Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware suspected - BSOD, Hangs, Norton Popups, etc...


  • This topic is locked This topic is locked
51 replies to this topic

#1 MoovinTarget

MoovinTarget

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 09 October 2014 - 05:58 PM

Good evening all,

 

 

I have had a couple of BSODs at random.

 

My computer is booting slower than usual

 

The start menu is dysfunctional for a minute or two after a restart, but does come back

 

Deleted files remain in the Windows Explorer file list until I do a refresh

 

I get popups while surfing using ICE Dragon even with popups disabled

 

Norton 360 pops up a window claiming, "Auto-Protect is processing security risk MYPCBackup".  I do not have this software installed.  I did find traces in the registry and removed them with Revo Uninstaller Pro.

The Norton log does not show anything.  Norton complete scans and Norton Eraser report nothing.

 

My PC CPU and fan cranks up for no apparent reason at random.  Performance suffers when I notice this.

 

I am running Windows 7 Ultimate 64bit SP1 with all updates. 

Security is Norton 360 ver 21.6.032 (Latest)

Malware protection is MBAM premium - ver. 2.0.2.1012 latest.  I installed after problems seen

Anti-logger protection is Zemana Anti-logger Pro 1.9.3.525 (the latest) - Installed after problems seen

 

I frequently run CCleaner Pro, Powersuite Pro 2012 System Health Check, and Comodo System utilities to clean up the crap and registry.

 

Computer info:

 

MB Asus Sabertooth x79

BIOS is rev. 4701,  05/06/2014

        CPU
            Intel Core i7 3820 @ 3.60GHz    47 °C (Liquid Cooled), Not over clocked when problem occurs.  I run at "Normal" settings when working.
            Sandy Bridge-E 32nm Technology
        RAM
            32.0GB DDR3 @ 667MHz (9-9-9-24)
        Motherboard
            ASUSTeK COMPUTER INC. SABERTOOTH X79 (LGA2011)    42 °C
        Graphics
            HP 2711 (1920x1080@60Hz)
            2047MB NVIDIA GeForce GTX 680 (EVGA)    34 °C
        Storage
            1863GB Western Digital WDC WD2003FYYS-05T8B0 ATA Device (SATA)    44 °C
           (Boot Drive) =  698GB Samsung SSD 840 EVO 750G SCSI Disk Device (SSD)    41 °C
            1863GB Seagate ST320006 41AS SCSI Disk Device (SATA)    43 °C
            58GB Patriot Memory USB Device (USB)
        Optical Drives
            PIONEER BD-RW BDR-203 ATA Device
            PIONEER BD-RW BDR-206 ATA Device
        Audio
            Creative X-Fi Audio Processor (WDM)
Operating System
    Windows 7 Ultimate 64-bit SP1
    Computer type: Desktop
    Installation Date: 3/22/2013 6:07:13 AM
    Serial Number: 77JKC-6P2TC-2J9X8-4R6RY-GGPBW
        Windows Security Center
            User Account Control (UAC)    Enabled
            Notify level    3 - Always Notify
        Windows Update
            AutoUpdate    Not configured
        Windows Defender
            Windows Defender    Disabled
        Firewall
            Firewall    Enabled
            Display Name    Norton 360
        Antivirus
            Antivirus    Enabled
            Display Name    Norton 360
            Virus Signature Database    Up to date
        .NET Frameworks installed
            v4.5 Full
            v4.5 Client
            v3.5 SP1
            v3.0 SP2
            v2.0 SP2
        Internet Explorer
            Version    11.0.9600.17280
        PowerShell
            Version    2.0
        Java
                Java Runtime Environment
                    Path    C:\Program Files (x86)\Java\jre7\bin\java.exe
                    Version    7.0
                    Update    67
                    Build    01
                Java Runtime Environment
                    Path    C:\Program Files\Java\jre7\bin\java.exe
                    Version    7.0
                    Update    67
                    Build    01
        Environment Variables
            USERPROFILE    C:\Users\Jacque
            SystemRoot    C:\Windows
                User Variables
                    TEMP    C:\Users\Jacque\AppData\Local\Temp
                    TMP    C:\Users\Jacque\AppData\Local\Temp
                Machine Variables
                    asl.log    Destination=file
                    ComSpec    C:\Windows\system32\cmd.exe
                    FP_NO_HOST_CHECK    NO
                    NUMBER_OF_PROCESSORS    8



BC AdBot (Login to Remove)

 


#2 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:01:04 AM

Posted 12 October 2014 - 02:44 PM

:welcome:

 

Lets do this so we can see whats going on

 

 

1QYkxTZ.jpg Please download aswMBR to your desktop.

 

  • Double click the aswMBR icon to run it.
  • Click the Scan button to start scan.
  • If you are asked to update the Avast Virus database please allow it to do so.
  • When it finishes, press the save log button, save the logfile to your desktop and post its contents in your next reply.

 

I just want to see the report....Please Do Not Fix Anything

============================================================================

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

How to determine whether a computer is running a 32-bit version or 64-bit version of the Windows operating system
A simple way to check your system: Start --> Computer (right click) --> Properties

 


  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Please make sure All Users is checked
  • Do not check
    *List BCD
    *Drivers MD5
    *Shortcut txt
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

 


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#3 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 12 October 2014 - 04:43 PM

Hello Ken545,

 

Thank you for your assistance.  I have executed the requested utilities and posted the results for your review:

 

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-10-12 16:22:28
-----------------------------
16:22:28.960    OS Version: Windows x64 6.1.7601 Service Pack 1
16:22:28.960    Number of processors: 8 586 0x2D07
16:22:28.960    ComputerName: MRWOLF  UserName: Jacque
16:22:29.366    Initialize success
16:22:29.428    VM: initialized successfully
16:22:29.444    VM: Intel CPU supported 
16:22:39.584    VM: supported disk I/O storport.sys
16:23:57.152    AVAST engine defs: 14101200
16:24:17.371    Disk 0  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:24:17.371    Disk 0 Vendor: WDC_WD2003FYYS-05T8B0 00.0NA00 Size: 1907729MB BusType: 11
16:24:17.371    Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\0000008d
16:24:17.371    Disk 1 Vendor: Samsung_ EXT0 Size: 715404MB BusType: 11
16:24:17.371    Disk 2  \Device\Harddisk2\DR2 -> \Device\0000008e
16:24:17.371    Disk 2 Vendor: ST320006 CC13 Size: 1907729MB BusType: 11
16:24:17.387    Disk 1 MBR read successfully
16:24:17.387    Disk 1 MBR scan
16:24:17.387    Disk 1 Windows 7 default MBR code
16:24:17.387    Disk 1 Partition 1 80 (A) 07    HPFS/NTFS NTFS       715403 MB offset 2048
16:24:17.387    Disk 1 default boot code
16:24:17.402    Disk 1 scanning C:\Windows\system32\drivers
16:24:20.273    Service scanning
16:24:21.833    Service BHDrvx64 C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\BASHDefs\20141003.001\BHDrvx64.sys **LOCKED** 5
16:24:23.720    Service IDSVia64 C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\IPSDefs\20141010.001\IDSvia64.sys **LOCKED** 5
16:24:24.703    Service NAVENG C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141011.001\ENG64.SYS **LOCKED** 5
16:24:24.765    Service NAVEX15 C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141011.001\EX64.SYS **LOCKED** 5
16:24:29.445    Modules scanning
16:24:29.445    Disk 1 trace - called modules:
16:24:29.445    ntoskrnl.exe CLASSPNP.SYS disk.sys vidsflt.sys storport.sys hal.dll mvs91xx.sys 
16:24:29.445    1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa801a51c790]
16:24:29.445    3 CLASSPNP.SYS[fffff8800183b43f] -> nt!IofCallDriver -> [0xfffffa801a427950]
16:24:29.461    5 vidsflt.sys[fffff88000fc65f1] -> nt!IofCallDriver -> \Device\0000008d[0xfffffa801a27b770]
16:24:29.742    AVAST engine scan C:\Windows
16:24:30.353    AVAST engine scan C:\Windows\system32
16:25:39.272    AVAST engine scan C:\Windows\system32\drivers
16:25:43.603    AVAST engine scan C:\Users\Jacque
16:27:03.023    AVAST engine scan C:\ProgramData
16:27:36.600    Scan finished successfully
16:29:05.138    Disk 1 MBR has been saved successfully to "C:\Users\Jacque\Desktop\Virus Investigation\MBR.dat"
16:29:05.141    The log file has been saved successfully to "C:\Users\Jacque\Desktop\Virus Investigation\aswMBR 101214.txt"
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-10-2014 02
Ran by Jacque (administrator) on MRWOLF on 12-10-2014 16:33:07
Running from C:\Users\Jacque\Downloads
Loaded Profile: Jacque (Available profiles: Jacque)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.19\AsusFanControlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Carbonite, Inc. (www.carbonite.com)) C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
(Cybertron Software, Co., Ltd.) C:\Program Files (x86)\Cybertron\Privacy Drive\pdsvc.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(SPEEDbit) C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
(Carbonite, Inc.) C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Zemana Ltd.) C:\Program Files (x86)\AntiLogger\AntiLogger.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Raxco Software, Inc.) C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2014-09-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Carbonite Backup] => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe [1056976 2014-06-27] (Carbonite, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [AntiLogger] => C:\Program Files (x86)\AntiLogger\AntiLogger.exe [19362728 2014-03-26] (Zemana Ltd.)
HKLM-x32\...\Run: [Winsuite2012] => "C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\Winsuite 2012\Spotmau_WinSuite_TrayIcon.exe"
HKLM Group Policy restriction on software: D:\Util\spy\dBug <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKU\S-1-5-21-443274777-1843769276-3568719699-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION 
Startup: C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
BootExecute: PDBoot.exeautocheck autochk * regdefrag
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3B543AD872DECF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitBHO64.dll (TechSmith Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll (TechSmith Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll (TechSmith Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll (TechSmith Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Winsock: Catalog9 01 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 02 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 03 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 04 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 05 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 06 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 07 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 08 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Winsock: Catalog9 20 C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll [177320] (SPEEDbit)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{E24BB5CC-F1BB-4926-A4C3-4574DF18FA7E}: [NameServer] 8.26.56.26,156.154.70.22
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-03-25]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn [2014-10-12]
FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-04-23]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\IPSFF [2014-10-03]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> ask
CHR DefaultSearchProvider: Default -> Norton Safe Search
CHR DefaultSuggestURL: Default -> 
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Profile: C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-14]
CHR Extension: (Google Drive) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-14]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05]
CHR Extension: (YouTube) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-14]
CHR Extension: (Google Search) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-28]
CHR Extension: (Skype Click to Call) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-11-01]
CHR Extension: (Norton Safe) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2014-10-03]
CHR Extension: (Google Wallet) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-14]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-03-06]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-08-12] (SUPERAntiSpyware.com)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-09-17] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2013-07-21] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2013-07-21] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.19\AsusFanControlService.exe [408960 2012-10-15] (ASUSTeK Computer Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-03-23] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-03-22] (Creative Labs) [File not signed]
S3 Creative Media Toolbox 6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe [79360 2013-03-23] (Creative Labs) [File not signed]
S2 CSUService; C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe [347968 2012-02-24] (Comodo Security Solutions, Inc.)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-16] (NVIDIA Corporation)
R2 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-07-18] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-16] (NVIDIA Corporation)
R2 OS Selector; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2139400 2011-11-15] ()
R2 PDService; C:\Program Files (x86)\Cybertron\Privacy Drive\pdsvc.exe [75752 2013-03-18] (Cybertron Software, Co., Ltd.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-07-18] (Hewlett-Packard) [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [281768 2013-04-23] (SPEEDbit)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 A2DDA; C:\EEK\BIN\a2ddax64.sys [26176 2014-10-10] (Emsisoft GmbH)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AntiLog32; C:\Windows\system32\drivers\AntiLog64.sys [49752 2014-10-02] (Zemana Ltd.)
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-19] (MCCI Corporation)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\BASHDefs\20141003.001\BHDrvx64.sys [1587416 2014-10-03] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2014-02-20] (Symantec Corporation)
S3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2014-10-10] (Emsisoft GmbH)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-08-26] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-08-26] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\IPSDefs\20141010.001\IDSvia64.sys [633560 2014-10-02] (Symantec Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-10-12] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141011.001\ENG64.SYS [129752 2014-08-11] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141011.001\EX64.SYS [2137304 2014-08-11] (Symantec Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R2 pdvstd; C:\Program Files (x86)\Cybertron\Privacy Drive\Drivers\pdvstd64.sys [165624 2013-03-18] (Cybertron Software, Co., Ltd.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R2 supersafer64; C:\Windows\SysWOW64\drivers\supersafer64.sys [238072 2011-11-15] (Spotmau)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2014-08-25] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-08-25] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-18] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [78936 2013-09-09] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-08-25] (Symantec Corporation)
S0 tcoifh; No ImagePath
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-04-06] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2013-04-06] (Acronis)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2013-04-06] (Acronis International GmbH)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U3 aswMBR; \??\C:\Users\Jacque\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\Users\Jacque\AppData\Local\Temp\aswVmm.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-12 16:33 - 2014-10-12 16:33 - 00036826 _____ () C:\Users\Jacque\Downloads\FRST.txt
2014-10-12 16:31 - 2014-10-12 16:33 - 00000000 ____D () C:\FRST
2014-10-12 16:30 - 2014-10-12 16:30 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (4).exe
2014-10-12 16:30 - 2014-10-12 16:30 - 02110464 _____ (Farbar) C:\Users\Jacque\Downloads\FRST64.exe
2014-10-12 16:29 - 2014-10-12 16:29 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (3).exe
2014-10-12 16:29 - 2014-10-12 16:29 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (2).exe
2014-10-12 16:22 - 2014-10-12 16:22 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (1).exe
2014-10-12 09:56 - 2014-10-12 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-10-12 09:56 - 2014-10-12 09:56 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-10-12 09:55 - 2014-10-12 09:55 - 07898652 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio (2).zip
2014-10-12 09:54 - 2014-10-12 09:54 - 07898652 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio (1).zip
2014-10-12 09:53 - 2014-10-12 09:53 - 09850208 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio_setup.exe
2014-10-12 09:52 - 2014-10-12 09:53 - 07898652 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio portable.zip
2014-10-12 09:48 - 2014-10-12 09:48 - 50552176 _____ (Comodo) C:\Users\Jacque\Downloads\chromiumsecuresetup.exe
2014-10-11 23:54 - 2014-10-11 23:54 - 00484611 _____ () C:\Users\Jacque\Desktop\TeamSpybot-20141011-235420.cab
2014-10-11 12:30 - 2014-10-11 12:30 - 00391532 _____ () C:\Users\Jacque\Desktop\TeamSpybot-20141011-123018.cab
2014-10-11 11:31 - 2014-10-11 23:54 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-11 11:28 - 2014-10-11 11:28 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Jacque\Downloads\spybot-2.4.exe
2014-10-11 01:20 - 2014-10-11 01:21 - 38801392 _____ (COMODO) C:\Users\Jacque\Downloads\icedragonsetup (2).exe
2014-10-11 00:15 - 2014-10-11 02:02 - 00000000 ____D () C:\Users\Jacque\Downloads\SpybotPortable
2014-10-11 00:07 - 2014-10-11 11:06 - 00000000 ____D () C:\ProgramData\TuneUp360
2014-10-10 20:37 - 2014-10-10 20:37 - 00000000 ____D () C:\SUPERDelete
2014-10-10 14:01 - 2014-10-10 14:01 - 00010449 _____ () C:\Users\Jacque\Desktop\attach.txt
2014-10-10 14:01 - 2014-10-10 14:00 - 00029000 _____ () C:\Users\Jacque\Desktop\dds.txt
2014-10-10 13:57 - 2014-10-10 13:57 - 00000000 ____D () C:\Users\Jacque\Pavark
2014-10-10 02:08 - 2014-10-10 14:54 - 00000000 ____D () C:\EEK
2014-10-10 02:08 - 2014-10-10 02:08 - 00000750 _____ () C:\Users\Jacque\Desktop\Start Emsisoft Emergency Kit.lnk
2014-10-10 01:17 - 2014-10-10 01:17 - 00001289 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-10-10 01:17 - 2014-10-10 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2014-10-10 01:17 - 2014-10-10 01:17 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-10-10 01:17 - 2013-04-29 09:17 - 00047632 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2014-10-10 01:06 - 2014-10-10 01:15 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-10-10 01:05 - 2014-10-10 01:05 - 32518056 _____ (Panda Security ) C:\Users\Jacque\Downloads\PandaCloudCleaner.exe
2014-10-10 01:05 - 2014-10-10 01:05 - 04811083 _____ (InCode Solutions ) C:\Users\Jacque\Downloads\removeit_pro.exe
2014-10-10 01:04 - 2014-10-10 01:04 - 00436075 _____ () C:\Users\Jacque\Downloads\MSI(1).zip
2014-10-10 01:03 - 2014-10-10 01:03 - 00196920 _____ () C:\Users\Jacque\Downloads\HJ.exe
2014-10-10 01:02 - 2014-10-10 01:03 - 11194928 _____ (SurfRight B.V.) C:\Users\Jacque\Downloads\HitmanPro_x64.exe
2014-10-10 01:02 - 2014-10-10 01:03 - 10280824 _____ (SurfRight B.V.) C:\Users\Jacque\Downloads\HitmanPro.exe
2014-10-10 01:01 - 2014-10-10 01:04 - 157404008 _____ () C:\Users\Jacque\Downloads\EmsisoftEmergencyKit(1).exe
2014-10-10 01:01 - 2014-10-10 01:01 - 02095808 _____ (Emsi Software GmbH ) C:\Users\Jacque\Downloads\a2HiJackFreeSetup.exe
2014-10-10 01:00 - 2014-10-10 01:05 - 155732320 _____ () C:\Users\Jacque\Downloads\a6ojs5u3.exe
2014-10-10 00:51 - 2014-10-10 00:55 - 617777152 _____ () C:\Users\Jacque\Downloads\ubcd532.iso
2014-10-10 00:43 - 2014-10-10 00:43 - 05176232 _____ (F-Secure Corporation) C:\Users\Jacque\Downloads\F-SecureOnlineScanner(1).exe
2014-10-10 00:30 - 2014-10-10 00:30 - 10551322 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SmartDefragPortable_3.2.0.341.paf(1).exe
2014-10-10 00:30 - 2014-10-10 00:30 - 01065536 _____ (PortableApps.com) C:\Users\Jacque\Downloads\UltraDefragPortable_6.0.2.paf(1).exe
2014-10-10 00:29 - 2014-10-10 00:29 - 23732069 _____ () C:\Users\Jacque\Downloads\cce_2.5.242177.201_x32.zip
2014-10-10 00:28 - 2014-10-10 00:28 - 10551322 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SmartDefragPortable_3.2.0.341.paf.exe
2014-10-10 00:28 - 2014-10-10 00:28 - 01065536 _____ (PortableApps.com) C:\Users\Jacque\Downloads\UltraDefragPortable_6.0.2.paf.exe
2014-10-10 00:28 - 2014-10-10 00:28 - 00937160 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RufusPortable_1.4.10_English.paf.exe
2014-10-10 00:26 - 2014-10-10 00:27 - 07546200 _____ (PortableApps.com) C:\Users\Jacque\Downloads\TeamViewerPortable_9.0.32494.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 05354328 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinMergePortable_2.14.0.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 02362400 _____ (PortableApps.com) C:\Users\Jacque\Downloads\7-ZipPortable_9.20_Rev_3.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 02205584 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ExplorerPlusPlusPortable_1.3.5.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 00566008 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RegshotPortable_1.9.0.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 04664894 _____ (PortableApps.com) C:\Users\Jacque\Downloads\FileAlyzerPortable_2.0.5.57_English.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 02653736 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ChecksumControlPortable_2.4.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 01324392 _____ (PortableApps.com) C:\Users\Jacque\Downloads\AntRenamerPortable_2.10.0.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 00978240 _____ (PortableApps.com) C:\Users\Jacque\Downloads\DebugViewPortable_4.81_Rev_2_English_online.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 06363808 _____ (PortableApps.com) C:\Users\Jacque\Downloads\DaphnePortable_2.04.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 02163243 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SystemExplorerPortable_5.9.4.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 01805616 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ProcessHackerPortable_2.33_English.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 01564000 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ConsolePortable_2.00_b148_Rev_2_English.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 00349416 _____ (PortableApps.com) C:\Users\Jacque\Downloads\CommandPromptPortable_2.3.paf.exe
2014-10-10 00:19 - 2014-10-10 00:19 - 01849152 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinMTRPortable_0.92_Rev_2_English.paf.exe
2014-10-10 00:18 - 2014-10-10 00:19 - 02007070 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WiseRegistryCleanerPortable_8.23.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 06005136 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WhoDatPortable_0.9.1_English.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 04633206 _____ (PortableApps.com) C:\Users\Jacque\Downloads\TreeSizeFreePortable_3.2.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 02785516 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RevoUninstallerPortable_1.95.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 02480784 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SIWPortable_2011.10.29.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 00970568 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinDirStatPortable_1.1.2.80_Rev_3.paf(1).exe
2014-10-10 00:18 - 2014-10-10 00:18 - 00723537 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WindowsErrorLookupToolPortable_3.0.7_English.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 00610408 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RapidCRCUnicodePortable_0.3.15_English.paf.exe
2014-10-10 00:17 - 2014-10-10 00:18 - 05595952 _____ (PortableApps.com) C:\Users\Jacque\Downloads\LightscreenPortable_2.0_English.paf.exe
2014-10-10 00:17 - 2014-10-10 00:17 - 04639528 _____ (PortableApps.com) C:\Users\Jacque\Downloads\HWiNFOPortable_4.44-2300_English.paf.exe
2014-10-10 00:10 - 2014-10-10 00:10 - 02271984 _____ (PortableApps.com) C:\Users\Jacque\Downloads\KeePassPortable_1.28.paf(1).exe
2014-10-10 00:10 - 2014-10-10 00:10 - 01369272 _____ (PortableApps.com) C:\Users\Jacque\Downloads\EraserPortable_5.8.8.1_English.paf.exe
2014-10-10 00:09 - 2014-10-10 00:09 - 02390888 _____ (PortableApps.com) C:\Users\Jacque\Downloads\PeerBlockPortable_1.2_English.paf.exe
2014-10-10 00:09 - 2014-10-10 00:09 - 02271984 _____ (PortableApps.com) C:\Users\Jacque\Downloads\KeePassPortable_1.28.paf.exe
2014-10-10 00:08 - 2014-10-10 00:09 - 63344904 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SpybotPortable_2.4.paf.exe
2014-10-10 00:08 - 2014-10-10 00:08 - 00415032 _____ (PortableApps.com) C:\Users\Jacque\Downloads\McAfeeStingerPortable_12.1.0.1137_English_online.paf(1).exe
2014-10-10 00:07 - 2014-10-10 00:07 - 00653048 _____ (PortableApps.com) C:\Users\Jacque\Downloads\HijackThisPortable_2.0.5_English.paf.exe
2014-10-10 00:07 - 2014-10-10 00:07 - 00415032 _____ (PortableApps.com) C:\Users\Jacque\Downloads\McAfeeStingerPortable_12.1.0.1137_English_online.paf.exe
2014-10-09 23:57 - 2014-10-09 23:57 - 11424456 _____ (Bitdefender LLC) C:\Users\Jacque\Downloads\BootkitRemoval_x64.exe
2014-10-09 23:57 - 2014-10-09 23:57 - 07268024 _____ (Bitdefender LLC) C:\Users\Jacque\Downloads\BootkitRemoval_x86.exe
2014-10-09 23:37 - 2014-10-09 23:40 - 01820672 _____ () C:\Users\Jacque\Downloads\sysresccd-installer-2.0.0.exe
2014-10-09 20:49 - 2014-10-09 20:49 - 00110168 _____ () C:\Users\Jacque\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-09 17:35 - 2014-10-09 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-10-09 17:35 - 2014-10-09 17:35 - 00000000 ____D () C:\Program Files\Speccy
2014-10-09 17:34 - 2014-10-09 17:34 - 04890736 _____ (Piriform Ltd) C:\Users\Jacque\Downloads\spsetup126.exe
2014-10-09 17:33 - 2014-10-09 17:33 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\NVIDIA
2014-10-09 17:22 - 2014-10-09 17:22 - 00002942 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Jacque
2014-10-09 17:22 - 2014-10-09 17:22 - 00000000 ____D () C:\Users\Jacque\Downloads\IObitUninstallerPortable
2014-10-09 16:48 - 2014-10-09 16:48 - 00000440 __RSH () C:\ProgramData\ntuser.pol
2014-10-09 16:28 - 2014-10-10 13:55 - 00000000 ____D () C:\AdwCleaner
2014-10-09 16:14 - 2014-10-09 16:19 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\PowerSuite Golden
2014-10-09 16:09 - 2014-10-09 16:09 - 00376664 _____ (Spotmau) C:\Users\Jacque\Downloads\powersuitegolden-downloader.exe
2014-10-09 16:00 - 2014-10-09 16:00 - 00136566 _____ () C:\Users\Jacque\AppData\Roaming\userenv.xml.urlencode
2014-10-09 16:00 - 2014-10-09 16:00 - 00102490 _____ () C:\Users\Jacque\AppData\Roaming\userenv.xml
2014-10-09 15:57 - 2014-10-09 15:57 - 04661048 _____ (Wondershare Software Co.,Ltd ) C:\Users\Jacque\Downloads\tuneup360_full798.exe
2014-10-09 15:53 - 2014-10-12 16:16 - 00001848 _____ () C:\Windows\setupact.log
2014-10-09 15:53 - 2014-10-11 11:06 - 00005896 _____ () C:\Windows\PFRO.log
2014-10-09 15:53 - 2014-10-09 15:53 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-09 14:30 - 2014-10-09 14:39 - 00000000 ____D () C:\Users\Jacque\Desktop\Ethanol Free
2014-10-09 14:04 - 2014-10-12 16:29 - 00000000 ____D () C:\Users\Jacque\Desktop\Virus Investigation
2014-10-09 12:08 - 2014-10-09 12:08 - 00688992 ____R (Swearware) C:\Users\Jacque\Downloads\dds.com
2014-10-09 10:32 - 2014-10-09 10:32 - 01043702 _____ () C:\Users\Jacque\Documents\gmer scan w 3rd party.log
2014-10-09 05:10 - 2014-10-09 05:10 - 00000000 ____D () C:\ProgramData\Sophos
2014-10-09 05:06 - 2014-10-09 05:06 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-10-09 05:06 - 2014-10-09 05:06 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-10-09 04:56 - 2014-10-09 04:56 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR(1).exe
2014-10-09 04:55 - 2014-10-09 04:55 - 00398752 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\unhide.exe
2014-10-09 04:53 - 2014-10-09 04:54 - 00457632 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\FixExec64.exe
2014-10-09 04:53 - 2014-10-09 04:53 - 00883616 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\FixExec32.exe
2014-10-09 04:52 - 2014-10-09 04:52 - 00464491 _____ () C:\Users\Jacque\Downloads\RootRepeal.zip
2014-10-09 04:52 - 2014-10-09 04:52 - 00231390 _____ () C:\Users\Jacque\Downloads\RootkitRevealer.zip
2014-10-09 04:50 - 2014-10-09 04:50 - 100564800 _____ (Sophos Limited) C:\Users\Jacque\Downloads\Sophos Virus Removal Tool.exe
2014-10-09 04:50 - 2014-10-09 04:50 - 08656400 _____ (Trend Micro Inc.) C:\Users\Jacque\Downloads\RootkitBuster_v5_1061.exe
2014-10-09 04:49 - 2014-10-09 04:49 - 01020640 _____ () C:\Users\Jacque\Downloads\antirootkit.exe
2014-10-09 04:48 - 2014-10-09 04:48 - 00415232 _____ (Farbar) C:\Users\Jacque\Downloads\FSS.exe
2014-10-09 04:48 - 2014-10-09 04:48 - 00401920 _____ (Farbar) C:\Users\Jacque\Downloads\MiniToolBox.exe
2014-10-09 04:47 - 2014-10-09 04:47 - 02334109 _____ () C:\Users\Jacque\Downloads\VT Hash.zip
2014-10-09 04:45 - 2014-10-09 04:45 - 157240008 _____ () C:\Users\Jacque\Downloads\EmsisoftEmergencyKit.exe
2014-10-09 04:41 - 2014-10-09 04:41 - 01375089 _____ () C:\Users\Jacque\Downloads\adwcleaner_3.311.exe
2014-10-09 04:40 - 2014-10-09 04:40 - 01705141 _____ (Thisisu) C:\Users\Jacque\Downloads\JRT.exe
2014-10-09 04:39 - 2014-10-09 04:40 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\rkill.exe
2014-10-09 04:39 - 2014-10-09 04:39 - 00380416 _____ () C:\Users\Jacque\Downloads\1ebvhodn.exe
2014-10-09 04:37 - 2014-10-09 04:37 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR.exe
2014-10-09 04:35 - 2014-10-09 04:35 - 00602112 _____ (OldTimer Tools) C:\Users\Jacque\Downloads\OTL.exe
2014-10-09 04:23 - 2014-10-09 04:23 - 00000000 ____D () C:\00DrvC
2014-10-09 02:55 - 2014-10-09 02:55 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Jacque\Downloads\tdsskiller(1).exe
2014-10-09 01:49 - 2014-10-09 01:49 - 00000000 ____D () C:\Windows\Intel_Chipset_XPVistaWin7_8_8-1_VER9321015
2014-10-09 01:49 - 2011-02-25 01:25 - 00296320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-10-09 01:48 - 2014-10-09 02:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2014-10-09 01:48 - 2014-10-09 01:48 - 00001990 _____ () C:\Users\Public\Desktop\ASUS Boot Setting 1.00.18.lnk
2014-10-09 01:46 - 2014-10-09 02:25 - 00000000 ____D () C:\Windows\System32\Tasks\ASUS
2014-10-08 23:28 - 2014-10-08 23:28 - 05008793 _____ () C:\Users\Jacque\Downloads\SABERTOOTH-X79-ASUS-4701.zip
2014-10-08 23:10 - 2014-10-08 23:11 - 04551394 _____ (Code Jelly ) C:\Users\Jacque\Downloads\Launchy2.5.exe
2014-10-08 23:08 - 2014-10-08 23:08 - 07945210 _____ () C:\Users\Jacque\Downloads\npp.6.6.9.Installer.exe
2014-10-08 23:06 - 2014-10-08 23:06 - 01268888 _____ (Ellora Assets Corporation ) C:\Users\Jacque\Downloads\FreemakeVideoConverterSetup.exe
2014-10-08 23:04 - 2014-10-08 23:05 - 24743106 _____ () C:\Users\Jacque\Downloads\vlc-2.1.5-win32.exe
2014-10-08 23:02 - 2014-10-08 23:03 - 110671648 _____ (Oracle Corporation) C:\Users\Jacque\Downloads\VirtualBox-4.3.16-95972-Win.exe
2014-10-08 22:59 - 2014-10-08 22:59 - 91931728 _____ (The GIMP Team ) C:\Users\Jacque\Downloads\gimp-2.8.14-setup-1.exe
2014-10-08 22:57 - 2014-10-08 22:57 - 04580232 _____ (Captel SARL ) C:\Users\Jacque\Downloads\LiberKey_5.7.0530.exe
2014-10-08 22:54 - 2014-10-08 22:54 - 04845384 _____ (Piriform Ltd) C:\Users\Jacque\Downloads\spsetup125.exe
2014-10-08 22:51 - 2014-10-08 22:51 - 20982755 _____ (PortableApps.com) C:\Users\Jacque\Downloads\IObitUninstallerPortable_4.0.4.1.paf.exe
2014-10-08 22:47 - 2014-10-08 22:48 - 07822880 _____ (TeamViewer GmbH) C:\Users\Jacque\Downloads\TeamViewer_Setup.exe
2014-10-08 22:45 - 2014-10-08 22:45 - 05814759 _____ () C:\Users\Jacque\Downloads\FreeCommanderXE_setup.zip
2014-10-08 22:39 - 2014-10-08 22:39 - 41954352 _____ (Razer Inc. ) C:\Users\Jacque\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-10-08 13:44 - 2014-10-08 13:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Professional
2014-10-08 13:44 - 2014-10-08 13:44 - 00000000 ____D () C:\Program Files\JAM Software
2014-10-08 13:30 - 2014-10-08 13:30 - 17266592 _____ (JAM Software ) C:\Users\Jacque\Downloads\TreeSizeProfessional-x64-Demo.exe
2014-10-08 13:29 - 2014-10-09 01:06 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\JAM Software
2014-10-08 13:12 - 2014-10-08 13:12 - 01711154 _____ (WareSoft Software ) C:\Users\Jacque\Downloads\7smokerpro.exe
2014-10-08 13:07 - 2014-10-08 13:07 - 00397145 _____ () C:\Users\Jacque\Downloads\xdn_tweaker_setup.exe
2014-10-08 13:03 - 2014-10-08 13:03 - 01982719 _____ () C:\Users\Jacque\Downloads\sendtotoys.exe
2014-10-08 12:56 - 2014-10-08 12:57 - 15924352 _____ (SeriousBit ) C:\Users\Jacque\Downloads\EnhansoSetup.exe
2014-10-08 12:48 - 2014-10-08 12:48 - 05068072 _____ (JAM Software ) C:\Users\Jacque\Downloads\TreeSizeFreeSetup.exe
2014-10-08 11:35 - 2014-10-08 11:35 - 00970568 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinDirStatPortable_1.1.2.80_Rev_3.paf.exe
2014-10-08 10:03 - 2014-10-08 10:04 - 31766208 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\Windows-KB890830-x64-V5.16.exe
2014-10-08 09:55 - 2014-10-08 09:56 - 14087848 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\mseinstall.exe
2014-10-08 09:53 - 2014-10-08 09:54 - 125339896 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\msert(1).exe
2014-10-07 14:05 - 2014-10-07 14:05 - 01599947 _____ () C:\Users\Jacque\Downloads\Lease
2014-10-07 14:00 - 2014-10-07 14:00 - 00461824 _____ () C:\Users\Jacque\Downloads\22_oil_gas_industry_guidelines.ppt
2014-10-07 12:16 - 2014-10-07 12:18 - 00002014 _____ () C:\Users\Jacque\Desktop\mbam-chameleon.exe.lnk
2014-10-07 11:46 - 2014-10-07 11:47 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Jacque\Downloads\mbam-setup-2.0.2.1012.exe
2014-10-07 11:26 - 2014-10-07 11:34 - 00235882 _____ () C:\Users\Jacque\Downloads\chameleon.chm
2014-10-07 10:46 - 2014-10-12 16:19 - 00316034 _____ () C:\Windows\WindowsUpdate.log
2014-10-06 15:37 - 2014-10-06 15:37 - 00044230 _____ () C:\Users\Jacque\Downloads\yahoo_contacts Outlook CSV.csv
2014-10-06 15:36 - 2014-10-06 15:36 - 00071114 _____ () C:\Users\Jacque\Downloads\yahoo_contacts.vcf
2014-10-06 15:35 - 2014-10-06 15:35 - 00032182 _____ () C:\Users\Jacque\Downloads\yahoo_contacts CSV.csv
2014-10-06 13:29 - 2014-10-06 15:03 - 00027283 _____ () C:\Users\Jacque\AppData\Roaming\Comma Separated Values (Windows).ADR
2014-10-06 13:20 - 2014-10-06 13:20 - 00455887 ____N () C:\Users\Jacque\Documents\MyContacts-2014-10-06-131824-3873.csv
2014-10-06 13:03 - 2014-10-06 13:03 - 01184736 ____N () C:\Users\Jacque\Documents\MyContacts-2014-10-03-124140-3873.vcf
2014-10-06 11:59 - 2014-10-06 11:59 - 00000216 ____N () C:\Users\Jacque\Documents\Christian Orion 10 - Phoenix.vcf
2014-10-06 11:58 - 2014-10-06 11:58 - 00000278 ____N () C:\Users\Jacque\Documents\Alan Broussard.vcf
2014-10-06 11:51 - 2014-10-06 11:51 - 00000281 ____N () C:\Users\Jacque\Documents\Clint Carlton.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000287 ____N () C:\Users\Jacque\Documents\Steve Ramsey.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000276 ____N () C:\Users\Jacque\Documents\Nick  Elmore.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000260 ____N () C:\Users\Jacque\Documents\Daniel Wilson.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000220 ____N () C:\Users\Jacque\Documents\WTS.vcf
2014-10-06 11:49 - 2014-10-06 11:49 - 00000190 ____N () C:\Users\Jacque\Documents\Phillip Hail H&P 332.vcf
2014-10-04 13:57 - 2014-10-04 13:58 - 00001254 _____ () C:\Users\Jacque\Desktop\Clear ClipBoard.lnk
2014-10-03 16:59 - 2014-10-03 16:59 - 00364640 _____ (Kaspersky Lab) C:\Users\Jacque\Downloads\kss12.0.1.808_6398_6399.exe
2014-10-03 14:40 - 2014-10-03 14:40 - 38801392 _____ (COMODO) C:\Users\Jacque\Downloads\icedragonsetup (1).exe
2014-10-03 14:38 - 2014-10-03 14:38 - 00085454 _____ () C:\Users\Jacque\Documents\bookmarks.html
2014-10-03 14:37 - 2014-10-03 14:37 - 00106021 _____ () C:\Users\Jacque\Documents\bookmarks-2014-10-03.json
2014-10-03 14:31 - 2014-10-03 14:31 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2014-10-03 14:20 - 2014-10-03 14:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-10-03 13:57 - 2014-10-03 13:57 - 03060320 _____ (Symantec Corporation) C:\Users\Jacque\Downloads\NPE.exe
2014-10-03 13:49 - 2014-10-03 14:20 - 00001300 _____ () C:\Users\Jacque\Desktop\Norton Installation Files.lnk
2014-10-03 13:46 - 2014-10-03 13:47 - 61411312 _____ (Symantec Corporation) C:\Users\Jacque\Downloads\N360-ESD-NoDefs-20-4-EN.exe
2014-10-03 13:42 - 2014-10-03 13:42 - 01021872 _____ (Symantec Corporation) C:\Users\Jacque\Downloads\NortonN360Downloader.exe
2014-10-02 16:23 - 2014-10-02 16:23 - 00323672 _____ (Dropbox, Inc.) C:\Users\Jacque\Downloads\DropboxInstaller(1).exe
2014-10-02 16:08 - 2014-10-02 16:08 - 00323672 _____ (Dropbox, Inc.) C:\Users\Jacque\Downloads\DropboxInstaller.exe
2014-10-02 13:18 - 2014-10-06 02:34 - 00000000 ____D () C:\Program Files (x86)\AntiLogger
2014-10-02 13:18 - 2014-10-02 13:18 - 00049752 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\AntiLog64.sys
2014-10-02 13:18 - 2014-10-02 13:18 - 00000000 __HDC () C:\ProgramData\{727C5CC8-3A5E-4517-BA8B-35A93F9B2EBD}
2014-10-02 13:18 - 2014-10-02 13:18 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Zemana
2014-10-02 13:18 - 2014-10-02 13:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AntiLogger
2014-10-02 12:50 - 2014-10-02 12:50 - 29202688 _____ (Zemana Ltd. ) C:\Users\Jacque\Downloads\Zemana_AntiLogger_1.9.3.525.exe
2014-10-02 12:03 - 2014-10-02 12:03 - 04066136 _____ (Zemana Ltd. ) C:\Users\Jacque\Downloads\AntiLoggerFree_Setup_1.7.2.390.exe
2014-10-02 11:10 - 2014-10-06 19:02 - 00014045 _____ () C:\Users\Jacque\Documents\AFT Proj and Priorities.xlsx
2014-10-02 11:10 - 2014-10-02 11:10 - 00000165 ____H () C:\Users\Jacque\Documents\~$AFT Proj and Priorities.xlsx
2014-10-01 22:08 - 2014-10-09 15:46 - 00000656 _____ () C:\Users\Jacque\Desktop\TuneUp360 Restore Center.lnk
2014-10-01 21:58 - 2014-10-01 21:58 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\spotmau
2014-10-01 18:09 - 2014-10-02 14:09 - 00000000 ____D () C:\Program Files (x86)\Belarc
2014-10-01 18:08 - 2014-10-01 18:08 - 03014232 _____ () C:\Users\Jacque\Downloads\RogueKillerCMDX64.exe
2014-10-01 18:06 - 2014-10-01 18:06 - 00147968 _____ (Adlice Software) C:\Users\Jacque\Downloads\forceHide.exe
2014-10-01 18:05 - 2014-10-01 18:05 - 00196096 _____ (Adlice Software) C:\Users\Jacque\Downloads\DiffView.exe
2014-10-01 18:05 - 2014-10-01 18:04 - 00101174 _____ () C:\Users\Jacque\Downloads\VTUploader.rar
2014-10-01 18:02 - 2014-10-01 18:07 - 00497240 _____ (Adlice Software) C:\Users\Jacque\Downloads\TaskSTRun.exe
2014-10-01 17:57 - 2014-10-01 17:57 - 03449184 _____ () C:\Users\Jacque\Downloads\advisorinstaller.exe
2014-10-01 17:29 - 2014-10-01 17:29 - 00419328 _____ (Adlice Softwares) C:\Users\Jacque\Downloads\MD5Look.exe
2014-10-01 17:28 - 2014-10-01 17:28 - 01490944 _____ (Adlice Softwares) C:\Users\Jacque\Downloads\LogAnalyzer.exe
2014-10-01 17:03 - 2014-10-01 17:04 - 00983039 _____ () C:\Users\Jacque\Downloads\EFRCSetup.exe
2014-10-01 16:58 - 2014-10-10 22:36 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-10-01 16:57 - 2014-10-01 16:58 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-10-01 16:20 - 2014-10-01 16:20 - 03600344 _____ (tuneuppro.com ) C:\Users\Jacque\Downloads\tuppsetup_site_default.exe
2014-10-01 16:13 - 2014-10-01 16:13 - 02477666 _____ () C:\Users\Jacque\Downloads\SystemExplorerPortable_593.zip
2014-10-01 16:13 - 2014-10-01 16:13 - 02097120 _____ (Mister Group ) C:\Users\Jacque\Downloads\SystemExplorerSetup_594.exe
2014-10-01 16:11 - 2014-10-01 16:11 - 03581240 _____ (tuneuppro.com ) C:\Users\Jacque\Downloads\setup.exe
2014-10-01 09:56 - 2014-10-01 11:29 - 00000540 _____ () C:\Windows\system32\PDBootState
2014-10-01 05:32 - 2014-09-24 21:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 05:32 - 2014-09-24 20:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-30 19:57 - 2014-10-10 20:37 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\IObit
2014-09-30 19:57 - 2014-10-09 17:30 - 00000000 ____D () C:\ProgramData\IObit
2014-09-30 19:57 - 2014-09-30 19:57 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-09-30 19:26 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-09-30 19:26 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-09-30 19:26 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2014-09-30 19:23 - 2014-09-30 19:36 - 00000000 ____D () C:\Qoobox
2014-09-30 19:23 - 2014-09-30 19:34 - 00000000 ____D () C:\Windows\erdnt
2014-09-30 19:19 - 2014-09-30 19:19 - 00000000 ____D () C:\Users\Jacque\AppData\Local\AntiLogger Free
2014-09-30 16:53 - 2014-09-30 16:53 - 05472344 _____ () C:\Users\Jacque\Downloads\RogueKillerX64.exe
2014-09-30 16:52 - 2014-09-30 16:52 - 04468796 _____ () C:\Users\Jacque\Downloads\StreamArmor.zip
2014-09-30 16:50 - 2014-09-30 16:50 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\sc-cleaner.exe
2014-09-30 16:49 - 2014-09-30 16:51 - 354134472 _____ (Norman Shark AS) C:\Users\Jacque\Downloads\Norman_Malware_Cleaner.exe
2014-09-30 16:49 - 2014-09-30 16:49 - 00436075 _____ () C:\Users\Jacque\Downloads\MSI.zip
2014-09-30 16:47 - 2014-09-30 16:47 - 07792813 _____ () C:\Users\Jacque\Downloads\d7.zip
2014-09-30 16:47 - 2014-09-30 16:47 - 00123012 _____ () C:\Users\Jacque\Downloads\dBug.zip
2014-09-30 16:46 - 2014-09-30 16:46 - 00615790 _____ () C:\Users\Jacque\Downloads\CryptoPrevent.zip
2014-09-30 16:44 - 2014-09-30 16:45 - 25029432 _____ () C:\Users\Jacque\Downloads\4.92_Full_Release_Troubleshooter.exe
2014-09-30 16:43 - 2014-09-30 16:44 - 01477032 _____ (Proland Software) C:\Users\Jacque\Downloads\FrWinvulscan.exe
2014-09-30 16:43 - 2014-09-30 16:43 - 05487940 _____ (Russell Phillips ) C:\Users\Jacque\Downloads\Panic_Button_2-5.exe
2014-09-30 16:41 - 2014-10-08 11:44 - 13708848 _____ () C:\Users\Jacque\Downloads\SysinternalsSuite.zip
2014-09-30 16:40 - 2014-09-30 16:42 - 01242562 _____ () C:\Users\Jacque\Downloads\CAT.exe
2014-09-30 16:19 - 2014-09-30 16:19 - 30583304 _____ (IObit ) C:\Users\Jacque\Downloads\IObit-Malware-Fighter-Setup.exe
2014-09-30 16:19 - 2014-09-30 16:19 - 00765584 _____ (Webroot) C:\Users\Jacque\Downloads\syswranalyzer.exe
2014-09-30 15:23 - 2014-09-30 15:23 - 05176232 _____ (F-Secure Corporation) C:\Users\Jacque\Downloads\F-SecureOnlineScanner.exe
2014-09-30 15:23 - 2014-09-30 15:23 - 00000000 ____D () C:\ProgramData\F-Secure
2014-09-30 15:22 - 2014-09-30 15:22 - 02347384 _____ (ESET) C:\Users\Jacque\Downloads\esetsmartinstaller_enu.exe
2014-09-30 15:02 - 2014-10-09 05:04 - 00000000 ____D () C:\Users\Jacque\Downloads\TMRBLog
2014-09-30 15:02 - 2014-09-30 15:02 - 00000000 ____D () C:\Users\Jacque\Downloads\log
2014-09-30 15:01 - 2014-09-30 15:01 - 14861360 _____ (Trend Micro Inc.) C:\Users\Jacque\Downloads\RootkitBusterV5.0-1180x64.exe
2014-09-30 14:41 - 2014-09-30 14:43 - 122162416 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\msert.exe
2014-09-30 14:37 - 2014-09-30 14:37 - 02863200 _____ (US Tech Support LLC) C:\Users\Jacque\Downloads\MyCleanPC.exe
2014-09-30 14:36 - 2014-09-30 14:36 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\QuickScan
2014-09-30 14:12 - 2014-10-03 14:28 - 00000000 ____D () C:\NPE
2014-09-30 14:08 - 2014-09-30 14:08 - 06764848 _____ (SparkTrust) C:\Users\Jacque\Downloads\SparkTrust PC Cleaner Plus Setup_ddce4b1_.exe
2014-09-30 14:07 - 2014-09-30 14:07 - 00834488 _____ (SlimWare Utilities, Inc.) C:\Users\Jacque\Downloads\DriverUpdate-setup.exe
2014-09-30 14:06 - 2014-09-30 14:06 - 00388608 _____ (Trend Micro Inc.) C:\Users\Jacque\Downloads\HijackThis.exe
2014-09-30 13:57 - 2014-09-30 13:58 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Jacque\Downloads\tdsskiller.exe
2014-09-30 13:57 - 2014-09-30 13:57 - 05582345 _____ (Swearware) C:\Users\Jacque\Downloads\ComboFix.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 04066136 _____ (Zemana Ltd. ) C:\Users\Jacque\Downloads\AntiLoggerFree_Setup.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 02091520 _____ (Conner Bernhard) C:\Users\Jacque\Downloads\NetAdapterRepair1.2.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 01668356 _____ () C:\Users\Jacque\Downloads\DDU v12.9.9.2.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 00400632 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\ListCWall.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 00332171 _____ () C:\Users\Jacque\Downloads\GiveMePower-v2.0.exe
2014-09-27 11:01 - 2014-10-03 16:17 - 00000000 ____D () C:\Users\Jacque\AppData\Local\NPE
2014-09-26 07:32 - 2014-09-09 17:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-26 07:32 - 2014-09-09 16:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-22 18:15 - 2014-09-22 18:15 - 00115406 _____ () C:\Users\Jacque\Documents\30 year reunion.pptx
2014-09-22 08:47 - 2014-09-22 08:46 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-09-22 08:46 - 2014-09-22 08:46 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-09-22 08:46 - 2014-09-22 08:46 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-09-22 08:46 - 2014-09-22 08:46 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-09-22 08:43 - 2014-09-22 08:43 - 31013800 _____ (Oracle Corporation) C:\Users\Jacque\Downloads\jre-7u67-windows-x64.exe
2014-09-22 08:43 - 2014-09-22 08:43 - 29421992 _____ (Oracle Corporation) C:\Users\Jacque\Downloads\jre-7u67-windows-i586.exe
2014-09-22 08:42 - 2014-09-22 08:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-22 08:42 - 2014-07-25 12:49 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-21 10:10 - 2014-09-21 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-09-21 06:41 - 2014-09-21 06:41 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-09-21 06:40 - 2014-10-12 16:15 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-21 06:40 - 2014-09-13 18:48 - 00073872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-09-21 06:40 - 2014-09-13 18:48 - 00060560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 06890696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 03529872 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 00934216 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-09-21 06:40 - 2014-09-13 16:53 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-09-21 06:40 - 2014-09-13 15:13 - 00613696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-09-21 06:40 - 2014-09-11 10:37 - 03961833 _____ () C:\Windows\system32\nvcoproc.bin
2014-09-21 06:39 - 2014-09-16 23:51 - 01538880 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-09-21 06:39 - 2014-09-16 23:51 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-09-21 06:39 - 2014-09-16 23:51 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 31887680 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 24552592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 20922512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 20589536 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 19954520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 18106152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 17259664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 16875856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 14026304 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 13939272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 13157696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-09-21 06:39 - 2014-09-13 18:48 - 11392576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 11330776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 04287296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 04008592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 03223120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 02838424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434411.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 01539272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434411.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00984424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00957584 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00925896 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00919240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00894096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00867528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00501064 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00417096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00393024 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00352016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00348304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00303600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00174856 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00156840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00026956 _____ () C:\Windows\system32\nvinfo.pb
2014-09-21 06:28 - 2014-09-04 14:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-09-21 06:28 - 2014-09-04 14:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-09-15 09:44 - 2014-09-16 21:13 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-09-15 09:44 - 2014-09-16 21:12 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-09-14 10:09 - 2014-09-14 10:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-09-14 10:08 - 2014-10-08 01:48 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-09-14 10:08 - 2014-09-14 10:09 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-09-14 10:08 - 2014-09-14 10:09 - 00000000 ____D () C:\Program Files\iTunes
2014-09-14 10:08 - 2014-09-14 10:08 - 00000000 ____D () C:\Program Files\iPod
2014-09-13 22:07 - 2014-08-19 13:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-13 22:07 - 2014-08-19 12:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-13 22:07 - 2014-08-18 18:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-13 22:07 - 2014-08-18 17:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-13 22:07 - 2014-08-18 17:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-13 22:07 - 2014-08-18 17:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-13 22:07 - 2014-08-18 17:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-13 22:07 - 2014-08-18 17:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-13 22:07 - 2014-08-18 17:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-13 22:07 - 2014-08-18 17:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-13 22:07 - 2014-08-18 17:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-13 22:07 - 2014-08-18 17:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-13 22:07 - 2014-08-18 17:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-13 22:07 - 2014-08-18 17:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-13 22:07 - 2014-08-18 17:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-13 22:07 - 2014-08-18 17:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-13 22:07 - 2014-08-18 17:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-13 22:07 - 2014-08-18 17:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-13 22:07 - 2014-08-18 17:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-13 22:07 - 2014-08-18 16:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-13 22:07 - 2014-08-18 16:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-13 22:07 - 2014-08-18 16:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-13 22:07 - 2014-08-18 16:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-13 22:07 - 2014-08-18 16:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-13 22:07 - 2014-08-18 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-13 22:07 - 2014-08-18 16:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-13 22:07 - 2014-08-18 16:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-13 22:07 - 2014-08-18 16:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-13 22:07 - 2014-08-18 16:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-13 22:07 - 2014-08-18 16:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-13 22:07 - 2014-08-18 16:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-13 22:07 - 2014-08-18 16:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-13 22:07 - 2014-08-18 16:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-13 22:07 - 2014-08-18 16:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-13 22:07 - 2014-08-18 16:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-13 22:07 - 2014-08-18 16:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-13 22:07 - 2014-08-18 16:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-13 22:07 - 2014-08-18 16:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-13 22:07 - 2014-08-18 16:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-13 22:07 - 2014-08-18 16:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-13 22:07 - 2014-08-18 16:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-13 22:07 - 2014-08-18 16:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-13 22:07 - 2014-08-18 16:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-13 22:07 - 2014-08-18 16:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-13 22:07 - 2014-08-18 16:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-13 22:07 - 2014-08-18 16:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-13 22:07 - 2014-08-18 16:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-13 22:07 - 2014-08-18 16:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-13 22:07 - 2014-08-18 16:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-13 22:07 - 2014-08-18 16:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-13 22:07 - 2014-08-18 16:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-13 22:07 - 2014-08-18 15:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-13 22:07 - 2014-08-18 15:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-13 22:07 - 2014-08-18 15:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-13 22:07 - 2014-08-18 15:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-13 22:07 - 2014-08-18 15:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-13 22:03 - 2014-06-26 21:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-13 22:03 - 2014-06-26 20:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-13 18:33 - 2014-09-04 21:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-13 18:33 - 2014-09-04 21:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-13 18:33 - 2014-08-01 06:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-13 18:33 - 2014-08-01 06:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-13 18:33 - 2014-07-06 21:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-13 18:33 - 2014-07-06 21:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-13 18:33 - 2014-07-06 20:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-13 18:33 - 2014-07-06 20:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-13 18:33 - 2014-07-06 20:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-13 18:33 - 2014-06-23 22:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-13 18:33 - 2014-06-23 21:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-12 16:33 - 2013-03-22 20:22 - 00000000 ____D () C:\Users\Jacque\Documents\Outlook Files
2014-10-12 16:31 - 2013-08-14 14:41 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-12 16:23 - 2009-07-13 23:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-12 16:23 - 2009-07-13 23:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-12 16:20 - 2009-07-14 00:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-12 16:16 - 2014-06-16 18:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-12 16:16 - 2013-08-14 14:40 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-12 16:16 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-12 09:49 - 2014-08-22 00:52 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Adobe
2014-10-12 09:49 - 2013-03-25 20:45 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-12 09:36 - 2013-11-02 02:12 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-11 11:35 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2014-10-11 10:12 - 2013-11-02 02:12 - 00000512 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b417dca7-fcb5-4164-beed-7d65ffc9755f.job
2014-10-10 22:06 - 2013-04-23 15:00 - 00000000 ____D () C:\Program Files (x86)\SpeedBit Video Accelerator
2014-10-10 14:13 - 2013-05-08 17:14 - 00000000 ____D () C:\Users\Jacque\AppData\Local\CrashDumps
2014-10-10 13:57 - 2013-03-22 06:07 - 00000000 ____D () C:\Users\Jacque
2014-10-09 16:52 - 2013-10-14 00:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2014-10-09 14:38 - 2013-08-07 10:03 - 00000000 ____D () C:\Users\Jacque\Desktop\Loading
2014-10-09 03:42 - 2013-03-25 13:27 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-10-09 03:42 - 2013-03-25 13:27 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
2014-10-09 03:42 - 2013-03-25 13:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2014-10-09 03:25 - 2013-03-22 08:47 - 00000000 ____D () C:\Windows\Panther
2014-10-09 02:26 - 2013-03-22 11:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-09 02:10 - 2013-10-13 22:56 - 05403040 _____ () C:\Windows\PE_Rom.dll
2014-10-09 02:04 - 2013-03-22 13:45 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-10-09 02:00 - 2013-03-22 13:51 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-10-09 01:08 - 2013-03-22 13:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-10-08 09:59 - 2013-03-22 19:43 - 00002052 _____ () C:\Windows\epplauncher.mif
2014-10-07 13:10 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-10-07 11:48 - 2014-06-16 18:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-07 11:48 - 2014-06-16 18:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-06 13:07 - 2013-03-22 17:58 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Microsoft Help
2014-10-04 12:48 - 2013-04-07 17:30 - 00000000 ____D () C:\ProgramData\Norton
2014-10-03 14:41 - 2013-03-22 13:32 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Comodo
2014-10-03 14:41 - 2013-03-22 13:31 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-10-03 14:22 - 2013-04-07 17:40 - 00000000 ____D () C:\Windows\system32\Drivers\N360x64
2014-10-03 14:22 - 2013-04-07 17:30 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2014-10-03 14:20 - 2013-04-07 17:41 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-10-03 13:49 - 2013-04-07 17:30 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2014-10-02 22:35 - 2013-04-15 07:19 - 00000000 ____D () C:\Windows\Minidump
2014-10-02 22:29 - 2013-09-04 22:09 - 00000000 ___RD () C:\Users\Jacque\Dropbox
2014-10-02 22:23 - 2013-09-04 21:59 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Dropbox
2014-10-02 16:20 - 2013-09-04 22:06 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-10-01 18:15 - 2009-07-13 22:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-10-01 09:38 - 2013-03-22 06:07 - 00000000 ____D () C:\Users\Jacque\AppData\Local\VirtualStore
2014-10-01 09:36 - 2013-10-13 23:16 - 00000000 ____D () C:\found.000
2014-10-01 09:36 - 2013-09-12 19:29 - 00000000 ____D () C:\Temp
2014-10-01 09:36 - 2013-04-16 00:55 - 00000000 ____D () C:\Users\Jacque\Documents\Add-in Express
2014-10-01 09:36 - 2013-04-12 21:41 - 00000000 ____D () C:\Program Files (x86)\QuickLOAD
2014-10-01 09:36 - 2013-04-07 22:39 - 00000000 ____D () C:\Sierra I6
2014-10-01 09:36 - 2013-04-07 16:56 - 00000000 ____D () C:\Fed_2011
2014-10-01 09:27 - 2013-03-31 13:11 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-30 22:13 - 2013-03-22 16:56 - 00000000 ____D () C:\Windows\pss
2014-09-30 19:40 - 2013-08-14 05:44 - 00001860 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PerfectDisk 12.5.lnk
2014-09-30 19:40 - 2013-08-01 08:52 - 00002082 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-09-30 19:36 - 2014-04-22 14:27 - 00000000 ____D () C:\Users\dub_cm_auto
2014-09-30 19:34 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2014-09-30 10:52 - 2013-10-24 07:42 - 169682988 _____ () C:\Users\Jacque\AppData\Roaming\hkey_local_machine.reg
2014-09-27 22:49 - 2013-12-08 21:15 - 00000000 ____D () C:\Program Files (x86)\Samsung Magician
2014-09-24 06:49 - 2013-05-14 18:35 - 03675824 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-09-24 06:49 - 2013-03-25 20:45 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-24 06:49 - 2013-03-25 20:45 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-24 06:49 - 2013-03-23 12:12 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-22 11:54 - 2013-03-25 20:34 - 00000000 ____D () C:\Program Files (x86)\JustCloud
2014-09-22 08:42 - 2013-10-14 00:12 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-22 08:42 - 2013-04-29 10:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-09-21 08:01 - 2013-03-22 16:24 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-21 07:56 - 2014-06-20 13:34 - 00012127 _____ () C:\Users\Jacque\Documents\ROI and Sales Quote Worksheet.xlsx
2014-09-21 06:41 - 2014-02-23 20:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-09-21 06:40 - 2013-03-22 07:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-09-21 06:40 - 2013-03-22 07:00 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-09-21 06:40 - 2013-03-22 07:00 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-09-21 06:40 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Help
2014-09-16 21:13 - 2014-02-23 20:53 - 02193560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-09-16 21:12 - 2014-02-23 20:53 - 02799784 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-09-15 09:44 - 2014-02-23 21:10 - 00000000 ____D () C:\Users\Jacque\AppData\Local\NVIDIA Corporation
2014-09-14 13:27 - 2013-03-23 09:34 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Microsoft Games
2014-09-13 22:07 - 2013-03-22 17:58 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-13 22:06 - 2013-07-28 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-13 22:06 - 2013-04-02 23:36 - 00774592 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-13 22:03 - 2014-04-30 03:05 - 00000000 ___SD () C:\Windows\system32\CompatTel
 
Some content of TEMP:
====================
C:\Users\Jacque\AppData\Local\Temp\FRYWLZJGPLUPVQ.exe
C:\Users\Jacque\AppData\Local\Temp\LGEOZYM.exe
C:\Users\Jacque\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-10-07 12:56
 
==================== End Of Log ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2014 02
Ran by Jacque at 2014-10-12 16:33:33
Running from C:\Users\Jacque\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton 360 (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
64 Bit HP CIO Components Installer (Version: 3.2.1 - Hewlett-Packard) Hidden
ABBYY FineReader for ScanSnap ™ 4.1 (HKLM-x32\...\{FB400000-0002-0000-0000-074957833700}) (Version: 8.02.380.7259 - ABBYY)
Acronis Disk Director 11 Home (HKLM-x32\...\{8EFB7927-48AD-4E6D-91B7-6B2BD6C3F380}) (Version: 11.0.2343 - Acronis)
Active@ Data Studio 7.5 (HKLM-x32\...\{E59278D4-C877-449A-8183-E3C995270768}_is1) (Version: 7.5 - LSoft Technologies Inc)
Active@ Data Studio 8.5 (HKLM\...\{E59278D4-C877-449A-8183-E3C995270768}_is1) (Version: 8.5 - LSoft Technologies Inc)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.12 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Content Viewer (x32 Version: 1.4.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5.5 Design Premium (HKLM-x32\...\{60E59A6C-7399-495A-B85C-C829F4E59602}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.230 - Adobe Systems Incorporated.) Hidden
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
AntiLogger (HKLM-x32\...\AntiLogger) (Version:  - Zemana Ltd.)
AntiLogger (x32 Version: 1.9.3.525 - Zemana Ltd.) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B678797F-DF38-4556-8A31-8B818E261868}) (Version: 8.0.0.23 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASAP Utilities (HKLM-x32\...\ASAP Utilities_is1) (Version: 5.2.1 - Bastien Mensink - A Must in Every Office BV)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
ASUS Boot Setting (HKLM-x32\...\{7AAE9187-C24F-4073-A951-36C370E7A3A5}) (Version: 1.00.18 - ASUSTeK Computer Inc.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.025 - ASUSTek Computer Inc.)
Ballistic Hunter (HKLM-x32\...\{8EE99B98-F0D2-44F9-821E-58AF1B3D617B}) (Version: 1.3.6 - www.weatherbyrifler.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Carbonite (HKLM-x32\...\Carbonite Backup) (Version: 5.5.5 build 4151  (Jun-27-2014) - Carbonite)
CardMinder (HKLM-x32\...\{D4F2AFD3-0167-4464-B92F-78AB6DA8A0AA}) (Version: V4.1L10 - PFU)
CardMinder V4.1 (x32 Version: 4.1.10.1 - PFU) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
ColdBore 1.0 Desktop Edition - Program Update (HKLM-x32\...\{75285A21-91DF-4D1A-A3B9-F7AA9BCF4628}) (Version: 1.0.0.4 - Patagonia Ballistics®)
ColdBore 1.0 Desktop Edition - Program Update (HKLM-x32\...\{8D1B2ABC-97DD-42C4-8D58-F046E2B03CAA}) (Version: 1.0.0.6 - Patagonia Ballistics®)
ColdBore 1.0 Desktop Edition - Program Update (HKLM-x32\...\{FE68B5AF-97CC-4192-B5AB-5FD27EA6B5D6}) (Version: 1.0.0.3 - Patagonia Ballistics®)
ColdBore 1.0 Desktop Edition (HKLM-x32\...\{0F025503-0A81-4548-9F18-B8CDF119F31F}) (Version: 1.0.0.1 - Patagonia Ballistics®)
Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 26.0.0.2 - COMODO)
COMODO System Utilities (HKLM\...\{A7DA4247-9F22-4d4a-974A-DD455CCF43B6}) (Version: 4.0.226743.26 - COMODO)
Comodo TrustConnect™ v.1.7.3 (HKLM-x32\...\Comodo TrustConnect™_is1) (Version:  - COMODO)
Compare It! (HKLM-x32\...\Compare It + Synchronize It_is1) (Version: 4.1 - Grig Software)
CopyTrans Control Center Uninstall Only (HKCU\...\CopyTrans Suite) (Version: 3.003 - WindSolutions)
Creative 3DMIDI Player (HKLM-x32\...\3DMIDI) (Version: 1.11 - Creative Technology Limited)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.43 - Creative Technology Limited)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Console Launcher (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited)
Creative Diagnostics (HKLM-x32\...\Diagnostics 4_5) (Version: 5.11 - Creative Technology Limited)
Creative Media Toolbox 6 (HKLM-x32\...\{F1A14CB2-A048-45A6-AFDA-3571296E1D76}) (Version: 6.02 - Creative Technology Limited)
Creative Media Toolbox 6 (Shared Components) (HKLM-x32\...\Uninstaller_B4736000_Creative Media Toolbox 6) (Version: 2.80.12 - Creative Labs)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 15 - Illustrate)
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 10 - Illustrate)
dBpoweramp m4a FDK (AAC) Encoder (HKLM-x32\...\dBpoweramp m4a FDK (AAC) Encoder) (Version: Release 2.1  (FDK v0.1.3) - Illustrate)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version:  - Microsoft)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.00 - Creative Technology Limited)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Federal Premium 2011 Ammunition (HKLM-x32\...\Federal Premium 2011 Ammunition) (Version:  - )
Garmin BaseCamp (HKLM-x32\...\{B27D272F-2860-4363-9803-956C0A9FAFB9}) (Version: 4.1.2 - Garmin Ltd or its subsidiaries)
Garmin MapInstall (HKLM-x32\...\{5ED7CD44-1A33-4B36-BA09-0B55FE82AF95}) (Version: 4.0.3 - Garmin Ltd or its subsidiaries)
Garmin MapSource (HKLM-x32\...\{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}) (Version: 6.16.3 - Garmin Ltd or its subsidiaries)
Garmin POI Loader (HKLM-x32\...\{3213ED5E-7BBE-4613-BE69-8B1E4FE520DD}) (Version: 2.7.3 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HDtracks Downloader (HKLM-x32\...\HDtracks Downloader) (Version: 18 - J. River, Inc.)
iCloud (HKLM\...\{6096C0CC-7E19-4355-87F0-627EC5AA146D}) (Version: 4.0.3.56 - Apple Inc.)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel® Network Connections 18.1.59.0 (HKLM\...\PROSetDX) (Version: 18.1.59.0 - Intel)
Intel® Network Connections 18.1.59.0 (Version: 18.1.59.0 - Intel) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{F46AA0F1-E284-4878-A462-5F11B9166C0E}) (Version: 11.4.0.18 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JustCloud  (HKLM\...\JustCloud) (Version:  - JustCloud)
JustCloud Setup (x32 Version: 1.0.0.08 - JustCloud) Hidden
Kestrel Communicator (HKLM-x32\...\{08C614E1-EF0B-4831-9AF6-F8B44CF030DA}) (Version: 2.0 - Nielsen-Kellerman)
Kremlin 2.21 (HKLM-x32\...\Kremlin 2.21) (Version:  - )
Load From A Disk Version 5.0 (HKLM-x32\...\Load From A Disk Version 5.0) (Version:  - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.2.0.1014 - Marvell)
Mastering Effects Bundle 2 for Sound Forge Pro (HKLM-x32\...\Mastering Effects Bundle 2 for Sound Forge Pro_is1) (Version: 2.00 - iZotope, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50701 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50706 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 12 (HKLM-x32\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - Nero AG)
Nero 12 Content Pack (HKLM-x32\...\{4E7AC009-5212-499F-942F-A5AA42AE359E}) (Version: 12.0.00400 - Nero AG)
Nero Abstract Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero BackItUp (x32 Version: 12.5.7000 - Nero AG) Hidden
Nero BackItUp Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.20030 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.9000 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 12.5.6000 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero Cliparts (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.21800 - Nero AG) Hidden
Nero Disc Menus 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 2 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 3 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Express (x32 Version: 12.5.7000 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden
Nero Family and Events Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Football (Soccer) Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Holiday and Sports Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Image Samples (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Kwik Media (x32 Version: 1.18.20100 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Platinum Effects 12 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Prerequisite Installer 2.0 (HKLM-x32\...\{0DBC021C-95D9-435A-A4B0-E6515AFD1A71}) (Version: 12.0.01000 - Nero AG)
Nero Recode (x32 Version: 12.5.6000 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.11000 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Retro Film Themes (x32 Version: 12.0.11700 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Nero Video (x32 Version: 12.5.4000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Video Samples (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Video Transitions 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Noise Reduction Plug-in 2.0i (HKLM-x32\...\{DC35AABA-EA0A-41C1-8462-F60A201DFF9B}) (Version: 2.0.455 - Sony)
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
NVIDIA 3D Vision Controller Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.11 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.11 - NVIDIA Corporation)
NVIDIA Control Panel 344.11 (Version: 344.11 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.11 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.162.1274 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 2.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.14.0702 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA ShadowPlay 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.25 (Version: 1.2.25 - NVIDIA Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
PayneGroup Metadata Assistant 4.0 (HKLM-x32\...\{F2A2640A-896E-4373-85A7-F44F348EC85A}) (Version: 4.0.1302.2512 - PayneGroup, Inc.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PerfectDisk 12.5 Professional (HKLM\...\{FD310764-B3E5-430F-980E-D6C0016B2660}) (Version: 12.05.312 - Raxco Software Inc.)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Preset Manager 2.0 (HKLM-x32\...\{FCFE3F81-C977-4D31-877B-2778BB2A02DE}) (Version: 2.0.114 - Sony)
Privacy Drive (HKLM-x32\...\{CC95A65D-9569-980F-998E-51969A6DFC9F}_is1) (Version: 2.0.0.528 - Cybertron Software Co., Ltd.)
QuickDESIGN (HKLM-x32\...\ST5UNST #2) (Version:  - )
QuickLOAD (HKLM-x32\...\ST5UNST #1) (Version:  - )
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RealDownloader (x32 Version: 1.3.1 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
RingCentral Softphone (HKLM-x32\...\{52F10407-8CF3-4EEB-8D4A-9AA02AE861FC}) (Version: 5.16.001.50 - RingCentral, Inc)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.5 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.4.0 - Samsung Electronics)
ScanSnap (x32 Version: 5.0.21.1 - PFU Limited) Hidden
ScanSnap (x32 Version: 5.1.62.2 - PFU Limited) Hidden
ScanSnap Manager (HKLM-x32\...\{DBCDB997-EEEB-4BE9-BAFF-26B4094DBDE6}) (Version: V5.1L62 - PFU)
ScanSnap Organizer (HKLM-x32\...\{E58F3B88-3B3E-4F85-9323-04789D979C15}) (Version: V4.1L61 - PFU)
ScanSnap Organizer (x32 Version: 4.1.11.3 - PFU LIMITED) Hidden
ScanSnap Organizer (x32 Version: 4.1.61.1 - PFU LIMITED) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Sierra I6 (HKLM-x32\...\Sierra I6) (Version: 6.01 - Sierra Bullets)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version:  - Silicon Laboratories)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Snagit 10.0.2 (HKLM-x32\...\{92D194E7-AEF9-4A9E-8620-8F3AE712E3F7}) (Version: 10.0.2 - TechSmith Corporation)
Sony CD Architect 5.2 (HKLM-x32\...\{CCAC7B28-CA5C-4520-ABBB-184524C01A51}) (Version: 5.2.240 - Sony)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.3 - Sophos Limited)
Sound Forge Pro 10.0 (HKLM-x32\...\{9660B18F-EC12-11DF-B006-0013D3D69929}) (Version: 10.0.491 - Sony)
SoundFont Bank Manager (HKLM-x32\...\SFBM) (Version: 3.21 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Spotmau PowerSuite Golden 2012 (build 7.0.1) (HKLM-x32\...\{182201E0-FCBA-4667-B226-B5AE3F4C623D}_is1) (Version:  - Spotmau Software Co., Ltd.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1040 - SUPERAntiSpyware.com)
ThermaData Logger Cradle (Driver Removal) (HKLM-x32\...\TDLCRADL&10C4&8213) (Version:  - )
ThermaData™ Studio (HKLM-x32\...\{D7C1926F-0E1D-4CAE-9434-ED45E877FA3E}) (Version: 1.4.0.0 - Thermoworks Inc)
TreeSize Professional V6.0.3 (64 bit) (HKLM\...\TreeSize Professional_is1) (Version: 6.0.3 - JAM Software)
True Image 2013 (HKLM-x32\...\{75BC2136-B6A1-4F3B-8A69-55E39C647B1F}Visible) (Version: 16.0.6514 - Acronis)
True Image 2013 (x32 Version: 16.0.6514 - Acronis) Hidden
True Image 2013 Plus Pack (HKLM-x32\...\{A2891078-DFA7-4324-B09B-550D9E4B42D7}) (Version: 16.0.6514 - Acronis)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.9.2 - Tweaking.com)
UltraISO Premium V9.53 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Welcome App (Start-up experience) (x32 Version: 12.0.15000 - Nero AG) Hidden
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DB}) (Version: 17.5.10480 - WinZip Computing, S.L. )
xImage (HKLM-x32\...\{31492759-0E89-46B5-9770-F6E5808E3017}) (Version: 2.3 - GARMIN)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
03-10-2014 03:34:47 TuneUp360's restore point
03-10-2014 21:03:37 Norton_Power_Eraser_20141003160327473
04-10-2014 17:47:41 SparkTrust PC Cleaner Plus Backup
08-10-2014 11:25:53 SparkTrust PC Cleaner Plus Backup
08-10-2014 13:51:48 TuneUp360's restore point
08-10-2014 14:29:30 SparkTrust PC Cleaner Plus Backup
08-10-2014 15:19:05 Cleaned
09-10-2014 02:55:50 Post TreeSize
09-10-2014 06:09:14 Removed ASUS SSD Caching
09-10-2014 06:09:52 Removed ASUS Update
09-10-2014 06:11:11 Removed DIGI+ Power Control
09-10-2014 06:11:39 Removed MyLogo
09-10-2014 06:12:20 Removed System Information
09-10-2014 06:13:18 Removed Thermal Radar
09-10-2014 06:13:41 Removed TurboV EVO
09-10-2014 06:14:37 Removed USB 3.0 Boost
09-10-2014 06:15:20 Removed AI Suite II
09-10-2014 06:46:21 Installed ASUS Product Register Program
09-10-2014 06:47:45 Installed ASUS Boot Setting
09-10-2014 06:49:07 Windows Update
09-10-2014 07:00:47 Installed AI Suite II
09-10-2014 07:01:19 Installed ASUS SSD Caching
09-10-2014 07:01:51 Installed ASUS Update
09-10-2014 07:02:24 Installed DIGI+ Power Control
09-10-2014 07:02:46 Installed MyLogo
09-10-2014 07:03:16 Installed System Information
09-10-2014 07:03:49 Installed Thermal Radar
09-10-2014 07:04:35 Installed TurboV EVO
09-10-2014 07:05:08 Installed USB 3.0 Boost
09-10-2014 07:19:57 Removed Thermal Radar
09-10-2014 07:22:42 Installed Thermal Radar
09-10-2014 07:25:54 Installed AI Suite II
09-10-2014 07:26:25 Installed Thermal Radar
09-10-2014 10:05:54 Installed Sophos Virus Removal Tool.
09-10-2014 20:45:54 TuneUp360's restore point
09-10-2014 21:54:48 Revo Uninstaller Pro's restore point - MyPC
09-10-2014 22:10:04 Revo Uninstaller Pro's restore point - MyPC Backup
09-10-2014 22:16:51 Revo Uninstaller Pro's restore point - Speedup
10-10-2014 16:59:51 Revo Uninstaller Pro's restore point - SparkTrust PC Cleaner Plus
11-10-2014 05:03:33 Revo Uninstaller Pro's restore point - TuneUp360 (Version 7.0.2)
11-10-2014 06:25:55 Revo Uninstaller Pro's restore point - Comodo IceDragon
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 21:34 - 2014-09-30 19:34 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0C47855E-F2DC-4610-8A45-569366180143} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {152C1CAA-2036-4155-94AF-A95B8E96EA4F} - System32\Tasks\{5F6010C8-60E5-41f3-BF5B-C3AF5DBE12D4} => C:\ProgramData\Carbonite\Carbonite Backup\CarboniteUpgrade.exe
Task: {162CE6CA-07D4-4CEB-A60F-5892326E8094} - System32\Tasks\SUPERAntiSpyware Scheduled Task b417dca7-fcb5-4164-beed-7d65ffc9755f => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-10-10] (SUPERAdBlocker.com)
Task: {2B597C27-53CA-46A8-8554-3ABDEE77AE3F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {32606FD3-29CF-4DAB-A07D-B35E99E7CC26} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-14] (Google Inc.)
Task: {4311054B-AC79-49F6-B137-8854598DA8BC} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {47D87EFC-086E-4589-98D1-8306039D2461} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {4AD134C7-5396-4AB8-8AE9-F2F4F0DC323D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-443274777-1843769276-3568719699-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-03-06] (RealNetworks, Inc.)
Task: {4CD2D781-AC42-4A2B-8B48-6DBF6EDCDB62} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {4D321DB2-5C5F-47E1-82FA-B3EA4FDA1E38} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {4D413B59-4577-4BF4-92E6-859455F551A9} - System32\Tasks\ASUS\ASUS DigiPowerControl Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe [2013-01-14] (ASUSTeK Computer Inc.)
Task: {50A17591-758A-41CD-BF22-D58428D278FB} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {5A63E68A-B8E5-49AC-A8DF-B7FF544F2DC7} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-08-27] (ASUSTek Computer Inc.)
Task: {697350C5-9521-49E1-9E7F-555C0F46C3A5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {72811E8B-FA9C-41E1-82FD-B6A14C06AB9D} - System32\Tasks\AdobeAAMUpdater-1.0-MRWOLF-Jacque => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {8BDB9505-F31D-49E3-990B-2A6DC9A83E00} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {8D3A32F3-9596-4556-949A-F07A3E9AB0E7} - System32\Tasks\Uninstaller_SkipUac_Jacque => C:\\Users\\Jacque\\Downloads\\IObitUninstallerPortable\\App\\uninstaller\\IObitUninstaler.exe [2014-09-29] (IObit)
Task: {93634BA9-757A-4674-AF6D-D2D21E1D162C} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-443274777-1843769276-3568719699-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {95A99CB8-C671-4A45-9053-F86C8E71260C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24] (Adobe Systems Incorporated)
Task: {97F6F167-BA23-4588-A0B6-1E3B00247A8C} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-443274777-1843769276-3568719699-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {B9F1E392-E63F-44D7-A5D8-9F001C83BA8A} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {CA6E6883-7EEF-4569-9B01-7A47A8A02301} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {D2390992-954E-4D5F-8C3A-50A0E0038B87} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-14] (Google Inc.)
Task: {D34A5C11-7295-482F-A7CC-E8D1BB90C379} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe [2014-05-19] (Samsung Electronics.)
Task: {D697F045-C955-42B4-B81A-5BF3153B7EE7} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] ()
Task: {EECD5328-EA69-4110-9C57-E1BAF87E94FC} - System32\Tasks\CSU Updater => C:\Program Files\COMODO\COMODO System Utilities\Updater.exe [2012-02-24] (COMODO Security Solutions, Inc.)
Task: {F7F5BBCF-28B1-4C5B-A5B4-D47FD5B3AFBF} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2013-10-18] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b417dca7-fcb5-4164-beed-7d65ffc9755f.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-09-21 06:40 - 2014-09-13 16:53 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-12-19 03:07 - 2013-12-19 03:07 - 01821384 _____ () C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
2013-03-06 02:21 - 2013-03-06 02:21 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2013-03-27 22:39 - 2013-03-27 22:39 - 00021824 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\x64\ti_managers_proxy_stub.dll
2011-11-15 18:30 - 2011-11-15 18:30 - 02139400 _____ () C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
2014-10-09 02:02 - 2013-10-18 18:04 - 01426232 ____N () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2013-07-21 20:42 - 2013-09-17 05:58 - 00920736 ____N () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2014-02-06 01:52 - 2014-02-06 01:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-08 21:15 - 2014-05-06 11:24 - 00013824 _____ () C:\Program Files (x86)\Samsung Magician\SAMSUNG_SSD.dll
2013-12-08 21:15 - 2014-05-19 20:20 - 00103424 _____ () C:\Program Files (x86)\Samsung Magician\PAL.dll
2013-12-08 21:15 - 2014-05-19 20:20 - 00039424 _____ () C:\Program Files (x86)\Samsung Magician\SATA.dll
2013-12-08 21:15 - 2014-05-19 20:19 - 00038400 _____ () C:\Program Files (x86)\Samsung Magician\SAT.dll
2013-12-08 21:15 - 2014-05-19 20:20 - 00031232 _____ () C:\Program Files (x86)\Samsung Magician\SMINI.dll
2013-12-08 21:15 - 2014-05-19 20:19 - 00029696 _____ () C:\Program Files (x86)\Samsung Magician\SAS.dll
2014-10-09 02:02 - 2013-10-18 18:04 - 05777616 ____N () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2014-10-09 02:02 - 2013-05-08 16:22 - 00208896 ____N () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2014-10-09 02:04 - 2013-08-19 04:23 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2014-10-09 02:04 - 2013-08-19 17:21 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2013-07-21 20:42 - 2014-10-12 16:16 - 00029184 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-07-21 20:42 - 2010-06-28 21:58 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2014-10-09 02:01 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2014-10-09 02:01 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2014-10-09 02:01 - 2012-10-08 17:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2014-10-09 02:02 - 2013-05-08 16:22 - 01040896 ____N () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2014-10-09 02:03 - 2012-06-19 12:56 - 01305600 ____N () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2014-10-09 02:01 - 2013-04-15 14:19 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2014-10-09 02:01 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2014-10-09 02:01 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2014-10-09 02:01 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2014-10-09 02:01 - 2012-08-29 18:09 - 00875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2014-10-09 02:26 - 2011-06-08 11:15 - 00651264 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Thermal Radar\ThermalRadar.dll
2013-07-21 20:42 - 2010-08-23 11:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2014-10-09 02:01 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2014-10-09 02:01 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2014-09-04 07:50 - 2014-09-04 07:50 - 02897304 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\PDFMaker\Common\AdobePDFMakerX.dll
2013-10-23 19:59 - 2013-10-23 19:59 - 01052672 _____ () C:\Program Files (x86)\RingCentral\RingCentral Softphone\RCTH.dll
2013-02-14 15:46 - 2013-02-14 15:46 - 01044048 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2013-03-27 22:09 - 2013-03-27 22:09 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-09-24 20:32 - 2014-09-22 23:06 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libglesv2.dll
2014-09-24 20:32 - 2014-09-22 23:06 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\libegl.dll
2014-09-24 20:32 - 2014-09-22 23:07 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll
2014-09-24 20:32 - 2014-09-22 23:07 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll
2014-09-24 20:32 - 2014-09-22 23:06 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:0E07D4CA
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\41095063.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\41095063.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CardMinder Viewer.lnk => C:\Windows\pss\CardMinder Viewer.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Panic Button.lnk => C:\Windows\pss\Panic Button.lnk.CommonStartup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ASUS Ai Charger => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: COMODO PC TuneUp => C:\Program Files\COMODO\PC TuneUP\CPCTuneUp.exe /Startup
MSCONFIG\startupreg: CTxfiHlp => CTXFIHLP.EXE
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RCUI => "C:\Program Files (x86)\RingCentral\RingCentral Softphone\RCUI.exe"
MSCONFIG\startupreg: ScanSnap WIA Service Checker => C:\Windows\SSDriver\fi5110\SsWiaChecker.exe
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: SystemExplorerAutoStart => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-443274777-1843769276-3568719699-500 - Administrator - Disabled)
Guest (S-1-5-21-443274777-1843769276-3568719699-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-443274777-1843769276-3568719699-1002 - Limited - Enabled)
Jacque (S-1-5-21-443274777-1843769276-3568719699-1000 - Administrator - Enabled) => C:\Users\Jacque
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/12/2014 04:15:01 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]
 
Error: (10/12/2014 04:14:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (10/12/2014 09:25:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program N360.exe version 12.11.4.4 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1568
 
Start Time: 01cfe624373f25f0
 
Termination Time: 8
 
Application Path: C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
 
Report Id: 9040f6d3-521b-11e4-ae07-c86000cb2765
 
Error: (10/11/2014 00:37:25 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Professional 2010; Error = 0x8007043c).
 
Error: (10/11/2014 00:31:26 PM) (Source: SideBySide) (EventID: 81) (User: )
 
Error: (10/11/2014 11:05:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]
 
Error: (10/11/2014 11:05:02 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x80070013, The media is write protected.
.
 
Error: (10/11/2014 11:05:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]
 
Error: (10/11/2014 02:23:00 AM) (Source: SideBySide) (EventID: 81) (User: )
 
Error: (10/11/2014 02:23:00 AM) (Source: SideBySide) (EventID: 81) (User: )
 
 
System errors:
=============
Error: (10/12/2014 04:33:41 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume SGT_2GB.
 
Error: (10/12/2014 04:16:19 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
tcoifh
 
Error: (10/12/2014 04:13:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
tcoifh
 
Error: (10/12/2014 04:13:21 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:00:39 AM on ‎10/‎12/‎2014 was unexpected.
 
Error: (10/12/2014 09:40:03 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
tcoifh
 
Error: (10/12/2014 09:27:02 AM) (Source: Ntfs) (EventID: 55) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume SGT_2GB.
 
Error: (10/12/2014 08:54:33 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
tcoifh
 
Error: (10/12/2014 00:10:22 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
tcoifh
 
Error: (10/11/2014 11:55:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}
 
Error: (10/11/2014 11:06:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
 
Microsoft Office Sessions:
=========================
Error: (10/12/2014 04:15:01 PM) (Source: VSS) (EventID: 13) (User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.
 
Error: (10/12/2014 04:14:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jacque\Downloads\esetsmartinstaller_enu.exe
 
Error: (10/12/2014 09:25:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: N360.exe12.11.4.4156801cfe624373f25f08C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe9040f6d3-521b-11e4-ae07-c86000cb2765
 
Error: (10/11/2014 00:37:25 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Professional 20100x8007043c
 
Error: (10/11/2014 00:31:26 PM) (Source: SideBySide) (EventID: 81) (User: )
Description: http://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayNameD:\Util\spy\Portable Apps\SpybotPortable\App\Spybot\SDWSCSvc.exe
 
Error: (10/11/2014 11:05:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.
 
Error: (10/11/2014 11:05:02 AM) (Source: VSS) (EventID: 8193) (User: )
Description: CoCreateInstance0x80070013, The media is write protected.
 
Error: (10/11/2014 11:05:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.
 
Error: (10/11/2014 02:23:00 AM) (Source: SideBySide) (EventID: 81) (User: )
 
Error: (10/11/2014 02:23:00 AM) (Source: SideBySide) (EventID: 81) (User: )
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3820 CPU @ 3.60GHz
Percentage of memory in use: 16%
Total physical RAM: 32707 MB
Available physical RAM: 27465.35 MB
Total Pagefile: 81765.18 MB
Available Pagefile: 76672.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
 
==================== Drives ================================
 
Drive c: (SGT_2GB) (Fixed) (Total:698.64 GB) (Free:307.4 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (UtilsNtunes) (Fixed) (Total:1208.72 GB) (Free:255.96 GB) NTFS
Drive f: (SGT_2GB) (Fixed) (Total:654.3 GB) (Free:520.75 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive l: (SGT_2GB) (Fixed) (Total:783.62 GB) (Free:432.39 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive m: (D0PP2) (Fixed) (Total:1079.4 GB) (Free:13.25 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 24A812CA)
Partition 1: (Active) - (Size=654.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1208.7 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 201679D2)
Partition 1: (Active) - (Size=698.6 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 50790889)
Partition 1: (Active) - (Size=783.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1079.4 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


#4 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:01:04 AM

Posted 12 October 2014 - 06:16 PM

 
You have this installed
C:\Program Files (x86)\IObit
 
Read this please
IObit
The company behind this product was found to be stealing Malwarebytes database.
Please see the following links and make up your own mind if you want to keep this on your system. If needed we can help you remove it.
Malwarebytes 
 
 
You have also run Combofix without a helpers direction, not a good idea, besides it may have removed entries that could help me find out whats going on
 
Go to C:\ComboFix.txt and post the log so I can see what was removed
 
You also have (SPEEDbit) C:\Program Files (x86)\SpeedBit Video Accelerator, this has placed itself in your LSP stack, it can be responsible for adds and change your browser settings, see if you can go to Programs and Features in the Control Panel and uninstall it
 
 
Lets clean you up some
 

 
-AdwCleaner-by Xplode
 
Click on this link to download : ADWCleaner
Click on ONE of the Two Blue Download Now buttons That have a blue arrow beside them and save it to your desktop.
 
Do not click on any links in the top Advertisment.
 
  •  
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan.
  • After the scan is complete click on "Clean"
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
 
 
===============================================================================
 
 
thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  •  
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
 
 
 
 
===============================================================================
 
Download Malwarebytes' Anti-Malware  to your desktop. 
 
  •  
  • Windows XP : Double click on the icon to run it.
  • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
 
 
MBAMDashboard_zpsddef9b5f.gif
 
  •  
  • On the Dashboard click on Update Now
  • Go to the Setting Tab
  • Under Setting go to Detection and Protection
  • Under PUP and PUM make sure both are set to show Treat Detections as Malware
  • Go to Advanced setting and make sure Automatically Quarantine Detected Items is checked
  • Then on the Dashboard click on Scan
  • Make sure to select THREAT SCAN
  • Then click on Scan
  • When the scan is finished and the log pops up...select Copy to Clipboard
  • Please paste the log back into this thread for review
  • Exit Malwarebytes
 
 

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#5 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 12 October 2014 - 06:57 PM

Ken,

 

I removed IObit malware Friday or Saturday after further research.  I had also downloaded the IObit Uninstaller which I wanted to compare to Revo Uninstaller.  Neither one is listed by Windows as installed at this time.  Do we need to surgically remove remnants of IObit?

 

Speedbit is a bit suspiscious.  It does not show up in the Installed Program List under Control Panel.  It is seen in HKCU\Software.  How would you suggest removing it?

 

I found the Combofix log.  It looks like it may have removed some good stuff...  The log is posted below:

 

2014-10-01 00:35:22 . 2014-10-01 00:35:22              377 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47}.reg.dat
2014-10-01 00:35:04 . 2014-10-01 00:35:04               97 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\Wow6432Node-HKCU-Run-AdobeBridge.reg.dat
2014-10-01 00:34:36 . 2007-11-07 14:03:18          562,688 ----a-w-  C:\Qoobox\Quarantine\M\install.exe.vir
2014-10-01 00:34:35 . 2007-11-07 14:03:18          562,688 ----a-w-  C:\Qoobox\Quarantine\D\install.exe.vir
2014-10-01 00:32:10 . 2014-10-01 00:32:10            8,204 ----a-w-  C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2014-10-01 00:25:39 . 2014-10-01 00:25:39                0 ----a-w-  C:\Qoobox\Quarantine\catchme.log
2014-06-18 04:42:54 . 2014-06-18 04:42:54              222 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\X2JE4H1V\__AssemblyInfo__.ini.vir
2014-06-18 04:42:54 . 2014-06-18 04:42:54           94,840 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\X2JE4H1V\MA4AV.DLL.vir
2014-06-18 04:42:53 . 2014-06-18 04:42:53          568,448 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\ANDMQAG8\MA4MSO.DLL.vir
2014-06-18 04:42:53 . 2014-06-18 04:42:53              226 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\ANDMQAG8\__AssemblyInfo__.ini.vir
2014-06-14 17:13:31 . 2014-06-14 17:13:31              222 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\EZVL02W3\__AssemblyInfo__.ini.vir
2014-06-14 17:13:31 . 2014-06-14 17:13:31           94,840 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\EZVL02W3\MA4AV.DLL.vir
2014-06-14 17:13:31 . 2014-06-14 17:13:31              226 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\DMPJ21CS\__AssemblyInfo__.ini.vir
2014-06-14 17:13:31 . 2014-06-14 17:13:31           85,120 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\DMPJ21CS\MA4ODF.DLL.vir
2014-06-14 17:13:26 . 2014-06-14 17:13:26              226 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\GYKC8BI2\__AssemblyInfo__.ini.vir
2014-06-14 17:13:26 . 2014-06-14 17:13:26          116,352 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\GYKC8BI2\MA4OES.DLL.vir
2014-06-14 17:13:26 . 2014-06-14 17:13:26              262 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\VX53Y6PP\__AssemblyInfo__.ini.vir
2014-06-14 17:13:26 . 2014-06-14 17:13:26           29,328 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\VX53Y6PP\MA4OutlookAddIn.DLL.vir
2014-04-01 00:15:16 . 2014-04-01 00:15:16              230 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\5VYQJBEG\__AssemblyInfo__.ini.vir
2014-04-01 00:15:16 . 2014-04-01 00:15:16        1,588,864 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\5VYQJBEG\MA4Core.DLL.vir
2014-01-29 10:09:18 . 2014-01-29 10:09:18              226 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\HC1A8PXK\__AssemblyInfo__.ini.vir
2014-01-29 10:09:18 . 2014-01-29 10:09:18          116,352 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\HC1A8PXK\MA4OES.DLL.vir
2014-01-29 10:09:18 . 2014-01-29 10:09:18              372 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\6X31EMET\__AssemblyInfo__.ini.vir
2014-01-29 10:09:18 . 2014-01-29 10:09:18           49,048 ----a-w-  C:\Qoobox\Quarantine\C\Users\Jacque\AppData\Local\assembly\tmp\6X31EMET\Microsoft.Office.Tools.Outlook.v4.0.Utilities.DLL.vir


#6 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 12 October 2014 - 07:00 PM

Ken,

 

Norton just slapped down adwcleaner:

 

Filename: unconfirmed 863408.crdownload
Threat name: Suspicious.Cloud.7.EP
Full Path: c:\users\jacque\downloads\unconfirmed 863408.crdownload
 
____________________________
 
 
 
Details
Unknown Community Usage,  Unknown Age,  Risk High
 
 
 
 
 
Origin
Downloaded from
 
 
 
 
 
Activity
Actions performed: Actions performed: 1
 
 
 
____________________________
 
 
 
On computers as of 
Not Available
 
 
Last Used 
10/12/2014 at 6:58:14 PM
 
 
Startup Item 
No
 
 
Launched 
No
 
 
____________________________
 
 
Unknown
It is unknown how many users in the Norton Community have used this file.
 
Unknown
This file release is currently not known.
 
High
This file risk is high.
 
Threat type: Heuristic Virus. Detection of a threat based on malware heuristics.
 
 
 
____________________________
 
 
 
Downloaded File unconfirmed 863408.crdownload Threat name: Suspicious.Cloud.7.EP
 from bleepingcomputer.com
 
Source: External Media
 
 
 
____________________________
 
File Actions
 
File: c:\users\jacque\downloads\ unconfirmed 863408.crdownload Removed
____________________________
 
 
File Thumbprint - SHA:
49e75449c38829a8c09c038de7d01ebec4de50cec850b4fe0ab9304a7e0c9af7
File Thumbprint - MD5:
Not available


#7 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 12 October 2014 - 07:08 PM

IObit Malware Fighter is not in my installed Programs List.  However, it too may be found in HKCU\Software.  Should we manually remove it now?



#8 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:01:04 AM

Posted 12 October 2014 - 07:40 PM

Hi,

 

I am notified when you post so no need for a PM, keep in mind that we are all volunteers and do this in our spare time so I am not available 24 x 7, but try to log on to the forum and get to you as fast as I can

 

AdwCleaner is not a bad program, you need to disable Norton so it can run

http://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

 

Everything that Combofix removed was either in a temp folder or a back up and thats fine , nothing to worry about


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#9 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 13 October 2014 - 12:03 AM

Ken545,

 

 

I have executed AdwCleaner, JRT, and MBAM as requested.  Below are the logs:

 

AdwCleaner Log:

# AdwCleaner v4.000 - Report created 12/10/2014 at 23:07:55
# DB v2014-10-12.3
# Updated 12/10/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Jacque - MRWOLF
# Running from : C:\Users\Jacque\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files (x86)\JustCloud
Folder Deleted : C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JustCloud
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17280
 
 
-\\ Google Chrome v37.0.2062.124
 
 
*************************
 
AdwCleaner[R0].txt - [2108 octets] - [09/10/2014 16:28:24]
AdwCleaner[R1].txt - [1900 octets] - [10/10/2014 13:42:43]
AdwCleaner[R2].txt - [1138 octets] - [12/10/2014 23:01:32]
AdwCleaner[S0].txt - [1813 octets] - [10/10/2014 13:55:42]
AdwCleaner[S1].txt - [981 octets] - [12/10/2014 23:07:55]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1040 octets] ##########
 

 

 

Junkware Removal Log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.2 (10.09.2014:1)
OS: Windows 7 Ultimate x64
Ran by Jacque on Sun 10/12/2014 at 23:39:00.83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 10/12/2014 at 23:42:26.61
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

MBAM Log:

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 10/12/2014
Scan Time: 11:47:59 PM
Logfile: 
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.10.13.01
Rootkit Database: v2014.10.11.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Jacque
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 356467
Time Elapsed: 6 min, 10 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#10 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 13 October 2014 - 12:07 AM

Ken545,

 

 

I allowed AdwCleaner to remove JustCloud.  However, I have a paid subscription for JustCloud.  I can re-install it later.

 

The other two applications; JRT and MBAM did not seem to find much if anything.

 

What would you like to do about Speedbit and IObit which are not listed as installed programs, yet are present in the registry as noted above?

 

What would you like to do next?

 

Thanks and have a great evening.



#11 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:01:04 AM

Posted 13 October 2014 - 06:20 AM

We can remove IObit without any problems, let me ask you about Speedbit, did you download and install this program on your own and do you use it ??  It has embedded itself in your LSP Stack, I will have to look into if it should be there legally

 

Go ahead and run a new scan with FRST, besure to check Additions and post both new logs please


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#12 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:01:04 AM

Posted 13 October 2014 - 06:28 AM

It appears that SpeedBit Video Accelerator is ok

 

http://www.systemlookup.com/search.php?type=filename&search=SBLSP.dll&s=


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#13 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 13 October 2014 - 10:31 AM

I do not remember how Speedbit became a part of my life.

 

How do we proceed with removing IObit?

 

What do you know about Just Cloud?  I removed it to get through this mess, but I do have a paid subscription for several computers in my home.

 

Would you like me to run FRST prior to removing IObit?



#14 MoovinTarget

MoovinTarget
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:01:04 AM

Posted 13 October 2014 - 10:42 AM

Good morning Ken545,

 

 

I hope you are feeling well today.

 

I have new logs from FRST as requested:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-10-2014 02
Ran by Jacque (administrator) on MRWOLF on 13-10-2014 10:34:43
Running from C:\Users\Jacque\Downloads
Loaded Profile: Jacque (Available profiles: Jacque)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.19\AsusFanControlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Carbonite, Inc. (www.carbonite.com)) C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
(Cybertron Software, Co., Ltd.) C:\Program Files (x86)\Cybertron\Privacy Drive\pdsvc.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(SPEEDbit) C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe
() C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
(Carbonite, Inc.) C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Raxco Software, Inc.) C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2014-09-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Carbonite Backup] => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe [1056976 2014-06-27] (Carbonite, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [AntiLogger] => C:\Program Files (x86)\AntiLogger\AntiLogger.exe [19362728 2014-03-26] (Zemana Ltd.)
HKLM-x32\...\Run: [Winsuite2012] => "C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\Winsuite 2012\Spotmau_WinSuite_TrayIcon.exe"
HKLM Group Policy restriction on software: D:\Util\spy\dBug <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKU\S-1-5-21-443274777-1843769276-3568719699-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION 
Startup: C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll (Acronis)
ShellIconOverlayIdentifiers: [Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
BootExecute: PDBoot.exeautocheck autochk * regdefrag
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3B543AD872DECF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitBHO64.dll (TechSmith Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SnagIt Toolbar Loader -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll (TechSmith Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll (TechSmith Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll (TechSmith Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{E24BB5CC-F1BB-4926-A4C3-4574DF18FA7E}: [NameServer] 8.26.56.26,156.154.70.22
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-03-25]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn [2014-10-12]
FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-04-23]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\IPSFF [2014-10-03]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> ask
CHR DefaultSearchProvider: Default -> Norton Safe Search
CHR DefaultSuggestURL: Default -> 
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Profile: C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-14]
CHR Extension: (Google Drive) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-14]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05]
CHR Extension: (YouTube) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-14]
CHR Extension: (Google Search) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-28]
CHR Extension: (Skype Click to Call) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-11-01]
CHR Extension: (Norton Safe) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2014-10-03]
CHR Extension: (Google Wallet) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Jacque\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-14]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-03-06]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-08-12] (SUPERAntiSpyware.com)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-09-17] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2013-07-21] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2013-07-21] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.19\AsusFanControlService.exe [408960 2012-10-15] (ASUSTeK Computer Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-03-23] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-03-22] (Creative Labs) [File not signed]
S3 Creative Media Toolbox 6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe [79360 2013-03-23] (Creative Labs) [File not signed]
S2 CSUService; C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe [347968 2012-02-24] (Comodo Security Solutions, Inc.)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-16] (NVIDIA Corporation)
R2 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-07-18] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-16] (NVIDIA Corporation)
R2 OS Selector; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2139400 2011-11-15] ()
R2 PDService; C:\Program Files (x86)\Cybertron\Privacy Drive\pdsvc.exe [75752 2013-03-18] (Cybertron Software, Co., Ltd.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-07-18] (Hewlett-Packard) [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 VideoAcceleratorService; C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe [281768 2013-04-23] (SPEEDbit)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 A2DDA; C:\EEK\BIN\a2ddax64.sys [26176 2014-10-10] (Emsisoft GmbH)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R1 AntiLog32; C:\Windows\system32\drivers\AntiLog64.sys [49752 2014-10-02] (Zemana Ltd.)
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-19] (MCCI Corporation)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\BASHDefs\20141003.001\BHDrvx64.sys [1587416 2014-10-03] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2014-02-20] (Symantec Corporation)
S3 cleanhlp; C:\EEK\bin\cleanhlp64.sys [57024 2014-10-10] (Emsisoft GmbH)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-08-26] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-08-26] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\IPSDefs\20141010.001\IDSvia64.sys [633560 2014-10-02] (Symantec Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141012.018\ENG64.SYS [129752 2014-08-11] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141012.018\EX64.SYS [2137304 2014-08-11] (Symantec Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R2 pdvstd; C:\Program Files (x86)\Cybertron\Privacy Drive\Drivers\pdvstd64.sys [165624 2013-03-18] (Cybertron Software, Co., Ltd.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R2 supersafer64; C:\Windows\SysWOW64\drivers\supersafer64.sys [238072 2011-11-15] (Spotmau)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2014-08-25] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-08-25] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-18] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [78936 2013-09-09] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-08-25] (Symantec Corporation)
S0 tcoifh; No ImagePath
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-04-06] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2013-04-06] (Acronis)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2013-04-06] (Acronis International GmbH)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-13 09:57 - 2014-10-13 09:57 - 00118492 _____ () C:\Users\Jacque\Documents\bookmarks ICEdragon 101314.html
2014-10-13 09:56 - 2014-10-13 09:56 - 00001141 _____ () C:\Users\Public\Desktop\Comodo IceDragon.lnk
2014-10-12 23:44 - 2014-10-12 23:44 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Jacque\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-10-12 23:43 - 2014-10-12 23:44 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Jacque\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-10-12 23:42 - 2014-10-12 23:42 - 00000630 _____ () C:\Users\Jacque\Desktop\JRT.txt
2014-10-12 23:38 - 2014-10-12 23:38 - 00000000 ____D () C:\Windows\ERUNT
2014-10-12 22:59 - 2014-10-12 22:59 - 01976320 _____ () C:\Users\Jacque\Downloads\adwcleaner.exe
2014-10-12 19:04 - 2014-10-12 19:04 - 01705755 _____ (Thisisu) C:\Users\Jacque\Downloads\JRT (1).exe
2014-10-12 16:33 - 2014-10-13 10:34 - 00034662 _____ () C:\Users\Jacque\Downloads\FRST.txt
2014-10-12 16:33 - 2014-10-12 16:34 - 00062822 _____ () C:\Users\Jacque\Downloads\Addition.txt
2014-10-12 16:31 - 2014-10-13 10:34 - 00000000 ____D () C:\FRST
2014-10-12 16:30 - 2014-10-12 16:30 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (4).exe
2014-10-12 16:30 - 2014-10-12 16:30 - 02110464 _____ (Farbar) C:\Users\Jacque\Downloads\FRST64.exe
2014-10-12 16:29 - 2014-10-12 16:29 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (3).exe
2014-10-12 16:29 - 2014-10-12 16:29 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (2).exe
2014-10-12 16:22 - 2014-10-12 16:22 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR (1).exe
2014-10-12 09:56 - 2014-10-12 09:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-10-12 09:56 - 2014-10-12 09:56 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-10-12 09:55 - 2014-10-12 09:55 - 07898652 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio (2).zip
2014-10-12 09:54 - 2014-10-12 09:54 - 07898652 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio (1).zip
2014-10-12 09:53 - 2014-10-12 09:53 - 09850208 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio_setup.exe
2014-10-12 09:52 - 2014-10-12 09:53 - 07898652 _____ () C:\Users\Jacque\Downloads\tweaking.com_windows_repair_aio portable.zip
2014-10-12 09:48 - 2014-10-12 09:48 - 50552176 _____ (Comodo) C:\Users\Jacque\Downloads\chromiumsecuresetup.exe
2014-10-11 23:54 - 2014-10-11 23:54 - 00484611 _____ () C:\Users\Jacque\Desktop\TeamSpybot-20141011-235420.cab
2014-10-11 12:30 - 2014-10-11 12:30 - 00391532 _____ () C:\Users\Jacque\Desktop\TeamSpybot-20141011-123018.cab
2014-10-11 11:31 - 2014-10-11 23:54 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-11 11:28 - 2014-10-11 11:28 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Jacque\Downloads\spybot-2.4.exe
2014-10-11 01:20 - 2014-10-11 01:21 - 38801392 _____ (COMODO) C:\Users\Jacque\Downloads\icedragonsetup (2).exe
2014-10-11 00:15 - 2014-10-11 02:02 - 00000000 ____D () C:\Users\Jacque\Downloads\SpybotPortable
2014-10-11 00:07 - 2014-10-11 11:06 - 00000000 ____D () C:\ProgramData\TuneUp360
2014-10-10 20:37 - 2014-10-10 20:37 - 00000000 ____D () C:\SUPERDelete
2014-10-10 14:01 - 2014-10-10 14:01 - 00010449 _____ () C:\Users\Jacque\Desktop\attach.txt
2014-10-10 14:01 - 2014-10-10 14:00 - 00029000 _____ () C:\Users\Jacque\Desktop\dds.txt
2014-10-10 13:57 - 2014-10-10 13:57 - 00000000 ____D () C:\Users\Jacque\Pavark
2014-10-10 02:08 - 2014-10-10 14:54 - 00000000 ____D () C:\EEK
2014-10-10 02:08 - 2014-10-10 02:08 - 00000750 _____ () C:\Users\Jacque\Desktop\Start Emsisoft Emergency Kit.lnk
2014-10-10 01:17 - 2014-10-10 01:17 - 00001289 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-10-10 01:17 - 2014-10-10 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2014-10-10 01:17 - 2014-10-10 01:17 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-10-10 01:17 - 2013-04-29 09:17 - 00047632 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2014-10-10 01:06 - 2014-10-10 01:15 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-10-10 01:05 - 2014-10-10 01:05 - 32518056 _____ (Panda Security ) C:\Users\Jacque\Downloads\PandaCloudCleaner.exe
2014-10-10 01:05 - 2014-10-10 01:05 - 04811083 _____ (InCode Solutions ) C:\Users\Jacque\Downloads\removeit_pro.exe
2014-10-10 01:04 - 2014-10-10 01:04 - 00436075 _____ () C:\Users\Jacque\Downloads\MSI(1).zip
2014-10-10 01:03 - 2014-10-10 01:03 - 00196920 _____ () C:\Users\Jacque\Downloads\HJ.exe
2014-10-10 01:02 - 2014-10-10 01:03 - 11194928 _____ (SurfRight B.V.) C:\Users\Jacque\Downloads\HitmanPro_x64.exe
2014-10-10 01:02 - 2014-10-10 01:03 - 10280824 _____ (SurfRight B.V.) C:\Users\Jacque\Downloads\HitmanPro.exe
2014-10-10 01:01 - 2014-10-10 01:04 - 157404008 _____ () C:\Users\Jacque\Downloads\EmsisoftEmergencyKit(1).exe
2014-10-10 01:01 - 2014-10-10 01:01 - 02095808 _____ (Emsi Software GmbH ) C:\Users\Jacque\Downloads\a2HiJackFreeSetup.exe
2014-10-10 01:00 - 2014-10-10 01:05 - 155732320 _____ () C:\Users\Jacque\Downloads\a6ojs5u3.exe
2014-10-10 00:51 - 2014-10-10 00:55 - 617777152 _____ () C:\Users\Jacque\Downloads\ubcd532.iso
2014-10-10 00:43 - 2014-10-10 00:43 - 05176232 _____ (F-Secure Corporation) C:\Users\Jacque\Downloads\F-SecureOnlineScanner(1).exe
2014-10-10 00:30 - 2014-10-10 00:30 - 10551322 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SmartDefragPortable_3.2.0.341.paf(1).exe
2014-10-10 00:30 - 2014-10-10 00:30 - 01065536 _____ (PortableApps.com) C:\Users\Jacque\Downloads\UltraDefragPortable_6.0.2.paf(1).exe
2014-10-10 00:29 - 2014-10-10 00:29 - 23732069 _____ () C:\Users\Jacque\Downloads\cce_2.5.242177.201_x32.zip
2014-10-10 00:28 - 2014-10-10 00:28 - 10551322 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SmartDefragPortable_3.2.0.341.paf.exe
2014-10-10 00:28 - 2014-10-10 00:28 - 01065536 _____ (PortableApps.com) C:\Users\Jacque\Downloads\UltraDefragPortable_6.0.2.paf.exe
2014-10-10 00:28 - 2014-10-10 00:28 - 00937160 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RufusPortable_1.4.10_English.paf.exe
2014-10-10 00:26 - 2014-10-10 00:27 - 07546200 _____ (PortableApps.com) C:\Users\Jacque\Downloads\TeamViewerPortable_9.0.32494.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 05354328 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinMergePortable_2.14.0.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 02362400 _____ (PortableApps.com) C:\Users\Jacque\Downloads\7-ZipPortable_9.20_Rev_3.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 02205584 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ExplorerPlusPlusPortable_1.3.5.paf.exe
2014-10-10 00:26 - 2014-10-10 00:26 - 00566008 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RegshotPortable_1.9.0.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 04664894 _____ (PortableApps.com) C:\Users\Jacque\Downloads\FileAlyzerPortable_2.0.5.57_English.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 02653736 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ChecksumControlPortable_2.4.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 01324392 _____ (PortableApps.com) C:\Users\Jacque\Downloads\AntRenamerPortable_2.10.0.paf.exe
2014-10-10 00:25 - 2014-10-10 00:25 - 00978240 _____ (PortableApps.com) C:\Users\Jacque\Downloads\DebugViewPortable_4.81_Rev_2_English_online.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 06363808 _____ (PortableApps.com) C:\Users\Jacque\Downloads\DaphnePortable_2.04.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 02163243 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SystemExplorerPortable_5.9.4.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 01805616 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ProcessHackerPortable_2.33_English.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 01564000 _____ (PortableApps.com) C:\Users\Jacque\Downloads\ConsolePortable_2.00_b148_Rev_2_English.paf.exe
2014-10-10 00:24 - 2014-10-10 00:24 - 00349416 _____ (PortableApps.com) C:\Users\Jacque\Downloads\CommandPromptPortable_2.3.paf.exe
2014-10-10 00:19 - 2014-10-10 00:19 - 01849152 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinMTRPortable_0.92_Rev_2_English.paf.exe
2014-10-10 00:18 - 2014-10-10 00:19 - 02007070 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WiseRegistryCleanerPortable_8.23.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 06005136 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WhoDatPortable_0.9.1_English.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 04633206 _____ (PortableApps.com) C:\Users\Jacque\Downloads\TreeSizeFreePortable_3.2.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 02785516 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RevoUninstallerPortable_1.95.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 02480784 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SIWPortable_2011.10.29.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 00970568 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinDirStatPortable_1.1.2.80_Rev_3.paf(1).exe
2014-10-10 00:18 - 2014-10-10 00:18 - 00723537 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WindowsErrorLookupToolPortable_3.0.7_English.paf.exe
2014-10-10 00:18 - 2014-10-10 00:18 - 00610408 _____ (PortableApps.com) C:\Users\Jacque\Downloads\RapidCRCUnicodePortable_0.3.15_English.paf.exe
2014-10-10 00:17 - 2014-10-10 00:18 - 05595952 _____ (PortableApps.com) C:\Users\Jacque\Downloads\LightscreenPortable_2.0_English.paf.exe
2014-10-10 00:17 - 2014-10-10 00:17 - 04639528 _____ (PortableApps.com) C:\Users\Jacque\Downloads\HWiNFOPortable_4.44-2300_English.paf.exe
2014-10-10 00:10 - 2014-10-10 00:10 - 02271984 _____ (PortableApps.com) C:\Users\Jacque\Downloads\KeePassPortable_1.28.paf(1).exe
2014-10-10 00:10 - 2014-10-10 00:10 - 01369272 _____ (PortableApps.com) C:\Users\Jacque\Downloads\EraserPortable_5.8.8.1_English.paf.exe
2014-10-10 00:09 - 2014-10-10 00:09 - 02390888 _____ (PortableApps.com) C:\Users\Jacque\Downloads\PeerBlockPortable_1.2_English.paf.exe
2014-10-10 00:09 - 2014-10-10 00:09 - 02271984 _____ (PortableApps.com) C:\Users\Jacque\Downloads\KeePassPortable_1.28.paf.exe
2014-10-10 00:08 - 2014-10-10 00:09 - 63344904 _____ (PortableApps.com) C:\Users\Jacque\Downloads\SpybotPortable_2.4.paf.exe
2014-10-10 00:08 - 2014-10-10 00:08 - 00415032 _____ (PortableApps.com) C:\Users\Jacque\Downloads\McAfeeStingerPortable_12.1.0.1137_English_online.paf(1).exe
2014-10-10 00:07 - 2014-10-10 00:07 - 00653048 _____ (PortableApps.com) C:\Users\Jacque\Downloads\HijackThisPortable_2.0.5_English.paf.exe
2014-10-10 00:07 - 2014-10-10 00:07 - 00415032 _____ (PortableApps.com) C:\Users\Jacque\Downloads\McAfeeStingerPortable_12.1.0.1137_English_online.paf.exe
2014-10-09 23:57 - 2014-10-09 23:57 - 11424456 _____ (Bitdefender LLC) C:\Users\Jacque\Downloads\BootkitRemoval_x64.exe
2014-10-09 23:57 - 2014-10-09 23:57 - 07268024 _____ (Bitdefender LLC) C:\Users\Jacque\Downloads\BootkitRemoval_x86.exe
2014-10-09 23:37 - 2014-10-09 23:40 - 01820672 _____ () C:\Users\Jacque\Downloads\sysresccd-installer-2.0.0.exe
2014-10-09 20:49 - 2014-10-09 20:49 - 00110168 _____ () C:\Users\Jacque\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-09 17:35 - 2014-10-09 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-10-09 17:35 - 2014-10-09 17:35 - 00000000 ____D () C:\Program Files\Speccy
2014-10-09 17:34 - 2014-10-09 17:34 - 04890736 _____ (Piriform Ltd) C:\Users\Jacque\Downloads\spsetup126.exe
2014-10-09 17:33 - 2014-10-09 17:33 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\NVIDIA
2014-10-09 17:22 - 2014-10-09 17:22 - 00002942 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Jacque
2014-10-09 17:22 - 2014-10-09 17:22 - 00000000 ____D () C:\Users\Jacque\Downloads\IObitUninstallerPortable
2014-10-09 16:48 - 2014-10-09 16:48 - 00000440 __RSH () C:\ProgramData\ntuser.pol
2014-10-09 16:28 - 2014-10-12 23:12 - 00000000 ____D () C:\AdwCleaner
2014-10-09 16:14 - 2014-10-09 16:19 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\PowerSuite Golden
2014-10-09 16:09 - 2014-10-09 16:09 - 00376664 _____ (Spotmau) C:\Users\Jacque\Downloads\powersuitegolden-downloader.exe
2014-10-09 16:00 - 2014-10-09 16:00 - 00136566 _____ () C:\Users\Jacque\AppData\Roaming\userenv.xml.urlencode
2014-10-09 16:00 - 2014-10-09 16:00 - 00102490 _____ () C:\Users\Jacque\AppData\Roaming\userenv.xml
2014-10-09 15:57 - 2014-10-09 15:57 - 04661048 _____ (Wondershare Software Co.,Ltd ) C:\Users\Jacque\Downloads\tuneup360_full798.exe
2014-10-09 15:53 - 2014-10-12 23:46 - 00002184 _____ () C:\Windows\setupact.log
2014-10-09 15:53 - 2014-10-12 23:25 - 00006214 _____ () C:\Windows\PFRO.log
2014-10-09 15:53 - 2014-10-09 15:53 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-09 14:30 - 2014-10-09 14:39 - 00000000 ____D () C:\Users\Jacque\Desktop\Ethanol Free
2014-10-09 14:04 - 2014-10-13 00:00 - 00000000 ____D () C:\Users\Jacque\Desktop\Virus Investigation
2014-10-09 12:08 - 2014-10-09 12:08 - 00688992 ____R (Swearware) C:\Users\Jacque\Downloads\dds.com
2014-10-09 10:32 - 2014-10-09 10:32 - 01043702 _____ () C:\Users\Jacque\Documents\gmer scan w 3rd party.log
2014-10-09 05:10 - 2014-10-09 05:10 - 00000000 ____D () C:\ProgramData\Sophos
2014-10-09 05:06 - 2014-10-09 05:06 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-10-09 05:06 - 2014-10-09 05:06 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-10-09 04:56 - 2014-10-09 04:56 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR(1).exe
2014-10-09 04:55 - 2014-10-09 04:55 - 00398752 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\unhide.exe
2014-10-09 04:53 - 2014-10-09 04:54 - 00457632 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\FixExec64.exe
2014-10-09 04:53 - 2014-10-09 04:53 - 00883616 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\FixExec32.exe
2014-10-09 04:52 - 2014-10-09 04:52 - 00464491 _____ () C:\Users\Jacque\Downloads\RootRepeal.zip
2014-10-09 04:52 - 2014-10-09 04:52 - 00231390 _____ () C:\Users\Jacque\Downloads\RootkitRevealer.zip
2014-10-09 04:50 - 2014-10-09 04:50 - 100564800 _____ (Sophos Limited) C:\Users\Jacque\Downloads\Sophos Virus Removal Tool.exe
2014-10-09 04:50 - 2014-10-09 04:50 - 08656400 _____ (Trend Micro Inc.) C:\Users\Jacque\Downloads\RootkitBuster_v5_1061.exe
2014-10-09 04:49 - 2014-10-09 04:49 - 01020640 _____ () C:\Users\Jacque\Downloads\antirootkit.exe
2014-10-09 04:48 - 2014-10-09 04:48 - 00415232 _____ (Farbar) C:\Users\Jacque\Downloads\FSS.exe
2014-10-09 04:48 - 2014-10-09 04:48 - 00401920 _____ (Farbar) C:\Users\Jacque\Downloads\MiniToolBox.exe
2014-10-09 04:47 - 2014-10-09 04:47 - 02334109 _____ () C:\Users\Jacque\Downloads\VT Hash.zip
2014-10-09 04:45 - 2014-10-09 04:45 - 157240008 _____ () C:\Users\Jacque\Downloads\EmsisoftEmergencyKit.exe
2014-10-09 04:41 - 2014-10-09 04:41 - 01375089 _____ () C:\Users\Jacque\Downloads\adwcleaner_3.311.exe
2014-10-09 04:40 - 2014-10-09 04:40 - 01705141 _____ (Thisisu) C:\Users\Jacque\Downloads\JRT.exe
2014-10-09 04:39 - 2014-10-09 04:40 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\rkill.exe
2014-10-09 04:39 - 2014-10-09 04:39 - 00380416 _____ () C:\Users\Jacque\Downloads\1ebvhodn.exe
2014-10-09 04:37 - 2014-10-09 04:37 - 05185536 _____ (AVAST Software) C:\Users\Jacque\Downloads\aswMBR.exe
2014-10-09 04:35 - 2014-10-09 04:35 - 00602112 _____ (OldTimer Tools) C:\Users\Jacque\Downloads\OTL.exe
2014-10-09 04:23 - 2014-10-09 04:23 - 00000000 ____D () C:\00DrvC
2014-10-09 02:55 - 2014-10-09 02:55 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Jacque\Downloads\tdsskiller(1).exe
2014-10-09 01:49 - 2014-10-09 01:49 - 00000000 ____D () C:\Windows\Intel_Chipset_XPVistaWin7_8_8-1_VER9321015
2014-10-09 01:49 - 2011-02-25 01:25 - 00296320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-10-09 01:48 - 2014-10-09 02:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2014-10-09 01:48 - 2014-10-09 01:48 - 00001990 _____ () C:\Users\Public\Desktop\ASUS Boot Setting 1.00.18.lnk
2014-10-09 01:46 - 2014-10-09 02:25 - 00000000 ____D () C:\Windows\System32\Tasks\ASUS
2014-10-08 23:28 - 2014-10-08 23:28 - 05008793 _____ () C:\Users\Jacque\Downloads\SABERTOOTH-X79-ASUS-4701.zip
2014-10-08 23:10 - 2014-10-08 23:11 - 04551394 _____ (Code Jelly ) C:\Users\Jacque\Downloads\Launchy2.5.exe
2014-10-08 23:08 - 2014-10-08 23:08 - 07945210 _____ () C:\Users\Jacque\Downloads\npp.6.6.9.Installer.exe
2014-10-08 23:06 - 2014-10-08 23:06 - 01268888 _____ (Ellora Assets Corporation ) C:\Users\Jacque\Downloads\FreemakeVideoConverterSetup.exe
2014-10-08 23:04 - 2014-10-08 23:05 - 24743106 _____ () C:\Users\Jacque\Downloads\vlc-2.1.5-win32.exe
2014-10-08 23:02 - 2014-10-08 23:03 - 110671648 _____ (Oracle Corporation) C:\Users\Jacque\Downloads\VirtualBox-4.3.16-95972-Win.exe
2014-10-08 22:59 - 2014-10-08 22:59 - 91931728 _____ (The GIMP Team ) C:\Users\Jacque\Downloads\gimp-2.8.14-setup-1.exe
2014-10-08 22:57 - 2014-10-08 22:57 - 04580232 _____ (Captel SARL ) C:\Users\Jacque\Downloads\LiberKey_5.7.0530.exe
2014-10-08 22:54 - 2014-10-08 22:54 - 04845384 _____ (Piriform Ltd) C:\Users\Jacque\Downloads\spsetup125.exe
2014-10-08 22:51 - 2014-10-08 22:51 - 20982755 _____ (PortableApps.com) C:\Users\Jacque\Downloads\IObitUninstallerPortable_4.0.4.1.paf.exe
2014-10-08 22:47 - 2014-10-08 22:48 - 07822880 _____ (TeamViewer GmbH) C:\Users\Jacque\Downloads\TeamViewer_Setup.exe
2014-10-08 22:45 - 2014-10-08 22:45 - 05814759 _____ () C:\Users\Jacque\Downloads\FreeCommanderXE_setup.zip
2014-10-08 22:39 - 2014-10-08 22:39 - 41954352 _____ (Razer Inc. ) C:\Users\Jacque\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-10-08 13:44 - 2014-10-08 13:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Professional
2014-10-08 13:44 - 2014-10-08 13:44 - 00000000 ____D () C:\Program Files\JAM Software
2014-10-08 13:30 - 2014-10-08 13:30 - 17266592 _____ (JAM Software ) C:\Users\Jacque\Downloads\TreeSizeProfessional-x64-Demo.exe
2014-10-08 13:29 - 2014-10-09 01:06 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\JAM Software
2014-10-08 13:12 - 2014-10-08 13:12 - 01711154 _____ (WareSoft Software ) C:\Users\Jacque\Downloads\7smokerpro.exe
2014-10-08 13:07 - 2014-10-08 13:07 - 00397145 _____ () C:\Users\Jacque\Downloads\xdn_tweaker_setup.exe
2014-10-08 13:03 - 2014-10-08 13:03 - 01982719 _____ () C:\Users\Jacque\Downloads\sendtotoys.exe
2014-10-08 12:56 - 2014-10-08 12:57 - 15924352 _____ (SeriousBit ) C:\Users\Jacque\Downloads\EnhansoSetup.exe
2014-10-08 12:48 - 2014-10-08 12:48 - 05068072 _____ (JAM Software ) C:\Users\Jacque\Downloads\TreeSizeFreeSetup.exe
2014-10-08 11:35 - 2014-10-08 11:35 - 00970568 _____ (PortableApps.com) C:\Users\Jacque\Downloads\WinDirStatPortable_1.1.2.80_Rev_3.paf.exe
2014-10-08 10:03 - 2014-10-08 10:04 - 31766208 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\Windows-KB890830-x64-V5.16.exe
2014-10-08 09:55 - 2014-10-08 09:56 - 14087848 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\mseinstall.exe
2014-10-08 09:53 - 2014-10-08 09:54 - 125339896 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\msert(1).exe
2014-10-07 14:05 - 2014-10-07 14:05 - 01599947 _____ () C:\Users\Jacque\Downloads\Lease
2014-10-07 14:00 - 2014-10-07 14:00 - 00461824 _____ () C:\Users\Jacque\Downloads\22_oil_gas_industry_guidelines.ppt
2014-10-07 12:16 - 2014-10-07 12:18 - 00002014 _____ () C:\Users\Jacque\Desktop\mbam-chameleon.exe.lnk
2014-10-07 11:46 - 2014-10-07 11:47 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Jacque\Downloads\mbam-setup-2.0.2.1012.exe
2014-10-07 11:26 - 2014-10-07 11:34 - 00235882 _____ () C:\Users\Jacque\Downloads\chameleon.chm
2014-10-07 10:46 - 2014-10-13 03:00 - 00352808 _____ () C:\Windows\WindowsUpdate.log
2014-10-06 15:37 - 2014-10-06 15:37 - 00044230 _____ () C:\Users\Jacque\Downloads\yahoo_contacts Outlook CSV.csv
2014-10-06 15:36 - 2014-10-06 15:36 - 00071114 _____ () C:\Users\Jacque\Downloads\yahoo_contacts.vcf
2014-10-06 15:35 - 2014-10-06 15:35 - 00032182 _____ () C:\Users\Jacque\Downloads\yahoo_contacts CSV.csv
2014-10-06 13:29 - 2014-10-06 15:03 - 00027283 _____ () C:\Users\Jacque\AppData\Roaming\Comma Separated Values (Windows).ADR
2014-10-06 13:20 - 2014-10-06 13:20 - 00455887 ____N () C:\Users\Jacque\Documents\MyContacts-2014-10-06-131824-3873.csv
2014-10-06 13:03 - 2014-10-06 13:03 - 01184736 ____N () C:\Users\Jacque\Documents\MyContacts-2014-10-03-124140-3873.vcf
2014-10-06 11:59 - 2014-10-06 11:59 - 00000216 ____N () C:\Users\Jacque\Documents\Christian Orion 10 - Phoenix.vcf
2014-10-06 11:58 - 2014-10-06 11:58 - 00000278 ____N () C:\Users\Jacque\Documents\Alan Broussard.vcf
2014-10-06 11:51 - 2014-10-06 11:51 - 00000281 ____N () C:\Users\Jacque\Documents\Clint Carlton.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000287 ____N () C:\Users\Jacque\Documents\Steve Ramsey.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000276 ____N () C:\Users\Jacque\Documents\Nick  Elmore.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000260 ____N () C:\Users\Jacque\Documents\Daniel Wilson.vcf
2014-10-06 11:50 - 2014-10-06 11:50 - 00000220 ____N () C:\Users\Jacque\Documents\WTS.vcf
2014-10-06 11:49 - 2014-10-06 11:49 - 00000190 ____N () C:\Users\Jacque\Documents\Phillip Hail H&P 332.vcf
2014-10-04 13:57 - 2014-10-04 13:58 - 00001254 _____ () C:\Users\Jacque\Desktop\Clear ClipBoard.lnk
2014-10-03 16:59 - 2014-10-03 16:59 - 00364640 _____ (Kaspersky Lab) C:\Users\Jacque\Downloads\kss12.0.1.808_6398_6399.exe
2014-10-03 14:40 - 2014-10-03 14:40 - 38801392 _____ (COMODO) C:\Users\Jacque\Downloads\icedragonsetup (1).exe
2014-10-03 14:38 - 2014-10-03 14:38 - 00085454 _____ () C:\Users\Jacque\Documents\bookmarks.html
2014-10-03 14:37 - 2014-10-03 14:37 - 00106021 _____ () C:\Users\Jacque\Documents\bookmarks-2014-10-03.json
2014-10-03 14:31 - 2014-10-03 14:31 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2014-10-03 14:20 - 2014-10-03 14:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-10-03 13:57 - 2014-10-03 13:57 - 03060320 _____ (Symantec Corporation) C:\Users\Jacque\Downloads\NPE.exe
2014-10-03 13:49 - 2014-10-03 14:20 - 00001300 _____ () C:\Users\Jacque\Desktop\Norton Installation Files.lnk
2014-10-03 13:46 - 2014-10-03 13:47 - 61411312 _____ (Symantec Corporation) C:\Users\Jacque\Downloads\N360-ESD-NoDefs-20-4-EN.exe
2014-10-03 13:42 - 2014-10-03 13:42 - 01021872 _____ (Symantec Corporation) C:\Users\Jacque\Downloads\NortonN360Downloader.exe
2014-10-02 16:23 - 2014-10-02 16:23 - 00323672 _____ (Dropbox, Inc.) C:\Users\Jacque\Downloads\DropboxInstaller(1).exe
2014-10-02 16:08 - 2014-10-02 16:08 - 00323672 _____ (Dropbox, Inc.) C:\Users\Jacque\Downloads\DropboxInstaller.exe
2014-10-02 14:04 - 2014-10-12 23:25 - 00305281 ____N () C:\Windows\Minidump\101214-21403-01.dmp
2014-10-02 13:18 - 2014-10-06 02:34 - 00000000 ____D () C:\Program Files (x86)\AntiLogger
2014-10-02 13:18 - 2014-10-02 13:18 - 00049752 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\AntiLog64.sys
2014-10-02 13:18 - 2014-10-02 13:18 - 00000000 __HDC () C:\ProgramData\{727C5CC8-3A5E-4517-BA8B-35A93F9B2EBD}
2014-10-02 13:18 - 2014-10-02 13:18 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Zemana
2014-10-02 13:18 - 2014-10-02 13:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AntiLogger
2014-10-02 12:50 - 2014-10-02 12:50 - 29202688 _____ (Zemana Ltd. ) C:\Users\Jacque\Downloads\Zemana_AntiLogger_1.9.3.525.exe
2014-10-02 12:03 - 2014-10-02 12:03 - 04066136 _____ (Zemana Ltd. ) C:\Users\Jacque\Downloads\AntiLoggerFree_Setup_1.7.2.390.exe
2014-10-02 11:10 - 2014-10-06 19:02 - 00014045 _____ () C:\Users\Jacque\Documents\AFT Proj and Priorities.xlsx
2014-10-02 11:10 - 2014-10-02 11:10 - 00000165 ____H () C:\Users\Jacque\Documents\~$AFT Proj and Priorities.xlsx
2014-10-01 22:08 - 2014-10-09 15:46 - 00000656 _____ () C:\Users\Jacque\Desktop\TuneUp360 Restore Center.lnk
2014-10-01 21:58 - 2014-10-01 21:58 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\spotmau
2014-10-01 18:09 - 2014-10-02 14:09 - 00000000 ____D () C:\Program Files (x86)\Belarc
2014-10-01 18:08 - 2014-10-01 18:08 - 03014232 _____ () C:\Users\Jacque\Downloads\RogueKillerCMDX64.exe
2014-10-01 18:06 - 2014-10-01 18:06 - 00147968 _____ (Adlice Software) C:\Users\Jacque\Downloads\forceHide.exe
2014-10-01 18:05 - 2014-10-01 18:05 - 00196096 _____ (Adlice Software) C:\Users\Jacque\Downloads\DiffView.exe
2014-10-01 18:05 - 2014-10-01 18:04 - 00101174 _____ () C:\Users\Jacque\Downloads\VTUploader.rar
2014-10-01 18:02 - 2014-10-01 18:07 - 00497240 _____ (Adlice Software) C:\Users\Jacque\Downloads\TaskSTRun.exe
2014-10-01 17:57 - 2014-10-01 17:57 - 03449184 _____ () C:\Users\Jacque\Downloads\advisorinstaller.exe
2014-10-01 17:29 - 2014-10-01 17:29 - 00419328 _____ (Adlice Softwares) C:\Users\Jacque\Downloads\MD5Look.exe
2014-10-01 17:28 - 2014-10-01 17:28 - 01490944 _____ (Adlice Softwares) C:\Users\Jacque\Downloads\LogAnalyzer.exe
2014-10-01 17:03 - 2014-10-01 17:04 - 00983039 _____ () C:\Users\Jacque\Downloads\EFRCSetup.exe
2014-10-01 16:58 - 2014-10-10 22:36 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-10-01 16:57 - 2014-10-01 16:58 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-10-01 16:20 - 2014-10-01 16:20 - 03600344 _____ (tuneuppro.com ) C:\Users\Jacque\Downloads\tuppsetup_site_default.exe
2014-10-01 16:13 - 2014-10-01 16:13 - 02477666 _____ () C:\Users\Jacque\Downloads\SystemExplorerPortable_593.zip
2014-10-01 16:13 - 2014-10-01 16:13 - 02097120 _____ (Mister Group ) C:\Users\Jacque\Downloads\SystemExplorerSetup_594.exe
2014-10-01 16:11 - 2014-10-01 16:11 - 03581240 _____ (tuneuppro.com ) C:\Users\Jacque\Downloads\setup.exe
2014-10-01 09:56 - 2014-10-01 11:29 - 00000540 _____ () C:\Windows\system32\PDBootState
2014-10-01 05:32 - 2014-09-24 21:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 05:32 - 2014-09-24 20:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-30 19:57 - 2014-10-10 20:37 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\IObit
2014-09-30 19:57 - 2014-10-09 17:30 - 00000000 ____D () C:\ProgramData\IObit
2014-09-30 19:57 - 2014-09-30 19:57 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-09-30 19:26 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-09-30 19:26 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-09-30 19:26 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2014-09-30 19:26 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2014-09-30 19:23 - 2014-09-30 19:36 - 00000000 ____D () C:\Qoobox
2014-09-30 19:23 - 2014-09-30 19:34 - 00000000 ____D () C:\Windows\erdnt
2014-09-30 19:19 - 2014-09-30 19:19 - 00000000 ____D () C:\Users\Jacque\AppData\Local\AntiLogger Free
2014-09-30 16:53 - 2014-09-30 16:53 - 05472344 _____ () C:\Users\Jacque\Downloads\RogueKillerX64.exe
2014-09-30 16:52 - 2014-09-30 16:52 - 04468796 _____ () C:\Users\Jacque\Downloads\StreamArmor.zip
2014-09-30 16:50 - 2014-09-30 16:50 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\sc-cleaner.exe
2014-09-30 16:49 - 2014-09-30 16:51 - 354134472 _____ (Norman Shark AS) C:\Users\Jacque\Downloads\Norman_Malware_Cleaner.exe
2014-09-30 16:49 - 2014-09-30 16:49 - 00436075 _____ () C:\Users\Jacque\Downloads\MSI.zip
2014-09-30 16:47 - 2014-09-30 16:47 - 07792813 _____ () C:\Users\Jacque\Downloads\d7.zip
2014-09-30 16:47 - 2014-09-30 16:47 - 00123012 _____ () C:\Users\Jacque\Downloads\dBug.zip
2014-09-30 16:46 - 2014-09-30 16:46 - 00615790 _____ () C:\Users\Jacque\Downloads\CryptoPrevent.zip
2014-09-30 16:44 - 2014-09-30 16:45 - 25029432 _____ () C:\Users\Jacque\Downloads\4.92_Full_Release_Troubleshooter.exe
2014-09-30 16:43 - 2014-09-30 16:44 - 01477032 _____ (Proland Software) C:\Users\Jacque\Downloads\FrWinvulscan.exe
2014-09-30 16:43 - 2014-09-30 16:43 - 05487940 _____ (Russell Phillips ) C:\Users\Jacque\Downloads\Panic_Button_2-5.exe
2014-09-30 16:41 - 2014-10-08 11:44 - 13708848 _____ () C:\Users\Jacque\Downloads\SysinternalsSuite.zip
2014-09-30 16:40 - 2014-09-30 16:42 - 01242562 _____ () C:\Users\Jacque\Downloads\CAT.exe
2014-09-30 16:19 - 2014-09-30 16:19 - 30583304 _____ (IObit ) C:\Users\Jacque\Downloads\IObit-Malware-Fighter-Setup.exe
2014-09-30 16:19 - 2014-09-30 16:19 - 00765584 _____ (Webroot) C:\Users\Jacque\Downloads\syswranalyzer.exe
2014-09-30 15:23 - 2014-09-30 15:23 - 05176232 _____ (F-Secure Corporation) C:\Users\Jacque\Downloads\F-SecureOnlineScanner.exe
2014-09-30 15:23 - 2014-09-30 15:23 - 00000000 ____D () C:\ProgramData\F-Secure
2014-09-30 15:22 - 2014-09-30 15:22 - 02347384 _____ (ESET) C:\Users\Jacque\Downloads\esetsmartinstaller_enu.exe
2014-09-30 15:02 - 2014-10-09 05:04 - 00000000 ____D () C:\Users\Jacque\Downloads\TMRBLog
2014-09-30 15:02 - 2014-09-30 15:02 - 00000000 ____D () C:\Users\Jacque\Downloads\log
2014-09-30 15:01 - 2014-09-30 15:01 - 14861360 _____ (Trend Micro Inc.) C:\Users\Jacque\Downloads\RootkitBusterV5.0-1180x64.exe
2014-09-30 14:41 - 2014-09-30 14:43 - 122162416 _____ (Microsoft Corporation) C:\Users\Jacque\Downloads\msert.exe
2014-09-30 14:37 - 2014-09-30 14:37 - 02863200 _____ (US Tech Support LLC) C:\Users\Jacque\Downloads\MyCleanPC.exe
2014-09-30 14:36 - 2014-09-30 14:36 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\QuickScan
2014-09-30 14:12 - 2014-10-03 14:28 - 00000000 ____D () C:\NPE
2014-09-30 14:08 - 2014-09-30 14:08 - 06764848 _____ (SparkTrust) C:\Users\Jacque\Downloads\SparkTrust PC Cleaner Plus Setup_ddce4b1_.exe
2014-09-30 14:07 - 2014-09-30 14:07 - 00834488 _____ (SlimWare Utilities, Inc.) C:\Users\Jacque\Downloads\DriverUpdate-setup.exe
2014-09-30 14:06 - 2014-09-30 14:06 - 00388608 _____ (Trend Micro Inc.) C:\Users\Jacque\Downloads\HijackThis.exe
2014-09-30 13:57 - 2014-09-30 13:58 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Jacque\Downloads\tdsskiller.exe
2014-09-30 13:57 - 2014-09-30 13:57 - 05582345 _____ (Swearware) C:\Users\Jacque\Downloads\ComboFix.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 04066136 _____ (Zemana Ltd. ) C:\Users\Jacque\Downloads\AntiLoggerFree_Setup.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 02091520 _____ (Conner Bernhard) C:\Users\Jacque\Downloads\NetAdapterRepair1.2.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 01668356 _____ () C:\Users\Jacque\Downloads\DDU v12.9.9.2.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 00400632 _____ (Bleeping Computer, LLC) C:\Users\Jacque\Downloads\ListCWall.exe
2014-09-30 13:53 - 2014-09-30 13:53 - 00332171 _____ () C:\Users\Jacque\Downloads\GiveMePower-v2.0.exe
2014-09-27 11:01 - 2014-10-03 16:17 - 00000000 ____D () C:\Users\Jacque\AppData\Local\NPE
2014-09-26 07:32 - 2014-09-09 17:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-26 07:32 - 2014-09-09 16:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-22 18:15 - 2014-09-22 18:15 - 00115406 _____ () C:\Users\Jacque\Documents\30 year reunion.pptx
2014-09-22 08:47 - 2014-09-22 08:46 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-09-22 08:46 - 2014-09-22 08:46 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-09-22 08:46 - 2014-09-22 08:46 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-09-22 08:46 - 2014-09-22 08:46 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-09-22 08:43 - 2014-09-22 08:43 - 31013800 _____ (Oracle Corporation) C:\Users\Jacque\Downloads\jre-7u67-windows-x64.exe
2014-09-22 08:43 - 2014-09-22 08:43 - 29421992 _____ (Oracle Corporation) C:\Users\Jacque\Downloads\jre-7u67-windows-i586.exe
2014-09-22 08:42 - 2014-09-22 08:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-22 08:42 - 2014-07-25 12:49 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-21 10:10 - 2014-09-21 10:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-09-21 06:41 - 2014-09-21 06:41 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-09-21 06:40 - 2014-10-12 23:45 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-21 06:40 - 2014-09-13 18:48 - 00073872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-09-21 06:40 - 2014-09-13 18:48 - 00060560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 06890696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 03529872 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 00934216 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-09-21 06:40 - 2014-09-13 16:53 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-09-21 06:40 - 2014-09-13 16:53 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-09-21 06:40 - 2014-09-13 15:13 - 00613696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-09-21 06:40 - 2014-09-11 10:37 - 03961833 _____ () C:\Windows\system32\nvcoproc.bin
2014-09-21 06:39 - 2014-09-16 23:51 - 01538880 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-09-21 06:39 - 2014-09-16 23:51 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-09-21 06:39 - 2014-09-16 23:51 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 31887680 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 24552592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 20922512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 20589536 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 19954520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 18106152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 17259664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 16875856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 14026304 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 13939272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 13157696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-09-21 06:39 - 2014-09-13 18:48 - 11392576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 11330776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 04287296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 04008592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 03223120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 02838424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434411.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 01539272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434411.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00984424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00957584 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00925896 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00919240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00894096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00867528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00501064 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00417096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00393024 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00352016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00348304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00303600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00174856 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00156840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-09-21 06:39 - 2014-09-13 18:48 - 00026956 _____ () C:\Windows\system32\nvinfo.pb
2014-09-21 06:28 - 2014-09-04 14:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-09-21 06:28 - 2014-09-04 14:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-09-15 09:44 - 2014-09-16 21:13 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-09-15 09:44 - 2014-09-16 21:12 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-09-14 10:09 - 2014-09-14 10:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-09-14 10:08 - 2014-10-08 01:48 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-09-14 10:08 - 2014-09-14 10:09 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-09-14 10:08 - 2014-09-14 10:09 - 00000000 ____D () C:\Program Files\iTunes
2014-09-14 10:08 - 2014-09-14 10:08 - 00000000 ____D () C:\Program Files\iPod
2014-09-13 22:07 - 2014-08-19 13:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-13 22:07 - 2014-08-19 12:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-13 22:07 - 2014-08-18 18:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-13 22:07 - 2014-08-18 17:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-13 22:07 - 2014-08-18 17:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-13 22:07 - 2014-08-18 17:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-13 22:07 - 2014-08-18 17:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-13 22:07 - 2014-08-18 17:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-13 22:07 - 2014-08-18 17:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-13 22:07 - 2014-08-18 17:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-13 22:07 - 2014-08-18 17:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-13 22:07 - 2014-08-18 17:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-13 22:07 - 2014-08-18 17:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-13 22:07 - 2014-08-18 17:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-13 22:07 - 2014-08-18 17:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-13 22:07 - 2014-08-18 17:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-13 22:07 - 2014-08-18 17:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-13 22:07 - 2014-08-18 17:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-13 22:07 - 2014-08-18 17:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-13 22:07 - 2014-08-18 16:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-13 22:07 - 2014-08-18 16:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-13 22:07 - 2014-08-18 16:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-13 22:07 - 2014-08-18 16:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-13 22:07 - 2014-08-18 16:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-13 22:07 - 2014-08-18 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-13 22:07 - 2014-08-18 16:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-13 22:07 - 2014-08-18 16:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-13 22:07 - 2014-08-18 16:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-13 22:07 - 2014-08-18 16:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-13 22:07 - 2014-08-18 16:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-13 22:07 - 2014-08-18 16:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-13 22:07 - 2014-08-18 16:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-13 22:07 - 2014-08-18 16:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-13 22:07 - 2014-08-18 16:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-13 22:07 - 2014-08-18 16:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-13 22:07 - 2014-08-18 16:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-13 22:07 - 2014-08-18 16:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-13 22:07 - 2014-08-18 16:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-13 22:07 - 2014-08-18 16:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-13 22:07 - 2014-08-18 16:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-13 22:07 - 2014-08-18 16:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-13 22:07 - 2014-08-18 16:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-13 22:07 - 2014-08-18 16:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-13 22:07 - 2014-08-18 16:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-13 22:07 - 2014-08-18 16:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-13 22:07 - 2014-08-18 16:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-13 22:07 - 2014-08-18 16:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-13 22:07 - 2014-08-18 16:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-13 22:07 - 2014-08-18 16:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-13 22:07 - 2014-08-18 16:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-13 22:07 - 2014-08-18 16:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-13 22:07 - 2014-08-18 15:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-13 22:07 - 2014-08-18 15:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-13 22:07 - 2014-08-18 15:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-13 22:07 - 2014-08-18 15:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-13 22:07 - 2014-08-18 15:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-13 22:03 - 2014-06-26 21:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-13 22:03 - 2014-06-26 20:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-13 18:33 - 2014-09-04 21:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-13 18:33 - 2014-09-04 21:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-13 18:33 - 2014-08-01 06:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-13 18:33 - 2014-08-01 06:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-13 18:33 - 2014-07-06 21:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-13 18:33 - 2014-07-06 21:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-13 18:33 - 2014-07-06 20:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-13 18:33 - 2014-07-06 20:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-13 18:33 - 2014-07-06 20:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-13 18:33 - 2014-06-23 22:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-13 18:33 - 2014-06-23 21:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-13 10:32 - 2013-03-22 20:22 - 00000000 ____D () C:\Users\Jacque\Documents\Outlook Files
2014-10-13 10:31 - 2013-08-14 14:41 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-13 10:12 - 2013-11-02 02:12 - 00000512 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b417dca7-fcb5-4164-beed-7d65ffc9755f.job
2014-10-13 10:12 - 2013-11-02 02:12 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-10-13 09:56 - 2013-03-22 13:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-10-13 09:49 - 2013-03-25 20:45 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-13 05:11 - 2014-06-16 18:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-13 03:31 - 2013-08-14 14:40 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-13 02:00 - 2014-08-22 00:52 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Adobe
2014-10-12 23:53 - 2009-07-13 23:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-12 23:53 - 2009-07-13 23:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-12 23:51 - 2009-07-14 00:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-12 23:45 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-12 23:44 - 2014-06-16 18:56 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-10-12 23:44 - 2014-06-16 18:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-12 23:44 - 2014-06-16 18:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-12 23:26 - 2013-04-15 07:19 - 00000000 ____D () C:\Windows\Minidump
2014-10-11 11:35 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2014-10-10 22:06 - 2013-04-23 15:00 - 00000000 ____D () C:\Program Files (x86)\SpeedBit Video Accelerator
2014-10-10 14:13 - 2013-05-08 17:14 - 00000000 ____D () C:\Users\Jacque\AppData\Local\CrashDumps
2014-10-10 13:57 - 2013-03-22 06:07 - 00000000 ____D () C:\Users\Jacque
2014-10-09 16:52 - 2013-10-14 00:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2014-10-09 14:38 - 2013-08-07 10:03 - 00000000 ____D () C:\Users\Jacque\Desktop\Loading
2014-10-09 03:42 - 2013-03-25 13:27 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-10-09 03:42 - 2013-03-25 13:27 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
2014-10-09 03:42 - 2013-03-25 13:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2014-10-09 03:25 - 2013-03-22 08:47 - 00000000 ____D () C:\Windows\Panther
2014-10-09 02:26 - 2013-03-22 11:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-09 02:10 - 2013-10-13 22:56 - 05403040 _____ () C:\Windows\PE_Rom.dll
2014-10-09 02:04 - 2013-03-22 13:45 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-10-09 02:00 - 2013-03-22 13:51 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-10-08 09:59 - 2013-03-22 19:43 - 00002052 _____ () C:\Windows\epplauncher.mif
2014-10-07 13:10 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-10-06 13:07 - 2013-03-22 17:58 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Microsoft Help
2014-10-04 12:48 - 2013-04-07 17:30 - 00000000 ____D () C:\ProgramData\Norton
2014-10-03 14:41 - 2013-03-22 13:32 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Comodo
2014-10-03 14:41 - 2013-03-22 13:31 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-10-03 14:22 - 2013-04-07 17:40 - 00000000 ____D () C:\Windows\system32\Drivers\N360x64
2014-10-03 14:22 - 2013-04-07 17:30 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2014-10-03 14:20 - 2013-04-07 17:41 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-10-03 13:49 - 2013-04-07 17:30 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2014-10-02 22:29 - 2013-09-04 22:09 - 00000000 ___RD () C:\Users\Jacque\Dropbox
2014-10-02 22:23 - 2013-09-04 21:59 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Dropbox
2014-10-02 16:20 - 2013-09-04 22:06 - 00000000 ____D () C:\Users\Jacque\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-10-01 18:15 - 2009-07-13 22:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-10-01 09:38 - 2013-03-22 06:07 - 00000000 ____D () C:\Users\Jacque\AppData\Local\VirtualStore
2014-10-01 09:36 - 2013-10-13 23:16 - 00000000 ____D () C:\found.000
2014-10-01 09:36 - 2013-09-12 19:29 - 00000000 ____D () C:\Temp
2014-10-01 09:36 - 2013-04-16 00:55 - 00000000 ____D () C:\Users\Jacque\Documents\Add-in Express
2014-10-01 09:36 - 2013-04-12 21:41 - 00000000 ____D () C:\Program Files (x86)\QuickLOAD
2014-10-01 09:36 - 2013-04-07 22:39 - 00000000 ____D () C:\Sierra I6
2014-10-01 09:36 - 2013-04-07 16:56 - 00000000 ____D () C:\Fed_2011
2014-10-01 09:27 - 2013-03-31 13:11 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-30 22:13 - 2013-03-22 16:56 - 00000000 ____D () C:\Windows\pss
2014-09-30 19:40 - 2013-08-14 05:44 - 00001860 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PerfectDisk 12.5.lnk
2014-09-30 19:40 - 2013-08-01 08:52 - 00002082 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-09-30 19:36 - 2014-04-22 14:27 - 00000000 ____D () C:\Users\dub_cm_auto
2014-09-30 19:34 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2014-09-30 10:52 - 2013-10-24 07:42 - 169682988 _____ () C:\Users\Jacque\AppData\Roaming\hkey_local_machine.reg
2014-09-27 22:49 - 2013-12-08 21:15 - 00000000 ____D () C:\Program Files (x86)\Samsung Magician
2014-09-24 06:49 - 2013-05-14 18:35 - 03675824 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-09-24 06:49 - 2013-03-25 20:45 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-24 06:49 - 2013-03-25 20:45 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-24 06:49 - 2013-03-23 12:12 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-22 08:42 - 2013-10-14 00:12 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-22 08:42 - 2013-04-29 10:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-09-21 08:01 - 2013-03-22 16:24 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-21 07:56 - 2014-06-20 13:34 - 00012127 _____ () C:\Users\Jacque\Documents\ROI and Sales Quote Worksheet.xlsx
2014-09-21 06:41 - 2014-02-23 20:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-09-21 06:40 - 2013-03-22 07:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-09-21 06:40 - 2013-03-22 07:00 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-09-21 06:40 - 2013-03-22 07:00 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-09-21 06:40 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Help
2014-09-16 21:13 - 2014-02-23 20:53 - 02193560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-09-16 21:12 - 2014-02-23 20:53 - 02799784 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-09-15 09:44 - 2014-02-23 21:10 - 00000000 ____D () C:\Users\Jacque\AppData\Local\NVIDIA Corporation
2014-09-14 13:27 - 2013-03-23 09:34 - 00000000 ____D () C:\Users\Jacque\AppData\Local\Microsoft Games
2014-09-13 22:07 - 2013-03-22 17:58 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-13 22:06 - 2013-07-28 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-13 22:06 - 2013-04-02 23:36 - 00774592 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-13 22:03 - 2014-04-30 03:05 - 00000000 ___SD () C:\Windows\system32\CompatTel
 
Some content of TEMP:
====================
C:\Users\Jacque\AppData\Local\Temp\FRYWLZJGPLUPVQ.exe
C:\Users\Jacque\AppData\Local\Temp\LGEOZYM.exe
C:\Users\Jacque\AppData\Local\Temp\Quarantine.exe
C:\Users\Jacque\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-10-07 12:56
 
==================== End Of Log ============================
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2014 02
Ran by Jacque at 2014-10-13 10:35:05
Running from C:\Users\Jacque\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton 360 (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
64 Bit HP CIO Components Installer (Version: 3.2.1 - Hewlett-Packard) Hidden
ABBYY FineReader for ScanSnap ™ 4.1 (HKLM-x32\...\{FB400000-0002-0000-0000-074957833700}) (Version: 8.02.380.7259 - ABBYY)
Acronis Disk Director 11 Home (HKLM-x32\...\{8EFB7927-48AD-4E6D-91B7-6B2BD6C3F380}) (Version: 11.0.2343 - Acronis)
Active@ Data Studio 7.5 (HKLM-x32\...\{E59278D4-C877-449A-8183-E3C995270768}_is1) (Version: 7.5 - LSoft Technologies Inc)
Active@ Data Studio 8.5 (HKLM\...\{E59278D4-C877-449A-8183-E3C995270768}_is1) (Version: 8.5 - LSoft Technologies Inc)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.12 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Content Viewer (x32 Version: 1.4.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5.5 Design Premium (HKLM-x32\...\{60E59A6C-7399-495A-B85C-C829F4E59602}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.230 - Adobe Systems Incorporated.) Hidden
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
AntiLogger (HKLM-x32\...\AntiLogger) (Version:  - Zemana Ltd.)
AntiLogger (x32 Version: 1.9.3.525 - Zemana Ltd.) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B678797F-DF38-4556-8A31-8B818E261868}) (Version: 8.0.0.23 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASAP Utilities (HKLM-x32\...\ASAP Utilities_is1) (Version: 5.2.1 - Bastien Mensink - A Must in Every Office BV)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
ASUS Boot Setting (HKLM-x32\...\{7AAE9187-C24F-4073-A951-36C370E7A3A5}) (Version: 1.00.18 - ASUSTeK Computer Inc.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.025 - ASUSTek Computer Inc.)
Ballistic Hunter (HKLM-x32\...\{8EE99B98-F0D2-44F9-821E-58AF1B3D617B}) (Version: 1.3.6 - www.weatherbyrifler.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Carbonite (HKLM-x32\...\Carbonite Backup) (Version: 5.5.5 build 4151  (Jun-27-2014) - Carbonite)
CardMinder (HKLM-x32\...\{D4F2AFD3-0167-4464-B92F-78AB6DA8A0AA}) (Version: V4.1L10 - PFU)
CardMinder V4.1 (x32 Version: 4.1.10.1 - PFU) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
ColdBore 1.0 Desktop Edition - Program Update (HKLM-x32\...\{75285A21-91DF-4D1A-A3B9-F7AA9BCF4628}) (Version: 1.0.0.4 - Patagonia Ballistics®)
ColdBore 1.0 Desktop Edition - Program Update (HKLM-x32\...\{8D1B2ABC-97DD-42C4-8D58-F046E2B03CAA}) (Version: 1.0.0.6 - Patagonia Ballistics®)
ColdBore 1.0 Desktop Edition - Program Update (HKLM-x32\...\{FE68B5AF-97CC-4192-B5AB-5FD27EA6B5D6}) (Version: 1.0.0.3 - Patagonia Ballistics®)
ColdBore 1.0 Desktop Edition (HKLM-x32\...\{0F025503-0A81-4548-9F18-B8CDF119F31F}) (Version: 1.0.0.1 - Patagonia Ballistics®)
Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 26.0.0.2 - COMODO)
COMODO System Utilities (HKLM\...\{A7DA4247-9F22-4d4a-974A-DD455CCF43B6}) (Version: 4.0.226743.26 - COMODO)
Comodo TrustConnect™ v.1.7.3 (HKLM-x32\...\Comodo TrustConnect™_is1) (Version:  - COMODO)
Compare It! (HKLM-x32\...\Compare It + Synchronize It_is1) (Version: 4.1 - Grig Software)
CopyTrans Control Center Uninstall Only (HKCU\...\CopyTrans Suite) (Version: 3.003 - WindSolutions)
Creative 3DMIDI Player (HKLM-x32\...\3DMIDI) (Version: 1.11 - Creative Technology Limited)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.43 - Creative Technology Limited)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Console Launcher (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited)
Creative Diagnostics (HKLM-x32\...\Diagnostics 4_5) (Version: 5.11 - Creative Technology Limited)
Creative Media Toolbox 6 (HKLM-x32\...\{F1A14CB2-A048-45A6-AFDA-3571296E1D76}) (Version: 6.02 - Creative Technology Limited)
Creative Media Toolbox 6 (Shared Components) (HKLM-x32\...\Uninstaller_B4736000_Creative Media Toolbox 6) (Version: 2.80.12 - Creative Labs)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 15 - Illustrate)
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 10 - Illustrate)
dBpoweramp m4a FDK (AAC) Encoder (HKLM-x32\...\dBpoweramp m4a FDK (AAC) Encoder) (Version: Release 2.1  (FDK v0.1.3) - Illustrate)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version:  - Microsoft)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.00 - Creative Technology Limited)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Federal Premium 2011 Ammunition (HKLM-x32\...\Federal Premium 2011 Ammunition) (Version:  - )
Garmin BaseCamp (HKLM-x32\...\{B27D272F-2860-4363-9803-956C0A9FAFB9}) (Version: 4.1.2 - Garmin Ltd or its subsidiaries)
Garmin MapInstall (HKLM-x32\...\{5ED7CD44-1A33-4B36-BA09-0B55FE82AF95}) (Version: 4.0.3 - Garmin Ltd or its subsidiaries)
Garmin MapSource (HKLM-x32\...\{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}) (Version: 6.16.3 - Garmin Ltd or its subsidiaries)
Garmin POI Loader (HKLM-x32\...\{3213ED5E-7BBE-4613-BE69-8B1E4FE520DD}) (Version: 2.7.3 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HDtracks Downloader (HKLM-x32\...\HDtracks Downloader) (Version: 18 - J. River, Inc.)
iCloud (HKLM\...\{6096C0CC-7E19-4355-87F0-627EC5AA146D}) (Version: 4.0.3.56 - Apple Inc.)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel® Network Connections 18.1.59.0 (HKLM\...\PROSetDX) (Version: 18.1.59.0 - Intel)
Intel® Network Connections 18.1.59.0 (Version: 18.1.59.0 - Intel) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{F46AA0F1-E284-4878-A462-5F11B9166C0E}) (Version: 11.4.0.18 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JustCloud  (HKLM\...\JustCloud) (Version:  - JustCloud)
JustCloud Setup (x32 Version: 1.0.0.08 - JustCloud) Hidden
Kestrel Communicator (HKLM-x32\...\{08C614E1-EF0B-4831-9AF6-F8B44CF030DA}) (Version: 2.0 - Nielsen-Kellerman)
Kremlin 2.21 (HKLM-x32\...\Kremlin 2.21) (Version:  - )
Load From A Disk Version 5.0 (HKLM-x32\...\Load From A Disk Version 5.0) (Version:  - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.2.0.1014 - Marvell)
Mastering Effects Bundle 2 for Sound Forge Pro (HKLM-x32\...\Mastering Effects Bundle 2 for Sound Forge Pro_is1) (Version: 2.00 - iZotope, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50701 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50706 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 12 (HKLM-x32\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - Nero AG)
Nero 12 Content Pack (HKLM-x32\...\{4E7AC009-5212-499F-942F-A5AA42AE359E}) (Version: 12.0.00400 - Nero AG)
Nero Abstract Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero BackItUp (x32 Version: 12.5.7000 - Nero AG) Hidden
Nero BackItUp Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.20030 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.9000 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 12.5.6000 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero Cliparts (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.21800 - Nero AG) Hidden
Nero Disc Menus 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 2 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 3 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Express (x32 Version: 12.5.7000 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden
Nero Family and Events Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Football (Soccer) Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Holiday and Sports Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Image Samples (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Kwik Media (x32 Version: 1.18.20100 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Platinum Effects 12 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Prerequisite Installer 2.0 (HKLM-x32\...\{0DBC021C-95D9-435A-A4B0-E6515AFD1A71}) (Version: 12.0.01000 - Nero AG)
Nero Recode (x32 Version: 12.5.6000 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.11000 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Retro Film Themes (x32 Version: 12.0.11700 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Nero Video (x32 Version: 12.5.4000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden
Nero Video Samples (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Video Transitions 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Noise Reduction Plug-in 2.0i (HKLM-x32\...\{DC35AABA-EA0A-41C1-8462-F60A201DFF9B}) (Version: 2.0.455 - Sony)
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
NVIDIA 3D Vision Controller Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.11 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.11 - NVIDIA Corporation)
NVIDIA Control Panel 344.11 (Version: 344.11 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.11 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.162.1274 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 2.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.14.0702 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA ShadowPlay 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.25 (Version: 1.2.25 - NVIDIA Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
PayneGroup Metadata Assistant 4.0 (HKLM-x32\...\{F2A2640A-896E-4373-85A7-F44F348EC85A}) (Version: 4.0.1302.2512 - PayneGroup, Inc.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PerfectDisk 12.5 Professional (HKLM\...\{FD310764-B3E5-430F-980E-D6C0016B2660}) (Version: 12.05.312 - Raxco Software Inc.)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Preset Manager 2.0 (HKLM-x32\...\{FCFE3F81-C977-4D31-877B-2778BB2A02DE}) (Version: 2.0.114 - Sony)
Privacy Drive (HKLM-x32\...\{CC95A65D-9569-980F-998E-51969A6DFC9F}_is1) (Version: 2.0.0.528 - Cybertron Software Co., Ltd.)
QuickDESIGN (HKLM-x32\...\ST5UNST #2) (Version:  - )
QuickLOAD (HKLM-x32\...\ST5UNST #1) (Version:  - )
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RealDownloader (x32 Version: 1.3.1 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
RingCentral Softphone (HKLM-x32\...\{52F10407-8CF3-4EEB-8D4A-9AA02AE861FC}) (Version: 5.16.001.50 - RingCentral, Inc)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.5 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.4.0 - Samsung Electronics)
ScanSnap (x32 Version: 5.0.21.1 - PFU Limited) Hidden
ScanSnap (x32 Version: 5.1.62.2 - PFU Limited) Hidden
ScanSnap Manager (HKLM-x32\...\{DBCDB997-EEEB-4BE9-BAFF-26B4094DBDE6}) (Version: V5.1L62 - PFU)
ScanSnap Organizer (HKLM-x32\...\{E58F3B88-3B3E-4F85-9323-04789D979C15}) (Version: V4.1L61 - PFU)
ScanSnap Organizer (x32 Version: 4.1.11.3 - PFU LIMITED) Hidden
ScanSnap Organizer (x32 Version: 4.1.61.1 - PFU LIMITED) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Sierra I6 (HKLM-x32\...\Sierra I6) (Version: 6.01 - Sierra Bullets)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version:  - Silicon Laboratories)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Snagit 10.0.2 (HKLM-x32\...\{92D194E7-AEF9-4A9E-8620-8F3AE712E3F7}) (Version: 10.0.2 - TechSmith Corporation)
Sony CD Architect 5.2 (HKLM-x32\...\{CCAC7B28-CA5C-4520-ABBB-184524C01A51}) (Version: 5.2.240 - Sony)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.3 - Sophos Limited)
Sound Forge Pro 10.0 (HKLM-x32\...\{9660B18F-EC12-11DF-B006-0013D3D69929}) (Version: 10.0.491 - Sony)
SoundFont Bank Manager (HKLM-x32\...\SFBM) (Version: 3.21 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Spotmau PowerSuite Golden 2012 (build 7.0.1) (HKLM-x32\...\{182201E0-FCBA-4667-B226-B5AE3F4C623D}_is1) (Version:  - Spotmau Software Co., Ltd.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1040 - SUPERAntiSpyware.com)
ThermaData Logger Cradle (Driver Removal) (HKLM-x32\...\TDLCRADL&10C4&8213) (Version:  - )
ThermaData™ Studio (HKLM-x32\...\{D7C1926F-0E1D-4CAE-9434-ED45E877FA3E}) (Version: 1.4.0.0 - Thermoworks Inc)
TreeSize Professional V6.0.3 (64 bit) (HKLM\...\TreeSize Professional_is1) (Version: 6.0.3 - JAM Software)
True Image 2013 (HKLM-x32\...\{75BC2136-B6A1-4F3B-8A69-55E39C647B1F}Visible) (Version: 16.0.6514 - Acronis)
True Image 2013 (x32 Version: 16.0.6514 - Acronis) Hidden
True Image 2013 Plus Pack (HKLM-x32\...\{A2891078-DFA7-4324-B09B-550D9E4B42D7}) (Version: 16.0.6514 - Acronis)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.9.2 - Tweaking.com)
UltraISO Premium V9.53 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Welcome App (Start-up experience) (x32 Version: 12.0.15000 - Nero AG) Hidden
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DB}) (Version: 17.5.10480 - WinZip Computing, S.L. )
xImage (HKLM-x32\...\{31492759-0E89-46B5-9770-F6E5808E3017}) (Version: 2.3 - GARMIN)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-443274777-1843769276-3568719699-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jacque\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
09-10-2014 02:55:50 Post TreeSize
09-10-2014 06:09:14 Removed ASUS SSD Caching
09-10-2014 06:09:52 Removed ASUS Update
09-10-2014 06:11:11 Removed DIGI+ Power Control
09-10-2014 06:11:39 Removed MyLogo
09-10-2014 06:12:20 Removed System Information
09-10-2014 06:13:18 Removed Thermal Radar
09-10-2014 06:13:41 Removed TurboV EVO
09-10-2014 06:14:37 Removed USB 3.0 Boost
09-10-2014 06:15:20 Removed AI Suite II
09-10-2014 06:46:21 Installed ASUS Product Register Program
09-10-2014 06:47:45 Installed ASUS Boot Setting
09-10-2014 06:49:07 Windows Update
09-10-2014 07:00:47 Installed AI Suite II
09-10-2014 07:01:19 Installed ASUS SSD Caching
09-10-2014 07:01:51 Installed ASUS Update
09-10-2014 07:02:24 Installed DIGI+ Power Control
09-10-2014 07:02:46 Installed MyLogo
09-10-2014 07:03:16 Installed System Information
09-10-2014 07:03:49 Installed Thermal Radar
09-10-2014 07:04:35 Installed TurboV EVO
09-10-2014 07:05:08 Installed USB 3.0 Boost
09-10-2014 07:19:57 Removed Thermal Radar
09-10-2014 07:22:42 Installed Thermal Radar
09-10-2014 07:25:54 Installed AI Suite II
09-10-2014 07:26:25 Installed Thermal Radar
09-10-2014 10:05:54 Installed Sophos Virus Removal Tool.
09-10-2014 20:45:54 TuneUp360's restore point
09-10-2014 21:54:48 Revo Uninstaller Pro's restore point - MyPC
09-10-2014 22:10:04 Revo Uninstaller Pro's restore point - MyPC Backup
09-10-2014 22:16:51 Revo Uninstaller Pro's restore point - Speedup
10-10-2014 16:59:51 Revo Uninstaller Pro's restore point - SparkTrust PC Cleaner Plus
11-10-2014 05:03:33 Revo Uninstaller Pro's restore point - TuneUp360 (Version 7.0.2)
11-10-2014 06:25:55 Revo Uninstaller Pro's restore point - Comodo IceDragon
12-10-2014 23:50:21 Revo Uninstaller Pro's restore point - speedbit
13-10-2014 00:05:14 Revo Uninstaller Pro's restore point - iobit
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 21:34 - 2014-09-30 19:34 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0C47855E-F2DC-4610-8A45-569366180143} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {152C1CAA-2036-4155-94AF-A95B8E96EA4F} - System32\Tasks\{5F6010C8-60E5-41f3-BF5B-C3AF5DBE12D4} => C:\ProgramData\Carbonite\Carbonite Backup\CarboniteUpgrade.exe
Task: {162CE6CA-07D4-4CEB-A60F-5892326E8094} - System32\Tasks\SUPERAntiSpyware Scheduled Task b417dca7-fcb5-4164-beed-7d65ffc9755f => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-10-10] (SUPERAdBlocker.com)
Task: {2B597C27-53CA-46A8-8554-3ABDEE77AE3F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {32606FD3-29CF-4DAB-A07D-B35E99E7CC26} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-14] (Google Inc.)
Task: {4311054B-AC79-49F6-B137-8854598DA8BC} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {47D87EFC-086E-4589-98D1-8306039D2461} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {4AD134C7-5396-4AB8-8AE9-F2F4F0DC323D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-443274777-1843769276-3568719699-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-03-06] (RealNetworks, Inc.)
Task: {4CD2D781-AC42-4A2B-8B48-6DBF6EDCDB62} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {4D321DB2-5C5F-47E1-82FA-B3EA4FDA1E38} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {4D413B59-4577-4BF4-92E6-859455F551A9} - System32\Tasks\ASUS\ASUS DigiPowerControl Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe [2013-01-14] (ASUSTeK Computer Inc.)
Task: {50A17591-758A-41CD-BF22-D58428D278FB} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {5A63E68A-B8E5-49AC-A8DF-B7FF544F2DC7} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-08-27] (ASUSTek Computer Inc.)
Task: {697350C5-9521-49E1-9E7F-555C0F46C3A5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {72811E8B-FA9C-41E1-82FD-B6A14C06AB9D} - System32\Tasks\AdobeAAMUpdater-1.0-MRWOLF-Jacque => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {8BDB9505-F31D-49E3-990B-2A6DC9A83E00} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {8D3A32F3-9596-4556-949A-F07A3E9AB0E7} - System32\Tasks\Uninstaller_SkipUac_Jacque => C:\\Users\\Jacque\\Downloads\\IObitUninstallerPortable\\App\\uninstaller\\IObitUninstaler.exe [2014-09-29] (IObit)
Task: {93634BA9-757A-4674-AF6D-D2D21E1D162C} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-443274777-1843769276-3568719699-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {95A99CB8-C671-4A45-9053-F86C8E71260C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24] (Adobe Systems Incorporated)
Task: {97F6F167-BA23-4588-A0B6-1E3B00247A8C} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-443274777-1843769276-3568719699-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {B9F1E392-E63F-44D7-A5D8-9F001C83BA8A} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {CA6E6883-7EEF-4569-9B01-7A47A8A02301} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {D2390992-954E-4D5F-8C3A-50A0E0038B87} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-14] (Google Inc.)
Task: {D34A5C11-7295-482F-A7CC-E8D1BB90C379} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe [2014-05-19] (Samsung Electronics.)
Task: {D697F045-C955-42B4-B81A-5BF3153B7EE7} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] ()
Task: {EECD5328-EA69-4110-9C57-E1BAF87E94FC} - System32\Tasks\CSU Updater => C:\Program Files\COMODO\COMODO System Utilities\Updater.exe [2012-02-24] (COMODO Security Solutions, Inc.)
Task: {F7F5BBCF-28B1-4C5B-A5B4-D47FD5B3AFBF} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2013-10-18] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task b417dca7-fcb5-4164-beed-7d65ffc9755f.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-09-21 06:40 - 2014-09-13 16:53 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-03-06 02:21 - 2013-03-06 02:21 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2011-11-15 18:30 - 2011-11-15 18:30 - 02139400 _____ () C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
2013-03-27 22:39 - 2013-03-27 22:39 - 00021824 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\x64\ti_managers_proxy_stub.dll
2013-07-21 20:42 - 2013-09-17 05:58 - 00920736 ____N () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2013-12-19 03:07 - 2013-12-19 03:07 - 01821384 _____ () C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
2014-02-06 01:52 - 2014-02-06 01:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-08 21:15 - 2014-05-06 11:24 - 00013824 _____ () C:\Program Files (x86)\Samsung Magician\SAMSUNG_SSD.dll
2013-12-08 21:15 - 2014-05-19 20:20 - 00103424 _____ () C:\Program Files (x86)\Samsung Magician\PAL.dll
2013-12-08 21:15 - 2014-05-19 20:20 - 00039424 _____ () C:\Program Files (x86)\Samsung Magician\SATA.dll
2013-12-08 21:15 - 2014-05-19 20:19 - 00038400 _____ () C:\Program Files (x86)\Samsung Magician\SAT.dll
2013-12-08 21:15 - 2014-05-19 20:20 - 00031232 _____ () C:\Program Files (x86)\Samsung Magician\SMINI.dll
2013-12-08 21:15 - 2014-05-19 20:19 - 00029696 _____ () C:\Program Files (x86)\Samsung Magician\SAS.dll
2014-10-09 02:04 - 2013-08-19 04:23 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2014-10-09 02:04 - 2013-08-19 17:21 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2013-07-21 20:42 - 2014-10-12 23:46 - 00029184 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-07-21 20:42 - 2010-06-28 21:58 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2014-10-09 02:01 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2014-10-09 02:01 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2014-10-09 02:01 - 2012-10-08 17:07 - 00972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2014-10-09 02:02 - 2013-05-08 16:22 - 01040896 ____N () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2014-10-09 02:03 - 2012-06-19 12:56 - 01305600 ____N () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2014-10-09 02:01 - 2013-04-15 14:19 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2014-10-09 02:01 - 2012-05-28 21:27 - 01622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2014-10-09 02:01 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2014-10-09 02:01 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2014-10-09 02:01 - 2012-08-29 18:09 - 00875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2014-10-09 02:26 - 2011-06-08 11:15 - 00651264 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Thermal Radar\ThermalRadar.dll
2013-07-21 20:42 - 2010-08-23 11:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2014-10-09 02:01 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2014-10-09 02:01 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2013-03-27 22:09 - 2013-03-27 22:09 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:0E07D4CA
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\41095063.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\41095063.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CardMinder Viewer.lnk => C:\Windows\pss\CardMinder Viewer.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Panic Button.lnk => C:\Windows\pss\Panic Button.lnk.CommonStartup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ASUS Ai Charger => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: COMODO PC TuneUp => C:\Program Files\COMODO\PC TuneUP\CPCTuneUp.exe /Startup
MSCONFIG\startupreg: CTxfiHlp => CTXFIHLP.EXE
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RCUI => "C:\Program Files (x86)\RingCentral\RingCentral Softphone\RCUI.exe"
MSCONFIG\startupreg: ScanSnap WIA Service Checker => C:\Windows\SSDriver\fi5110\SsWiaChecker.exe
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: SystemExplorerAutoStart => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-443274777-1843769276-3568719699-500 - Administrator - Disabled)
Guest (S-1-5-21-443274777-1843769276-3568719699-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-443274777-1843769276-3568719699-1002 - Limited - Enabled)
Jacque (S-1-5-21-443274777-1843769276-3568719699-1000 - Administrator - Enabled) => C:\Users\Jacque
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/13/2014 02:17:17 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.
 
Error: (10/12/2014 11:45:07 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]
 
 
System errors:
=============
Error: (10/13/2014 02:26:01 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a171\??\Volume{c45f8c15-92ee-11e2-bca7-806e6f6e6963}\System Volume Information\SPP\SppCbsHiveStore\{cd42efe1-f6f1-427c-b004-033192c625a4}{0F46C118-611F-48CD-9C95-B94A6A005BE4}
 
Error: (10/13/2014 02:25:19 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a171\??\Volume{c45f8c15-92ee-11e2-bca7-806e6f6e6963}\System Volume Information\SPP\SppCbsHiveStore\{cd42efe1-f6f1-427c-b004-033192c625a4}{F00E84A1-4E58-444C-B41E-4383E3D8FF98}
 
Error: (10/12/2014 11:46:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
tcoifh
 
 
Microsoft Office Sessions:
=========================
Error: (10/13/2014 02:17:17 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2
 
Error: (10/12/2014 11:45:07 PM) (Source: VSS) (EventID: 13) (User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070013, The media is write protected.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3820 CPU @ 3.60GHz
Percentage of memory in use: 11%
Total physical RAM: 32707 MB
Available physical RAM: 28798.88 MB
Total Pagefile: 81765.18 MB
Available Pagefile: 78087.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: (SGT_2GB) (Fixed) (Total:698.64 GB) (Free:306.6 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (UtilsNtunes) (Fixed) (Total:1208.72 GB) (Free:254.09 GB) NTFS
Drive f: (SGT_2GB) (Fixed) (Total:654.3 GB) (Free:519.98 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive l: (SGT_2GB) (Fixed) (Total:783.62 GB) (Free:419.35 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive m: (D0PP2) (Fixed) (Total:1079.4 GB) (Free:55.7 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 24A812CA)
Partition 1: (Active) - (Size=654.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1208.7 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 201679D2)
Partition 1: (Active) - (Size=698.6 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 50790889)
Partition 1: (Active) - (Size=783.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1079.4 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


#15 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:01:04 AM

Posted 13 October 2014 - 11:49 AM

Did you uninstall Speedbit , I dont see it on your log related to LSP entries no longer

 

What about these two, if you dont use them see if you can uninstall them

 

Winsuite2012
AntiLogger

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users