HKU\S-1-5-21-3809952396-1488035759-1417517223-1001\...\Run: [BRS] => C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe -runBRS
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll [233280 2014-11-10] (Search Protect)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32Loader.dll [188224 2014-11-10] (Search Protect)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3809952396-1488035759-1417517223-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3332182&octid=EB_ORIGINAL_CTID&ISID=M9BAEB2A2-9840-4A72-9828-9DB3140E6D6E&SearchSource=55&CUI=&UM=6&UP=SP2CF9FE81-761D-4340-A3BB-242A354FA4D1&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3332182&octid=EB_ORIGINAL_CTID&ISID=M9BAEB2A2-9840-4A72-9828-9DB3140E6D6E&SearchSource=55&CUI=&UM=6&UP=SP2CF9FE81-761D-4340-A3BB-242A354FA4D1&SSPV=", "https://www.google.com/?gws_rd=ssl", "https://www.google.com/?trackid=sp-006" 
CHR DefaultSearchKeyword: Default -> trovi.search
CHR DefaultSearchURL: Default -> http://www.trovi.com...rchTerms}&SSPV=
CHR DefaultNewTabURL: Default -> https://www.trovi.co...4FA4D1&SAT=CNTS
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:56434;https=127.0.0.1:56434
BHO: No Name -> {11111111-1111-1111-1111-110611341143} -> No File
BHO: No Name -> {47A93636-7E77-3768-FEA1-A3984700C69B} -> No File
BHO-x32: No Name -> {05b5ef3f-4c6a-426e-b77e-48ebb3e721f1} -> No File
BHO-x32: No Name -> {11111111-1111-1111-1111-110611341143} -> No File
BHO-x32: No Name -> {47A93636-7E77-3768-FEA1-A3984700C69B} -> No File
R1 {2859046f-5dca-482a-8c2d-37943d33a392}Gw64; C:\Windows\System32\drivers\{2859046f-5dca-482a-8c2d-37943d33a392}Gw64.sys [48792 2014-11-04] (StdLib)
R1 {29302da5-1178-40ac-a178-4cb57ebcc501}Gw64; C:\Windows\System32\drivers\{29302da5-1178-40ac-a178-4cb57ebcc501}Gw64.sys [48792 2014-10-25] (StdLib)
R1 {6db7eb66-a30b-41a3-809c-addb2341dafb}Gw64; C:\Windows\System32\drivers\{6db7eb66-a30b-41a3-809c-addb2341dafb}Gw64.sys [48792 2014-11-01] (StdLib)
R1 {7012eec1-4f37-42d4-a2cd-26727494d248}Gw64; C:\Windows\System32\drivers\{7012eec1-4f37-42d4-a2cd-26727494d248}Gw64.sys [48792 2014-10-11] (StdLib)
R1 {8c39d0b0-9b68-43ef-bc3c-2ef385fe5169}Gw64; C:\Windows\System32\drivers\{8c39d0b0-9b68-43ef-bc3c-2ef385fe5169}Gw64.sys [48792 2014-11-06] (StdLib)
R1 {9de7e012-74d3-4f9d-b4b0-2d3150073168}Gw64; C:\Windows\System32\drivers\{9de7e012-74d3-4f9d-b4b0-2d3150073168}Gw64.sys [48792 2014-11-10] (StdLib)
R1 {a6762132-8e80-4305-b1ba-2bec91757ac2}Gw64; C:\Windows\System32\drivers\{a6762132-8e80-4305-b1ba-2bec91757ac2}Gw64.sys [48792 2014-10-25] (StdLib)
R1 {dda91daf-e6f8-4453-88d1-df18d861c904}Gw64; C:\Windows\System32\drivers\{dda91daf-e6f8-4453-88d1-df18d861c904}Gw64.sys [48792 2014-10-28] (StdLib)
R1 {e9bebce7-deb3-4ab9-896c-549739f208c5}Gw64; C:\Windows\System32\drivers\{e9bebce7-deb3-4ab9-896c-549739f208c5}Gw64.sys [48792 2014-10-01] (StdLib)
C:\Windows\System32\drivers\{2859046f-5dca-482a-8c2d-37943d33a392}Gw64.sys
C:\Windows\System32\drivers\{29302da5-1178-40ac-a178-4cb57ebcc501}Gw64.sys
C:\Windows\System32\drivers\{6db7eb66-a30b-41a3-809c-addb2341dafb}Gw64.sys
C:\Windows\System32\drivers\{7012eec1-4f37-42d4-a2cd-26727494d248}Gw64.sys
C:\Windows\System32\drivers\{8c39d0b0-9b68-43ef-bc3c-2ef385fe5169}Gw64.sys
C:\Windows\System32\drivers\{9de7e012-74d3-4f9d-b4b0-2d3150073168}Gw64.sys
C:\Windows\System32\drivers\{a6762132-8e80-4305-b1ba-2bec91757ac2}Gw64.sys
C:\Windows\System32\drivers\{dda91daf-e6f8-4453-88d1-df18d861c904}Gw64.sys
C:\Windows\System32\drivers\{e9bebce7-deb3-4ab9-896c-549739f208c5}Gw64.sys
2014-11-28 20:17 - 2014-11-28 20:17 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (10).exe
2014-11-27 11:19 - 2014-11-27 11:19 - 01178952 _____ (Kromtech) C:\Users\judy\Downloads\PCKeeper Installer.exe
2014-11-19 07:47 - 2014-11-19 07:47 - 00834952 _____ (SlimWare Utilities, Inc.) C:\Users\judy\Downloads\DriverUpdate-setup.exe
2014-11-18 19:34 - 2014-11-18 19:34 - 00691576 _____ (Yahoo! Inc.) C:\Users\judy\Downloads\msgr11us (1).exe
2014-11-18 19:08 - 2014-11-18 19:08 - 00691576 _____ (Yahoo! Inc.) C:\Users\judy\Downloads\msgr11us.exe
2014-11-18 18:44 - 2014-11-18 18:44 - 00003078 _____ () C:\WINDOWS\System32\Tasks\{E3197826-D64B-4D84-B494-3BE4C9DE1A9F}
2014-11-18 18:36 - 2014-11-18 18:36 - 00001162 _____ () C:\Users\judy\Desktop\Live PC Help.lnk
2014-11-18 18:24 - 2014-11-18 18:24 - 00000000 ____D () C:\Users\judy\AppData\Local\AMD
2014-11-18 18:17 - 2014-11-18 18:17 - 00004010 _____ () C:\WINDOWS\System32\Tasks\LaunchSignup
2014-11-18 18:17 - 2014-11-18 18:17 - 00003314 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector
2014-11-18 18:17 - 2014-11-18 18:17 - 00000000 ____D () C:\Users\judy\AppData\Roaming\Advanced System Protector
2014-11-18 18:15 - 2014-11-23 23:07 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-11-18 18:14 - 2014-11-18 18:15 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-11-18 17:06 - 2014-11-18 17:06 - 00277816 _____ (K) C:\Users\judy\Downloads\yahoo-messenger.exe
2014-11-10 07:58 - 2014-11-10 02:30 - 00048792 _____ (StdLib) C:\WINDOWS\system32\Drivers\{9de7e012-74d3-4f9d-b4b0-2d3150073168}Gw64.sys
2014-11-08 06:50 - 2014-11-08 06:51 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (8).exe
2014-11-08 06:50 - 2014-11-08 06:51 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (7).exe
2014-11-08 06:50 - 2014-11-08 06:51 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (6).exe
2014-11-08 06:50 - 2014-11-08 06:51 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (5).exe
2014-11-08 06:50 - 2014-11-08 06:50 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (4).exe
2014-11-08 06:50 - 2014-11-08 06:50 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (3).exe
2014-11-08 06:49 - 2014-11-08 06:50 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (2).exe
2014-11-08 06:49 - 2014-11-08 06:50 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate (1).exe
2014-11-08 06:47 - 2014-11-08 06:47 - 79486264 _____ () C:\Users\judy\Downloads\JavaUpdate.exe
2014-11-06 23:32 - 2014-11-06 20:33 - 00048792 _____ (StdLib) C:\WINDOWS\system32\Drivers\{8c39d0b0-9b68-43ef-bc3c-2ef385fe5169}Gw64.sys
2014-11-05 07:04 - 2014-11-04 18:44 - 00048792 _____ (StdLib) C:\WINDOWS\system32\Drivers\{2859046f-5dca-482a-8c2d-37943d33a392}Gw64.sys
2014-11-01 07:48 - 2014-11-01 06:48 - 00048792 _____ (StdLib) C:\WINDOWS\system32\Drivers\{6db7eb66-a30b-41a3-809c-addb2341dafb}Gw64.sys
2014-11-30 16:33 - 2014-10-01 14:33 - 00000304 _____ () C:\WINDOWS\Tasks\WSE_Astromenda.job
2014-11-30 10:58 - 2013-08-03 05:09 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-11-28 13:26 - 2014-10-27 23:06 - 00000000 ____D () C:\ProgramData\ecbaef90-5696-41e1-a1c3-3e8112ce2840
2014-11-18 18:37 - 2014-10-01 14:31 - 00000000 ____D () C:\Users\judy\AppData\Roaming\Systweak
EmptyTemp:
CMD: bitsadmin /reset /allusers