Thanks for getting to this. So everything you said is loud and clear, I'll try to communicate tot him not to download anything new while we are cleaning this up. A couple of new notes:
The longer this site is up it starts to play audio and this reply box gets replaced with a website. Also, this site was being blocked by RocketTab or something, but I was able to bypass it by going in to settings and removing the proxy.
Also, OTL didn't produce an extras.txt so I'm not sure how to get that to you. If there is a way I can produce it again (I tried running the scan again with Use whitelist on the Extra registry section) let me know.
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by Brian (administrator) on CHARLIE on 01-08-2014 13:26:22
Running from C:\Users\Brian\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\SysWOW64\srvany.exe
() C:\Windows\KMService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\LPT\srpts.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Program Files (x86)\pastaleads\PastaLeadsService.exe
() C:\Program Files (x86)\LPT\srptsl.exe
() C:\Program Files\pcmax\pcmax.exe
(Systweak) C:\Program Files (x86)\Right Backup\RBClientService.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Search Module Ltd.) C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Green Fire Software) C:\ProgramData\XRtVYg\SycvOme.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(GOOBZO) C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
() C:\Program Files (x86)\LPT\srptm.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(HQ-1.9) C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-nova.exe
() C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordFIXQNw.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(Systweak) C:\Program Files (x86)\Right Backup\RightBackup.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Systweak) C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Google Inc.) C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe
(Facebook Inc.) C:\Users\Brian\AppData\Local\Facebook\Update\FacebookUpdate.exe
(Akamai Technologies, Inc.) C:\Users\Brian\AppData\Local\Akamai\netsession_win.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(GOOBZO) C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe
(Akamai Technologies, Inc.) C:\Users\Brian\AppData\Local\Akamai\netsession_win.exe
() C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe
(Software Updater) C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUS) C:\Windows\AsScrPro.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordHh174.exe
() C:\Program Files (x86)\pastaleads\ScheduledTask.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79088 2014-05-29] ()
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [7350912 2010-02-04] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-01-05] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] => D:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [BrowserSafeguard] => C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe [363008 2014-06-22] ()
HKLM-x32\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79088 2014-05-29] ()
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Run: [Google Update] => C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [135664 2010-08-12] (Google Inc.)
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Run: [Facebook Update] => C:\Users\Brian\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-08-16] (Facebook Inc.)
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Brian\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79088 2014-05-29] ()
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Run: [GoobzoYouTubeAccelerator] => C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe [2218856 2014-06-22] (GOOBZO)
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2382725470-2412313811-1806556634-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
AppInit_DLLs: C:\PROGRA~3\FASTAN~1\FASTAN~2.DLL => C:\ProgramData\Fast And Safe\FastAndSafe_x64.dll [4302848 2014-07-30] ()
AppInit_DLLs: ,C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\progra~3\fastan~1\fastan~1.dll => c:\ProgramData\Fast And Safe\FastAndSafe.dll [4125696 2014-07-30] ()
AppInit_DLLs-x32: ,C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-05] (NVIDIA Corporation)
IFEO\DatamngrCoordinator.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PastaQuotes.lnk
ShortcutTarget: PastaQuotes.lnk -> C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftwareUpdater.lnk
ShortcutTarget: SoftwareUpdater.lnk -> C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe (Software Updater)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (Acresso Software Inc.)
Startup: C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
ShortcutTarget: ERUNT AutoBackup.lnk -> C:\Program Files (x86)\ERUNT\AUTOBACK.EXE ()
ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
ShellIconOverlayIdentifiers: HardLinkMenu -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll (Hermann Schinagl)
ShellIconOverlayIdentifiers: IconOverlayHardLink -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll (Hermann Schinagl)
ShellIconOverlayIdentifiers: IconOverlaySymbolicLink -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll (Hermann Schinagl)
ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: HardLinkMenu -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\32\HardlinkShellExt.dll (Hermann Schinagl)
ShellIconOverlayIdentifiers-x32: IconOverlayHardLink -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\32\HardlinkShellExt.dll (Hermann Schinagl)
ShellIconOverlayIdentifiers-x32: IconOverlaySymbolicLink -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\32\HardlinkShellExt.dll (Hermann Schinagl)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: SmartSaver+ 10 -> {11111111-1111-1111-1111-110411891118} -> C:\Program Files (x86)\SmartSaver+ 10\SmartSaver+ 10-bho64.dll (smart-saverplus)
BHO: HQPro-1.9 -> {11111111-1111-1111-1111-110511311172} -> C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-bho64.dll (HQ-1.9)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: dealstear -> {BA686A29-A489-3038-9006-C9B9977F34AE} -> C:\ProgramData\dealstear\ZX7.x64.dll ()
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: 2rs3 -> {10AD2C61-0898-4348-8600-14A342F22AC3} -> C:\Program Files (x86)\SupraSavings\2rs3.dll ()
BHO-x32: SmartSaver+ 10 -> {11111111-1111-1111-1111-110411891118} -> C:\Program Files (x86)\SmartSaver+ 10\SmartSaver+ 10-bho.dll (smart-saverplus)
BHO-x32: HQPro-1.9 -> {11111111-1111-1111-1111-110511311172} -> C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-bho.dll (HQ-1.9)
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: ViewPassword -> {3CB547DB-A0E4-1686-7034-692987A1F99C} -> C:\Program Files (x86)\-ViewPassword-soft\174.dll ()
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> No File
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: dealstear -> {BA686A29-A489-3038-9006-C9B9977F34AE} -> C:\ProgramData\dealstear\ZX7.dll ()
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Winsock: Catalog9 01 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 02 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 03 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 04 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 05 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 06 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 07 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 08 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Winsock: Catalog9 19 C:\Program Files (x86)\YouTube Accelerator\ytalsp.dll [177512] (GOOBZO)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7C78E3E7-25E5-4AEF-8CAD-132B4AF319A9}: [NameServer]0.0.0.0
FireFox:
========
FF ProfilePath: C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default
FF NewTab: about:newtab
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Mysearchdial
FF Homepage: hxxp://start.mysearchdial.com/?f=1&a=bndl1_14_26&cd=2XzuyEtN2Y1L1QzutBtD0C0FtAtDtAyEyBzy0A0AzyzztAyDtN0D0Tzu0SzytBtCtN1L2XzutBtFtBtCtFtCtCtFtBtN1L1Czu1S1G1Q1ItC1VtCyE1VtByCtN1L1G1B1V1N2Y1L1Qzu2SyDyD0FtBzzyEtCyDtGtC0DtCzztGtCzzyC0EtGyB0BtCyCtGtCtAyC0ByC0FtA0CyEzz0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0D0FtDtDtByD0AtGtDtAyB0DtG0FyDyBtBtG0F0CtB0DtGyD0BtBzz0D0CyBzztD0AzzyD2Q&cr=1371696044&ir=
FF Keyword.URL: hxxp://www-search.net/search.aspx?s=E6Mwlimyu1,e3c303cd-2507-421f-a35e-47ff424255e2,&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - D:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=8 - D:\Program Files (x86)\Google\Update\1.2.183.13\npGoogleOneClick8.dll No File
FF Plugin-x32: Adobe Reader - D:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Brian\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Brian\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Brian\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Brian\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Brian\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF user.js: detected! => C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Users\Brian\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Brian\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\searchplugins\Mysearchdial.xml
FF Extension: SmartSaver+ 10 - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\5f59dd17-13a8-46e8-87a1-3a467ff8923d@5c730319-da43-4be3-a21c-b38bda57173b.com [2014-07-09]
FF Extension: HQPro-1.9 - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\ee5ad154-f909-4cc0-aa51-d7e94e3fb0af@36204afd-f43e-4917-9c71-8384e2e4d3ad.com [2014-06-22]
FF Extension: Fast Start - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\
[email protected] [2014-07-11]
FF Extension: cosstminn - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\
[email protected] [2014-07-11]
FF Extension: No Name - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\staged [2014-07-11]
FF Extension: SupraSavings - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\SupraSavings@jetpack [2014-06-22]
FF Extension: MySearchDial NewTab - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8} [2014-07-10]
FF Extension: No Name - C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\y1ghqeww.default\Extensions\
[email protected] [2014-07-30]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-02-27]
FF HKLM-x32\...\Firefox\Extensions: [{55A8EC97-6AF6-442c-877F-11C51DBD162D}] - C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_FF.xpi
FF Extension: YouTube Video Downloader Extension - C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_FF.xpi [2014-06-10]
FF HKCU\...\Firefox\Extensions: [{735C497D-D20D-45CB-51DE-4E6626FEAD4D}] - C:\Program Files (x86)\-ViewPassword-soft\174.xpi
FF Extension: No Name - C:\Program Files (x86)\-ViewPassword-soft\174.xpi [2014-06-22]
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR HomePage: hxxp://www-search.net/?s=E6Mwlimyu1,e3c303cd-2507-421f-a35e-47ff424255e2,
CHR StartupUrls: "hxxp://www-search.net/?s=E6Mwlimyu1,e3c303cd-2507-421f-a35e-47ff424255e2,"
CHR DefaultSearchKeyword: www-search.net
CHR DefaultSearchProvider: Search
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-08]
CHR Extension: (Google Drive) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-08]
CHR Extension: (YouTube) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-08]
CHR Extension: (Search) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-08]
CHR Extension: (HQPro-1.9) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\deghekbbihbapplmbffglehkdhkeibbm [2014-07-10]
CHR Extension: (MySearchDial) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\iagcajndpnfncplednpbnkahadegklfa [2014-07-09]
CHR Extension: (YouTube Video Downloader Extension) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\igljnkmljjbhcellpnjppojkfdfmkjmp [2014-07-08]
CHR Extension: (SASS Inspector) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkofmbmllpgfbnonmnenkiakimpgoamn [2014-07-30]
CHR Extension: (cosstminn) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbhgdhnjbodilabcjbogfnppbopbdgob [2014-07-10]
CHR Extension: (Google Wallet) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-08]
CHR Extension: (Gmail) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-08]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Brian\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-07-08]
CHR HKLM-x32\...\Chrome\Extension: [igljnkmljjbhcellpnjppojkfdfmkjmp] - C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YTVD_GC.crx [2014-06-10]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2014-06-10]
CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-06-10]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 64af91bf; c:\ProgramData\Fast And Safe\FastAndSafeSvc.dll [186192 2014-07-30] () [File not signed]
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-09] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-09] (globalUpdate) [File not signed]
S4 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [704112 2014-05-08] (Cherished Technololgy LIMITED)
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2010-08-25] () [File not signed]
R2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [34072 2014-06-15] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-03-05] ()
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [80896 2010-09-16] () [File not signed]
R2 pastaleadsServiceCore; C:\Program Files (x86)\pastaleads\PastaLeadsService.exe [381336 2014-05-21] ()
R2 pcmaxservice; C:\Program Files\pcmax\pcmax.exe [233472 2014-06-13] () [File not signed]
R2 RBClientService; C:\Program Files (x86)\Right Backup\RBClientService.exe [48240 2014-07-10] (Systweak)
R2 SMUpd; C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe [2658664 2014-07-17] (Search Module Ltd.)
R2 SycvOme; C:\ProgramData\XRtVYg\SycvOme.exe [2298224 2014-06-29] (Green Fire Software)
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2010-08-27] (Microsoft Corporation) [File not signed]
R2 ViewPassword; C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordHh174.exe [179712 2014-06-22] () [File not signed]
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation)
R2 YouTubeAcceleratorService; C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe [1502056 2014-06-22] (GOOBZO)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 GEARAspiWDM; C:\Windows\SysWOW64\DRIVERS\GEARAspiWDM.sys [15664 2011-02-15] (GEAR Software Inc.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [73984 2013-06-05] (Identive)
R3 SMUpdd; C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys [41320 2014-07-17] ()
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [828912 2010-08-25] () [File not signed]
S2 WCMVCAM; C:\Windows\System32\DRIVERS\wcmvcam64.sys [1071032 2011-06-23] (Windows ® Win 7 DDK provider)
S3 AmUStor; system32\drivers\AmUStor.SYS [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S2 iPodDrv; \??\C:\Windows\system32\drivers\iPodDrv.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 MotioninJoyUSBFilter; system32\DRIVERS\MijUfilt.sys [X]
U3 tmlwf;
U3 tmwfp;
========================== Drivers MD5 =======================
C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys FA886682CFC5D36718D3E436AACF10B9
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys 4C016FD76ED5C05E84CA8CAB77993961
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\athrx.sys E857EEE6B92AAA473EBB3465ADD8F7E7
C:\Windows\system32\DRIVERS\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\dc3d.sys 7AF9DAC504FBD047CBC3E64AE52C92BF
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ssudbus.sys 955FFE2B1D74A9E0E3E0E558E6A17F3B
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\system32\DRIVERS\evbda.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ETD.sys 0975BF32399A24117E317B5BF1D5D0AA
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fssfltr.sys C2E475625F2C6F7DCDE4E920523A0573
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F
C:\Windows\SysWOW64\DRIVERS\GEARAspiWDM.sys 4AC51459805264AFFD5F6FDFB9D9235F
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECIx64.sys B6AC71AAA2B10848F57FC49D55A651AF
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ANDROIDUSB.sys F47CEC45FB85791D4AB237563AD0FA8F
C:\Windows\System32\DRIVERS\htcnprot.sys B8B1B284362E1D8135112573395D5DA5
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys 42E00996DFC13C46366689C0EA8ABC5E
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\System32\DRIVERS\igdkmd64.sys F4F91789C7C7A159CE8215C1F69F2A85
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Impcd.sys DD587A55390ED2295BCE6D36AD567DA9
C:\Windows\System32\drivers\RTKVHD64.sys 163F94EBF8F8A98616A6B804AF08D736
C:\Windows\System32\DRIVERS\IntcDAud.sys 58CF58DEE26C909BD6F977B61D246295
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\ivusb.sys BD5BF20EC242E003A2F570B8754A56D1
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbfiltr.sys E63EF8C3271D014F14E2469CE75FECB4
C:\Windows\System32\Drivers\ksecdd.sys 353009DEDF918B2A51414F330CF72DEC
C:\Windows\System32\Drivers\ksecpkg.sys 1C2D8E18AA8FD50CD04C15CC27F7F5AB
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\L1C62x64.sys 9DDC68B87A9B837736A2B193EE14A4A5
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ManyCam_x64.sys D33E2B74CF8B3A652BF0A9FBD068E87A
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\MijXfilt.sys C030F9E822A057C1A7A9BB4EA3E8877E
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\MpFilter.sys 9EB89625A82AC961F25E7C865947BF9A
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ATK64AMD.sys 032D35C996F21D19A205A7C8F0B76F3C
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\NETw5s64.sys 24F64343F14A119308456E1CA7507B26
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\NisDrvWFP.sys C3E0696C3B42F694C5822776AA6FFFDF
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys 1A29A59A4C5BA6F8C85062A613B7E2B2
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nusb3hub.sys 8EBCB9165EE7F1571842F4D9D624A74C
C:\Windows\System32\DRIVERS\nusb3xhc.sys 5D54DBB12BBFE07CC283FD39F2CD6D63
C:\Windows\System32\DRIVERS\nvlddmkm.sys 9B93CC9C70EDE60A9C486E7719DB9E8D
C:\Windows\System32\DRIVERS\nvpciflt.sys F76296368BB813E0C6996501A3271C7C
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pneteth.sys 8AC5649C9070674D4607301C180AB10B
C:\Windows\System32\DRIVERS\point64.sys 4F0878FD62D5F7444C5F1C4C66D9D293
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\S3XXx64.sys A49CDA75F8E41F769D19E2669BD62B37
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SiSG664.sys 1BC348CF6BAA90EC8E533EF6E6A69933
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys 32CB9FD13482211DC4C744BEEABA24A4
C:\Windows\System32\DRIVERS\snp2uvc.sys 2114518E55B380A3ACC28B2C27FD499A
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\sptd.sys D41D8CD98F00B204E9800998ECF8427E
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tap0901.sys F9BE29D5E097F03F81D3CD12B794CB66
C:\Windows\System32\drivers\tcpip.sys 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E
C:\Windows\System32\DRIVERS\tcpip.sys 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys E9981ECE8D894CEF7038FD1D040EB426
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\System32\DRIVERS\usbccgp.sys DCA68B0943D6FA415F0C56C92158A83A
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 18A85013A3E0F7E1755365D287443965
C:\Windows\System32\DRIVERS\usbhub.sys 8D1196CFBB223621F2C67D45710F25BA
C:\Windows\system32\drivers\usbohci.sys 765A92D428A8DB88B960DA5A8D6089DC
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys DD253AFC3BC6CBA412342DE60C3647F3
C:\Windows\System32\Drivers\usbvideo.sys 1F775DA4CF1A3A1834207E975A72E9D7
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifimp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wcmvcam64.sys 3A2D452C40162823B79867040B46D4A8
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wdcsam64.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\WDKMD.sys FE31110E39A0B11ABAE1BA43A2DC94F9
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wimfltr.sys 52DED146E4797E6CCF94799E8E22BB2A
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
C:\Windows\System32\DRIVERS\xusb21.sys 9176C0822FAA649E45121875BE32F5D2
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-01 13:26 - 2014-08-01 13:27 - 00057433 _____ () C:\Users\Brian\Desktop\FRST.txt
2014-08-01 13:25 - 2014-08-01 13:26 - 00000000 ____D () C:\FRST
2014-08-01 12:50 - 2014-08-01 12:50 - 02094080 _____ (Farbar) C:\Users\Brian\Desktop\FRST64.exe
2014-08-01 12:45 - 2014-08-01 12:45 - 00000000 ____D () C:\Users\Brian\AppData\Local\BrowserSafeguard
2014-07-31 18:51 - 2014-01-08 21:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-07-31 18:51 - 2014-01-03 17:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-07-31 18:42 - 2014-05-14 11:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-31 18:42 - 2014-05-14 11:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-31 18:42 - 2014-05-14 11:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-07-31 18:42 - 2014-05-14 11:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-07-31 18:41 - 2014-05-14 11:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-31 18:41 - 2014-05-14 11:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-07-31 18:41 - 2014-05-14 11:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-07-31 18:41 - 2014-05-14 11:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-07-31 18:41 - 2014-05-14 11:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-31 18:41 - 2014-05-14 11:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-07-31 18:41 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-07-31 18:41 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-07-31 18:41 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-07-31 18:41 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-30 23:39 - 2014-08-01 13:24 - 00160938 _____ () C:\Users\Brian\Desktop\OTL.Txt
2014-07-30 23:22 - 2014-07-30 23:22 - 00006434 _____ () C:\Users\Brian\Desktop\07302014_231035.log
2014-07-30 23:18 - 2014-07-30 23:18 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Brian\Desktop\tdsskiller.exe
2014-07-30 23:17 - 2014-07-30 23:22 - 00002290 _____ () C:\Users\Brian\Desktop\GooredFix.txt
2014-07-30 23:17 - 2014-07-30 23:17 - 00071398 _____ (jpshortstuff) C:\Users\Brian\Desktop\GooredFix.exe
2014-07-30 23:17 - 2014-07-30 23:17 - 00000000 ____D () C:\Users\Brian\Desktop\GooredFix Backups
2014-07-30 23:10 - 2014-07-30 23:10 - 00000000 ____D () C:\_OTM
2014-07-30 23:09 - 2014-07-30 23:09 - 00522240 _____ (OldTimer Tools) C:\Users\Brian\Desktop\OTM.exe
2014-07-30 23:06 - 2014-07-30 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
2014-07-30 23:06 - 2014-07-30 23:06 - 00000000 ____D () C:\Program Files (x86)\ERUNT
2014-07-30 23:05 - 2014-07-30 23:05 - 00791393 _____ (Lars Hederer ) C:\Users\Brian\Downloads\erunt-setup.exe
2014-07-30 19:15 - 2014-07-30 19:15 - 01237208 _____ () C:\Users\Brian\Downloads\Setup (6).exe
2014-07-30 19:15 - 2014-07-30 19:15 - 01237208 _____ () C:\Users\Brian\Downloads\Setup (5).exe
2014-07-30 19:08 - 2014-07-30 19:08 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-07-30 19:08 - 2014-07-30 19:08 - 00000000 ____D () C:\Windows\system32\NV
2014-07-30 19:01 - 2013-10-01 21:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-07-30 19:01 - 2013-10-01 21:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-07-30 19:01 - 2013-10-01 21:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-30 19:01 - 2013-10-01 20:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-07-30 19:01 - 2013-10-01 20:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-07-30 19:01 - 2013-10-01 20:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-07-30 19:01 - 2013-10-01 20:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-07-30 19:01 - 2013-10-01 19:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-07-30 19:01 - 2013-10-01 19:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-07-30 19:01 - 2013-10-01 19:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-07-30 19:01 - 2013-10-01 19:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-07-30 19:01 - 2013-10-01 19:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-07-30 19:01 - 2013-10-01 18:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-07-30 19:01 - 2013-10-01 18:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-07-30 19:01 - 2013-10-01 18:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-07-30 19:01 - 2013-10-01 17:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-07-30 18:42 - 2013-09-24 21:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-07-30 18:42 - 2013-09-24 20:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-07-30 18:41 - 2014-07-30 18:41 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Brian\Downloads\revosetup.exe
2014-07-30 18:41 - 2014-07-30 18:41 - 00001270 _____ () C:\Users\Brian\Desktop\Revo Uninstaller.lnk
2014-07-30 18:36 - 2014-08-01 12:40 - 00003068 _____ () C:\Windows\System32\Tasks\Right Backup_startup
2014-07-30 18:12 - 2014-07-30 18:12 - 00000000 ____D () C:\Users\Brian\AppData\Local\Packages
2014-07-30 18:12 - 2014-07-30 18:12 - 00000000 ____D () C:\ProgramData\dealstear
2014-07-30 17:43 - 2014-07-30 17:43 - 00602112 _____ (OldTimer Tools) C:\Users\Brian\Desktop\OTL.exe
2014-07-30 17:32 - 2014-07-30 17:32 - 00000000 ____D () C:\ProgramData\Fast And Safe
2014-07-11 17:45 - 2014-07-11 17:45 - 00270592 _____ () C:\Users\Brian\Downloads\Setup (4).exe
2014-07-11 17:38 - 2014-06-05 09:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-11 17:38 - 2014-06-05 09:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-07-11 17:38 - 2014-06-05 09:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-11 17:37 - 2001-09-13 02:15 - 00090112 ____N (Sony Corporation) C:\Windows\snymsico.dll
2014-07-11 17:36 - 2014-07-11 17:36 - 00003124 _____ () C:\Windows\System32\Tasks\{B5FA72D1-E74B-4CA5-967F-2315E8718358}
2014-07-11 17:35 - 2014-07-11 17:35 - 01767968 _____ (Sony Corporation ) C:\Users\Brian\Downloads\PA_DRIVER (2).EXE
2014-07-11 17:34 - 2014-07-11 17:34 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-07-11 17:34 - 2003-11-10 12:31 - 00036232 ____N (Sony Corporation) C:\Windows\SysWOW64\Drivers\NETMD033.sys
2014-07-11 17:34 - 2003-04-01 18:55 - 00035319 ____N (Sony Corporation) C:\Windows\SysWOW64\Drivers\NETMD031.sys
2014-07-11 17:34 - 2002-08-08 15:51 - 00038951 ____N (Sony Corporation) C:\Windows\SysWOW64\Drivers\NETMDUSB.sys
2014-07-11 17:32 - 2014-07-11 17:32 - 01767968 _____ (Sony Corporation ) C:\Users\Brian\Downloads\PA_DRIVER (1).EXE
2014-07-11 17:32 - 2014-07-11 17:32 - 01210528 _____ () C:\Users\Brian\Downloads\Setup (3).exe
2014-07-11 17:31 - 2014-07-11 17:32 - 01767968 _____ (Sony Corporation ) C:\Users\Brian\Downloads\PA_DRIVER.EXE
2014-07-10 18:02 - 2014-06-29 21:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-10 18:02 - 2014-06-29 21:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-10 18:01 - 2014-06-20 15:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-10 18:01 - 2014-06-20 14:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-10 18:01 - 2014-06-18 20:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-10 18:01 - 2014-06-18 20:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-10 18:01 - 2014-06-18 20:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-10 18:01 - 2014-06-18 19:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-10 18:01 - 2014-06-18 19:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-10 18:01 - 2014-06-18 19:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-10 18:01 - 2014-06-18 19:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-10 18:01 - 2014-06-18 19:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-10 18:01 - 2014-06-18 19:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-10 18:01 - 2014-06-18 19:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-10 18:01 - 2014-06-18 19:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-10 18:01 - 2014-06-18 19:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-10 18:01 - 2014-06-18 19:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-10 18:01 - 2014-06-18 19:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-10 18:01 - 2014-06-18 19:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-10 18:01 - 2014-06-18 19:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-10 18:01 - 2014-06-18 19:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-10 18:01 - 2014-06-18 18:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-10 18:01 - 2014-06-18 18:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-10 18:01 - 2014-06-18 18:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-10 18:01 - 2014-06-18 18:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-10 18:01 - 2014-06-18 18:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-10 18:01 - 2014-06-18 18:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-10 18:01 - 2014-06-18 18:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-10 18:01 - 2014-06-18 18:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-10 18:01 - 2014-06-18 18:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-10 18:01 - 2014-06-18 18:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-10 18:01 - 2014-06-18 18:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-10 18:01 - 2014-06-18 18:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-10 18:01 - 2014-06-18 18:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-10 18:01 - 2014-06-18 18:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-10 18:01 - 2014-06-18 18:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-10 18:01 - 2014-06-18 18:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-10 18:01 - 2014-06-18 18:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-10 18:01 - 2014-06-18 18:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-10 18:01 - 2014-06-18 18:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-10 18:01 - 2014-06-18 18:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-10 18:01 - 2014-06-18 18:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-10 18:01 - 2014-06-18 18:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-10 18:01 - 2014-06-18 18:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-10 18:01 - 2014-06-18 17:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-10 18:01 - 2014-06-18 17:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-10 18:01 - 2014-06-18 17:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-10 18:01 - 2014-06-18 17:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-10 18:01 - 2014-06-18 17:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-10 18:01 - 2014-06-18 17:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-10 18:01 - 2014-06-18 17:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-10 18:01 - 2014-06-18 17:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-10 18:01 - 2014-06-18 17:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-10 18:01 - 2014-06-18 17:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-10 18:01 - 2014-06-18 17:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-10 18:01 - 2014-06-18 17:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-10 18:01 - 2014-06-18 17:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-10 18:01 - 2014-06-18 17:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-10 18:01 - 2014-06-17 21:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-10 18:01 - 2014-06-17 20:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-10 18:01 - 2014-06-17 20:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-10 18:01 - 2014-05-30 01:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-10 17:33 - 2014-07-10 17:40 - 00000000 ____D () C:\Users\Brian\AppData\Local\1118
2014-07-10 17:32 - 2014-07-30 18:13 - 00000000 ____D () C:\ProgramData\4a607f86f23577d7
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Brian\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Brian\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Brian\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator
2014-07-10 17:09 - 2014-07-10 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open JDK Explorer
2014-07-10 17:09 - 2014-07-09 17:51 - 00135168 _____ () C:\Users\Brian\AppData\Local\ChromeHitoryDB
2014-07-10 17:07 - 2014-07-10 17:40 - 00000000 ____D () C:\Program Files (x86)\PCFixSpeed
2014-07-10 17:05 - 2014-07-10 17:05 - 01410208 _____ () C:\Users\Brian\Downloads\Setup (2).exe
2014-07-10 17:05 - 2014-07-10 17:05 - 00247160 _____ (System Applet ) C:\Users\Brian\Downloads\Java_Updater_Setup.exe
2014-07-10 17:02 - 2014-07-10 17:02 - 00000000 ____D () C:\Program Files (x86)\Right Backup
2014-07-10 17:00 - 2014-07-10 17:03 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\rightbackup
2014-07-10 16:59 - 2014-08-01 11:52 - 00002130 _____ () C:\Windows\setupact.log
2014-07-10 16:59 - 2014-07-30 18:18 - 00004306 _____ () C:\Windows\PFRO.log
2014-07-10 16:59 - 2014-07-10 16:59 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-09 17:44 - 2014-07-09 17:44 - 00002289 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-07-09 17:44 - 2014-07-09 17:44 - 00002283 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-07-09 17:44 - 2014-07-09 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-07-09 17:43 - 2014-07-11 17:26 - 00000000 ____D () C:\ProgramData\WinZip
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\VOPackage
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Users\Brian\AppData\Local\WinZip
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Program Files\WinZip
2014-07-09 17:42 - 2014-08-01 12:40 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-07-09 17:42 - 2014-07-10 17:02 - 00001056 _____ () C:\Users\Public\Desktop\Right Backup.lnk
2014-07-09 17:42 - 2014-07-10 17:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Right Backup
2014-07-09 17:42 - 2014-07-09 17:42 - 00001207 _____ () C:\Users\Public\Desktop\Advanced System Protector.lnk
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\rbtemp
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\ProgramData\Systweak
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\Program Files (x86)\Advanced System Protector
2014-07-09 17:42 - 2012-07-25 12:03 - 00016896 _____ () C:\Windows\system32\sasnative64.exe
2014-07-09 17:41 - 2014-07-10 21:37 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Systweak
2014-07-09 17:41 - 2014-07-10 17:05 - 00000000 _____ () C:\end
2014-07-09 17:41 - 2014-07-09 17:41 - 00002322 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-4.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001580 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-6.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001576 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-1.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001510 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-7.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001458 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5_user.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001440 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001344 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-2.job
2014-07-09 17:41 - 2014-06-30 17:55 - 00020328 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe
2014-07-09 17:40 - 2014-07-09 17:41 - 00000000 ____D () C:\Program Files (x86)\SmartSaver+ 10
2014-07-09 17:40 - 2014-07-09 17:40 - 00003804 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-11.job
2014-07-09 17:40 - 2014-07-09 17:40 - 00002434 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-3.job
2014-07-09 17:40 - 2014-07-09 17:40 - 00000958 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore1cf9bc6d9e5a9a1.job
2014-07-09 17:40 - 2014-07-09 17:40 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\MySearchDial
2014-07-09 17:39 - 2014-07-09 17:39 - 00001236 _____ () C:\Users\Public\Desktop\Media Downloader.lnk
2014-07-09 17:39 - 2014-07-09 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Downloader
2014-07-09 17:39 - 2014-07-09 17:39 - 00000000 ____D () C:\Program Files (x86)\Mysearchdial
2014-07-09 17:39 - 2014-07-09 17:39 - 00000000 ____D () C:\Program Files (x86)\Media Downloader
2014-07-09 17:39 - 2014-06-06 05:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 17:39 - 2014-06-06 04:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 17:38 - 2014-07-09 17:38 - 00270592 _____ () C:\Users\Brian\Downloads\Setup (1).exe
2014-07-09 17:38 - 2014-05-30 03:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-09 17:38 - 2014-05-30 03:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-09 17:38 - 2014-05-30 03:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-09 17:38 - 2014-05-30 03:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-09 17:38 - 2014-05-30 03:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-09 17:38 - 2014-05-30 03:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-09 17:38 - 2014-05-30 03:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-09 17:38 - 2014-05-30 02:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-09 17:37 - 2014-07-09 17:37 - 00270592 _____ () C:\Users\Brian\Downloads\Setup.exe
2014-07-08 17:11 - 2014-07-08 17:11 - 00002371 _____ () C:\Users\Brian\Desktop\Google Chrome.lnk
2014-07-08 17:11 - 2014-07-08 17:11 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-04 04:43 - 2014-07-04 04:43 - 00016026 _____ () C:\Windows\SysWOW64\hs_err_pid36308.log
2014-07-02 21:30 - 2014-07-02 21:30 - 00895120 _____ (Google Inc.) C:\Users\Brian\Desktop\ChromeSetup.exe
2014-07-02 19:04 - 2014-07-02 21:19 - 00000000 ____D () C:\Program Files (x86)\JavaLive! Manager
2014-07-02 19:04 - 2014-07-02 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaLive! Manager
2014-07-02 19:02 - 2014-07-02 19:03 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-07-02 16:54 - 2014-07-02 16:53 - 00256968 _____ () C:\Users\Brian\Desktop\DriverFinder_Setup.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-01 13:27 - 2014-08-01 13:26 - 00057433 _____ () C:\Users\Brian\Desktop\FRST.txt
2014-08-01 13:26 - 2014-08-01 13:25 - 00000000 ____D () C:\FRST
2014-08-01 13:24 - 2014-07-30 23:39 - 00160938 _____ () C:\Users\Brian\Desktop\OTL.Txt
2014-08-01 13:14 - 2010-08-12 12:49 - 01261222 _____ () C:\Windows\WindowsUpdate.log
2014-08-01 12:55 - 2010-08-27 02:40 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001UA.job
2014-08-01 12:50 - 2014-08-01 12:50 - 02094080 _____ (Farbar) C:\Users\Brian\Desktop\FRST64.exe
2014-08-01 12:49 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-01 12:49 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-01 12:48 - 2014-06-29 07:08 - 00000000 ____D () C:\Users\Brian\AppData\Local\MovieMaster
2014-08-01 12:45 - 2014-08-01 12:45 - 00000000 ____D () C:\Users\Brian\AppData\Local\BrowserSafeguard
2014-08-01 12:40 - 2014-07-30 18:36 - 00003068 _____ () C:\Windows\System32\Tasks\Right Backup_startup
2014-08-01 12:40 - 2014-07-09 17:42 - 00003120 _____ () C:\Windows\System32\Tasks\Advanced System Protector_startup
2014-08-01 12:39 - 2014-06-22 04:35 - 00002370 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-4.job
2014-08-01 12:39 - 2014-06-22 04:35 - 00001444 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-1.job
2014-08-01 12:39 - 2014-06-22 04:35 - 00001392 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-5.job
2014-08-01 12:39 - 2014-06-22 04:35 - 00001310 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-2.job
2014-08-01 12:39 - 2014-06-22 04:34 - 00003452 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-11.job
2014-08-01 12:39 - 2014-06-22 04:34 - 00002770 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-3.job
2014-08-01 12:39 - 2014-06-22 04:34 - 00001442 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-6.job
2014-08-01 12:39 - 2014-06-22 04:34 - 00001378 _____ () C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-7.job
2014-08-01 12:39 - 2014-06-22 04:33 - 00000428 _____ () C:\Windows\Tasks\ViewPassword Update.job
2014-08-01 12:39 - 2014-06-22 04:33 - 00000418 _____ () C:\Windows\Tasks\ViewPassword_wd.job
2014-08-01 12:39 - 2012-04-16 08:32 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-01 12:39 - 2011-07-06 20:02 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001UA.job
2014-08-01 12:39 - 2010-08-12 13:03 - 00000000 ____D () C:\ProgramData\Temp
2014-08-01 11:52 - 2014-07-10 16:59 - 00002130 _____ () C:\Windows\setupact.log
2014-08-01 11:52 - 2010-08-12 13:27 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-01 11:52 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-31 09:04 - 2011-07-06 20:02 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001Core.job
2014-07-30 23:22 - 2014-07-30 23:22 - 00006434 _____ () C:\Users\Brian\Desktop\07302014_231035.log
2014-07-30 23:22 - 2014-07-30 23:17 - 00002290 _____ () C:\Users\Brian\Desktop\GooredFix.txt
2014-07-30 23:18 - 2014-07-30 23:18 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Brian\Desktop\tdsskiller.exe
2014-07-30 23:17 - 2014-07-30 23:17 - 00071398 _____ (jpshortstuff) C:\Users\Brian\Desktop\GooredFix.exe
2014-07-30 23:17 - 2014-07-30 23:17 - 00000000 ____D () C:\Users\Brian\Desktop\GooredFix Backups
2014-07-30 23:14 - 2010-08-25 22:14 - 00000000 ____D () C:\Windows\ERDNT
2014-07-30 23:10 - 2014-07-30 23:10 - 00000000 ____D () C:\_OTM
2014-07-30 23:09 - 2014-07-30 23:09 - 00522240 _____ (OldTimer Tools) C:\Users\Brian\Desktop\OTM.exe
2014-07-30 23:06 - 2014-07-30 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT
2014-07-30 23:06 - 2014-07-30 23:06 - 00000000 ____D () C:\Program Files (x86)\ERUNT
2014-07-30 23:05 - 2014-07-30 23:05 - 00791393 _____ (Lars Hederer ) C:\Users\Brian\Downloads\erunt-setup.exe
2014-07-30 19:15 - 2014-07-30 19:15 - 01237208 _____ () C:\Users\Brian\Downloads\Setup (6).exe
2014-07-30 19:15 - 2014-07-30 19:15 - 01237208 _____ () C:\Users\Brian\Downloads\Setup (5).exe
2014-07-30 19:11 - 2010-08-12 13:35 - 00001742 _____ () C:\Windows\system32\ServiceFilter.ini
2014-07-30 19:08 - 2014-07-30 19:08 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-07-30 19:08 - 2014-07-30 19:08 - 00000000 ____D () C:\Windows\system32\NV
2014-07-30 19:05 - 2011-12-24 20:04 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-30 19:05 - 2011-12-24 20:04 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-30 18:59 - 2014-06-22 04:35 - 00000000 ____D () C:\temp
2014-07-30 18:57 - 2010-08-12 13:25 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-30 18:51 - 2010-08-12 13:25 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-30 18:47 - 2011-12-24 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-30 18:41 - 2014-07-30 18:41 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Brian\Downloads\revosetup.exe
2014-07-30 18:41 - 2014-07-30 18:41 - 00001270 _____ () C:\Users\Brian\Desktop\Revo Uninstaller.lnk
2014-07-30 18:41 - 2011-08-03 09:33 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-07-30 18:18 - 2014-07-10 16:59 - 00004306 _____ () C:\Windows\PFRO.log
2014-07-30 18:13 - 2014-07-10 17:32 - 00000000 ____D () C:\ProgramData\4a607f86f23577d7
2014-07-30 18:12 - 2014-07-30 18:12 - 00000000 ____D () C:\Users\Brian\AppData\Local\Packages
2014-07-30 18:12 - 2014-07-30 18:12 - 00000000 ____D () C:\ProgramData\dealstear
2014-07-30 17:43 - 2014-07-30 17:43 - 00602112 _____ (OldTimer Tools) C:\Users\Brian\Desktop\OTL.exe
2014-07-30 17:34 - 2009-07-14 00:13 - 00800938 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-30 17:32 - 2014-07-30 17:32 - 00000000 ____D () C:\ProgramData\Fast And Safe
2014-07-30 17:32 - 2014-06-22 04:43 - 00000000 ____D () C:\ProgramData\374311380
2014-07-29 12:41 - 2014-06-22 04:34 - 00000908 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-11 17:45 - 2014-07-11 17:45 - 00270592 _____ () C:\Users\Brian\Downloads\Setup (4).exe
2014-07-11 17:36 - 2014-07-11 17:36 - 00003124 _____ () C:\Windows\System32\Tasks\{B5FA72D1-E74B-4CA5-967F-2315E8718358}
2014-07-11 17:35 - 2014-07-11 17:35 - 01767968 _____ (Sony Corporation ) C:\Users\Brian\Downloads\PA_DRIVER (2).EXE
2014-07-11 17:34 - 2014-07-11 17:34 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-07-11 17:34 - 2010-08-12 13:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-11 17:32 - 2014-07-11 17:32 - 01767968 _____ (Sony Corporation ) C:\Users\Brian\Downloads\PA_DRIVER (1).EXE
2014-07-11 17:32 - 2014-07-11 17:32 - 01210528 _____ () C:\Users\Brian\Downloads\Setup (3).exe
2014-07-11 17:32 - 2014-07-11 17:31 - 01767968 _____ (Sony Corporation ) C:\Users\Brian\Downloads\PA_DRIVER.EXE
2014-07-11 17:26 - 2014-07-09 17:43 - 00000000 ____D () C:\ProgramData\WinZip
2014-07-11 17:24 - 2009-07-13 23:45 - 07969920 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-11 17:18 - 2014-06-09 13:39 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-11 17:18 - 2009-07-14 02:45 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-11 17:18 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-11 17:18 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-10 21:57 - 2010-08-25 23:28 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-10 21:55 - 2013-07-13 14:41 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-10 21:53 - 2010-08-29 00:11 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-10 21:37 - 2014-07-09 17:41 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Systweak
2014-07-10 21:34 - 2010-08-12 13:35 - 00003189 _____ () C:\Windows\system32\AutoRunFilter.ini
2014-07-10 21:33 - 2010-08-26 10:04 - 00000000 ____D () C:\Users\Brian
2014-07-10 18:42 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-07-10 17:40 - 2014-07-10 17:33 - 00000000 ____D () C:\Users\Brian\AppData\Local\1118
2014-07-10 17:40 - 2014-07-10 17:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open JDK Explorer
2014-07-10 17:40 - 2014-07-10 17:07 - 00000000 ____D () C:\Program Files (x86)\PCFixSpeed
2014-07-10 17:40 - 2014-06-22 04:46 - 00000000 ____D () C:\ProgramData\SearchModule
2014-07-10 17:40 - 2014-06-22 04:33 - 00000000 ____D () C:\Program Files (x86)\-ViewPassword-soft
2014-07-10 17:40 - 2011-11-09 23:22 - 00000000 ____D () C:\Users\Brian\AppData\Local\Akamai
2014-07-10 17:40 - 2010-08-25 23:46 - 00000000 ____D () C:\ProgramData\PMB Files
2014-07-10 17:40 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\registration
2014-07-10 17:40 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-07-10 17:39 - 2010-08-25 21:51 - 00000000 ____D () C:\Users\Brian\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Guest
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Brian\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Brian\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Brian\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\ASPNET
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-07-10 17:32 - 2014-07-10 17:32 - 00000000 ____D () C:\Users\Administrator
2014-07-10 17:05 - 2014-07-10 17:05 - 01410208 _____ () C:\Users\Brian\Downloads\Setup (2).exe
2014-07-10 17:05 - 2014-07-10 17:05 - 00247160 _____ (System Applet ) C:\Users\Brian\Downloads\Java_Updater_Setup.exe
2014-07-10 17:05 - 2014-07-09 17:41 - 00000000 _____ () C:\end
2014-07-10 17:03 - 2014-07-10 17:00 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\rightbackup
2014-07-10 17:02 - 2014-07-10 17:02 - 00000000 ____D () C:\Program Files (x86)\Right Backup
2014-07-10 17:02 - 2014-07-09 17:42 - 00001056 _____ () C:\Users\Public\Desktop\Right Backup.lnk
2014-07-10 17:02 - 2014-07-09 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Right Backup
2014-07-10 16:59 - 2014-07-10 16:59 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-09 17:51 - 2014-07-10 17:09 - 00135168 _____ () C:\Users\Brian\AppData\Local\ChromeHitoryDB
2014-07-09 17:44 - 2014-07-09 17:44 - 00002289 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2014-07-09 17:44 - 2014-07-09 17:44 - 00002283 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-07-09 17:44 - 2014-07-09 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\VOPackage
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Users\Brian\AppData\Local\WinZip
2014-07-09 17:43 - 2014-07-09 17:43 - 00000000 ____D () C:\Program Files\WinZip
2014-07-09 17:42 - 2014-07-09 17:42 - 00001207 _____ () C:\Users\Public\Desktop\Advanced System Protector.lnk
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\rbtemp
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\ProgramData\Systweak
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
2014-07-09 17:42 - 2014-07-09 17:42 - 00000000 ____D () C:\Program Files (x86)\Advanced System Protector
2014-07-09 17:41 - 2014-07-09 17:41 - 00002322 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-4.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001580 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-6.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001576 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-1.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001510 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-7.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001458 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5_user.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001440 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5.job
2014-07-09 17:41 - 2014-07-09 17:41 - 00001344 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-2.job
2014-07-09 17:41 - 2014-07-09 17:40 - 00000000 ____D () C:\Program Files (x86)\SmartSaver+ 10
2014-07-09 17:41 - 2011-07-26 08:36 - 00000000 ____D () C:\Program Files (x86)\Google
2014-07-09 17:40 - 2014-07-09 17:40 - 00003804 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-11.job
2014-07-09 17:40 - 2014-07-09 17:40 - 00002434 _____ () C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-3.job
2014-07-09 17:40 - 2014-07-09 17:40 - 00000958 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore1cf9bc6d9e5a9a1.job
2014-07-09 17:40 - 2014-07-09 17:40 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\MySearchDial
2014-07-09 17:40 - 2014-06-22 04:18 - 00003506 _____ () C:\Windows\System32\Tasks\MySearchDial
2014-07-09 17:39 - 2014-07-09 17:39 - 00001236 _____ () C:\Users\Public\Desktop\Media Downloader.lnk
2014-07-09 17:39 - 2014-07-09 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Downloader
2014-07-09 17:39 - 2014-07-09 17:39 - 00000000 ____D () C:\Program Files (x86)\Mysearchdial
2014-07-09 17:39 - 2014-07-09 17:39 - 00000000 ____D () C:\Program Files (x86)\Media Downloader
2014-07-09 17:38 - 2014-07-09 17:38 - 00270592 _____ () C:\Users\Brian\Downloads\Setup (1).exe
2014-07-09 17:37 - 2014-07-09 17:37 - 00270592 _____ () C:\Users\Brian\Downloads\Setup.exe
2014-07-09 17:29 - 2012-04-16 08:31 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-09 17:29 - 2011-05-13 11:26 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-09 17:28 - 2014-06-08 18:58 - 11204096 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-07-08 17:11 - 2014-07-08 17:11 - 00002371 _____ () C:\Users\Brian\Desktop\Google Chrome.lnk
2014-07-08 17:11 - 2014-07-08 17:11 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-08 17:03 - 2011-10-06 11:32 - 00000000 ____D () C:\Users\Brian\AppData\Roaming\Media Player Classic
2014-07-04 04:43 - 2014-07-04 04:43 - 00016026 _____ () C:\Windows\SysWOW64\hs_err_pid36308.log
2014-07-02 21:30 - 2014-07-02 21:30 - 00895120 _____ (Google Inc.) C:\Users\Brian\Desktop\ChromeSetup.exe
2014-07-02 21:19 - 2014-07-02 19:04 - 00000000 ____D () C:\Program Files (x86)\JavaLive! Manager
2014-07-02 19:04 - 2014-07-02 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaLive! Manager
2014-07-02 19:03 - 2014-07-02 19:02 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-07-02 16:53 - 2014-07-02 16:54 - 00256968 _____ () C:\Users\Brian\Desktop\DriverFinder_Setup.exe
2014-07-02 16:40 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-07-02 16:34 - 2009-07-13 23:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
Some content of TEMP:
====================
C:\Users\Brian\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\Brian\AppData\Local\Temp\System.Data.SQLite53008.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device boot
description Windows Boot Manager
locale en-US
inherit {globalsettings}
default {current}
resumeobject {8cb2d9b0-7c05-11de-842e-b4611d44fefa}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows Boot Loader
-------------------
identifier {572bcd56-ffa7-11d9-aae0-0007e994107d}
device ramdisk=[\Device\HarddiskVolume1]\winre.wim,{ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
path \windows\system32\boot\winload.exe
description Windows Recovery Environment
osdevice ramdisk=[\Device\HarddiskVolume1]\winre.wim,{ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
systemroot \windows
nx OptIn
detecthal Yes
winpe Yes
Windows Boot Loader
-------------------
identifier {current}
device boot
path \Windows\system32\winload.exe
description Windows 7
locale en-US
loadoptions ENABLE_INTEGRITY_CHECKS
inherit {bootloadersettings}
recoverysequence {8cb2d9b4-7c05-11de-842e-b4611d44fefa}
recoveryenabled Yes
testsigning No
osdevice boot
systemroot \Windows
resumeobject {8cb2d9b0-7c05-11de-842e-b4611d44fefa}
nx OptIn
Windows Boot Loader
-------------------
identifier {8cb2d9b4-7c05-11de-842e-b4611d44fefa}
device ramdisk=[C:]\Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\Winre.wim,{8cb2d9b5-7c05-11de-842e-b4611d44fefa}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\Winre.wim,{8cb2d9b5-7c05-11de-842e-b4611d44fefa}
systemroot \windows
nx OptIn
winpe Yes
Resume from Hibernate
---------------------
identifier {8cb2d9b0-7c05-11de-842e-b4611d44fefa}
device boot
path \Windows\system32\winresume.exe
description Windows Resume Application
locale en-US
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=C:
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-US
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems Yes
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {8cb2d9b5-7c05-11de-842e-b4611d44fefa}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\boot.sdi
Device options
--------------
identifier {ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
description Ramdisk Device Options
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \boot.sdi
LastRegBack: 2014-07-10 18:35
==================== End Of Log ============================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2014 02
Ran by Brian at 2014-08-01 13:28:23
Running from C:\Users\Brian\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
1 Media Player version 2.2.0 (HKLM-x32\...\{6C566E3B-CBFB-4A3C-A8B6-88EA54DE7CA8}_is1) (Version: 2.2.0 - OneFloorApp Ltd.)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Content Viewer (x32 Version: 1.4.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop Lightroom 3.6 64-bit (HKLM\...\{D4F66BBA-D79E-4F11-9B06-70C3D75A2958}) (Version: 3.6.1 - Adobe)
Adobe Reader X (10.1.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.3.633 - Adobe Systems, Inc.)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.230 - Adobe Systems Incorporated.) Hidden
Advanced System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1) (Version: 2.1.1000.13665 - Systweak Software) <==== ATTENTION
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Mover (x64) (HKLM\...\Application Mover (x64 Shareware)_is1) (Version: 4.1 - Funduc Software Inc.)
ARIA Engine v1.0.9.8 (HKLM\...\ARIA Engine_is1) (Version: v1.0.9.8 - Plogue Art et Technologie, Inc)
Aspell 0.6 Dictionary (Language: en) (HKLM-x32\...\Aspell6-Dictionary-en) (Version: - )
Aspell Data (HKLM-x32\...\Aspell) (Version: - )
ASUS AI Recovery (HKLM-x32\...\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.10 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.35 - ASUS)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.29 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0003 - ASUS)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BrowserSafeguard with RocketTab (HKLM-x32\...\BrowserSafeguard) (Version: - BrowserSafeguard with RocketTab) <==== ATTENTION
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
Cisco WebEx Meetings (HKCU\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: - )
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.1908 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3602c - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
dealstear (HKLM-x32\...\{5E03DFA7-51FC-7C12-CEE5-4D75FBB01E8F}) (Version: - dEaalstER)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5C78021E-3C8E-4EDF-97EA-E9B8D808FD6D}) (Version: - Microsoft)
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version: - Lars Hederer)
ETDWare PS/2-x64 7.0.5.11_WHQL (HKLM\...\Elantech) (Version: 7.0.5.11 - ELAN Microelectronics Corp.)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Fast And Safe (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{64af91bf}) (Version: - GTgroup) <==== ATTENTION
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.5 - ASUS)
Free YouTube to MP3 Converter version 3.12.2.430 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.2.430 - DVDVideoSoft Ltd.)
Garritan ARIA Player v1.02 (HKLM\...\__ARIA_1012___is1) (Version: v1.0.2.1 - Garritan)
Garritan Instruments for Finale (HKLM\...\__ARIA_1013___is1) (Version: v1.0.2.2 - Garritan)
Google Chrome (HKCU\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
HQPro-1.9 (HKLM-x32\...\HQPro-1.9) (Version: 1.34.6.10 - HQ-1.9)
HTC BMP USB Driver (HKLM-x32\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC)
HTC Driver Installer (HKLM-x32\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 3.0.0.005 - HTC Corporation)
inSSIDer 2.0 (HKLM\...\{57019733-78E6-43DE-8E6D-55349F0FDE6F}) (Version: 2.0.7 - MetaGeek)
Intel PROSet Wireless (Version: - ) Hidden
Intel® Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2104 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{1A8BA6CE-822D-4888-89E2-ACBF4308F271}) (Version: 13.02.0000 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{C298FF86-AB23-4B58-AC53-A23383C07B3A}) (Version: 1.2.20.0 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Java 6 Update 29 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416029FF}) (Version: 6.0.290 - Oracle)
Java 6 Update 29 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216029FF}) (Version: 6.0.290 - Oracle)
Java SE Development Kit 6 Update 23 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160230}) (Version: 1.6.0.230 - Oracle)
Java SE Development Kit 6 Update 26 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160260}) (Version: 1.6.0.260 - Oracle)
Java SE Development Kit 6 Update 29 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160290}) (Version: 1.6.0.290 - Oracle)
Java SE Development Kit 7 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170000}) (Version: 1.7.0.0 - Oracle)
Java SE Development Kit 7 Update 1 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170010}) (Version: 1.7.0.10 - Oracle)
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
K-Lite Codec Pack 5.3.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 5.3.0 - )
K-Lite Mega Codec Pack 7.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.8.0 - )
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.7.5.1 - Hermann Schinagl)
Logitech Unifying Software 2.00 (HKLM\...\Logitech Unifying) (Version: 2.00.43 - Logitech)
LPT System Updater Service (HKLM-x32\...\{BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24}) (Version: 1.0.0.0 - LPT) <==== ATTENTION
Media Downloader version 1.5 (HKLM-x32\...\Media Downloader_is1) (Version: 1.5 - Media Downloader)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft C++ REST SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio Express 2013 for Windows Desktop (x32 Version: 2.7.40911.287 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Search Enhancement Pack (x32 Version: 3.0.133.0 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.30919.1) (HKLM-x32\...\{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft Streets & Trips 2006 with GPS Locator (HKLM-x32\...\{83ED1E80-A1B7-4226-BCF1-AC4A88151A6B}) (Version: 13.00.09.0200 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Team Foundation Server 2013 Object Model (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ x64 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ x86 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Express Prerequisites x64 - ENU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Preparation (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Express 2013 for Windows Desktop - ENU (HKLM-x32\...\{bec3d87e-1d6d-4b15-8383-29068c86b888}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 for Windows Desktop - ENU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Express 2013 for Windows Desktop (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Master (HKLM-x32\...\MovieMaster) (Version: 2.7.18 - Green Fire Software)
Mozilla Firefox 9.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 9.0.1 (x86 en-US)) (Version: 9.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MyFonts Order M2450391 (HKLM-x32\...\{C33F5967-E096-61D7-DE35-62032378A679}) (Version: 1.0 - MyFonts.com, Inc.)
Mysearchdial (HKLM-x32\...\mysearchdial) (Version: - Mysearchdial) <==== ATTENTION
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
NVIDIA 3D Vision Driver 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 327.02 - NVIDIA Corporation)
NVIDIA Control Panel 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5737 - NVIDIA Corporation)
NVIDIA Graphics Driver 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.10.8 (Version: 1.10.8 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2702 - NVIDIA Corporation) Hidden
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
NVIDIA Updatus (x32 Version: 1.0.3 - NVIDIA Corporation) Hidden
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.1 - Pando Networks Inc.)
PastaQuotes (HKLM-x32\...\pastaleads) (Version: 1.1.0.1 - PastaLeads)
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6077 - Realtek Semiconductor Corp.)
Remote Desktop Access (VuuPC) (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Right Backup (HKLM-x32\...\980124D4-3D52-4c2d-AD41-9E90BDF4C031_Systweak_Ri~01F2B2E8_is1) (Version: 2.1.1000.4391 - Systweak Software)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.4.6.0 - SAMSUNG Electronics Co., Ltd.)
Seagate File Recovery for Windows 2.0 (HKLM-x32\...\Seagate File Recovery for WindowsNSIS) (Version: 2.0.7631 - Seagate)
Search module (HKLM-x32\...\Search module) (Version: - Search Module)
SeaTools for Windows (HKLM-x32\...\{98613C99-1399-416C-A07C-1EE1C585D872}) (Version: 1.2.0.5 - Seagate Technology)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
SmartSaver+ 10 (HKLM-x32\...\SmartSaver+ 10) (Version: 1.34.7.1 - smart-saverplus)
Software Updater version 1.9.4 (HKLM-x32\...\Software Updater_is1) (Version: 1.9.4 - )
SRS Premium Sound Control Panel (HKLM\...\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}) (Version: 1.8.50.0 - SRS Labs, Inc.)
suprasavings (HKLM\...\suprasavings) (Version: 2.0.1 - suprasavings) <==== ATTENTION
SupraSavings (x32 Version: 1.0.0.0 - SupraSavings) Hidden <==== ATTENTION
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab (HKLM-x32\...\SystemRequirementsLab) (Version: - )
System Requirements Lab CYRI (HKLM-x32\...\{943A8D28-80D6-41DC-AE94-81FEB42041BF}) (Version: 4.5.1.0 - Husdawg, LLC)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: - TeamSpeak Systems GmbH)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{C0BDC1DE-C35E-422B-8CBD-C1D555468720}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version: - Microsoft)
USB2.0 UVC 2M WebCam (HKLM\...\USB2.0 UVC 2M WebCam) (Version: 5.8.54000.206 - Sonix)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
ViewPassword (HKLM-x32\...\49DBFAF9-23C4-A643-5CE3-5ACA5F8CA8B0) (Version: - ViewPassword-software) <==== ATTENTION
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
YouTube Accelerator (HKLM-x32\...\YouTube Accelerator) (Version: 3394(build_80) - Goobzo Ltd.)
YouTube Video Downloader 3 (HKLM-x32\...\YouTube Video Downloader_is1) (Version: - Tomabo)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2382725470-2412313811-1806556634-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Brian\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2382725470-2412313811-1806556634-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2382725470-2412313811-1806556634-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2382725470-2412313811-1806556634-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Brian\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2382725470-2412313811-1806556634-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2382725470-2412313811-1806556634-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Brian\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
10-07-2014 22:34:55 Restore Operation
10-07-2014 22:47:05 Windows Update
11-07-2014 02:50:13 Windows Update
11-07-2014 22:33:43 Installed Personal Audio Driver
11-07-2014 22:37:02 Installed Personal Audio Driver
11-07-2014 22:46:26 Windows Update
30-07-2014 22:58:01 Windows Update
30-07-2014 23:42:47 Windows Update
30-07-2014 23:42:47 Revo Uninstaller's restore point - Advanced System Protector
31-07-2014 04:11:28 OTM Restore Point
31-07-2014 23:40:55 Windows Update
01-08-2014 00:02:01 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2010-08-26 10:32 - 2014-07-30 23:10 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0071D28C-BC20-44F4-9F98-A8091A8A20FB} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-04-08] (ATK)
Task: {018333AB-C79C-42AD-8E3F-1B5E15878876} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-5 => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-5.exe [2014-06-22] (HQ-1.9)
Task: {128C5B45-05B5-42D4-866A-497EBD3F6C42} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-1 => C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-codedownloader.exe [2014-06-22] (HQ-1.9)
Task: {175E1781-B7A7-4065-B311-3A4F3A970958} - System32\Tasks\ViewPassword_wd => C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordFIXQNw.exe [2014-06-22] ()
Task: {197B2C43-F266-4F40-8872-226AD749F53D} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-09] (globalUpdate)
Task: {1D123A21-1C27-41F4-AA0D-9B32FADFD670} - System32\Tasks\pcreg => C:\Program Files\pcmax\service.exe [2014-05-29] ()
Task: {24A0FE85-2147-4E02-9FCC-149079387F67} - System32\Tasks\P4G Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {2702479C-5089-496B-B116-BE09256E4C4B} - System32\Tasks\PastaQuotes => C:\Program Files (x86)\pastaleads\ScheduledTask.exe [2014-05-21] ()
Task: {32FCAC19-1AE4-4AC5-8181-CBC4A3606EBB} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)
Task: {33B548DA-AD4B-4E99-A89D-999B662F9124} - System32\Tasks\YTAUpdate_logon => C:\Program Files (x86)\YouTube Accelerator\Updater.exe [2014-06-22] (Goobzo)
Task: {422201BC-2C8B-47C7-9A88-95F443F57E5E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001UA => C:\Users\Brian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-08-16] (Facebook Inc.)
Task: {42820F2A-8FFC-4842-9A31-793541A84C44} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {456085DF-382C-4A6B-B0E2-928DE88FC4F9} - System32\Tasks\YTAUpdate => C:\Program Files (x86)\YouTube Accelerator\Updater.exe [2014-06-22] (Goobzo)
Task: {4EF2CEC9-B6C7-4CF1-A5E6-C720EB269774} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-3 => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-3.exe [2014-06-22] (HQ-1.9)
Task: {577C81F6-9B62-4F37-A6D6-FE454080D637} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5C6B59D3-E62C-48D2-AADF-46222097034C} - System32\Tasks\UNELEVATE_23352 => C:\Program Files (x86)\ShopperPro\JSDriver\1.37.1.189\jsdrv.exe <==== ATTENTION
Task: {6DA3F6EA-16F6-4F60-8113-91807A79F2E5} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-7 => C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-nova.exe [2014-06-22] (HQ-1.9)
Task: {6FE8FBFA-872C-48A0-8C84-5BD3350EB404} - System32\Tasks\MySearchDial => C:\Users\Brian\AppData\Roaming\MySearchDial\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {7210C382-EA7B-4E4B-B895-7BC17107F588} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {79EFE631-3033-4B79-AA04-D08CCDEEC4F8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001Core => C:\Users\Brian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-08-16] (Facebook Inc.)
Task: {7F94157B-CD45-465C-9084-E4099E483EB1} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
Task: {AAC5111B-BBBA-4DA8-9F57-85D8CA94EAB2} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-6 => C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-novainstaller.exe [2014-06-22] (HQ-1.9)
Task: {B8E93094-7AD1-43E0-A6A6-26A34E981E5E} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-2 => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-2.exe [2014-06-22] (HQ-1.9)
Task: {BD1EDFF7-4636-4C6B-8C57-FB1F142D2123} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001UA => C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [2010-08-12] (Google Inc.)
Task: {C7C22C28-89E0-4BB6-AF28-9B775C852095} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-11 => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-11.exe [2014-06-22] (HQ-1.9)
Task: {CA2C56CE-A3D4-4C09-AD9E-10BBB23131A7} - System32\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-4 => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-4.exe [2014-06-22] (HQ-1.9)
Task: {E54F1DDC-2122-45C0-ADC4-54D8F2C2B1EB} - System32\Tasks\BrowserSafeguard Update Task => C:\Program Files (x86)\Browsersafeguard\uninstall.BrowserSafeguard.exe [2014-06-22] () <==== ATTENTION
Task: {F170767C-103A-48AB-AD25-3C95626DAFF4} - System32\Tasks\ViewPassword Update => C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordt83.exe [2014-06-22] ()
Task: {F61CD649-F644-4ACF-81CE-6F5201717F63} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001Core => C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [2010-08-12] (Google Inc.)
Task: {F701B84E-0DFE-49B7-B9DF-F68A9C427FA6} - System32\Tasks\Right Backup_startup => C:\Program Files (x86)\Right Backup\RightBackup.exe [2014-07-10] (Systweak)
Task: {FEC09D1C-D576-4F41-96D3-AE70E1CB1AE2} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe [2014-07-02] (Systweak) <==== ATTENTION
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-1.job => C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-codedownloader.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-11.job => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-11.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-2.job => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-2.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-3.job => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-3.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-4.job => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-4.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-5.job => C:\Program Files (x86)\HQPro-1.9\64e36912-3c31-4f29-91f8-31bef7612b98-5.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-6.job => C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-novainstaller.exe
Task: C:\Windows\Tasks\64e36912-3c31-4f29-91f8-31bef7612b98-7.job => C:\Program Files (x86)\HQPro-1.9\HQPro-1.9-nova.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-1.job => C:\Program Files (x86)\SmartSaver+ 10\SmartSaver+ 10-codedownloader.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-11.job => C:\Program Files (x86)\SmartSaver+ 10\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-11.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-2.job => C:\Program Files (x86)\SmartSaver+ 10\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-2.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-3.job => C:\Program Files (x86)\SmartSaver+ 10\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-3.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-4.job => C:\Program Files (x86)\SmartSaver+ 10\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-4.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5.job => C:\Program Files (x86)\SmartSaver+ 10\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5_user.job => C:\Program Files (x86)\SmartSaver+ 10\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-5.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-6.job => C:\Program Files (x86)\SmartSaver+ 10\SmartSaver+ 10-novainstaller.exe
Task: C:\Windows\Tasks\e71ba47a-c90a-4fcb-a811-4305fd02ffd7-7.job => C:\Program Files (x86)\SmartSaver+ 10\SmartSaver+ 10-nova.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001Core.job => C:\Users\Brian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001UA.job => C:\Users\Brian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore1cf9bc6d9e5a9a1.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001Core.job => C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2382725470-2412313811-1806556634-1001UA.job => C:\Users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ViewPassword Update.job => C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordt83.exe
Task: C:\Windows\Tasks\ViewPassword_wd.job => C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordFIXQNw.exe
==================== Loaded Modules (whitelisted) =============
2010-03-05 11:21 - 2010-03-05 11:21 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2010-10-17 21:45 - 2012-03-11 14:56 - 00086608 _____ () C:\Windows\System32\cpwmon64.dll
2010-08-25 23:37 - 2010-08-25 23:34 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe
2010-08-25 23:37 - 2010-08-25 23:34 - 00151552 _____ () C:\Windows\KMService.exe
2014-06-15 18:14 - 2014-06-15 18:14 - 00034072 _____ () C:\Program Files (x86)\LPT\srpts.exe
2010-09-16 14:06 - 2010-09-16 14:06 - 00080896 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2014-05-21 01:36 - 2014-05-21 01:36 - 00381336 _____ () C:\Program Files (x86)\pastaleads\PastaLeadsService.exe
2014-06-15 18:14 - 2014-06-15 18:14 - 00036120 _____ () C:\Program Files (x86)\LPT\srptsl.exe
2014-06-13 00:55 - 2014-06-13 00:55 - 00233472 _____ () C:\Program Files\pcmax\pcmax.exe
2012-10-12 18:21 - 2013-08-29 17:43 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-15 18:14 - 2014-06-15 18:14 - 00023832 _____ () C:\Program Files (x86)\LPT\srptm.exe
2004-09-30 13:15 - 2004-09-30 13:15 - 00192000 _____ () C:\Program Files\LinkShellExtension\RockallDLL.dll
2014-06-22 04:33 - 2014-06-22 04:33 - 00100864 _____ () C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordFIXQNw.exe
2010-01-11 12:27 - 2010-01-11 12:27 - 00017920 _____ () C:\Program Files\P4G\DevMng.dll
2010-02-03 19:14 - 2010-02-03 19:14 - 00033792 _____ () C:\Program Files\P4G\OvrClk.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2010-08-25 22:36 - 2010-03-15 11:28 - 00166400 _____ () D:\Program Files\WinRAR\rarext.dll
2011-08-31 19:13 - 2011-08-31 19:13 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-05-21 01:36 - 2014-05-21 01:36 - 00030104 _____ () C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe
2014-06-22 04:33 - 2014-06-22 04:33 - 00179712 _____ () C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordHh174.exe
2014-05-21 01:36 - 2014-05-21 01:36 - 00012184 _____ () C:\Program Files (x86)\pastaleads\ScheduledTask.exe
2014-07-30 17:32 - 2014-07-30 17:32 - 00186192 _____ () c:\ProgramData\Fast And Safe\FastAndSafeSvc.dll
2014-07-30 17:32 - 2014-07-30 17:32 - 04125696 _____ () c:\ProgramData\Fast And Safe\FastAndSafe.dll
2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-15 18:14 - 2014-06-15 18:14 - 00043288 _____ () C:\Program Files (x86)\LPT\srptc.dll
2014-06-15 18:13 - 2014-06-15 18:13 - 00018200 _____ () C:\Program Files (x86)\LPT\Smartbar.Common.dll
2014-06-15 18:14 - 2014-06-15 18:14 - 00060184 _____ () C:\Program Files (x86)\LPT\srut.dll
2014-07-10 17:02 - 2013-08-02 19:21 - 00886272 _____ () C:\Program Files (x86)\Right Backup\System.Data.SQLite.dll
2014-06-15 18:14 - 2014-06-15 18:14 - 00077592 _____ () C:\Program Files (x86)\LPT\srpt.dll
2014-06-15 18:14 - 2014-06-15 18:14 - 00067352 _____ () C:\Program Files (x86)\LPT\sppsm.dll
2014-06-15 18:13 - 2014-06-15 18:13 - 00156952 _____ () C:\Program Files (x86)\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-06-15 18:13 - 2014-06-15 18:13 - 00027928 _____ () C:\Program Files (x86)\LPT\Smartbar.Personalization.Common.dll
2014-06-15 18:13 - 2014-06-15 18:13 - 00166680 _____ () C:\Program Files (x86)\LPT\Smartbar.Infrastructure.Utilities.dll
2014-06-22 04:33 - 2014-06-22 04:33 - 00172544 _____ () C:\Program Files (x86)\-ViewPassword-soft\ViewPasswordHh174.dll
2014-07-09 17:42 - 2012-07-25 12:03 - 00886272 _____ () C:\Program Files (x86)\Advanced System Protector\System.Data.SQLite.dll
2014-07-09 17:42 - 2014-07-02 17:43 - 01730984 _____ () C:\Program Files (x86)\Advanced System Protector\aspsys.dll
2014-07-09 17:42 - 2012-07-25 12:03 - 00168448 _____ () C:\Program Files (x86)\Advanced System Protector\UNRAR.DLL
2009-11-02 16:20 - 2009-11-02 16:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 16:23 - 2009-11-02 16:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Microsoft:c7wMWfpDZco0CueOuX3NgczI
AlternateDataStreams: C:\ProgramData\Microsoft:oE5zZeoZTDVj6Nuj4gytnH0
AlternateDataStreams: C:\ProgramData\Temp:56E2E879
AlternateDataStreams: C:\ProgramData\Temp:5C321E34
AlternateDataStreams: C:\Users\Brian\Cookies:4eQ7kx4rxCf1FI3I4wR
AlternateDataStreams: C:\Users\Brian\AppData\Local\Temp:6AoWPJmFJPkxRQPMwNY
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^Users^Brian^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Brian^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ERUNT AutoBackup.lnk => C:\Windows\pss\ERUNT AutoBackup.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Brian^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^JaxUploader.lnk => C:\Windows\pss\JaxUploader.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Brian^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PdaNet Desktop.lnk => C:\Windows\pss\PdaNet Desktop.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: ASUS WebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: doubleTwist => C:\Program Files (x86)\doubleTwist 2.0\DoubleTwist.DeviceHelper.exe
MSCONFIG\startupreg: ETDWare => %ProgramFiles%\Elantech\ETDCtrl.exe
MSCONFIG\startupreg: FileHippo.com => "D:\Program Files (x86)\FileHippo.com\UpdateChecker.exe" /background
MSCONFIG\startupreg: HTC Sync Loader => "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
MSCONFIG\startupreg: IntelWireless => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
MSCONFIG\startupreg: iTunesHelper => "D:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Steam => "D:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: WinampAgent => "D:\Program Files (x86)\Winamp\winampa.exe"
==================== Faulty Device Manager Devices =============
Name: iPodDrv
Description: iPodDrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: iPodDrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/31/2014 09:06:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1030
Error: (07/31/2014 09:06:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1030
Error: (07/31/2014 09:06:50 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/30/2014 06:14:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SoftwareUpdate.exe version 2.1.3.127 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: f68
Start Time: 01cfac46d981105e
Termination Time: 94
Application Path: C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Report Id: 43fc60cc-183f-11e4-b16d-20cf303479aa
Error: (07/30/2014 05:29:23 PM) (Source: Google Update) (EventID: 20) (User: CHARLIE)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s
Error: (07/29/2014 00:42:46 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (472) SUS20ClientDataStore: Unable to read the header of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -501.
Error: (07/29/2014 00:42:46 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll (472) SUS20ClientDataStore: Unable to read the header of logfile C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log. Error -501.
Error: (07/29/2014 00:41:34 PM) (Source: Google Update) (EventID: 20) (User: CHARLIE)
Description: Network Request Error.
Error: 0x80072f78. Http status code: 0.
Trying config: source=IE, named proxy=http=127.0.0.1:13933;https=127.0.0.1:13933, bypass=<-loopback>.
trying CUP:WinHTTP.
Send request returned 0x80072f78. Http status code 0.
trying WinHTTP.
Send request returned 0x80042194. Http status code 404.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, named proxy=http=127.0.0.1:13933;https=127.0.0.1:13933, bypass=<-loopback>.
trying CUP:WinHT
Error: (07/29/2014 00:41:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 74069197
Error: (07/29/2014 00:41:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 74069197
System errors:
=============
Error: (08/01/2014 00:39:46 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259
Error: (08/01/2014 00:39:46 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259
Error: (08/01/2014 11:56:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069
Error: (08/01/2014 11:56:44 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
Error: (08/01/2014 11:54:42 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The PastaQuotes service hung on starting.
Error: (08/01/2014 11:53:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The WebcamMax, WDM Video Capture service failed to start due to the following error:
%%1058
Error: (08/01/2014 11:52:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259
Error: (08/01/2014 11:52:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The iPodDrv service failed to start due to the following error:
%%2
Error: (07/31/2014 06:30:36 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259
Error: (07/31/2014 06:30:36 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259
Microsoft Office Sessions:
=========================
Error: (07/31/2014 09:06:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1030
Error: (07/31/2014 09:06:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1030
Error: (07/31/2014 09:06:50 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/30/2014 06:14:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SoftwareUpdate.exe2.1.3.127f6801cfac46d981105e94C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe43fc60cc-183f-11e4-b16d-20cf303479aa
Error: (07/30/2014 05:29:23 PM) (Source: Google Update) (EventID: 20) (User: CHARLIE)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s
Error: (07/29/2014 00:42:46 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll472SUS20ClientDataStore: C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log-501
Error: (07/29/2014 00:42:46 PM) (Source: ESENT) (EventID: 412) (User: )
Description: wuaueng.dll472SUS20ClientDataStore: C:\Windows\SoftwareDistribution\DataStore\Logs\edb.log-501
Error: (07/29/2014 00:41:34 PM) (Source: Google Update) (EventID: 20) (User: CHARLIE)
Description: Network Request Error.
Error: 0x80072f78. Http status code: 0.
Trying config: source=IE, named proxy=http=127.0.0.1:13933;https=127.0.0.1:13933, bypass=<-loopback>.
trying CUP:WinHTTP.
Send request returned 0x80072f78. Http status code 0.
trying WinHTTP.
Send request returned 0x80042194. Http status code 404.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, named proxy=http=127.0.0.1:13933;https=127.0.0.1:13933, bypass=<-loopback>.
trying CUP:WinHT
Error: (07/29/2014 00:41:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 74069197
Error: (07/29/2014 00:41:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 74069197
CodeIntegrity Errors:
===================================
Date: 2014-06-09 13:38:33.392
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:37:39.349
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:37:09.461
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:37:08.417
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:36:45.436
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:36:42.432
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:36:38.118
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:36:36.399
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:36:28.793
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-06-09 13:36:21.806
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 51%
Total physical RAM: 3893.16 MB
Available physical RAM: 1907.57 MB
Total Pagefile: 7784.49 MB
Available Pagefile: 5279.55 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:116.44 GB) (Free:49.77 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:329.79 GB) (Free:314.16 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: E0C5913D)
Partition 1: (Not Active) - (Size=20 GB) - (Type=1C)
Partition 2: (Active) - (Size=116 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=330 GB) - (Type=OF Extended)
==================== End Of Log ============================