Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trying to run DDS to send for help


  • This topic is locked This topic is locked
24 replies to this topic

#1 Poweroo

Poweroo

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 28 May 2014 - 02:35 PM

Hello,

 

My Dell INspiron 660 is running Windows 8.1.  MBAM has found a few threats and deleted.  My machine is still running very slow and having problems with apps and programs, ex. not loading, taking too long, crashing completely, (Not Responding) at the top of the window, etc..  I tried downloading iTunes from Firefox.  It would just disappear.  Google Chrome was the main culprit of the infected registry files MBAM found.  I have deleted both Firefox and Google Chrome.

 

I still cannot run DDS.  I get dialogue box: Cannot run DDS in "Compatibility Mode".

 

attached is view of error.

 

 

 

Please Help

 

Hazel

Attached Files


Edited by Poweroo, 28 May 2014 - 02:44 PM.


BC AdBot (Login to Remove)

 


#2 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 28 May 2014 - 06:06 PM

Finally able to run DDS.

 

Please advise.

 

 

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 11.0.9600.17037 BrowserJavaVersion: 10.55.2

Run by Janis at 17:18:06 on 2014-05-28

Microsoft Windows 8.1 6.3.9600.0.1252.1.1033.18.3968.2177 [GMT -5:00]

.

AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost.exe -k DcomLaunch

C:\WINDOWS\system32\svchost.exe -k RPCSS

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\system32\dwm.exe

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\System32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Cobian Backup 11\cbVSCService11.exe

C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe

C:\WINDOWS\system32\dashost.exe

C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

C:\Program Files\CyberLink\Shared files\RichVideo64.exe

C:\Program Files (x86)\ShadowExplorer\sesvc.exe

C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\System32\WUDFHost.exe

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\WUDFHost.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

C:\WINDOWS\Explorer.EXE

C:\Windows\System32\skydrive.exe

C:\WINDOWS\system32\taskhostex.exe

c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe

c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

C:\Windows\System32\igfxpers.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe

C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe

C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe

C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe

C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Citrix\ICA Client\redirector.exe

C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe

C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe

C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe

C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe

C:\Windows\System32\SettingSyncHost.exe

C:\Program Files\Windows Defender\MpCmdRun.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\iTunes\iTunes.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ATH.exe

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MDCrashReportTool.exe

C:\Program Files\WindowsApps\Microsoft.BingMaps_2.1.2922.2139_x64__8wekyb3d8bbwe\Map.exe

C:\Windows\System32\RuntimeBroker.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxps://duckduckgo.com/

mStart Page = hxxp://www.google.com

mWinlogon: Userinit = userinit.exe,

BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll

BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL

BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll

uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

uRun: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"

uRun: [AdobeBridge] <no file>

uRunOnce: [Application Restart #0] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --appletID=HomePanel_BL --appletVersion=1.0 --mode=LBS --helperBridgeName={C8E439FC-2439-4F36-BF94-32B09DA20A8B} --lbsWorkflowID={1011F35D-59BB-4FEE-B100-4278972018DE} --aamHelperPipeName="{C8E439FC-2439-4F36-BF94-32B09DA20A8B}" --accPipeName="{14F6D6F7-E293-42B0-B9A1-F7F62EBA9ED2}" --acccUpdated="true" --mode="update" --selfDelete="C:\Users\Janis\AppData\Local\Temp\CreativeCloudSet-Up.exe" --shouldLaunchACC="false" --workflowId="{1011F35D-59BB-4FEE-B100-4278972018DE}" /RestartByRestartManager:8F781A13-F2E3-44cc-A61F-0FD985A41795

mRun: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true

mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [BingDesktop] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey

mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup

mRun: [Redirector] "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

StartupFolder: C:\Users\Janis\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: NoDrives = dword:0

IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html

IE: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4

IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3

IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1

IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0

IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

Trusted Zone: dell.com

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab

TCP: NameServer = 192.168.1.254

TCP: Interfaces\{E2108107-1110-42A0-97D1-53BCB90163C8} : DHCPNameServer = 192.168.1.254

Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

SSODL: WebCheck - <orphaned>

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-mStart Page = hxxp://www.google.com

x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

x64-BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll

x64-BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL

x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

x64-BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll

x64-TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll

x64-Run: [Logitech Download Assistant] C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\LogiLDA.dll,LogiFetch

x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming

x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

x64-Run: [IgfxTray] "C:\WINDOWS\System32\igfxtray.exe"

x64-Run: [HotKeysCmds] "C:\WINDOWS\System32\hkcmd.exe"

x64-Run: [Persistence] "C:\WINDOWS\System32\igfxpers.exe"

x64-mPolicies-Explorer: NoDrives = dword:0

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

x64-Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>

x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

x64-Notify: igfxcui - igfxdev.dll

x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll

x64-SSODL: WebCheck - <orphaned>

x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Janis\AppData\Roaming\Mozilla\Firefox\Profiles\depe10tp.default\

FF - prefs.js: browser.search.selectedEngine - DuckDuckGo

FF - prefs.js: browser.startup.homepage - hxxps://duckduckgo.com/|https://www.facebook.com/|https://ecampus.phoenix.edu/portal/portal/public/login.aspx

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll

FF - plugin: C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect32.dll

FF - plugin: C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect64.dll

FF - plugin: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll

FF - plugin: C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll

FF - plugin: C:\Program Files (x86)\Citrix\ICA Client\npURLInterceptorPlugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll

FF - plugin: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll

.

============= SERVICES / DRIVERS ===============

.

R0 intelpep;Intel® Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2014-1-4 39768]

R0 PxHlpa64;PxHlpa64;C:\WINDOWS\System32\drivers\PxHlpa64.sys [2014-4-6 56336]

R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2014-4-29 157016]

R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2013-8-22 76800]

R1 ctxusbm;Citrix USB Monitor Driver;C:\WINDOWS\System32\drivers\ctxusbm.sys [2013-6-4 95152]

R2 AdobeActiveFileMonitor12.0;Adobe Active File Monitor V12;C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [2013-9-25 181152]

R2 cbVSCService11;Cobian Backup 11 Volume Shadow Copy Requester;C:\Program Files\Cobian Backup 11\cbVSCService11.exe [2013-11-29 67584]

R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc);C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [2013-1-1 14760]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-5-21 1809720]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-5-21 857912]

R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2013-11-2 390672]

R2 sesvc;ShadowExplorer Service;C:\Program Files (x86)\ShadowExplorer\sesvc.exe [2014-5-12 9216]

R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-14 27032]

R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\WINDOWS\System32\drivers\LEqdUsb.sys [2013-5-23 77592]

R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\WINDOWS\System32\drivers\LHidEqd.sys [2013-5-23 13080]

R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\drivers\mbam.sys [2013-10-29 25816]

R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [2014-5-21 119512]

R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\WINDOWS\System32\drivers\mwac.sys [2014-5-21 63192]

R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2013-8-22 37768]

R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2013-8-22 16384]

R3 RTL8168;Realtek 8168 NT Driver;C:\WINDOWS\System32\drivers\Rt630x64.sys [2013-8-22 591360]

R3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2014-5-14 123224]

R3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2014-5-14 347880]

R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2013-8-22 230912]

S2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2013-10-25 173272]

S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2013-8-22 782176]

S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2013-8-22 37768]

S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2013-8-22 37768]

S3 athur;Atheros AR9271 Wireless Network Adapter Service;C:\WINDOWS\System32\drivers\athurx.sys [2014-3-7 1724416]

S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2013-8-22 17624]

S3 c2wts;Claims to Windows Token Service;C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2014-2-9 5632]

S3 iaLPSSi_GPIO;Intel® Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2013-8-22 24568]

S3 iaLPSSi_I2C;Intel® Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2013-8-22 99320]

S3 iaStorAV;Intel® SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2013-8-22 651248]

S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\WINDOWS\System32\ieetwcollector.exe [2014-4-28 111616]

S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\WINDOWS\System32\drivers\intelaud.sys [2013-12-14 38296]

S3 lfsvc;Windows Location Framework Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2013-8-22 37768]

S3 LSI_SAS3;LSI_SAS3;C:\WINDOWS\System32\drivers\lsi_sas3.sys [2013-8-22 81760]

S3 Netaapl;Apple Mobile Device Ethernet Service;C:\WINDOWS\System32\drivers\netaapl64.sys [2013-7-25 23040]

S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc63.sys [2013-8-22 87040]

S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2014-4-29 924504]

S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2013-8-22 37768]

S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2014-1-4 146776]

S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2013-8-22 37768]

S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2013-11-14 57176]

S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-8-22 119808]

S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2013-8-22 26976]

S3 USBAAPL64;Apple Mobile USB Driver;C:\WINDOWS\System32\drivers\usbaapl64.sys [2012-12-13 54784]

S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2013-8-22 37768]

S3 VsEtwService120;Visual Studio ETW Event Collection Service;C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2013-10-5 87728]

S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2013-8-22 37768]

S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2013-8-22 37768]

.

=============== File Associations ===============

.

FileExt: .txt: textfile="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [UserChoice]

FileExt: .ini: inifile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]

FileExt: .js: JSFile="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe","%1"

ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\dreamweaver.exe", "%1"

.

=============== Created Last 30 ================

.

2014-05-28 21:27:27 33240 ----a-w- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys

2014-05-28 21:26:39 -------- d-----w- C:\Program Files\iPod

2014-05-28 21:26:38 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2014-05-28 21:26:38 -------- d-----w- C:\Program Files\iTunes

2014-05-28 21:25:19 112616784 ----a-w- C:\Users\Janis\iTunes64Setup.exe

2014-05-28 19:11:43 -------- d-----w- C:\Program Files (x86)\iTunes

2014-05-28 15:34:46 10702536 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{26D55114-CC8F-43BC-A927-85B759A75DDA}\mpengine.dll

2014-05-27 18:24:26 -------- d-----w- C:\FRST

2014-05-27 11:35:41 10702536 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll

2014-05-26 20:09:08 258224 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10240.bin

2014-05-25 13:46:24 1031560 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9588A8C4-8058-420D-B6A4-D1A4988C84AE}\gapaengine.dll

2014-05-21 20:00:32 119512 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys

2014-05-21 19:59:46 88280 ----a-w- C:\WINDOWS\System32\drivers\mbamchameleon.sys

2014-05-21 19:59:46 63192 ----a-w- C:\WINDOWS\System32\drivers\mwac.sys

2014-05-21 19:59:46 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-05-16 23:14:49 -------- d-----w- C:\Users\Janis\AppData\Roaming\Profiles

2014-05-16 23:14:49 -------- d-----w- C:\Users\Janis\AppData\Roaming\Crash Reports

2014-05-16 23:14:49 -------- d-----w- C:\Users\Janis\AppData\Local\Profiles

2014-05-15 20:55:49 -------- d-----w- C:\AdwCleaner

2014-05-15 20:37:58 536576 ----a-w- C:\WINDOWS\SysWow64\sqlite3.dll

2014-05-14 14:24:41 693240 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe

2014-05-14 14:24:41 105464 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl

2014-05-14 10:10:52 26784 ----a-w- C:\WINDOWS\SysWow64\mrt100.dll

2014-05-14 10:10:51 86688 ----a-w- C:\WINDOWS\System32\mrt_map.dll

2014-05-14 10:10:51 80032 ----a-w- C:\WINDOWS\SysWow64\mrt_map.dll

2014-05-14 10:10:51 28320 ----a-w- C:\WINDOWS\System32\mrt100.dll

2014-05-12 20:11:32 -------- d-sh--w- C:\Users\Janis\AppData\Local\EmieUserList

2014-05-12 20:11:32 -------- d-sh--w- C:\Users\Janis\AppData\Local\EmieSiteList

2014-05-12 18:41:54 -------- d-----w- C:\Users\Janis\AppData\Roaming\www.shadowexplorer.com

2014-05-12 18:41:37 -------- d-----w- C:\Program Files (x86)\ShadowExplorer

2014-05-12 18:37:36 778936 ----a-w- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll

2014-05-12 18:37:36 35480 ----a-w- C:\WINDOWS\SysWow64\TsWpfWrp.exe

2014-05-12 18:37:36 102608 ----a-w- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll

2014-05-12 18:37:35 35480 ----a-w- C:\WINDOWS\System32\TsWpfWrp.exe

2014-05-12 18:37:35 124112 ----a-w- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll

2014-05-12 18:37:35 1166520 ----a-w- C:\WINDOWS\System32\PresentationNative_v0300.dll

2014-05-12 18:36:25 -------- d--h--r- C:\AHCache

2014-05-02 15:38:05 2724864 ----a-w- C:\WINDOWS\SysWow64\mshtml.tlb

2014-05-02 15:38:03 2724864 ----a-w- C:\WINDOWS\System32\mshtml.tlb

2014-04-30 00:51:21 2846208 ----a-w- C:\Users\Janis\bl_pixie_dust_trails.exe

2014-04-29 12:56:56 84992 ----a-w- C:\WINDOWS\System32\drivers\en-US\ntfs.sys.mui

2014-04-29 12:45:59 98816 ----a-w- C:\WINDOWS\SysWow64\drvinst.exe

2014-04-29 12:43:41 811696 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe

2014-04-29 12:43:41 809648 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2014-04-29 12:43:39 2678784 ----a-w- C:\WINDOWS\System32\SettingsHandlers.dll

2014-04-29 12:38:59 2144984 ----a-w- C:\WINDOWS\SysWow64\mfcore.dll

2014-04-29 12:37:59 881616 ----a-w- C:\WINDOWS\System32\mfplat.dll

2014-04-29 12:36:59 505344 ----a-w- C:\WINDOWS\System32\VAN.dll

2014-04-29 12:35:59 94560 ----a-w- C:\WINDOWS\System32\bcd.dll

2014-04-29 12:34:59 370176 ----a-w- C:\WINDOWS\SysWow64\winspool.drv

2014-04-29 04:15:41 233912 ----a-w- C:\WINDOWS\System32\mfps.dll

2014-04-29 04:15:33 48640 ----a-w- C:\WINDOWS\System32\ieetwproxystub.dll

2014-04-29 04:15:33 4096 ----a-w- C:\WINDOWS\System32\ieetwcollectorres.dll

2014-04-29 04:15:33 111616 ----a-w- C:\WINDOWS\System32\ieetwcollector.exe

2014-04-29 04:15:32 51200 ----a-w- C:\WINDOWS\SysWow64\ieetwproxystub.dll

2014-04-29 04:15:32 139264 ----a-w- C:\WINDOWS\System32\ieUnatt.exe

2014-04-29 04:15:32 112128 ----a-w- C:\WINDOWS\SysWow64\ieUnatt.exe

2014-04-29 04:15:31 66048 ----a-w- C:\WINDOWS\System32\iesetup.dll

.

==================== Find3M ====================

.

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmpC847D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmpAD47D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmpA327D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmp8927D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmp6E27D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmp3637D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmp1B37D.FOT

2014-04-25 22:42:40 1409 ----a-w- C:\WINDOWS\SysWow64\tmp0047D.FOT

2014-04-18 09:14:19 2441216 ----a-w- C:\WINDOWS\apppatch\AcGenral.dll

2014-04-15 07:34:10 1070232 ----a-w- C:\WINDOWS\SysWow64\MSCOMCTL.OCX

2014-04-15 01:13:43 96168 ----a-w- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll

2014-04-11 10:03:36 555736 ----a-w- C:\WINDOWS\System32\twinapi.appcore.dll

2014-04-11 08:25:54 419928 ----a-w- C:\WINDOWS\SysWow64\twinapi.appcore.dll

2014-04-11 05:53:36 79872 ----a-w- C:\WINDOWS\System32\WSReset.exe

2014-04-11 03:54:45 201728 ----a-w- C:\WINDOWS\System32\ubpm.dll

2014-04-11 03:36:33 11792384 ----a-w- C:\WINDOWS\SysWow64\twinui.dll

2014-04-11 03:24:51 13288960 ----a-w- C:\WINDOWS\System32\twinui.dll

2014-04-11 03:06:13 31232 ----a-w- C:\WINDOWS\SysWow64\wuapp.exe

2014-04-11 03:05:40 123904 ----a-w- C:\WINDOWS\SysWow64\wuwebv.dll

2014-04-11 03:05:20 189952 ----a-w- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll

2014-04-11 03:02:49 35328 ----a-w- C:\WINDOWS\System32\wuapp.exe

2014-04-11 03:02:08 249344 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.TestingFramework.dll

2014-04-11 03:01:46 137728 ----a-w- C:\WINDOWS\System32\wuwebv.dll

2014-04-11 03:00:47 80896 ----a-w- C:\WINDOWS\SysWow64\wudriver.dll

2014-04-11 02:57:31 190976 ----a-w- C:\WINDOWS\System32\storewuauth.dll

2014-04-11 02:56:32 381440 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll

2014-04-11 02:55:36 93696 ----a-w- C:\WINDOWS\System32\wudriver.dll

2014-04-11 02:46:04 1705472 ----a-w- C:\WINDOWS\System32\wucltux.dll

2014-04-11 02:36:22 828928 ----a-w- C:\WINDOWS\SysWow64\twinui.appcore.dll

2014-04-11 02:34:19 754688 ----a-w- C:\WINDOWS\SysWow64\WSShared.dll

2014-04-11 02:29:16 1054208 ----a-w- C:\WINDOWS\System32\twinui.appcore.dll

2014-04-11 02:25:45 921088 ----a-w- C:\WINDOWS\System32\WSShared.dll

2014-04-03 14:50:58 25816 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys

2014-04-01 20:36:28 1409 ----a-w- C:\WINDOWS\SysWow64\tmpF1242.FOT

2014-04-01 20:36:28 1409 ----a-w- C:\WINDOWS\SysWow64\tmpD6242.FOT

2014-04-01 20:36:28 1409 ----a-w- C:\WINDOWS\SysWow64\tmpBC242.FOT

2014-04-01 20:36:28 1409 ----a-w- C:\WINDOWS\SysWow64\tmp91342.FOT

2014-04-01 20:36:28 1409 ----a-w- C:\WINDOWS\SysWow64\tmp1D142.FOT

2014-04-01 20:36:27 1409 ----a-w- C:\WINDOWS\SysWow64\tmp7E042.FOT

2014-04-01 20:36:27 1409 ----a-w- C:\WINDOWS\SysWow64\tmp52142.FOT

2014-04-01 20:36:27 1409 ----a-w- C:\WINDOWS\SysWow64\tmp38142.FOT

2014-03-24 02:30:57 257880 ----a-w- C:\WINDOWS\System32\drivers\WdFilter.sys

2014-03-24 02:30:57 123224 ----a-w- C:\WINDOWS\System32\drivers\WdNisDrv.sys

2014-03-24 02:27:03 35856 ----a-w- C:\WINDOWS\System32\drivers\WdBoot.sys

2014-03-20 03:41:24 2013016 ----a-w- C:\WINDOWS\System32\drivers\ntfs.sys

2014-03-20 03:41:20 376152 ----a-w- C:\WINDOWS\System32\drivers\clfs.sys

2014-03-20 03:40:33 1112536 ----a-w- C:\WINDOWS\System32\KernelBase.dll

2014-03-20 01:29:27 4268544 ----a-w- C:\WINDOWS\System32\SyncEngine.dll

2014-03-20 00:53:21 950784 ----a-w- C:\WINDOWS\System32\ReAgent.dll

2014-03-20 00:48:30 201216 ----a-w- C:\WINDOWS\System32\ReInfo.dll

2014-03-19 23:39:38 800256 ----a-w- C:\WINDOWS\SysWow64\ReAgent.dll

2014-03-19 23:36:36 172544 ----a-w- C:\WINDOWS\SysWow64\ReInfo.dll

2014-03-19 20:23:14 76496 ----a-w- C:\WINDOWS\System32\drivers\dc3d.sys

2014-03-19 20:23:14 50896 ----a-w- C:\WINDOWS\System32\drivers\point64.sys

2014-03-19 07:13:45 836096 ----a-w- C:\WINDOWS\SysWow64\KernelBase.dll

2014-03-19 05:57:41 621568 ----a-w- C:\WINDOWS\System32\MDMAgent.exe

2014-03-19 05:50:30 79360 ----a-w- C:\WINDOWS\System32\w32tm.exe

2014-03-19 05:31:29 1656832 ----a-w- C:\WINDOWS\System32\GdiPlus.dll

2014-03-19 05:20:42 70656 ----a-w- C:\WINDOWS\SysWow64\w32tm.exe

2014-03-19 05:08:11 1351168 ----a-w- C:\WINDOWS\SysWow64\GdiPlus.dll

2014-03-19 04:41:59 721408 ----a-w- C:\WINDOWS\System32\SkyDriveTelemetry.dll

2014-03-19 04:21:25 418816 ----a-w- C:\WINDOWS\System32\wbem\MDMSettingsProv.dll

2014-03-19 04:17:44 872448 ----a-w- C:\WINDOWS\System32\SkyDrive.exe

2014-03-13 12:35:24 157016 ----a-w- C:\WINDOWS\System32\drivers\wof.sys

2014-03-13 07:42:24 308224 ----a-w- C:\WINDOWS\System32\wusa.exe

2014-03-13 06:51:36 305152 ----a-w- C:\WINDOWS\SysWow64\wusa.exe

2014-03-13 06:08:05 442880 ----a-w- C:\WINDOWS\apppatch\AcSpecfc.dll

2014-03-11 15:45:44 99328 ----a-w- C:\WINDOWS\System32\BdeHdCfgLib.dll

2014-03-11 15:18:33 1015808 ----a-w- C:\WINDOWS\System32\aclui.dll

2014-03-11 15:02:25 794112 ----a-w- C:\WINDOWS\System32\fvewiz.dll

2014-03-11 14:28:41 887296 ----a-w- C:\WINDOWS\SysWow64\aclui.dll

2014-03-11 14:25:32 100352 ----a-w- C:\WINDOWS\System32\BitLockerDeviceEncryption.exe

2014-03-11 14:05:16 210944 ----a-w- C:\WINDOWS\System32\fveapibase.dll

2014-03-11 14:03:17 339456 ----a-w- C:\WINDOWS\System32\bdesvc.dll

2014-03-11 14:00:28 720896 ----a-w- C:\WINDOWS\System32\fveapi.dll

2014-03-11 13:21:37 918528 ----a-w- C:\WINDOWS\System32\MrmCoreR.dll

2014-03-11 13:02:13 629760 ----a-w- C:\WINDOWS\SysWow64\MrmCoreR.dll

2014-03-11 12:42:54 2641920 ----a-w- C:\WINDOWS\System32\authui.dll

2014-03-11 12:35:11 2317824 ----a-w- C:\WINDOWS\SysWow64\authui.dll

2014-03-10 22:26:26 6123336 ----a-w- C:\Users\Janis\HPPSdr.exe

2014-03-08 20:47:48 180056 ----a-w- C:\WINDOWS\System32\drivers\ksecpkg.sys

2014-03-08 20:47:17 565536 ----a-w- C:\WINDOWS\System32\drivers\cng.sys

2014-03-08 20:40:16 136024 ----a-w- C:\WINDOWS\System32\drivers\wfplwfs.sys

2014-03-08 20:38:31 1542768 ----a-w- C:\WINDOWS\System32\ole32.dll

2014-03-08 20:35:45 467800 -c--a-w- C:\WINDOWS\System32\drivers\USBHUB3.SYS

2014-03-08 20:35:45 337752 ----a-w- C:\WINDOWS\System32\drivers\Classpnp.sys

2014-03-08 15:29:39 356848 ----a-w- C:\WINDOWS\System32\dcomp.dll

2014-03-08 15:29:39 1339240 ----a-w- C:\WINDOWS\System32\gdi32.dll

2014-03-08 11:34:53 1095488 ----a-w- C:\WINDOWS\SysWow64\ole32.dll

2014-03-08 09:34:24 731648 ----a-w- C:\WINDOWS\System32\adtschema.dll

2014-03-08 09:02:24 83968 ----a-w- C:\WINDOWS\System32\sxproxy.dll

2014-03-08 08:44:42 731648 ----a-w- C:\WINDOWS\SysWow64\adtschema.dll

2014-03-08 08:33:33 271872 ----a-w- C:\WINDOWS\System32\spp.dll

2014-03-08 08:25:39 40448 ----a-w- C:\WINDOWS\System32\SetNetworkLocation.dll

2014-03-08 08:12:05 33792 ----a-w- C:\WINDOWS\SysWow64\sxproxy.dll

2014-03-08 07:53:52 1843712 ----a-w- C:\WINDOWS\System32\Display.dll

2014-03-08 07:51:14 334848 ----a-w- C:\WINDOWS\System32\MDEServer.exe

2014-03-08 07:47:39 222720 ----a-w- C:\WINDOWS\SysWow64\spp.dll

2014-03-08 07:12:40 1816576 ----a-w- C:\WINDOWS\SysWow64\Display.dll

2014-03-08 07:09:34 1411584 ----a-w- C:\WINDOWS\System32\lsasrv.dll

.

============= FINISH: 17:18:57.15 ===============

Attached Files



#3 TheShooter93

TheShooter93

    Cody


  • Malware Response Team
  • 4,792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orlando, Florida
  • Local time:03:25 AM

Posted 01 June 2014 - 11:38 AM

Hello Poweroo,

My name is Cody and I'll be helping you clean up your computer. :)

I will reply to your posts as soon as possible -- typically within 24 hours. In turn, I ask that you please respond within 72 hours. If you know you will be away longer than that, I just ask for notice ahead of time.

Please do note any time differences between us. If I do not respond within 48 hours, feel free to send me a private message.

==========================================================================

Some points for you to keep in mind:
  • Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planned. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Do not attach logs or use code boxes, just copy and paste the text.
  • Periodically update me on the condition of your computer, and provide detail in every post.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • Once things seem to be working again, please do not abandon the thread. I will give an "all-clean" message at the very end with some additional information on how to stay malware-free.
  • Lastly, I would like to remind you that most members here are volunteers, and sometimes "real life" can get in the way of our malware hunt. I will notify you if I know I will need to be away for longer than 48 hours.
==========================================================================

Farbar Recovery Scan Tool (FRST)
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen.
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply

Edited by TheShooter93, 01 June 2014 - 11:40 AM.

CCNA R&SCCNA Security | Network+  |  B.S. - Information Technology | Cyber Security Engineer

If I am helping you and have not replied within 48 hours, please send me a private message.

 

 


#4 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 01 June 2014 - 02:48 PM

Please copy and paste the contents of both in your reply

Thank you for replying.  Below are the txt files.

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-06-2014 01
Ran by Janis (administrator) on MADRID on 01-06-2014 14:44:40
Running from C:\Users\Janis\Desktop
Platform: Windows 8.1 (Update 1) (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 11\cbVSCService11.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(www.shadowexplorer.com) C:\Program Files (x86)\ShadowExplorer\sesvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe
(Akamai Technologies, Inc.) C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Western Digital) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LogiAppBroker.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-10-25] (Microsoft Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499896 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1688008 2012-09-06] (Western Digital)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-05-09] (Western Digital Technologies, Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22415552 2014-04-25] (Google)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [HP Officejet 6500 E710n-z (NET)] => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22415552 2014-04-25] (Google)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [HP Officejet 6500 E710n-z (NET)] => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
Startup: C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://duckduckgo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6432042BC5D4CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.facebook.com/
http://www.twc.state.tx.us/ui/unemployment-benefits-services.html
https://ecampus.phoenix.edu/portal/portal/public/login.aspx
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {D5DCFB77-9A8D-419E-B4E8-C317C8B4E7AF} URL = https://duckduckgo.com/?q={searchTerms}
SearchScopes: HKCU - {D5DCFB77-9A8D-419E-B4E8-C317C8B4E7AF} URL = https://duckduckgo.com/?q={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Janis\AppData\Roaming\Mozilla\Firefox\Profiles\depe10tp.default
FF DefaultSearchEngine: DuckDuckGo
FF SelectedSearchEngine: DuckDuckGo
FF Homepage: https://duckduckgo.com/|https://www.facebook.com/|https://ecampus.phoenix.edu/portal/portal/public/login.aspx
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican - C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: adobe.com/AdobeExManCCDetect32 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect32.dll (Adobe Systems)
FF Plugin HKCU: adobe.com/AdobeExManCCDetect64 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect64.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Janis\AppData\Roaming\Mozilla\Firefox\Profiles\depe10tp.default\searchplugins\duckduckgo.xml
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-10-29]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-05-28]

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-28]
CHR Extension: (Google Drive) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-28]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-28]
CHR Extension: (YouTube) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-28]
CHR Extension: (Google Search) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-28]
CHR Extension: (Google Wallet) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-28]
CHR Extension: (Gmail) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-28]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]

==================== Services (Whitelisted) =================

S2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-10-25] (Microsoft Corp.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-02-09] (Microsoft Corporation)
R2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-08] (CobianSoft, Luis Cobian)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-01] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-09-04] ()
R2 sesvc; C:\Program Files (x86)\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-05-09] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [295800 2014-05-09] (Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-04] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-01] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-07-19] (Corel Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-02-22] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-04] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-01 14:42 - 2014-06-01 14:44 - 00028056 _____ () C:\Users\Janis\Desktop\FRST.txt
2014-06-01 14:41 - 2014-06-01 14:41 - 02067456 _____ (Farbar) C:\Users\Janis\Desktop\FRST64.exe
2014-05-30 06:52 - 2014-05-30 06:52 - 00000000 ____D () C:\Analytics
2014-05-30 06:51 - 2014-05-30 06:51 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Western Digital
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital_Technolog
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western Digital
2014-05-30 00:47 - 2014-05-30 00:48 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-05-30 00:47 - 2014-05-30 00:47 - 00292184 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dxwebsetup.exe
2014-05-30 00:46 - 2014-05-30 00:46 - 50449456 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dotNetFx40_Full_x86_x64.exe
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\WDCSAM
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\DIFX
2014-05-29 21:34 - 2014-05-29 21:35 - 00008192 _____ () C:\WINDOWS\SysWOW64\WDPABKP.dat
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Western Digital
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-05-29 21:29 - 2014-05-29 21:29 - 37257919 _____ () C:\Users\Janis\Downloads\WD_SmartWare_Installer_2.4.0.39.zip
2014-05-29 17:25 - 2014-05-29 17:25 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital
2014-05-29 17:24 - 2014-05-30 00:19 - 00029162 _____ () C:\WINDOWS\DPINST.LOG
2014-05-29 17:24 - 2014-05-29 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2014-05-29 17:24 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-05-29 17:24 - 2014-05-29 17:43 - 00001213 _____ () C:\Users\Janis\WD Security.lnk
2014-05-29 15:56 - 2014-05-29 17:15 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2014-05-29 15:52 - 2014-05-29 21:32 - 00000000 ____D () C:\ProgramData\Western Digital
2014-05-29 15:44 - 2014-05-29 15:44 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-MADRID-Microsoft-Windows-8.1-(64-bit).dat
2014-05-29 15:43 - 2014-05-29 15:43 - 00000000 ____D () C:\RegBackup
2014-05-29 08:45 - 2014-05-29 08:45 - 00002179 _____ () C:\Users\Janis\Tweaking.com - Windows Repair (All in One).lnk
2014-05-29 08:44 - 2014-05-29 08:44 - 05558808 _____ () C:\Users\Janis\tweaking.com_windows_repair_aio_setup.exe
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-05-28 16:28 - 2014-05-28 16:28 - 00001795 _____ () C:\Users\Janis\iTunes.lnk
2014-05-28 16:28 - 2014-05-28 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-28 16:27 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2014-05-28 16:26 - 2014-05-28 16:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-28 16:26 - 2014-05-28 16:27 - 00000000 ____D () C:\Program Files\iTunes
2014-05-28 16:26 - 2014-05-28 16:26 - 00000000 ____D () C:\Program Files\iPod
2014-05-28 16:25 - 2014-05-28 16:26 - 112616784 _____ (Apple Inc.) C:\Users\Janis\iTunes64Setup.exe
2014-05-28 16:12 - 2014-05-28 16:12 - 00001175 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00001163 _____ () C:\Users\Janis\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-28 16:05 - 2014-05-28 16:05 - 00002279 _____ () C:\Users\Janis\Google Chrome.lnk
2014-05-28 16:05 - 2014-05-28 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-28 15:25 - 2014-05-28 15:39 - 00002469 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-05-28 15:25 - 2014-05-28 15:39 - 00002230 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-05-28 15:25 - 2014-05-28 15:39 - 00002069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002160 _____ () C:\Users\Janis\Adobe FormsCentral.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002046 _____ () C:\Users\Janis\Adobe Acrobat XI Pro.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001333 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001321 _____ () C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-05-28 14:11 - 2014-05-28 16:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-27 13:24 - 2014-06-01 14:44 - 00000000 ____D () C:\FRST
2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Mozilla
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default User\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\browser
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\browser
2014-05-22 13:35 - 2014-05-06 21:28 - 08990919 _____ () C:\Users\Default\AppData\Roaming\omni.ja
2014-05-22 13:35 - 2014-05-06 21:28 - 08990919 _____ () C:\Users\Default User\AppData\Roaming\omni.ja
2014-05-22 13:35 - 2014-05-06 21:28 - 00002053 _____ () C:\Users\Default\AppData\Roaming\precomplete
2014-05-22 13:35 - 2014-05-06 21:28 - 00002053 _____ () C:\Users\Default User\AppData\Roaming\precomplete
2014-05-22 13:35 - 2014-05-06 21:27 - 23516272 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\xul.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 23516272 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\xul.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 03839088 _____ () C:\Users\Default\AppData\Roaming\mozjs.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 03839088 _____ () C:\Users\Default User\AppData\Roaming\mozjs.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 01795696 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nss3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 01795696 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nss3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00647280 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libGLESv2.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00647280 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libGLESv2.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00403568 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssckbi.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00403568 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssckbi.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00277104 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\updater.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00277104 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\updater.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00198232 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\maintenanceservice_installer.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00198232 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\maintenanceservice_installer.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00170960 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\webapp-uninstaller.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00170960 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\webapp-uninstaller.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00152688 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\softokn3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00152688 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\softokn3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00142448 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozglue.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00142448 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozglue.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00119408 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\maintenanceservice.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00119408 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\maintenanceservice.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00093808 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\webapprt-stub.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00093808 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\webapprt-stub.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00092784 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssdbm3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00092784 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssdbm3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00028272 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-hang-ui.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00028272 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-hang-ui.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00018544 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-container.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00018544 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-container.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00017008 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozalloc.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00017008 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozalloc.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default\AppData\Roaming\softokn3.chk
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default\AppData\Roaming\nssdbm3.chk
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\softokn3.chk
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\nssdbm3.chk
2014-05-22 13:35 - 2014-05-06 21:26 - 10594416 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icudt52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 10594416 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icudt52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 04881520 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\gkmedias.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 04881520 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\gkmedias.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 01266800 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuin52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 01266800 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuin52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00965232 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuuc52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00965232 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuuc52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00305264 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\freebl3.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00305264 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\freebl3.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00117360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\crashreporter.exe
2014-05-22 13:35 - 2014-05-06 21:26 - 00117360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\crashreporter.exe
2014-05-22 13:35 - 2014-05-06 21:26 - 00075376 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\breakpadinjector.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00075376 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\breakpadinjector.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00053360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libEGL.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00053360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libEGL.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00020080 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\AccessibleMarshal.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00020080 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\AccessibleMarshal.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00000899 _____ () C:\Users\Default\AppData\Roaming\freebl3.chk
2014-05-22 13:35 - 2014-05-06 21:26 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\freebl3.chk
2014-05-22 13:35 - 2014-05-06 21:08 - 00001245 _____ () C:\Users\Default\AppData\Roaming\updater.ini
2014-05-22 13:35 - 2014-05-06 21:08 - 00001245 _____ () C:\Users\Default User\AppData\Roaming\updater.ini
2014-05-22 13:35 - 2014-05-06 21:08 - 00000099 _____ () C:\Users\Default\AppData\Roaming\dependentlibs.list
2014-05-22 13:35 - 2014-05-06 21:08 - 00000099 _____ () C:\Users\Default User\AppData\Roaming\dependentlibs.list
2014-05-22 13:35 - 2014-05-06 19:33 - 00000143 _____ () C:\Users\Default\AppData\Roaming\platform.ini
2014-05-22 13:35 - 2014-05-06 19:33 - 00000143 _____ () C:\Users\Default User\AppData\Roaming\platform.ini
2014-05-22 13:35 - 2014-05-06 19:15 - 00000671 _____ () C:\Users\Default\AppData\Roaming\application.ini
2014-05-22 13:35 - 2014-05-06 19:15 - 00000671 _____ () C:\Users\Default User\AppData\Roaming\application.ini
2014-05-22 13:35 - 2014-05-06 19:11 - 00000646 _____ () C:\Users\Default\AppData\Roaming\removed-files
2014-05-22 13:35 - 2014-05-06 19:11 - 00000646 _____ () C:\Users\Default User\AppData\Roaming\removed-files
2014-05-22 13:35 - 2014-05-06 17:57 - 00000132 _____ () C:\Users\Default\AppData\Roaming\update-settings.ini
2014-05-22 13:35 - 2014-05-06 17:57 - 00000132 _____ () C:\Users\Default User\AppData\Roaming\update-settings.ini
2014-05-22 13:35 - 2014-05-06 17:50 - 00004003 _____ () C:\Users\Default\AppData\Roaming\crashreporter.ini
2014-05-22 13:35 - 2014-05-06 17:50 - 00004003 _____ () C:\Users\Default User\AppData\Roaming\crashreporter.ini
2014-05-22 13:35 - 2010-05-26 13:41 - 02106216 _____ (Microsoft Corporation) C:\Users\Default\AppData\Roaming\D3DCompiler_43.dll
2014-05-22 13:35 - 2010-05-26 13:41 - 02106216 _____ (Microsoft Corporation) C:\Users\Default User\AppData\Roaming\D3DCompiler_43.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00770384 _____ (Microsoft Corporation) C:\Users\Default\AppData\Roaming\msvcr100.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00770384 _____ (Microsoft Corporation) C:\Users\Default User\AppData\Roaming\msvcr100.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00421200 _____ (Microsoft Corporation) C:\Users\Default\AppData\Roaming\msvcp100.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00421200 _____ (Microsoft Corporation) C:\Users\Default User\AppData\Roaming\msvcp100.dll
2014-05-21 15:00 - 2014-06-01 10:16 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-21 14:59 - 2014-05-31 10:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-21 14:59 - 2014-05-31 10:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-21 14:59 - 2014-05-21 14:59 - 00001118 _____ () C:\Users\Janis\Malwarebytes Anti-Malware.lnk
2014-05-21 14:59 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-21 14:59 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-05-16 18:14 - 2014-05-16 18:14 - 00000111 _____ () C:\Users\Janis\AppData\Roaming\profiles.ini
2014-05-16 18:14 - 2014-05-16 18:14 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Crash Reports
2014-05-15 15:55 - 2014-05-16 08:57 - 00000000 ____D () C:\AdwCleaner
2014-05-15 15:37 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-05-14 09:24 - 2014-05-01 15:30 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-05-14 09:24 - 2014-05-01 15:30 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 09:14 - 2014-05-14 09:18 - 00001041 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-05-14 09:14 - 2014-05-14 09:18 - 00001035 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\Program Files\WinZip
2014-05-14 09:12 - 2014-05-14 09:13 - 87525736 _____ () C:\Users\Janis\Downloads\winzip180.exe
2014-05-14 05:11 - 2014-05-05 23:40 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-14 05:11 - 2014-05-05 22:25 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-14 05:11 - 2014-05-05 22:00 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-14 05:11 - 2014-05-05 21:10 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-14 05:11 - 2014-04-11 05:03 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-14 05:11 - 2014-04-11 05:03 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-05-14 05:11 - 2014-04-11 03:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-05-14 05:11 - 2014-04-11 01:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-05-14 05:11 - 2014-04-11 00:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-05-14 05:11 - 2014-04-11 00:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-05-14 05:11 - 2014-04-10 22:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-05-14 05:11 - 2014-04-10 22:36 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-05-14 05:11 - 2014-04-10 22:24 - 13288960 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-05-14 05:11 - 2014-04-10 22:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-05-14 05:11 - 2014-04-10 22:05 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-14 05:11 - 2014-04-10 22:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-05-14 05:11 - 2014-04-10 22:02 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-14 05:11 - 2014-04-10 22:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-05-14 05:11 - 2014-04-10 22:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-05-14 05:11 - 2014-04-10 22:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-05-14 05:11 - 2014-04-10 21:59 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-05-14 05:11 - 2014-04-10 21:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-05-14 05:11 - 2014-04-10 21:56 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-14 05:11 - 2014-04-10 21:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-05-14 05:11 - 2014-04-10 21:53 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-05-14 05:11 - 2014-04-10 21:52 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-05-14 05:11 - 2014-04-10 21:46 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-05-14 05:11 - 2014-04-10 21:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-05-14 05:11 - 2014-04-10 21:34 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-05-14 05:11 - 2014-04-10 21:29 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-05-14 05:11 - 2014-04-10 21:25 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-05-14 05:11 - 2014-03-23 21:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-05-14 05:11 - 2014-03-23 21:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-05-14 05:11 - 2014-03-23 21:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-05-14 05:11 - 2014-03-13 02:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-05-14 05:11 - 2014-03-13 01:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-05-14 05:10 - 2014-04-08 17:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-05-14 05:10 - 2014-04-08 17:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-05-14 05:10 - 2014-04-08 13:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-05-14 05:10 - 2014-04-08 13:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-05-14 05:10 - 2014-03-27 04:12 - 21225584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-05-14 05:10 - 2014-03-27 02:48 - 18679728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieUserList
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieSiteList
2014-05-12 14:50 - 2014-05-12 14:50 - 00000933 _____ () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\winzip18.lnk
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\www.shadowexplorer.com
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Program Files (x86)\ShadowExplorer
2014-05-12 13:37 - 2013-08-02 23:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-05-12 13:37 - 2013-08-02 23:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-05-12 13:36 - 2014-05-12 13:36 - 00000000 ___RD () C:\AHCache
2014-05-02 10:38 - 2014-05-02 10:38 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-05-02 10:38 - 2014-05-02 10:38 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

==================== One Month Modified Files and Folders =======

2014-06-01 14:44 - 2014-06-01 14:42 - 00028056 _____ () C:\Users\Janis\Desktop\FRST.txt
2014-06-01 14:44 - 2014-05-27 13:24 - 00000000 ____D () C:\FRST
2014-06-01 14:44 - 2014-01-04 20:10 - 00000000 ____D () C:\Users\Janis\AppData\Local\Temp
2014-06-01 14:41 - 2014-06-01 14:41 - 02067456 _____ (Farbar) C:\Users\Janis\Desktop\FRST64.exe
2014-06-01 14:41 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-06-01 14:40 - 2014-01-06 09:30 - 00003918 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F479694E-3CB6-48FE-A07F-9CEDC2F63A35}
2014-06-01 14:39 - 2014-01-04 20:22 - 01421459 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-01 10:16 - 2014-05-21 15:00 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-31 19:51 - 2013-10-29 12:41 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-31 19:28 - 2014-01-25 09:59 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-31 12:49 - 2013-10-29 11:32 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Adobe
2014-05-31 11:09 - 2013-10-29 11:40 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2842308386-1212296173-2251888456-1001
2014-05-31 10:32 - 2014-05-21 14:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-31 10:32 - 2014-05-21 14:59 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-31 03:51 - 2013-10-29 12:41 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-30 15:02 - 2014-01-04 20:10 - 00000000 ____D () C:\Users\Janis
2014-05-30 15:02 - 2013-11-24 21:21 - 00000000 ____D () C:\Users\Janis\Ref
2014-05-30 06:52 - 2014-05-30 06:52 - 00000000 ____D () C:\Analytics
2014-05-30 06:51 - 2014-05-30 06:51 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Western Digital
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital_Technolog
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western Digital
2014-05-30 00:48 - 2014-05-30 00:47 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-05-30 00:47 - 2014-05-30 00:47 - 00292184 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dxwebsetup.exe
2014-05-30 00:47 - 2014-03-07 21:59 - 00000000 ____D () C:\temp
2014-05-30 00:46 - 2014-05-30 00:46 - 50449456 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dotNetFx40_Full_x86_x64.exe
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\WDCSAM
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\DIFX
2014-05-30 00:19 - 2014-05-29 17:24 - 00029162 _____ () C:\WINDOWS\DPINST.LOG
2014-05-29 21:39 - 2013-11-14 02:28 - 00960608 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-29 21:36 - 2014-01-04 22:27 - 00000000 __RDO () C:\Users\Janis\SkyDrive
2014-05-29 21:35 - 2014-05-29 21:34 - 00008192 _____ () C:\WINDOWS\SysWOW64\WDPABKP.dat
2014-05-29 21:35 - 2013-11-14 02:20 - 00019244 _____ () C:\WINDOWS\PFRO.log
2014-05-29 21:35 - 2013-08-22 09:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-29 21:33 - 2014-05-29 17:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Western Digital
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-05-29 21:32 - 2014-05-29 17:24 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-05-29 21:32 - 2014-05-29 15:52 - 00000000 ____D () C:\ProgramData\Western Digital
2014-05-29 21:31 - 2014-02-09 23:37 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-29 21:29 - 2014-05-29 21:29 - 37257919 _____ () C:\Users\Janis\Downloads\WD_SmartWare_Installer_2.4.0.39.zip
2014-05-29 17:44 - 2013-08-22 08:25 - 01048576 ___SH () C:\WINDOWS\system32\config\BBI
2014-05-29 17:43 - 2014-05-29 17:24 - 00001213 _____ () C:\Users\Janis\WD Security.lnk
2014-05-29 17:25 - 2014-05-29 17:25 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital
2014-05-29 17:17 - 2013-08-22 09:44 - 08231328 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-29 17:15 - 2014-05-29 15:56 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2014-05-29 17:15 - 2012-07-26 02:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-05-29 16:42 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-05-29 16:36 - 2012-07-26 00:26 - 00000112 _____ () C:\WINDOWS\win.ini
2014-05-29 16:31 - 2013-12-15 18:45 - 00960544 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-05-29 15:44 - 2014-05-29 15:44 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-MADRID-Microsoft-Windows-8.1-(64-bit).dat
2014-05-29 15:43 - 2014-05-29 15:43 - 00000000 ____D () C:\RegBackup
2014-05-29 15:41 - 2013-08-22 09:46 - 00293336 _____ () C:\WINDOWS\setupact.log
2014-05-29 08:45 - 2014-05-29 08:45 - 00002179 _____ () C:\Users\Janis\Tweaking.com - Windows Repair (All in One).lnk
2014-05-29 08:44 - 2014-05-29 08:44 - 05558808 _____ () C:\Users\Janis\tweaking.com_windows_repair_aio_setup.exe
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-05-28 20:38 - 2013-11-01 18:24 - 00000000 ____D () C:\Users\Janis\Documents\Adobe
2014-05-28 20:17 - 2013-10-29 12:53 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-28 20:16 - 2013-10-29 12:55 - 00000000 ____D () C:\Users\Janis\AppData\Local\Adobe
2014-05-28 20:15 - 2013-10-29 12:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-28 20:08 - 2014-04-06 20:45 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\No Company Name
2014-05-28 20:08 - 2013-10-29 18:34 - 00000000 ____D () C:\Program Files\Adobe
2014-05-28 20:05 - 2013-10-29 12:56 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-05-28 16:28 - 2014-05-28 16:28 - 00001795 _____ () C:\Users\Janis\iTunes.lnk
2014-05-28 16:28 - 2014-05-28 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-28 16:27 - 2014-05-28 16:26 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-28 16:27 - 2014-05-28 16:26 - 00000000 ____D () C:\Program Files\iTunes
2014-05-28 16:27 - 2014-05-28 14:11 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-28 16:26 - 2014-05-28 16:26 - 00000000 ____D () C:\Program Files\iPod
2014-05-28 16:26 - 2014-05-28 16:25 - 112616784 _____ (Apple Inc.) C:\Users\Janis\iTunes64Setup.exe
2014-05-28 16:12 - 2014-05-28 16:12 - 00001175 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00001163 _____ () C:\Users\Janis\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-28 16:09 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-05-28 16:05 - 2014-05-28 16:05 - 00002279 _____ () C:\Users\Janis\Google Chrome.lnk
2014-05-28 16:05 - 2014-05-28 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-28 16:05 - 2013-10-29 12:41 - 00000000 ____D () C:\Users\Janis\AppData\Local\Google
2014-05-28 16:05 - 2013-10-29 12:41 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-28 16:01 - 2014-02-27 19:40 - 00000000 ____D () C:\Users\Janis\.nbi
2014-05-28 15:39 - 2014-05-28 15:25 - 00002469 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-05-28 15:39 - 2014-05-28 15:25 - 00002230 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-05-28 15:39 - 2014-05-28 15:25 - 00002069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002160 _____ () C:\Users\Janis\Adobe FormsCentral.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002046 _____ () C:\Users\Janis\Adobe Acrobat XI Pro.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001333 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001321 _____ () C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-05-28 14:47 - 2013-10-29 18:44 - 00000000 ___RD () C:\Users\Janis\Google Drive
2014-05-25 14:29 - 2013-10-29 16:23 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-05-25 13:44 - 2013-10-29 16:23 - 93223848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Mozilla
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default User\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\browser
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\browser
2014-05-21 14:59 - 2014-05-21 14:59 - 00001118 _____ () C:\Users\Janis\Malwarebytes Anti-Malware.lnk
2014-05-21 14:59 - 2013-10-29 18:18 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Malwarebytes
2014-05-21 14:59 - 2013-10-29 18:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-17 06:19 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-05-16 18:14 - 2014-05-16 18:14 - 00000111 _____ () C:\Users\Janis\AppData\Roaming\profiles.ini
2014-05-16 18:14 - 2014-05-16 18:14 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Crash Reports
2014-05-16 08:57 - 2014-05-15 15:55 - 00000000 ____D () C:\AdwCleaner
2014-05-15 16:11 - 2013-10-29 11:32 - 00000000 ___RD () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-15 15:52 - 2013-12-15 15:17 - 00000000 ____D () C:\Qoobox
2014-05-15 05:20 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-14 09:18 - 2014-05-14 09:14 - 00001041 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-05-14 09:18 - 2014-05-14 09:14 - 00001035 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-05-14 09:15 - 2014-04-07 12:47 - 00000000 ____D () C:\ProgramData\WinZip
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\Program Files\WinZip
2014-05-14 09:14 - 2013-08-22 10:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2014-05-14 09:13 - 2014-05-14 09:12 - 87525736 _____ () C:\Users\Janis\Downloads\winzip180.exe
2014-05-14 06:29 - 2013-10-29 11:42 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 06:27 - 2013-11-02 19:22 - 00000039 _____ () C:\WINDOWS\vbaddin.ini
2014-05-14 03:45 - 2013-10-29 12:35 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Dropbox
2014-05-13 14:28 - 2014-01-25 09:59 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-05-12 20:11 - 2013-10-29 12:37 - 00000000 ___RD () C:\Users\Janis\Dropbox
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieUserList
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieSiteList
2014-05-12 14:50 - 2014-05-12 14:50 - 00000933 _____ () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\winzip18.lnk
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\www.shadowexplorer.com
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Program Files (x86)\ShadowExplorer
2014-05-12 13:39 - 2014-02-09 23:51 - 00000000 ____D () C:\Program Files\MSBuild
2014-05-12 13:36 - 2014-05-12 13:36 - 00000000 ___RD () C:\AHCache
2014-05-12 13:30 - 2014-02-09 23:58 - 00000000 ____D () C:\Users\Janis\Documents\Visual Studio 2013
2014-05-12 07:26 - 2014-05-21 14:59 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-21 14:59 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2013-10-29 18:17 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-05-09 03:46 - 2013-10-29 12:41 - 00003882 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-09 03:46 - 2013-10-29 12:41 - 00003646 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 08:45 - 2013-10-29 17:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-05-06 21:28 - 2014-05-22 13:35 - 08990919 _____ () C:\Users\Default\AppData\Roaming\omni.ja
2014-05-06 21:28 - 2014-05-22 13:35 - 08990919 _____ () C:\Users\Default User\AppData\Roaming\omni.ja
2014-05-06 21:28 - 2014-05-22 13:35 - 00002053 _____ () C:\Users\Default\AppData\Roaming\precomplete
2014-05-06 21:28 - 2014-05-22 13:35 - 00002053 _____ () C:\Users\Default User\AppData\Roaming\precomplete
2014-05-06 21:27 - 2014-05-22 13:35 - 23516272 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\xul.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 23516272 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\xul.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 03839088 _____ () C:\Users\Default\AppData\Roaming\mozjs.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 03839088 _____ () C:\Users\Default User\AppData\Roaming\mozjs.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 01795696 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nss3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 01795696 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nss3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00647280 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libGLESv2.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00647280 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libGLESv2.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00403568 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssckbi.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00403568 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssckbi.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00277104 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\updater.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00277104 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\updater.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00198232 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\maintenanceservice_installer.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00198232 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\maintenanceservice_installer.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00170960 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\webapp-uninstaller.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00170960 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\webapp-uninstaller.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00152688 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\softokn3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00152688 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\softokn3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00142448 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozglue.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00142448 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozglue.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00119408 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\maintenanceservice.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00119408 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\maintenanceservice.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00093808 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\webapprt-stub.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00093808 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\webapprt-stub.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00092784 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssdbm3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00092784 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssdbm3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00028272 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-hang-ui.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00028272 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-hang-ui.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00018544 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-container.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00018544 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-container.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00017008 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozalloc.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00017008 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozalloc.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default\AppData\Roaming\softokn3.chk
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default\AppData\Roaming\nssdbm3.chk
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\softokn3.chk
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\nssdbm3.chk
2014-05-06 21:26 - 2014-05-22 13:35 - 10594416 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icudt52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 10594416 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icudt52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 04881520 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\gkmedias.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 04881520 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\gkmedias.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 01266800 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuin52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 01266800 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuin52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00965232 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuuc52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00965232 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuuc52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00305264 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\freebl3.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00305264 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\freebl3.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00117360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\crashreporter.exe
2014-05-06 21:26 - 2014-05-22 13:35 - 00117360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\crashreporter.exe
2014-05-06 21:26 - 2014-05-22 13:35 - 00075376 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\breakpadinjector.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00075376 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\breakpadinjector.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00053360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libEGL.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00053360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libEGL.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00020080 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\AccessibleMarshal.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00020080 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\AccessibleMarshal.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default\AppData\Roaming\freebl3.chk
2014-05-06 21:26 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\freebl3.chk
2014-05-06 21:08 - 2014-05-22 13:35 - 00001245 _____ () C:\Users\Default\AppData\Roaming\updater.ini
2014-05-06 21:08 - 2014-05-22 13:35 - 00001245 _____ () C:\Users\Default User\AppData\Roaming\updater.ini
2014-05-06 21:08 - 2014-05-22 13:35 - 00000099 _____ () C:\Users\Default\AppData\Roaming\dependentlibs.list
2014-05-06 21:08 - 2014-05-22 13:35 - 00000099 _____ () C:\Users\Default User\AppData\Roaming\dependentlibs.list
2014-05-06 19:33 - 2014-05-22 13:35 - 00000143 _____ () C:\Users\Default\AppData\Roaming\platform.ini
2014-05-06 19:33 - 2014-05-22 13:35 - 00000143 _____ () C:\Users\Default User\AppData\Roaming\platform.ini
2014-05-06 19:15 - 2014-05-22 13:35 - 00000671 _____ () C:\Users\Default\AppData\Roaming\application.ini
2014-05-06 19:15 - 2014-05-22 13:35 - 00000671 _____ () C:\Users\Default User\AppData\Roaming\application.ini
2014-05-06 19:11 - 2014-05-22 13:35 - 00000646 _____ () C:\Users\Default\AppData\Roaming\removed-files
2014-05-06 19:11 - 2014-05-22 13:35 - 00000646 _____ () C:\Users\Default User\AppData\Roaming\removed-files
2014-05-06 17:57 - 2014-05-22 13:35 - 00000132 _____ () C:\Users\Default\AppData\Roaming\update-settings.ini
2014-05-06 17:57 - 2014-05-22 13:35 - 00000132 _____ () C:\Users\Default User\AppData\Roaming\update-settings.ini
2014-05-06 17:50 - 2014-05-22 13:35 - 00004003 _____ () C:\Users\Default\AppData\Roaming\crashreporter.ini
2014-05-06 17:50 - 2014-05-22 13:35 - 00004003 _____ () C:\Users\Default User\AppData\Roaming\crashreporter.ini
2014-05-05 23:40 - 2014-05-14 05:11 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-05 22:25 - 2014-05-14 05:11 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-05 22:00 - 2014-05-14 05:11 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-05 21:10 - 2014-05-14 05:11 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-02 10:38 - 2014-05-02 10:38 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-05-02 10:38 - 2014-05-02 10:38 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

Files to move or delete:
====================
C:\Users\Janis\bl_pixie_dust_trails.exe
C:\Users\Janis\googledrivesync.exe
C:\Users\Janis\HPPSdr.exe
C:\Users\Janis\iTunes64Setup.exe
C:\Users\Janis\startuplite-setup-1.07.exe
C:\Users\Janis\tweaking.com_windows_repair_aio_setup.exe
C:\Users\Janis\WDFirmwareUpdater.exe
C:\Users\Janis\wic_x64_enu.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-29 21:46

==================== End Of Log ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-06-2014 01
Ran by Janis at 2014-06-01 14:45:20
Running from C:\Users\Janis\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.07 - Adobe Systems)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12.2.1 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 13.0.0.83 - Adobe Systems Incorporated) Hidden
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CC (HKLM-x32\...\{00E094E1-A852-11E2-803D-ACEA632352B4}) (Version: 13 - Adobe Systems Incorporated)
Adobe Edge Animate CC (HKLM-x32\...\{1C5E96F4-6F15-4A96-BF62-9D1F60B44FF1}) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Edge Code CC (HKLM-x32\...\{641F742F-1497-51B4-F481-1037096A90A0}) (Version: 0.97 - Adobe Systems Incorporated)
Adobe Edge Inspect CC (HKLM-x32\...\{67D22EA0-4601-4450-9C99-042DABB0A315}) (Version: 1.0.408 - Adobe Systems Incorporated)
Adobe Edge Reflow CC Preview (HKLM\...\{4CBD2327-FA4C-4D42-8903-CE1E96FE0FBF}) (Version: 0.37.15833 - Adobe Systems Incorporated)
Adobe Exchange Panel (HKLM-x32\...\{41A12FFC-89E9-4743-A51E-00975CA31F40}) (Version: 1 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit CC (HKLM-x32\...\{6297487E-3778-4F72-B458-55690418DB98}) (Version: 4.0.0.0 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.1.1 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Flash Builder 4.7 (64 Bit) (HKLM-x32\...\{848DE8E1-521D-4748-A158-517708107EF3}) (Version: 4.7 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Professional CC (HKLM-x32\...\{B56B95BF-7161-4166-8288-DB1BA9F6C9B8}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CC (HKLM-x32\...\{F2321021-08A2-44D6-B1DF-BDB415F23EC3}) (Version: 17.0 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.3 64-bit (HKLM\...\{2DD71ACB-552D-402C-9529-7906ACB95C30}) (Version: 5.3.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVS Audio Converter 7 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 7.2.1.528 - Online Media Technologies Ltd.)
AVS Audio Editor 7.1 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 7.2.1.487 - Online Media Technologies Ltd.)
AVS Audio Recorder 4.0 (HKLM-x32\...\AVS Audio Recorder_is1) (Version: 4.0.2.22 - Online Media Technologies Ltd.)
AVS Cover Editor 2.0.1.3 (HKLM-x32\...\AVSCoverEditor2_is1) (Version: 2.0.1.3 - Online Media Technologies Ltd.)
AVS Disc Creator 5 (HKLM-x32\...\AVS Disc Creator_is1) (Version: 5.1.2.525 - Online Media Technologies Ltd.)
AVS Document Converter 2.2.8 (HKLM-x32\...\AVS Document Converter_is1) (Version: 2.2.8.225 - Online Media Technologies Ltd.)
AVS DVD Copy 4.1.2.283 (HKLM-x32\...\AVS DVD Copy_is1) (Version: 4.1.2.283 - Online Media Technologies Ltd.)
AVS Image Converter 3.0.2.270 (HKLM-x32\...\AVS Image Converter_is1) (Version: 3.0.2.270 - Online Media Technologies Ltd.)
AVS Media Player 4.2.2.104 (HKLM-x32\...\AVS Media Player_is1) (Version: 4.2.2.104 - Online Media Technologies Ltd.)
AVS Photo Editor (HKLM-x32\...\AVS Photo Editor_is1) (Version: 2.1.2.136 - Online Media Technologies Ltd.)
AVS Registry Cleaner 2.3.1.255 (HKLM-x32\...\AVS Registry Cleaner_is1) (Version: 2.3.1.255 - Online Media Technologies Ltd.)
AVS Ringtone Maker version 1.6 (HKLM-x32\...\AVS Ringtone Maker 1.6_is1) (Version: 1.6.1.140 - Online Media Technologies Ltd.)
AVS Video Converter 8 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 8.4.2.541 - Online Media Technologies Ltd.)
AVS Video Editor 6 (HKLM-x32\...\AVS Video Editor_is1) (Version: 6.4.2.241 - Online Media Technologies Ltd.)
AVS Video Recorder 2.5 (HKLM-x32\...\AVS Video Recorder_is1) (Version: 2.5.6.87 - Online Media Technologies Ltd.)
AVS Video ReMaker 4.2.2.153 (HKLM-x32\...\AVS Video ReMaker_is1) (Version: 4.2.2.153 - Online Media Technologies Ltd.)
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Behaviors SDK (XAML) for Visual Studio (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.341.0 - Microsoft Corporation)
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Citrix Authentication Manager (x32 Version: 5.0.0.60597 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HDX Flash Redirection) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.0.0.91 - Citrix Systems, Inc.)
Citrix Receiver Inside (x32 Version: 3.4.0.45902 - Citrix Systems, Inc.) Hidden
Citrix Receiver Updater (x32 Version: 4.0.0.45893 - Citrix Systems, Inc.) Hidden
Citrix Receiver(Aero) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Citrix Receiver(DV) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Citrix Receiver(USB) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version:  - )
CyberLink PowerDirector 11 (HKLM-x32\...\InstallShield_{551F492A-01B0-4DC4-866F-875EC4EDC0A8}) (Version: 11.0.0.3230 - CyberLink Corp.)
CyberLink PowerDirector 11 (Version: 11.0.0.3230 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.3206 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{349F73CA-653A-43A6-AE77-970B07D6EDA0}) (Version:  - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{349F73CA-653A-43A6-AE77-970B07D6EDA0}) (Version:  - Microsoft)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote v. 5.0.3 (HKLM-x32\...\{32D39568-3B77-11E3-88CE-00163E98E7D0}) (Version: 5.0.3.1614 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Drive (HKLM-x32\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java SE Development Kit 7 Update 51 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170510}) (Version: 1.7.0.510 - Oracle)
JavaScript Tooling (Version: 12.0.21005 - Microsoft Corporation) Hidden
JavaScript Tooling (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Lightroom 5.2 (HKLM-x32\...\{9bcd38e7-1f9a-4536-8cd4-96448263f367}) (Version: 5.2 - Adobe Systems Incorporated)
LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us (x32 Version: 8.59.29989 - Microsoft) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Advertising SDK for Windows 8.1 - ENU (x32 Version: 8.1.30809.0 - Microsoft Corporation) Hidden
Microsoft Advertising SDK for Windows Phone - ENU (x32 Version: 6.2.960.0 - Microsoft Corporation) Hidden
Microsoft Advertising Service Extension for Visual Studio (x32 Version: 12.0.30809.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 - Visual Studio 2013 - ENU (x32 Version: 4.1.21001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 Runtime (x32 Version: 4.0.20716.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2013 - ENU (x32 Version: 5.0.11001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 - Visual Studio 2013 - ENU (x32 Version: 4.1.21001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 Runtime (x32 Version: 2.0.20716.0 - Microsoft Corporation) Hidden
Microsoft C++ Azure Mobile SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft C++ REST SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft Exchange Web Services Managed API 2.0 (x32 Version: 15.0.516.14 - Microsoft Corporation) Hidden
Microsoft Expression Blend SDK for .NET 4 (x32 Version: 2.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft Identity Extensions (Version: 2.0.1459.0 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 CoreRes - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 v4.0 Tools (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 v4.0 ToolsRes - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch v4.0 SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.3.188.0 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio 2013 (x32 Version: 2.7.40911.287 - Microsoft Corporation) Hidden
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) - ENU Language Pack (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 12.0.21005.01 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (x32 Version: 12.0.21005.01 - Microsoft Corporation) Hidden
Microsoft Report Viewer Add-On for Visual Studio 2013 (x32 Version: 11.1.3366.16 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio 2012 Nuget Package (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio ENU Language Pack (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Team Foundation Server 2013 Object Model (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++  ARM Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Native Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Native Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-arm Cross Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-arm Cross Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-x86 Cross Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-x86 Cross Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x86 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers For Windows Phone - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers For Windows Phone (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Core Libraries (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Core Libraries For Windows Phone (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86-x64 Compilers (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013  x64 Designtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Extended Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Microsoft Foundation Class Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50330 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Add-in for Windows Phone - ENU Language Pack (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Add-in for Windows Phone (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Devenv (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Devenv Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Performance Collection Tools - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Performance Collection Tools (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Preparation (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Profiling Tools (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 VsGraphics Helper Dependencies (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2013 - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2013 (HKLM-x32\...\{6dff50d0-3bc3-4a92-b724-bf6d6a99de4f}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Professional 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Web Developer Tools 2013 - Visual Studio 2013 (x32 Version: 2.0.40926.0 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 en-US)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)
Online Plug-in (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Python Tools Redirection Template (x32 Version: 1.1 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Riverpoint Writer (HKLM-x32\...\FF389026-F961-42C5-BACD-B4A3AA73E0F3) (Version: 2.0.0.12 - Apollo Group, Inc.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Self-service Plug-in (x32 Version: 4.0.0.40674 - Citrix Systems, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
ShadowExplorer 0.9 (HKLM-x32\...\ShadowExplorer_is1) (Version: 0.9.462.0 - ShadowExplorer.com)
SharePoint Client Components (Version: 15.0.4481.1505 - Microsoft Corporation) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.8 - SmartSound Software Inc.) Hidden
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.7.2 - Tweaking.com)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.VISIOR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.VISIOR_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0054-0409-0000-0000000FF1CE}_Office14.VISIOR_{A5659197-BDB5-467F-A71A-1B817DDD7BDD}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Visual F# 3.1 SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual F# 3.1 VS (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio 2013 Prerequisites - ENU Language Pack (Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio 2013 Prerequisites (Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 1.0.9600.16408 - Microsoft Corporation) Hidden
Vs2012 Verification SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WD Drive Utilities (HKLM-x32\...\{72E40002-8CEC-47C1-A099-83AC8E173BF0}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{F181233F-67DF-4995-A159-EB81F2B5500B}) (Version: 2.4.0.39 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{83270912-15C7-4336-822E-E8F1B1BBCA60}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
WD SES Driver Setup (x32 Version: 1.0.3.3 - Western Digital) Hidden
WD SmartWare (HKLM\...\{6E936B32-5120-412E-AC87-C1D3651E531F}) (Version: 2.4.0.39 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{9af08980-8d36-4304-a8d0-53dc0c7d93a5}) (Version: 2.4.0.39 - Western Digital Technologies, Inc.)
Windows 8 Development Essentials (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Windows App Certification Kit Native Components (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows App Certification Kit x64 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Azure Mobile Services SDK (x32 Version: 1.0.10815.0 - Microsoft Corporation) Hidden
Windows Azure Mobile Services Tools for Visual Studio 2013 Preview - v1.0 (x32 Version: 1.0.60906.1602 - Microsoft Corporation) Hidden
Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0 (x32 Version: 1.0.10829.1601 - Microsoft Corporation) Hidden
Windows Azure Tools for LightSwitch for Visual Studio 2013 - v2.1 (x32 Version: 2.1.10909.1601 - Microsoft) Hidden
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
Windows Phone 8.0 Emulation Host (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Windows Phone 8.0 Emulation Images (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Windows Phone 8.0 Managed SDK Profiler (ARM) (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Windows Phone 8.0 Managed SDK Profiler (X86) (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Windows Phone Emulator 8.0 Configurator (x32 Version: 11.0.60830 - Microsoft Corporation) Hidden
Windows Phone SDK 8.0 Assemblies (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Windows Phone Tools Finalizer (Version: 11.0.60610 - Microsoft Corporation) Hidden
Windows Runtime Intellisense Content - en-us (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (Version: 11.0.51106 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Workflow Manager Client 1.0 (Version: 2.0.30813.2 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.30725.1 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

29-05-2014 20:44:29 Tweaking.com - Windows Repair
31-05-2014 15:46:21 WD SmartWare Installer

==================== Hosts content: ==========================

2012-07-26 00:26 - 2014-05-29 16:36 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {02183B42-5510-48F1-A9FC-F173C1AC39E3} - System32\Tasks\Start Google Chrome at logon => Chrome.exe /recycle
Task: {02AF1410-057E-46CD-9B7A-52E8BAE40139} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {03E0DD2B-0EF1-44BE-B004-27FFCAD83630} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {202C162C-1EAE-4D71-93C7-E925F26127E3} - System32\Tasks\Western Digital\SmartWare\____Volume_79bf68cd_c67d_4ca0_bbab_6c1164de4f69______Volume_40c0d94e_e771_11e3_beee_a41f724fcedd__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2014-05-09] (Western Digital Technologies, Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {498BFBE5-7010-47F4-884F-B7E984C3F193} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {49A13227-738C-4DC9-8445-B720714B5790} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {4D4DE22B-A56C-400E-BB41-61DBB67C195D} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {4E3078C4-6C26-47CF-A5EB-5996DB73AA00} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13] (Adobe Systems Incorporated)
Task: {53474C5F-83EC-486F-8F48-138535E6F5B8} - System32\Tasks\MBAM => Chrome.exe /recycle
Task: {56D8CE82-C480-4938-8EDC-60D7FA59E06E} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6BD43712-B2C2-4816-BCBD-2FCF163DC4D5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {716217F5-0FA9-4D34-9582-5D3130C57F05} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {81B14B12-3FC0-4E2B-818E-0C8F56CBB343} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A1C2A33C-75E5-434D-9B67-45413D2D8931} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {A92AA790-85DC-4F6C-9B81-02F497253E65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-29] (Google Inc.)
Task: {C0FDD34A-2138-4127-8702-1F4E0244B859} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-29] (Google Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DF1C35FA-4D50-4235-ABA6-F9900635EC24} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-05-25] (Microsoft Corporation)
Task: {E4DDCE55-1360-4ED8-9580-650E1330031B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F35766F5-0B69-4F41-B3F8-8D63EB9BC5F2} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-02 19:38 - 2012-09-04 14:05 - 00390672 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-05-23 02:10 - 2014-05-23 02:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 17:23 - 2010-10-20 17:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-06-18 10:24 - 2012-06-18 10:24 - 00222720 _____ () C:\Program Files\New folder\Notepad++\NppShell_05.dll
2013-12-21 01:02 - 2013-12-21 01:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-01-01 20:01 - 2013-01-01 20:01 - 00228264 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbPc.DLL
2013-09-14 03:51 - 2013-09-14 03:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 03:50 - 2013-09-14 03:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-05-28 16:12 - 2014-05-06 21:27 - 03839088 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Janis\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147220995 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar failed with error: -2147220995 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail failed with error: -2147220995 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar failed with error: -2147220995 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (05/31/2014 10:45:22 AM) (Source: MsiInstaller) (EventID: 1013) (User: MADRID)
Description: Product: WD SmartWare -- A newer version of WD SmartWare is already installed. Exiting installation.

Error: (05/31/2014 10:44:50 AM) (Source: MsiInstaller) (EventID: 1013) (User: MADRID)
Description: Product: WD SmartWare -- A newer version of WD SmartWare is already installed. Exiting installation.

Error: (05/31/2014 05:59:16 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (05/31/2014 05:54:43 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (05/30/2014 09:46:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: Activation of app Microsoft.BingMaps_8wekyb3d8bbwe!AppexMaps failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (05/30/2014 09:46:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Map.exe, version: 2.1.2922.2139, time stamp: 0x537e474e
Faulting module name: Windows.UI.Xaml.dll, version: 6.3.9600.17041, time stamp: 0x53182120
Exception code: 0xc000027b
Fault offset: 0x000000000084ad1a
Faulting process id: 0x1b54
Faulting application start time: 0xMap.exe0
Faulting application path: Map.exe1
Faulting module path: Map.exe2
Report Id: Map.exe3
Faulting package full name: Map.exe4
Faulting package-relative application ID: Map.exe5


System errors:
=============
Error: (06/01/2014 10:19:22 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/31/2014 07:55:28 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/31/2014 07:55:06 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (05/31/2014 07:55:06 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (05/31/2014 07:55:06 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (05/31/2014 07:52:53 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/31/2014 07:52:34 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (05/31/2014 07:52:34 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (05/31/2014 07:38:46 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/31/2014 07:38:46 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{145B4335-FE2A-4927-A040-7C35AD3180EF}{145B4335-FE2A-4927-A040-7C35AD3180EF}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableUnavailable


Microsoft Office Sessions:
=========================
Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147220995

Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar-2147220995

Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147220995

Error: (06/01/2014 10:15:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar-2147220995

Error: (05/31/2014 10:45:22 AM) (Source: MsiInstaller) (EventID: 1013) (User: MADRID)
Description: Product: WD SmartWare -- A newer version of WD SmartWare is already installed. Exiting installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/31/2014 10:44:50 AM) (Source: MsiInstaller) (EventID: 1013) (User: MADRID)
Description: Product: WD SmartWare -- A newer version of WD SmartWare is already installed. Exiting installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/31/2014 05:59:16 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe

Error: (05/31/2014 05:54:43 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe

Error: (05/30/2014 09:46:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MADRID)
Description: Microsoft.BingMaps_8wekyb3d8bbwe!AppexMaps-2147023170

Error: (05/30/2014 09:46:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Map.exe2.1.2922.2139537e474eWindows.UI.Xaml.dll6.3.9600.1704153182120c000027b000000000084ad1a1b5401cf7c7a7f6438dbC:\Program Files\WindowsApps\Microsoft.BingMaps_2.1.2922.2139_x64__8wekyb3d8bbwe\Map.exeC:\Windows\System32\Windows.UI.Xaml.dllbdabbfc4-e86d-11e3-bef1-a41f724fceddMicrosoft.BingMaps_2.1.2922.2139_x64__8wekyb3d8bbweAppexMaps


CodeIntegrity Errors:
===================================
  Date: 2014-05-29 21:50:11.170
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 18:12:18.591
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 17:35:10.607
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:18.373
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:18.264
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:18.045
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:17.935
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:17.701
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:17.592
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:17.373
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 43%
Total physical RAM: 3967.59 MB
Available physical RAM: 2228.11 MB
Total Pagefile: 5311.59 MB
Available Pagefile: 2856.85 MB
Total Virtual: 131072 MB
Available Virtual: 131071.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:434.12 GB) (Free:308.58 GB) NTFS
Drive f: (My Passport) (Fixed) (Total:465.73 GB) (Free:435.54 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 63BFDA0D)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 466 GB) (Disk ID: 0004A183)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#5 TheShooter93

TheShooter93

    Cody


  • Malware Response Team
  • 4,792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orlando, Florida
  • Local time:03:25 AM

Posted 02 June 2014 - 03:23 PM

Hello Poweroo,
 
Registry Cleaners
 
Your logs indicate you have a registry cleaner installed on your system.
 
You should never use registry cleaners, optimizers, etc.
 
While the programs claim to speed up your computer, they can actually wreck havoc on them and even corrupt the operating system so the system cannot boot.
 
The use of these programs may or may not be related to problems you're experiencing.
 
Have you run any of these types of programs?

======================================================
 
I did not find any evidence of malware in your logs -- I believe your issues are caused by something else.
 
Please try the following for me.
 
-----

Windows Repair (All in One)

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Download Windows Repair (All in One) and save it to your desktop
  • Double click the icon and select Run
  • Continually click Next, then Finish
  • Note: If you are unable to complete one of the steps simply continue on with the next step
  • Go to Step 2 and allow it to run See if Check Disk is Needed by clicking on the Check button:
  • If your see Errors Found On The Drive! Check Disk Is Needed click Do It in the Check Disk (If Needed) box
  • Once that is done then go to Step 3 and click Do It under System File Check
  • Go to Step 4 and click Create under System Restore, then Backup under Registry Backup
  • Go to Start Repairs tab and click Start button.
  • Please make sure the following items are checked

Reset Registry Permissions
Reset File Permissions (1)
Register System Files
Repair WMI
Repair Windows Firewall
Repair Internet Explorer
Remove Policies Set By Infections
Repair Missing Start Menu Icons Removed By Infections
Repair Icons
Remove Temp Files
Unhide Non System Files (1)
Repair Windows Sidebar/Gadgets
Repair MSI (Windows Installer)
Repair .lnk (Shortcuts) File Association
Repair Windows Safe Mode
Restore Important Windows Services
Set Windows Services To Default Startup

  • Click on box next to the Restart/Shutdown System when Finished
  • Click on Restart System
  • Click on Start
  • Your computer will reboot upon completion
  • Using Windows Explorer navigate to the following file

C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs

  • Copy and paste the contents of the log in your reply

======================================================
 
Chkdsk

  • Press and hold the Windows button + R on your keyboard.
  • In the Run box, type CMD and hit Enter.
  • In Command Prompt, type CHKDSK /f and hit Enter.
  • At the prompt, type Y and hit Enter.
  • Reboot the machine.

======================================================
 
What I'd like to see in your next post:  :thumbsup2:

  • Have you run any registry cleaners?
  • Windows Repair Tool log
  • Results of Chkdsk
  • Is your system running any better after running the Windows Repair Tool and ChkDsk?

CCNA R&SCCNA Security | Network+  |  B.S. - Information Technology | Cyber Security Engineer

If I am helping you and have not replied within 48 hours, please send me a private message.

 

 


#6 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 03 June 2014 - 09:47 PM

Have you run any registry cleaners?

No, I have not.  You mentioned there was a registry cleaner I didn't need on my machine.  Can you tell me what the file name is so I can delete it?

Is your system running any better after running the Windows Repair Tool and ChkDsk?

Yes, thank you.

 

System Variables
--------------------------------------------------------------------------------
OS: Windows 8.1
OS Architecture: 64-bit
OS Version: 6.3.9600
OS Service Pack:
Computer Name: MADRID
Windows Drive: C:\
Windows Path: C:\Windows
Current Profile: C:\Users\Janis
Current Profile SID: S-1-5-21-2842308386-1212296173-2251888456-1001
Current Profile Classes: S-1-5-21-2842308386-1212296173-2251888456-1001_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\Janis\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:49:10

Process Count: 83
Commit Total: 2.49 GB
Commit Limit: 5.06 GB
Commit Peak: 2.82 GB
Handle Count: 29445
Kernel Total: 483.65 MB
Kernel Paged: 402.71 MB
Kernel Non Paged: 80.94 MB
System Cache: 2.15 GB
Thread Count: 1014
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 3.87 GB
Memory Used: 1.77 GB(45.5614%)
Memory Avail.: 2.11 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 3.87 GB
Memory Used: 1.55 GB(40.0102%)
Memory Avail.: 2.32 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Start (6/3/2014 8:13:16 PM)

01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (6/3/2014 8:13:19 PM)
   Running Repair Under Current User Account
   Done (6/3/2014 8:13:57 PM)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (6/3/2014 8:13:57 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:21:56 PM)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (6/3/2014 8:21:56 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:24:03 PM)

02 - Reset File Permissions: C:
   C: & Sub Folders
   Start (6/3/2014 8:24:03 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:44:19 PM)

02 - Reset File Permissions: F:
   F: & Sub Folders
   Start (6/3/2014 8:44:19 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:44:36 PM)

02 - Reset File Permissions: All Profiles
   C:\Users & Sub Folders
   Start (6/3/2014 8:44:36 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:48:41 PM)

02 - Reset File Permissions: Current Profile
   C:\Users\Janis & Sub Folders
   Start (6/3/2014 8:48:41 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:51:54 PM)

02 - Reset File Permissions: Cleanup
   Repairing Restricted Folders Permissions To Avoid Infinite Loops
   Start (6/3/2014 8:51:54 PM)
   Running Repair Under System Account
Processing ACL of: <\\?\C:\Documents and Settings>

SetACL finished successfully.
Processing ACL of: <\\?\C:\ProgramData\Application Data>

SetACL finished successfully.
Processing ACL of: <\\?\C:\ProgramData\Desktop>

SetACL finished successfully.
Processing ACL of: <\\?\C:\ProgramData\Documents>

SetACL finished successfully.
Processing ACL of: <\\?\C:\ProgramData\Favorites>
Reading the SD from <\\?\C:\ProgramData\Favorites> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\ProgramData\Start Menu>

SetACL finished successfully.
Processing ACL of: <\\?\C:\ProgramData\Templates>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\All Users\Application Data>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\All Users\Desktop>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\All Users\Documents>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\All Users\Favorites>
Reading the SD from <\\?\C:\Users\All Users\Favorites> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\All Users\Start Menu>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\All Users\Templates>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default User>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Application Data>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Cookies>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Local Settings>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\My Documents>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\NetHood>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\PrintHood>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Recent>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\SendTo>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Start Menu>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Templates>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\AppData\Local\Application Data>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\AppData\Local\History>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\AppData\Local\Temporary Internet Files>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Documents\My Music>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Documents\My Pictures>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default\Documents\My Videos>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Public\Documents\My Music>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Public\Documents\My Pictures>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Public\Documents\My Videos>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default.migrated\Application Data>
Reading the SD from <\\?\C:\Users\Default.migrated\Application Data> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\Cookies>
Reading the SD from <\\?\C:\Users\Default.migrated\Cookies> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\Local Settings>
Reading the SD from <\\?\C:\Users\Default.migrated\Local Settings> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\My Documents>
Reading the SD from <\\?\C:\Users\Default.migrated\My Documents> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\NetHood>
Reading the SD from <\\?\C:\Users\Default.migrated\NetHood> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\PrintHood>
Reading the SD from <\\?\C:\Users\Default.migrated\PrintHood> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\Recent>
Reading the SD from <\\?\C:\Users\Default.migrated\Recent> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\SendTo>
Reading the SD from <\\?\C:\Users\Default.migrated\SendTo> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\Start Menu>
Reading the SD from <\\?\C:\Users\Default.migrated\Start Menu> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\Templates>
Reading the SD from <\\?\C:\Users\Default.migrated\Templates> failed with: The system cannot find the file specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.Processing ACL of: <\\?\C:\Users\Default.migrated\AppData\Local\Application Data>
Reading the SD from <\\?\C:\Users\Default.migrated\AppData\Local\Application Data> failed with: The system cannot find the path specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the path specified.Processing ACL of: <\\?\C:\Users\Default.migrated\AppData\Local\History>
Reading the SD from <\\?\C:\Users\Default.migrated\AppData\Local\History> failed with: The system cannot find the path specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the path specified.Processing ACL of: <\\?\C:\Users\Default.migrated\AppData\Local\Temporary Internet Files>
Reading the SD from <\\?\C:\Users\Default.migrated\AppData\Local\Temporary Internet Files> failed with: The system cannot find the path specified.
SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the path specified.Processing ACL of: <\\?\C:\Users\Default.migrated\Documents\My Music>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default.migrated\Documents\My Pictures>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Default.migrated\Documents\My Videos>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Application Data>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Cookies>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Local Settings>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\My Documents>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\NetHood>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\PrintHood>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Recent>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\SendTo>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Start Menu>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Templates>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\AppData\Local\Application Data>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\AppData\Local\History>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\AppData\Local\Temporary Internet Files>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Documents\My Music>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Documents\My Pictures>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Janis\Documents\My Videos>

SetACL finished successfully.
   Done (6/3/2014 8:52:03 PM)

03 - Reset Service Permissions
   Start (6/3/2014 8:52:03 PM)
   Running Repair Under System Account
   Done (6/3/2014 8:52:19 PM)

04 - Register System Files
   Start (6/3/2014 8:52:19 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 8:53:12 PM)

05 - Repair WMI
   Start (6/3/2014 8:53:12 PM)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   Windows Defender Exported.

   Exporting AntiSpyware Info...
   Windows Defender Exported.

   Exporting 3rd Party Firewall Info...
   No Firewall Products Reported.

   Running Repair Under Current User Account
   Done (6/3/2014 9:00:03 PM)

06 - Repair Windows Firewall
   Start (6/3/2014 9:00:03 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:00:28 PM)

07 - Repair Internet Explorer
   Start (6/3/2014 9:00:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:01:21 PM)

08 - Repair MDAC/MS Jet
   Start (6/3/2014 9:01:21 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:01:42 PM)

09 - Repair Hosts File
   Start (6/3/2014 9:01:42 PM)
   Running Repair Under System Account
   Done (6/3/2014 9:01:45 PM)

10 - Remove Policies Set By Infections
   Start (6/3/2014 9:01:45 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:01:50 PM)

11 - Repair Start Menu Icons Removed By Infections
   Start (6/3/2014 9:01:50 PM)
   Running Repair Under System Account
   Done (6/3/2014 9:01:52 PM)

12 - Repair Icons
   Start (6/3/2014 9:01:52 PM)
   Running Repair Under Current User Account
   Done (6/3/2014 9:01:54 PM)

13 - Repair Winsock & DNS Cache
   Start (6/3/2014 9:01:54 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:02:18 PM)

14 - Remove Temp Files
   Start (6/3/2014 9:02:18 PM)
   Running Repair Under System Account
   Done (6/3/2014 9:02:21 PM)

15 - Repair Proxy Settings
   Start (6/3/2014 9:02:21 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:02:25 PM)

16 - Unhide Non System Files
   Start (6/3/2014 9:02:25 PM)
   C:\ - Total Files Unhidden: 21 - Check Unhidden_Files.txt for list of files unhidden
   F:\ - Total Files Unhidden: 3 - Check Unhidden_Files.txt for list of files unhidden
   Done (6/3/2014 9:07:30 PM)

17 - Repair Windows Updates
   Start (6/3/2014 9:07:30 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:08:03 PM)

18 - Repair CD/DVD Missing/Not Working
   Start (6/3/2014 9:08:03 PM)
   iTunes was found, adding UpperFilters for iTunes Reg Key
   UpperFilters added?: True
   Done (6/3/2014 9:08:03 PM)

19 - Repair Volume Shadow Copy Service
   Start (6/3/2014 9:08:03 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:08:22 PM)

20 - Repair Windows Sidebar/Gadgets
   Start (6/3/2014 9:08:22 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:08:28 PM)

21 - Repair MSI (Windows Installer)
   Start (6/3/2014 9:08:29 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:08:45 PM)

22 - Repair Windows Snipping Tool
   Start (6/3/2014 9:08:45 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:08:50 PM)

23.01 - Repair bat Association
   Start (6/3/2014 9:08:50 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:08:55 PM)

23.02 - Repair cmd Association
   Start (6/3/2014 9:08:55 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:00 PM)

23.03 - Repair com Association
   Start (6/3/2014 9:09:00 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:04 PM)

23.04 - Repair Directory Association
   Start (6/3/2014 9:09:04 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:09 PM)

23.05 - Repair Drive Association
   Start (6/3/2014 9:09:09 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:14 PM)

23.06 - Repair exe Association
   Start (6/3/2014 9:09:14 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:18 PM)

23.07 - Repair Folder Association
   Start (6/3/2014 9:09:18 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:23 PM)

23.08 - Repair inf Association
   Start (6/3/2014 9:09:23 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:28 PM)

23.09 - Repair lnk (Shortcuts) Association
   Start (6/3/2014 9:09:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:33 PM)

23.10 - Repair msc Association
   Start (6/3/2014 9:09:33 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:37 PM)

23.11 - Repair reg Association
   Start (6/3/2014 9:09:37 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:42 PM)

23.12 - Repair scr Association
   Start (6/3/2014 9:09:42 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:47 PM)

24 - Repair Windows Safe Mode
   Start (6/3/2014 9:09:47 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:09:51 PM)

25 - Repair Print Spooler
   Start (6/3/2014 9:09:51 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:10:08 PM)

26 - Restore Important Windows Services
   Start (6/3/2014 9:10:08 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:10:25 PM)

27 - Set Windows Services To Default Startup
   Start (6/3/2014 9:10:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:10:34 PM)

28 - Repair Windows 8 App Store
   Start (6/3/2014 9:10:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (6/3/2014 9:11:07 PM)

29 - Repair Windows 8 Component Store
   Start (6/3/2014 9:11:07 PM)
   Running Repair Under Current User Account
   Done (6/3/2014 9:23:39 PM)

30 - Restore Windows 8 COM+ Unmarshalers
   Start (6/3/2014 9:23:40 PM)
   Running Repair Under System Account
Processing ACL of: <classes_root\Unmarshalers>

SetACL finished with error(s):
SetACL error message: The call to SetNamedSecurityInfo () failed
Operating system error message: Access is denied.   Done (6/3/2014 9:23:44 PM)

Cleaning up empty logs...

All Selected Repairs Done.
   Done (6/3/2014 9:23:44 PM)
   Total Repair Time: 01:10:30


...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account
 

 

Microsoft Windows [Version 6.3.9600]
© 2013 Microsoft Corporation. All rights reserved.

C:\Users\Janis\Desktop>CD /D C:\

C:\>chkdsk C:
The type of the file system is NTFS.

WARNING!  F parameter not specified.
Running CHKDSK in read-only mode.

Stage 1: Examining basic file system structure ...
Progress: 602624 of 602624 done; Stage: 100%; Total: 34%; ETA:   0:02:07 ..
                                                                                       
                                                                                       
602624 file records processed.                                                        

File verification completed.
Progress: 1 of 4080 done; Stage:  0%; Total: 32%; ETA:   0:02:08 ...
Progress: 4080 of 4080 done; Stage: 100%; Total: 27%; ETA:   0:02:52    
                                                                                       
                                                                                       
  4080 large file records processed.                                   

Progress: 0 of 0 done; Stage: 99%; Total: 27%; ETA:   0:02:52 .  
                                                                                       
                                                                                       
  0 bad file records processed.                                     


Stage 2: Examining file name linkage ...
Progress: 672927 of 743268 done; Stage: 90%; Total: 80%; ETA:   0:01:02 ...
Progress: 743268 of 743268 done; Stage: 100%; Total: 80%; ETA:   0:01:02    
                                                                                       
                                                                                       
  743268 index entries processed.                                                       

Index verification completed.
Progress: 1 of 0 done; Stage: 99%; Total: 80%; ETA:   0:01:02 .  
Progress: 0 of 0 done; Stage: 99%; Total: 80%; ETA:   0:01:02 ..
                                                                                       
                                                                                       
  0 unindexed files scanned.                                        

Progress: 0 of 0 done; Stage: 99%; Total: 80%; ETA:   0:01:02 ...
                                                                                       
                                                                                       
  0 unindexed files recovered.                                      


Stage 3: Examining security descriptors ...
Security descriptor verification completed.
Progress: 8 of 8 done; Stage: 100%; Total: 99%; ETA:   0:00:00    
                                                                                       
                                                                                       
  70323 data files processed.                                           

CHKDSK is verifying Usn Journal...
Progress: 4440 of 4440 done; Stage: 100%; Total: 98%; ETA:   0:00:04    
                                                                                       
                                                                                       
  36376288 USN bytes processed.                                                           

Usn Journal verification completed.

Windows has scanned the file system and found no problems.
No further action is required.

 455207935 KB total disk space.
 133181856 KB in 383133 files.
    198868 KB in 70324 indexes.
         0 KB in bad sectors.
721299 KB in use by the system.
     65536 KB occupied by the log file.
 321105912 KB available on disk.

      4096 bytes in each allocation unit.
 113801983 total allocation units on disk.
  80276478 allocation units available on disk.

C:\>
 

~Hazel



#7 TheShooter93

TheShooter93

    Cody


  • Malware Response Team
  • 4,792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orlando, Florida
  • Local time:03:25 AM

Posted 04 June 2014 - 09:30 AM

Hello Poweroo,

AVS Registry Cleaner 2.3.1.255 is the name of the program.

Make sure to remove this using Programs and Features in the Control Panel.

=================================

Are there any other issues/questions you have with your computer?

If everything is good, please just let me know and do not abandon the thread yet. I have some additional information I would like to give you before we part ways. :)

CCNA R&SCCNA Security | Network+  |  B.S. - Information Technology | Cyber Security Engineer

If I am helping you and have not replied within 48 hours, please send me a private message.

 

 


#8 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 04 June 2014 - 03:32 PM

Are there any other issues/questions you have with your computer?

THank you sir!

 

No more problems.

 

Hazel



#9 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 04 June 2014 - 03:33 PM

Oh, one more question.  When I log out of BC, a huge advertisement pops up?????



#10 TheShooter93

TheShooter93

    Cody


  • Malware Response Team
  • 4,792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orlando, Florida
  • Local time:03:25 AM

Posted 04 June 2014 - 05:16 PM

Oh, one more question.  When I log out of BC, a huge advertisement pops up?????

Can you please take a screenshot of this?

 

And do clarify, log out of your account on Bleeping Computer or closing the window causes this?

 

Does this only happen with those specific actions? No other websites?


CCNA R&SCCNA Security | Network+  |  B.S. - Information Technology | Cyber Security Engineer

If I am helping you and have not replied within 48 hours, please send me a private message.

 

 


#11 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 04 June 2014 - 05:36 PM

And do clarify, log out of your account on Bleeping Computer or closing the window causes this?

Yes only BC.

Does this only happen with those specific actions? No other websites?

Yes and yes. 

 

I click on "Sign Out'.  I have to "x" it to close it.

 

Also, AFTER I close the ad, I click on "Sign In" and nothing happens.  I have to reload the BC page???

Attached Files

  • Attached File  ad.jpg   18.02KB   0 downloads


#12 TheShooter93

TheShooter93

    Cody


  • Malware Response Team
  • 4,792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orlando, Florida
  • Local time:03:25 AM

Posted 05 June 2014 - 02:45 PM

Hello Poweroo,

 

Please provide a fresh FRST log in your next post -- I want to make sure your system is clean and that this is not a result of some left-over malware.

 

====================================

 

Also, which browser(s) do you experience this problem in? If you only use one browser usually, for the sake of testing, please try another and attempt to replicate the behavior.

 

Lastly, in the browser you usually use, do you have the AdBlocker add-on installed?


CCNA R&SCCNA Security | Network+  |  B.S. - Information Technology | Cyber Security Engineer

If I am helping you and have not replied within 48 hours, please send me a private message.

 

 


#13 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 05 June 2014 - 03:46 PM

 

Also, which browser(s) do you experience this problem in? If you only use one browser usually, for the sake of testing, please try another and attempt to replicate the behavior.

 

It was happening in all of them.  I use Firefox Primarily.

 

 

Lastly, in the browser you usually use, do you have the AdBlocker add-on installed?

 

Now I do! On all of them, IE, Chrome and Firefox.

The problem has disappeared.  I had that installed at one time, but I don't know how it disappeared.  Anyway, below are the scan results.

 

Thank you,

Hazel

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014
Ran by Janis (administrator) on MADRID on 05-06-2014 15:20:44
Running from C:\Users\Janis\Downloads
Platform: Windows 8.1 (Update 1) (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 11\cbVSCService11.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(www.shadowexplorer.com) C:\Program Files (x86)\ShadowExplorer\sesvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe
(Akamai Technologies, Inc.) C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Western Digital) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2688920 2014-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-10-25] (Microsoft Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499896 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1688008 2012-09-06] (Western Digital)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-05-09] (Western Digital Technologies, Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22415552 2014-04-25] (Google)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [HP Officejet 6500 E710n-z (NET)] => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Janis\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2842308386-1212296173-2251888456-1001\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
Startup: C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://duckduckgo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6432042BC5D4CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.facebook.com/
http://www.twc.state.tx.us/ui/unemployment-benefits-services.html
https://ecampus.phoenix.edu/portal/portal/public/login.aspx
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {D5DCFB77-9A8D-419E-B4E8-C317C8B4E7AF} URL = https://duckduckgo.com/?q={searchTerms}
SearchScopes: HKCU - {D5DCFB77-9A8D-419E-B4E8-C317C8B4E7AF} URL = https://duckduckgo.com/?q={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Janis\AppData\Roaming\Mozilla\Firefox\Profiles\depe10tp.default
FF DefaultSearchEngine: DuckDuckGo
FF SelectedSearchEngine: DuckDuckGo
FF Homepage: https://duckduckgo.com/|https://www.facebook.com/|https://ecampus.phoenix.edu/portal/portal/public/login.aspx
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican - C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: adobe.com/AdobeExManCCDetect32 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect32.dll (Adobe Systems)
FF Plugin HKCU: adobe.com/AdobeExManCCDetect64 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect64.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Janis\AppData\Roaming\Mozilla\Firefox\Profiles\depe10tp.default\searchplugins\duckduckgo.xml
FF Extension: No Name - C:\Users\Janis\AppData\Roaming\Mozilla\Firefox\Profiles\depe10tp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-05]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-10-29]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-05-28]

Chrome:
=======
CHR StartupUrls: "https://www.google.com/webhp?hl=en&tab=ww&ei=31VwUoXhL5TT8gGH4ICgAg&ved=0CBcQ1S4", "https://services.twc.state.tx.us/UBS/security/logon.do", "https://www.gmail.com/intl/en/mail/help/about.html#inbox", "https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=12&ct=1401998501&rver=6.4.6456.0&wp=MBI_SSL_SHARED&wreply=https:%2F%2Fmail.live.com%2Fdefault.aspx%3Fid%3D64855%26owa%3D1%26owasuffix%3Dowa%252f&lc=1033&id=64855&mkt=en-us&cbcxt=mai"
CHR Extension: (Google Docs) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-28]
CHR Extension: (Google Drive) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-28]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-28]
CHR Extension: (YouTube) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-28]
CHR Extension: (Google Search) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-28]
CHR Extension: (AdBlock) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-05]
CHR Extension: (Google Wallet) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-28]
CHR Extension: (Gmail) - C:\Users\Janis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-28]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]

==================== Services (Whitelisted) =================

S2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-10-25] (Microsoft Corp.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-02-09] (Microsoft Corporation)
R2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-08] (CobianSoft, Luis Cobian)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-01] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-09-04] ()
R2 sesvc; C:\Program Files (x86)\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-05-09] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [295800 2014-05-09] (Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows ® Win 7 DDK provider)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-04] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-05] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-07-19] (Corel Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-02-22] (Microsoft Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-04] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-05 15:20 - 2014-06-05 15:21 - 00026830 _____ () C:\Users\Janis\Downloads\FRST.txt
2014-06-05 15:19 - 2014-06-05 15:19 - 02068992 _____ (Farbar) C:\Users\Janis\Downloads\FRST64.exe
2014-06-04 18:57 - 2014-06-04 18:57 - 00000472 _____ () C:\Users\Janis\Desktop\MedicalClaims.csv
2014-05-30 06:52 - 2014-05-30 06:52 - 00000000 ____D () C:\Analytics
2014-05-30 06:51 - 2014-05-30 06:51 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Western Digital
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital_Technolog
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western Digital
2014-05-30 00:47 - 2014-05-30 00:48 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-05-30 00:47 - 2014-05-30 00:47 - 00292184 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dxwebsetup.exe
2014-05-30 00:46 - 2014-05-30 00:46 - 50449456 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dotNetFx40_Full_x86_x64.exe
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\WDCSAM
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\DIFX
2014-05-29 21:34 - 2014-06-03 21:42 - 00008192 _____ () C:\WINDOWS\SysWOW64\WDPABKP.dat
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Western Digital
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-05-29 21:29 - 2014-05-29 21:29 - 37257919 _____ () C:\Users\Janis\Downloads\WD_SmartWare_Installer_2.4.0.39.zip
2014-05-29 17:25 - 2014-05-29 17:25 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital
2014-05-29 17:24 - 2014-05-30 00:19 - 00029162 _____ () C:\WINDOWS\DPINST.LOG
2014-05-29 17:24 - 2014-05-29 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2014-05-29 17:24 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-05-29 17:24 - 2014-05-29 17:43 - 00001213 _____ () C:\Users\Janis\WD Security.lnk
2014-05-29 15:56 - 2014-05-29 17:15 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2014-05-29 15:52 - 2014-05-29 21:32 - 00000000 ____D () C:\ProgramData\Western Digital
2014-05-29 15:44 - 2014-05-29 15:44 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-MADRID-Microsoft-Windows-8.1-(64-bit).dat
2014-05-29 15:43 - 2014-05-29 15:43 - 00000000 ____D () C:\RegBackup
2014-05-29 08:45 - 2014-05-29 08:45 - 00002179 _____ () C:\Users\Janis\Tweaking.com - Windows Repair (All in One).lnk
2014-05-29 08:44 - 2014-05-29 08:44 - 05558808 _____ () C:\Users\Janis\tweaking.com_windows_repair_aio_setup.exe
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-05-28 16:28 - 2014-05-28 16:28 - 00001795 _____ () C:\Users\Janis\iTunes.lnk
2014-05-28 16:28 - 2014-05-28 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-28 16:27 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2014-05-28 16:26 - 2014-05-28 16:27 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-28 16:26 - 2014-05-28 16:27 - 00000000 ____D () C:\Program Files\iTunes
2014-05-28 16:26 - 2014-05-28 16:26 - 00000000 ____D () C:\Program Files\iPod
2014-05-28 16:25 - 2014-05-28 16:26 - 112616784 _____ (Apple Inc.) C:\Users\Janis\iTunes64Setup.exe
2014-05-28 16:12 - 2014-05-28 16:12 - 00001175 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00001163 _____ () C:\Users\Janis\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-28 16:05 - 2014-05-28 16:05 - 00002279 _____ () C:\Users\Janis\Google Chrome.lnk
2014-05-28 16:05 - 2014-05-28 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-28 15:25 - 2014-05-28 15:39 - 00002469 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-05-28 15:25 - 2014-05-28 15:39 - 00002230 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-05-28 15:25 - 2014-05-28 15:39 - 00002069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002160 _____ () C:\Users\Janis\Adobe FormsCentral.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002046 _____ () C:\Users\Janis\Adobe Acrobat XI Pro.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001333 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001321 _____ () C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-05-28 14:11 - 2014-05-28 16:27 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-27 13:24 - 2014-06-05 15:20 - 00000000 ____D () C:\FRST
2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Mozilla
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default User\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\browser
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\browser
2014-05-22 13:35 - 2014-05-06 21:28 - 08990919 _____ () C:\Users\Default\AppData\Roaming\omni.ja
2014-05-22 13:35 - 2014-05-06 21:28 - 08990919 _____ () C:\Users\Default User\AppData\Roaming\omni.ja
2014-05-22 13:35 - 2014-05-06 21:28 - 00002053 _____ () C:\Users\Default\AppData\Roaming\precomplete
2014-05-22 13:35 - 2014-05-06 21:28 - 00002053 _____ () C:\Users\Default User\AppData\Roaming\precomplete
2014-05-22 13:35 - 2014-05-06 21:27 - 23516272 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\xul.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 23516272 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\xul.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 03839088 _____ () C:\Users\Default\AppData\Roaming\mozjs.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 03839088 _____ () C:\Users\Default User\AppData\Roaming\mozjs.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 01795696 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nss3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 01795696 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nss3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00647280 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libGLESv2.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00647280 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libGLESv2.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00403568 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssckbi.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00403568 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssckbi.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00277104 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\updater.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00277104 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\updater.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00198232 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\maintenanceservice_installer.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00198232 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\maintenanceservice_installer.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00170960 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\webapp-uninstaller.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00170960 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\webapp-uninstaller.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00152688 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\softokn3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00152688 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\softokn3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00142448 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozglue.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00142448 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozglue.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00119408 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\maintenanceservice.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00119408 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\maintenanceservice.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00093808 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\webapprt-stub.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00093808 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\webapprt-stub.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00092784 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssdbm3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00092784 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssdbm3.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00028272 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-hang-ui.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00028272 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-hang-ui.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00018544 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-container.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00018544 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-container.exe
2014-05-22 13:35 - 2014-05-06 21:27 - 00017008 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozalloc.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00017008 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozalloc.dll
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default\AppData\Roaming\softokn3.chk
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default\AppData\Roaming\nssdbm3.chk
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\softokn3.chk
2014-05-22 13:35 - 2014-05-06 21:27 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\nssdbm3.chk
2014-05-22 13:35 - 2014-05-06 21:26 - 10594416 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icudt52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 10594416 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icudt52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 04881520 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\gkmedias.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 04881520 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\gkmedias.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 01266800 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuin52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 01266800 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuin52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00965232 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuuc52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00965232 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuuc52.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00305264 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\freebl3.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00305264 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\freebl3.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00117360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\crashreporter.exe
2014-05-22 13:35 - 2014-05-06 21:26 - 00117360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\crashreporter.exe
2014-05-22 13:35 - 2014-05-06 21:26 - 00075376 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\breakpadinjector.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00075376 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\breakpadinjector.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00053360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libEGL.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00053360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libEGL.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00020080 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\AccessibleMarshal.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00020080 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\AccessibleMarshal.dll
2014-05-22 13:35 - 2014-05-06 21:26 - 00000899 _____ () C:\Users\Default\AppData\Roaming\freebl3.chk
2014-05-22 13:35 - 2014-05-06 21:26 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\freebl3.chk
2014-05-22 13:35 - 2014-05-06 21:08 - 00001245 _____ () C:\Users\Default\AppData\Roaming\updater.ini
2014-05-22 13:35 - 2014-05-06 21:08 - 00001245 _____ () C:\Users\Default User\AppData\Roaming\updater.ini
2014-05-22 13:35 - 2014-05-06 21:08 - 00000099 _____ () C:\Users\Default\AppData\Roaming\dependentlibs.list
2014-05-22 13:35 - 2014-05-06 21:08 - 00000099 _____ () C:\Users\Default User\AppData\Roaming\dependentlibs.list
2014-05-22 13:35 - 2014-05-06 19:33 - 00000143 _____ () C:\Users\Default\AppData\Roaming\platform.ini
2014-05-22 13:35 - 2014-05-06 19:33 - 00000143 _____ () C:\Users\Default User\AppData\Roaming\platform.ini
2014-05-22 13:35 - 2014-05-06 19:15 - 00000671 _____ () C:\Users\Default\AppData\Roaming\application.ini
2014-05-22 13:35 - 2014-05-06 19:15 - 00000671 _____ () C:\Users\Default User\AppData\Roaming\application.ini
2014-05-22 13:35 - 2014-05-06 19:11 - 00000646 _____ () C:\Users\Default\AppData\Roaming\removed-files
2014-05-22 13:35 - 2014-05-06 19:11 - 00000646 _____ () C:\Users\Default User\AppData\Roaming\removed-files
2014-05-22 13:35 - 2014-05-06 17:57 - 00000132 _____ () C:\Users\Default\AppData\Roaming\update-settings.ini
2014-05-22 13:35 - 2014-05-06 17:57 - 00000132 _____ () C:\Users\Default User\AppData\Roaming\update-settings.ini
2014-05-22 13:35 - 2014-05-06 17:50 - 00004003 _____ () C:\Users\Default\AppData\Roaming\crashreporter.ini
2014-05-22 13:35 - 2014-05-06 17:50 - 00004003 _____ () C:\Users\Default User\AppData\Roaming\crashreporter.ini
2014-05-22 13:35 - 2010-05-26 13:41 - 02106216 _____ (Microsoft Corporation) C:\Users\Default\AppData\Roaming\D3DCompiler_43.dll
2014-05-22 13:35 - 2010-05-26 13:41 - 02106216 _____ (Microsoft Corporation) C:\Users\Default User\AppData\Roaming\D3DCompiler_43.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00770384 _____ (Microsoft Corporation) C:\Users\Default\AppData\Roaming\msvcr100.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00770384 _____ (Microsoft Corporation) C:\Users\Default User\AppData\Roaming\msvcr100.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00421200 _____ (Microsoft Corporation) C:\Users\Default\AppData\Roaming\msvcp100.dll
2014-05-22 13:35 - 2010-03-18 11:15 - 00421200 _____ (Microsoft Corporation) C:\Users\Default User\AppData\Roaming\msvcp100.dll
2014-05-21 15:00 - 2014-06-05 14:58 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-21 14:59 - 2014-05-31 10:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-21 14:59 - 2014-05-31 10:32 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-21 14:59 - 2014-05-21 14:59 - 00001118 _____ () C:\Users\Janis\Malwarebytes Anti-Malware.lnk
2014-05-21 14:59 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-21 14:59 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-05-16 18:14 - 2014-05-16 18:14 - 00000111 _____ () C:\Users\Janis\AppData\Roaming\profiles.ini
2014-05-16 18:14 - 2014-05-16 18:14 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Crash Reports
2014-05-15 15:55 - 2014-05-16 08:57 - 00000000 ____D () C:\AdwCleaner
2014-05-15 15:37 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-05-14 09:24 - 2014-05-01 15:30 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-05-14 09:24 - 2014-05-01 15:30 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 09:14 - 2014-05-14 09:18 - 00001041 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-05-14 09:14 - 2014-05-14 09:18 - 00001035 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\Program Files\WinZip
2014-05-14 09:12 - 2014-05-14 09:13 - 87525736 _____ () C:\Users\Janis\Downloads\winzip180.exe
2014-05-14 05:11 - 2014-05-05 23:40 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-14 05:11 - 2014-05-05 22:25 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-14 05:11 - 2014-05-05 22:00 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-14 05:11 - 2014-05-05 21:10 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-14 05:11 - 2014-04-11 05:03 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-14 05:11 - 2014-04-11 05:03 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-05-14 05:11 - 2014-04-11 03:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-05-14 05:11 - 2014-04-11 01:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-05-14 05:11 - 2014-04-11 00:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-05-14 05:11 - 2014-04-11 00:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-05-14 05:11 - 2014-04-10 22:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-05-14 05:11 - 2014-04-10 22:36 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-05-14 05:11 - 2014-04-10 22:24 - 13288960 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-05-14 05:11 - 2014-04-10 22:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-05-14 05:11 - 2014-04-10 22:05 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-14 05:11 - 2014-04-10 22:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-05-14 05:11 - 2014-04-10 22:02 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-14 05:11 - 2014-04-10 22:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-05-14 05:11 - 2014-04-10 22:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-05-14 05:11 - 2014-04-10 22:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-05-14 05:11 - 2014-04-10 21:59 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-05-14 05:11 - 2014-04-10 21:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-05-14 05:11 - 2014-04-10 21:56 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-14 05:11 - 2014-04-10 21:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-05-14 05:11 - 2014-04-10 21:53 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-05-14 05:11 - 2014-04-10 21:52 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-05-14 05:11 - 2014-04-10 21:46 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-05-14 05:11 - 2014-04-10 21:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-05-14 05:11 - 2014-04-10 21:34 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-05-14 05:11 - 2014-04-10 21:29 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-05-14 05:11 - 2014-04-10 21:25 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-05-14 05:11 - 2014-03-23 21:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-05-14 05:11 - 2014-03-23 21:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-05-14 05:11 - 2014-03-23 21:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-05-14 05:11 - 2014-03-13 02:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-05-14 05:11 - 2014-03-13 01:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-05-14 05:10 - 2014-04-08 17:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-05-14 05:10 - 2014-04-08 17:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-05-14 05:10 - 2014-04-08 13:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-05-14 05:10 - 2014-04-08 13:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-05-14 05:10 - 2014-03-27 04:12 - 21225584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-05-14 05:10 - 2014-03-27 02:48 - 18679728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieUserList
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieSiteList
2014-05-12 14:50 - 2014-05-12 14:50 - 00000933 _____ () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\winzip18.lnk
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\www.shadowexplorer.com
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Program Files (x86)\ShadowExplorer
2014-05-12 13:37 - 2013-08-02 23:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-05-12 13:37 - 2013-08-02 23:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-12 13:37 - 2013-08-02 23:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-05-12 13:36 - 2014-05-12 13:36 - 00000000 ___RD () C:\AHCache

==================== One Month Modified Files and Folders =======

2014-06-05 15:21 - 2014-06-05 15:20 - 00026830 _____ () C:\Users\Janis\Downloads\FRST.txt
2014-06-05 15:21 - 2014-01-04 20:10 - 00000000 ____D () C:\Users\Janis\AppData\Local\Temp
2014-06-05 15:20 - 2014-05-27 13:24 - 00000000 ____D () C:\FRST
2014-06-05 15:19 - 2014-06-05 15:19 - 02068992 _____ (Farbar) C:\Users\Janis\Downloads\FRST64.exe
2014-06-05 15:16 - 2014-01-04 20:22 - 01095214 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-05 15:06 - 2014-01-06 09:30 - 00003918 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F479694E-3CB6-48FE-A07F-9CEDC2F63A35}
2014-06-05 15:02 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-06-05 14:58 - 2014-05-21 15:00 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-06-04 18:57 - 2014-06-04 18:57 - 00000472 _____ () C:\Users\Janis\Desktop\MedicalClaims.csv
2014-06-04 18:51 - 2013-10-29 12:41 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-04 17:28 - 2014-01-25 09:59 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-04 16:05 - 2013-10-29 11:40 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2842308386-1212296173-2251888456-1001
2014-06-04 15:28 - 2013-11-02 21:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2014-06-04 15:28 - 2013-11-02 21:15 - 00000000 ____D () C:\Program Files (x86)\AVS4YOU
2014-06-04 13:07 - 2013-10-29 12:41 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-04 13:06 - 2014-01-04 22:27 - 00000000 __RDO () C:\Users\Janis\SkyDrive
2014-06-03 21:44 - 2013-11-14 02:28 - 00960608 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-03 21:42 - 2014-05-29 21:34 - 00008192 _____ () C:\WINDOWS\SysWOW64\WDPABKP.dat
2014-06-03 21:40 - 2013-08-22 09:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-03 21:25 - 2013-11-14 02:20 - 00020054 _____ () C:\WINDOWS\PFRO.log
2014-06-03 21:25 - 2013-08-22 09:44 - 08231328 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-03 21:23 - 2012-07-26 02:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-06-03 21:11 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-03 21:01 - 2012-07-26 00:26 - 00000112 _____ () C:\WINDOWS\win.ini
2014-06-03 20:53 - 2013-12-15 18:45 - 00960608 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-06-03 19:16 - 2013-08-22 08:25 - 01048576 ___SH () C:\WINDOWS\system32\config\BBI
2014-06-03 15:51 - 2013-10-29 18:44 - 00000000 ___RD () C:\Users\Janis\Google Drive
2014-05-31 12:49 - 2013-10-29 11:32 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Adobe
2014-05-31 10:32 - 2014-05-21 14:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-31 10:32 - 2014-05-21 14:59 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-30 15:02 - 2014-01-04 20:10 - 00000000 ____D () C:\Users\Janis
2014-05-30 15:02 - 2013-11-24 21:21 - 00000000 ____D () C:\Users\Janis\Ref
2014-05-30 06:52 - 2014-05-30 06:52 - 00000000 ____D () C:\Analytics
2014-05-30 06:51 - 2014-05-30 06:51 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Western Digital
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital_Technolog
2014-05-30 00:51 - 2014-05-30 00:51 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western Digital
2014-05-30 00:48 - 2014-05-30 00:47 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-05-30 00:47 - 2014-05-30 00:47 - 00292184 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dxwebsetup.exe
2014-05-30 00:47 - 2014-03-07 21:59 - 00000000 ____D () C:\temp
2014-05-30 00:46 - 2014-05-30 00:46 - 50449456 _____ (Microsoft Corporation) C:\Users\Janis\Downloads\dotNetFx40_Full_x86_x64.exe
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\WDCSAM
2014-05-30 00:39 - 2014-05-30 00:39 - 00000000 ____D () C:\Program Files\DIFX
2014-05-30 00:19 - 2014-05-29 17:24 - 00029162 _____ () C:\WINDOWS\DPINST.LOG
2014-05-29 21:33 - 2014-05-29 17:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Western Digital
2014-05-29 21:32 - 2014-05-29 21:32 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-05-29 21:32 - 2014-05-29 17:24 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-05-29 21:32 - 2014-05-29 15:52 - 00000000 ____D () C:\ProgramData\Western Digital
2014-05-29 21:31 - 2014-02-09 23:37 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-29 21:29 - 2014-05-29 21:29 - 37257919 _____ () C:\Users\Janis\Downloads\WD_SmartWare_Installer_2.4.0.39.zip
2014-05-29 17:43 - 2014-05-29 17:24 - 00001213 _____ () C:\Users\Janis\WD Security.lnk
2014-05-29 17:25 - 2014-05-29 17:25 - 00000000 ____D () C:\Users\Janis\AppData\Local\Western_Digital
2014-05-29 17:15 - 2014-05-29 15:56 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2014-05-29 16:36 - 2012-07-26 00:26 - 00000855 _____ () C:\WINDOWS\system32\Drivers\etc\hosts_bak_285
2014-05-29 15:44 - 2014-05-29 15:44 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-MADRID-Microsoft-Windows-8.1-(64-bit).dat
2014-05-29 15:43 - 2014-05-29 15:43 - 00000000 ____D () C:\RegBackup
2014-05-29 15:41 - 2013-08-22 09:46 - 00293336 _____ () C:\WINDOWS\setupact.log
2014-05-29 08:45 - 2014-05-29 08:45 - 00002179 _____ () C:\Users\Janis\Tweaking.com - Windows Repair (All in One).lnk
2014-05-29 08:44 - 2014-05-29 08:44 - 05558808 _____ () C:\Users\Janis\tweaking.com_windows_repair_aio_setup.exe
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-05-29 08:44 - 2014-05-29 08:44 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-05-28 20:38 - 2013-11-01 18:24 - 00000000 ____D () C:\Users\Janis\Documents\Adobe
2014-05-28 20:17 - 2013-10-29 12:53 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-28 20:16 - 2013-10-29 12:55 - 00000000 ____D () C:\Users\Janis\AppData\Local\Adobe
2014-05-28 20:15 - 2013-10-29 12:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-28 20:08 - 2014-04-06 20:45 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\No Company Name
2014-05-28 20:08 - 2013-10-29 18:34 - 00000000 ____D () C:\Program Files\Adobe
2014-05-28 20:05 - 2013-10-29 12:56 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-05-28 16:28 - 2014-05-28 16:28 - 00001795 _____ () C:\Users\Janis\iTunes.lnk
2014-05-28 16:28 - 2014-05-28 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-28 16:27 - 2014-05-28 16:26 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-28 16:27 - 2014-05-28 16:26 - 00000000 ____D () C:\Program Files\iTunes
2014-05-28 16:27 - 2014-05-28 14:11 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-28 16:26 - 2014-05-28 16:26 - 00000000 ____D () C:\Program Files\iPod
2014-05-28 16:26 - 2014-05-28 16:25 - 112616784 _____ (Apple Inc.) C:\Users\Janis\iTunes64Setup.exe
2014-05-28 16:12 - 2014-05-28 16:12 - 00001175 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00001163 _____ () C:\Users\Janis\Mozilla Firefox.lnk
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-28 16:12 - 2014-05-28 16:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-28 16:09 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-05-28 16:05 - 2014-05-28 16:05 - 00002279 _____ () C:\Users\Janis\Google Chrome.lnk
2014-05-28 16:05 - 2014-05-28 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-28 16:05 - 2013-10-29 12:41 - 00000000 ____D () C:\Users\Janis\AppData\Local\Google
2014-05-28 16:05 - 2013-10-29 12:41 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-28 16:01 - 2014-02-27 19:40 - 00000000 ____D () C:\Users\Janis\.nbi
2014-05-28 15:39 - 2014-05-28 15:25 - 00002469 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-05-28 15:39 - 2014-05-28 15:25 - 00002230 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-05-28 15:39 - 2014-05-28 15:25 - 00002069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002160 _____ () C:\Users\Janis\Adobe FormsCentral.lnk
2014-05-28 15:25 - 2014-05-28 15:25 - 00002046 _____ () C:\Users\Janis\Adobe Acrobat XI Pro.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001333 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2014-05-28 15:05 - 2014-05-28 15:05 - 00001321 _____ () C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-05-25 14:29 - 2013-10-29 16:23 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-05-25 13:44 - 2013-10-29 16:23 - 93223848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-22 18:02 - 2014-05-22 18:02 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Mozilla
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00020894 _____ () C:\Users\Default User\AppData\Roaming\install.log
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default\AppData\Roaming\browser
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\webapprt
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\uninstall
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\dictionaries
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\defaults
2014-05-22 13:35 - 2014-05-22 13:35 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\browser
2014-05-21 14:59 - 2014-05-21 14:59 - 00001118 _____ () C:\Users\Janis\Malwarebytes Anti-Malware.lnk
2014-05-21 14:59 - 2013-10-29 18:18 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Malwarebytes
2014-05-21 14:59 - 2013-10-29 18:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-17 06:19 - 2013-08-22 08:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-05-16 18:14 - 2014-05-16 18:14 - 00000111 _____ () C:\Users\Janis\AppData\Roaming\profiles.ini
2014-05-16 18:14 - 2014-05-16 18:14 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Crash Reports
2014-05-16 08:57 - 2014-05-15 15:55 - 00000000 ____D () C:\AdwCleaner
2014-05-15 16:11 - 2013-10-29 11:32 - 00000000 ___RD () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-15 15:52 - 2013-12-15 15:17 - 00000000 ____D () C:\Qoobox
2014-05-15 05:20 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-14 09:22 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-14 09:18 - 2014-05-14 09:14 - 00001041 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-05-14 09:18 - 2014-05-14 09:14 - 00001035 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-05-14 09:15 - 2014-04-07 12:47 - 00000000 ____D () C:\ProgramData\WinZip
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-05-14 09:14 - 2014-05-14 09:14 - 00000000 ____D () C:\Program Files\WinZip
2014-05-14 09:14 - 2013-08-22 10:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2014-05-14 09:13 - 2014-05-14 09:12 - 87525736 _____ () C:\Users\Janis\Downloads\winzip180.exe
2014-05-14 06:29 - 2013-10-29 11:42 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 06:27 - 2013-11-02 19:22 - 00000039 _____ () C:\WINDOWS\vbaddin.ini
2014-05-14 03:45 - 2013-10-29 12:35 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\Dropbox
2014-05-13 14:28 - 2014-01-25 09:59 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-05-12 20:11 - 2013-10-29 12:37 - 00000000 ___RD () C:\Users\Janis\Dropbox
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieUserList
2014-05-12 15:11 - 2014-05-12 15:11 - 00000000 __SHD () C:\Users\Janis\AppData\Local\EmieSiteList
2014-05-12 14:50 - 2014-05-12 14:50 - 00000933 _____ () C:\Users\Janis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\winzip18.lnk
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Users\Janis\AppData\Roaming\www.shadowexplorer.com
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer
2014-05-12 13:41 - 2014-05-12 13:41 - 00000000 ____D () C:\Program Files (x86)\ShadowExplorer
2014-05-12 13:39 - 2014-02-09 23:51 - 00000000 ____D () C:\Program Files\MSBuild
2014-05-12 13:36 - 2014-05-12 13:36 - 00000000 ___RD () C:\AHCache
2014-05-12 13:30 - 2014-02-09 23:58 - 00000000 ____D () C:\Users\Janis\Documents\Visual Studio 2013
2014-05-12 07:26 - 2014-05-21 14:59 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-21 14:59 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2013-10-29 18:17 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-05-09 03:46 - 2013-10-29 12:41 - 00003882 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-09 03:46 - 2013-10-29 12:41 - 00003646 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 08:45 - 2013-10-29 17:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-05-06 21:28 - 2014-05-22 13:35 - 08990919 _____ () C:\Users\Default\AppData\Roaming\omni.ja
2014-05-06 21:28 - 2014-05-22 13:35 - 08990919 _____ () C:\Users\Default User\AppData\Roaming\omni.ja
2014-05-06 21:28 - 2014-05-22 13:35 - 00002053 _____ () C:\Users\Default\AppData\Roaming\precomplete
2014-05-06 21:28 - 2014-05-22 13:35 - 00002053 _____ () C:\Users\Default User\AppData\Roaming\precomplete
2014-05-06 21:27 - 2014-05-22 13:35 - 23516272 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\xul.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 23516272 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\xul.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 03839088 _____ () C:\Users\Default\AppData\Roaming\mozjs.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 03839088 _____ () C:\Users\Default User\AppData\Roaming\mozjs.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 01795696 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nss3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 01795696 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nss3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00647280 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libGLESv2.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00647280 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libGLESv2.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00403568 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssckbi.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00403568 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssckbi.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00277104 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\updater.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00277104 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\updater.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00198232 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\maintenanceservice_installer.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00198232 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\maintenanceservice_installer.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00170960 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\webapp-uninstaller.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00170960 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\webapp-uninstaller.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00152688 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\softokn3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00152688 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\softokn3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00142448 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozglue.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00142448 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozglue.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00119408 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\maintenanceservice.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00119408 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\maintenanceservice.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00093808 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\webapprt-stub.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00093808 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\webapprt-stub.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00092784 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\nssdbm3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00092784 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\nssdbm3.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00028272 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-hang-ui.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00028272 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-hang-ui.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00018544 _____ (Mozilla Corporation) C:\Users\Default\AppData\Roaming\plugin-container.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00018544 _____ (Mozilla Corporation) C:\Users\Default User\AppData\Roaming\plugin-container.exe
2014-05-06 21:27 - 2014-05-22 13:35 - 00017008 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\mozalloc.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00017008 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\mozalloc.dll
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default\AppData\Roaming\softokn3.chk
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default\AppData\Roaming\nssdbm3.chk
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\softokn3.chk
2014-05-06 21:27 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\nssdbm3.chk
2014-05-06 21:26 - 2014-05-22 13:35 - 10594416 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icudt52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 10594416 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icudt52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 04881520 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\gkmedias.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 04881520 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\gkmedias.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 01266800 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuin52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 01266800 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuin52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00965232 _____ (The ICU Project) C:\Users\Default\AppData\Roaming\icuuc52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00965232 _____ (The ICU Project) C:\Users\Default User\AppData\Roaming\icuuc52.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00305264 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\freebl3.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00305264 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\freebl3.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00117360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\crashreporter.exe
2014-05-06 21:26 - 2014-05-22 13:35 - 00117360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\crashreporter.exe
2014-05-06 21:26 - 2014-05-22 13:35 - 00075376 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\breakpadinjector.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00075376 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\breakpadinjector.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00053360 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\libEGL.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00053360 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\libEGL.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00020080 _____ (Mozilla Foundation) C:\Users\Default\AppData\Roaming\AccessibleMarshal.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00020080 _____ (Mozilla Foundation) C:\Users\Default User\AppData\Roaming\AccessibleMarshal.dll
2014-05-06 21:26 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default\AppData\Roaming\freebl3.chk
2014-05-06 21:26 - 2014-05-22 13:35 - 00000899 _____ () C:\Users\Default User\AppData\Roaming\freebl3.chk
2014-05-06 21:08 - 2014-05-22 13:35 - 00001245 _____ () C:\Users\Default\AppData\Roaming\updater.ini
2014-05-06 21:08 - 2014-05-22 13:35 - 00001245 _____ () C:\Users\Default User\AppData\Roaming\updater.ini
2014-05-06 21:08 - 2014-05-22 13:35 - 00000099 _____ () C:\Users\Default\AppData\Roaming\dependentlibs.list
2014-05-06 21:08 - 2014-05-22 13:35 - 00000099 _____ () C:\Users\Default User\AppData\Roaming\dependentlibs.list
2014-05-06 19:33 - 2014-05-22 13:35 - 00000143 _____ () C:\Users\Default\AppData\Roaming\platform.ini
2014-05-06 19:33 - 2014-05-22 13:35 - 00000143 _____ () C:\Users\Default User\AppData\Roaming\platform.ini
2014-05-06 19:15 - 2014-05-22 13:35 - 00000671 _____ () C:\Users\Default\AppData\Roaming\application.ini
2014-05-06 19:15 - 2014-05-22 13:35 - 00000671 _____ () C:\Users\Default User\AppData\Roaming\application.ini
2014-05-06 19:11 - 2014-05-22 13:35 - 00000646 _____ () C:\Users\Default\AppData\Roaming\removed-files
2014-05-06 19:11 - 2014-05-22 13:35 - 00000646 _____ () C:\Users\Default User\AppData\Roaming\removed-files
2014-05-06 17:57 - 2014-05-22 13:35 - 00000132 _____ () C:\Users\Default\AppData\Roaming\update-settings.ini
2014-05-06 17:57 - 2014-05-22 13:35 - 00000132 _____ () C:\Users\Default User\AppData\Roaming\update-settings.ini
2014-05-06 17:50 - 2014-05-22 13:35 - 00004003 _____ () C:\Users\Default\AppData\Roaming\crashreporter.ini
2014-05-06 17:50 - 2014-05-22 13:35 - 00004003 _____ () C:\Users\Default User\AppData\Roaming\crashreporter.ini

Files to move or delete:
====================
C:\Users\Janis\bl_pixie_dust_trails.exe
C:\Users\Janis\googledrivesync.exe
C:\Users\Janis\HPPSdr.exe
C:\Users\Janis\iTunes64Setup.exe
C:\Users\Janis\startuplite-setup-1.07.exe
C:\Users\Janis\tweaking.com_windows_repair_aio_setup.exe
C:\Users\Janis\WDFirmwareUpdater.exe
C:\Users\Janis\wic_x64_enu.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-06-04 16:06

==================== End Of Log ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2014
Ran by Janis at 2014-06-05 15:21:48
Running from C:\Users\Janis\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.07 - Adobe Systems)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12.2.1 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 13.0.0.83 - Adobe Systems Incorporated) Hidden
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CC (HKLM-x32\...\{00E094E1-A852-11E2-803D-ACEA632352B4}) (Version: 13 - Adobe Systems Incorporated)
Adobe Edge Animate CC (HKLM-x32\...\{1C5E96F4-6F15-4A96-BF62-9D1F60B44FF1}) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Edge Code CC (HKLM-x32\...\{641F742F-1497-51B4-F481-1037096A90A0}) (Version: 0.97 - Adobe Systems Incorporated)
Adobe Edge Inspect CC (HKLM-x32\...\{67D22EA0-4601-4450-9C99-042DABB0A315}) (Version: 1.0.408 - Adobe Systems Incorporated)
Adobe Edge Reflow CC Preview (HKLM\...\{4CBD2327-FA4C-4D42-8903-CE1E96FE0FBF}) (Version: 0.37.15833 - Adobe Systems Incorporated)
Adobe Exchange Panel (HKLM-x32\...\{41A12FFC-89E9-4743-A51E-00975CA31F40}) (Version: 1 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit CC (HKLM-x32\...\{6297487E-3778-4F72-B458-55690418DB98}) (Version: 4.0.0.0 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.1.1 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Flash Builder 4.7 (64 Bit) (HKLM-x32\...\{848DE8E1-521D-4748-A158-517708107EF3}) (Version: 4.7 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Professional CC (HKLM-x32\...\{B56B95BF-7161-4166-8288-DB1BA9F6C9B8}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CC (HKLM-x32\...\{F2321021-08A2-44D6-B1DF-BDB415F23EC3}) (Version: 17.0 - Adobe Systems Incorporated)
Adobe InCopy CC (HKLM-x32\...\{2606D96F-C1A3-1014-9A8F-E3561A1AC78D}) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.3 64-bit (HKLM\...\{2DD71ACB-552D-402C-9529-7906ACB95C30}) (Version: 5.3.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVS Audio Converter 7 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 7.2.1.528 - Online Media Technologies Ltd.)
AVS Audio Editor 7.1 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 7.2.1.487 - Online Media Technologies Ltd.)
AVS Audio Recorder 4.0 (HKLM-x32\...\AVS Audio Recorder_is1) (Version: 4.0.2.22 - Online Media Technologies Ltd.)
AVS Cover Editor 2.0.1.3 (HKLM-x32\...\AVSCoverEditor2_is1) (Version: 2.0.1.3 - Online Media Technologies Ltd.)
AVS Disc Creator 5 (HKLM-x32\...\AVS Disc Creator_is1) (Version: 5.1.2.525 - Online Media Technologies Ltd.)
AVS Document Converter 2.2.8 (HKLM-x32\...\AVS Document Converter_is1) (Version: 2.2.8.225 - Online Media Technologies Ltd.)
AVS DVD Copy 4.1.2.283 (HKLM-x32\...\AVS DVD Copy_is1) (Version: 4.1.2.283 - Online Media Technologies Ltd.)
AVS Image Converter 3.0.2.270 (HKLM-x32\...\AVS Image Converter_is1) (Version: 3.0.2.270 - Online Media Technologies Ltd.)
AVS Media Player 4.2.2.104 (HKLM-x32\...\AVS Media Player_is1) (Version: 4.2.2.104 - Online Media Technologies Ltd.)
AVS Photo Editor (HKLM-x32\...\AVS Photo Editor_is1) (Version: 2.1.2.136 - Online Media Technologies Ltd.)
AVS Ringtone Maker version 1.6 (HKLM-x32\...\AVS Ringtone Maker 1.6_is1) (Version: 1.6.1.140 - Online Media Technologies Ltd.)
AVS Video Converter 8 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 8.4.2.541 - Online Media Technologies Ltd.)
AVS Video Editor 6 (HKLM-x32\...\AVS Video Editor_is1) (Version: 6.4.2.241 - Online Media Technologies Ltd.)
AVS Video Recorder 2.5 (HKLM-x32\...\AVS Video Recorder_is1) (Version: 2.5.6.87 - Online Media Technologies Ltd.)
AVS Video ReMaker 4.2.2.153 (HKLM-x32\...\AVS Video ReMaker_is1) (Version: 4.2.2.153 - Online Media Technologies Ltd.)
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Behaviors SDK (XAML) for Visual Studio (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.341.0 - Microsoft Corporation)
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Citrix Authentication Manager (x32 Version: 5.0.0.60597 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HDX Flash Redirection) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.0.0.91 - Citrix Systems, Inc.)
Citrix Receiver Inside (x32 Version: 3.4.0.45902 - Citrix Systems, Inc.) Hidden
Citrix Receiver Updater (x32 Version: 4.0.0.45893 - Citrix Systems, Inc.) Hidden
Citrix Receiver(Aero) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Citrix Receiver(DV) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Citrix Receiver(USB) (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version:  - )
CyberLink PowerDirector 11 (HKLM-x32\...\InstallShield_{551F492A-01B0-4DC4-866F-875EC4EDC0A8}) (Version: 11.0.0.3230 - CyberLink Corp.)
CyberLink PowerDirector 11 (Version: 11.0.0.3230 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.3206 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{349F73CA-653A-43A6-AE77-970B07D6EDA0}) (Version:  - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{349F73CA-653A-43A6-AE77-970B07D6EDA0}) (Version:  - Microsoft)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote v. 5.0.3 (HKLM-x32\...\{32D39568-3B77-11E3-88CE-00163E98E7D0}) (Version: 5.0.3.1614 - Evernote Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Drive (HKLM-x32\...\{418BAAD1-754D-48B4-B078-46EF4F25AF42}) (Version: 1.15.6556.8063 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java SE Development Kit 7 Update 51 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170510}) (Version: 1.7.0.510 - Oracle)
JavaScript Tooling (Version: 12.0.21005 - Microsoft Corporation) Hidden
JavaScript Tooling (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Lightroom 5.2 (HKLM-x32\...\{9bcd38e7-1f9a-4536-8cd4-96448263f367}) (Version: 5.2 - Adobe Systems Incorporated)
LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us (x32 Version: 8.59.29989 - Microsoft) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Advertising SDK for Windows 8.1 - ENU (x32 Version: 8.1.30809.0 - Microsoft Corporation) Hidden
Microsoft Advertising SDK for Windows Phone - ENU (x32 Version: 6.2.960.0 - Microsoft Corporation) Hidden
Microsoft Advertising Service Extension for Visual Studio (x32 Version: 12.0.30809.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 - Visual Studio 2013 - ENU (x32 Version: 4.1.21001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 Runtime (x32 Version: 4.0.20716.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2013 - ENU (x32 Version: 5.0.11001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 - Visual Studio 2013 - ENU (x32 Version: 4.1.21001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 Runtime (x32 Version: 2.0.20716.0 - Microsoft Corporation) Hidden
Microsoft C++ Azure Mobile SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft C++ REST SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft Exchange Web Services Managed API 2.0 (x32 Version: 15.0.516.14 - Microsoft Corporation) Hidden
Microsoft Expression Blend SDK for .NET 4 (x32 Version: 2.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft Identity Extensions (Version: 2.0.1459.0 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 CoreRes - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 v4.0 Tools (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 v4.0 ToolsRes - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch v4.0 SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.3.188.0 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio 2013 (x32 Version: 2.7.40911.287 - Microsoft Corporation) Hidden
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) - ENU Language Pack (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 12.0.21005.01 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (x32 Version: 12.0.21005.01 - Microsoft Corporation) Hidden
Microsoft Report Viewer Add-On for Visual Studio 2013 (x32 Version: 11.1.3366.16 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio 2012 Nuget Package (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio ENU Language Pack (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Team Foundation Server 2013 Object Model (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++  ARM Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Native Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Native Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-arm Cross Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-arm Cross Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-x86 Cross Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-x86 Cross Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x86 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers For Windows Phone - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers For Windows Phone (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Core Libraries (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Core Libraries For Windows Phone (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86-x64 Compilers (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013  x64 Designtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Extended Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Microsoft Foundation Class Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50330 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Add-in for Windows Phone - ENU Language Pack (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Add-in for Windows Phone (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Devenv (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Devenv Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Performance Collection Tools - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Performance Collection Tools (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Preparation (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Profiling Tools (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 VsGraphics Helper Dependencies (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2013 - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2013 (HKLM-x32\...\{6dff50d0-3bc3-4a92-b724-bf6d6a99de4f}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Professional 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Web Developer Tools 2013 - Visual Studio 2013 (x32 Version: 2.0.40926.0 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 en-US)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)
Online Plug-in (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Python Tools Redirection Template (x32 Version: 1.1 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Riverpoint Writer (HKLM-x32\...\FF389026-F961-42C5-BACD-B4A3AA73E0F3) (Version: 2.0.0.12 - Apollo Group, Inc.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Self-service Plug-in (x32 Version: 4.0.0.40674 - Citrix Systems, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
ShadowExplorer 0.9 (HKLM-x32\...\ShadowExplorer_is1) (Version: 0.9.462.0 - ShadowExplorer.com)
SharePoint Client Components (Version: 15.0.4481.1505 - Microsoft Corporation) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.8 - SmartSound Software Inc.) Hidden
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.7.5 - Tweaking.com)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.VISIOR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.VISIOR_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.VISIOR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0054-0409-0000-0000000FF1CE}_Office14.VISIOR_{A5659197-BDB5-467F-A71A-1B817DDD7BDD}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Visual F# 3.1 SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual F# 3.1 VS (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio 2013 Prerequisites - ENU Language Pack (Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio 2013 Prerequisites (Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 1.0.9600.16408 - Microsoft Corporation) Hidden
Vs2012 Verification SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WD Drive Utilities (HKLM-x32\...\{72E40002-8CEC-47C1-A099-83AC8E173BF0}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{F181233F-67DF-4995-A159-EB81F2B5500B}) (Version: 2.4.0.39 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{83270912-15C7-4336-822E-E8F1B1BBCA60}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
WD SES Driver Setup (x32 Version: 1.0.3.3 - Western Digital) Hidden
WD SmartWare (HKLM\...\{6E936B32-5120-412E-AC87-C1D3651E531F}) (Version: 2.4.0.39 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{9af08980-8d36-4304-a8d0-53dc0c7d93a5}) (Version: 2.4.0.39 - Western Digital Technologies, Inc.)
Windows 8 Development Essentials (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Windows App Certification Kit Native Components (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows App Certification Kit x64 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Azure Mobile Services SDK (x32 Version: 1.0.10815.0 - Microsoft Corporation) Hidden
Windows Azure Mobile Services Tools for Visual Studio 2013 Preview - v1.0 (x32 Version: 1.0.60906.1602 - Microsoft Corporation) Hidden
Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0 (x32 Version: 1.0.10829.1601 - Microsoft Corporation) Hidden
Windows Azure Tools for LightSwitch for Visual Studio 2013 - v2.1 (x32 Version: 2.1.10909.1601 - Microsoft) Hidden
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
Windows Phone 8.0 Emulation Host (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Windows Phone 8.0 Emulation Images (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Windows Phone 8.0 Managed SDK Profiler (ARM) (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Windows Phone 8.0 Managed SDK Profiler (X86) (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Windows Phone Emulator 8.0 Configurator (x32 Version: 11.0.60830 - Microsoft Corporation) Hidden
Windows Phone SDK 8.0 Assemblies (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Windows Phone Tools Finalizer (Version: 11.0.60610 - Microsoft Corporation) Hidden
Windows Runtime Intellisense Content - en-us (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (Version: 11.0.51106 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Workflow Manager Client 1.0 (Version: 2.0.30813.2 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.30725.1 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

29-05-2014 20:44:29 Tweaking.com - Windows Repair
31-05-2014 15:46:21 WD SmartWare Installer
04-06-2014 01:09:17 Tweaking.com - Windows Repair

==================== Hosts content: ==========================

2012-07-26 00:26 - 2014-06-03 21:01 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {02183B42-5510-48F1-A9FC-F173C1AC39E3} - System32\Tasks\Start Google Chrome at logon => Chrome.exe /recycle
Task: {02AF1410-057E-46CD-9B7A-52E8BAE40139} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {03E0DD2B-0EF1-44BE-B004-27FFCAD83630} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {126E7F9C-61F1-47BF-BA1B-A1582B8DF2A7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-05-25] (Microsoft Corporation)
Task: {202C162C-1EAE-4D71-93C7-E925F26127E3} - System32\Tasks\Western Digital\SmartWare\____Volume_79bf68cd_c67d_4ca0_bbab_6c1164de4f69______Volume_40c0d94e_e771_11e3_beee_a41f724fcedd__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2014-05-09] (Western Digital Technologies, Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {498BFBE5-7010-47F4-884F-B7E984C3F193} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {49A13227-738C-4DC9-8445-B720714B5790} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {4D4DE22B-A56C-400E-BB41-61DBB67C195D} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {4E3078C4-6C26-47CF-A5EB-5996DB73AA00} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13] (Adobe Systems Incorporated)
Task: {53474C5F-83EC-486F-8F48-138535E6F5B8} - System32\Tasks\MBAM => Chrome.exe /recycle
Task: {56D8CE82-C480-4938-8EDC-60D7FA59E06E} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6BD43712-B2C2-4816-BCBD-2FCF163DC4D5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {716217F5-0FA9-4D34-9582-5D3130C57F05} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {81B14B12-3FC0-4E2B-818E-0C8F56CBB343} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A1C2A33C-75E5-434D-9B67-45413D2D8931} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {A92AA790-85DC-4F6C-9B81-02F497253E65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-29] (Google Inc.)
Task: {C0FDD34A-2138-4127-8702-1F4E0244B859} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-29] (Google Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E4DDCE55-1360-4ED8-9580-650E1330031B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F35766F5-0B69-4F41-B3F8-8D63EB9BC5F2} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-02 19:38 - 2012-09-04 14:05 - 00390672 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-05-23 02:10 - 2014-05-23 02:10 - 00671904 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 17:23 - 2010-10-20 17:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-06-18 10:24 - 2012-06-18 10:24 - 00222720 _____ () C:\Program Files\New folder\Notepad++\NppShell_05.dll
2013-12-21 01:02 - 2013-12-21 01:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-01-01 20:01 - 2013-01-01 20:01 - 00228264 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbPc.DLL
2013-09-14 03:51 - 2013-09-14 03:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 03:50 - 2013-09-14 03:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Janis\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/04/2014 04:16:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (06/04/2014 04:06:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (06/03/2014 09:37:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (06/03/2014 09:23:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Repair_Windows.exe, version: 2.7.0.5, time stamp: 0x538d5ca8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc000041d
Fault offset: 0x753b1a91
Faulting process id: 0x12b0
Faulting application start time: 0xRepair_Windows.exe0
Faulting application path: Repair_Windows.exe1
Faulting module path: Repair_Windows.exe2
Report Id: Repair_Windows.exe3
Faulting package full name: Repair_Windows.exe4
Faulting package-relative application ID: Repair_Windows.exe5

Error: (06/03/2014 09:23:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Repair_Windows.exe, version: 2.7.0.5, time stamp: 0x538d5ca8
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x12b0
Faulting application start time: 0xRepair_Windows.exe0
Faulting application path: Repair_Windows.exe1
Faulting module path: Repair_Windows.exe2
Report Id: Repair_Windows.exe3
Faulting package full name: Repair_Windows.exe4
Faulting package-relative application ID: Repair_Windows.exe5

Error: (06/03/2014 09:02:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider StorageWMI attempted to register query "select * from MSFT_StorageModificationEvent" whose target class "MSFT_StorageModificationEvent" in //./root/Microsoft/Windows/Storage namespace does not exist. The query will be ignored.

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider StorageWMI attempted to register query "select * from MSFT_StorageDepartureEvent" whose target class "MSFT_StorageDepartureEvent" in //./root/Microsoft/Windows/Storage namespace does not exist. The query will be ignored.

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider StorageWMI attempted to register query "select * from MSFT_StorageArrivalEvent" whose target class "MSFT_StorageArrivalEvent" in //./root/Microsoft/Windows/Storage namespace does not exist. The query will be ignored.

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider StorageWMI attempted to register query "select * from MSFT_StorageAlertEvent" whose target class "MSFT_StorageAlertEvent" in //./root/Microsoft/Windows/Storage namespace does not exist. The query will be ignored.


System errors:
=============
Error: (06/05/2014 03:20:20 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:20:20 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:20:20 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:20:20 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:20:20 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:06:40 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:06:40 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:06:40 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:06:40 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394

Error: (06/05/2014 03:06:40 PM) (Source: DCOM) (EventID: 10016) (User: MADRID)
Description: application-specificLocalActivation{9E175B6D-F52A-11D8-B9A5-505054503030}{9E175B9C-F52A-11D8-B9A5-505054503030}MadridJanisS-1-5-21-2842308386-1212296173-2251888456-1001LocalHost (Using LRPC)UnavailableS-1-15-2-1430448594-2639229838-973813799-439329657-1197984847-4069167804-1277922394


Microsoft Office Sessions:
=========================
Error: (06/04/2014 04:16:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe

Error: (06/04/2014 04:06:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe

Error: (06/03/2014 09:37:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe

Error: (06/03/2014 09:23:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Repair_Windows.exe2.7.0.5538d5ca8unknown0.0.0.000000000c000041d753b1a9112b001cf7f8db14ac2bbC:\Users\Janis\Desktop\Repair_Windows.exeunknown43cdf3c2-eb8f-11e3-bef2-a41f724fcedd

Error: (06/03/2014 09:23:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Repair_Windows.exe2.7.0.5538d5ca8unknown0.0.0.000000000c00000050000000012b001cf7f8db14ac2bbC:\Users\Janis\Desktop\Repair_Windows.exeunknown42e18fac-eb8f-11e3-bef2-a41f724fcedd

Error: (06/03/2014 09:02:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: StorageWMIselect * from MSFT_StorageModificationEventMSFT_StorageModificationEvent//./root/Microsoft/Windows/Storage

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: StorageWMIselect * from MSFT_StorageDepartureEventMSFT_StorageDepartureEvent//./root/Microsoft/Windows/Storage

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: StorageWMIselect * from MSFT_StorageArrivalEventMSFT_StorageArrivalEvent//./root/Microsoft/Windows/Storage

Error: (06/03/2014 08:59:34 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: StorageWMIselect * from MSFT_StorageAlertEventMSFT_StorageAlertEvent//./root/Microsoft/Windows/Storage


CodeIntegrity Errors:
===================================
  Date: 2014-06-05 15:21:30.229
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-05 15:21:30.182
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-04 15:27:49.357
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-03 19:38:35.693
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 21:50:11.170
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 18:12:18.591
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 17:35:10.607
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:18.373
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:18.264
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-05-29 16:57:18.045
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 31%
Total physical RAM: 3967.59 MB
Available physical RAM: 2709.31 MB
Total Pagefile: 5183.59 MB
Available Pagefile: 3105.2 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:434.12 GB) (Free:303.14 GB) NTFS
Drive f: (My Passport) (Fixed) (Total:465.73 GB) (Free:435.35 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 63BFDA0D)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 466 GB) (Disk ID: 0004A183)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#14 TheShooter93

TheShooter93

    Cody


  • Malware Response Team
  • 4,792 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Orlando, Florida
  • Local time:03:25 AM

Posted 06 June 2014 - 08:31 AM

Hello Poweroo,
 
Glad to hear the ad is now gone with Adblock Plus.  :thumbsup2:
 
Your logs are looking good too!
 
==================================
 
Java Update
 
During the course of our time together, Java came out with an update to their software. Java is often exploited by malware, so it is important your system stays up-to-date with it.
 
Please download and install Java 7 Update 60.
 
Reboot your machine.
 
==================================
 
What I'd like to see in your next post:  :thumbsup2:

  • Confirmation that Java 7 Update 60 installed successfully.
  • How is your computer running? Any remaining problems/questions?

CCNA R&SCCNA Security | Network+  |  B.S. - Information Technology | Cyber Security Engineer

If I am helping you and have not replied within 48 hours, please send me a private message.

 

 


#15 Poweroo

Poweroo
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Austin Texas
  • Local time:02:25 AM

Posted 06 June 2014 - 10:05 AM

Thank you so much.  It's all good.

 

Java has been updated, as well.

 

Hope you reach your goals, and godspeed.

 

~Hazel   :busy:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users