Inactive Has my computer been Hijacked? Page 1 of 2

EL CONJUNTO · 2014/01/21

[Inactive] Has my computer been Hijacked? Page 1 of 2

Broni,
Here are the logs:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.21.08

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16476
Mark :: MARK-VAIO [administrator]

1/21/2014 6:01:57 PM
mbam-log-2014-01-21 (18-01-57).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 514307
Time elapsed: 1 hour(s), 21 minute(s), 19 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8_About.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8_frmStartMenuLibrary.exe (Backdoor.Bot) -> Quarantined and deleted successfully.

(end)

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-01-2014
Ran by Mark (administrator) on MARK-VAIO on 21-01-2014 21:05:17
Running from C:\Users\Mark\Downloads
Windows 8.1 Pro with Media Center (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\N360.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\N360.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe
(Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESGfxMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(J.Pajula) C:\Program Files (x86)\RamBooster 2.0\Rambooster.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(AOL Inc.) C:\Program Files (x86)\AOL Desktop 9.7\waol.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AOL Inc.) C:\Program Files (x86)\Common Files\AOL\1390254537\ee\aolsoftware.exe
(AOL LLC) C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe
(AOL Inc.) C:\Program Files (x86)\AOL Desktop 9.7\shellmon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sony Electronics, Inc.) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AOL Inc.) C:\Program Files (x86)\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7938080 2009-07-23] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-07-23] (Realtek Semiconductor Corp.)
HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [SunJavaUpdateSched] - "C:\Program Files\Java\jre7\bin\jusched.exe "
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [317288 2009-05-26] (Sony Corporation)
HKLM-x32\...\Run: [LaunchUserRequestedPrograms] - C:\Program Files\Sony\First Experience\Miniprogram.exe [68608 2009-08-26] ()
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [KeyScrambler] - C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [508144 2013-11-14] (QFX Software Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [HostManager] - C:\Program Files (x86)\Common Files\AOL\1390254537\ee\AOLSoftware.exe [41800 2010-03-08] (AOL Inc.)
HKLM\...\Winlogon: [Shell] explorer.exe [2328872 2013-10-22] (Microsoft Corporation)
Winlogon\Notify\VESWinlogon-x32: VESWinlogon.dll [X]
HKCU\...\Run: [RamBooster] - C:\Program Files (x86)\RamBooster 2.0\Rambooster.exe [561664 2005-11-17] (J.Pajula)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [457728 2013-09-29] (Microsoft Corporation)
HKCU\...\Run: [AOL Fast Start] - C:\Program Files (x86)\AOL Desktop 9.7\AOL.EXE [72760 2013-09-07] (AOL Inc.)
MountPoints2: {77ad878c-6719-11e3-83f3-0024be40bfe5} - "G:\tcauto.exe"
MountPoints2: {f0eaa3f6-2ec2-11e2-be66-0024be40bfe5} - "H:\LaunchU3.exe" -a

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=SNNT&bmod=SNNT
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=snnt&bmod=snnt
SearchScopes: HKLM-x32 - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SNNT
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SNNT
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SNNT
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SNNT
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=US&ver=20&locale=en_US&gct=kwd&qsrc=2869
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\wznas94l.default
FF Homepage: hxxp://www.yahoo.com/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @viewpoint.com/VMP - C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Extension: WebSlingPlayer - C:\Users\Mark\AppData\Roaming\Mozilla\Firefox\Profiles\wznas94l.default\Extensions\{9EB34849-81D3-4841-939D-666D522B889A} [2013-01-13]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2013-12-25]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/ig/redirectdomain?brand=SNNT&bmod=SNNT
CHR DefaultSearchKeyword: ask
CHR DefaultSearchProvider: Norton Safe Search
CHR DefaultSearchURL: http://nortonsafe.search.ask.com/web?q={searchTerms}&o=15527&prt=360&chn=o0&geo=US&ver=20&locale=en_US&tpr=111
CHR DefaultNewTabURL:
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Extension: (Google Drive) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-11-17]
CHR Extension: (YouTube) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-11-17]
CHR Extension: (Google Search) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-11-17]
CHR Extension: (SlingPlayer Web Plug-in) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\lidgnhlbmoakdjkfhanbhfngcadpaiac [2013-01-13]
CHR Extension: (Norton Identity Protection) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2012-11-17]
CHR Extension: (Google Wallet) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-20]
CHR Extension: (Gmail) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-17]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\Exts\Chrome.crx [2014-01-20]

==================== Services (Whitelisted) =================

U2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
U3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
U2 N360; C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
U3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
U3 Roxio UPnP Renderer 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [313840 2009-06-26] (Sonic Solutions)
U2 Roxio Upnp Server 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [362992 2009-06-26] (Sonic Solutions)
U2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [189984 2009-07-23] (Realtek Semiconductor)
U3 SampleCollector; C:\Program Files\Sony\VAIO Care\collsvc.exe [167424 2008-09-29] (Intel Corporation)
U2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
U3 SOHDBSvr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [70952 2009-07-27] (Sony Corporation)
U3 SOHPlMgr; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [91432 2009-07-27] (Sony Corporation)
U2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72512 2013-12-02] (IObit)
U2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
U3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [69632 2009-07-23] (Sony Corporation)
U2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [642920 2009-07-22] (Sony Corporation)
U3 Vcsw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [313264 2009-07-23] (Sony Corporation)
U2 VzCdbSvc; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [206336 2009-07-23] (Sony Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U3 ampa; C:\WINDOWS\system32\ampa.sys [15288 2011-12-26] ()
U3 ampa; C:\WINDOWS\SysWOW64\ampa.sys [12728 2011-12-26] ()
U3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
U3 athr; C:\Windows\system32\DRIVERS\athwnx.sys [3680256 2013-06-18] (Qualcomm Atheros Communications, Inc.)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
U1 BHDrvx64; C:\Program Files (x86)\Norton 360 Premier Edition\NortonData\21.1.0.18\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [1526488 2013-12-17] (Symantec Corporation)
U1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
U3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [15288 2011-06-15] ()
U3 ddmdrv; C:\WINDOWS\SysWOW64\ddmdrv.sys [12728 2011-06-15] ()
U1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-17] (Disc Soft Ltd)
U1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-12-24] (Symantec Corporation)
U3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [17480 2012-12-21] ()
U3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [14920 2012-12-21] ()
U3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-12-24] (Symantec Corporation)
U3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9800 2012-12-21] ()
U3 EuGdiDrv; C:\WINDOWS\SysWOW64\EuGdiDrv.sys [9160 2012-12-21] ()
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
U1 IDSVia64; C:\Program Files (x86)\Norton 360 Premier Edition\NortonData\21.1.0.18\Definitions\IPSDefs\20140118.001\IDSvia64.sys [521944 2014-01-21] (Symantec Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-10] (Microsoft Corporation)
U3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-29] (Microsoft Corporation)
U3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [222200 2013-05-31] (QFX Software Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 NAVENG; C:\Program Files (x86)\Norton 360 Premier Edition\NortonData\21.1.0.18\Definitions\VirusDefs\20140121.005\ENG64.SYS [126040 2013-12-24] (Symantec Corporation)
U3 NAVEX15; C:\Program Files (x86)\Norton 360 Premier Edition\NortonData\21.1.0.18\Definitions\VirusDefs\20140121.005\EX64.SYS [2099288 2013-12-24] (Symantec Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U2 risdptsk; C:\Windows\System32\drivers\risdsn64.sys [76288 2009-07-31] (REDC)
U1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-25] (Microsoft Corporation)
U3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-26] (Symantec Corporation)
U1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
U0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
U0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-26] (Symantec Corporation)
U0 SymELAM; C:\Windows\System32\drivers\N360x64\1501000.012\SymELAM.sys [23568 2013-09-09] (Symantec Corporation)
U3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-12-24] (Symantec Corporation)
U1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
U1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-25] (Symantec Corporation)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U1 UimBus; C:\Windows\System32\drivers\uimx64.sys [90960 2012-10-31] (Windows (R) 2000 DDK provider)
U1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633552 2012-10-31] (Paragon)
U1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390224 2012-10-31] (Paragon)
U0 vidsflt53; C:\Windows\System32\DRIVERS\vsflt53.sys [141920 2012-11-14] (Acronis)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2012-12-18] (WinISO.com)
U3 yukonw8; C:\Windows\system32\DRIVERS\yk63x64.sys [295216 2013-06-18] (Marvell)
U3 idsvc;

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-21 21:05 - 2014-01-21 21:05 - 00023963 _____ C:\Users\Mark\Downloads\FRST.txt
2014-01-21 21:04 - 2014-01-21 21:04 - 00000000 ____D C:\FRST
2014-01-21 20:25 - 2014-01-21 20:25 - 02077184 _____ (Farbar) C:\Users\Mark\Downloads\FRST64.exe
2014-01-21 17:54 - 2014-01-21 17:54 - 00688992 _____ (Swearware) C:\Users\Mark\Downloads\dds.com
2014-01-21 07:54 - 2014-01-21 07:54 - 00464692 _____ C:\Users\Mark\Desktop\Favorite Places.pfc
2014-01-20 16:49 - 2014-01-20 16:49 - 00001045 _____ C:\Users\Public\Desktop\AOL Desktop 9.7.lnk
2014-01-20 16:48 - 2014-01-20 16:50 - 00000000 ____D C:\Program Files (x86)\AOL Desktop 9.7
2014-01-20 16:48 - 2014-01-20 16:48 - 00000000 ____D C:\Program Files (x86)\AOL
2014-01-20 11:28 - 2014-01-20 11:28 - 00000000 ____D C:\Users\Mark\Desktop\AOL Saved PFC
2014-01-19 16:45 - 2014-01-19 16:45 - 29487304 _____ (SUPERAntiSpyware) C:\Users\Mark\Downloads\SUPERAntiSpyware (1).exe
2014-01-19 16:43 - 2014-01-19 16:43 - 22058024 _____ (SUPERAdBlocker.com and SUPERAntiSpyware.com) C:\Users\Mark\Downloads\SASDEFINITIONS.EXE
2014-01-18 12:48 - 2014-01-18 12:48 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-18 12:48 - 2014-01-18 12:48 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-18 12:48 - 2014-01-18 12:48 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-18 12:48 - 2014-01-18 12:48 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-18 12:48 - 2014-01-18 12:48 - 00000000 ____D C:\ProgramData\Oracle
2014-01-18 12:48 - 2014-01-18 12:48 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-18 12:45 - 2014-01-18 12:45 - 00921000 _____ (Oracle Corporation) C:\Users\Mark\Downloads\jxpiinstall.exe
2014-01-18 12:06 - 2014-01-18 12:06 - 03053496 ____N (Symantec Corporation) C:\Users\Mark\Downloads\NPE (1).exe
2014-01-15 19:29 - 2014-01-15 19:29 - 11524298 _____ C:\Users\Mark\Downloads\SierraSunsetsTomMansfield.themepack
2014-01-15 08:34 - 2013-12-08 19:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 08:34 - 2013-11-27 10:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 08:34 - 2013-11-27 06:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 08:34 - 2013-11-27 05:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 08:34 - 2013-11-27 04:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 08:34 - 2013-11-27 03:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 08:34 - 2013-11-27 03:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 08:34 - 2013-11-27 03:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 08:34 - 2013-11-27 03:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 08:34 - 2013-11-27 03:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 08:34 - 2013-11-27 03:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-11 08:42 - 2014-01-11 08:42 - 00000000 ____D C:\Users\Mark\AppData\Roaming\Driver Magician
2014-01-11 08:28 - 2014-01-11 08:28 - 00276560 _____ C:\WINDOWS\Minidump\011114-24234-01.dmp
2014-01-07 16:42 - 2014-01-19 19:48 - 00000000 ____D C:\Users\Mark\Desktop\pump
2014-01-06 15:54 - 2014-01-06 15:54 - 00000000 ____D C:\Users\Mark\Desktop\GouldsJRS(2)
2014-01-05 08:58 - 2014-01-05 08:58 - 00000148 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-01-05 08:58 - 2014-01-05 08:58 - 00000000 ____D C:\Users\Mark\Documents\TurboTax
2014-01-05 08:58 - 2014-01-05 08:58 - 00000000 ____D C:\Users\Mark\AppData\Local\IsolatedStorage
2014-01-05 08:57 - 2014-01-05 08:57 - 00000000 ____D C:\Users\Mark\AppData\Roaming\Intuit
2014-01-05 08:56 - 2014-01-05 08:56 - 00000000 ____D C:\Program Files (x86)\TurboTax
2014-01-05 08:55 - 2014-01-05 08:56 - 00000000 ____D C:\ProgramData\Intuit
2014-01-05 08:46 - 2014-01-05 08:47 - 94341104 _____ C:\Users\Mark\Downloads\w_turbotax_1040_dlx_2013.060.0100.exe
2014-01-02 09:47 - 2014-01-02 09:47 - 00003094 _____ C:\WINDOWS\System32\Tasks\Process Lasso Core Engine Only
2014-01-02 09:47 - 2014-01-02 09:47 - 00003088 _____ C:\WINDOWS\System32\Tasks\Process Lasso Management Console (GUI)
2013-12-27 19:00 - 2013-12-27 19:00 - 00000000 ___HD C:\ProgramData\tks
2013-12-27 18:49 - 2013-12-27 18:49 - 00000000 ____D C:\Users\Mark\.dvdcss
2013-12-27 10:04 - 2014-01-18 12:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-25 09:09 - 2013-12-25 09:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2013-12-22 14:45 - 2014-01-11 08:28 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-22 14:45 - 2013-12-22 14:45 - 00266720 _____ C:\WINDOWS\Minidump\122213-23781-01.dmp

==================== One Month Modified Files and Folders =======

2014-01-21 21:05 - 2014-01-21 21:05 - 00023963 _____ C:\Users\Mark\Downloads\FRST.txt
2014-01-21 21:04 - 2014-01-21 21:04 - 00000000 ____D C:\FRST
2014-01-21 21:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-21 20:32 - 2013-05-21 13:46 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-21 20:25 - 2014-01-21 20:25 - 02077184 _____ (Farbar) C:\Users\Mark\Downloads\FRST64.exe
2014-01-21 20:17 - 2012-11-17 14:41 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 20:09 - 2013-10-21 17:28 - 01825504 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-21 20:05 - 2012-11-15 00:09 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2181432221-3951467072-1087289900-1000
2014-01-21 19:55 - 2012-11-28 11:23 - 00710656 ___SH C:\Users\Mark\Desktop\Thumbs.db
2014-01-21 19:55 - 2012-11-17 14:41 - 00000910 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-21 19:54 - 2013-12-05 07:33 - 00165659 _____ C:\MyXML.xml
2014-01-21 19:54 - 2013-09-29 23:03 - 00140698 _____ C:\WINDOWS\PFRO.log
2014-01-21 19:54 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-21 17:54 - 2014-01-21 17:54 - 00688992 _____ (Swearware) C:\Users\Mark\Downloads\dds.com
2014-01-21 07:54 - 2014-01-21 07:54 - 00464692 _____ C:\Users\Mark\Desktop\Favorite Places.pfc
2014-01-20 17:05 - 2013-10-21 10:12 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-20 17:03 - 2012-11-15 17:07 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-20 16:50 - 2014-01-20 16:48 - 00000000 ____D C:\Program Files (x86)\AOL Desktop 9.7
2014-01-20 16:50 - 2012-11-14 21:13 - 00348268 _____ C:\install.log
2014-01-20 16:49 - 2014-01-20 16:49 - 00001045 _____ C:\Users\Public\Desktop\AOL Desktop 9.7.lnk
2014-01-20 16:49 - 2012-11-14 21:17 - 00000000 ____D C:\Users\Mark\AppData\Roaming\AOL
2014-01-20 16:49 - 2012-11-14 21:17 - 00000000 ____D C:\Users\Mark\AppData\Local\AOL
2014-01-20 16:49 - 2012-11-14 21:14 - 00000000 ____D C:\ProgramData\AOL
2014-01-20 16:48 - 2014-01-20 16:48 - 00000000 ____D C:\Program Files (x86)\AOL
2014-01-20 14:07 - 2012-11-26 20:11 - 00000000 ____D C:\Users\Mark\AppData\Local\NPE
2014-01-20 11:28 - 2014-01-20 11:28 - 00000000 ____D C:\Users\Mark\Desktop\AOL Saved PFC
2014-01-20 11:28 - 2012-12-15 10:01 - 00000020 _____ C:\WINDOWS\msoffice.ini
2014-01-20 10:32 - 2013-09-29 23:15 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-20 09:58 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-19 19:48 - 2014-01-07 16:42 - 00000000 ____D C:\Users\Mark\Desktop\pump
2014-01-19 19:42 - 2013-03-19 12:25 - 00000000 ____D C:\Users\Mark\Desktop\Win8Iso
2014-01-19 19:36 - 2013-01-07 08:26 - 00000000 ____D C:\Users\Mark\Desktop\H&RBlock2012 13
2014-01-19 16:47 - 2012-11-15 00:41 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-19 16:45 - 2014-01-19 16:45 - 29487304 _____ (SUPERAntiSpyware) C:\Users\Mark\Downloads\SUPERAntiSpyware (1).exe
2014-01-19 16:43 - 2014-01-19 16:43 - 22058024 _____ (SUPERAdBlocker.com and SUPERAntiSpyware.com) C:\Users\Mark\Downloads\SASDEFINITIONS.EXE
2014-01-19 14:45 - 2013-05-21 13:46 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-01-19 14:45 - 2012-11-14 20:50 - 00000000 ____D C:\Users\Mark\AppData\Local\Adobe
2014-01-18 12:48 - 2014-01-18 12:48 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-18 12:48 - 2014-01-18 12:48 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-18 12:48 - 2014-01-18 12:48 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-18 12:48 - 2014-01-18 12:48 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-18 12:48 - 2014-01-18 12:48 - 00000000 ____D C:\ProgramData\Oracle
2014-01-18 12:48 - 2014-01-18 12:48 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-18 12:45 - 2014-01-18 12:45 - 00921000 _____ (Oracle Corporation) C:\Users\Mark\Downloads\jxpiinstall.exe
2014-01-18 12:44 - 2013-12-27 10:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-18 12:06 - 2014-01-18 12:06 - 03053496 ____N (Symantec Corporation) C:\Users\Mark\Downloads\NPE (1).exe
2014-01-16 19:02 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-16 18:40 - 2013-08-22 08:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-16 12:21 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-16 10:25 - 2012-11-14 21:10 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 19:30 - 2013-10-22 15:02 - 00039424 ___SH C:\Users\Mark\Downloads\Thumbs.db
2014-01-15 19:29 - 2014-01-15 19:29 - 11524298 _____ C:\Users\Mark\Downloads\SierraSunsetsTomMansfield.themepack
2014-01-14 21:20 - 2012-11-14 21:22 - 00000000 ____D C:\ProgramData\DVD Shrink
2014-01-11 09:12 - 2013-10-21 17:15 - 00000000 ____D C:\Users\Mark
2014-01-11 08:45 - 2012-11-15 11:11 - 00000000 ___RD C:\Users\Mark\Desktop\Utilities
2014-01-11 08:43 - 2013-01-17 08:12 - 00000000 ____D C:\Program Files (x86)\Driver Magician
2014-01-11 08:42 - 2014-01-11 08:42 - 00000000 ____D C:\Users\Mark\AppData\Roaming\Driver Magician
2014-01-11 08:28 - 2014-01-11 08:28 - 00276560 _____ C:\WINDOWS\Minidump\011114-24234-01.dmp
2014-01-11 08:28 - 2013-12-22 14:45 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-11 08:28 - 2012-11-20 17:15 - 556906475 _____ C:\WINDOWS\MEMORY.DMP
2014-01-06 17:31 - 2013-08-22 10:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 17:31 - 2013-08-22 10:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 15:54 - 2014-01-06 15:54 - 00000000 ____D C:\Users\Mark\Desktop\GouldsJRS(2)
2014-01-05 16:48 - 2013-08-22 09:44 - 00530216 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-05 08:58 - 2014-01-05 08:58 - 00000148 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-01-05 08:58 - 2014-01-05 08:58 - 00000000 ____D C:\Users\Mark\Documents\TurboTax
2014-01-05 08:58 - 2014-01-05 08:58 - 00000000 ____D C:\Users\Mark\AppData\Local\IsolatedStorage
2014-01-05 08:57 - 2014-01-05 08:57 - 00000000 ____D C:\Users\Mark\AppData\Roaming\Intuit
2014-01-05 08:56 - 2014-01-05 08:56 - 00000000 ____D C:\Program Files (x86)\TurboTax
2014-01-05 08:56 - 2014-01-05 08:55 - 00000000 ____D C:\ProgramData\Intuit
2014-01-05 08:47 - 2014-01-05 08:46 - 94341104 _____ C:\Users\Mark\Downloads\w_turbotax_1040_dlx_2013.060.0100.exe
2014-01-04 10:18 - 2012-11-15 00:30 - 00000000 ____D C:\Users\Mark\AppData\Roaming\Audacity
2014-01-02 09:47 - 2014-01-02 09:47 - 00003094 _____ C:\WINDOWS\System32\Tasks\Process Lasso Core Engine Only
2014-01-02 09:47 - 2014-01-02 09:47 - 00003088 _____ C:\WINDOWS\System32\Tasks\Process Lasso Management Console (GUI)
2014-01-02 09:47 - 2012-11-15 11:02 - 00000000 ____D C:\Program Files\Process Lasso
2013-12-30 14:41 - 2012-11-14 20:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-29 09:00 - 2013-10-25 14:18 - 00000000 ____D C:\Users\Mark\Desktop\EBAY
2013-12-27 19:00 - 2013-12-27 19:00 - 00000000 ___HD C:\ProgramData\tks
2013-12-27 18:49 - 2013-12-27 18:49 - 00000000 ____D C:\Users\Mark\.dvdcss
2013-12-27 18:44 - 2012-11-14 19:08 - 00000000 ____D C:\Users\Mark\AppData\Local\VirtualStore
2013-12-25 16:00 - 2012-07-26 03:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-12-25 09:09 - 2013-12-25 09:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton 360
2013-12-25 09:06 - 2012-11-15 11:02 - 00000000 ____D C:\Users\Mark\AppData\Roaming\ProcessLasso
2013-12-25 09:02 - 2012-12-20 09:20 - 00003238 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2013-12-25 09:02 - 2012-12-20 09:15 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360x64
2013-12-24 20:47 - 2013-09-11 19:25 - 00000226 _____ C:\Users\Mark\Desktop\Giant Frame Dimensions.txt
2013-12-24 18:34 - 2012-12-20 09:20 - 00177752 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2013-12-24 18:34 - 2012-12-20 09:20 - 00008222 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2013-12-24 18:34 - 2012-11-14 22:00 - 00000000 ____D C:\ProgramData\Norton
2013-12-24 18:32 - 2012-12-20 09:15 - 00000000 ____D C:\Program Files (x86)\Norton 360 Premier Edition
2013-12-23 21:53 - 2012-12-13 21:22 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2013-12-22 17:44 - 2013-09-29 22:55 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-12-22 17:42 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\registration
2013-12-22 17:30 - 2012-11-26 20:46 - 00000000 ____D C:\Users\Mark\AppData\Local\CrashDumps
2013-12-22 14:45 - 2013-12-22 14:45 - 00266720 _____ C:\WINDOWS\Minidump\122213-23781-01.dmp
2013-12-22 14:01 - 2013-10-21 21:04 - 00000000 ____D C:\Recovery

Some content of TEMP:
====================
C:\Users\Mark\AppData\Local\Temp\AcsInstall.dll
C:\Users\Mark\AppData\Local\Temp\SHFOLDER.DLL

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-21 20:05

==================== End Of Log ============================

EL CONJUNTO · 2014/01/21

Page 2:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-01-2014
Ran by Mark at 2014-01-21 21:06:10
Running from C:\Users\Mark\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 Premier Edition (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 Premier Edition (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 Premier Edition (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

Leawo Blu-ray Ripper version 4.2.0.0 (x32 Version: 4.2.0.0 - Leawo Software Co., Ltd.)
4Easysoft Free Blu-ray Ripper (x32 Version: - )
Adobe Flash Player 10 ActiveX (x32 Version: 10.0.32.18 - Adobe Systems, Inc.)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638 - Adobe Systems, Inc.)
Aiseesoft BD to MKV Copy 6.1.6 (x32 Version: 6.1.6 - Aiseesoft Studio)
Aiseesoft DVD Copy 5.0.12 (x32 Version: - )
Aiseesoft DVD Ripper Platinum 7.1.8 (x32 Version: 7.1.8 - Aiseesoft Studio)
Amazon MP3 Downloader 1.0.17 (x32 Version: 1.0.17 - Amazon Services LLC)
AOL Uninstaller (Choose which Products to Remove) (x32 Version: - AOL Inc.)
AOMEI Partition Assistant Pro Edition 5.1 (x32 Version: - Aomei Technology Co., Ltd.)
Application Manager for VAIO (x32 Version: - )
ArcSoft Magic-i Visual Effects 2 (x32 Version: 2.0.1.85 - ArcSoft)
ArcSoft WebCam Companion 3 (x32 Version: 3.0.21.193 - ArcSoft)
Ashampoo Burning Studio 2013 v.11.0.5 (x32 Version: 11.0.5 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (x32 Version: 2.0.5 - Audacity Team)
Auslogics DiskDefrag (x32 Version: 4.4.1.0 - Auslogics Labs Pty Ltd)
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
Click to Disc (x32 Version: 1.2.70.06160 - Sony Corporation) Hidden
Click to Disc Editor (x32 Version: 2.0.02 - Sony Corporation) Hidden
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Coupon Printer for Windows (x32 Version: 5.0.0.2 - Coupons.com Incorporated) <==== ATTENTION
CyberLink PhotoDirector 3 (x32 Version: 3.0.3618 - CyberLink Corp.)
CyberLink PhotoDirector 3 (x32 Version: 3.0.3618 - CyberLink Corp.) Hidden
DAEMON Tools Lite (x32 Version: 4.48.1.0347 - Disc Soft Ltd)
Driver Magician 4.0 (x32 Version: - GoldSolution Software, Inc.)
DVD Shrink 3.2 (x32 Version: - DVD Shrink)
DVDFab Media Player 2 (x32 Version: 2.2.0.0 - Fengtao Software Inc.)
EaseUS Partition Master 9.2.1 Professional (x32 Version: - EaseUS)
Garmin Communicator Plugin (x32 Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Trip and Waypoint Manager v3 (x32 Version: 3.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (x32 Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (x32 Version: 2.5.6 - Garmin Ltd or its subsidiaries)
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Earth Plug-in (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
H&R Block Deluxe + Efile + State 2010 (x32 Version: 10.04.6402 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2011 (x32 Version: 11.05.7102 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2012 (x32 Version: 12.05.7801 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2013 (x32 Version: 13.05.2901 - HRB Technology, LLC.)
H&R Block New York 2012 (x32 Version: 1.12.6801 - HRB Technology, LLC.)
H&R Block Premium + Efile + State 2009 (x32 Version: 09.06.7101 - HRB Technology, LLC.)
HRBlockDirect version 1.1.2.0 (x32 Version: 1.1.2.0 - HRBlock)
ImgBurn (x32 Version: 2.5.7.0 - LIGHTNING UK!)
Inpaint 5.5 (Version: - Teorex)
Intel(R) Graphics Media Accelerator Driver (Version: - Intel Corporation)
Intel® Matrix Storage Manager (Version: - Intel Corporation)
IP Camera (x32 Version: - )
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
KeyScrambler (x32 Version: 3.3.0.0 - QFX Software Corporation)
Lavasoft Reghance 2.1 (x32 Version: 1.1 - Team Lavasoft)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (x32 Version: 1.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (x32 Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
Music Transfer (x32 Version: 1.3.01.13160 - Sony Corporation) Hidden
Nero 7 Essentials (x32 Version: 7.02.9888 - Nero AG)
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
NTI CD & DVD-Maker (x32 Version: 7 - NewTech Infosystems)
NTI CD & DVD-Maker (x32 Version: 7 - NewTech Infosystems) Hidden
Paragon Backup & Recovery™ 2013 Free (x32 Version: 90.00.0003 - Paragon Software)
Paragon Backup and Recovery™ 12 Compact (x32 Version: 90.00.0003 - Paragon Software)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Primo (x32 Version: 1.00.0000 - Your Company Name) Hidden
Process Lasso (x32 Version: 6.7.0.34 - Bitsum)
Quicken Basic 2000 (x32 Version: - )
RamBooster (x32 Version: 2.0 - RamBooster)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5886 - Realtek Semiconductor Corp.)
Regi (Version: 1.00.0000 - InterVideo Inc.) Hidden
Revo Uninstaller 1.95 (x32 Version: 1.95 - VS Revo Group)
Roxio Central Audio (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Copy (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Core (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Data (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Tools (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Easy Media Creator 10 LJ (x32 Version: 10.3 - Roxio)
Roxio Easy Media Creator Home (x32 Version: 10.3.121 - Roxio) Hidden
Runtime (x32 Version: 1.00.0000 - Your Company Name) Hidden
Seagate DiscWizard (x32 Version: 13.0.14387 - Seagate)
Setting Utility Series (x32 Version: 5.0.0.07300 - Sony Corporation) Hidden
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SmartWi Connection Utility (x32 Version: 4.8.4.20090826.2116 - Sony)
Sony Home Network Library (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden
Sony Picture Utility (x32 Version: 4.2.12.16210 - Sony Corporation) Hidden
Spybot - Search & Destroy (x32 Version: 1.6.2 - Safer Networking Limited)
Start Menu 8 (x32 Version: 1.4.0.0 - IObit)
Streaming Audio Recorder V3.3.1 (x32 Version: 3.3.1 - Apowersoft)
SUPERAntiSpyware (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 9 (x32 Version: 9.0.24951 - TeamViewer)
Tipard Blu-ray Converter 6.3.38 (x32 Version: 6.3.38 - Tipard Studio)
Tipard DVD Ripper Platinum 6.2.20 (x32 Version: 6.2.20 - Tipard Studio)
TomTom HOME (x32 Version: 2.9.6 - TomTom)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
TurboTax 2013 (x32 Version: 2013.0 - Intuit, Inc)
TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.1385 - Intuit Inc.) Hidden
TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0407 - Intuit Inc.) Hidden
TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0158 - Intuit Inc.) Hidden
TurboTax 2013 wrapper (x32 Version: 013.000.0131 - Intuit Inc.) Hidden
Ubuntu (x32 Version: 12.10-rev273 - Ubuntu)
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
VAIO Care (x32 Version: 4.0.0.0811 - Sony) Hidden
VAIO Content Metadata Intelligent Analyzing Manager (x32 Version: 3.5.0.06261 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Network Service Manager (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (x32 Version: 3.5.0.06180 - Sony Corporation) Hidden
VAIO Content Monitoring Settings (x32 Version: 2.4.0.06120 - Sony Corporation) Hidden
VAIO Control Center (x32 Version: 4.0.0.06120 - Sony Corporation) Hidden
VAIO Data Restore Tool (x32 Version: 1.1.01.06290 - Sony Corporation) Hidden
VAIO DVD Menu Data Basic (x32 Version: 1.0.00.08130 - Sony Corporation) Hidden
VAIO Entertainment Platform (x32 Version: 3.5.0.07230 - Sony Corporation) Hidden
VAIO Event Service (x32 Version: 5.0.0.07010 - Sony Corporation) Hidden
VAIO Help and Support (x32 Version: 9.00.0729.ENUS - Sony Corporation)
VAIO Media plus (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (x32 Version: 2.0.0.07030 - Sony Corporation) Hidden
VAIO Movie Story (x32 Version: 1.5.00.06191 - Sony Corporation) Hidden
VAIO Movie Story Template Data (x32 Version: 1.5.00.06010 - Sony Corporation) Hidden
VAIO OOBE and Startup Assistant (x32 Version: 1.00.0811.ENUS - Sony Corporation) Hidden
VAIO Original Function Settings (x32 Version: 2.0.0.07010 - Sony Corporation) Hidden
VAIO Power Management (x32 Version: 4.0.0.08240 - Sony Corporation) Hidden
VAIO Presentation Support (x32 Version: 2.0.0.05270 - Sony Corporation) Hidden
VAIO Quick Web Access (x32 Version: 1.1.2.4 - Sony Corporation) Hidden
VAIO Survey (x32 Version: 6.00.0722 - Sony Corporation) Hidden
VAIO Update 4 (x32 Version: 4.2.0.07300 - Sony Corporation) Hidden
VAIO Wallpaper Contents (x32 Version: 2.0.0.06010 - Sony Corporation) Hidden
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Viewpoint Media Player (x32 Version: - )
WavePad Sound Editor (x32 Version: - NCH Software)
Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Live Call (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Movie Maker Beta (x32 Version: 14.0.8051.1204 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 14.0.8051.1204 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (x32 Version: 5.000.817.1 - Microsoft Corporation)
Windows Live Sync (x32 Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (x32 Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8 - Microsoft Corp)
WinDVD BD for VAIO (x32 Version: 8.0.20.79 - InterVideo Inc.)
WinDVD BD for VAIO (x32 Version: 8.0.20.79 - InterVideo Inc.) Hidden
WinISO (x32 Version: 6.3.0.4735 - WinISO Computing Inc.)
WinRAR 4.20 (64-bit) (Version: 4.20.0 - win.rar GmbH)
WonderFox DVD Video Converter (HKCU Version: - WonderFox Soft, Inc. All Rights Reserved.)
YouTube to MP3 High Quality Downloader V4.0.2 (x32 Version: - YouTube to MP3 High Quality Downloader)

==================== Restore Points =========================

05-01-2014 01:51:54 Scheduled Checkpoint
12-01-2014 02:58:51 Scheduled Checkpoint
16-01-2014 15:05:00 Windows Update
18-01-2014 17:42:55 Removed Java(TM) SE Development Kit 6 Update 15 (64-bit)

==================== Hosts content: ==========================

2012-07-26 00:26 - 2013-05-31 09:24 - 00448673 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.

==================== Scheduled Tasks (whitelisted) =============

Task: {02AD15C0-D8D1-4633-B53B-6EB58991BE6A} - System32\Tasks\Sony\VAIO Registration => C:\Program Files\Sony\First Experience\OOBEFcdRegistration.exe [2009-07-13] (Sony Electronics, Inc.)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0C26DC13-86A5-4F8C-813B-FA5C2DEE0CAA} - System32\Tasks\Sony\Java Update => C:\Program Files\Java\jre6\bin\jusched.exe
Task: {0DF68C05-ABA9-49A7-96A7-37D73B661C8B} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)
Task: {104250B7-D2E0-4CF8-A9D4-0727554A5875} - System32\Tasks\Sony\VAIO Mini Program => C:\Program Files\Sony\First Experience\Miniprogram.exe [2009-08-26] ()
Task: {1955CFFA-626C-4B02-9810-067A78BA350C} - System32\Tasks\Norton Management\Norton Error Processor => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2E8AA80C-F962-434B-A257-BB7F95028A9C} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe [2013-12-23] (Bitsum LLC)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {37B42DDD-DA3C-46B5-9D99-7304CB7B502F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-19] (Adobe Systems Incorporated)
Task: {3A2A2A17-52B8-4D5C-93B5-D91BDBB57072} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4757E2EE-B5FF-4119-A09F-AA05C5B0393F} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {5761D8B2-2DDB-41BB-9683-4DD1E1F89884} - System32\Tasks\Sony\Main => C:\Windows\Sonysys\Taskfile\bootupdate.exe [2009-08-20] ( )
Task: {6041468F-0AC9-48A4-A83D-FE31653F3CDC} - System32\Tasks\Sony\VAIO Survey => C:\Program Files (x86)\Sony\VAIO Survey\VAIO Sat Survey.exe [2008-07-25] ()
Task: {614F0561-6AE7-4BF0-A035-DDEEB32996C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {773A9B37-1B45-495E-97DD-A2FCFEA4DBDF} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {781DB3A8-915B-4ED2-9B3C-A346E552FBA5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-20] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {95AD3090-8F6B-434B-A699-D71710244E45} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe [2013-12-23] (Bitsum LLC)
Task: {95E68179-3E62-4AF6-AD29-79172CA33390} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2009-08-06] (Sony Electronics, Inc.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A058E041-AE68-4C09-B4C3-F5B4A1E808E8} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [2009-07-31] (Sony Corporation)
Task: {C2A2E979-D358-4D17-84DF-294E4D748D59} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2013-12-02] (IObit)
Task: {CDC632AA-C30C-419C-BC30-DAD9BB61FE3F} - System32\Tasks\Norton Management\Norton Error Analyzer => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-11-14 21:23 - 2009-07-24 21:17 - 00238080 _____ () C:\Program Files\Sony\VAIO Care\ManagedVAIORecovery.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00074240 _____ () C:\Program Files\Sony\VAIO Care\VAIORecovery.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00059392 _____ () C:\Program Files\Sony\VAIO Care\VAIOInstallAppsDrivers.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00024576 _____ () C:\Program Files\Sony\VAIO Care\VAIOUtility.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00207360 _____ () C:\Program Files\Sony\VAIO Care\OsServices.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00069120 _____ () C:\Program Files\Sony\VAIO Care\Logging.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00027648 _____ () C:\Program Files\Sony\VAIO Care\VAIOCommon.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00043520 _____ () C:\Program Files\Sony\VAIO Care\XMLTools.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00155136 _____ () C:\Program Files\Sony\VAIO Care\InstallDB.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00137216 _____ () C:\Program Files\Sony\VAIO Care\InstallationTools.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00042496 _____ () C:\Program Files\Sony\VAIO Care\PluginFactory.dll
2013-05-03 08:07 - 2013-12-02 17:12 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2013-05-03 08:07 - 2013-12-02 17:12 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2013-05-03 08:07 - 2013-12-02 17:12 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2013-12-05 07:33 - 2013-12-02 17:12 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll
2013-09-02 07:21 - 2013-12-02 17:12 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll
2012-11-14 21:44 - 2009-07-01 14:49 - 00010752 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2012-11-14 21:44 - 2009-07-01 14:49 - 00009728 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2013-09-02 07:21 - 2013-12-02 17:13 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
2013-09-07 12:20 - 2013-09-07 12:20 - 00048640 _____ () C:\Program Files (x86)\AOL Desktop 9.7\zlib.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 21117440 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libcef.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00648704 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libglesv2.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00122880 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libegl.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00094208 _____ () C:\Program Files (x86)\AOL Desktop 9.7\Components\Tier2Svc.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00060928 _____ () C:\Program Files (x86)\AOL Desktop 9.7\Components\DataSvcs.dll
2014-01-16 23:21 - 2014-01-11 05:28 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libglesv2.dll
2014-01-16 23:21 - 2014-01-11 05:28 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libegl.dll
2014-01-16 23:21 - 2014-01-11 05:29 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-16 23:21 - 2014-01-11 05:29 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-16 23:21 - 2014-01-11 05:28 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2014-01-16 23:21 - 2014-01-11 05:29 - 13615896 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Could not start eventlog service, could not read events.

The requested service has already been started.

More help is available by typing NET HELPMSG 2182.

==================== Memory info ===========================

Percentage of memory in use: 46%
Total physical RAM: 3935.02 MB
Available physical RAM: 2100.11 MB
Total Pagefile: 7903.02 MB
Available Pagefile: 2466.25 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:457.76 GB) (Free:365.22 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 6CA39E6C)
Partition 1: (Not Active) - (Size=8 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=458 GB) - (Type=07 NTFS)

==================== End Of Log ============================

EL CONJUNTO · 2014/01/21

Has my computer been Hijacked Page 2 of 2

Page 2:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-01-2014
Ran by Mark at 2014-01-21 21:06:10
Running from C:\Users\Mark\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 Premier Edition (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 Premier Edition (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 Premier Edition (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

Leawo Blu-ray Ripper version 4.2.0.0 (x32 Version: 4.2.0.0 - Leawo Software Co., Ltd.)
4Easysoft Free Blu-ray Ripper (x32 Version: - )
Adobe Flash Player 10 ActiveX (x32 Version: 10.0.32.18 - Adobe Systems, Inc.)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638 - Adobe Systems, Inc.)
Aiseesoft BD to MKV Copy 6.1.6 (x32 Version: 6.1.6 - Aiseesoft Studio)
Aiseesoft DVD Copy 5.0.12 (x32 Version: - )
Aiseesoft DVD Ripper Platinum 7.1.8 (x32 Version: 7.1.8 - Aiseesoft Studio)
Amazon MP3 Downloader 1.0.17 (x32 Version: 1.0.17 - Amazon Services LLC)
AOL Uninstaller (Choose which Products to Remove) (x32 Version: - AOL Inc.)
AOMEI Partition Assistant Pro Edition 5.1 (x32 Version: - Aomei Technology Co., Ltd.)
Application Manager for VAIO (x32 Version: - )
ArcSoft Magic-i Visual Effects 2 (x32 Version: 2.0.1.85 - ArcSoft)
ArcSoft WebCam Companion 3 (x32 Version: 3.0.21.193 - ArcSoft)
Ashampoo Burning Studio 2013 v.11.0.5 (x32 Version: 11.0.5 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (x32 Version: 2.0.5 - Audacity Team)
Auslogics DiskDefrag (x32 Version: 4.4.1.0 - Auslogics Labs Pty Ltd)
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
Click to Disc (x32 Version: 1.2.70.06160 - Sony Corporation) Hidden
Click to Disc Editor (x32 Version: 2.0.02 - Sony Corporation) Hidden
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Coupon Printer for Windows (x32 Version: 5.0.0.2 - Coupons.com Incorporated) <==== ATTENTION
CyberLink PhotoDirector 3 (x32 Version: 3.0.3618 - CyberLink Corp.)
CyberLink PhotoDirector 3 (x32 Version: 3.0.3618 - CyberLink Corp.) Hidden
DAEMON Tools Lite (x32 Version: 4.48.1.0347 - Disc Soft Ltd)
Driver Magician 4.0 (x32 Version: - GoldSolution Software, Inc.)
DVD Shrink 3.2 (x32 Version: - DVD Shrink)
DVDFab Media Player 2 (x32 Version: 2.2.0.0 - Fengtao Software Inc.)
EaseUS Partition Master 9.2.1 Professional (x32 Version: - EaseUS)
Garmin Communicator Plugin (x32 Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Trip and Waypoint Manager v3 (x32 Version: 3.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (x32 Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (x32 Version: 2.5.6 - Garmin Ltd or its subsidiaries)
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Earth Plug-in (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
H&R Block Deluxe + Efile + State 2010 (x32 Version: 10.04.6402 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2011 (x32 Version: 11.05.7102 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2012 (x32 Version: 12.05.7801 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2013 (x32 Version: 13.05.2901 - HRB Technology, LLC.)
H&R Block New York 2012 (x32 Version: 1.12.6801 - HRB Technology, LLC.)
H&R Block Premium + Efile + State 2009 (x32 Version: 09.06.7101 - HRB Technology, LLC.)
HRBlockDirect version 1.1.2.0 (x32 Version: 1.1.2.0 - HRBlock)
ImgBurn (x32 Version: 2.5.7.0 - LIGHTNING UK!)
Inpaint 5.5 (Version: - Teorex)
Intel(R) Graphics Media Accelerator Driver (Version: - Intel Corporation)
Intel® Matrix Storage Manager (Version: - Intel Corporation)
IP Camera (x32 Version: - )
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
KeyScrambler (x32 Version: 3.3.0.0 - QFX Software Corporation)
Lavasoft Reghance 2.1 (x32 Version: 1.1 - Team Lavasoft)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (x32 Version: 1.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (x32 Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
Music Transfer (x32 Version: 1.3.01.13160 - Sony Corporation) Hidden
Nero 7 Essentials (x32 Version: 7.02.9888 - Nero AG)
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
NTI CD & DVD-Maker (x32 Version: 7 - NewTech Infosystems)
NTI CD & DVD-Maker (x32 Version: 7 - NewTech Infosystems) Hidden
Paragon Backup & Recoveryâ„¢ 2013 Free (x32 Version: 90.00.0003 - Paragon Software)
Paragon Backup and Recoveryâ„¢ 12 Compact (x32 Version: 90.00.0003 - Paragon Software)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Primo (x32 Version: 1.00.0000 - Your Company Name) Hidden
Process Lasso (x32 Version: 6.7.0.34 - Bitsum)
Quicken Basic 2000 (x32 Version: - )
RamBooster (x32 Version: 2.0 - RamBooster)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5886 - Realtek Semiconductor Corp.)
Regi (Version: 1.00.0000 - InterVideo Inc.) Hidden
Revo Uninstaller 1.95 (x32 Version: 1.95 - VS Revo Group)
Roxio Central Audio (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Copy (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Core (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Data (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Central Tools (x32 Version: 3.8.0 - Roxio) Hidden
Roxio Easy Media Creator 10 LJ (x32 Version: 10.3 - Roxio)
Roxio Easy Media Creator Home (x32 Version: 10.3.121 - Roxio) Hidden
Runtime (x32 Version: 1.00.0000 - Your Company Name) Hidden
Seagate DiscWizard (x32 Version: 13.0.14387 - Seagate)
Setting Utility Series (x32 Version: 5.0.0.07300 - Sony Corporation) Hidden
Skypeâ„¢ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SmartWi Connection Utility (x32 Version: 4.8.4.20090826.2116 - Sony)
Sony Home Network Library (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden
Sony Picture Utility (x32 Version: 4.2.12.16210 - Sony Corporation) Hidden
Spybot - Search & Destroy (x32 Version: 1.6.2 - Safer Networking Limited)
Start Menu 8 (x32 Version: 1.4.0.0 - IObit)
Streaming Audio Recorder V3.3.1 (x32 Version: 3.3.1 - Apowersoft)
SUPERAntiSpyware (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 9 (x32 Version: 9.0.24951 - TeamViewer)
Tipard Blu-ray Converter 6.3.38 (x32 Version: 6.3.38 - Tipard Studio)
Tipard DVD Ripper Platinum 6.2.20 (x32 Version: 6.2.20 - Tipard Studio)
TomTom HOME (x32 Version: 2.9.6 - TomTom)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
TurboTax 2013 (x32 Version: 2013.0 - Intuit, Inc)
TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.1385 - Intuit Inc.) Hidden
TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0407 - Intuit Inc.) Hidden
TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0158 - Intuit Inc.) Hidden
TurboTax 2013 wrapper (x32 Version: 013.000.0131 - Intuit Inc.) Hidden
Ubuntu (x32 Version: 12.10-rev273 - Ubuntu)
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
VAIO Care (x32 Version: 4.0.0.0811 - Sony) Hidden
VAIO Content Metadata Intelligent Analyzing Manager (x32 Version: 3.5.0.06261 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Network Service Manager (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (x32 Version: 3.5.0.06260 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (x32 Version: 3.5.0.06180 - Sony Corporation) Hidden
VAIO Content Monitoring Settings (x32 Version: 2.4.0.06120 - Sony Corporation) Hidden
VAIO Control Center (x32 Version: 4.0.0.06120 - Sony Corporation) Hidden
VAIO Data Restore Tool (x32 Version: 1.1.01.06290 - Sony Corporation) Hidden
VAIO DVD Menu Data Basic (x32 Version: 1.0.00.08130 - Sony Corporation) Hidden
VAIO Entertainment Platform (x32 Version: 3.5.0.07230 - Sony Corporation) Hidden
VAIO Event Service (x32 Version: 5.0.0.07010 - Sony Corporation) Hidden
VAIO Help and Support (x32 Version: 9.00.0729.ENUS - Sony Corporation)
VAIO Media plus (x32 Version: 2.0.0.07280 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (x32 Version: 2.0.0.07030 - Sony Corporation) Hidden
VAIO Movie Story (x32 Version: 1.5.00.06191 - Sony Corporation) Hidden
VAIO Movie Story Template Data (x32 Version: 1.5.00.06010 - Sony Corporation) Hidden
VAIO OOBE and Startup Assistant (x32 Version: 1.00.0811.ENUS - Sony Corporation) Hidden
VAIO Original Function Settings (x32 Version: 2.0.0.07010 - Sony Corporation) Hidden
VAIO Power Management (x32 Version: 4.0.0.08240 - Sony Corporation) Hidden
VAIO Presentation Support (x32 Version: 2.0.0.05270 - Sony Corporation) Hidden
VAIO Quick Web Access (x32 Version: 1.1.2.4 - Sony Corporation) Hidden
VAIO Survey (x32 Version: 6.00.0722 - Sony Corporation) Hidden
VAIO Update 4 (x32 Version: 4.2.0.07300 - Sony Corporation) Hidden
VAIO Wallpaper Contents (x32 Version: 2.0.0.06010 - Sony Corporation) Hidden
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Viewpoint Media Player (x32 Version: - )
WavePad Sound Editor (x32 Version: - NCH Software)
Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Live Call (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Live Movie Maker Beta (x32 Version: 14.0.8051.1204 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 14.0.8051.1204 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (x32 Version: 5.000.817.1 - Microsoft Corporation)
Windows Live Sync (x32 Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (x32 Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8 - Microsoft Corp)
WinDVD BD for VAIO (x32 Version: 8.0.20.79 - InterVideo Inc.)
WinDVD BD for VAIO (x32 Version: 8.0.20.79 - InterVideo Inc.) Hidden
WinISO (x32 Version: 6.3.0.4735 - WinISO Computing Inc.)
WinRAR 4.20 (64-bit) (Version: 4.20.0 - win.rar GmbH)
WonderFox DVD Video Converter (HKCU Version: - WonderFox Soft, Inc. All Rights Reserved.)
YouTube to MP3 High Quality Downloader V4.0.2 (x32 Version: - YouTube to MP3 High Quality Downloader)

==================== Restore Points =========================

05-01-2014 01:51:54 Scheduled Checkpoint
12-01-2014 02:58:51 Scheduled Checkpoint
16-01-2014 15:05:00 Windows Update
18-01-2014 17:42:55 Removed Java(TM) SE Development Kit 6 Update 15 (64-bit)

==================== Hosts content: ==========================

2012-07-26 00:26 - 2013-05-31 09:24 - 00448673 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.

==================== Scheduled Tasks (whitelisted) =============

Task: {02AD15C0-D8D1-4633-B53B-6EB58991BE6A} - System32\Tasks\Sony\VAIO Registration => C:\Program Files\Sony\First Experience\OOBEFcdRegistration.exe [2009-07-13] (Sony Electronics, Inc.)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0C26DC13-86A5-4F8C-813B-FA5C2DEE0CAA} - System32\Tasks\Sony\Java Update => C:\Program Files\Java\jre6\bin\jusched.exe
Task: {0DF68C05-ABA9-49A7-96A7-37D73B661C8B} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)
Task: {104250B7-D2E0-4CF8-A9D4-0727554A5875} - System32\Tasks\Sony\VAIO Mini Program => C:\Program Files\Sony\First Experience\Miniprogram.exe [2009-08-26] ()
Task: {1955CFFA-626C-4B02-9810-067A78BA350C} - System32\Tasks\Norton Management\Norton Error Processor => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2E8AA80C-F962-434B-A257-BB7F95028A9C} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe [2013-12-23] (Bitsum LLC)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {37B42DDD-DA3C-46B5-9D99-7304CB7B502F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-19] (Adobe Systems Incorporated)
Task: {3A2A2A17-52B8-4D5C-93B5-D91BDBB57072} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4757E2EE-B5FF-4119-A09F-AA05C5B0393F} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {5761D8B2-2DDB-41BB-9683-4DD1E1F89884} - System32\Tasks\Sony\Main => C:\Windows\Sonysys\Taskfile\bootupdate.exe [2009-08-20] ( )
Task: {6041468F-0AC9-48A4-A83D-FE31653F3CDC} - System32\Tasks\Sony\VAIO Survey => C:\Program Files (x86)\Sony\VAIO Survey\VAIO Sat Survey.exe [2008-07-25] ()
Task: {614F0561-6AE7-4BF0-A035-DDEEB32996C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {773A9B37-1B45-495E-97DD-A2FCFEA4DBDF} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {781DB3A8-915B-4ED2-9B3C-A346E552FBA5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-20] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {95AD3090-8F6B-434B-A699-D71710244E45} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe [2013-12-23] (Bitsum LLC)
Task: {95E68179-3E62-4AF6-AD29-79172CA33390} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2009-08-06] (Sony Electronics, Inc.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A058E041-AE68-4C09-B4C3-F5B4A1E808E8} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [2009-07-31] (Sony Corporation)
Task: {C2A2E979-D358-4D17-84DF-294E4D748D59} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2013-12-02] (IObit)
Task: {CDC632AA-C30C-419C-BC30-DAD9BB61FE3F} - System32\Tasks\Norton Management\Norton Error Analyzer => C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\SymErr.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-11-14 21:23 - 2009-07-24 21:17 - 00238080 _____ () C:\Program Files\Sony\VAIO Care\ManagedVAIORecovery.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00074240 _____ () C:\Program Files\Sony\VAIO Care\VAIORecovery.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00059392 _____ () C:\Program Files\Sony\VAIO Care\VAIOInstallAppsDrivers.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00024576 _____ () C:\Program Files\Sony\VAIO Care\VAIOUtility.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00207360 _____ () C:\Program Files\Sony\VAIO Care\OsServices.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00069120 _____ () C:\Program Files\Sony\VAIO Care\Logging.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00027648 _____ () C:\Program Files\Sony\VAIO Care\VAIOCommon.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00043520 _____ () C:\Program Files\Sony\VAIO Care\XMLTools.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00155136 _____ () C:\Program Files\Sony\VAIO Care\InstallDB.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00137216 _____ () C:\Program Files\Sony\VAIO Care\InstallationTools.dll
2012-11-14 21:23 - 2009-07-24 21:17 - 00042496 _____ () C:\Program Files\Sony\VAIO Care\PluginFactory.dll
2013-05-03 08:07 - 2013-12-02 17:12 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2013-05-03 08:07 - 2013-12-02 17:12 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2013-05-03 08:07 - 2013-12-02 17:12 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2013-12-05 07:33 - 2013-12-02 17:12 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll
2013-09-02 07:21 - 2013-12-02 17:12 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll
2012-11-14 21:44 - 2009-07-01 14:49 - 00010752 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2012-11-14 21:44 - 2009-07-01 14:49 - 00009728 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2013-09-02 07:21 - 2013-12-02 17:13 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
2013-09-07 12:20 - 2013-09-07 12:20 - 00048640 _____ () C:\Program Files (x86)\AOL Desktop 9.7\zlib.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 21117440 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libcef.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00648704 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libglesv2.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00122880 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libegl.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00094208 _____ () C:\Program Files (x86)\AOL Desktop 9.7\Components\Tier2Svc.dll
2013-09-07 12:19 - 2013-09-07 12:19 - 00060928 _____ () C:\Program Files (x86)\AOL Desktop 9.7\Components\DataSvcs.dll
2014-01-16 23:21 - 2014-01-11 05:28 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libglesv2.dll
2014-01-16 23:21 - 2014-01-11 05:28 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libegl.dll
2014-01-16 23:21 - 2014-01-11 05:29 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-16 23:21 - 2014-01-11 05:29 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-16 23:21 - 2014-01-11 05:28 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2014-01-16 23:21 - 2014-01-11 05:29 - 13615896 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Could not start eventlog service, could not read events.

The requested service has already been started.

More help is available by typing NET HELPMSG 2182.

==================== Memory info ===========================

Percentage of memory in use: 46%
Total physical RAM: 3935.02 MB
Available physical RAM: 2100.11 MB
Total Pagefile: 7903.02 MB
Available Pagefile: 2466.25 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:457.76 GB) (Free:365.22 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 6CA39E6C)
Partition 1: (Not Active) - (Size=8 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=458 GB) - (Type=07 NTFS)

==================== End Of Log ============================

broni · 2014/01/21

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.

If you're stuck, or you're not sure about certain step, always ask before doing anything else.

Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.

Never run more than one scan at a time.

Keep updating me regarding your computer behavior, good, or bad.

The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.

If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.

I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

=============================

I don't see anything malicious there.
What are the issues?

EL CONJUNTO · 2014/01/21

When in the process of changing my password in one of my AOL accounts I noticed the security question was changed to "What are the last 4 digits of your SSN?" This is not even one of the dropdown choices from AOL for a suggested question. I phoned AOL and had them wipe all my passwords and questions, They gave me new temporary ones (over the phone). I uninstalled all AOL files and programs. I then proceeded to scan the computer with malware bytes, SuperAntiSpyware, and Norton After which I downloaded a new AOL and signed in with the temp pw and proceeded to create new ones. At this point I contacted you. Do you think the computer is ok?

broni · 2014/01/21

It looks clean.

Any online account can be hacked at its source (server) and your computer doesn't have to be involved at all.

EL CONJUNTO · 2014/01/21

You are probably right. Even though I'm not that experienced it seems impossible to change default security questions through the user computer and not the server. Thank you again for your help. Please let me know if there is anything I should keep an eye out for.

broni · 2014/01/21

You're very welcome

Log in or Sign up

Inactive Has my computer been Hijacked? Page 1 of 2

EL CONJUNTO Well-Known Member Thread Starter

EL CONJUNTO Well-Known Member Thread Starter

EL CONJUNTO Well-Known Member Thread Starter

broni Moderator Malware Analyst

EL CONJUNTO Well-Known Member Thread Starter

broni Moderator Malware Analyst

EL CONJUNTO Well-Known Member Thread Starter

broni Moderator Malware Analyst

Share This Page

Log in or Sign up

Inactive Has my computer been Hijacked? Page 1 of 2

EL CONJUNTO Well-Known Member Thread Starter

EL CONJUNTO Well-Known Member Thread Starter

EL CONJUNTO Well-Known Member Thread Starter

broni Moderator Malware Analyst

EL CONJUNTO Well-Known Member Thread Starter

broni Moderator Malware Analyst

EL CONJUNTO Well-Known Member Thread Starter

broni Moderator Malware Analyst

Share This Page

Useful Searches