Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-04-2016
Ran by Jason (administrator) on OFFICE-LAPTOP (22-04-2016 18:03:50)
Running from C:\Users\Jason\Desktop
Loaded Profiles: Jason (Available Profiles: Jason)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) Language: English (United States)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_6ef279c8\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Agere Systems) C:\Windows\System32\agr64svc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files (x86)\SMINST\BLService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Farbar) C:\Users\Jason\Desktop\FRST64 (1).exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [914224 2008-11-18] (Hewlett-Packard)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2314120 2009-06-01] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [442368 2009-06-03] (IDT, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-08-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DVDAgent] => C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2008-11-28] (CyberLink Corp.)
HKLM-x32\...\Run: [TSMAgent] => C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1316136 2008-12-25] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer for HP TouchSmart] => C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736 2008-12-25] (CyberLink)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [218408 2008-11-14] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2008-11-26] (CyberLink Corp.)
HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-10-30] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDIRShortCut] => C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Health Check Scheduler] => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [432432 2008-12-08] (Hewlett-Packard)
HKLM-x32\...\Run: [SSBkgdUpdate] => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe [29984 2007-10-11] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe [46368 2007-10-11] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort11reminder] => "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [741376 2007-11-05] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [77824 2007-10-30] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-03-12] (Hewlett-Packard)
HKLM-x32\...\Run: [Nuance PDF Converter Professional 7-reminder] => "C:\Program Files (x86)\Nuance\PDF Professional 7\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Converter Professional 7\Ereg\Ereg.ini"
HKLM-x32\...\Run: [PDF7 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Professional 7\RegistryController.exe [141160 2011-09-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [1787752 2011-11-03] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [615760 2015-03-03] (McAfee, Inc.)
HKLM-x32\...\Run: [CitrixReceiver] => "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk"
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [718248 2015-02-11] (McAfee, Inc.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2015-06-20] (RealNetworks, Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [383328 2015-06-19] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [124536 2015-06-04] (LeapFrog Enterprises, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\Run: [HPAdvisor] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [966656 2008-11-18] (Hewlett-Packard)
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\Run: [cdloader] => C:\Users\Jason\AppData\Roaming\mjusbsp\cdloader2.exe [50592 2011-08-23] (magicJack L.P.)
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\Run: [ISUSPM] =>  -scheduler
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\...\MountPoints2: {08569a49-a0b4-11de-a133-00238bc1af87} - F:\autorun.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.3.25
Tcpip\..\Interfaces\{98F037EA-BF98-447A-A675-C82760F95439}: [DhcpNameServer] 192.168.0.1 205.171.3.25

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.marketwatch.com/
HKU\S-1-5-21-797596941-2681491629-3159916735-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
SearchScopes: HKLM -> DefaultScope {682A7A5C-953E-4F46-BE75-B46823CC9E8B} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=HPNTDF
SearchScopes: HKLM -> {682A7A5C-953E-4F46-BE75-B46823CC9E8B} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=HPNTDF
SearchScopes: HKLM -> {F866DC5B-A053-40B9-BCDE-375ED3441201} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
SearchScopes: HKLM-x32 -> DefaultScope {682A7A5C-953E-4F46-BE75-B46823CC9E8B} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=HPNTDF
SearchScopes: HKLM-x32 -> {682A7A5C-953E-4F46-BE75-B46823CC9E8B} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&FORM=HPNTDF
SearchScopes: HKLM-x32 -> {F866DC5B-A053-40B9-BCDE-375ED3441201} URL = hxxp://www.ask.com/web?q={searchterms}&l=dis&o=ushpl
SearchScopes: HKU\S-1-5-21-797596941-2681491629-3159916735-1000 -> DefaultScope {36DE244C-822B-41E3-B41C-8F33D36D220B} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=B011US0D20150613&p={searchTerms}
SearchScopes: HKU\S-1-5-21-797596941-2681491629-3159916735-1000 -> {36DE244C-822B-41E3-B41C-8F33D36D220B} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=B011US0D20150613&p={searchTerms}
SearchScopes: HKU\S-1-5-21-797596941-2681491629-3159916735-1000 -> {682A7A5C-953E-4F46-BE75-B46823CC9E8B} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-797596941-2681491629-3159916735-1000 -> {F866DC5B-A053-40B9-BCDE-375ED3441201} URL = 
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL => No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\progra~1\mcafee\msk\mskapbho.dll => No File
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-08-12] (RealDownloader)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-06] (Oracle Corporation)
BHO-x32: Search Toolbar -> {9D425283-D487-4337-BAB6-AB8354A81457} -> C:\Program Files (x86)\Search Toolbar\SearchToolbar.dll [2010-04-08] ()
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies S.A.)
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: ZeonIEEventHelper Class -> {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\ZeonIEFavClient.dll [2011-07-08] (Zeon Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-06] (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Toolbar: HKLM-x32 - Search Toolbar - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files (x86)\Search Toolbar\SearchToolbar.dll [2010-04-08] ()
Toolbar: HKLM-x32 - Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files (x86)\Nuance\PDF Professional 7\bin\ZeonIEFavClient.dll [2011-07-08] (Zeon Corporation)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-797596941-2681491629-3159916735-1000 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Toolbar: HKU\S-1-5-21-797596941-2681491629-3159916735-1000 -> No Name - {9D425283-D487-4337-BAB6-AB8354A81457} -  No File
DPF: HKLM {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://javadl-esd.sun.com/update/1.6.0/jinstall-6-windows-i586.cab
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: HKLM-x32 {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} hxxp://aic.lgservice.com/DjvuViewer/DjVuControl-6.1.4.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2015-03-03] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2015-03-03] (McAfee, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-06-19] (Citrix Systems, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Jason\AppData\Roaming\Mozilla\Firefox\Profiles\netbottb.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-03-03] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2015-06-19] (Citrix Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-06] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-03-03] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.4.19 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2015-06-20] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.4 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2014-08-12] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.4.19 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-06-20] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2014-08-12] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2014-11-22] ()
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-04-21]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-13] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{1B12EF76-2B5E-4DA1-B587-4762D49BFE03}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-06-20] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee&type=B211US0D20150613&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Profile: C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-08]
CHR Extension: (Google Docs) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-08]
CHR Extension: (Google Drive) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google Search) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Sheets) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-08]
CHR Extension: (SiteAdvisor) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-07-10]
CHR Extension: (Google Docs Offline) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-06-13]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-06-13]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 0129051461368103mcinstcleanup; C:\Windows\TEMP\012905~1.EXE [883024 2015-05-04] (McAfee, Inc.)
R2 BcmSqlStartupSvc; C:\Program Files (x86)\Microsoft Office\Business Contact Manager\BcmSqlStartupSvc.exe [30312 2009-02-20] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-11-22] (WildTangent)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-02-11] (McAfee, Inc.)
R2 HP Health Check Service; c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2008-06-09] (Hewlett-Packard Company) [File not signed]
R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [154856 2016-02-12] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [752232 2015-03-03] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-02-11] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-02-11] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [605472 2015-02-27] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-02-11] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-02-11] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-02-17] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [372144 2015-03-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [250672 2015-02-17] (McAfee, Inc.)
R3 MSSQL$MSSMLBIZ; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2014-08-12] ()
R2 Recovery Service for Windows; C:\Program Files (x86)\SMINST\BLService.exe [365952 2008-12-17] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [241734 2008-09-15] () [File not signed]
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_6ef279c8\STacSV64.exe [239104 2009-06-03] (IDT, Inc.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-20] (Microsoft Corporation)
S2 Norton Internet Security; "C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe" /s "Norton Internet Security" /m "C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\diMaster.dll" /prefetch:1

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [68784 2015-02-17] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [401736 2015-02-17] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [337888 2015-02-17] (McAfee, Inc.)
R0 mfedisk; C:\Windows\System32\DRIVERS\mfedisk.sys [101872 2015-02-17] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [488000 2015-02-17] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [864072 2015-02-17] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [482600 2015-01-16] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [100720 2015-01-16] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340448 2015-02-17] (McAfee, Inc.)
S3 RSUSBCCID; C:\Windows\System32\DRIVERS\RtsUCcid.sys [50176 2016-04-05] (Realtek Semiconductor Corp.)
S3 USBCCID; C:\Windows\System32\DRIVERS\usbccid.sys [38400 2009-04-10] (Microsoft Corporation)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2008-11-28] (CyberLink Corp.)
U4 eabfiltr; no ImagePath
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\ENG64.SYS [X]
S3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\EX64.SYS [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S1 SRTSP; \??\C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSP64.SYS [X]
S1 SRTSPX; \??\C:\Windows\system32\drivers\NISx64\1000000.07D\SRTSPX64.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-22 18:03 - 2016-04-22 18:05 - 00036185 _____ C:\Users\Jason\Desktop\FRST.txt
2016-04-22 18:00 - 2016-04-22 18:03 - 00000000 ____D C:\FRST
2016-04-22 18:00 - 2016-04-22 18:01 - 02375680 _____ (Farbar) C:\Users\Jason\Desktop\FRST64 (1).exe
2016-04-22 17:59 - 2016-04-22 17:59 - 02375680 _____ (Farbar) C:\Users\Jason\Downloads\FRST64.exe
2016-04-22 17:33 - 2016-04-22 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-04-20 18:19 - 2016-04-20 18:19 - 00000000 ____D C:\Users\Jason\AppData\Local\Macromedia
2016-04-20 17:34 - 2016-04-20 17:34 - 00000000 ____D C:\Users\Jason\AppData\Roaming\TeamViewer
2016-04-20 17:33 - 2016-04-20 17:34 - 07096856 _____ (TeamViewer) C:\Users\Jason\Downloads\TeamViewerQS_en.exe
2016-04-15 23:16 - 2016-04-15 23:16 - 00000860 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-15 23:16 - 2016-04-15 23:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-15 19:52 - 2016-03-21 17:00 - 01589168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-15 19:52 - 2016-03-21 17:00 - 01171488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-04-15 19:52 - 2016-03-18 12:15 - 01915392 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-15 19:52 - 2016-03-18 12:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-04-15 19:52 - 2016-03-18 11:10 - 01316864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-04-15 19:52 - 2016-03-18 11:10 - 00861696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-04-15 19:48 - 2016-03-29 15:48 - 02800640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-04-15 19:48 - 2016-03-18 10:44 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-04-15 19:48 - 2016-03-18 09:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-04-15 19:43 - 2016-03-18 12:15 - 00660480 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-04-15 19:43 - 2016-03-18 12:15 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-04-15 19:43 - 2016-03-18 12:15 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-04-15 19:43 - 2016-03-18 12:15 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-04-15 19:43 - 2016-03-18 12:14 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-04-15 19:43 - 2016-03-18 11:10 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-04-15 19:43 - 2016-03-18 11:10 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-04-15 19:43 - 2016-03-18 11:10 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-04-15 19:42 - 2016-03-04 10:52 - 01253376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-04-15 19:42 - 2016-03-04 10:40 - 01875968 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-15 19:36 - 2016-03-17 13:00 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-04-15 19:36 - 2016-03-17 11:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-04-15 19:36 - 2016-03-17 11:45 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-04-14 18:22 - 2016-04-14 18:22 - 00103140 _____ C:\Users\Jason\Desktop\FSAFEDS_DC_Claim (3).pdf
2016-04-13 08:46 - 2016-03-24 15:17 - 18804736 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-04-13 08:46 - 2016-03-24 15:14 - 02351616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-04-13 08:46 - 2016-03-24 15:09 - 10938880 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-04-13 08:46 - 2016-03-24 15:09 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-04-13 08:46 - 2016-03-24 15:08 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-04-13 08:46 - 2016-03-24 15:08 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-04-13 08:46 - 2016-03-24 15:07 - 02159104 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-04-13 08:46 - 2016-03-24 15:07 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-04-13 08:46 - 2016-03-24 15:07 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-04-13 08:46 - 2016-03-24 15:07 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-04-13 08:46 - 2016-03-24 15:07 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-04-13 08:46 - 2016-03-24 14:40 - 01815552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-04-13 08:46 - 2016-03-24 14:38 - 12841472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-04-13 08:46 - 2016-03-24 14:36 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-04-13 08:46 - 2016-03-24 14:35 - 09753600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-04-13 08:46 - 2016-03-24 14:35 - 01140224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-04-13 08:46 - 2016-03-24 14:34 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-04-13 08:46 - 2016-03-24 14:33 - 01804800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-04-13 08:46 - 2016-03-24 14:33 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-04-13 08:46 - 2016-03-24 14:33 - 00718848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-04-13 08:46 - 2016-03-24 14:33 - 00424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-04-13 08:46 - 2016-03-24 14:33 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-04-13 08:46 - 2016-03-24 14:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-04-13 08:46 - 2016-03-24 14:33 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-04-13 08:46 - 2016-03-24 14:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-04-13 08:46 - 2016-03-24 14:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-04-13 08:46 - 2016-03-24 14:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-04-10 21:07 - 2016-04-10 21:07 - 00176420 _____ C:\Users\Jason\Desktop\https___www.priceline.pdf
2016-04-10 20:57 - 2016-04-10 20:57 - 00172065 _____ C:\Users\Jason\Desktop\Priceline.pdf
2016-04-08 11:36 - 2016-04-08 11:36 - 00015650 _____ C:\Users\Jason\Downloads\download_36866492.qfx
2016-04-08 11:34 - 2016-04-08 11:34 - 00000610 _____ C:\Users\Jason\Downloads\unrealized-20160408.csv
2016-04-07 21:32 - 2016-04-07 21:47 - 05934784 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-04-05 16:17 - 2016-04-05 16:17 - 02189285 _____ C:\Users\Jason\Downloads\MyDISHBill_07-20-15 (2).pdf
2016-04-05 16:17 - 2016-04-05 16:17 - 01621094 _____ C:\Users\Jason\Downloads\MyDISHBill_02-20-16.pdf
2016-04-05 16:15 - 2016-04-05 16:15 - 01822554 _____ C:\Users\Jason\Downloads\MyDISHBill_03-20-16.pdf
2016-04-05 11:25 - 2016-04-05 11:25 - 00000000 ____D C:\Users\Jason\Downloads\Stanley_Global_Windows_Driver_July_27_2011
2016-04-05 11:24 - 2016-04-05 11:24 - 04512528 _____ C:\Users\Jason\Downloads\Stanley_Global_Windows_Driver_July_27_2011.zip
2016-04-05 11:17 - 2016-04-05 11:17 - 00000000 ____D C:\Users\Jason\AppData\Roaming\Mozilla
2016-04-05 11:17 - 2016-04-05 11:17 - 00000000 ____D C:\Users\Jason\AppData\Local\Mozilla
2016-04-05 11:16 - 2016-04-15 23:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-05 11:12 - 2016-04-05 11:15 - 45702448 _____ C:\Users\Jason\Downloads\Firefox Setup 43.0.1.exe
2016-03-30 11:01 - 2016-03-30 11:01 - 00088535 _____ C:\Users\Jason\Downloads\JTH Resume Supr LER.pdf
2016-03-23 15:38 - 2016-03-23 15:51 - 00000000 ____D C:\Users\Jason\Desktop\Research

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-22 18:05 - 2009-09-12 21:16 - 00140037 _____ C:\ProgramData\HPWALog.txt
2016-04-22 18:05 - 2009-01-13 10:42 - 00000000 ____D C:\ProgramData\Temp
2016-04-22 17:58 - 2006-11-02 09:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-22 17:58 - 2006-11-02 09:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-22 17:45 - 2013-08-28 07:42 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-22 17:36 - 2015-02-07 10:21 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d042f224ae54d4.job
2016-04-22 17:34 - 2015-07-15 19:31 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf672e8aafd0.job
2016-04-22 17:32 - 2015-12-05 15:29 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d12fa433ca15d.job
2016-04-22 17:32 - 2009-01-13 11:07 - 00003578 _____ C:\Windows\System32\Tasks\HP Health Check
2016-04-22 17:28 - 2015-12-05 15:29 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d12fa41c8ed1d.job
2016-04-22 17:28 - 2015-09-16 07:38 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f084f4c588ab.job
2016-04-22 17:28 - 2015-02-07 10:21 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d042f2236f5c94.job
2016-04-22 17:28 - 2014-11-11 19:14 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cffe16a0ecf00.job
2016-04-22 17:28 - 2014-10-20 20:27 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd69afb4a30.job
2016-04-22 17:28 - 2014-06-25 07:43 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf907b6b219576.job
2016-04-22 17:28 - 2006-11-02 09:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-21 22:09 - 2006-11-02 09:42 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-04-21 21:26 - 2014-03-28 17:31 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf4addcc16b552.job
2016-04-20 22:34 - 2010-03-24 17:34 - 00000000 ____D C:\Users\Jason\Documents\House
2016-04-19 17:45 - 2006-11-02 07:33 - 00000000 ____D C:\Windows\inf
2016-04-19 17:45 - 2006-11-02 06:46 - 00825266 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-15 21:05 - 2006-11-02 07:33 - 00000000 ____D C:\Windows\rescache
2016-04-15 20:37 - 2006-11-02 09:21 - 00411256 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-15 20:32 - 2006-11-02 09:07 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-04-15 20:14 - 2013-08-14 18:58 - 00000000 ____D C:\Windows\system32\MRT
2016-04-15 19:58 - 2006-11-02 06:35 - 135176864 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-04-13 15:18 - 2009-10-04 10:38 - 00000000 ____D C:\Users\Jason\Documents\Family
2016-04-13 15:17 - 2010-01-10 15:55 - 00000000 ____D C:\Users\Jason\Documents\TurboTax
2016-04-13 14:57 - 2009-10-05 20:50 - 00000000 ____D C:\Users\Jason\Documents\My PaperPort Documents
2016-04-11 18:43 - 2015-05-25 07:57 - 00001997 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-08 11:35 - 2014-09-04 12:45 - 00029273 _____ C:\Users\Jason\Desktop\Mom.xlsx
2016-04-07 21:47 - 2013-08-28 07:42 - 00003682 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-07 21:47 - 2012-03-30 19:01 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-07 21:47 - 2011-08-16 18:32 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-05 11:29 - 2009-09-12 21:02 - 00000000 ____D C:\Users\Jason
2016-04-05 11:25 - 2009-08-10 12:46 - 00050176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUCcid.sys
2016-04-05 11:25 - 2009-08-03 16:46 - 00314880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUCcid.dll
2016-04-01 17:30 - 2010-06-12 21:51 - 00000000 ____D C:\Users\Jason\AppData\Roaming\HpUpdate

==================== Files in the root of some directories =======

2006-05-17 01:02 - 2006-05-17 01:02 - 0006552 _____ () C:\Program Files\0x0402.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0004248 _____ () C:\Program Files\0x0404.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006509 _____ () C:\Program Files\0x0405.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006461 _____ () C:\Program Files\0x0406.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0007094 _____ () C:\Program Files\0x0407.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0007460 _____ () C:\Program Files\0x0408.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006129 _____ () C:\Program Files\0x0409.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0007022 _____ () C:\Program Files\0x040a.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006344 _____ () C:\Program Files\0x040b.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0007242 _____ () C:\Program Files\0x040c.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006489 _____ () C:\Program Files\0x040e.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006897 _____ () C:\Program Files\0x0410.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006623 _____ () C:\Program Files\0x0411.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0005724 _____ () C:\Program Files\0x0412.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006814 _____ () C:\Program Files\0x0413.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006393 _____ () C:\Program Files\0x0414.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006715 _____ () C:\Program Files\0x0415.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006569 _____ () C:\Program Files\0x0416.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006419 _____ () C:\Program Files\0x0418.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006512 _____ () C:\Program Files\0x0419.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006153 _____ () C:\Program Files\0x041d.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006355 _____ () C:\Program Files\0x041f.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0004315 _____ () C:\Program Files\0x0804.ini
2006-05-17 01:02 - 2006-05-17 01:02 - 0006833 _____ () C:\Program Files\0x0816.ini
2009-02-17 10:47 - 2009-02-17 10:47 - 0034304 _____ () C:\Program Files\1026.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0024576 _____ () C:\Program Files\1028.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0033792 _____ () C:\Program Files\1029.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0033280 _____ () C:\Program Files\1030.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0038912 _____ () C:\Program Files\1031.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0037888 _____ () C:\Program Files\1032.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0003584 _____ () C:\Program Files\1033.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0035840 _____ () C:\Program Files\1034.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0033280 _____ () C:\Program Files\1035.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0037376 _____ () C:\Program Files\1036.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0035840 _____ () C:\Program Files\1038.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0037888 _____ () C:\Program Files\1040.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0035840 _____ () C:\Program Files\1041.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0031744 _____ () C:\Program Files\1042.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0037376 _____ () C:\Program Files\1043.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0033280 _____ () C:\Program Files\1044.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0034816 _____ () C:\Program Files\1045.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0034816 _____ () C:\Program Files\1046.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0034304 _____ () C:\Program Files\1048.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0033280 _____ () C:\Program Files\1049.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0032768 _____ () C:\Program Files\1053.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0033280 _____ () C:\Program Files\1055.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0025088 _____ () C:\Program Files\2052.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0034816 _____ () C:\Program Files\2070.mst
2009-02-17 10:47 - 2009-02-17 10:47 - 0000491 _____ () C:\Program Files\Custom.ini
2009-02-17 10:47 - 2009-02-17 10:47 - 0004619 _____ () C:\Program Files\Cyberlink.MD5
2009-02-17 10:47 - 2009-02-17 10:47 - 45283766 _____ () C:\Program Files\Data1.cab
2009-02-17 10:46 - 2009-02-17 10:46 - 0000047 _____ () C:\Program Files\Define.ini
2009-02-17 10:45 - 2009-02-17 10:45 - 0000622 _____ () C:\Program Files\HPTV.sim
2009-02-17 10:47 - 2009-02-17 10:47 - 0000204 _____ () C:\Program Files\info.ini
2009-02-17 10:46 - 2009-02-17 10:46 - 8524569 _____ (Macrovision Corporation) C:\Program Files\ISSetup.dll
2009-02-17 10:47 - 2009-02-17 10:47 - 4007936 _____ () C:\Program Files\MediaSmart TV.msi
2009-02-17 10:47 - 2009-02-17 10:47 - 0000182 _____ () C:\Program Files\Product.ini
2007-06-01 14:54 - 2007-06-01 14:54 - 0316976 _____ (Macrovision Corporation                                   ) C:\Program Files\setup.exe
2009-02-17 10:47 - 2009-02-17 10:47 - 0002079 _____ () C:\Program Files\Setup.ini
2007-10-18 17:54 - 2007-10-18 17:54 - 1129289 _____ () C:\Program Files\setup.isn
2009-02-09 16:27 - 2009-02-09 16:27 - 0094208 _____ ( ) C:\Program Files\SKUtil.dll
2009-02-17 10:34 - 2009-02-17 10:34 - 0004075 _____ () C:\Program Files\sp42505.cva
2009-02-13 12:10 - 2009-02-13 12:10 - 0001513 _____ () C:\Program Files\sp42505.txt
2009-02-17 10:47 - 2009-02-17 10:47 - 0000185 _____ () C:\Program Files\ureg.ini
2008-08-14 20:58 - 2008-08-14 20:58 - 0094208 _____ (CyberLink Corp.) C:\Program Files\VerCheck.dll
2009-02-13 12:10 - 2009-02-13 12:10 - 0000333 _____ () C:\Program Files\wssp42505.txt
2009-11-29 20:31 - 2009-11-29 20:31 - 0000000 _____ () C:\Program Files (x86)\error.dat
2009-09-13 20:33 - 2009-09-13 20:33 - 0036983 _____ () C:\Program Files (x86)\uninstal.log
2013-09-25 08:18 - 2015-10-01 10:31 - 0000093 _____ () C:\Users\Jason\AppData\Roaming\ARCompanion.log
2011-12-10 21:50 - 2011-12-10 21:50 - 0026311 _____ () C:\Users\Jason\AppData\Roaming\UserTile.png
2009-09-12 21:16 - 2009-09-12 21:16 - 0000000 _____ () C:\Users\Jason\AppData\Local\AtStart.txt
2009-09-13 16:24 - 2015-10-09 19:02 - 0006836 _____ () C:\Users\Jason\AppData\Local\d3d9caps.dat
2012-01-08 17:08 - 2012-03-01 19:11 - 0000732 _____ () C:\Users\Jason\AppData\Local\d3d9caps64.dat
2009-09-14 07:24 - 2015-08-19 20:56 - 0120832 _____ () C:\Users\Jason\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-03-08 21:19 - 2011-03-08 21:20 - 0429294 _____ () C:\Users\Jason\AppData\Local\dd_vcredistMSI0528.txt
2011-03-08 21:20 - 2011-03-08 21:20 - 0355668 _____ () C:\Users\Jason\AppData\Local\dd_vcredistMSI05FF.txt
2011-04-24 12:25 - 2011-04-24 12:27 - 0472012 _____ () C:\Users\Jason\AppData\Local\dd_vcredistMSI44AC.txt
2011-04-24 12:27 - 2011-04-24 12:29 - 0470466 _____ () C:\Users\Jason\AppData\Local\dd_vcredistMSI4631.txt
2011-03-08 21:19 - 2011-03-08 21:20 - 0012250 _____ () C:\Users\Jason\AppData\Local\dd_vcredistUI0528.txt
2011-03-08 21:20 - 2011-03-08 21:20 - 0012202 _____ () C:\Users\Jason\AppData\Local\dd_vcredistUI05FF.txt
2011-04-24 12:25 - 2011-04-24 12:27 - 0013100 _____ () C:\Users\Jason\AppData\Local\dd_vcredistUI44AC.txt
2011-04-24 12:27 - 2011-04-24 12:29 - 0012988 _____ () C:\Users\Jason\AppData\Local\dd_vcredistUI4631.txt
2009-09-12 21:16 - 2009-09-12 21:16 - 0000000 _____ () C:\Users\Jason\AppData\Local\DSwitch.txt
2010-09-10 20:33 - 2014-03-19 07:39 - 0000000 _____ () C:\Users\Jason\AppData\Local\FnF4.txt
2010-03-22 19:29 - 2010-03-22 19:29 - 0004096 ____H () C:\Users\Jason\AppData\Local\keyfile3.drm
2009-09-12 21:16 - 2009-09-12 21:16 - 0000000 _____ () C:\Users\Jason\AppData\Local\QSwitch.txt
2014-02-25 22:37 - 2014-02-25 22:37 - 1364794 _____ () C:\Users\Jason\AppData\Local\tmp008.JPG
2014-03-02 22:43 - 2014-03-02 22:43 - 1334240 _____ () C:\Users\Jason\AppData\Local\tmp018.JPG
2014-03-02 23:42 - 2014-03-02 23:42 - 0118076 _____ () C:\Users\Jason\AppData\Local\tmpC5A.JPG
2012-12-03 13:36 - 2014-03-02 17:26 - 0648395 _____ () C:\Users\Jason\AppData\Local\tmpPHOTO.0
2014-03-02 17:26 - 2014-03-02 17:26 - 0645680 _____ () C:\Users\Jason\AppData\Local\tmpPHOTO.JPG
2012-08-25 08:23 - 2012-08-25 08:23 - 0000000 _____ () C:\Users\Jason\AppData\Local\{2FE8A93A-2F5F-4652-8A5D-EC2A678C08A0}
2010-03-25 21:31 - 2010-03-25 21:31 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2009-09-12 21:16 - 2016-04-22 18:05 - 0140578 _____ () C:\ProgramData\HPWALog.txt
2012-01-08 10:16 - 2016-02-06 17:54 - 0001255 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2009-05-14 05:03 - 2009-05-14 05:03 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2009-01-13 10:52 - 2009-01-13 10:53 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-05-14 05:02 - 2009-05-14 05:02 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2009-01-13 10:44 - 2009-01-13 10:46 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-05-14 05:01 - 2009-05-14 05:01 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2009-05-14 05:03 - 2009-05-14 05:03 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2009-01-13 10:43 - 2009-01-13 10:44 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-01-13 10:46 - 2009-01-13 10:52 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2009-05-14 05:03 - 2009-05-14 05:03 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

Some files in TEMP:
====================
C:\Users\Jason\AppData\Local\Temp\0028221276722743mcinst.exe
C:\Users\Jason\AppData\Local\Temp\392j10ts.dll
C:\Users\Jason\AppData\Local\Temp\4n8snnf0.dll
C:\Users\Jason\AppData\Local\Temp\ARCompanionForSession1.exe
C:\Users\Jason\AppData\Local\Temp\AutoRun.exe
C:\Users\Jason\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Jason\AppData\Local\Temp\ConfigurationWizard.exe
C:\Users\Jason\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Jason\AppData\Local\Temp\drm_dyndata_7290008.dll
C:\Users\Jason\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Jason\AppData\Local\Temp\FlashPlayerUpdate01.exe
C:\Users\Jason\AppData\Local\Temp\FlashPlayerUpdate02.exe
C:\Users\Jason\AppData\Local\Temp\h8zywrrw.dll
C:\Users\Jason\AppData\Local\Temp\HPQSi.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u17-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u19-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u20-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u21-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u22-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Jason\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Jason\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\Jason\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Jason\AppData\Local\Temp\mxo9iji1.dll
C:\Users\Jason\AppData\Local\Temp\rdhvomzk.dll
C:\Users\Jason\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jason\AppData\Local\Temp\SP45482.exe
C:\Users\Jason\AppData\Local\Temp\SP46731.exe
C:\Users\Jason\AppData\Local\Temp\udfbxl2k.dll
C:\Users\Jason\AppData\Local\Temp\zxvacef6.dll
C:\Users\Jason\AppData\Local\Temp\_is1E2F.exe
C:\Users\Jason\AppData\Local\Temp\_is7D59.exe
C:\Users\Jason\AppData\Local\Temp\_is8027.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-04-22 17:38

==================== End of FRST.txt ============================