Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Cannot create system restore points and flash drives will not install

Started by s73v3nd , Dec 26 2013 06:50 PM

This topic is locked

#46
s73v3nd

Posted 08 January 2014 - 06:12 PM

Member

Topic Starter
Member
34 posts

I also cannot fully update windows. It says restart to update, but it never configures to 100%. When I start up my laptop again the 1 update is still available for installation.

#47
JSntgRvr

Posted 08 January 2014 - 08:14 PM

Global Moderator

Global Moderator
11,565 posts

Which of the Updates fails to install? There is a Windows Update Log in the C:\Windows Folder. Copy and paste the last 50 lines of this log in a reply.

Go to Gateway Support and select your Operating System, then download and install the following:

Touch Pad Driver by ELANTECH

Audio Driver by Realtek

Click on the Start menu. Type Recovery. Is there a Gateway Recovery Management option?

#48
s73v3nd

Posted 08 January 2014 - 08:27 PM

Member

Topic Starter
Member
34 posts

2014-01-08 20:22:09:257 488 950 DnldMgr * Update is not allowed to download due to regulation.
2014-01-08 20:22:09:257 488 950 DnldMgr Regulation: {7971F918-A847-4430-9279-4A52D1EFE18D} - Update C83ADC1E-410D-44DD-8AE5-8938379D670C is "PerUpdate" regulated and can NOT download. Sequence 896 vs AcceptRate 100.
2014-01-08 20:22:09:257 488 950 DnldMgr *********** DnldMgr: New download job [UpdateId = {46953317-9ED4-49B3-9D2E-0463DFFEC251}.200] ***********
2014-01-08 20:22:09:273 488 950 DnldMgr * Queueing update for download handler request generation.
2014-01-08 20:22:09:273 488 950 DnldMgr Generating download request for update {46953317-9ED4-49B3-9D2E-0463DFFEC251}.200
2014-01-08 20:22:09:335 488 94c AU AU checked download status and it changed: Downloading is not paused
2014-01-08 20:22:09:335 488 94c AU AU setting pending client directive to 'Download Progress'
2014-01-08 20:22:09:616 488 950 Handler Generating request for CBS update 46953317-9ED4-49B3-9D2E-0463DFFEC251 in sandbox C:\Windows\SoftwareDistribution\Download\edf0cbadbc2bf073def479727f5016f8
2014-01-08 20:22:09:616 488 950 Handler Selected payload type is ptExpress
2014-01-08 20:22:09:710 488 950 Handler UH: DpxRestoreJob returned 0x80070002
2014-01-08 20:22:09:710 488 950 Handler Detected download state is dsHavePackage
2014-01-08 20:22:11:488 488 950 Handler Request generation for CBS update complete with hr=0x0 and pfResetSandbox=0
2014-01-08 20:22:11:488 488 950 DnldMgr *********** DnldMgr: New download job [UpdateId = {C83ADC1E-410D-44DD-8AE5-8938379D670C}.202] ***********
2014-01-08 20:22:11:488 488 950 DnldMgr Regulation: {7971F918-A847-4430-9279-4A52D1EFE18D} - Update C83ADC1E-410D-44DD-8AE5-8938379D670C is "PerUpdate" regulated and can NOT download. Sequence 896 vs AcceptRate 100.
2014-01-08 20:22:11:488 488 950 DnldMgr * Update is not allowed to download due to regulation.
2014-01-08 20:22:11:488 488 950 DnldMgr Regulation: {7971F918-A847-4430-9279-4A52D1EFE18D} - Update C83ADC1E-410D-44DD-8AE5-8938379D670C is "PerUpdate" regulated and can NOT download. Sequence 896 vs AcceptRate 100.
2014-01-08 20:22:11:488 488 950 DnldMgr *********** DnldMgr: New download job [UpdateId = {46953317-9ED4-49B3-9D2E-0463DFFEC251}.200] ***********
2014-01-08 20:22:11:488 488 950 DnldMgr * All files for update were already downloaded and are valid.
2014-01-08 20:22:11:488 488 950 Agent *********
2014-01-08 20:22:11:488 488 94c AU >>## RESUMED ## AU: Download update [UpdateId = {D72AFBA3-193D-4374-B91D-6AF4DB6D0D45}, succeeded]
2014-01-08 20:22:11:488 488 950 Agent ** END ** Agent: Downloading updates [CallerId = AutomaticUpdates]
2014-01-08 20:22:11:488 488 950 Agent *************
2014-01-08 20:22:11:488 488 94c AU AU checked download status and it changed: Downloading is paused
2014-01-08 20:22:11:488 488 94c AU Setting AU scheduled install time to 2014-01-09 09:00:00
2014-01-08 20:22:11:488 488 94c AU Successfully wrote event for AU health state:0
2014-01-08 20:22:11:488 488 94c AU Successfully wrote event for AU health state:0
2014-01-08 20:22:13:859 488 950 Report REPORT EVENT: {87846538-0555-4B87-9DD1-BA47260FBFEA} 2014-01-08 20:22:11:488-0600 1 188 102 {00000000-0000-0000-0000-000000000000} 0 0 AutomaticUpdates Success Content Install Installation Ready: The following updates are downloaded and ready for installation. This computer is currently scheduled to install these updates on ‎Thursday, ‎January ‎09, ‎2014 at 3:00 AM: - Update for Windows 7 for x64-based Systems (KB2853952)
2014-01-08 20:22:13:859 488 950 Report CWERReporter finishing event handling. (00000000)
2014-01-08 20:22:24:342 488 fb0 AU No pending client directive
2014-01-08 20:22:59:543 488 c34 AU Getting featured update notifications. fIncludeDismissed = true
2014-01-08 20:22:59:544 488 c34 AU No featured updates available.
2014-01-08 20:23:11:629 488 f0 AU ########### AU: Setting new AU options ###########
2014-01-08 20:23:11:629 488 f0 AU Setting AU Approval Type to 3
2014-01-08 20:23:11:630 488 f0 AU Successfully wrote event for AU health state:0
2014-01-08 20:23:11:630 488 f0 AU # Policy changed, AU refresh required = No
2014-01-08 20:23:11:630 488 f0 AU # Approval type: Pre-install notify (User preference)
2014-01-08 20:23:11:630 488 f0 AU # Auto-install minor updates: No (User preference)
2014-01-08 20:23:11:630 488 f0 AU # Will interact with non-admins (Non-admins are elevated (User preference))
2014-01-08 20:23:11:630 488 f0 AU AU settings changed through User Preference.
2014-01-08 20:23:11:630 488 f0 AU Successfully wrote event for AU health state:0
2014-01-08 20:23:11:633 488 f0 AU Successfully wrote event for AU health state:0
2014-01-08 20:23:11:890 488 f0 AU Getting featured update notifications. fIncludeDismissed = true
2014-01-08 20:23:11:890 488 f0 AU No featured updates available.
2014-01-08 20:23:14:154 488 a3c AU Getting featured update notifications. fIncludeDismissed = true
2014-01-08 20:23:14:154 488 a3c AU No featured updates available.
2014-01-08 20:23:16:630 488 950 Report CWERReporter finishing event handling. (00000000)
2014-01-08 20:23:21:825 488 f0 AU Getting featured update notifications. fIncludeDismissed = true
2014-01-08 20:23:21:825 488 f0 AU No featured updates available.
2014-01-08 20:23:24:433 488 a3c AU Getting featured update notifications. fIncludeDismissed = true
2014-01-08 20:23:24:434 488 a3c AU No featured updates available.

Yes there is a Gateway Recovery Management.

#49
JSntgRvr

Posted 09 January 2014 - 09:59 AM

Global Moderator

Global Moderator
11,565 posts

The only update mentioned in that report is update KB2853952. It requested me to logon into my hotmail account to have access to it.

In regard to the Gateway Recovery Manager, when selected, there are two options, a full recovery (not recommended), and the recovery of the software and drivers. You can select the second option to reinstall your drivers needed to resolve the hardware issue.

Keep me posted.

#50
s73v3nd

Posted 09 January 2014 - 04:49 PM

Member

Topic Starter
Member
34 posts

The update installs, but when windows tries to configure it, it just stays at 0% and does not install.

#51
JSntgRvr

Posted 09 January 2014 - 06:08 PM

Global Moderator

Global Moderator
11,565 posts

Try this.

Open the built in Administrator account. You can do that by opening an administrator command prompt (Start->type CMD and press CTRL+SHIFT+ENTER). Copy and paste the following and press Enter:

net user administrator /active:yes

Type exit and restart the computer.

Logon into that account and bring on the update. When restarting, logon once again into the administrator account.

To turn off this account copy and paste the following at an administrator command prompt and press Enter:

net user administrator /active:no

Then Exit to return to Windows.

#52
s73v3nd

Posted 09 January 2014 - 08:55 PM

Member

Topic Starter
Member
34 posts

It did not work.

#53
JSntgRvr

Posted 10 January 2014 - 07:01 AM

Global Moderator

Global Moderator
11,565 posts

Lets check another service:

At a command prompt type (or copy and paste) the following commands and press Enter:

Reg query HKLM\SYSTEM\CurrentControlSet\Services\SDRSVC /s >"%Userprofile%/desktop/Report.txt"

This should create a Report on your desktop. Please post its contents in a reply.

Run FRST as you did before.

Type the following in the edit box on FRST, after "Search:".

sdrsvc.dll

It then should look like:

Search: sdrsvc.dll

Click Search button and post the log (Search.txt) it makes on the USB drive in your next reply.

#54
s73v3nd

Posted 10 January 2014 - 01:43 PM

Member

Topic Starter
Member
34 posts

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SDRSVC
DisplayName REG_SZ Windows Backup
ErrorControl REG_DWORD 0x1
ImagePath REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k SDRSVC
Start REG_DWORD 0x2
Type REG_DWORD 0x10
Description REG_SZ @%SystemRoot%\system32\sdrsvc.dll,-102
DependOnService REG_MULTI_SZ RPCSS
ObjectName REG_SZ localSystem
ServiceSidType REG_DWORD 0x1
RequiredPrivileges REG_MULTI_SZ SeBackupPrivilege\0SeRestorePrivilege\0SeSecurityPrivilege\0SeTakeOwnershipPrivilege\0SeCreateSymbolicLinkPrivilege\0SeAssignPrimaryTokenPrivilege\0SeIncreaseQuotaPrivilege\0SeTcbPrivilege\0SeSystemEnvironmentPrivilege

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SDRSVC\Parameters
ServiceDll REG_EXPAND_SZ %Systemroot%\System32\SDRSVC.dll

Farbar Recovery Scan Tool (x64) Version: 10-01-2014
Ran by Home at 2014-01-10 10:49:58
Running from C:\Users\Home\Desktop\New folder
Boot Mode: Normal

================== Search: "sdrsvc.dll" ===================

C:\Windows\winsxs\amd64_microsoft-windows-safedocs-main_31bf3856ad364e35_6.1.7601.17514_none_832fc1bb7d681e0d\sdrsvc.dll
[2010-11-20 21:25] - [2010-11-20 21:25] - 0170496 ____A (Microsoft Corporation) 6EA4234DC55346E0709560FE7C2C1972

C:\Windows\System32\sdrsvc.dll
[2010-11-20 21:25] - [2010-11-20 21:25] - 0170496 ____A (Microsoft Corporation) 6EA4234DC55346E0709560FE7C2C1972

====== End Of Search ======

#55
JSntgRvr

Posted 10 January 2014 - 06:11 PM

Global Moderator

Global Moderator
11,565 posts

That service is set to start automatically, but I didn't see it in the list. It is for Windows Backup.

Run this command (press the Windows Key+R, then copy and paste the command on the line, click OK)and post the contents of the Report.txt that will be created on the desktop.

CMD /C Set >"%Userprofile%/desktop/Report.txt"

Run also Services.msc

Click and start the following services:

Windows Backup
Volume Shadow Copy
Microfoft Software Shadow Copy Provider

Once done, attempt to create a System Restore point. If there is an error while attempting to start these services, please let me know.

Update and Run FRST. Put a checkmark on Addition and Drivers MD5. Click on Scan. Post the FRST.txt log as well as the additional.txt log.

#56
s73v3nd

Posted 10 January 2014 - 06:29 PM

Member

Topic Starter
Member
34 posts

ALLUSERSPROFILE=C:\ProgramData
APPDATA=C:\Users\Home\AppData\Roaming
CommonProgramFiles=C:\Program Files\Common Files
CommonProgramFiles(x86)=C:\Program Files (x86)\Common Files
CommonProgramW6432=C:\Program Files\Common Files
COMPUTERNAME=HOME-PC
ComSpec=C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Users\Home
LOCALAPPDATA=C:\Users\Home\AppData\Local
LOGONSERVER=\\HOME-PC
NUMBER_OF_PROCESSORS=4
OS=Windows_NT
Path=C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\Windows Live\Shared
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE=AMD64
PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=2505
ProgramData=C:\ProgramData
ProgramFiles=C:\Program Files
ProgramFiles(x86)=C:\Program Files (x86)
ProgramW6432=C:\Program Files
PROMPT=$P$G
PSModulePath=C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
PUBLIC=C:\Users\Public
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\Windows
TEMP=C:\Users\Home\AppData\Local\Temp
TMP=C:\Users\Home\AppData\Local\Temp
USERDOMAIN=Home-PC
USERNAME=Home
USERPROFILE=C:\Users\Home
windir=C:\Windows
windows_tracing_flags=3
windows_tracing_logfile=C:\BVTBin\Tests\installpackage\csilogfile.log

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-01-2014
Ran by Home (administrator) on HOME-PC on 10-01-2014 18:20:32
Running from C:\Users\Home\Desktop\New folder
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SystemPropertiesProtection.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe [860040 2011-01-05] (Acer Incorporated)
HKLM\...\Run: [MouseDriver] - C:\Windows\System32\TiltWheelMouse.exe [241152 2010-11-01] (Pixart Imaging Inc)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\BackupManagerTray.exe [258304 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe [154144 2010-07-29] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Gateway\Screensaver\run_Gateway.exe [154144 2010-07-29] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {41F320E5-01C1-45A3-9A2B-BC030E805EFA} - No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Tcpip\Parameters: [DhcpNameServer] 68.105.28.12 68.105.29.12 68.105.28.11

FireFox:
========
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\ia82xibe.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @bestbuy.com/npBestBuyPcAppDetector,version=1.0 - C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @bestbuy.com/npBestBuyPcAppDetector,version=1.0 - C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @ogplanet.com/npOGPPlugin - C:\Windows\system32\npOGPPlugin.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Home\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1
CHR Extension: (Adblock Plus) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0
CHR Extension: (Google Search) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1
CHR Extension: (Google Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKCU\...\Chrome\Extension: [efofpgodgejpmjgbpjdblepalcommejk] - C:\Users\Home\AppData\Local\CRE\efofpgodgejpmjgbpjdblepalcommejk.crx
CHR HKLM-x32\...\Chrome\Extension: [efofpgodgejpmjgbpjdblepalcommejk] - C:\Users\Home\AppData\Local\CRE\efofpgodgejpmjgbpjdblepalcommejk.crx

==================== Services (Whitelisted) =================

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

==================== Drivers (Whitelisted) ====================

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-06-24] (AVG Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [25088 2009-04-16] ()
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 79059559E89D06E8B80CE2944BE20228
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\drivers\avgtpx64.sys CA0D66B63DBD2A22D0AC9B758D67B8E8
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bcmwl664.sys 11F844B46B631337395651ABE9C4167B
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\system32\drivers\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B
C:\Windows\System32\DRIVERS\BrSerIb.sys 63A00CDBEB300522C49EC7CA77324060
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\BrUsbSIb.sys BBCFD6C6EF66449F55AF1BFDB08C9B12
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\System32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys ==> MD5 is legit
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ETD.sys 0975BF32399A24117E317B5BF1D5D0AA
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ggflt.sys A4198F2BD8AA592CB90476277A81B5E1
C:\Windows\System32\DRIVERS\ggsemc.sys D266350BDAAB9EB6C1AEC370EEAAFF3A
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HECIx64.sys B6AC71AAA2B10848F57FC49D55A651AF
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\drivers\iaStor.sys 1384872112E8E7FD5786ECEB8BDDF4C9
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\System32\DRIVERS\igdkmd64.sys F4F91789C7C7A159CE8215C1F69F2A85
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Impcd.sys DD587A55390ED2295BCE6D36AD567DA9
C:\Windows\System32\drivers\RTKVHD64.sys 235362D403D9D677514649D88DB31914
C:\Windows\System32\DRIVERS\IntcDAud.sys 03C74719D48056A1078F3A51CEB76BAA
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\k57nd60a.sys 37E053A2CF8F0082B689ED74106E0CEC
C:\Windows\system32\drivers\kbdclass.sys ==> MD5 is legit
C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 8F489706472F7E9A06BAAA198703FA64
C:\Windows\System32\Drivers\ksecpkg.sys 868A2CAAB12EFC7A021682BCA0EEC54C
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbam.sys 0BB97D43299910CBFBA59C461B99B910
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0
C:\Windows\system32\drivers\NTIDrvr.sys 64DDD0DEE976302F4BD93E5EFCC2F013
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RtsUStor.sys 0E3DCF76F11DC431B088A2DFD7265CDA
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Sftfslh.sys 2046AA7491DE7EFA4D70E615D9BC9D09
C:\Windows\System32\DRIVERS\Sftplaylh.sys 0E0446BC4D51BE4263ACB7E33491191C
C:\Windows\System32\DRIVERS\Sftredirlh.sys C5FB982CD266E604ED3142102C26D62C
C:\Windows\System32\DRIVERS\Sftvollh.sys 2575511AF67AA1FA068CCC4918E2C2A3
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Windows\system32\drivers\TsUsbGD.sys 9CC2CCAE8A84820EAECB886D477CBCB8
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\t_mouse.sys F4EF9498A073122D6139CB2A19554E08
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\system32\drivers\UBHelper.sys 2E22C1FD397A5A9FFEF55E9D1FC96C00
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbccgp.sys 6F1A3157A1C89435352CEB543CDB359C
C:\Windows\system32\drivers\usbcir.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbehci.sys C025055FE7B87701EB042095DF1A2D7B
C:\Windows\system32\drivers\usbhub.sys 287C6C9410B111B68B52CA298F7B8C24
C:\Windows\system32\drivers\usbohci.sys 9840FC418B4CBD632D3D0A667A725C31
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys 62069A34518BCF9C1FD9E74B3F6DB7CD
C:\Windows\System32\Drivers\usbvideo.sys 454800C2BC7F3927CE030141EE4F4C50
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit
C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys 0C0195C48B6B8582FA6F6373032118DA
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-10 10:49 - 2014-01-10 18:17 - 00001485 _____ C:\Users\Home\Desktop\Report.txt
2014-01-09 19:42 - 2014-01-09 19:42 - 00007602 _____ C:\Users\Administrator\AppData\Local\Resmon.ResmonCfg
2014-01-09 19:40 - 2014-01-09 19:40 - 00109296 _____ C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-09 19:40 - 2014-01-09 19:40 - 00001420 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-09 19:40 - 2014-01-09 19:40 - 00000258 __RSH C:\Users\Administrator\ntuser.pol
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Macromedia
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2014-01-09 19:39 - 2014-01-09 19:40 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-09 19:39 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator
2014-01-09 19:39 - 2014-01-09 19:39 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
2014-01-09 19:39 - 2012-04-17 19:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\Microsoft Help
2014-01-09 19:39 - 2009-07-13 22:54 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-09 19:39 - 2009-07-13 22:49 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-09 15:26 - 2014-01-09 15:26 - 00333045 _____ C:\Users\Home\Downloads\Windows6.1-KB2853952-x86 (2).msu
2014-01-09 15:23 - 2014-01-09 15:23 - 01528184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\GenuineCheck (2).exe
2014-01-09 15:22 - 2014-01-09 15:22 - 00333045 _____ C:\Users\Home\Downloads\Windows6.1-KB2853952-x86.msu
2014-01-09 15:22 - 2014-01-09 15:22 - 00333045 _____ C:\Users\Home\Downloads\Windows6.1-KB2853952-x86 (1).msu
2014-01-09 15:21 - 2014-01-09 15:21 - 01528184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\GenuineCheck (1).exe
2014-01-09 15:21 - 2014-01-09 15:21 - 00000000 ____D C:\ProgramData\Windows Genuine Advantage
2014-01-09 15:18 - 2014-01-09 15:18 - 00347816 _____ (Microsoft Corporation) C:\Users\Home\Downloads\MicrosoftFixit.Devices.LB.147312729506220663.1.1.Run.exe
2014-01-09 15:06 - 2014-01-09 15:06 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2014-01-09 15:04 - 2014-01-09 15:04 - 00000000 ____D C:\Program Files\Realtek
2014-01-09 15:04 - 2010-06-07 01:27 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-01-09 14:48 - 2014-01-09 14:48 - 01528184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\GenuineCheck.exe
2014-01-09 01:05 - 2014-01-09 01:05 - 00347816 _____ (Microsoft Corporation) C:\Users\Home\Downloads\MicrosoftFixit.wu.RNP.14731267829910677.1.1.Run.exe
2014-01-08 20:28 - 2014-01-08 20:28 - 00000000 ____D C:\Users\Home\Desktop\TouchPad_Elantech_7.0.6.5_Win7x86x64
2014-01-08 20:27 - 2014-01-08 20:27 - 13790674 _____ C:\Users\Home\Downloads\TouchPad_ELANTECH_7.0.6.5_W7x86W7x64_A.zip
2014-01-08 18:08 - 2014-01-08 18:08 - 00000000 ____D C:\ProgramData\Oracle
2014-01-08 17:47 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-08 17:47 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-08 17:47 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-08 17:47 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-08 17:44 - 2014-01-08 17:47 - 00004746 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2014-01-08 17:21 - 2014-01-08 17:21 - 00915368 _____ (Oracle Corporation) C:\Users\Home\Downloads\chromeinstall-7u45 (2).exe
2014-01-08 14:22 - 2014-01-08 14:24 - 32200464 _____ (PandoraTV) C:\Users\Home\Downloads\3.8.0.117_20140108021056.exe
2014-01-07 19:58 - 2014-01-07 19:58 - 00000037 ___SH C:\Users\Home\AppData\Local\70149b02515b3bb20dd492.47983420
2014-01-07 19:58 - 2014-01-07 19:58 - 00000000 ____D C:\Users\Home\AppData\Local\MetaGeek,_LLC
2014-01-07 19:34 - 2014-01-07 19:34 - 06082560 _____ C:\Users\Home\Downloads\inSSIDerOffice (1).msi
2014-01-06 19:29 - 2014-01-08 00:05 - 00001945 _____ C:\Windows\epplauncher.mif
2014-01-06 15:25 - 2013-05-09 23:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-06 15:25 - 2013-05-09 23:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-06 15:25 - 2013-05-09 22:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-06 15:25 - 2013-05-09 22:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-06 14:44 - 2013-11-23 12:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-06 14:44 - 2013-11-23 11:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-06 14:44 - 2013-10-29 20:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-06 14:44 - 2013-10-29 20:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-06 14:44 - 2013-10-03 20:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-06 14:44 - 2013-10-03 20:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-06 14:44 - 2013-10-03 20:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-06 14:44 - 2013-10-03 19:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-01-06 14:44 - 2013-10-03 19:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-06 14:44 - 2013-10-03 19:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-01-06 14:44 - 2013-08-27 19:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-01-06 14:44 - 2013-07-04 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-06 14:44 - 2013-07-04 06:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-06 14:44 - 2013-07-04 05:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-06 14:44 - 2013-07-04 05:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-06 14:44 - 2013-07-04 04:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-05 23:57 - 2010-06-22 18:03 - 02399848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-01-05 23:57 - 2010-06-22 18:03 - 02004072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-01-05 23:57 - 2010-06-22 18:03 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-01-05 23:57 - 2010-06-22 18:03 - 00476264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-01-05 23:57 - 2010-06-22 18:03 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-01-05 23:57 - 2010-06-22 18:03 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-01-05 23:57 - 2010-06-22 18:02 - 01216104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-01-05 23:57 - 2010-06-22 18:02 - 00155752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-01-05 23:57 - 2010-06-22 18:02 - 00073832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2014-01-05 23:57 - 2010-06-14 14:19 - 00220496 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK64.dll
2014-01-05 23:57 - 2010-06-14 14:19 - 00078672 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO64.dll
2014-01-05 23:57 - 2010-06-14 14:18 - 00078672 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM64.dll
2014-01-05 23:57 - 2010-06-14 14:18 - 00071504 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-01-05 23:57 - 2010-05-14 15:21 - 00123152 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-01-05 23:57 - 2010-05-14 10:04 - 00124176 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-01-05 23:57 - 2010-05-13 22:28 - 00123664 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-01-05 23:57 - 2010-05-06 17:34 - 00335192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-01-05 23:57 - 2010-05-06 17:34 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-01-05 23:57 - 2010-05-06 16:43 - 02601816 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-01-05 23:57 - 2010-05-06 16:43 - 01736536 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2014-01-05 23:57 - 2010-04-27 13:50 - 00330656 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-01-05 23:57 - 2010-04-14 17:56 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-01-05 23:57 - 2010-01-26 11:38 - 00168288 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-01-05 23:57 - 2010-01-05 13:41 - 01325328 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:41 - 00489744 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:41 - 00474896 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:40 - 01178384 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:40 - 01110800 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:40 - 00504592 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:40 - 00315152 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:40 - 00268560 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-01-05 23:57 - 2010-01-05 13:40 - 00265488 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-01-05 23:57 - 2009-12-15 18:26 - 00372936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-01-05 23:57 - 2009-12-15 18:26 - 00201928 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-01-05 23:57 - 2009-12-15 18:26 - 00099016 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-01-05 23:57 - 2009-12-15 18:26 - 00076488 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-01-05 23:57 - 2009-12-11 09:55 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-01-05 23:57 - 2009-12-11 09:55 - 00307920 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-01-05 23:57 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-01-05 23:57 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-01-05 23:57 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-01-05 23:57 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-01-05 23:57 - 2009-11-18 18:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-01-05 23:57 - 2009-11-17 18:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-01-05 23:11 - 2014-01-05 23:11 - 00000000 ____D C:\Users\Home\Desktop\Audio_Realtek_6.0.1.6141_Win7x86x64
2014-01-05 23:00 - 2014-01-05 23:11 - 100412791 _____ C:\Users\Home\Downloads\Audio_Realtek_6.0.1.6141_W7x86W7x64_A.zip
2014-01-05 22:59 - 2014-01-05 23:01 - 00014455 _____ C:\Users\Home\AppData\Local\HWVendorDetection.log
2014-01-05 22:59 - 2014-01-05 22:59 - 02240512 _____ (Acer Inc.) C:\Users\Home\Downloads\HWVendorDetection.exe
2014-01-05 12:11 - 2014-01-07 19:25 - 00002190 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-05 12:06 - 2014-01-10 18:20 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-05 12:06 - 2014-01-10 14:18 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-05 12:06 - 2014-01-05 12:15 - 00003890 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-05 12:06 - 2014-01-05 12:15 - 00003638 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-05 12:06 - 2014-01-05 12:10 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-05 12:05 - 2014-01-05 12:05 - 00819176 _____ (Google Inc.) C:\Users\Home\Downloads\ChromeSetup.exe
2014-01-05 11:27 - 2014-01-09 17:31 - 00017844 _____ C:\Windows\DPINST.LOG
2014-01-05 11:15 - 2014-01-05 11:15 - 00001151 _____ C:\Users\Home\Desktop\swpReport.txt
2014-01-03 16:26 - 2014-01-03 16:27 - 00005989 _____ C:\Users\Home\Desktop\VVSReport.txt
2013-12-30 11:52 - 2013-12-30 12:03 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-12-30 11:15 - 2013-12-30 11:15 - 00003288 ____N C:\bootsqm.dat
2013-12-30 11:07 - 2013-12-30 11:07 - 00002166 _____ C:\Users\Home\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-12-30 11:07 - 2013-12-30 11:07 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-12-30 11:06 - 2013-12-30 11:06 - 05045639 _____ C:\Users\Home\Downloads\tweaking.com_windows_repair_aio_setup.exe
2013-12-28 21:06 - 2014-01-10 18:20 - 00000000 ____D C:\Users\Home\Desktop\New folder
2013-12-28 21:05 - 2013-12-28 21:05 - 00000000 ____D C:\Users\Home\Desktop\FRST-OlderVersion
2013-12-28 19:04 - 2013-12-28 19:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-28 17:17 - 2013-12-28 17:17 - 02347384 _____ (ESET) C:\Users\Home\Downloads\esetsmartinstaller_enu.exe
2013-12-28 17:15 - 2013-12-28 17:15 - 01682336 _____ (ESET) C:\Users\Home\Downloads\eset_nod32_antivirus_live_installer.exe
2013-12-28 10:11 - 2013-12-28 10:18 - 00000000 ____D C:\AdwCleaner
2013-12-28 10:06 - 2013-12-28 10:06 - 01233962 _____ C:\Users\Home\Desktop\AdwCleaner.exe
2013-12-28 09:47 - 2013-12-28 09:47 - 00005154 _____ C:\Users\Home\Desktop\JRT.txt
2013-12-28 09:30 - 2013-12-28 09:31 - 06639616 _____ C:\Users\Home\Downloads\inSSIDer-installer.msi
2013-12-28 09:30 - 2013-12-28 09:30 - 04202204 _____ C:\Users\Home\Downloads\Unconfirmed 397757.crdownload
2013-12-28 09:27 - 2013-12-28 09:27 - 01034531 _____ (Thisisu) C:\Users\Home\Desktop\JRT.exe
2013-12-28 09:23 - 2013-12-28 09:23 - 06082560 _____ C:\Users\Home\Downloads\inSSIDerOffice.msi
2013-12-27 09:30 - 2013-12-27 09:30 - 00000000 ____D C:\Users\Home\Documents\Razer
2013-12-26 22:13 - 2013-12-26 22:13 - 00001882 _____ C:\Users\Home\Desktop\FSS.txt
2013-12-26 22:10 - 2013-12-26 22:10 - 00708597 _____ (Farbar) C:\Users\Home\Desktop\FSS.exe
2013-12-26 22:10 - 2013-12-26 22:10 - 00023566 _____ C:\Users\Home\Desktop\Addition.txt
2013-12-26 22:09 - 2014-01-10 10:49 - 00000000 ____D C:\FRST
2013-12-26 22:09 - 2013-12-26 22:10 - 00061454 _____ C:\Users\Home\Desktop\FRST.txt
2013-12-26 18:47 - 2013-12-26 18:47 - 00077310 _____ C:\Users\Home\Desktop\Extras.Txt
2013-12-26 18:46 - 2013-12-26 18:46 - 00086034 _____ C:\Users\Home\Desktop\OTL.Txt
2013-12-26 14:04 - 2013-12-26 13:55 - 46886399 _____ C:\Users\Home\Desktop\CBS.log
2013-12-24 10:06 - 2013-12-24 10:06 - 00001120 _____ C:\Users\Home\Desktop\GameLauncher - Shortcut.lnk
2013-12-23 18:06 - 2013-12-23 18:06 - 00993600 _____ (DivX, LLC) C:\Users\Home\Downloads\DivXWebPlayerInstaller (1).exe
2013-12-23 18:04 - 2013-12-23 18:04 - 00000000 ____D C:\Users\Home\AppData\Roaming\DivX
2013-12-23 17:59 - 2013-12-23 17:59 - 00993600 _____ (DivX, LLC) C:\Users\Home\Downloads\DivXWebPlayerInstaller.exe
2013-12-22 16:21 - 2013-12-22 16:21 - 00000192 _____ C:\Users\Public\Desktop\MapleStory.url
2013-12-21 04:25 - 2013-12-21 04:25 - 00000228 _____ C:\Users\Home\Downloads\u.ini
2013-12-21 02:38 - 2013-12-22 16:21 - 00000000 ____D C:\Users\Home\Desktop\MapleStory
2013-12-21 02:38 - 2013-12-22 13:59 - 00000885 _____ C:\console.log
2013-12-21 02:37 - 2013-12-21 02:38 - 02556712 _____ C:\Users\Home\Downloads\MapleStory_Downloader.exe
2013-12-14 13:52 - 2013-11-26 05:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-14 13:52 - 2013-11-26 04:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-14 13:52 - 2013-11-26 04:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-14 13:52 - 2013-11-26 04:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-14 13:52 - 2013-11-26 03:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-14 13:52 - 2013-11-26 03:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-14 13:52 - 2013-11-26 03:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-14 13:52 - 2013-11-26 03:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-14 13:52 - 2013-11-26 03:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-14 13:52 - 2013-11-26 03:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-14 13:52 - 2013-11-26 03:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-14 13:52 - 2013-11-26 03:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-14 13:52 - 2013-11-26 03:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-14 13:52 - 2013-11-26 03:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-14 13:52 - 2013-11-26 02:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-14 13:52 - 2013-11-26 02:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-14 13:52 - 2013-11-26 02:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-14 13:52 - 2013-11-26 02:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-14 13:52 - 2013-11-26 02:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-14 13:52 - 2013-11-26 02:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-14 13:52 - 2013-11-26 02:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-14 13:52 - 2013-11-26 02:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-14 13:52 - 2013-11-26 01:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-14 13:52 - 2013-11-26 01:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-14 13:52 - 2013-11-26 01:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-14 13:52 - 2013-11-26 01:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-14 13:52 - 2013-11-26 00:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-14 13:52 - 2013-11-26 00:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-14 13:52 - 2013-11-26 00:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-14 13:52 - 2013-11-26 00:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-14 13:52 - 2013-11-26 00:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-13 15:34 - 2013-10-29 19:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-13 15:33 - 2013-10-18 20:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-13 15:33 - 2013-10-18 19:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-13 15:29 - 2013-11-11 20:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-13 15:29 - 2013-11-11 20:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-13 15:28 - 2013-10-11 20:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-13 15:28 - 2013-10-11 20:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-13 15:28 - 2013-10-11 20:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-13 15:28 - 2013-10-11 20:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-13 15:28 - 2013-10-11 19:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-13 15:28 - 2013-10-11 19:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-13 15:28 - 2013-10-11 19:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-13 15:28 - 2013-10-11 19:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-13 15:28 - 2013-10-03 20:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-13 15:28 - 2013-10-03 19:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys

==================== One Month Modified Files and Folders =======

2014-01-10 18:20 - 2014-01-05 12:06 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-10 18:20 - 2013-12-28 21:06 - 00000000 ____D C:\Users\Home\Desktop\New folder
2014-01-10 18:17 - 2014-01-10 10:49 - 00001485 _____ C:\Users\Home\Desktop\Report.txt
2014-01-10 18:17 - 2009-07-13 23:13 - 00783400 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-10 18:01 - 2012-04-16 20:23 - 00000254 _____ C:\Windows\Tasks\HP Photo Creations Messager.job
2014-01-10 17:44 - 2012-06-29 09:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-10 17:21 - 2011-12-02 23:11 - 00000924 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1767396876-1009758469-163787859-1000UA.job
2014-01-10 17:21 - 2011-12-02 23:11 - 00000902 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1767396876-1009758469-163787859-1000Core.job
2014-01-10 17:11 - 2011-08-31 02:06 - 01357252 _____ C:\Windows\WindowsUpdate.log
2014-01-10 14:21 - 2009-07-13 22:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-10 14:21 - 2009-07-13 22:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-10 14:19 - 2013-06-26 05:46 - 00031548 _____ C:\autoupdate.log
2014-01-10 14:18 - 2014-01-05 12:06 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-10 14:16 - 2013-07-30 06:56 - 00214528 _____ C:\Windows\PFRO.log
2014-01-10 14:16 - 2013-07-30 06:56 - 00011350 _____ C:\Windows\setupact.log
2014-01-10 14:16 - 2009-07-13 23:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-10 13:49 - 2013-07-19 17:17 - 00007624 _____ C:\Users\Home\AppData\Local\resmon.resmoncfg
2014-01-10 10:49 - 2013-12-26 22:09 - 00000000 ____D C:\FRST
2014-01-09 22:29 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-09 19:42 - 2014-01-09 19:42 - 00007602 _____ C:\Users\Administrator\AppData\Local\Resmon.ResmonCfg
2014-01-09 19:40 - 2014-01-09 19:40 - 00109296 _____ C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-09 19:40 - 2014-01-09 19:40 - 00001420 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-09 19:40 - 2014-01-09 19:40 - 00000258 __RSH C:\Users\Administrator\ntuser.pol
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Macromedia
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-01-09 19:40 - 2014-01-09 19:40 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2014-01-09 19:40 - 2014-01-09 19:39 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-09 19:40 - 2014-01-09 19:39 - 00000000 ____D C:\Users\Administrator
2014-01-09 19:39 - 2014-01-09 19:39 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
2014-01-09 19:38 - 2012-05-24 13:49 - 00000000 ____D C:\Riot Games
2014-01-09 17:31 - 2014-01-05 11:27 - 00017844 _____ C:\Windows\DPINST.LOG
2014-01-09 15:26 - 2014-01-09 15:26 - 00333045 _____ C:\Users\Home\Downloads\Windows6.1-KB2853952-x86 (2).msu
2014-01-09 15:23 - 2014-01-09 15:23 - 01528184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\GenuineCheck (2).exe
2014-01-09 15:22 - 2014-01-09 15:22 - 00333045 _____ C:\Users\Home\Downloads\Windows6.1-KB2853952-x86.msu
2014-01-09 15:22 - 2014-01-09 15:22 - 00333045 _____ C:\Users\Home\Downloads\Windows6.1-KB2853952-x86 (1).msu
2014-01-09 15:21 - 2014-01-09 15:21 - 01528184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\GenuineCheck (1).exe
2014-01-09 15:21 - 2014-01-09 15:21 - 00000000 ____D C:\ProgramData\Windows Genuine Advantage
2014-01-09 15:18 - 2014-01-09 15:18 - 00347816 _____ (Microsoft Corporation) C:\Users\Home\Downloads\MicrosoftFixit.Devices.LB.147312729506220663.1.1.Run.exe
2014-01-09 15:06 - 2014-01-09 15:06 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2014-01-09 15:04 - 2014-01-09 15:04 - 00000000 ____D C:\Program Files\Realtek
2014-01-09 15:04 - 2011-08-26 02:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-09 14:48 - 2014-01-09 14:48 - 01528184 _____ (Microsoft Corporation) C:\Users\Home\Downloads\GenuineCheck.exe
2014-01-09 01:05 - 2014-01-09 01:05 - 00347816 _____ (Microsoft Corporation) C:\Users\Home\Downloads\MicrosoftFixit.wu.RNP.14731267829910677.1.1.Run.exe
2014-01-08 20:28 - 2014-01-08 20:28 - 00000000 ____D C:\Users\Home\Desktop\TouchPad_Elantech_7.0.6.5_Win7x86x64
2014-01-08 20:27 - 2014-01-08 20:27 - 13790674 _____ C:\Users\Home\Downloads\TouchPad_ELANTECH_7.0.6.5_W7x86W7x64_A.zip
2014-01-08 18:08 - 2014-01-08 18:08 - 00000000 ____D C:\ProgramData\Oracle
2014-01-08 17:47 - 2014-01-08 17:44 - 00004746 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2014-01-08 17:47 - 2013-06-22 18:02 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-08 17:21 - 2014-01-08 17:21 - 00915368 _____ (Oracle Corporation) C:\Users\Home\Downloads\chromeinstall-7u45 (2).exe
2014-01-08 14:24 - 2014-01-08 14:22 - 32200464 _____ (PandoraTV) C:\Users\Home\Downloads\3.8.0.117_20140108021056.exe
2014-01-08 00:05 - 2014-01-06 19:29 - 00001945 _____ C:\Windows\epplauncher.mif
2014-01-07 22:37 - 2009-07-13 23:08 - 00032548 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-07 21:53 - 2011-12-24 15:11 - 00000000 ____D C:\Users\Home\AppData\Local\CrashDumps
2014-01-07 19:58 - 2014-01-07 19:58 - 00000037 ___SH C:\Users\Home\AppData\Local\70149b02515b3bb20dd492.47983420
2014-01-07 19:58 - 2014-01-07 19:58 - 00000000 ____D C:\Users\Home\AppData\Local\MetaGeek,_LLC
2014-01-07 19:34 - 2014-01-07 19:34 - 06082560 _____ C:\Users\Home\Downloads\inSSIDerOffice (1).msi
2014-01-07 19:25 - 2014-01-05 12:11 - 00002190 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-06 19:32 - 2012-01-06 15:55 - 00760122 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-06 18:58 - 2009-07-13 23:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-05 23:29 - 2011-08-26 02:42 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-05 23:11 - 2014-01-05 23:11 - 00000000 ____D C:\Users\Home\Desktop\Audio_Realtek_6.0.1.6141_Win7x86x64
2014-01-05 23:11 - 2014-01-05 23:00 - 100412791 _____ C:\Users\Home\Downloads\Audio_Realtek_6.0.1.6141_W7x86W7x64_A.zip
2014-01-05 23:01 - 2014-01-05 22:59 - 00014455 _____ C:\Users\Home\AppData\Local\HWVendorDetection.log
2014-01-05 22:59 - 2014-01-05 22:59 - 02240512 _____ (Acer Inc.) C:\Users\Home\Downloads\HWVendorDetection.exe
2014-01-05 12:15 - 2014-01-05 12:06 - 00003890 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-05 12:15 - 2014-01-05 12:06 - 00003638 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-05 12:10 - 2014-01-05 12:06 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-05 12:05 - 2014-01-05 12:05 - 00819176 _____ (Google Inc.) C:\Users\Home\Downloads\ChromeSetup.exe
2014-01-05 11:27 - 2013-06-02 16:07 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
2014-01-05 11:27 - 2013-06-02 16:07 - 00000000 ____D C:\Program Files (x86)\Sony Ericsson
2014-01-05 11:26 - 2012-06-07 19:38 - 00000000 ____D C:\Users\Home\AppData\Local\Google
2014-01-05 11:15 - 2014-01-05 11:15 - 00001151 _____ C:\Users\Home\Desktop\swpReport.txt
2014-01-03 16:27 - 2014-01-03 16:26 - 00005989 _____ C:\Users\Home\Desktop\VVSReport.txt
2014-01-01 11:33 - 2013-07-16 09:23 - 00000000 ____D C:\Program Files\Sandboxie
2013-12-30 12:05 - 2011-10-19 19:28 - 00109296 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-30 12:05 - 2009-07-13 22:45 - 00424136 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-30 12:03 - 2013-12-30 11:52 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-12-30 12:00 - 2009-07-13 20:34 - 00000514 _____ C:\Windows\win.ini
2013-12-30 11:15 - 2013-12-30 11:15 - 00003288 ____N C:\bootsqm.dat
2013-12-30 11:07 - 2013-12-30 11:07 - 00002166 _____ C:\Users\Home\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-12-30 11:07 - 2013-12-30 11:07 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-12-30 11:06 - 2013-12-30 11:06 - 05045639 _____ C:\Users\Home\Downloads\tweaking.com_windows_repair_aio_setup.exe
2013-12-29 23:11 - 2013-07-11 13:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-29 22:36 - 2013-04-10 15:28 - 00000000 ____D C:\Users\Home\AppData\Local\Mozilla
2013-12-28 21:05 - 2013-12-28 21:05 - 00000000 ____D C:\Users\Home\Desktop\FRST-OlderVersion
2013-12-28 19:11 - 2013-06-25 09:56 - 00000000 ____D C:\Users\Home\Downloads\Download
2013-12-28 19:05 - 2013-12-28 19:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-28 17:17 - 2013-12-28 17:17 - 02347384 _____ (ESET) C:\Users\Home\Downloads\esetsmartinstaller_enu.exe
2013-12-28 17:15 - 2013-12-28 17:15 - 01682336 _____ (ESET) C:\Users\Home\Downloads\eset_nod32_antivirus_live_installer.exe
2013-12-28 10:18 - 2013-12-28 10:11 - 00000000 ____D C:\AdwCleaner
2013-12-28 10:06 - 2013-12-28 10:06 - 01233962 _____ C:\Users\Home\Desktop\AdwCleaner.exe
2013-12-28 09:47 - 2013-12-28 09:47 - 00005154 _____ C:\Users\Home\Desktop\JRT.txt
2013-12-28 09:32 - 2013-06-23 19:53 - 00000050 _____ C:\Users\Home\Desktop\Windows 7 key.txt
2013-12-28 09:31 - 2013-12-28 09:30 - 06639616 _____ C:\Users\Home\Downloads\inSSIDer-installer.msi
2013-12-28 09:30 - 2013-12-28 09:30 - 04202204 _____ C:\Users\Home\Downloads\Unconfirmed 397757.crdownload
2013-12-28 09:27 - 2013-12-28 09:27 - 01034531 _____ (Thisisu) C:\Users\Home\Desktop\JRT.exe
2013-12-28 09:23 - 2013-12-28 09:23 - 06082560 _____ C:\Users\Home\Downloads\inSSIDerOffice.msi
2013-12-27 09:30 - 2013-12-27 09:30 - 00000000 ____D C:\Users\Home\Documents\Razer
2013-12-26 22:13 - 2013-12-26 22:13 - 00001882 _____ C:\Users\Home\Desktop\FSS.txt
2013-12-26 22:10 - 2013-12-26 22:10 - 00708597 _____ (Farbar) C:\Users\Home\Desktop\FSS.exe
2013-12-26 22:10 - 2013-12-26 22:10 - 00023566 _____ C:\Users\Home\Desktop\Addition.txt
2013-12-26 22:10 - 2013-12-26 22:09 - 00061454 _____ C:\Users\Home\Desktop\FRST.txt
2013-12-26 18:47 - 2013-12-26 18:47 - 00077310 _____ C:\Users\Home\Desktop\Extras.Txt
2013-12-26 18:46 - 2013-12-26 18:46 - 00086034 _____ C:\Users\Home\Desktop\OTL.Txt
2013-12-26 13:55 - 2013-12-26 14:04 - 46886399 _____ C:\Users\Home\Desktop\CBS.log
2013-12-24 10:06 - 2013-12-24 10:06 - 00001120 _____ C:\Users\Home\Desktop\GameLauncher - Shortcut.lnk
2013-12-23 21:20 - 2013-08-09 13:25 - 00000000 ____D C:\Program Files\DivX
2013-12-23 21:20 - 2013-08-09 13:21 - 00000000 ____D C:\ProgramData\DivX
2013-12-23 21:20 - 2013-08-09 13:21 - 00000000 ____D C:\Program Files (x86)\DivX
2013-12-23 18:06 - 2013-12-23 18:06 - 00993600 _____ (DivX, LLC) C:\Users\Home\Downloads\DivXWebPlayerInstaller (1).exe
2013-12-23 18:04 - 2013-12-23 18:04 - 00000000 ____D C:\Users\Home\AppData\Roaming\DivX
2013-12-23 17:59 - 2013-12-23 17:59 - 00993600 _____ (DivX, LLC) C:\Users\Home\Downloads\DivXWebPlayerInstaller.exe
2013-12-23 16:58 - 2012-06-10 08:57 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-12-22 17:23 - 2012-01-06 15:56 - 00000000 ____D C:\Users\Home\AppData\Roaming\SoftGrid Client
2013-12-22 16:21 - 2013-12-22 16:21 - 00000192 _____ C:\Users\Public\Desktop\MapleStory.url
2013-12-22 16:21 - 2013-12-21 02:38 - 00000000 ____D C:\Users\Home\Desktop\MapleStory
2013-12-22 16:17 - 2011-12-24 10:43 - 00000000 ____D C:\ProgramData\NexonUS
2013-12-22 16:17 - 2011-12-24 10:43 - 00000000 ____D C:\Nexon
2013-12-22 13:59 - 2013-12-21 02:38 - 00000885 _____ C:\console.log
2013-12-21 04:37 - 2013-11-29 20:41 - 00000600 _____ C:\Users\Home\PUTTY.RND
2013-12-21 04:25 - 2013-12-21 04:25 - 00000228 _____ C:\Users\Home\Downloads\u.ini
2013-12-21 04:25 - 2013-11-29 20:41 - 00000000 ____D C:\Users\Home\Downloads\utmp
2013-12-21 04:05 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\rescache
2013-12-21 02:38 - 2013-12-21 02:37 - 02556712 _____ C:\Users\Home\Downloads\MapleStory_Downloader.exe
2013-12-21 02:19 - 2013-12-06 16:37 - 00000000 ____D C:\Windows\system32\MRT
2013-12-21 02:18 - 2012-07-18 08:48 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-14 22:45 - 2012-06-29 09:43 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-14 22:45 - 2012-06-29 09:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-14 22:45 - 2011-08-26 03:00 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-13 23:36 - 2012-04-16 21:23 - 00000000 ____D C:\ProgramData\Microsoft Help

Some content of TEMP:
====================
C:\Users\Home\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-12-21 03:56

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-01-2014
Ran by Home at 2014-01-10 18:22:01
Running from C:\Users\Home\Desktop\New folder
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) MUI (x32 Version: 10.1.8 - Adobe Systems Incorporated)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Best Buy pc app (Version: 3.2.2.0 - Best Buy) Hidden
Best Buy pc app (x32 Version: 3.2.2.0 - Best Buy) Hidden
Bing Bar (x32 Version: 7.0.765.0 - Microsoft Corporation)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit NetLink Controller (Version: 14.0.2.3 - Broadcom Corporation)
Canon D530/D560 (Version: 4.1.0.0 - CANON INC.)
Canon MF Toolbox 4.9.1.1.mf13 (x32 Version: 4.9.1.1.mf13 - CANON INC.)
CCleaner (Version: 4.03 - Piriform)
CyberLink PowerDVD 9 (x32 Version: 9.0.3817.50 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.3817.50 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
ETDWare PS/2-x64 7.0.6.5_WHQL (Version: 7.0.6.5 - ELAN Microelectronics Corp.)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287 - Skype Limited)
Flashtool (x32 Version: 0.9.10.1 - Androxyde)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Gateway MyBackup (x32 Version: 2.0.0.68 - NewTech Infosystems)
Gateway Power Management (x32 Version: 5.00.3009 - Gateway Incorporated)
Gateway Recovery Management (x32 Version: 4.05.3500 - Gateway Incorporated)
Gateway Registration (x32 Version: 1.04.3503 - Gateway Incorporated)
Gateway ScreenSaver (x32 Version: 1.1.0806.2010 - Gateway Incorporated)
Gateway Social Networks (x32 Version: 3.0.3106 - CyberLink Corp.)
Gateway Social Networks (x32 Version: 3.0.3106 - CyberLink Corp.) Hidden
Gateway Updater (x32 Version: 1.02.3500 - Gateway Incorporated)
Google Chrome (x32 Version: 32.0.1700.72 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HP Deskjet 3050A J611 series Basic Device Software (Version: 25.0.571.0 - Hewlett-Packard Co.)
HP Deskjet 3050A J611 series Help (x32 Version: 140.0.2.2 - Hewlett Packard)
HP Deskjet 3050A J611 series Product Improvement Study (Version: 25.0.571.0 - Hewlett-Packard Co.)
HP Photo Creations (x32 Version: 1.0.0.5192 - HP Photo Creations)
HP Update (x32 Version: 5.003.000.004 - Hewlett-Packard)
Identity Card (x32 Version: 1.00.3501 - Gateway Incorporated)
Intel® Control Center (x32 Version: 1.2.1.1007 - Intel Corporation)
Intel® Graphics Media Accelerator Driver (x32 Version: 8.15.10.2182 - Intel Corporation)
Intel® Management Engine Components (x32 Version: 6.0.0.1179 - Intel Corporation)
Intel® Rapid Storage Technology (x32 Version: 9.6.2.1001 - Intel Corporation)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (x32 Version: 4.0.14 - Gateway)
League of Legends (x32 Version: 1.3 - Riot Games)
LOLReplay (x32 Version: 0.8.0.1 - www.leaguereplays.com)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MapleStory (x32 Version: - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (x32 Version: 14.0.5131.5000 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
Nero Control Center 10 (x32 Version: 10.2.11100.1.1 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.18100.8.8 - Nero AG) Hidden
Nero DiscSpeed 10 (x32 Version: 6.2.10500.2.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Express 10 (x32 Version: 10.2.12000.21.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 10.5.10200 - Nero AG) Hidden
Nero Multimedia Suite 10 Essentials (x32 Version: 10.5.10300 - Nero AG)
Nero StartSmart 10 (x32 Version: 10.2.11600.14.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Update (x32 Version: 1.0.0018 - Nero AG)
Nexon Game Manager (x32 Version: - )
Prism Video File Converter (x32 Version: - NCH Software)
Razer Game Booster (x32 Version: 3.7 - Razer USA Ltd)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6141 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30124 - Realtek Semiconductor Corp.)
System Requirements Lab CYRI (x32 Version: 5.0.6.0 - Husdawg, LLC)
Tweaking.com - Windows Repair (All in One) (x32 Version: 2.1.0 - Tweaking.com)
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (x32 Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Video Web Camera (x32 Version: 1.0.1904 - CyberLink Corp.)
Video Web Camera (x32 Version: 1.0.1904 - CyberLink Corp.) Hidden
Welcome Center (x32 Version: 1.02.3503 - Gateway Incorporated)
Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30 - Microsoft Corporation)
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.01 (64-bit) (Version: 4.01.0 - win.rar GmbH)
Yahoo! Messenger (x32 Version: - Yahoo! Inc.)
Yahoo! Software Update (x32 Version: - )
Yahoo! Toolbar (x32 Version: - Yahoo! Inc.)

==================== Restore Points =========================

==================== Hosts content: ==========================

2009-07-13 20:34 - 2013-12-30 12:00 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0691F76A-DCF6-4F1C-B6E0-1A7CD24DE737} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {1277A3A3-CC35-4265-99D2-C09DF63F3425} - System32\Tasks\Adobe Reader Speed Launcher => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [2013-09-03] (Adobe Systems Incorporated)
Task: {2CA46371-1F5D-4DA1-8D58-E61E39915C71} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1767396876-1009758469-163787859-1000UA => C:\Users\Home\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)
Task: {2DC2145E-ECCE-4743-BCBA-CE6ECC948537} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe
Task: {3F78C401-015B-4609-B095-9279BA075F80} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe
Task: {4FB6996A-8565-4487-8D51-36D9AC508983} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-05] (Google Inc.)
Task: {57F90851-56B7-439F-8960-C49D3A9A9EBD} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2013-06-05] ()
Task: {66CB1042-D89E-4314-A887-B84C5080F83F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-14] (Adobe Systems Incorporated)
Task: {6B3C30E8-FDD5-4669-8D36-1C049C387B2A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd)
Task: {75F82043-DA1B-494E-A094-B95E1C348EB8} - System32\Tasks\Adobe ARM => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {7E7A5EC4-149E-41B3-BBE9-DA61D3C07F18} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08] (Hewlett-Packard Co.)
Task: {824CEC51-5570-4235-B71E-11F3D78454CB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1767396876-1009758469-163787859-1000Core => C:\Users\Home\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)
Task: {9923802A-DE79-467C-96EB-2B34C8720162} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\SymErr.exe
Task: {BCCCEAA8-E589-4A37-9229-AC37E9C9140E} - System32\Tasks\hpUrlLauncher.exe_{2A3827DD-14CF-4CCC-9E25-FCA05C40F6B0} => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\utils\hpUrlLauncher.exe [2011-06-08] (Hewlett-Packard Co.)
Task: {E6758C4F-A9E7-47A0-90EF-EF5751076BDC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-05] (Google Inc.)
Task: {F83B91DB-77DF-429E-B798-49CD6A219323} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1767396876-1009758469-163787859-1000Core.job => C:\Users\Home\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1767396876-1009758469-163787859-1000UA.job => C:\Users\Home\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe

==================== Loaded Modules (whitelisted) =============

2012-01-10 20:12 - 2012-01-10 20:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2010-06-28 16:20 - 2010-06-28 16:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\sqlite3.dll
2010-06-28 16:12 - 2010-06-28 16:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ACE.dll
2013-12-06 23:53 - 2013-12-06 23:53 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\eff228aa396c1d45248a54b44d7ce5a0\IsdiInterop.ni.dll
2011-08-26 02:41 - 2010-04-13 10:52 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2011-08-26 03:25 - 2009-05-20 00:02 - 00072200 _____ () C:\Program Files (x86)\Launch Manager\CdDirIo.dll
2014-01-07 19:25 - 2014-01-06 22:04 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.72\libglesv2.dll
2014-01-07 19:25 - 2014-01-06 22:04 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.72\libegl.dll
2014-01-07 19:25 - 2014-01-06 22:05 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.72\pdf.dll
2014-01-07 19:25 - 2014-01-06 22:05 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.72\ppGoogleNaClPluginChrome.dll
2014-01-07 19:25 - 2014-01-06 22:04 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.72\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (01/10/2014 06:16:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 889799

Error: (01/10/2014 06:16:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 889799

Error: (01/10/2014 06:16:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/10/2014 06:16:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 888785

Error: (01/10/2014 06:16:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 888785

Error: (01/10/2014 06:16:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/10/2014 06:16:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 887771

Error: (01/10/2014 06:16:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 887771

Error: (01/10/2014 06:16:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/10/2014 06:16:50 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 886741

System errors:
=============
Error: (01/10/2014 06:22:14 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer MINH-VAIO
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{03BDB7A2-2BF4-4FDB-BC7F-1905FFCC7E9F}.
The master browser is stopping or an election is being forced.

Error: (01/10/2014 06:17:24 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.

Error: (01/10/2014 06:16:54 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.

Error: (01/10/2014 06:02:04 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.

Error: (01/10/2014 02:21:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070020: Security Update for Windows 7 for x64-based Systems (KB2862330).

Error: (01/10/2014 02:15:40 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%32

Error: (01/09/2014 08:55:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070020: Security Update for Windows 7 for x64-based Systems (KB2862330).

Error: (01/09/2014 08:55:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070020: Update for Windows 7 for x64-based Systems (KB2853952).

Error: (01/09/2014 08:49:17 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%32

Error: (01/09/2014 08:44:00 PM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-05-30 11:27:05.686
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-30 11:27:05.623
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-29 18:06:10.327
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-05-29 18:06:10.281
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Percentage of memory in use: 40%
Total physical RAM: 3766.71 MB
Available physical RAM: 2239.75 MB
Total Pagefile: 7531.59 MB
Available Pagefile: 5773.28 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Gateway) (Fixed) (Total:282.99 GB) (Free:218.26 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 129E8CB3)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=283 GB) - (Type=07 NTFS)

==================== End Of Log ============================

It still does not let me create a system restore point.

#57
JSntgRvr

Posted 10 January 2014 - 09:08 PM

Global Moderator

Global Moderator
11,565 posts

Download the enclosed file.

Save it in the location FRST is.

Run FRST and click on the Fix button. Wait until finished.

The tool will make a log in the flashdrive (Fixlog.txt) please post it to your reply.

After a restart, attempt Windows Update.

#58
s73v3nd

Posted 10 January 2014 - 10:27 PM

Member

Topic Starter
Member
34 posts

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-01-2014 01
Ran by Home at 2014-01-10 22:27:24 Run:2
Running from C:\Users\Home\Desktop\New folder
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-06-24] (AVG Technologies)
End
*****************

AppMgmt => Service deleted successfully.
avgtp => Service deleted successfully.

The system needs a manual reboot.

==== End of Fixlog ====