-2D1B159C8076}
2013-11-25 04:48 - 2013-11-25 04:48 - 00000000 ____D C:\Users\Thor\AppData\Local\{87BCAB07-A8FA-4768-8631-71C9EF63D695}
2013-11-25 04:46 - 2009-07-14 14:38 - 00032550 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-24 16:31 - 2013-11-24 16:31 - 00000000 ____D C:\Users\Thor\AppData\Local\{38DD516B-B5CC-444B-BECD-7EE74F9197BA}
2013-11-24 14:44 - 2013-11-24 14:44 - 00274869 _____ C:\Users\Thor\Desktop\ccc.htm
2013-11-24 04:31 - 2013-11-24 04:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{D4234DD3-C092-48B4-AB82-4A9F8CB388E9}
2013-11-23 16:30 - 2013-11-23 16:30 - 00000000 ____D C:\Users\Thor\AppData\Local\{D618B4A1-94D4-4348-85A2-6514E168F301}
2013-11-23 04:30 - 2013-11-23 04:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{569D1019-96E4-4641-B6E6-D7A695F164D5}
2013-11-22 16:29 - 2013-11-22 16:29 - 00000000 ____D C:\Users\Thor\AppData\Local\{8155AEA8-B1CC-44C0-B49B-FD7892403DB8}
2013-11-22 03:33 - 2013-11-22 03:33 - 00000000 ____D C:\Users\Thor\AppData\Local\{28474E01-1D0D-4632-86A4-ABDFFD66BC7B}
2013-11-21 15:33 - 2013-11-21 15:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{2144590C-67FE-4CA1-AE1D-0707156D5923}
2013-11-21 03:32 - 2013-11-21 03:32 - 00000000 ____D C:\Users\Thor\AppData\Local\{031CA1E0-963A-493D-BEEF-0E60AE20B098}

Files to move or delete:
====================
C:\Users\Thor\jagex_cl_speccollect_LIVE.dat
C:\Users\Thor\random.dat


Some content of TEMP:
====================
C:\Users\Thor\AppData\Local\Temp\i4jdel0.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 03:49

==================== End Of Log ============================
 
I think somehow Advanced System Protector is entwined with Advanced System Optimizer, it really is not needed so why dont you uninstall it and see what happens. You can try uninstalling it via programs and features or with Revo Uninstaller.

I am looking at Advanced System Protector starting up here
C:\Windows\System32\Tasks\ASO-System Protector_startup
 
I also see this program removing it, lets give it a go, the first run is just a report

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
 
Uninstalling system optimizer seems to have taken it with it. I considered doing that at the start but now that I have zero use for that program again, which was recommended by a zillion sites and users, I'll be ignoring it forever. I did the scans as asked straight after though.



# AdwCleaner v3.015 - Report created 21/12/2013 at 18:46:59
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Thor - THOR-PC
# Running from : C:\Users\Thor\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Program Files (x86)\Vuze
Folder Found C:\Users\Thor\AppData\Local\eSupport.com
Folder Found C:\Users\Thor\AppData\Roaming\Systweak

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Show-Password
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFE66D00-A56A-4F7F-81D7-4A28C5816D6C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16421


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3078 octets] - [21/12/2013 14:32:02]
AdwCleaner[R1].txt - [1195 octets] - [21/12/2013 18:46:59]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1255 octets] ##########






I pretty much want to keep vuze. I wasnt sure if you wanted the JRT report as well from that page you linked so I'll post it up anyway. Cant hurt. I feel I should mention that before I uninstalled the optimizer program, I did a quick scan with adwcleaner and one of the files listed was that roboot.exe you mentioned. After uninstalling optimizer that file doesnt seem to be popping up now.




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x64
Ran by Thor on Sat 21/12/2013 at 18:28:52.96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskSLib_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskSLib_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_kmplayer_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_kmplayer_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_line_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_line_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_sonicstage_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_sonicstage_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_winds-pro_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_winds-pro_RASMANCS



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\systweak"
Successfully deleted: [Folder] "C:\Users\Thor\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\Thor\appdata\local\cre"
Successfully deleted: [Folder] "C:\Program Files (x86)\driver-soft"
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{017C5017-04C0-4188-B34D-4FF76BE11B4E}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{031CA1E0-963A-493D-BEEF-0E60AE20B098}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{03E90486-0F33-4325-9D5F-DB02EB1BE038}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{0412D884-19A6-478A-961B-2F28A10694EC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{05D9B1BD-0ABB-4281-8C48-AE7521084C38}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{06688E29-B41B-4E04-889A-7901D15B64CC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{08C9774A-DDBD-41EE-BA4F-9D047BE6B908}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{0A4C2735-2B1F-4019-92A7-942736A555FF}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{0C52CAD4-87AB-4419-A39E-CE1822F74616}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{0F1674CF-4ACD-442B-82CF-8B87788AFC92}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{101F369E-0BFF-427A-9B62-C11ADF58119A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{112A8E7B-F782-43AC-94A9-A3732A7AB690}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{13475700-3CED-48D8-B047-AF6663628C6D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{15A6B7F6-11F2-417C-867F-68F3F99AB053}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{15C68270-E495-477B-99C7-263979CA915B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{16A7EE5B-11CE-44B4-A21D-8D72E525AD3A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{16B0CCA7-7ECF-4FFA-95FE-B8DA9D941149}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{16C65EF6-F75A-4FD4-AFAE-CB2193E57295}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{16D8A7A3-4CF9-4573-8553-0D3F0DD3C5C9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{175E7DCA-2C44-4838-B8B3-D6B22D0A5FE8}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{17FA845B-4390-45F9-9C53-B3AE303C6BDC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{18421A1A-5B4E-4E9A-BA22-8C08363E1142}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{198C8F3C-DBAA-4134-90ED-D3EE89B01BE5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{19F204E4-72DA-44CE-9788-03DD8EE772E3}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1A865D02-3F13-48AE-837C-2A85E2028F73}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1C1FAB4B-D248-4C25-AFC3-7689B0C546FF}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1C91015F-65DC-48E8-8D6E-971383C6B5D1}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1DAC29C7-3BAE-41E5-9174-A9131527BDDE}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1DDAA627-9706-4DCB-B364-370BA19C9FC6}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1FBF5138-EC9F-4B3E-B030-C03FD81FB0AC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{1FCBF8AB-DA2F-4161-AD32-0D1D6615C029}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{21441A41-5ABC-46E0-84F9-66DDDBE12678}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{2144590C-67FE-4CA1-AE1D-0707156D5923}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{2160CA79-B805-43C7-AE3C-D5A104049F6A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{22E2F08F-F481-47FF-9665-3D0EDDE4FD20}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{243FE7C7-1222-48D6-A138-D4CC48EAAE30}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{262A602A-2979-4E28-834A-7A28030594F4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{28474E01-1D0D-4632-86A4-ABDFFD66BC7B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{290A7296-BFE0-4091-94DE-FD73D513ACAA}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{293EFB66-AA5D-424E-91A3-04B32546EB42}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{29775709-3D35-44AF-9151-708B1E796672}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{2A408213-8DA3-4446-A743-0DBF5213517B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{2AE70B9A-A634-4FCC-83B0-E1631687D8E6}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{311CC60E-A0EC-4945-AD91-BA59F67E81A4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3407706F-8E92-49F0-B096-06615962F52A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{34D31BDD-AADD-4581-ADAF-41BF39FBC379}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3507EA29-DE55-47B6-82C8-C5F71FD779D0}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{35D9B639-F1E0-42CF-BD3E-2A9F0DD5A87C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3892261E-4F3D-445B-82A8-BB686F7D7844}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{38DD516B-B5CC-444B-BECD-7EE74F9197BA}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{391AF573-5224-4A6F-B4A1-720BCF4F7662}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3978CEF7-7ED5-4C84-BAA0-E6B9404A0511}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{39F65C81-3B31-45CE-8FCA-41C5E8F795AB}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3A623475-3389-4650-97E7-DB64D9AD62CF}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3ADC6853-BA48-4CB6-A2F4-98DCFC3203C9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3B95ABB2-76AE-48A5-93E9-8A1FBB4B4DA3}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3C026D96-CDB4-4AED-9BFB-CDEAD7E65443}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3DAEFC79-7B58-4E0A-88DB-C7800AB39F3F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3E356CD6-A5AA-402A-949E-04146767A862}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{3EC60169-3554-4BAB-995A-7BF0E3CC767C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4012B18B-9DAC-4420-A899-E67B197BA709}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{40BCAD90-914B-4D58-8468-B54427F806F9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{40D22C3D-6144-4487-93A7-B820327F905B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{413810F9-6D48-4191-B056-A3D93624D6FD}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{454AC5C1-992C-40DF-9F2F-2D1B159C8076}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{454F3AF2-BAF4-4490-931A-A8DB2A1DE4B9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{45BFC7C8-2265-4E18-95A5-86CB7E2B294C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{45C8A11C-1044-4F26-923D-6CD3820F66EA}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{45E568FF-83E4-4D50-BDDA-F8DDD0DA9C25}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4602F3C0-8F42-4493-A0BA-9E2C86652FF2}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{461F93BA-1288-4E9A-8AF6-095365A68195}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{46638B6D-5531-4328-8ADA-1AD7C8139CE4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{477885F3-D797-43F9-9FBF-8486752D88E8}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4ADDB3EB-98B7-4086-888B-A6CF3364BCA4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4B156860-AA3D-454F-ABF2-1F1F7FFE174F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4B4CDD3F-6E4E-4102-8A53-43F2861178FF}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4BA782F4-C603-4330-B573-9FB9030C325C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4DC0664C-4775-40EE-A99D-A4C4BA0CFAE1}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4EEBAE55-7C93-4247-847D-1D581662D4CC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{4F86F887-EA02-41B9-9D5F-6C1AF9E27ACD}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{50F0B766-1A31-444D-9F3A-C98FAD4F8968}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{513D05B5-62C9-4EA7-B487-0034B42D4E45}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{5277A44B-CE8E-40A1-ACDE-CAF6EC7AD5F2}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{565B3608-BDB5-4921-8439-8294A3BE20E0}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{5681FC36-2F4B-4EDE-A61A-EE17AA8A490F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{569D1019-96E4-4641-B6E6-D7A695F164D5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{57C032F4-6FE9-4DCB-ADD5-8E637C80B4A5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{584A5416-4C94-408C-998C-090AC2DC37CA}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{58B18ED8-1332-4A67-A458-0DEDFBC6D60D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{599416A9-7FD1-473F-82F9-453D846D70DC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{5E50356A-A060-4E5C-B791-1F5657477855}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{5F2279B3-499A-4BF8-8E96-CE75DFBBAD01}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{602108E4-4548-4B3C-BA96-8EC13A68EBAD}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6221AB1C-FC19-45ED-B116-65BD109BD2AD}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6333B17F-E306-4E0B-94CA-50E692E5892A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{666872CA-1DC0-47CD-BC4C-4E5BE2B770B7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{668F6638-ED09-4579-A820-E01A6C08239C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{669A21C2-251A-4A3A-A007-2E11CC76923F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6719CD0E-5996-455C-AE59-5E5EDDD32FA2}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6B468F06-EBF0-4815-A871-2E4BD7AC10F7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6C2041C9-2D9D-4F8E-B8AE-D048D683A9EE}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6C7DC9AC-9A1D-41E7-AD08-E31D1989AC52}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6E6396E2-A117-4DB3-8ADA-D37BE6A13282}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6E7578EC-75AD-4A04-BF3D-E724CBEED224}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6EAE26C9-886D-4519-B372-C0F03D0D2E25}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{6F1E42CA-6542-40D4-989F-1D1BCC68FDC2}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7267EC65-1B44-43D2-BCA4-85F84DA2486D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{72786DD6-3A59-4986-9E8E-2325D60CC9D9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{72BB2460-FE62-4027-9B0B-89FF0ECC468A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{73457022-53B1-463B-97DC-15B7484FB346}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{73F379C5-371D-4002-866C-53D1E11CDFE5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{750803AD-7F85-404A-816C-3C3F7A60C15A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7548A35C-6292-4E59-947A-ACC598C06349}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{763F6731-D213-4140-B854-6779BA325B2D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{767901AF-AF47-4E4E-9B54-8EAA61A36891}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{78426AC0-2AAF-4181-9E94-EC23C18FF349}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{79C08127-695F-4A4F-AF3B-FB06CDC47176}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7AF15A32-ABE2-46FA-9EA8-1242A7D58D9C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7C8D0E92-6CB8-4E77-B845-5976A5E4AF5A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7CF3A3A9-53C2-4A6A-82E8-561F98E82AE7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7E18F901-C862-4264-A599-58378563B50A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7E4886B6-AE3A-492A-8608-3184F0DA4EB5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7EFE4767-E25A-479F-90FE-6B8EC2FBA0B9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{7FD14D40-4D16-4F95-84A9-1CA6060F624A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{801E1445-784E-4E89-9744-F08F1AC7DFCB}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8155AEA8-B1CC-44C0-B49B-FD7892403DB8}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{81796D22-D204-41BE-9933-290AA92396E8}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{829195F8-58BF-46C0-992D-41F4E160FF9B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{83876463-4161-45E3-9DE7-EA29C4307231}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{841C091D-7CD3-4083-AF42-1D48EA7F1971}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{84383498-766C-4D70-9D43-0DF3B99CB927}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{849A18FE-AF8B-4FF6-846B-DF1D2C3E9BAB}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{85B8B65C-6CCC-4514-AF8A-63B5937A90F3}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{85D5880D-171E-40B1-902A-2A5D563B1FF7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{867E6E83-3D0B-445F-9596-E376036A0FFD}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8793877E-8543-4C2C-87C5-3B2A7FCE3131}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{87BCAB07-A8FA-4768-8631-71C9EF63D695}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{883BDDF2-E34F-419C-8C63-7F19F1063475}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8945C753-1FE8-4C07-9241-4E9A9BC6B685}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8AAFF0A1-0FC3-4583-AED6-CCAC7D800803}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8AC0670E-8375-4E65-A99A-C3F37F5944A0}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8B7C144B-F781-473A-9F36-C9A2E7E77808}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8BB89354-3916-4EE1-B006-2122D18A2E11}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8C93251B-4990-44D9-B0B7-1F86C74E5CF5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{8CE2315D-DACA-4425-8B12-69BFD4757285}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{90D0003E-92B3-4AAE-9FFF-37EC21B0304B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{91B95F0E-EF71-4838-ADCD-7E2364519E41}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{91CA5577-DE2E-4182-8373-291839184839}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9225782B-CE11-4689-8123-8337B0573E9F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{923A7B88-A047-4122-A7E5-26928668F0E9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{92484D33-24BB-4421-9020-D94C55872C7B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{93A85E4B-2CE2-41D3-BC00-DCEBC0F5D4B1}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{93BA163C-3A78-4043-B53B-9803E8F27C67}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{93C3A731-A7D0-4A80-846F-56391F6EA0A3}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{94949B8D-2C77-4432-8480-450F6ABED26D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9758D1EA-2F41-40F0-B523-DB4421A42865}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{97F255A1-2E53-4FAB-A375-0F60F6014565}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{98520726-C8CF-46AC-9463-EC3C3400665C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9AD0B4FA-71CD-4421-B5D7-350208F28F0D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9AD64C99-2829-4EFD-B7BA-6B07053046FD}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9BC07651-817A-478E-A4D2-0C6116BD315A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9C967331-5FC6-4A1C-BDAC-0A8C6368A3A4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9DCD999C-74DE-4EDD-99B9-581277C71003}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{9ECB8073-0BE1-4A52-AFA2-6C2E9F2B59E4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A045844B-BACC-4D46-AECF-44ECEB853DDA}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A0CC9941-0962-479E-A70E-7340F1AB5198}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A226EA76-B129-4A0C-AE7D-6A51C0ED1E99}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A2E89896-33CD-4F4B-A773-105E2741F6AC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A408D3E2-FB6D-40A6-A579-D3DDCA383E3A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A42E06A3-CECA-47A1-AB70-C20F4995DA0D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A495DBF5-7F43-4FF7-BD7E-38B001F7B858}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A4B42952-B061-4C8A-80E9-6FB5A73CC9EA}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A50666F2-EC41-47D1-9B63-FBCA3FC5BA67}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A6058D25-2A1E-4A55-BFAC-39CC23280C9D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A6BBB693-C646-4E17-9CA7-BBB827327C74}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A76C88EC-83FB-47E4-9AF5-6D274A893A47}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{A7B32628-DB1E-4E99-B11F-D5F14F0402FF}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{AAB8D00B-9216-4105-9E4D-91265CE80445}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{AB432236-8B46-4604-9F0C-A7E8A84B67E1}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{AC2AC958-D6BC-4EB5-8664-1CE964879FF6}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{AC832423-3227-4D81-B8FA-1C06F3967232}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{B6003203-FA2A-4357-8401-28D131955D34}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{B62718D9-4665-4CD9-8013-C0E70091B7A6}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{B76BF80F-EB0C-4201-A1C9-C5B691CDCE17}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{B83E1597-FF43-40B1-B78C-B1A9557C5670}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{B8725C47-0D3D-4C3F-8175-311572D190EB}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BAA14FCB-EDA9-4151-B967-EBF1261B8647}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BB002D96-EDFA-4998-9788-004514867C3C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BB912422-0F93-4498-894A-F51390C9DF81}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BDC1CDDF-A75B-4AD1-9318-05B2B03C398F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BE00E3EE-A90A-4D9C-94FB-CB24958F3D83}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BF61C201-C00C-48F5-9DB7-F52CECA77139}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{BF7B842C-AB2B-4ADC-AD00-8CC5381C8807}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{C14E2D3B-5F2B-4FBF-8FC5-1AE74C201F8F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{C18E20F7-FF9C-4800-86BF-1F20BA866E43}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{C2004333-EE85-47DC-AE4E-CD4971B7C132}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CAAA21A2-5502-4FE4-B5A8-9068F10CA4AB}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CB0FAAFD-BFC6-411C-832D-CD0970224273}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CBB65506-5BBC-4ABC-91A1-AEAACE9CE046}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CC81C9EC-72E1-4C1D-AE3D-058DB66CD237}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CD140EE2-D245-4610-A198-2E9F66BEE263}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CE3573BE-66DF-4E4E-88B0-4244E23DEFC6}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CE65CD13-6FF0-4FDB-AF72-E7515D94E81B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CEC9543C-9113-4ADE-88D3-E7F878DED8DC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CF452AE9-A654-4606-A4DB-3CF15EAFFA61}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{CF93DC3E-CFC9-4268-8433-9689F7AFF9B8}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D0CE82F9-7496-422F-AFE7-FC402F805256}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D215823D-FFB8-421B-99A5-016D68B04E70}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D379789E-39B5-414C-82D5-2BE51BCBC894}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D4234DD3-C092-48B4-AB82-4A9F8CB388E9}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D4AF4D06-D8E7-4BB5-A6EE-CBB25B89B34C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D618B4A1-94D4-4348-85A2-6514E168F301}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D777FB58-615A-4468-9E45-F0059355DB30}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D896A6DE-27B1-486C-8661-003AD9160B72}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{D9A9312E-0B18-4718-8C77-1279FD4C5D39}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{DA3C05D3-61CB-4359-8160-3AA938F1B1D2}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{DA6AB3DE-DE51-4CB5-BA50-FF3A6957918D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{DCD51B04-668D-49A6-901E-883D7D5DF021}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{DED07105-8A18-4635-BA2F-22EB0496A4F7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{DF9F492E-DA5D-47CB-8741-765019A2A03C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E2A07AD7-A4D1-45F4-9C83-6525021BB16A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E2E4E388-7322-4AE9-BD3D-CB5B3D1DD7A7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E4304F79-64ED-41DC-8A0D-1D5F7D169A8D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E4D1A63D-53B3-40E6-B635-DAB08AA94778}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E64EBC93-3E2F-4F3F-918D-7F719FE0AE6D}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E88792A9-D1D6-40B2-8686-1F0F0C48F005}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E9158B0E-4DFB-4E6A-8C24-4E946820CB2B}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E920132B-52EA-48B6-9F1C-0B62E2C2DD3F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{E9921A5E-AC51-42E1-9AEB-1AAAA11AF817}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{EB778C1B-1AEE-4F70-827C-EB9CE112CE15}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{ED7DC38F-7E31-4121-A27D-4E9165677E12}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{EDC45451-3EB8-45F7-8987-CCEAEA462EF4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{EDC693A7-9D62-4FBC-B7DB-864969FB56AF}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{EE83E89D-966E-4BD9-8D0D-5E44346B37EC}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{EEF2CDD4-A988-48E0-92D2-6B304A91448A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{EF8758E8-ECB9-48D1-A1C6-83010D984F9F}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F0331BDD-5A4B-4A3D-B0C5-07E9763A6F23}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F28CFC10-9C12-44AC-AB86-6B890943191A}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F438014C-A393-4965-A8EF-6B67EA90970E}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F5313BC1-68C8-4E41-9275-9B59ACF90819}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F53F9816-300E-4A94-BA28-70447A2DBC1E}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F5C1D855-B589-4421-BD9F-936F35B11C25}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F6CB56E4-BFE3-4CCA-A6FA-B906E81738E8}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F6FEE1DF-78E8-4EA0-99A0-8CFFA939A6D0}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F826DA48-E6DC-477D-855D-E991A1F0BA6E}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F8B8C758-4169-4659-82DD-8AF70B50D3B4}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F8F2853D-0A99-42D6-9BBD-5101E3A99DA1}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{F9DCA46E-C9B9-46F0-8C1A-E75D2B92FC18}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{FA83290A-EBD7-4DAE-81B2-82508ECC6DA5}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{FBC50B7C-F75C-4FEE-81C3-616C585448A7}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{FE43D7E4-A47E-4567-AC35-2EEC678A083C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{FEB081CA-1EB2-4582-924B-6AD5A77C88F2}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{FF2C2F00-54E6-46F5-9DC4-9C4B84989B0C}
Successfully deleted: [Empty Folder] C:\Users\Thor\appdata\local\{FFC261E3-6E50-4A96-9BC1-AF6F39C0A510}



~~~ FireFox

Successfully deleted: [File] C:\Users\Thor\AppData\Roaming\mozilla\firefox\profiles\z86reas3.default\user.js



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 21/12/2013 at 18:39:47.32
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
Great , success :bigthumb:

The answer was right under our noses :) Been at this for many years and I have found that outside of a Anti Virus program and a good Firewall, and a Malware Prevention program that there really is no need for any third party programs, all the ones built into windows are more than adequate.


Go ahead and run AdwCleaner again to clean but uncheck Vuze if you want to keep it BUT, its a bittorrent program and P2P (File Sharing ) are very dangerous, your call but I would remove it


Double click on AdwCleaner.exe to run the tool again.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • This time, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
 
Last edited:
# AdwCleaner v3.015 - Report created 21/12/2013 at 21:54:58
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Thor - THOR-PC
# Running from : C:\Users\Thor\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[x] Not Deleted : C:\Program Files (x86)\Vuze
Folder Deleted : C:\Users\Thor\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Thor\AppData\Roaming\Systweak
File Deleted : C:\END

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFE66D00-A56A-4F7F-81D7-4A28C5816D6C}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Show-Password

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16421


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\z86reas3.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Thor\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3078 octets] - [21/12/2013 14:32:02]
AdwCleaner[R1].txt - [1335 octets] - [21/12/2013 18:46:59]
AdwCleaner[R2].txt - [1395 octets] - [21/12/2013 18:52:18]
AdwCleaner[R3].txt - [1552 octets] - [21/12/2013 21:53:04]
AdwCleaner[S0].txt - [1455 octets] - [21/12/2013 21:54:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1515 octets] ##########
 
Great, forgot to mention that roboot64.exe was removed by one of the scanners.

How is your system behaving now ?
 
You dont need that, uninstall it.

We need to update your Java to keep you more secure
  1. Go to your Control Panel and click on the Java Icon ( looks like a little coffee cup ) click on About and you should have Version 7 Update 45, if not proceed with the instructions.
  2. Go to the update Tab and update it
  3. Important, during the upgrade UNCHECK ASK TOOL BAR. ( you do not need or want this )
  4. Then go to your Add Remove Programs (WIN XP) or Programs and Features (Vista / Win 7) in the Control Panel and uninstall all previous versions.

You can verify the installation Here



  • Click START then RUN
  • Now type Combofix /uninstall in the runbox and click OK. Note the space between the X and the /, it needs to be there.


    CF-Uninstall.png




Open OTL and click on Clean Up and it will remove programs we used to clean your system along with there backups, any programs that where not removed you can just drag to the trash.


Malwarebytes is the free version and yours to keep and will not be removed




Safe Surfn
Ken
 
Your very welcome my friend, first time working with ASP so now all that info is in my notes . Again thanks for hanging in with me, I appreciate that also

Take Care,
Ken :)
 
Since this issue appears to be resolved ... this Topic has been closed. Glad I could help.
 
Status
Not open for further replies.
Back
Top