Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Backdoor:win32/fynloski.F


  • This topic is locked This topic is locked
6 replies to this topic

#1 cschmitzjc

cschmitzjc

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 16 July 2014 - 12:40 PM

 

Microsoft Security Essentials Keeps popping up with this says it is cleaning it yet it keeps returning. I googled for fynloski.f and only found references to fynloski.a.

I've tried running Malwarebytes, SuperAntiSpyware, AVG, and several other tools recommended here but nothing has resolved the problem yet. Any Advice?

 

I had posted the same previously here looking for a solution a week ago, but i may have posted in wrong place so trying here now.

Thanks.

 


BC AdBot (Login to Remove)

 


m

#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,875 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:33 PM

Posted 21 July 2014 - 09:07 AM

Hello and Welcome on board cschmitzjc,

my Name is Machiavelli and I will assist you with your problem.
If you booted into safe mode on your computer then print my instructions!
I'm in the 'Malware Staff Team' and will provide you with advice:

To remove Malware on a computer can be very complicated. Malware (malicious software) is able to hide and so I may not be able to find it so easily. In order to remove Malware from you Computer, you need to follow my instructions carefully. Don't be worried if you don't know what to do. just ask me! Please stay in contact with me until the problem is fixed.

Below are a few tips:
  • Removing Malware is usually very difficult.
    We need to search and analyse a lot of files. As this is done in our free time, please be patient especially if I don't answer every day!
  • Please follow these instructions
    If you don't follow the instructions your computer may crash. If you fix your PC by yourself, this can be very risky!
  • Please stay in contact with me until your problem is resolved
    As Malware may not be totally removed in one session or in one day, please stay in contact with me until the problem is resolved.
  • Please don't run any other tools without consulting with me as this can complicate finding and removing all Malware
    Don't run any tools while I'm fixing your PC. That is counter productive and again, will only complicate finding and removing all Malware!
  • Read my post completely
    If you don't do so, you may make mistakes that could result in your System crashing by your own actions!
 

I've tried running Malwarebytes, SuperAntiSpyware, AVG, and several other tools recommended here but nothing has resolved the problem yet. Any Advice?

Please post the logs.

Please download FRST (by Farbar) from the link below and save it to your Desktop.

Download Mirror #1

If you are unsure whether you have 32-Bit or 64-Bit Windows, see here
  • Disable all anti-virus and anti-malware software to prevent them inhibiting FRST in any way. If you are unsure how to do this, see THIS.
  • Double-click FRST.exe/FRST64.exe (depending on which version you downloaded) to run it. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • When the disclaimer appears, click Yes.
  • Click Scan to start FRST.
  • When FRST finishes scanning, two logs, FRST.txt and Addition.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of both of these logs into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,875 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:33 PM

Posted 24 July 2014 - 06:03 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,875 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:33 PM

Posted 25 July 2014 - 09:35 AM

User returned.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 cschmitzjc

cschmitzjc
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:33 PM

Posted 25 July 2014 - 09:43 AM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-07-2014 01
Ran by Administrator at 2014-07-25 09:35:59
Running from C:\Users\administrator\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Microsoft Security Essentials Prerelease (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials Prerelease (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
 Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
ActiveState ActivePython 2.7.5.6 (64-bit) (HKLM\...\{DA4A4980-4534-451A-88AA-9F65AF3C4019}) (Version: 2.7.6 - ActiveState Software Inc.)
ActiveState ActivePython 3.3.2.0 (32-bit) (HKLM-x32\...\{87D0AB23-EA6B-4FFC-9026-BB1293477577}) (Version: 3.3.0 - ActiveState Software Inc.)
Add or Remove Adobe Creative Suite 3 Master Collection (HKLM-x32\...\Adobe_4dcfd9b7e901b57f81f667144603236) (Version: 1.0 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe After Effects CS3 Presets (x32 Version: 8 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (x32 Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe BridgeTalk Plugin CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Recommended Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{288DB08D-0708-4A94-B055-55B99E39EB62}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Default Language CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS3 (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}) (Version: 10.1.52.14 - Adobe Systems, Inc.)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (HKLM-x32\...\{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Flash Player 9 Plugin (HKLM-x32\...\{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Fonts All (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 Icon Handler (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe MotionPicture Color Files (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (x32 Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (x32 Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Setup (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS3 (x32 Version: 0.1 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (x32 Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (x32 Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Video Profiles (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WAS CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Adobe WinSoft Linguistics Plugin (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP DVA Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
AHV content for Acrobat and Flash (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Allok Video to DVD Burner 2.2.0429 (HKLM-x32\...\Allok Video to DVD Burner_is1) (Version:  - Allok Soft Inc)
AmrAddonInstall (Version: 1.0.5.0 - Microsoft) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Aptana Studio 3 (HKLM-x32\...\Aptana Studio 3) (Version: 3.0.1 - Appcelerator, Inc.)
Aqua Data Studio 14.0 - 64bit (HKLM\...\7608-2489-7508-1278) (Version: 14.0 - AquaFold, Inc.)
Ask Mr. Robot (HKLM-x32\...\{2f7ba72b-08e0-4ff8-9b06-6c9c085c66f4}) (Version: 1.2.9.0 - Ask Mr. Robot)
Ask Mr. Robot (Version: 1.2.9.0 - Ask Mr. Robot) Hidden
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.7.0.0 - Ask.com) <==== ATTENTION
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Autodesk 3ds Max 2013 64-bit (HKLM\...\Autodesk 3ds Max 2013 64-bit) (Version: 15.0.0.347 - Autodesk)
Autodesk 3ds Max 2013 64-bit (Version: 15.0.0.347 - Autodesk) Hidden
Autodesk Backburner 2013.0.0 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2013.0.0 - Autodesk, Inc.)
Autodesk DirectConnect 2013 64-bit (HKLM\...\Autodesk DirectConnect 2013 64-bit) (Version: 7.0.28.0 - Autodesk)
Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0 - Autodesk) Hidden
Autodesk Essential Skills Movies for 3ds Max 2013 64-bit (HKLM\...\{7EDE5B68-1FB0-405D-88F0-A34236002DA8}) (Version: 1.0.0.1 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2013 64-bit (HKLM\...\{696BB53C-28E6-1664-974E-D42FFF5B8E04}) (Version: 15.0 - Autodesk)
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (HKLM\...\{06E18300-BB64-1664-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk)
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.0.0.250 - AVG Technologies)
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Behaviors SDK (XAML) for Visual Studio (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Binreader (HKLM-x32\...\{3D47B2C0-8748-4450-99AE-0746A5A74C8E}) (Version: 1.0.0 - Binreader)
BitNami RubyStack (HKLM-x32\...\BitNami RubyStack 1.9.3-12) (Version: 1.9.3-12 - BitNami)
Bitvise SSH Client 4.63 (remove only) (HKLM-x32\...\BvSshClient) (Version:  - )
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio Add-in for Adobe FXG Import (x32 Version: 1.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Bulkr (HKLM-x32\...\com.prakaz.project.photogettr) (Version: 1.6 - Prakash Bajracharya)
Bulkr (x32 Version: 1.6 - Prakash Bajracharya) Hidden
Capture Polar Student Edition (HKLM-x32\...\{5A40BE71-01EB-4938-ADE7-B8EA8A11975E}) (Version: 2.11.23 - Capture Sweden)
CD Recovery Toolbox Free 2.0 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version:  - Recovery Toolbox, Inc.)
CDCheck (HKLM-x32\...\CDCheck) (Version:  - )
Center for Clinical Research Practice (HKLM-x32\...\ST6UNST #2) (Version:  - )
Center for Clinical Research Practice SOP Update (HKLM-x32\...\ST6UNST #3) (Version:  - )
Charles 3.8.3 (HKLM-x32\...\{75A0E0FA-1DAA-43C8-B6B8-C326B069B5BB}) (Version: 3.8.3.3 - XK72 Ltd)
CheckAsm version 1.23.5215 (HKLM-x32\...\{C28F698A-CEB3-45D3-AE4B-3065C34677DB}_is1) (Version: 1.23.5215 - amberfish.net)
CMake 2.8, a cross-platform, open-source build system (HKLM-x32\...\CMake 2.8.12.2) (Version: 2.8.12.2 - Kitware)
CodeTwo FolderSync Addin (HKLM-x32\...\{55B10EA4-B9B4-4BFE-83F2-6D5478D3B04E}) (Version: 1.4.0.0 - CodeTwo)
Composite 2013 64-bit (HKLM\...\{2F808931-D235-4FC7-90CD-F8A890C97B2F}) (Version: 8.0.0 - Autodesk)
Cool VL Viewer 1.26.12 (HKLM-x32\...\Cool VL Viewer 1.26.12) (Version: 1.26.12.5 - Cool Products)
Core FTP LE (HKLM-x32\...\CoreFTP) (Version:  - )
Critical Update for Microsoft Visual Studio 2010 Professional - ENU (KB2938807) (HKLM-x32\...\{D6B15AE6-B052-363E-B6BB-C4714CBA6509}.KB2938807) (Version: 1 - Microsoft Corporation)
Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP) Hidden
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version:  3.0 - CutePDF.com)
DarkStorm (remove only) (HKLM-x32\...\DarkStorm) (Version: 4.5.2.39904 - The Phoenix Firestorm Project, Inc.)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version:  - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version:  - Microsoft)
DEKSI Network Inventory (HKLM-x32\...\DEKSI Network Inventory_is1) (Version: 10.4 - DEK Software International)
Dia (remove only) (HKLM-x32\...\Dia) (Version:  - )
Digsby (HKLM-x32\...\Digsby) (Version:  - dotSyntax, LLC)
DisplayFusion 5.1.1 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 5.1.1.0 - Binary Fortress Software)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dotfuscator Software Services - Community Edition (HKLM-x32\...\{1AA5BD63-6614-44B2-88A7-605191EDB835}) (Version: 5.0.2500.0 - PreEmptive Solutions)
Download Accelerator Manager (HKLM-x32\...\Download Accelerator Manager) (Version: 4.5.13 - )
EArt Audio Editor 4.0 (HKLM-x32\...\EArt Audio Editor_is1) (Version:  - EArt Media Software)
EASEUS Data Recovery Wizard Professional 5.0.1 (HKLM-x32\...\EASEUS Data Recovery Wizard Professional 5.0.1_is1) (Version:  - EASEUS)
EasyMercurial (HKLM-x32\...\{C0EEDAEF-BE58-42EB-BF96-F6318ED56501}) (Version: 1.3.0 - Queen Mary, University of London)
Emsisoft HiJackFree 4.5 (HKLM-x32\...\Emsisoft HiJackFree_is1) (Version: 4.5 - Emsisoft GmbH)
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
Epson Event Manager (HKLM-x32\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.30.01 - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
EPSON WorkForce 610 Series Printer Uninstall (HKLM\...\EPSON WorkForce 610 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
EpsonNet Setup (HKLM-x32\...\{FFFAE01B-466F-4C07-9821-A94FD753BDDA}) (Version: 3.1c - SEIKO EPSON CORPORATION)
Erlang OTP R16B03-1 (5.10.4) (HKLM-x32\...\Erlang OTP R16B03-1 (5.10.4)) (Version:  - )
Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.4.5.6 - Telerik)
Filter Forge Freepack 2 - Photo Effects 2.013 (HKLM-x32\...\Filter Forge Freepack 2 - Photo Effects_is1) (Version:  - Filter Forge, Inc.)
Firestorm SecondLife and OpenSim viewer (Version: 4.6.40833 - Phoenix Viewer Project) Hidden
Firestorm x64 (HKLM-x32\...\{ea9dcc13-fd5f-4878-aca0-9905f32bd724}) (Version: 4.6.40833 - Phoenix Firestorm Project Inc)
Fnordbot r139 (HKLM-x32\...\Fnordbot) (Version: r139 - Niels Rask)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 5.4.5.124 - Foxit Corporation)
Free Download Manager 3.9.2 (HKLM-x32\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
Freemake Music Box (HKLM-x32\...\Freemake Music Box_is1) (Version: 1.0.0 - Ellora Assets Corporation)
FreeOCR v4.2 (HKLM-x32\...\freeocr_is1) (Version:  - )
Freeplane (HKLM\...\{D3941722-C4DD-4509-88C4-0E87F675A859}_is1) (Version: 1.2.23 - Open source)
Gephi 0.8.2 (HKLM-x32\...\{51722911-C391-4118-97BF-B50100D2AB15}_is1) (Version:  - Gephi)
Git version 1.8.0-preview20121022 (HKLM-x32\...\Git_is1) (Version: 1.8.0-preview20121022 - The Git Development Community)
GitHub (HKCU\...\68c6678448324991) (Version: 1.0.37.2 - GitHub, Inc.)
GlassFish Server Open Source Edition 3.0.1 (HKLM\...\nbi-glassfish-mod-3.0.1.22.0) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Drive (HKLM-x32\...\{75939021-3B68-419D-8DC1-E9823BFF9658}) (Version: 1.16.7009.9618 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GrabIt 1.7.2 Beta 6 (build 1008) (HKLM-x32\...\GrabIt_is1) (Version:  - Ilan Shemes)
grandMA 3D 6 [2.8.3][6.8] v6.0.23.4986 (HKLM-x32\...\grandMA3D_6_V2.8.3) (Version: 6.0.23.4986 - MA Lighting Technologies)
grandMA VPU 7.54 Intern (HKLM-x32\...\grandMA VPU) (Version: 7.54 - MA Lighting)
grandMA2 onPC 2.8.3 (HKLM-x32\...\grandMA2 onPC 2.8.3) (Version:  - )
Graphviz (HKLM-x32\...\{884CF059-9A11-4DF7-A2A7-17EFE90B9278}) (Version: 2.38 - AT&T Research Labs.)
GraphVizio (HKLM-x32\...\{3766E2C1-3BE1-481E-AD30-AF8152DE0270}) (Version: 1.1.4 - GraphVizio)
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
IETester v0.4.12 (remove only) (HKLM-x32\...\IETester) (Version: 0.4.12 - Core Services)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.3.0 - LIGHTNING UK!)
Imprudence Viewer 1.3.2 (HKLM-x32\...\{D7736EE8-AFCE-4735-BBE3-652CDFBBFCA8}_is1) (Version:  - The Imprudence And Kokua Projects)
InspIRCd (HKLM-x32\...\InspIRCd) (Version: 2.0.13 - InspIRCd Development Team)
InstEd 1.5.15.26 (HKLM-x32\...\{AC7EA575-6F1D-4365-A66E-B84FC18A784D}) (Version: 1.5.15.26 - instedit.com)
Internet Explorer Toolbar 4.7 by SweetPacks (HKLM-x32\...\{80F3F10B-A177-4494-93CE-98090D819093}) (Version: 4.7.0008 - SweetIM Technologies Ltd.) <==== ATTENTION
IsoBuster 3.0 (HKLM-x32\...\IsoBuster_is1) (Version: 3.0 - Smart Projects)
ISODisk 1.1 (HKLM-x32\...\{BF731945-7AAD-45E3-A202-A60C9213915C}_is1) (Version:  - ISODisk.com)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java™ 6 Update 38 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416038FF}) (Version: 6.0.380 - Oracle)
Java™ SE Development Kit 6 Update 38 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160380}) (Version: 1.6.0.380 - Oracle)
JavaScript Tooling (Version: 11.0.60315 - Microsoft Corporation) Hidden
JavaScript Tooling (Version: 12.0.21005 - Microsoft Corporation) Hidden
JavaScript Tooling (x32 Version: 11.0.60315 - Microsoft Corporation) Hidden
JavaScript Tooling (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
JetBrains RubyMine 132.104 (HKLM-x32\...\RubyMine 132.104) (Version: 132.104 - JetBrains s.r.o.)
JetBrains RubyMine 134.1146 (HKLM-x32\...\RubyMine 134.1146) (Version: 134.1146 - JetBrains s.r.o.)
JetBrains RubyMine 4.5.4 (HKLM-x32\...\RubyMine 4.5.4) (Version: 119.71 - JetBrains s.r.o.)
JetBrains RubyMine 5.0 (HKLM-x32\...\RubyMine 5.0) (Version: 125.65 - JetBrains s.r.o.)
JetBrains RubyMine 5.4 (HKLM-x32\...\RubyMine 5.4) (Version: 129.241 - JetBrains s.r.o.)
JetBrains RubyMine 5.4.3.2.1 (HKLM-x32\...\RubyMine 5.4.3.2.1) (Version: 129.861 - JetBrains s.r.o.)
JetBrains RubyMine 6.0.1 (HKLM-x32\...\RubyMine 6.0.1) (Version: 133.211 - JetBrains s.r.o.)
JetBrains RubyMine 6.0.3 (HKLM-x32\...\RubyMine 6.0.3) (Version: 133.632 - JetBrains s.r.o.)
JetBrains RubyMine 6.3 (HKLM-x32\...\RubyMine 6.3) (Version: 135.588 - JetBrains s.r.o.)
join.me (HKCU\...\JoinMe) (Version: 1.10.1.258 - LogMeIn, Inc.)
KokuaViewer (remove only) (HKLM-x32\...\KokuaViewer) (Version:  - )
LG CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3109 - CyberLink Corp.)
LG CyberLink LabelPrint (x32 Version: 2.5.3109 - CyberLink Corp.) Hidden
LG CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.4009 - CyberLink Corp.)
LG CyberLink Power2Go (x32 Version: 6.2.4009 - CyberLink Corp.) Hidden
LG CyberLink PowerBackup (HKLM-x32\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.5529 - CyberLink Corp.)
LG CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304a - CyberLink Corp.)
LG CyberLink YouCam (x32 Version: 2.0.3304a - CyberLink Corp.) Hidden
LG ODD Auto Firmware Update (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
LG Power Tools (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3316 - CyberLink Corp.)
LG Power Tools (x32 Version: 6.0.3316 - CyberLink Corp.) Hidden
LiveUpdate 3.2 (Symantec Corporation) (HKLM-x32\...\LiveUpdate) (Version: 3.2.0.26 - Symantec Corporation)
LocalESPC (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us (x32 Version: 8.59.25584 - Microsoft) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech)
Logitech Harmony Remote Software 7 (x32 Version: 7.7.0.0 - Logitech) Hidden
LogMeIn (HKLM-x32\...\{F8511796-1457-4A92-BEF7-71080FCF297A}) (Version: 4.1.4132 - LogMeIn, Inc.)
LogMeIn (HKLM-x32\...\{FA653F5B-483A-4E92-BF75-BB3BBF1D550D}) (Version: 4.1.2634 - LogMeIn, Inc.)
LXFree for Java (HKLM-x32\...\{AC7E8467-EA6A-4D6C-AC89-A6CF1FA6D3CB}) (Version: 1.1.7.0 - Claude Heintz Design)
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
MEGAsync 1.0 (HKLM-x32\...\MEGAsync) (Version: 1.0 - Mega Limited)
Meraki Systems Manager Agent (HKLM-x32\...\{96714592-C93B-4989-B7F2-FD52E37EEC15}) (Version: 1.0.87 - Meraki)
Metasploit (HKLM-x32\...\Metasploit 4.6.2) (Version: 4.6.2 - Rapid7)
Microlux (HKLM-x32\...\Microlux) (Version: 5.5 - LuxArt)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Advertising SDK for Windows 8.1 - ENU (x32 Version: 8.1.30809.0 - Microsoft Corporation) Hidden
Microsoft Advertising Service Extension for Visual Studio (x32 Version: 12.0.30809.0 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{1803A630-3C38-4D2B-9B9A-0CB37243539C}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 - Visual Studio 2013 - ENU (x32 Version: 4.1.21001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 Runtime (x32 Version: 4.0.20716.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2013 - ENU (x32 Version: 5.0.11001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 - Visual Studio 2013 - ENU (x32 Version: 4.1.21001.0 - Microsoft Corporation) Hidden
Microsoft ASP.NET Web Pages 2 Runtime (x32 Version: 2.0.20716.0 - Microsoft Corporation) Hidden
Microsoft C++ REST SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft Exchange Web Services Managed API 2.0 (x32 Version: 15.0.516.14 - Microsoft Corporation) Hidden
Microsoft Expression Blend SDK for .NET 4 (x32 Version: 2.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Expression Blend SDK for Silverlight 4 (x32 Version: 2.0.20525.0 - Microsoft Corporation) Hidden
Microsoft FrontPage Client - English (x32 Version: 7.00.9209 - Microsoft) Hidden
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft Identity Extensions (Version: 2.0.1459.0 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 CoreRes - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 v4.0 Tools (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch for Visual Studio 2013 v4.0 ToolsRes - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft LightSwitch v4.0 SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio 2012 (x32 Version: 2.0.30625.9003 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio 2013 (x32 Version: 2.7.40911.287 - Microsoft Corporation) Hidden
Microsoft Office 2000 Premium (HKLM-x32\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) - ENU Language Pack (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 12.0.21005.01 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (x32 Version: 12.0.21005.01 - Microsoft Corporation) Hidden
Microsoft Report Viewer 2012 Runtime (HKLM-x32\...\{9CCE40CE-A9E6-4916-8729-B008558EEF3F}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Report Viewer Add-On for Visual Studio 2012 (x32 Version: 11.1.2802.16 - Microsoft Corporation) Hidden
Microsoft Report Viewer Add-On for Visual Studio 2013 (x32 Version: 11.1.3366.16 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials Prerelease (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft SharePoint 2013 Developer Tools for Visual Studio (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio 2012 Nuget Package (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft SharePoint 2013 Developer Tools for Visual Studio ENU Language Pack (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM-x32\...\{05855322-BE43-41FE-B583-D3AE0C326D58}) (Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (Version:  - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{BC537AE0-88AF-47ED-B762-33B0D62B5188}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{7A56D81D-6406-40E7-9184-8AC1769C4D69}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{83F2B8F4-5CF3-4BE9-9772-9543EAE4AC5F}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{EAEBF166-B06A-4D7F-BAF7-6615303D5C7C}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{09C52940-A4D1-4409-A7CC-1AAE630CF578}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (Version:  - ) Hidden
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{5DDC2234-4B37-45BC-AD33-41F1469B4D83}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C3F6F200-6D7B-4879-B9EE-700C0CE1FCDA}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft System Center 2012 SP1 DPM Protection Agent (HKLM\...\{EECBB752-2C6E-45B7-9F18-2327B886309A}) (Version: 4.1.3313.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013 Object Model (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++  ARM Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  Compilers 2010 Standard - enu - x64 (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual C++  Compilers 2010 Standard - enu - x86 (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Native Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Native Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-arm Cross Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-arm Cross Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-x86 Cross Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64-x86 Cross Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x86 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012  x64 Designtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers - ENU Resources (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Compilers (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Core Libraries (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Extended Libraries (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86-x64 Compilers (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013  x64 Designtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Extended Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Microsoft Foundation Class Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual J# .NET Redistributable Package 1.1 (HKLM-x32\...\{1A655D51-1423-48A3-B748-8F5A0BE294C8}) (Version: 1.1.4322 - Microsoft)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (Version: 2.0.50728 - Microsoft Corporation) Hidden
Microsoft Visual Studio .NET Professional 2003 - English (HKLM-x32\...\Visual Studio .NET Professional 2003 - English) (Version:  - Microsoft)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Professional - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Professional - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Professional - ENU (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 SharePoint Developer Tools (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50330 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Devenv (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Devenv Resources (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTrace Core amd64 (Version: 11.0.60315 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTrace Core x86 (x32 Version: 11.0.60315 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 IntelliTrace Front End x86 (x32 Version: 11.0.60315 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Performance Collection Tools - ENU (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Performance Collection Tools (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Preparation (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Shell (Minimum) (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Shell (Minimum) Resources (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU (x32 Version: 4.0.8876.1 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Devenv (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Devenv Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 IntelliTrace Core amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 IntelliTrace Core x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 IntelliTrace Front End x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Performance Collection Tools - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Performance Collection Tools (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Preparation (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Profiling Tools (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 VsGraphics Helper Dependencies (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual Studio Premium 2012 - ENU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Premium 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Premium 2013 - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Premium 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2012 - ENU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2013 - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Professional 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Storyboarding (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - ENU (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2013 Storyboarding (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2013 Storyboarding Language Pack (x64) - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 - ENU (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 (HKLM-x32\...\{e238e1a0-7fbd-4146-a4ac-d48badcdf3ae}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 (HKLM-x32\...\{cd09eea6-d0b3-4246-bb80-e047ceadf61f}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - enu (HKLM-x32\...\{E4C33F5B-1B2F-466E-957E-B274F08151A0}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Developer Tools 2013 - Visual Studio 2013 (x32 Version: 2.0.40926.0 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
mIRC (HKLM-x32\...\mIRC) (Version: 7.32 - mIRC Co. Ltd.)
Mixlr version 2.0.4 (HKLM-x32\...\{F021F776-6BD4-4301-985D-0C1D27EEC8ED}_is1) (Version: 2.0.4 - Mixlr, Ltd.)
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MultipleIEs (HKLM-x32\...\MultipleIEs_is1) (Version:  - )
MySQL Connector J (HKLM-x32\...\{9B0DB369-396B-4A81-94FE-5631916D6C6F}) (Version: 5.1.30 - Oracle Corporation)
MySQL Connector Net 6.6.5 (HKLM-x32\...\{1AAD0C51-CE9E-4ECD-BB2D-6981472569B1}) (Version: 6.6.5 - Oracle)
MySQL Installer (HKLM-x32\...\{15286120-DA10-4005-881C-EF9AAFFF586A}) (Version: 1.3.6.0 - Oracle Corporation)
MySQL Workbench 6.1 CE (HKLM-x32\...\{625991FA-1A48-4AD8-95D5-84A0C9896C9A}) (Version: 6.1.4 - Oracle Corporation)
NavNet (HKLM-x32\...\{B9E848B3-A64D-4005-8DA1-DC3981C902A8}_is1) (Version: 4.0 - NavNet Solutions)
Nero 12 (HKLM-x32\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - )
Nero 12 (HKLM-x32\...\{D529E699-7753-46E7-8B73-C5556EF5B486}) (Version: 12.0.03500 - Nero AG)
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero BackItUp (x32 Version: 12.0.6002 - Nero AG) Hidden
Nero BackItUp Help (CHM) (x32 Version: 12.0.8000 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.17700 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.9000 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 12.0.28001 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15500 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.18900 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Express (x32 Version: 12.0.28001 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 12.0.5000 - Nero AG) Hidden
Nero Kwik Media (x32 Version: 1.18.19600 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Recode (x32 Version: 12.0.31001 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.10002 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Nero Video (x32 Version: 12.0.8000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NetBeans IDE 6.9.1 (HKLM\...\nbi-nb-base-6.9.1.0.0) (Version: 6.9.1 - NetBeans.org)
nLite 1.4.9.3 (HKLM-x32\...\nLite_is1) (Version: 1.4.9.3 - Dino Nuhagic (nuhi))
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.1 - )
Nullsoft Install System (HKLM-x32\...\NSIS) (Version: 3.0b0 - )
NUnit 2.6.2 (HKLM-x32\...\{002B407D-DE66-4601-A10C-45941586C767}) (Version: 2.6.2.12296 - nunit.org)
NVIDIA 3D Vision Controller Driver 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 332.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 332.76 - NVIDIA Corporation)
NVIDIA Control Panel 332.76 (Version: 332.76 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 332.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.76 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA nView 141.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.00 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3276 - NVIDIA Corporation) Hidden
NVIDIA WMI 2.16.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.16.0 - NVIDIA Corporation)
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
OpenLDAP for Windows (HKLM-x32\...\{7215B4AC-319C-4567-9A98-EB1AD13B73F5}) (Version: 2.4.30 - maxcrc GmbH)
Oracle VM VirtualBox 4.3.12 (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Orca (HKLM-x32\...\{85F4CBCB-9BBC-4B50-A7D8-E1106771498D}) (Version: 3.1.3790.0000 - Microsoft Corporation)
ORM Designer 2 (HKLM-x32\...\OrmDesigner2) (Version: 2.3.5.882 - Inventic s.r.o.)
Paragon Hard Disk Manager™ 14 Suite (HKLM\...\{29258311-EA49-11DE-967C-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PCmover Professional (HKLM-x32\...\{71AA2137-C3F3-45C6-A408-81697FE5A3B8}) (Version: 6.00.620.0 - Laplink Software, Inc.)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PikkuBot (remove only) (HKLM-x32\...\PikkuBot) (Version:  - )
PlazSales version 1.0 (HKLM-x32\...\{323DBE5C-2D37-4748-AD32-B11877D89F63}_is1) (Version: 1.0 - Jeff Computers)
PowerGREP 4 DEMO 4.6.1 (HKLM\...\PowerGREP 4) (Version: DEMO 4.6.1 - Just Great Software)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.7 - Power Software Ltd)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
PremiumSoft Navicat 10.1 for MySQL (HKLM-x32\...\PremiumSoft Navicat for MySQL_is1) (Version: 10.1.7 - PremiumSoft CyberTech Ltd.)
PremiumSoft Navicat Premium 10.0 (HKLM-x32\...\PremiumSoft Navicat Premium_is1) (Version:  - PremiumSoft CyberTech Ltd.)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Python 2.7 lxml-3.3.3 (64-bit) (HKLM\...\lxml-py2.7) (Version:  - )
Python 2.7.3 (HKLM-x32\...\{C0C31BCC-56FB-42a7-8766-D29E1BD74C7C}) (Version: 2.7.3150 - Python Software Foundation)
Python Tools Redirection Template (x32 Version: 1.1 - Microsoft Corporation) Hidden
QAvimator (HKCU\...\QAvimator) (Version: 0.1.0 - QAvimator Team)
QuickBooks Point of Sale 2013 (HKLM-x32\...\{2F6FE8E0-A61C-4C2D-A601-F5731D8F7EF0}) (Version: 22.7.712 - Intuit Inc.)
RabbitMQ Server (HKLM-x32\...\RabbitMQ) (Version: 3.2.4 - GoPivotal, Inc.)
Radegast 2.16 (HKLM-x32\...\Radegast) (Version: 2.16 - Radegast Development Team)
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version:  - Password Unlocker Studio)
Reason 4.0 (HKLM-x32\...\Reason4_is1) (Version: 4.0 - Propellerhead Software AB)
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
R-Studio 6.3 (HKLM-x32\...\R-Studio 6.3NSIS) (Version: 6.3.154025 - R-Tools Technology Inc.)
Ruby 1.9.3-p484 (HKCU\...\{17E73B15-62D2-43FD-B851-ACF86A8C9D25}_is1) (Version: 1.9.3-p484 - RubyInstaller Team)
Ruby 2.0.0-p451 (HKCU\...\{ABAA9781-845A-43CC-BABA-76CB580FE35D}_is1) (Version: 2.0.0-p451 - RubyInstaller Team)
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
SciLor's grooveshark™.com Downloader 0.4.12 (HKLM-x32\...\{DDEAE484-D5FB-49CB-BD47-9512E8ACCA65}_is1) (Version: 0.4.12 - SciLor)
SecondLifeViewer (remove only) (HKLM-x32\...\SecondLifeViewer) (Version:  - )
Serato DJ 1.0 (HKLM-x32\...\{15ed2117-5da1-4ca4-ae6b-c332d6eae862}) (Version: 1.0.0.31 - )
Serato DJ 1.0 (x32 Version: 1.0.0.31 - Serato) Hidden
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SharePoint Client Components (Version: 15.0.4481.1505 - Microsoft Corporation) Hidden
SharpDevelop 4.3 (HKLM-x32\...\{576454F8-2E7D-44B3-B7DD-4258B83887E3}) (Version: 4.3.9430 - ic#code)
SHOUTcast Source DSP Plug-in v2 (HKLM-x32\...\SHOUTcast Source DSP) (Version: 2.3.3 - Nullsoft, Inc)
Singularity (64 bit) (remove only) (HKLM-x32\...\Singularity (64 bit)) (Version:  - )
SketchUp 8 (HKLM-x32\...\{8EB62C87-AAA6-4850-A5BC-64155884B973}) (Version: 3.0.16846 - Trimble Navigation Limited)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.107 - Skype Technologies S.A.)
Smart File Advisor 1.1.1 (HKLM-x32\...\Smart File Advisor_is1) (Version: 1.1.1 - Filefacts.net)
SmartGit/Hg 5.0.3 (HKLM-x32\...\SmartGit/Hg 5_is1) (Version:  - syntevo GmbH)
Smores (HKCU\...\8d0ee422fa7a5f31) (Version: 1.3.1.40 - fieryjoy)
Sony Noise Reduction Plug-In 2.0h (HKLM-x32\...\{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}) (Version: 2.0.451 - Sony)
Sony Sound Forge 9.0 (HKLM-x32\...\{4AEA9A23-D627-4699-8A0F-FC474308C2E6}) (Version: 9.0.441 - Sony)
SourceTree (HKLM-x32\...\SourceTree 1.3.3) (Version: 1.3.3 - Atlassian)
SourceTree (x32 Version: 1.3.3 - Atlassian) Hidden
Spotify (HKCU\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
SQL Anywhere 12 - Client (HKLM\...\{A8429447-7813-4717-9803-EB505ECAE698}) (Version: 12.1.3605 - iAnywhere Solutions, Inc.)
SQL Server 2012 Common Files (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Management Studio (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Strawberry Perl (64-bit) (HKLM\...\{61719A5F-6C9C-1014-8F19-DDB236F7176A}) (Version: 5.18.1001 - strawberryperl.com project)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 2.3.2 - Krzysztof Kowalczyk)
Sybase Adaptive Server Enterprise Suite (HKLM\...\Sybase Adaptive Server Enterprise Suite) (Version: 15.7.0.200 - Sybase, Inc.)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
Tixati (HKLM-x32\...\tixati) (Version:  - )
TortoiseHg 3.0.1 (x64) (HKLM\...\{51F472FF-AAF5-4F27-A40E-0A26E786C785}) (Version: 3.0.1 - Steve Borho and others)
TortoiseSVN 1.7.12.24070 (64 bit) (HKLM\...\{B2DCF07D-0F89-4818-8B41-50DABC1A310D}) (Version: 1.7.24070 - TortoiseSVN)
Tulip-4.5.0 (HKLM-x32\...\Tulip-4.5.0) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Universal Extractor 1.6.1 (HKLM-x32\...\Universal Extractor_is1) (Version: 1.6.1 - Jared Breland)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0054-0409-0000-0000000FF1CE}_Office14.VISIOR_{A5659197-BDB5-467F-A71A-1B817DDD7BDD}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visual Studio 2012 (KB2781514) (HKLM-x32\...\{56ef8912-352f-4fab-9c73-6f1c92a7127f}) (Version: 11.0.51219 - Microsoft Corporation)
Vagrant (HKLM-x32\...\{1898FC52-DE90-4FCC-8BFF-26F9F396E837}) (Version: 1.5.1 - HashiCorp)
Virtual Audio Streaming 4.0 (HKLM-x32\...\{B9FDEDF1-DD77-42BD-B2BD-ABCB30655C73}_is1) (Version: 4.0 - ShiningMorning Inc.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version:  - Elaborate Bytes)
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
VirtualDJ PRO Full (HKLM-x32\...\{4769E972-2E92-49C5-B6F9-465EFD0C4D94}) (Version: 7.0.5 - Atomix Productions)
Visual F# 3.1 SDK (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual F# 3.1 VS (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio .NET Professional 2003 - English (x32 Version: 7.1.3088 - Microsoft) Hidden
Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 Prerequisites - ENU Language Pack (Version: 11.0.50727 - Microsoft Corporation) Hidden
Visual Studio 2012 Prerequisites (Version: 11.0.50727 - Microsoft Corporation) Hidden
Visual Studio 2012 Update 3 (KB2707250) (HKLM-x32\...\{29828f33-4679-462a-8c98-1c3507678922}) (Version: 11.0.60610 - Microsoft Corporation)
Visual Studio 2013 Prerequisites - ENU Language Pack (Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio 2013 Prerequisites (Version: 12.0.21005 - Microsoft Corporation) Hidden
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 1.0.9201.20602 - Microsoft Corporation) Hidden
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 1.0.9600.16408 - Microsoft Corporation) Hidden
Visual Studio.NET Baseline - English (x32 Version: 7.1.3088 - Microsoft) Hidden
Visustin v7 (HKLM-x32\...\ST6UNST #1) (Version:  - )
Vitrite (remove only) (HKLM-x32\...\Vitrite) (Version:  - )
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VMware OVF Tool (HKLM\...\{1014476C-9FF9-4954-99B1-BE8B3C86C2E8}) (Version: 3.0.1 - VMware, Inc.)
VMware vSphere Client 4.1 (HKLM-x32\...\{A0B433B1-941D-46F5-AE59-286263534232}) (Version: 4.1.0.17435 - VMware, Inc.)
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
Welcome App (Start-up experience) (x32 Version: 12.0.15000 - Nero AG) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows App Certification Kit Native Components (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows App Certification Kit x64 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Automated Installation Kit (HKLM\...\{31E8F586-4EF7-4500-844D-BA8756474FF1}) (Version: 2.0.0.0 - Microsoft Corporation)
Windows Azure Mobile Services SDK (x32 Version: 1.0.10815.0 - Microsoft Corporation) Hidden
Windows Azure Mobile Services Tools for Visual Studio 2013 Preview - v1.0 (x32 Version: 1.0.60906.1602 - Microsoft Corporation) Hidden
Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0 (x32 Version: 1.0.10829.1601 - Microsoft Corporation) Hidden
Windows Azure Tools for LightSwitch for Visual Studio 2013 - v2.1 (x32 Version: 2.1.10909.1601 - Microsoft) Hidden
Windows Runtime Intellisense Content - en-us (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Runtime Intellisense Content - en-us (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (Version: 11.0.51106 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
WinImage (HKCU\...\WinImage) (Version:  - )
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wireshark 1.4.7 (HKLM-x32\...\Wireshark) (Version: 1.4.7 - The Wireshark developer community, http://www.wireshark.org)
Workflow Manager Client 1.0 (Version: 2.0.30813.2 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.30725.1 - Microsoft Corporation) Hidden
WS-Sustainer 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{84ef8d51}) (Version:  - Certified Publisher) <==== ATTENTION
WYSIWYG (HKLM-x32\...\{BC15D2FB-1EC0-463B-9603-E3C9A7FC75D3}) (Version: 1.22.54.19 - )
Xceed Components (HKLM-x32\...\{9CDC1D74-2762-49B7-A3B1-B6D3D039128D}) (Version: 4.3.13165.15150 - Xceed Software Inc.)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-117609710-854245398-725345543-500_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-117609710-854245398-725345543-500_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-117609710-854245398-725345543-500_Classes\CLSID\{ca586c80-7c84-4b88-8537-726724df6929}\InprocServer32 -> C:\Program Files (x86)\Git\git-cheetah\git_shell_ext64.dll ()
CustomCLSID: HKU\S-1-5-21-117609710-854245398-725345543-500_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-117609710-854245398-725345543-500_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-117609710-854245398-725345543-500_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\FileSyncApi64.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
25-07-2014 05:00:01 Scheduled Checkpoint
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 21:34 - 2014-07-04 13:12 - 00000065 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
68.188.27.124  OSTEST.justtrance.net
 
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {1FF5CE08-2146-4583-BD2A-A6BB51265464} - System32\Tasks\AdobeAAMUpdater-1.0-THERESORT-Administrator => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {4EF7E176-8C51-4935-9B0A-4F7852C7D8F3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {7EB3B781-B4F1-4FBF-8D51-EBB9625B504B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-24] (Google Inc.)
Task: {8F731EDB-F42B-44D8-BDDF-09C2D2304B17} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-24] (Google Inc.)
Task: {90B3EEB4-80FA-40AD-BFDF-543142FB8453} - System32\Tasks\ScheduledDPMClientBackup => Rundll32.exe /d "c:\Program Files\Microsoft Data Protection Manager\DPM\bin\TriggerClientJob.dll", ExecuteScheduledBackup
Task: {B007E69B-433D-42DD-B79F-10A7CD0FCFA8} - System32\Tasks\SpyHunter4Startup => C:\Program Files (x86)\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: {C8C0A48E-5484-4949-B869-69584075FA61} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2010-02-08] () <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ScheduledDPMClientBackup.job => c:\Program Files\Microsoft Data Protection Manager\DPM\bin\TriggerClientJob.dll
 
==================== Loaded Modules (whitelisted) =============
 
2014-04-04 10:02 - 2014-03-04 13:35 - 02513752 _____ () C:\Windows\system32\nvwmi64.exe
2014-04-04 10:00 - 2014-03-04 12:10 - 00117536 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-01-30 15:39 - 2012-10-04 19:49 - 00087152 _____ () C:\Windows\System32\cpwmon64.dll
2014-04-04 10:02 - 2014-03-04 13:35 - 02588960 _____ () C:\Program Files\NVIDIA Corporation\nview\nview64.dll
2014-01-23 13:27 - 2014-01-23 13:27 - 00162304 _____ () C:\Program Files\erl5.10.4\erts-5.10.4\bin\erlsrv.exe
2014-01-23 13:27 - 2014-01-23 13:27 - 00020480 _____ () C:\Program Files\erl5.10.4\erts-5.10.4\bin\erl.exe
2014-01-23 13:27 - 2014-01-23 13:27 - 00060416 _____ () C:\Program Files\erl5.10.4\erts-5.10.4\bin\erlexec.dll
2014-01-23 13:27 - 2014-01-23 13:27 - 02508800 _____ () C:\Program Files\erl5.10.4\erts-5.10.4\bin\beam.smp.dll
2014-01-23 13:27 - 2014-01-23 13:27 - 00043520 _____ () C:\Program Files\erl5.10.4\erts-5.10.4\bin\epmd.exe
2013-07-23 10:34 - 2013-05-16 12:44 - 08151040 _____ () C:\BitNami\rubystack-1.9.3-12\mysql\bin\mysqld.exe
2014-06-05 14:10 - 2014-06-05 14:10 - 00100616 _____ () C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
2012-10-27 09:28 - 2012-10-27 09:28 - 00128512 _____ () C:\Program Files\TortoiseHg\win32api.pyd
2012-10-27 09:27 - 2012-10-27 09:27 - 00137728 _____ () C:\Program Files\TortoiseHg\pywintypes27.dll
2012-10-27 09:28 - 2012-10-27 09:28 - 00223232 _____ () C:\Program Files\TortoiseHg\win32gui.pyd
2012-10-27 09:27 - 2012-10-27 09:27 - 00027648 _____ () C:\Program Files\TortoiseHg\win32pipe.pyd
2012-10-27 09:27 - 2012-10-27 09:27 - 00023040 _____ () C:\Program Files\TortoiseHg\win32event.pyd
2012-10-27 09:27 - 2012-10-27 09:27 - 00149504 _____ () C:\Program Files\TortoiseHg\win32file.pyd
2012-10-27 09:28 - 2012-10-27 09:28 - 00136192 _____ () C:\Program Files\TortoiseHg\win32security.pyd
2013-11-10 20:24 - 2013-11-10 20:24 - 00111616 _____ () C:\Program Files\TortoiseHg\_ctypes.pyd
2014-06-05 14:06 - 2014-06-05 14:06 - 00010752 _____ () C:\Program Files\TortoiseHg\mercurial.osutil.pyd
2012-10-27 09:27 - 2012-10-27 09:27 - 00044032 _____ () C:\Program Files\TortoiseHg\win32process.pyd
2012-10-27 09:29 - 2012-10-27 09:29 - 00503808 _____ () C:\Program Files\TortoiseHg\pythoncom27.dll
2012-10-27 09:31 - 2012-10-27 09:31 - 00438784 _____ () C:\Program Files\TortoiseHg\win32com.shell.shell.pyd
2002-06-14 11:20 - 2002-06-14 11:20 - 00026624 _____ () C:\Program Files (x86)\Tiny Utilities\Vitrite\Vitrite.exe
2014-01-23 13:22 - 2014-01-23 13:22 - 00010752 _____ () c:\Program Files\erl5.10.4\lib\os_mon-2.2.14\priv\bin\win32sysinfo.exe
2014-01-23 13:27 - 2014-01-23 13:27 - 00043008 _____ () C:\Program Files\erl5.10.4\erts-5.10.4\bin\inet_gethost.exe
2013-03-29 11:01 - 2013-03-29 11:01 - 00088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2014-01-19 08:36 - 2014-05-04 08:50 - 00470016 _____ () C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX64.dll
2014-01-21 20:03 - 2014-01-21 20:03 - 03103317 _____ () C:\Program Files (x86)\Meraki\PCC Agent 1.0.87\m_agent_service.exe
2010-01-21 02:40 - 2010-01-21 02:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2010-01-09 21:17 - 2010-01-09 21:17 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-01-28 12:01 - 2012-10-23 00:11 - 00718322 _____ () C:\Program Files (x86)\Git\git-cheetah\git_shell_ext64.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-07-23 10:34 - 2012-12-24 06:49 - 00111616 _____ () C:\BitNami\RUBYST~1.3-1\apache2\bin\pcre.dll
2013-07-23 10:34 - 2012-05-13 06:18 - 00067072 _____ () C:\BitNami\RUBYST~1.3-1\apache2\bin\zlib1.dll
2014-04-04 10:02 - 2014-03-04 13:35 - 02148640 _____ () C:\Program Files\NVIDIA Corporation\nview\nview.dll
2002-06-14 11:17 - 2002-06-14 11:17 - 00053248 _____ () C:\Program Files (x86)\Tiny Utilities\Vitrite\VitriDLL.dll
2014-07-16 13:56 - 2014-07-16 13:56 - 00098816 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32api.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00110080 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\pywintypes27.dll
2014-07-16 13:56 - 2014-07-16 13:56 - 00364544 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\pythoncom27.dll
2014-07-16 13:56 - 2014-07-16 13:56 - 00045568 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\_socket.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 01160704 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\_ssl.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00320512 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32com.shell.shell.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00713216 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\_hashlib.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 01175040 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._core_.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00805888 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._gdi_.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00811008 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._windows_.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 01062400 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._controls_.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00735232 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._misc_.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00128512 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\_elementtree.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00127488 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\pyexpat.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00557056 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\pysqlite2._sqlite.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00007168 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\hashobjs_ext.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00087552 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\_ctypes.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00119808 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32file.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00108544 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32security.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00018432 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32event.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00038912 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32inet.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00070656 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._html2.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00167936 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32gui.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00011264 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32crypt.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00027136 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\_multiprocessing.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00122368 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._wizard.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00010240 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\select.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00024064 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32pipe.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00686080 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\unicodedata.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00025600 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32pdh.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00525640 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\windows._lib_cacheinvalidation.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00035840 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32process.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00017408 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32profile.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00022528 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\win32ts.pyd
2014-07-16 13:56 - 2014-07-16 13:56 - 00078336 _____ () C:\Users\administrator\AppData\Local\Temp\_MEI60962\wx._animate.pyd
2014-01-20 01:04 - 2014-05-04 08:50 - 00463360 _____ () C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX32.dll
2014-06-12 22:52 - 2014-06-05 08:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-06-12 22:52 - 2014-06-05 08:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-06-12 22:52 - 2014-06-05 08:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-12 22:52 - 2014-06-05 08:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-12 22:52 - 2014-06-05 08:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2013-03-29 09:17 - 2013-03-29 09:17 - 00070536 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2007-03-21 20:53 - 2007-03-21 20:53 - 00049152 _____ () C:\Program Files (x86)\Adobe\Adobe Photoshop CS3\QuickTimeGlue.dll
2007-03-21 20:52 - 2007-03-21 20:52 - 00393216 _____ () C:\Program Files (x86)\Adobe\Adobe Photoshop CS3\AdobeXMP.dll
2013-12-11 12:13 - 2013-11-23 20:24 - 00083968 _____ () C:\Ruby193\bin\ZLIB1.dll
2014-07-12 12:17 - 2014-07-08 08:18 - 14663856 _____ () C:\Users\administrator\AppData\Local\Google\Chrome\User Data\PepperFlash\14.0.0.145\pepflashplayer.dll
2014-03-02 05:14 - 2014-03-02 05:13 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\log4cplusU.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B
AlternateDataStreams: C:\ProgramData\TEMP:A1EDB939
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: FnordBot => 2
MSCONFIG\Services: FreemakeVideoCapture => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Intuit Entitlement Service v8 => 2
MSCONFIG\Services: IntuitUpdateServiceV4 => 2
MSCONFIG\Services: LiveUpdate => 3
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: mi-raysat_3dsmax2013_64 => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: PasswordBox => 2
MSCONFIG\Services: PRTGCoreService => 2
MSCONFIG\Services: PRTGProbeService => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: srvInventoryWebServer => 2
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: SybaseControlCenter3.2.7 => 2
MSCONFIG\Services: SYBBCK_ORANGEMARTINI_BS => 3
MSCONFIG\Services: SYBSQL_ORANGEMARTINI => 3
MSCONFIG\Services: SYBXPS_ORANGEMARTINI_XP => 3
MSCONFIG\Services: SYSAM => 2
MSCONFIG\Services: Updater By SweetPacks => 2
MSCONFIG\Services: Xceed.Chart.Renderer.Service => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Inventory Data Collector.lnk => C:\Windows\pss\Inventory Data Collector.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^administrator^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Digsby.lnk => C:\Windows\pss\Digsby.lnk.Startup
MSCONFIG\startupfolder: C:^Users^administrator^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2010 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Addon => wscript "C:\Users\administrator\AppData\Roaming\Adobe\Flash Player\Addons\invis.vbs" "C:\Users\administrator\AppData\Roaming\Adobe\Flash Player\Addons\bat.bat"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Ask Mr. Robot => C:\Program Files\AskMrRobot\AmrTray.exe
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: DPMClientUI => "c:\Program Files\Microsoft Data Protection Manager\DPM\bin\DPMClient.exe" /autorun
MSCONFIG\startupreg: EEventManager => C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe
MSCONFIG\startupreg: Free Download Manager => "C:\Program Files (x86)\Free Download Manager\fdm.exe" -autorun
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\administrator\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: Virtual Audio Streaming(Sound Card Switch) => "C:\Program Files (x86)\ShiningMorning\VirtualAudioStreaming\VirtualAudioStreaming.exe" /minimized
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
 
==================== Faulty Device Manager Devices =============
 
Name: SASDIFSV
Description: SASDIFSV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: SASDIFSV
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
Name: SASKUTIL
Description: SASKUTIL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: SASKUTIL
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/25/2014 09:33:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1128
 
Start Time: 01cfa12783e1dfba
 
Termination Time: 131
 
Application Path: C:\Windows\Explorer.EXE
 
Report Id: 90469e40-1408-11e4-af87-001fd0da4ff2
 
Error: (07/25/2014 00:34:36 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/25/2014 00:31:31 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.
 
Error: (07/24/2014 01:02:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/24/2014 00:56:17 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.
 
Error: (07/23/2014 00:18:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mirc.exe, version: 7.32.0.0, time stamp: 0x519e2532
Faulting module name: mirc.exe, version: 7.32.0.0, time stamp: 0x519e2532
Exception code: 0xc0000005
Fault offset: 0x004fc298
Faulting process id: 0x3730
Faulting application start time: 0xmirc.exe0
Faulting application path: mirc.exe1
Faulting module path: mirc.exe2
Report Id: mirc.exe3
 
Error: (07/23/2014 00:18:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mirc.exe, version: 7.32.0.0, time stamp: 0x519e2532
Faulting module name: mirc.exe, version: 7.32.0.0, time stamp: 0x519e2532
Exception code: 0xc0000005
Fault offset: 0x004fc298
Faulting process id: 0x18d4
Faulting application start time: 0xmirc.exe0
Faulting application path: mirc.exe1
Faulting module path: mirc.exe2
Report Id: mirc.exe3
 
Error: (07/23/2014 01:23:13 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (07/23/2014 01:20:06 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.
 
Error: (07/22/2014 00:00:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Firestorm-bin.exe version 4.6.5.40833 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 2a94
 
Start Time: 01cfa5ce53d0c6b0
 
Termination Time: 4
 
Application Path: C:\Program Files\Firestorm\Firestorm-bin.exe
 
Report Id: 9f3d7a85-11c1-11e4-af87-001fd0da4ff2
 
 
System errors:
=============
Error: (07/25/2014 06:57:48 AM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain THERESORT due to the following: 
%%1311
 
This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.
 
 
 
ADDITIONAL INFO
 
If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.
 
Error: (07/25/2014 02:56:37 AM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain THERESORT due to the following: 
%%1311
 
This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.
 
 
 
ADDITIONAL INFO
 
If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.
 
Error: (07/25/2014 02:52:06 AM) (Source: TermService) (EventID: 1067) (User: )
Description: The terminal server cannot register 'TERMSRV' Service Principal Name to be used for server authentication. The following error occured: The specified domain either does not exist or could not be contacted.
.
 
Error: (07/25/2014 00:05:10 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: THERESORT)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.
 
Error: (07/24/2014 10:55:22 PM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain THERESORT due to the following: 
%%1311
 
This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.
 
 
 
ADDITIONAL INFO
 
If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.
 
Error: (07/24/2014 09:37:41 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.
 
Error: (07/24/2014 09:28:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Meraki Systems Manager Agent 1.0.87 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 100 milliseconds: Restart the service.
 
Error: (07/24/2014 08:15:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Meraki Systems Manager Agent 1.0.87 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 100 milliseconds: Restart the service.
 
Error: (07/24/2014 08:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Meraki Systems Manager Agent 1.0.87 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 100 milliseconds: Restart the service.
 
Error: (07/24/2014 06:54:07 PM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain THERESORT due to the following: 
%%1311
 
This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.
 
 
 
ADDITIONAL INFO
 
If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.
 
 
Microsoft Office Sessions:
=========================
Error: (07/25/2014 09:33:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.1.7601.17567112801cfa12783e1dfba131C:\Windows\Explorer.EXE90469e40-1408-11e4-af87-001fd0da4ff2
 
Error: (07/25/2014 00:34:36 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-8_d.exe
 
Error: (07/25/2014 00:31:31 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: C:\Program Files (x86)\GraphVizio\GraphVizio\adxloader.dll.ManifestC:\Program Files (x86)\GraphVizio\GraphVizio\adxloader.dll.Manifest2
 
Error: (07/24/2014 01:02:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-8_d.exe
 
Error: (07/24/2014 00:56:17 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: C:\Program Files (x86)\GraphVizio\GraphVizio\adxloader.dll.ManifestC:\Program Files (x86)\GraphVizio\GraphVizio\adxloader.dll.Manifest2
 
Error: (07/23/2014 00:18:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mirc.exe7.32.0.0519e2532mirc.exe7.32.0.0519e2532c0000005004fc298373001cfa69a177b303fC:\mirc1\backups\mirc.exeC:\mirc1\backups\mirc.exe553c8b96-128d-11e4-af87-001fd0da4ff2
 
Error: (07/23/2014 00:18:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mirc.exe7.32.0.0519e2532mirc.exe7.32.0.0519e2532c0000005004fc29818d401cfa69a121ee317C:\mirc1\backups\mirc.exeC:\mirc1\backups\mirc.exe5033b6d6-128d-11e4-af87-001fd0da4ff2
 
Error: (07/23/2014 01:23:13 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Program Files\Autodesk\Composite 2013\python\lib\distutils\command\wininst-8_d.exe
 
Error: (07/23/2014 01:20:06 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: C:\Program Files (x86)\GraphVizio\GraphVizio\adxloader.dll.ManifestC:\Program Files (x86)\GraphVizio\GraphVizio\adxloader.dll.Manifest2
 
Error: (07/22/2014 00:00:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Firestorm-bin.exe4.6.5.408332a9401cfa5ce53d0c6b04C:\Program Files\Firestorm\Firestorm-bin.exe9f3d7a85-11c1-11e4-af87-001fd0da4ff2
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-24 22:18:21.605
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-04 07:59:46.703
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-28 02:22:33.808
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-22 22:34:20.636
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-22 20:51:53.768
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-22 14:39:20.354
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-15 12:15:48.445
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-11 01:22:39.235
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-11 01:05:56.658
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-06-06 20:09:58.710
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 43%
Total physical RAM: 16382.3 MB
Available physical RAM: 9197.82 MB
Total Pagefile: 32762.78 MB
Available Pagefile: 24934.96 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:465.66 GB) (Free:7.37 GB) NTFS
Drive e: (New Volume) (Fixed) (Total:931.51 GB) (Free:690.21 GB) NTFS
Drive s: () (Network) (Total:465.75 GB) (Free:440.69 GB) 
 
==================== MBR & Partition Table ==================
 
==================== End Of Log ============================

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-07-2014 01
Ran by Administrator (administrator) on ORANGEMARTINI on 25-07-2014 09:35:23
Running from C:\Users\administrator\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Windows\System32\nvwmi64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Program Files\erl5.10.4\erts-5.10.4\bin\erlsrv.exe
(Apache Software Foundation) C:\BitNami\RUBYST~1.3-1\apache2\bin\httpd.exe
() C:\Program Files\erl5.10.4\erts-5.10.4\bin\erl.exe
() C:\Program Files\erl5.10.4\erts-5.10.4\bin\epmd.exe
() C:\BitNami\rubystack-1.9.3-12\mysql\bin\mysqld.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Apache Software Foundation) C:\BitNami\RUBYST~1.3-1\apache2\bin\httpd.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
() C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Spotify Ltd) C:\Users\administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
() C:\Program Files (x86)\Tiny Utilities\Vitrite\Vitrite.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files\erl5.10.4\lib\os_mon-2.2.14\priv\bin\win32sysinfo.exe
() C:\Program Files\erl5.10.4\erts-5.10.4\bin\inet_gethost.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\fontview.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Adobe\Adobe Photoshop CS3\Photoshop.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Alexander Roshal) C:\Program Files (x86)\WinRAR\WinRAR.exe
(Alexander Roshal) C:\Program Files (x86)\WinRAR\WinRAR.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Mega Limited) C:\Users\administrator\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\System32\mstsc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\ramaint.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
(R-Tools Technology Inc.) C:\Program Files (x86)\R-Studio\RStudio64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\18.0.0\ScriptHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Meraki\PCC Agent 1.0.87\m_agent_service.exe
() C:\Windows\System32\nvwmi64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [LogMeIn GUI] => C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe [57928 2013-12-11] (LogMeIn, Inc.)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2728736 2014-03-04] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [TortoiseHgOverlayIconServer] => C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe [100616 2014-06-05] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [337432 2013-07-21] (Power Software Ltd)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
Winlogon\Notify\MIT_KFW-x32: C:\Windows\SysWOW64\kfwlogon.dll (Massachusetts Institute of Technology.)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [24477056 2014-06-27] (Google)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [SkyDrive] => C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-05-14] (Microsoft Corporation)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [uTorrent] => C:\Users\administrator\AppData\Roaming\uTorrent\uTorrent.exe [1329744 2014-07-18] (BitTorrent Inc.)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [Spotify Web Helper] => C:\Users\administrator\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-16] (Spotify Ltd)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2014-01-17] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-117609710-854245398-725345543-500\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\system32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation)
Startup: C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk
ShortcutTarget: MEGAsync.lnk -> C:\Users\administrator\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Vitrite.lnk
ShortcutTarget: Vitrite.lnk -> C:\Program Files (x86)\Tiny Utilities\Vitrite\Vitrite.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\administrator\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: ###MegaShellExtPending -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: ###MegaShellExtSynced -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: ###MegaShellExtSyncing -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: 1TortoiseNormal -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 2TortoiseModified -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 3TortoiseConflict -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 4TortoiseLocked -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 5TortoiseReadOnly -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 6TortoiseDeleted -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 7TortoiseAdded -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 8TortoiseIgnored -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: 9TortoiseUnversioned -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: ###MegaShellExtPending -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSynced -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSyncing -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\administrator\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: 1TortoiseNormal -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 2TortoiseModified -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 3TortoiseConflict -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 4TortoiseLocked -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 5TortoiseReadOnly -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 6TortoiseDeleted -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 7TortoiseAdded -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 8TortoiseIgnored -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: 9TortoiseUnversioned -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x407A3ADA122FCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {76BC91E2-5737-4665-9443-E613D8A9FBAE} URL = 
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={E9E38FA4-E636-4C56-AA86-6F747B56ABCD}&mid=8908093a3ca647d39199d94961e4dd14-52f35b29a55b76aa663ad1228cff68e269b959ef&lang=en&ds=st011&coid=avgtbdisst&cmpid=&pr=sa&d=2014-02-06 10:03:47&v=17.3.1.204&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Updater By SweetPacks -> {C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD} -> C:\Program Files\Updater By SweetPacks\Extension64.dll No File
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Tensons.Application.DownloadAcceleratorManager.BHO -> {00000003-1118-11da-8cd6-0800200c9888} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper -> {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} -> C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: AVG SafeGuard toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG SafeGuard toolbar\18.0.0.250\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.0.0.250\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler: navnet - {AD6E5643-7B0C-46AA-95AD-9773FF2A857A} -  No File
Handler: qbpos - {662E7FAE-5C17-491C-AD9D-98C1F66CC6A0} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - c:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: navnet - {AD6E5643-7B0C-46AA-95AD-9773FF2A857A} - C:\Program Files (x86)\NavNetApp\ComUtilities.dll (MH)
Handler-x32: qbpos - {662E7FAE-5C17-491C-AD9D-98C1F66CC6A0} - C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBPOSProtocol.dll (Intuit Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.0\ViProtocol.dll (AVG Secure Search)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{338950C9-5987-444B-86E6-BDFF8E854235}: [NameServer]8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
 
FireFox:
========
FF ProfilePath: C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default
FF DefaultSearchEngine: AVG Secure Search
FF SelectedSearchEngine: AVG Secure Search
FF Homepage: hxxp://search.conduit.com/?CUI=UN67306301725845896&ctid=CT3309758&SearchSource=13
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.http", "");
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.http_port", 0);
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.no_proxies_on", "localhost, 127.0.0.1");
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.share_proxy_settings", false);
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.socks", "");
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.socks_port", 0);
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.ssl", "");
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.ssl_port", 0);
FF NetworkProxy: "user_pref("extensions.charles.settings.disabled.network.proxy.type", 5);
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.http", "127.0.0.1");
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.http_port", 8888);
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.no_proxies_on", "");
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.share_proxy_settings", false);
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.socks", "");
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.socks_port", 0);
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.ssl", "127.0.0.1");
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.ssl_port", 8888);
FF NetworkProxy: "user_pref("extensions.charles.settings.enabled.network.proxy.type", 1);
FF Keyword.URL: hxxp://trovi.com/ResultsExt.aspx?ctid=CT3309758&SearchSource=2&CUI=UN67306301725845896&UM=2&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=1.6.0_38 - C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.0.0\\npsitesafety.dll (AVG Technologies)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\administrator\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\searchplugins\trustworthy-customized-web-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Charles Autoconfiguration - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\{3e9a3920-1b27-11da-8cd6-0800200c9a66} [2013-11-14]
FF Extension: TrustWorthy  - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\{8480b7b1-a45c-4feb-8653-60f834f7ca4b} [2014-07-10]
FF Extension: flickr original - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\flickr@jzlabs.com.xpi [2014-04-24]
FF Extension: leethax.net extension - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\leethax@leethax.net.xpi [2013-11-15]
FF Extension: Tamper Data Icon Redux - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\tamperdataiconredux@frizzip.com.xpi [2013-06-25]
FF Extension: URL Flipper - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\urlflipper@mozilla.ktechcomputing.com.xpi [2014-06-24]
FF Extension: Tamper Data - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2013-06-25]
FF Extension: QuickJS - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\{bb65e674-b194-4b6e-8033-5fa0afe3a198}.xpi [2013-10-14]
FF Extension: SoundCloud Downloader - Technowise - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\{c8d3bc80-0810-4d21-a2c2-be5f2b2832ac}.xpi [2013-06-25]
FF Extension: DownThemAll! - C:\Users\administrator\AppData\Roaming\Mozilla\Firefox\Profiles\61agfev6.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2014-05-07]
FF HKLM\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM\...\Firefox\Extensions: [{8E9E3331-D360-4f87-8803-52DE43566502}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-07-15]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.0.0.250
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.0.0.250 [2014-03-14]
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2013-11-14]
FF HKLM-x32\...\Firefox\Extensions: [firefox@passwordbox.com] - C:\Program Files (x86)\PasswordBox\Firefox
FF Extension: PasswordBox - C:\Program Files (x86)\PasswordBox\Firefox [2013-11-26]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
 
Chrome: 
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={E9E38FA4-E636-4C56-AA86-6F747B56ABCD}&mid=8908093a3ca647d39199d94961e4dd14-52f35b29a55b76aa663ad1228cff68e269b959ef&lang=en&ds=st011&coid=avgtbdisst&cmpid=&pr=sa&d=2014-02-06 10:03:47&v=17.3.1.204&pid=safeguard&sg=0&sap=hp
CHR StartupUrls: "hxxp://mysearch.avg.com?cid={E9E38FA4-E636-4C56-AA86-6F747B56ABCD}&mid=8908093a3ca647d39199d94961e4dd14-52f35b29a55b76aa663ad1228cff68e269b959ef&lang=en&ds=st011&coid=avgtbdisst&cmpid=&pr=sa&d=2014-02-06 10:03:47&v=17.3.1.204&pid=safeguard&sg=0&sap=hp"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Extension: (Google Docs) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-01-24]
CHR Extension: (Google Drive) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-24]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-22]
CHR Extension: (YouTube) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-24]
CHR Extension: (Google Search) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-24]
CHR Extension: (Picture Downloader Professional) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\eodejnpnekkneapkicljnillpeodnlak [2014-04-24]
CHR Extension: (AdBlock) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-14]
CHR Extension: (DownFlickr - Flickr Downloader) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\idiemcijhbenngdhkdiipmpkafnkbkeg [2014-04-24]
CHR Extension: (cookie.txt export) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopabhfecdfhgogdbojmaicoicjekelh [2014-01-03]
CHR Extension: (AVG SafeGuard) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-08-21]
CHR Extension: (LogMeIn) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgnihglilniboicepgjclfiageofdfj [2013-05-10]
CHR Extension: (Google Wallet) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Bitdefender QuickScan) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2014-06-25]
CHR Extension: (Gmail) - C:\Users\administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-24]
CHR HKCU\...\Chrome\Extension: [dkjaldeegndmngnahlmdbfnejdobkmil] - C:\Users\administrator\AppData\Local\CRE\dkjaldeegndmngnahlmdbfnejdobkmil.crx [2013-01-24]
CHR HKLM-x32\...\Chrome\Extension: [dkjaldeegndmngnahlmdbfnejdobkmil] - C:\Users\administrator\AppData\Local\CRE\dkjaldeegndmngnahlmdbfnejdobkmil.crx [2013-01-24]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.3.2.101\avg.crx [2014-01-10]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-02] (Microsoft Corporation)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [1375600 2013-11-27] (Binary Fortress Software)
S3 DPMClientService; c:\Program Files\Microsoft Data Protection Manager\DPM\bin\DPMClientService.exe [607960 2012-11-22] (Microsoft Corporation)
S4 DpmCPWrapperService; c:\Program Files\Microsoft Data Protection Manager\DPM\bin\CPWrapperServiceHost.exe [30936 2012-11-21] (Microsoft Corporation)
S3 DPMRA; c:\Program Files\Microsoft Data Protection Manager\DPM\bin\DPMRA.exe [6414040 2012-11-22] (Microsoft Corporation)
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2014-07-02] (Macrovision Europe Ltd.) [File not signed]
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed]
S2 InspIRCd; C:\Program Files (x86)\InspIRCd\inspircd.exe [717824 2013-02-12] () [File not signed]
S4 Intuit Entitlement Service v8; C:\Program Files (x86)\Common Files\Intuit\Entitlement Client\v8\Server\Intuit.Spc.Map.EntitlementClient.Server.Service.exe [24680 2011-12-23] (Intuit, Inc.)
S4 LiveUpdate; C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_2.EXE [2541248 2006-10-31] (Symantec Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [376144 2014-07-18] (LogMeIn, Inc.)
R2 LMIMaint; C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe [226640 2014-07-18] (LogMeIn, Inc.)
R2 LogMeIn; C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe [407424 2013-12-11] (LogMeIn, Inc.)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MerakiPCCAgent; C:\Program Files (x86)\Meraki\PCC Agent 1.0.87\m_agent_service.exe [3103317 2014-01-21] () [File not signed]
S4 mi-raysat_3dsmax2013_64; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [86016 2011-09-14] () [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2513752 2014-03-04] ()
S4 PasswordBox; C:\Program Files (x86)\PasswordBox\pbbtnService.exe [67584 2013-11-01] (PasswordBox, Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 RabbitMQ; C:\Program Files\erl5.10.4\erts-5.10.4\bin\erlsrv.exe [162304 2014-01-23] () [File not signed]
R2 rubystackApache; C:\BitNami\RUBYST~1.3-1\apache2\bin\httpd.exe [22016 2013-02-23] (Apache Software Foundation) [File not signed]
R2 rubystackMySQL; C:\BitNami\rubystack-1.9.3-12\mysql\bin\mysqld.exe [8151040 2013-05-16] () [File not signed]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 SYSAM; C:\Sybase2\SYSAM-2_0\bin\lmgrd.exe [1767688 2012-05-04] (Acresso Software Inc.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation)
S2 84ef8d51; "C:\Windows\system32\rundll32.exe" "c:\progra~2\ws-boo~1\AssistantSvc.dll",service
S3 IDriverT; "C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe" [X]
S2 MDM; "c:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe" [X]
S3 MerakiVNCService; C:\Windows\TEMP\winvnc.exe -service [X]
S3 rpcapd; "%ProgramFiles(x86)%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles(x86)%\WinPcap\rpcapd.ini" [X]
S2 vToolbarUpdater18.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 A2DDA; C:\EEK\RUN\a2ddax64.sys [26176 2014-03-20] (Emsisoft GmbH)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-03-02] (AVG Technologies)
S3 cleanhlp; C:\EEK\Run\cleanhlp64.sys [57024 2014-03-20] (Emsisoft GmbH)
R3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2006-09-19] (GEAR Software Inc.)
S1 ISODisk; C:\Windows\SysWow64\Drivers\ISODisk.sys [9600 2006-04-26] () [File not signed]
R2 LMIInfo; C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [16056 2013-12-11] (LogMeIn, Inc.)
S4 LMIRfsClientNP; No ImagePath
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [102664 2013-11-15] ()
R1 Uim_DEVIM; C:\Windows\System32\DRIVERS\uim_devim.sys [25992 2013-11-15] ()
R1 Uim_IM; C:\Windows\System32\DRIVERS\uim_im.sys [700680 2013-11-15] ()
R3 VASDeviceDrm; C:\Windows\System32\drivers\vasdDev.sys [1454896 2012-03-19] (ShiningMorning Inc.)
S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation)
S3 XRNBO; c:\windows\SysWOW64\drivers\XRNBO.sys [177152 2014-03-06] () [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 radpms; system32\DRIVERS\radpms.sys [X]
S1 SASDIFSV; \??\C:\Users\ADMINI~1\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS [X]
S1 SASKUTIL; \??\C:\Users\ADMINI~1\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS [X]
S3 UXDCMN; \??\C:\Users\administrator\Downloads\Ultra-X Winstress Test v1.5[torrents.ru]\UXDCMN.SYS [X]
S1 vcdrom; \??\C:\cd\VCdRom.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-07-25 09:34 - 2014-07-25 09:35 - 00044191 _____ () C:\Users\administrator\Downloads\FRST.txt
2014-07-25 09:24 - 2014-07-25 09:35 - 00000000 ____D () C:\FRST
2014-07-25 09:24 - 2014-07-25 09:24 - 02093568 _____ (Farbar) C:\Users\administrator\Downloads\FRST64.exe
2014-07-24 14:13 - 2014-07-24 14:13 - 03145746 _____ () C:\Users\administrator\Desktop\e024d100-6c59-8688-c68d-163f559c594a.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 03145746 _____ () C:\Users\administrator\Desktop\89308b7d-9b84-2403-c1f5-b629b72adcc3.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00998984 _____ () C:\Users\administrator\Desktop\SLCS Train station.dae
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\ee2e6627-de4b-68c6-27fb-cf822d2ff2d7.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\70765d22-c437-4658-50b8-30ede402f650.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\6238407f-0d8e-344f-f73d-b22aa1cc6f2f.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\557754db-4411-7bb5-467f-57fc54fed1ed.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\31667a95-04e1-12c1-94b3-0a708e2f77cd.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\1b1c0066-423a-ab7c-c0fc-508f05476618.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00393234 _____ () C:\Users\administrator\Desktop\98057541-096a-1565-ffee-bf244d23bc4e.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00196626 _____ () C:\Users\administrator\Desktop\19af62d1-2b7a-018c-de6f-b353545e8088.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00196626 _____ () C:\Users\administrator\Desktop\12b1a0c6-c545-a241-d5b2-33657a64ca31.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00193887 _____ () C:\Users\administrator\Desktop\SLCS Train station.xml
2014-07-24 14:13 - 2014-07-24 14:13 - 00098322 _____ () C:\Users\administrator\Desktop\d0908c50-c7ae-5ada-b6c8-eaeee12021ce.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00000000 ____D () C:\Users\administrator\Desktop\SLCS Train station_assets
2014-07-24 14:12 - 2014-07-24 14:12 - 03583923 _____ () C:\Users\administrator\Desktop\RFL TEAMWORK AWARD 2014.dae
2014-07-24 14:12 - 2014-07-24 14:12 - 03145746 _____ () C:\Users\administrator\Desktop\8b23e601-1348-5868-81b2-078f948687cc.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 03145746 _____ () C:\Users\administrator\Desktop\56a155b6-fa20-f93e-babe-a9fa9fab2063.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 03145746 _____ () C:\Users\administrator\Desktop\42bbbe0d-6eb2-ea86-dc8c-fe54d90c4093.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 01572882 _____ () C:\Users\administrator\Desktop\d0fd89fb-a9ab-d4bd-df83-65c9550e98ee.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 01048594 _____ () C:\Users\administrator\Desktop\3877e624-7bc0-e544-4d13-c0f9d3bd424a.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 00393234 _____ () C:\Users\administrator\Desktop\f94cf4a6-9fa4-65de-0a7f-c03101fa5abc.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 00196626 _____ () C:\Users\administrator\Desktop\f9f04a06-49f3-385f-0da3-0d70e812e096.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 00176595 _____ () C:\Users\administrator\Desktop\RFL FUNDRAISING CLUB AWARD - 2014 GOLD.dae
2014-07-24 14:11 - 2014-07-24 14:11 - 05906842 _____ () C:\Users\administrator\Desktop\Object.obj
2014-07-24 14:11 - 2014-07-24 14:11 - 00054958 _____ () C:\Users\administrator\Desktop\RFL FUNDRAISING CLUB AWARD - 2014 GOLD.xml
2014-07-24 14:11 - 2014-07-24 14:11 - 00044054 _____ () C:\Users\administrator\Desktop\RFL TEAMWORK AWARD 2014.xml
2014-07-24 14:11 - 2014-07-24 14:11 - 00000000 ____D () C:\Users\administrator\Desktop\RFL TEAMWORK AWARD 2014_assets
2014-07-24 14:11 - 2014-07-24 14:11 - 00000000 ____D () C:\Users\administrator\Desktop\RFL FUNDRAISING CLUB AWARD - 2014 GOLD_assets
2014-07-24 14:03 - 2014-07-24 14:03 - 00093749 _____ () C:\Users\administrator\Desktop\stadiuym.xml
2014-07-24 14:03 - 2014-07-24 14:03 - 00000000 ____D () C:\Users\administrator\Desktop\stadiuym_assets
2014-07-24 13:57 - 2014-07-24 13:57 - 01347430 _____ () C:\Users\administrator\Desktop\SLCS Train Car.xml
2014-07-24 13:57 - 2014-07-24 13:57 - 00000000 ____D () C:\Users\administrator\Desktop\SLCS Train Car_assets
2014-07-24 10:45 - 2014-07-24 10:45 - 00032420 _____ () C:\Users\administrator\Downloads\openmenu_joomla_module.zip
2014-07-24 10:45 - 2014-07-24 10:45 - 00031805 _____ () C:\Users\administrator\Downloads\openmenu_joomla_plugin.zip
2014-07-23 17:53 - 2014-07-23 17:53 - 00591506 _____ () C:\Users\administrator\Downloads\うんち我慢 diaper poop アテント.mp4
2014-07-23 13:27 - 2014-07-23 13:27 - 00012455 _____ () C:\Users\administrator\Desktop\stage.txt
2014-07-22 10:56 - 2014-07-22 10:56 - 00010287 _____ () C:\Users\administrator\Desktop\untitled.lsl
2014-07-21 14:50 - 2014-07-21 14:50 - 00013046 _____ () C:\Users\administrator\Downloads\03-Constructions_and_Constraints.zip
2014-07-21 10:28 - 2014-07-24 17:59 - 00000000 ____D () C:\Users\administrator\AppData\Local\DarkstormOS
2014-07-18 16:51 - 2014-07-18 16:51 - 00949504 _____ () C:\Users\administrator\Downloads\Unconfirmed 743315.crdownload
2014-07-18 14:11 - 2014-07-18 14:11 - 00017112 _____ () C:\Users\administrator\Desktop\rflmega.xml
2014-07-18 14:11 - 2014-07-18 14:11 - 00000000 ____D () C:\Users\administrator\Desktop\rflmega_assets
2014-07-18 13:52 - 2014-07-18 13:52 - 00196652 _____ () C:\Users\administrator\Desktop\goodinner.tga
2014-07-18 13:49 - 2014-07-18 13:49 - 00196652 _____ () C:\Users\administrator\Desktop\goodr.tga
2014-07-18 13:49 - 2014-07-18 13:49 - 00196652 _____ () C:\Users\administrator\Desktop\goodc.tga
2014-07-18 13:48 - 2014-07-18 13:48 - 00196652 _____ () C:\Users\administrator\Desktop\goodf.tga
2014-07-18 13:44 - 2014-07-18 13:44 - 00196652 _____ () C:\Users\administrator\Desktop\tttt3.tga
2014-07-18 13:40 - 2014-07-18 13:40 - 00196652 _____ () C:\Users\administrator\Desktop\rem1.tga
2014-07-18 13:40 - 2014-07-18 13:40 - 00196652 _____ () C:\Users\administrator\Desktop\fb1.tga
2014-07-18 13:33 - 2014-07-18 13:33 - 00196652 _____ () C:\Users\administrator\Desktop\testc1.tga
2014-07-18 13:31 - 2014-07-18 13:31 - 00182829 _____ () C:\Users\administrator\Desktop\a1.psd
2014-07-18 13:04 - 2014-07-18 13:04 - 00196652 _____ () C:\Users\administrator\Desktop\a1.tga
2014-07-18 12:53 - 2014-07-18 12:53 - 00196626 _____ () C:\Users\administrator\Desktop\1mega.tga
2014-07-18 09:09 - 2014-07-18 09:09 - 00000821 _____ () C:\Users\administrator\Desktop\µTorrent.lnk
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Users\administrator\Desktop\New folder (6)
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Users\administrator\Desktop\New folder (4)
2014-07-17 15:06 - 2014-07-17 15:06 - 00032870 _____ () C:\Users\administrator\Desktop\dds.txt
2014-07-17 15:06 - 2014-07-17 15:06 - 00031600 _____ () C:\Users\administrator\Desktop\attach.txt
2014-07-17 15:03 - 2014-07-17 15:03 - 00688992 ____R (Swearware) C:\Users\administrator\Downloads\dds.com
2014-07-17 11:46 - 2014-07-17 11:46 - 00068094 _____ () C:\Users\administrator\Desktop\Untitled-2.psd
2014-07-17 11:39 - 2014-07-17 11:39 - 00032380 _____ () C:\Users\administrator\Downloads\forgotten_uncial.zip
2014-07-17 11:38 - 2014-07-17 11:38 - 00010682 _____ () C:\Users\administrator\Downloads\celtic_hand.zip
2014-07-17 11:34 - 2014-07-17 11:34 - 00051115 _____ () C:\Users\administrator\Downloads\manfred-klein_juniusirish.zip
2014-07-17 11:28 - 2014-07-17 11:28 - 00000000 ____D () C:\Users\administrator\Desktop\Weird Al Yankovic - Mandatory Fun 2014 - TEAM RELENTLESS
2014-07-17 11:24 - 2014-07-17 11:24 - 00294646 _____ () C:\Users\administrator\Downloads\CasinoTime.zip
2014-07-17 10:41 - 2014-07-17 10:41 - 01616961 _____ () C:\Users\administrator\Downloads\as002065free.zip
2014-07-16 09:41 - 2014-07-16 09:41 - 00061507 _____ () C:\Users\administrator\Documents\cheercom.txt
2014-07-15 14:45 - 2014-07-15 14:45 - 00001956 _____ () C:\Users\administrator\Documents\circle.txt
2014-07-15 10:10 - 2014-07-23 13:59 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Radegast
2014-07-15 10:10 - 2014-07-15 10:10 - 00001881 _____ () C:\Users\administrator\Desktop\Radegast.lnk
2014-07-15 10:10 - 2014-07-15 10:10 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Radegast
2014-07-15 10:10 - 2014-07-15 10:10 - 00000000 ____D () C:\Program Files (x86)\Radegast
2014-07-15 10:09 - 2014-07-15 10:09 - 08740410 _____ () C:\Users\administrator\Downloads\Radegast-2.16-installer.exe
2014-07-14 13:25 - 2014-07-14 13:25 - 00000000 ____D () C:\Users\administrator\Desktop\t3
2014-07-14 13:06 - 2014-07-14 13:06 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 1.animatn
2014-07-14 13:06 - 2014-07-14 13:06 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base C 5.animatn
2014-07-14 13:06 - 2014-07-14 13:06 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base C 3.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Top R 2.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Top L 2.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Top 2.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\pyramid top 1.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 1.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 6.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 5.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 4.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 3.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 6.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 5.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 4.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 3.animatn
2014-07-14 12:21 - 2014-07-14 12:21 - 00020760 _____ () C:\Users\administrator\Downloads\irish_unci_alphabet.zip
2014-07-14 12:21 - 2014-07-14 12:21 - 00017278 _____ () C:\Users\administrator\Downloads\irish_uncialfabeta.zip
2014-07-11 12:25 - 2014-07-11 12:25 - 00121165 _____ () C:\Users\administrator\Desktop\Escalator Up.xml
2014-07-11 12:25 - 2014-07-11 12:25 - 00000000 ____D () C:\Users\administrator\Desktop\Escalator Up_assets
2014-07-11 12:24 - 2014-07-11 12:24 - 00103630 _____ () C:\Users\administrator\Desktop\fence.xml
2014-07-11 12:24 - 2014-07-11 12:24 - 00000000 ____D () C:\Users\administrator\Desktop\fence_assets
2014-07-11 12:23 - 2014-07-11 12:23 - 00126655 _____ () C:\Users\administrator\Desktop\truss.xml
2014-07-11 12:23 - 2014-07-11 12:23 - 00000000 ____D () C:\Users\administrator\Desktop\truss_assets
2014-07-11 10:09 - 2014-07-11 10:09 - 00000000 ____D () C:\Users\administrator\Downloads\The Cape House with assets
2014-07-11 09:50 - 2014-07-11 09:50 - 03600447 _____ () C:\Users\administrator\Downloads\The Cape House with assets.rar
2014-07-11 09:50 - 2014-07-11 09:50 - 01020251 _____ () C:\Users\administrator\Downloads\The Farm House with assets.rar
2014-07-10 10:51 - 2014-07-10 10:51 - 00000000 ____D () C:\Users\administrator\Desktop\c3
2014-07-10 09:53 - 2014-07-10 09:53 - 00593386 _____ () C:\Users\administrator\Downloads\There_in_Spirit_-_TIS_-_Goddess_of_Dance_Dancepack_6_dances.zip
2014-07-10 09:53 - 2014-07-10 09:53 - 00572505 _____ () C:\Users\administrator\Downloads\there_in_Spirit_-_TIS_-_Jewels_of_Rock_dancepack_6_dances.zip
2014-07-10 09:53 - 2014-07-10 09:53 - 00547269 _____ () C:\Users\administrator\Downloads\There_in_Spirit_-_TIS_-_Urban_street_dance_pack_6_dances.zip
2014-07-10 09:52 - 2014-07-10 09:52 - 00557323 _____ () C:\Users\administrator\Downloads\Club_Dance.rar
2014-07-10 09:48 - 2014-07-10 09:48 - 01735769 _____ () C:\Users\administrator\Downloads\Pioneer CDJ- Mixer.rar
2014-07-10 09:47 - 2014-07-10 09:47 - 04351193 _____ () C:\Users\administrator\Downloads\SynapClb.zip
2014-07-10 09:45 - 2014-07-10 09:45 - 07519379 _____ () C:\Users\administrator\Downloads\110 Motion Capture Club Dances.rar
2014-07-10 09:36 - 2014-07-10 09:37 - 208073673 _____ () C:\Users\administrator\Downloads\DCL50112011.zip
2014-07-10 09:17 - 2014-07-10 09:17 - 00000000 ____D () C:\Users\administrator\Downloads\Cheerleader
2014-07-10 09:16 - 2014-07-10 09:16 - 00074039 _____ () C:\Users\administrator\Downloads\Cheerleader.rar
2014-07-09 16:05 - 2014-07-24 14:14 - 00000000 ____D () C:\Users\administrator\Desktop\_40, 50, 2__assets
2014-07-09 16:05 - 2014-07-09 16:05 - 00755519 _____ () C:\Users\administrator\Desktop\_40, 50, 2_.xml
2014-07-09 15:57 - 2014-07-09 15:57 - 00428966 _____ () C:\Users\administrator\Desktop\spaceneedlelike.xml
2014-07-09 15:57 - 2014-07-09 15:57 - 00000000 ____D () C:\Users\administrator\Desktop\spaceneedlelike_assets
2014-07-09 13:17 - 2014-07-09 13:17 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\QAvimator Team
2014-07-09 13:06 - 2014-07-09 13:06 - 00003783 _____ () C:\Users\administrator\Desktop\lmotionl.bvh
2014-07-09 13:06 - 2014-07-09 13:06 - 00000643 _____ () C:\Users\administrator\Desktop\M_M L MOTION.animatn
2014-07-08 11:15 - 2014-07-08 14:32 - 00000444 _____ () C:\Users\administrator\Documents\cheermaster hud.txt
2014-07-08 09:47 - 2014-07-08 10:19 - 00000000 ____D () C:\PikkuBot
2014-07-08 09:19 - 2014-07-08 09:19 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PikkuBot
2014-07-08 09:19 - 2014-07-08 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PikkuBot
2014-07-08 09:17 - 2014-07-08 09:17 - 04893741 _____ () C:\Users\administrator\Downloads\PikkuBot_Installer_3190.exe
2014-07-07 12:55 - 2014-07-07 12:55 - 00024901 _____ () C:\Users\administrator\Desktop\0661c3c8-3e61-1494-588a-61789c5696ab.bvh
2014-07-07 12:22 - 2014-07-07 12:22 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QAvimator
2014-07-07 12:22 - 2014-07-07 12:22 - 00000000 ____D () C:\Program Files (x86)\QAvimator
2014-07-07 12:15 - 2014-07-07 12:15 - 00000000 ____D () C:\Users\administrator\AppData\Local\Van_der_Heijden_Holding_B
2014-07-07 12:14 - 2014-07-07 12:14 - 00271064 _____ () C:\Users\administrator\Downloads\LSLEditor.zip
2014-07-07 12:14 - 2014-07-07 12:14 - 00003673 _____ () C:\Users\administrator\Downloads\Animator.zip
2014-07-07 12:14 - 2014-07-07 12:14 - 00000000 ____D () C:\Users\administrator\Downloads\LSLEditor
2014-07-07 12:14 - 2014-07-07 12:14 - 00000000 ____D () C:\Users\administrator\Downloads\Animator
2014-07-07 11:48 - 2014-07-07 11:48 - 19865724 _____ (QAvimator Team) C:\Users\administrator\Downloads\QAvimator_0.1.0_394_Windows_32-bit.exe
2014-07-07 11:34 - 2014-07-07 11:34 - 00002678 _____ () C:\Users\administrator\Documents\MOVELOCK.txt
2014-07-07 11:19 - 2014-07-07 11:19 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\administrator\Downloads\WinPcap_4_1_3.exe
2014-07-07 10:43 - 2014-07-07 10:43 - 00001388 _____ () C:\Users\Public\Desktop\PowerGREP 4.lnk
2014-07-07 10:43 - 2014-07-07 10:43 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\JGsoft
2014-07-07 10:43 - 2014-07-07 10:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerGREP 4
2014-07-07 10:43 - 2014-07-07 10:43 - 00000000 ____D () C:\Program Files\Just Great Software
2014-07-07 10:42 - 2014-07-07 10:42 - 16821568 _____ (Just Great Software ) C:\Users\administrator\Downloads\SetupPowerGREPDemo.exe
2014-07-07 10:22 - 2014-07-07 10:22 - 00000000 ____D () C:\Users\administrator\Downloads\lindenlab-viewer-release-be7ebc4aa136
2014-07-07 10:06 - 2014-07-07 10:22 - 25775456 _____ () C:\Users\administrator\Downloads\lindenlab-viewer-release-be7ebc4aa136.zip
2014-07-07 10:03 - 2014-07-07 10:06 - 00140956 _____ () C:\Users\administrator\Downloads\NickyD-autobuild-063795f5c389.zip
2014-07-07 09:43 - 2014-07-07 09:55 - 00000000 ____D () C:\Users\administrator\Desktop\fssource
2014-07-07 09:43 - 2014-07-07 09:43 - 00000000 ____D () C:\Users\administrator\AppData\Local\easymercurial
2014-07-07 09:43 - 2014-07-07 09:43 - 00000000 ____D () C:\Users\administrator\.easyhg
2014-07-07 09:30 - 2014-07-16 13:56 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\TortoiseHg
2014-07-07 09:30 - 2014-07-07 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseHg
2014-07-07 09:30 - 2014-07-07 09:30 - 00000000 ____D () C:\Program Files\TortoiseHg
2014-07-07 09:28 - 2014-07-07 09:28 - 28377088 _____ () C:\Users\administrator\Downloads\tortoisehg-3.0.1-x64.msi
2014-07-07 09:23 - 2014-07-07 09:23 - 00002967 _____ () C:\Users\administrator\Desktop\EasyMercurial.lnk
2014-07-07 09:23 - 2014-07-07 09:23 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EasyMercurial
2014-07-07 09:23 - 2014-07-07 09:23 - 00000000 ____D () C:\Program Files (x86)\EasyMercurial
2014-07-07 09:21 - 2014-07-07 09:21 - 15504384 _____ () C:\Users\administrator\Downloads\EasyMercurial-1.3.0-Setup.msi
2014-07-04 13:08 - 2014-07-04 13:08 - 00069111 _____ () C:\Users\administrator\Downloads\All_in_1_NPC_Recorder_and_Player.zip
2014-07-03 11:53 - 2014-07-03 11:53 - 00000000 ____D () C:\Users\administrator\Desktop\Adobe CS6 Master Collection
2014-07-03 11:42 - 2014-07-03 11:43 - 28790311 _____ () C:\Users\administrator\Downloads\zt_marco_v1.0.0.zip
2014-07-03 11:34 - 2014-07-03 11:34 - 01066266 _____ () C:\Users\administrator\Downloads\as002060free_1.0.1 (1).zip
2014-07-03 11:22 - 2014-07-03 11:22 - 01066266 _____ () C:\Users\administrator\Downloads\as002060free.zip
2014-07-02 15:29 - 2014-07-02 15:29 - 00196652 _____ () C:\Users\administrator\Desktop\MEGA2.tga
2014-07-02 15:29 - 2014-07-02 15:29 - 00057100 _____ () C:\Users\administrator\Desktop\MEGA2.psd
2014-07-02 15:23 - 2014-07-02 15:23 - 00196652 _____ () C:\Users\administrator\Desktop\MEGAPHONE1.tga
2014-07-02 15:16 - 2014-07-02 15:16 - 00196626 _____ () C:\Users\administrator\Desktop\megaphone.tga
2014-07-02 14:22 - 2014-07-02 14:22 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-07-02 14:22 - 2014-07-02 14:22 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-07-02 13:33 - 2014-07-02 13:33 - 00786476 _____ () C:\Users\administrator\Desktop\TEST.tga
2014-07-02 13:32 - 2014-07-02 13:32 - 01643106 _____ () C:\Users\administrator\Desktop\TEST.psd
2014-07-02 13:27 - 2014-07-02 13:27 - 03145746 _____ () C:\Users\administrator\Desktop\2dbd99c6-de0f-6d30-6b98-b1ac6563111d.tga
2014-07-02 13:22 - 2014-07-02 13:22 - 01048594 _____ () C:\Users\administrator\Desktop\83c0bf3a-f5ef-4fb2-84ca-5c3e2d34970c.tga
2014-07-02 13:02 - 2014-07-02 13:07 - 00049196 _____ () C:\Users\administrator\Desktop\cskirt.tga
2014-07-02 12:50 - 2014-07-02 12:50 - 00262188 _____ () C:\Users\administrator\Desktop\aa.tga
2014-07-02 12:44 - 2007-02-20 16:04 - 02463976 _____ () C:\Windows\SysWOW64\NPSWF32.dll
2014-07-02 12:44 - 2007-02-20 16:04 - 00190696 _____ (Adobe Systems, Inc.) C:\Windows\SysWOW64\NPSWF32_FlashUtil.exe
2014-07-02 12:40 - 2014-07-02 12:40 - 00000000 ____D () C:\Windows\SysWOW64\spool
2014-07-02 12:38 - 2014-07-02 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS3
2014-07-02 12:20 - 2014-07-02 12:20 - 00262162 _____ () C:\Users\administrator\Desktop\f2eb1638-2474-4cec-a54b-713b80b8ddb4.tga
2014-07-01 15:43 - 2014-07-03 17:26 - 00000000 ____D () C:\Users\administrator\Desktop\sl exports
2014-07-01 15:26 - 2014-07-18 15:21 - 00000000 ____D () C:\Users\administrator\AppData\Local\DarkstormOS1
2014-07-01 15:26 - 2014-07-09 12:19 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Darkstorm
2014-07-01 15:26 - 2014-07-01 15:26 - 00000846 _____ () C:\Users\Public\Desktop\DarkStorm.lnk
2014-07-01 15:26 - 2014-07-01 15:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DarkStorm
2014-07-01 15:24 - 2014-07-16 09:04 - 00000000 ____D () C:\Program Files (x86)\DarkStorm
2014-07-01 15:23 - 2014-07-01 15:23 - 00002007 _____ () C:\Users\Public\Desktop\Cool VL Viewer v1.26.12.lnk
2014-07-01 15:23 - 2014-07-01 15:23 - 00000000 ___HD () C:\Program Files (x86)\InstallJammer Registry
2014-07-01 15:23 - 2014-07-01 15:23 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cool VL Viewer
2014-07-01 15:22 - 2014-07-01 15:23 - 00000000 ____D () C:\Program Files (x86)\CoolVLViewer-1.26.12
2014-07-01 15:17 - 2014-07-01 15:22 - 46061032 _____ () C:\Users\administrator\Downloads\DarkstormOS_Viewer_v3.0.2_setup.exe
2014-07-01 15:17 - 2014-07-01 15:22 - 46060708 _____ () C:\Users\administrator\Downloads\Darkstorm_Viewer_v3.0.2_setup.exe
2014-07-01 14:33 - 2014-07-01 14:34 - 40552251 _____ () C:\Users\administrator\Downloads\Astra_1.6.4_Setup.exe
2014-07-01 14:32 - 2014-07-01 14:34 - 38673677 _____ (Cool Products) C:\Users\administrator\Downloads\CoolVLViewer-1.26.12.5-Windows-Setup.exe
2014-07-01 10:50 - 2014-07-01 10:54 - 520009728 _____ () C:\Users\administrator\Downloads\boot-repair-disk-32bit.iso
2014-07-01 09:41 - 2014-07-01 09:56 - 163577856 _____ () C:\Users\administrator\Downloads\RIPLinuX-13.7.iso
2014-07-01 09:29 - 2014-07-01 09:31 - 490204800 _____ (Hewlett-Packard ) C:\Users\administrator\Downloads\sp65452.exe
2014-07-01 09:28 - 2014-07-01 09:30 - 486524128 _____ ( ) C:\Users\administrator\Downloads\sp60814.exe
2014-06-30 14:56 - 2014-06-30 14:56 - 00006163 _____ () C:\Users\administrator\Downloads\Sim Wide Security Script.rar
2014-06-30 13:38 - 2014-06-30 13:38 - 00562865 _____ () C:\Users\administrator\Downloads\headset.zip
2014-06-30 11:21 - 2014-06-30 11:22 - 01066266 _____ () C:\Users\administrator\Downloads\as002060free_1.0.1.zip
2014-06-30 11:09 - 2014-06-30 11:09 - 23725212 _____ () C:\Users\administrator\Downloads\Universal-Campus-Nonmega-1.oar
2014-06-27 10:34 - 2014-06-27 10:34 - 01518940 _____ () C:\Users\administrator\Downloads\HyperGate_Vendor_v0.7.3_rev._4 (1).iar
2014-06-26 16:19 - 2014-06-26 16:19 - 16668642 _____ () C:\Users\administrator\Downloads\Cheer.wav
2014-06-26 09:23 - 2014-06-26 09:23 - 13453222 _____ () C:\Users\administrator\Downloads\Rooster Diet Training.wav
2014-06-25 15:06 - 2014-06-25 15:06 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\administrator\Downloads\tdsskiller (1).exe
2014-06-25 13:56 - 2014-06-25 13:56 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\QuickScan
2014-06-25 00:50 - 2014-06-25 00:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-07-25 09:35 - 2014-07-25 09:34 - 00044191 _____ () C:\Users\administrator\Downloads\FRST.txt
2014-07-25 09:35 - 2014-07-25 09:24 - 00000000 ____D () C:\FRST
2014-07-25 09:35 - 2014-04-04 10:33 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\DisplayFusion
2014-07-25 09:34 - 2013-12-06 18:34 - 00000000 ____D () C:\Users\administrator\Downloads\RMOG
2014-07-25 09:34 - 2013-09-17 12:00 - 00000000 ____D () C:\Users\administrator\Downloads\~Nero 12 Platinum 12.0.03500 Final + Patch - Genial78
2014-07-25 09:34 - 2013-04-04 11:13 - 00000000 ____D () C:\Users\administrator\Downloads\MIRC v7.29 Incl Crack [TorDigger]
2014-07-25 09:34 - 2013-03-06 21:22 - 00000000 ____D () C:\Users\administrator\Downloads\WinImage.v8.50.x32.x64-ArCADE { www.torrentkit.com }
2014-07-25 09:34 - 2013-02-27 17:39 - 00000000 ____D () C:\Users\administrator\Downloads\Do Not Open - An Encyclopedia of the World's Best-Kept Secrets -Mantesh
2014-07-25 09:33 - 2013-01-24 11:44 - 01643775 _____ () C:\Windows\WindowsUpdate.log
2014-07-25 09:32 - 2013-02-14 12:27 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-25 09:27 - 2013-04-23 10:27 - 00000574 _____ () C:\Windows\Tasks\ScheduledDPMClientBackup.job
2014-07-25 09:24 - 2014-07-25 09:24 - 02093568 _____ (Farbar) C:\Users\administrator\Downloads\FRST64.exe
2014-07-25 09:17 - 2014-05-05 09:46 - 00001712 _____ () C:\Windows\Sandboxie.ini
2014-07-25 09:09 - 2009-07-14 00:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-07-25 08:53 - 2013-01-24 11:55 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-25 08:40 - 2013-02-12 10:35 - 00000000 ____D () C:\Users\administrator\Documents\Outlook Files
2014-07-25 02:00 - 2013-07-15 10:40 - 00000000 ____D () C:\Users\administrator\AppData\Local\Adobe
2014-07-24 17:59 - 2014-07-21 10:28 - 00000000 ____D () C:\Users\administrator\AppData\Local\DarkstormOS
2014-07-24 15:32 - 2014-06-09 16:33 - 00000000 ____D () C:\Users\administrator\AppData\Local\FirestormOS_x64
2014-07-24 15:32 - 2014-06-09 16:31 - 00000000 ____D () C:\Program Files\Firestorm
2014-07-24 15:22 - 2013-01-24 15:27 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-07-24 14:52 - 2014-06-24 10:10 - 00000000 ____D () C:\Users\administrator\Downloads\OpenCollar4-3.800-OS
2014-07-24 14:14 - 2014-07-09 16:05 - 00000000 ____D () C:\Users\administrator\Desktop\_40, 50, 2__assets
2014-07-24 14:13 - 2014-07-24 14:13 - 03145746 _____ () C:\Users\administrator\Desktop\e024d100-6c59-8688-c68d-163f559c594a.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 03145746 _____ () C:\Users\administrator\Desktop\89308b7d-9b84-2403-c1f5-b629b72adcc3.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00998984 _____ () C:\Users\administrator\Desktop\SLCS Train station.dae
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\ee2e6627-de4b-68c6-27fb-cf822d2ff2d7.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\70765d22-c437-4658-50b8-30ede402f650.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\6238407f-0d8e-344f-f73d-b22aa1cc6f2f.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\557754db-4411-7bb5-467f-57fc54fed1ed.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\31667a95-04e1-12c1-94b3-0a708e2f77cd.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00786450 _____ () C:\Users\administrator\Desktop\1b1c0066-423a-ab7c-c0fc-508f05476618.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00393234 _____ () C:\Users\administrator\Desktop\98057541-096a-1565-ffee-bf244d23bc4e.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00196626 _____ () C:\Users\administrator\Desktop\19af62d1-2b7a-018c-de6f-b353545e8088.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00196626 _____ () C:\Users\administrator\Desktop\12b1a0c6-c545-a241-d5b2-33657a64ca31.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00193887 _____ () C:\Users\administrator\Desktop\SLCS Train station.xml
2014-07-24 14:13 - 2014-07-24 14:13 - 00098322 _____ () C:\Users\administrator\Desktop\d0908c50-c7ae-5ada-b6c8-eaeee12021ce.tga
2014-07-24 14:13 - 2014-07-24 14:13 - 00000000 ____D () C:\Users\administrator\Desktop\SLCS Train station_assets
2014-07-24 14:12 - 2014-07-24 14:12 - 03583923 _____ () C:\Users\administrator\Desktop\RFL TEAMWORK AWARD 2014.dae
2014-07-24 14:12 - 2014-07-24 14:12 - 03145746 _____ () C:\Users\administrator\Desktop\8b23e601-1348-5868-81b2-078f948687cc.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 03145746 _____ () C:\Users\administrator\Desktop\56a155b6-fa20-f93e-babe-a9fa9fab2063.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 03145746 _____ () C:\Users\administrator\Desktop\42bbbe0d-6eb2-ea86-dc8c-fe54d90c4093.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 01572882 _____ () C:\Users\administrator\Desktop\d0fd89fb-a9ab-d4bd-df83-65c9550e98ee.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 01048594 _____ () C:\Users\administrator\Desktop\3877e624-7bc0-e544-4d13-c0f9d3bd424a.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 00393234 _____ () C:\Users\administrator\Desktop\f94cf4a6-9fa4-65de-0a7f-c03101fa5abc.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 00196626 _____ () C:\Users\administrator\Desktop\f9f04a06-49f3-385f-0da3-0d70e812e096.tga
2014-07-24 14:12 - 2014-07-24 14:12 - 00176595 _____ () C:\Users\administrator\Desktop\RFL FUNDRAISING CLUB AWARD - 2014 GOLD.dae
2014-07-24 14:11 - 2014-07-24 14:11 - 05906842 _____ () C:\Users\administrator\Desktop\Object.obj
2014-07-24 14:11 - 2014-07-24 14:11 - 00054958 _____ () C:\Users\administrator\Desktop\RFL FUNDRAISING CLUB AWARD - 2014 GOLD.xml
2014-07-24 14:11 - 2014-07-24 14:11 - 00044054 _____ () C:\Users\administrator\Desktop\RFL TEAMWORK AWARD 2014.xml
2014-07-24 14:11 - 2014-07-24 14:11 - 00000000 ____D () C:\Users\administrator\Desktop\RFL TEAMWORK AWARD 2014_assets
2014-07-24 14:11 - 2014-07-24 14:11 - 00000000 ____D () C:\Users\administrator\Desktop\RFL FUNDRAISING CLUB AWARD - 2014 GOLD_assets
2014-07-24 14:03 - 2014-07-24 14:03 - 00093749 _____ () C:\Users\administrator\Desktop\stadiuym.xml
2014-07-24 14:03 - 2014-07-24 14:03 - 00000000 ____D () C:\Users\administrator\Desktop\stadiuym_assets
2014-07-24 13:57 - 2014-07-24 13:57 - 01347430 _____ () C:\Users\administrator\Desktop\SLCS Train Car.xml
2014-07-24 13:57 - 2014-07-24 13:57 - 00000000 ____D () C:\Users\administrator\Desktop\SLCS Train Car_assets
2014-07-24 10:53 - 2013-01-24 11:55 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-24 10:45 - 2014-07-24 10:45 - 00032420 _____ () C:\Users\administrator\Downloads\openmenu_joomla_module.zip
2014-07-24 10:45 - 2014-07-24 10:45 - 00031805 _____ () C:\Users\administrator\Downloads\openmenu_joomla_plugin.zip
2014-07-24 09:19 - 2013-05-08 13:05 - 00000000 ____D () C:\mirc1
2014-07-23 17:56 - 2014-06-24 10:26 - 00000000 ____D () C:\Users\administrator\AppData\Local\kokua
2014-07-23 17:56 - 2013-01-29 11:47 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\uTorrent
2014-07-23 17:53 - 2014-07-23 17:53 - 00591506 _____ () C:\Users\administrator\Downloads\うんち我慢 diaper poop アテント.mp4
2014-07-23 13:59 - 2014-07-15 10:10 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Radegast
2014-07-23 13:27 - 2014-07-23 13:27 - 00012455 _____ () C:\Users\administrator\Desktop\stage.txt
2014-07-23 12:18 - 2014-06-06 13:14 - 00000000 ____D () C:\Users\administrator\AppData\Local\CrashDumps
2014-07-23 10:43 - 2014-06-09 16:33 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Firestorm_x64
2014-07-22 16:33 - 2013-01-24 14:42 - 00002006 ____H () C:\Users\administrator\Documents\Default.rdp
2014-07-22 10:56 - 2014-07-22 10:56 - 00010287 _____ () C:\Users\administrator\Desktop\untitled.lsl
2014-07-22 09:47 - 2014-06-24 10:26 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Kokua
2014-07-21 14:50 - 2014-07-21 14:50 - 00013046 _____ () C:\Users\administrator\Downloads\03-Constructions_and_Constraints.zip
2014-07-21 10:28 - 2013-07-04 13:18 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\vlc
2014-07-18 17:14 - 2013-12-06 18:36 - 00000000 ____D () C:\Users\administrator\Downloads\Bud Light
2014-07-18 17:05 - 2013-06-24 15:10 - 00000000 ____D () C:\Users\administrator\AppData\Local\Freemake Music Box
2014-07-18 16:51 - 2014-07-18 16:51 - 00949504 _____ () C:\Users\administrator\Downloads\Unconfirmed 743315.crdownload
2014-07-18 16:22 - 2009-07-14 00:13 - 01052174 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-18 16:04 - 2009-07-13 23:45 - 00025952 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-18 16:04 - 2009-07-13 23:45 - 00025952 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-18 15:23 - 2014-01-29 10:57 - 00001004 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Client.lnk
2014-07-18 15:23 - 2014-01-29 10:56 - 00000988 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Control Panel.lnk
2014-07-18 15:23 - 2013-01-24 15:27 - 00000000 ____D () C:\Program Files (x86)\LogMeIn
2014-07-18 15:22 - 2014-02-13 04:39 - 00092488 _____ (LogMeIn, Inc.) C:\Windows\system32\LMIinit.dll
2014-07-18 15:22 - 2014-01-29 10:57 - 00107368 _____ (LogMeIn, Inc.) C:\Windows\system32\LMIRfsClientNP.dll
2014-07-18 15:21 - 2014-07-01 15:26 - 00000000 ____D () C:\Users\administrator\AppData\Local\DarkstormOS1
2014-07-18 14:11 - 2014-07-18 14:11 - 00017112 _____ () C:\Users\administrator\Desktop\rflmega.xml
2014-07-18 14:11 - 2014-07-18 14:11 - 00000000 ____D () C:\Users\administrator\Desktop\rflmega_assets
2014-07-18 13:52 - 2014-07-18 13:52 - 00196652 _____ () C:\Users\administrator\Desktop\goodinner.tga
2014-07-18 13:49 - 2014-07-18 13:49 - 00196652 _____ () C:\Users\administrator\Desktop\goodr.tga
2014-07-18 13:49 - 2014-07-18 13:49 - 00196652 _____ () C:\Users\administrator\Desktop\goodc.tga
2014-07-18 13:48 - 2014-07-18 13:48 - 00196652 _____ () C:\Users\administrator\Desktop\goodf.tga
2014-07-18 13:44 - 2014-07-18 13:44 - 00196652 _____ () C:\Users\administrator\Desktop\tttt3.tga
2014-07-18 13:40 - 2014-07-18 13:40 - 00196652 _____ () C:\Users\administrator\Desktop\rem1.tga
2014-07-18 13:40 - 2014-07-18 13:40 - 00196652 _____ () C:\Users\administrator\Desktop\fb1.tga
2014-07-18 13:33 - 2014-07-18 13:33 - 00196652 _____ () C:\Users\administrator\Desktop\testc1.tga
2014-07-18 13:31 - 2014-07-18 13:31 - 00182829 _____ () C:\Users\administrator\Desktop\a1.psd
2014-07-18 13:04 - 2014-07-18 13:04 - 00196652 _____ () C:\Users\administrator\Desktop\a1.tga
2014-07-18 13:01 - 2013-02-14 12:27 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Adobe
2014-07-18 12:53 - 2014-07-18 12:53 - 00196626 _____ () C:\Users\administrator\Desktop\1mega.tga
2014-07-18 09:09 - 2014-07-18 09:09 - 00000821 _____ () C:\Users\administrator\Desktop\µTorrent.lnk
2014-07-18 09:09 - 2013-08-09 11:31 - 00000801 _____ () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-18 07:58 - 2014-01-23 12:08 - 00000000 ____D () C:\Users\administrator\AppData\Local\MEGAsync
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Users\administrator\Desktop\New folder (6)
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Users\administrator\Desktop\New folder (4)
2014-07-17 15:06 - 2014-07-17 15:06 - 00032870 _____ () C:\Users\administrator\Desktop\dds.txt
2014-07-17 15:06 - 2014-07-17 15:06 - 00031600 _____ () C:\Users\administrator\Desktop\attach.txt
2014-07-17 15:03 - 2014-07-17 15:03 - 00688992 ____R (Swearware) C:\Users\administrator\Downloads\dds.com
2014-07-17 14:47 - 2014-06-09 12:02 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\SecondLife
2014-07-17 14:46 - 2014-06-17 12:42 - 00000665 _____ () C:\chat.txt
2014-07-17 14:40 - 2013-01-24 15:37 - 00114712 _____ () C:\Users\administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-17 11:46 - 2014-07-17 11:46 - 00068094 _____ () C:\Users\administrator\Desktop\Untitled-2.psd
2014-07-17 11:39 - 2014-07-17 11:39 - 00032380 _____ () C:\Users\administrator\Downloads\forgotten_uncial.zip
2014-07-17 11:38 - 2014-07-17 11:38 - 00010682 _____ () C:\Users\administrator\Downloads\celtic_hand.zip
2014-07-17 11:34 - 2014-07-17 11:34 - 00051115 _____ () C:\Users\administrator\Downloads\manfred-klein_juniusirish.zip
2014-07-17 11:28 - 2014-07-17 11:28 - 00000000 ____D () C:\Users\administrator\Desktop\Weird Al Yankovic - Mandatory Fun 2014 - TEAM RELENTLESS
2014-07-17 11:24 - 2014-07-17 11:24 - 00294646 _____ () C:\Users\administrator\Downloads\CasinoTime.zip
2014-07-17 10:41 - 2014-07-17 10:41 - 01616961 _____ () C:\Users\administrator\Downloads\as002065free.zip
2014-07-16 21:56 - 2014-05-27 15:36 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-16 13:56 - 2014-07-07 09:30 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\TortoiseHg
2014-07-16 13:56 - 2013-07-27 13:55 - 00000000 ___RD () C:\Users\administrator\SkyDrive
2014-07-16 13:54 - 2014-04-04 10:01 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-16 13:54 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-16 13:54 - 2009-07-13 23:51 - 00059089 _____ () C:\Windows\setupact.log
2014-07-16 12:46 - 2013-05-07 13:36 - 00000000 ____D () C:\Users\administrator\AppData\Local\TSVNCache
2014-07-16 12:04 - 2013-03-07 13:36 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\VMware
2014-07-16 09:41 - 2014-07-16 09:41 - 00061507 _____ () C:\Users\administrator\Documents\cheercom.txt
2014-07-16 09:04 - 2014-07-01 15:24 - 00000000 ____D () C:\Program Files (x86)\DarkStorm
2014-07-15 14:45 - 2014-07-15 14:45 - 00001956 _____ () C:\Users\administrator\Documents\circle.txt
2014-07-15 10:10 - 2014-07-15 10:10 - 00001881 _____ () C:\Users\administrator\Desktop\Radegast.lnk
2014-07-15 10:10 - 2014-07-15 10:10 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Radegast
2014-07-15 10:10 - 2014-07-15 10:10 - 00000000 ____D () C:\Program Files (x86)\Radegast
2014-07-15 10:09 - 2014-07-15 10:09 - 08740410 _____ () C:\Users\administrator\Downloads\Radegast-2.16-installer.exe
2014-07-15 10:08 - 2014-06-17 12:40 - 00000000 ____D () C:\Users\administrator\AppData\Local\SingularityViewer64
2014-07-14 13:25 - 2014-07-14 13:25 - 00000000 ____D () C:\Users\administrator\Desktop\t3
2014-07-14 13:06 - 2014-07-14 13:06 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 1.animatn
2014-07-14 13:06 - 2014-07-14 13:06 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base C 5.animatn
2014-07-14 13:06 - 2014-07-14 13:06 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base C 3.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Top R 2.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Top L 2.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Top 2.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\pyramid top 1.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 1.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 6.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 5.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 4.animatn
2014-07-14 13:05 - 2014-07-14 13:05 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base L 3.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 6.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 5.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 4.animatn
2014-07-14 13:04 - 2014-07-14 13:04 - 00000000 _____ () C:\Users\administrator\Desktop\Pyramid Base R 3.animatn
2014-07-14 12:21 - 2014-07-14 12:21 - 00020760 _____ () C:\Users\administrator\Downloads\irish_unci_alphabet.zip
2014-07-14 12:21 - 2014-07-14 12:21 - 00017278 _____ () C:\Users\administrator\Downloads\irish_uncialfabeta.zip
2014-07-11 14:39 - 2014-06-19 17:36 - 00000000 _____ () C:\conversation.log
2014-07-11 12:25 - 2014-07-11 12:25 - 00121165 _____ () C:\Users\administrator\Desktop\Escalator Up.xml
2014-07-11 12:25 - 2014-07-11 12:25 - 00000000 ____D () C:\Users\administrator\Desktop\Escalator Up_assets
2014-07-11 12:24 - 2014-07-11 12:24 - 00103630 _____ () C:\Users\administrator\Desktop\fence.xml
2014-07-11 12:24 - 2014-07-11 12:24 - 00000000 ____D () C:\Users\administrator\Desktop\fence_assets
2014-07-11 12:23 - 2014-07-11 12:23 - 00126655 _____ () C:\Users\administrator\Desktop\truss.xml
2014-07-11 12:23 - 2014-07-11 12:23 - 00000000 ____D () C:\Users\administrator\Desktop\truss_assets
2014-07-11 10:09 - 2014-07-11 10:09 - 00000000 ____D () C:\Users\administrator\Downloads\The Cape House with assets
2014-07-11 09:50 - 2014-07-11 09:50 - 03600447 _____ () C:\Users\administrator\Downloads\The Cape House with assets.rar
2014-07-11 09:50 - 2014-07-11 09:50 - 01020251 _____ () C:\Users\administrator\Downloads\The Farm House with assets.rar
2014-07-10 11:36 - 2014-06-24 10:23 - 00000000 ____D () C:\Program Files (x86)\KokuaViewer
2014-07-10 11:33 - 2013-02-12 10:36 - 00000000 ____D () C:\Users\administrator\Documents\Visual Studio 2010
2014-07-10 10:51 - 2014-07-10 10:51 - 00000000 ____D () C:\Users\administrator\Desktop\c3
2014-07-10 09:53 - 2014-07-10 09:53 - 00593386 _____ () C:\Users\administrator\Downloads\There_in_Spirit_-_TIS_-_Goddess_of_Dance_Dancepack_6_dances.zip
2014-07-10 09:53 - 2014-07-10 09:53 - 00572505 _____ () C:\Users\administrator\Downloads\there_in_Spirit_-_TIS_-_Jewels_of_Rock_dancepack_6_dances.zip
2014-07-10 09:53 - 2014-07-10 09:53 - 00547269 _____ () C:\Users\administrator\Downloads\There_in_Spirit_-_TIS_-_Urban_street_dance_pack_6_dances.zip
2014-07-10 09:52 - 2014-07-10 09:52 - 00557323 _____ () C:\Users\administrator\Downloads\Club_Dance.rar
2014-07-10 09:48 - 2014-07-10 09:48 - 01735769 _____ () C:\Users\administrator\Downloads\Pioneer CDJ- Mixer.rar
2014-07-10 09:47 - 2014-07-10 09:47 - 04351193 _____ () C:\Users\administrator\Downloads\SynapClb.zip
2014-07-10 09:45 - 2014-07-10 09:45 - 07519379 _____ () C:\Users\administrator\Downloads\110 Motion Capture Club Dances.rar
2014-07-10 09:37 - 2014-07-10 09:36 - 208073673 _____ () C:\Users\administrator\Downloads\DCL50112011.zip
2014-07-10 09:17 - 2014-07-10 09:17 - 00000000 ____D () C:\Users\administrator\Downloads\Cheerleader
2014-07-10 09:16 - 2014-07-10 09:16 - 00074039 _____ () C:\Users\administrator\Downloads\Cheerleader.rar
2014-07-09 16:05 - 2014-07-09 16:05 - 00755519 _____ () C:\Users\administrator\Desktop\_40, 50, 2_.xml
2014-07-09 15:57 - 2014-07-09 15:57 - 00428966 _____ () C:\Users\administrator\Desktop\spaceneedlelike.xml
2014-07-09 15:57 - 2014-07-09 15:57 - 00000000 ____D () C:\Users\administrator\Desktop\spaceneedlelike_assets
2014-07-09 13:17 - 2014-07-09 13:17 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\QAvimator Team
2014-07-09 13:06 - 2014-07-09 13:06 - 00003783 _____ () C:\Users\administrator\Desktop\lmotionl.bvh
2014-07-09 13:06 - 2014-07-09 13:06 - 00000643 _____ () C:\Users\administrator\Desktop\M_M L MOTION.animatn
2014-07-09 12:19 - 2014-07-01 15:26 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Darkstorm
2014-07-08 14:32 - 2014-07-08 11:15 - 00000444 _____ () C:\Users\administrator\Documents\cheermaster hud.txt
2014-07-08 10:19 - 2014-07-08 09:47 - 00000000 ____D () C:\PikkuBot
2014-07-08 09:19 - 2014-07-08 09:19 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PikkuBot
2014-07-08 09:19 - 2014-07-08 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PikkuBot
2014-07-08 09:17 - 2014-07-08 09:17 - 04893741 _____ () C:\Users\administrator\Downloads\PikkuBot_Installer_3190.exe
2014-07-07 22:54 - 2013-01-24 12:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-07-07 12:55 - 2014-07-07 12:55 - 00024901 _____ () C:\Users\administrator\Desktop\0661c3c8-3e61-1494-588a-61789c5696ab.bvh
2014-07-07 12:22 - 2014-07-07 12:22 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QAvimator
2014-07-07 12:22 - 2014-07-07 12:22 - 00000000 ____D () C:\Program Files (x86)\QAvimator
2014-07-07 12:15 - 2014-07-07 12:15 - 00000000 ____D () C:\Users\administrator\AppData\Local\Van_der_Heijden_Holding_B
2014-07-07 12:14 - 2014-07-07 12:14 - 00271064 _____ () C:\Users\administrator\Downloads\LSLEditor.zip
2014-07-07 12:14 - 2014-07-07 12:14 - 00003673 _____ () C:\Users\administrator\Downloads\Animator.zip
2014-07-07 12:14 - 2014-07-07 12:14 - 00000000 ____D () C:\Users\administrator\Downloads\LSLEditor
2014-07-07 12:14 - 2014-07-07 12:14 - 00000000 ____D () C:\Users\administrator\Downloads\Animator
2014-07-07 11:48 - 2014-07-07 11:48 - 19865724 _____ (QAvimator Team) C:\Users\administrator\Downloads\QAvimator_0.1.0_394_Windows_32-bit.exe
2014-07-07 11:34 - 2014-07-07 11:34 - 00002678 _____ () C:\Users\administrator\Documents\MOVELOCK.txt
2014-07-07 11:20 - 2013-07-04 11:10 - 00000000 ____D () C:\Program Files\WinPcap
2014-07-07 11:20 - 2013-02-28 15:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-07-07 11:19 - 2014-07-07 11:19 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\administrator\Downloads\WinPcap_4_1_3.exe
2014-07-07 10:43 - 2014-07-07 10:43 - 00001388 _____ () C:\Users\Public\Desktop\PowerGREP 4.lnk
2014-07-07 10:43 - 2014-07-07 10:43 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\JGsoft
2014-07-07 10:43 - 2014-07-07 10:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerGREP 4
2014-07-07 10:43 - 2014-07-07 10:43 - 00000000 ____D () C:\Program Files\Just Great Software
2014-07-07 10:42 - 2014-07-07 10:42 - 16821568 _____ (Just Great Software ) C:\Users\administrator\Downloads\SetupPowerGREPDemo.exe
2014-07-07 10:22 - 2014-07-07 10:22 - 00000000 ____D () C:\Users\administrator\Downloads\lindenlab-viewer-release-be7ebc4aa136
2014-07-07 10:22 - 2014-07-07 10:06 - 25775456 _____ () C:\Users\administrator\Downloads\lindenlab-viewer-release-be7ebc4aa136.zip
2014-07-07 10:06 - 2014-07-07 10:03 - 00140956 _____ () C:\Users\administrator\Downloads\NickyD-autobuild-063795f5c389.zip
2014-07-07 09:55 - 2014-07-07 09:43 - 00000000 ____D () C:\Users\administrator\Desktop\fssource
2014-07-07 09:43 - 2014-07-07 09:43 - 00000000 ____D () C:\Users\administrator\AppData\Local\easymercurial
2014-07-07 09:43 - 2014-07-07 09:43 - 00000000 ____D () C:\Users\administrator\.easyhg
2014-07-07 09:43 - 2013-01-24 12:23 - 00000000 ____D () C:\Users\administrator
2014-07-07 09:30 - 2014-07-07 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseHg
2014-07-07 09:30 - 2014-07-07 09:30 - 00000000 ____D () C:\Program Files\TortoiseHg
2014-07-07 09:30 - 2013-05-07 13:16 - 00000000 ____D () C:\Program Files\Common Files\TortoiseOverlays
2014-07-07 09:28 - 2014-07-07 09:28 - 28377088 _____ () C:\Users\administrator\Downloads\tortoisehg-3.0.1-x64.msi
2014-07-07 09:23 - 2014-07-07 09:23 - 00002967 _____ () C:\Users\administrator\Desktop\EasyMercurial.lnk
2014-07-07 09:23 - 2014-07-07 09:23 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EasyMercurial
2014-07-07 09:23 - 2014-07-07 09:23 - 00000000 ____D () C:\Program Files (x86)\EasyMercurial
2014-07-07 09:21 - 2014-07-07 09:21 - 15504384 _____ () C:\Users\administrator\Downloads\EasyMercurial-1.3.0-Setup.msi
2014-07-07 08:42 - 2014-01-29 11:15 - 00001102 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-07 08:42 - 2014-01-29 11:15 - 00001090 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-04 13:08 - 2014-07-04 13:08 - 00069111 _____ () C:\Users\administrator\Downloads\All_in_1_NPC_Recorder_and_Player.zip
2014-07-04 08:00 - 2014-06-09 12:02 - 00000000 ____D () C:\Users\administrator\AppData\Local\SecondLife
2014-07-03 17:26 - 2014-07-01 15:43 - 00000000 ____D () C:\Users\administrator\Desktop\sl exports
2014-07-03 11:53 - 2014-07-03 11:53 - 00000000 ____D () C:\Users\administrator\Desktop\Adobe CS6 Master Collection
2014-07-03 11:43 - 2014-07-03 11:42 - 28790311 _____ () C:\Users\administrator\Downloads\zt_marco_v1.0.0.zip
2014-07-03 11:34 - 2014-07-03 11:34 - 01066266 _____ () C:\Users\administrator\Downloads\as002060free_1.0.1 (1).zip
2014-07-03 11:22 - 2014-07-03 11:22 - 01066266 _____ () C:\Users\administrator\Downloads\as002060free.zip
2014-07-03 09:43 - 2013-07-15 11:17 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-02 23:01 - 2014-02-13 05:38 - 00000000 ____D () C:\Windows\rescache
2014-07-02 15:29 - 2014-07-02 15:29 - 00196652 _____ () C:\Users\administrator\Desktop\MEGA2.tga
2014-07-02 15:29 - 2014-07-02 15:29 - 00057100 _____ () C:\Users\administrator\Desktop\MEGA2.psd
2014-07-02 15:23 - 2014-07-02 15:23 - 00196652 _____ () C:\Users\administrator\Desktop\MEGAPHONE1.tga
2014-07-02 15:17 - 2013-07-15 10:41 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-02 15:16 - 2014-07-02 15:16 - 00196626 _____ () C:\Users\administrator\Desktop\megaphone.tga
2014-07-02 14:45 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-07-02 14:44 - 2009-07-13 23:45 - 05300248 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-02 14:42 - 2013-01-24 12:23 - 00527558 _____ () C:\Windows\PFRO.log
2014-07-02 14:29 - 2013-07-16 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-02 14:22 - 2014-07-02 14:22 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-07-02 14:22 - 2014-07-02 14:22 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-07-02 14:16 - 2013-01-24 14:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-02 14:14 - 2014-01-09 17:26 - 00000061 _____ () C:\Windows\vbaddin.ini
2014-07-02 14:10 - 2014-05-12 10:53 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-02 13:56 - 2013-01-29 18:15 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Spotify
2014-07-02 13:33 - 2014-07-02 13:33 - 00786476 _____ () C:\Users\administrator\Desktop\TEST.tga
2014-07-02 13:32 - 2014-07-02 13:32 - 01643106 _____ () C:\Users\administrator\Desktop\TEST.psd
2014-07-02 13:27 - 2014-07-02 13:27 - 03145746 _____ () C:\Users\administrator\Desktop\2dbd99c6-de0f-6d30-6b98-b1ac6563111d.tga
2014-07-02 13:22 - 2014-07-02 13:22 - 01048594 _____ () C:\Users\administrator\Desktop\83c0bf3a-f5ef-4fb2-84ca-5c3e2d34970c.tga
2014-07-02 13:07 - 2014-07-02 13:02 - 00049196 _____ () C:\Users\administrator\Desktop\cskirt.tga
2014-07-02 12:50 - 2014-07-02 12:50 - 00262188 _____ () C:\Users\administrator\Desktop\aa.tga
2014-07-02 12:47 - 2013-04-25 17:23 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-07-02 12:45 - 2014-07-02 12:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS3
2014-07-02 12:45 - 2013-07-15 10:51 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-07-02 12:40 - 2014-07-02 12:40 - 00000000 ____D () C:\Windows\SysWOW64\spool
2014-07-02 12:20 - 2014-07-02 12:20 - 00262162 _____ () C:\Users\administrator\Desktop\f2eb1638-2474-4cec-a54b-713b80b8ddb4.tga
2014-07-01 15:26 - 2014-07-01 15:26 - 00000846 _____ () C:\Users\Public\Desktop\DarkStorm.lnk
2014-07-01 15:26 - 2014-07-01 15:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DarkStorm
2014-07-01 15:23 - 2014-07-01 15:23 - 00002007 _____ () C:\Users\Public\Desktop\Cool VL Viewer v1.26.12.lnk
2014-07-01 15:23 - 2014-07-01 15:23 - 00000000 ___HD () C:\Program Files (x86)\InstallJammer Registry
2014-07-01 15:23 - 2014-07-01 15:23 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cool VL Viewer
2014-07-01 15:23 - 2014-07-01 15:22 - 00000000 ____D () C:\Program Files (x86)\CoolVLViewer-1.26.12
2014-07-01 15:22 - 2014-07-01 15:17 - 46061032 _____ () C:\Users\administrator\Downloads\DarkstormOS_Viewer_v3.0.2_setup.exe
2014-07-01 15:22 - 2014-07-01 15:17 - 46060708 _____ () C:\Users\administrator\Downloads\Darkstorm_Viewer_v3.0.2_setup.exe
2014-07-01 14:34 - 2014-07-01 14:33 - 40552251 _____ () C:\Users\administrator\Downloads\Astra_1.6.4_Setup.exe
2014-07-01 14:34 - 2014-07-01 14:32 - 38673677 _____ (Cool Products) C:\Users\administrator\Downloads\CoolVLViewer-1.26.12.5-Windows-Setup.exe
2014-07-01 10:54 - 2014-07-01 10:50 - 520009728 _____ () C:\Users\administrator\Downloads\boot-repair-disk-32bit.iso
2014-07-01 09:56 - 2014-07-01 09:41 - 163577856 _____ () C:\Users\administrator\Downloads\RIPLinuX-13.7.iso
2014-07-01 09:31 - 2014-07-01 09:29 - 490204800 _____ (Hewlett-Packard ) C:\Users\administrator\Downloads\sp65452.exe
2014-07-01 09:30 - 2014-07-01 09:28 - 486524128 _____ ( ) C:\Users\administrator\Downloads\sp60814.exe
2014-06-30 16:01 - 2013-03-12 09:32 - 00000600 _____ () C:\Users\administrator\AppData\Local\PUTTY.RND
2014-06-30 14:56 - 2014-06-30 14:56 - 00006163 _____ () C:\Users\administrator\Downloads\Sim Wide Security Script.rar
2014-06-30 13:38 - 2014-06-30 13:38 - 00562865 _____ () C:\Users\administrator\Downloads\headset.zip
2014-06-30 11:22 - 2014-06-30 11:21 - 01066266 _____ () C:\Users\administrator\Downloads\as002060free_1.0.1.zip
2014-06-30 11:09 - 2014-06-30 11:09 - 23725212 _____ () C:\Users\administrator\Downloads\Universal-Campus-Nonmega-1.oar
2014-06-30 10:34 - 2013-04-02 14:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-30 09:59 - 2013-01-29 18:17 - 00000000 ____D () C:\Users\administrator\AppData\Local\Spotify
2014-06-28 02:23 - 2014-02-19 10:44 - 00000000 ____D () C:\Program Files (x86)\SciLor's grooveshark™.com Downloader
2014-06-27 10:34 - 2014-06-27 10:34 - 01518940 _____ () C:\Users\administrator\Downloads\HyperGate_Vendor_v0.7.3_rev._4 (1).iar
2014-06-26 16:19 - 2014-06-26 16:19 - 16668642 _____ () C:\Users\administrator\Downloads\Cheer.wav
2014-06-26 09:23 - 2014-06-26 09:23 - 13453222 _____ () C:\Users\administrator\Downloads\Rooster Diet Training.wav
2014-06-25 15:06 - 2014-06-25 15:06 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\administrator\Downloads\tdsskiller (1).exe
2014-06-25 13:56 - 2014-06-25 13:56 - 00000000 ____D () C:\Users\administrator\AppData\Roaming\QuickScan
2014-06-25 00:50 - 2014-06-25 00:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
 
Some content of TEMP:
====================
C:\Users\administrator\AppData\Local\Temp\InstallAX.exe
C:\Users\administrator\AppData\Local\Temp\InstallPlugin.exe
C:\Users\administrator\AppData\Local\Temp\InstHelper.exe
C:\Users\administrator\AppData\Local\Temp\mirc732.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-18 00:06
 
==================== End Of Log ============================


#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,875 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:33 PM

Posted 25 July 2014 - 09:58 AM

Step 1: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1
  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.
Note: The log can also be found in here: C:\AdwCleaner\

Step 2: Malwarebytes

Please download Malwarebytes Anti-Malware to your desktop Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings.JPG

Go back to the Dashboard and select Scan Now

MBAMScan.JPG

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG

MBAMLog.JPG

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log

Step 3: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#7 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,875 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:33 PM

Posted 28 July 2014 - 08:34 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users