I backed up my bookmarks and reset firefox . I then reran adwcleaner. It still gave me the same error. I do not use Chrome or IE so if need be I can remove those browsers.
Junkware Files installed [Solved]
Started by
pickett
, Sep 28 2014 11:59 AM
-
This topic is locked
#17
Posted 05 October 2014 - 11:29 AM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
disreguard message see next post.
Edited by pickett, 05 October 2014 - 02:36 PM.
#18
Posted 05 October 2014 - 11:50 AM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
I removed google chrome and reran the AdwCleaner. This time it finished, so whatever the hangup was it was being caused by google chrome.
here is the adwCleaner report for a finished scan after google chrome unistalled via control planel.
# AdwCleaner v3.311 - Report created 05/10/2014 at 11:46:21
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Pickett_Kevin - ASUS_I7
# Running from : D:\Users\Pickett_Kevin\Desktop\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : SMUpdd
***** [ Files / Folders ] *****
File Found : D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins\user.js
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\genesis
Key Found : [x64] HKCU\Software\genesis
Key Found : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\NpApp
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17280
-\\ Mozilla Firefox v32.0.3 (x86 en-US)
[ File : D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins\prefs.js ]
[ File : D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\obx740rc.default-1412529368774\prefs.js ]
*************************
AdwCleaner[R10].txt - [3153 octets] - [28/09/2014 11:39:14]
AdwCleaner[R11].txt - [2181 octets] - [03/10/2014 13:02:59]
AdwCleaner[R12].txt - [2181 octets] - [03/10/2014 13:03:32]
AdwCleaner[R13].txt - [2209 octets] - [03/10/2014 13:05:54]
AdwCleaner[R14].txt - [2222 octets] - [03/10/2014 13:10:33]
AdwCleaner[R15].txt - [2116 octets] - [03/10/2014 13:14:17]
AdwCleaner[R16].txt - [2116 octets] - [03/10/2014 15:57:26]
AdwCleaner[R17].txt - [2116 octets] - [03/10/2014 15:58:26]
AdwCleaner[R18].txt - [2036 octets] - [03/10/2014 17:06:04]
AdwCleaner[R19].txt - [2022 octets] - [03/10/2014 17:13:12]
AdwCleaner[R20].txt - [2022 octets] - [03/10/2014 17:13:55]
AdwCleaner[R21].txt - [2017 octets] - [03/10/2014 17:15:57]
AdwCleaner[R22].txt - [2024 octets] - [03/10/2014 17:19:28]
AdwCleaner[R23].txt - [2024 octets] - [03/10/2014 18:03:50]
AdwCleaner[R24].txt - [1851 octets] - [05/10/2014 10:59:06]
AdwCleaner[R25].txt - [1879 octets] - [05/10/2014 11:04:34]
AdwCleaner[R26].txt - [1879 octets] - [05/10/2014 11:13:38]
AdwCleaner[R27].txt - [1794 octets] - [05/10/2014 11:16:24]
AdwCleaner[R28].txt - [2001 octets] - [05/10/2014 11:43:44]
AdwCleaner[R29].txt - [2680 octets] - [05/10/2014 11:46:21]
########## EOF - D:\AdwCleaner\AdwCleaner[R29].txt - [2741 octets] ##########
I will now compleate the other scans requested.
#19
Posted 05 October 2014 - 11:55 AM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
The JRT Log.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.0 (10.05.2014:1)
OS: Windows 7 Ultimate x64
Ran by Pickett_Kevin on Sun 10/05/2014 at 11:51:37.92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Successfully stopped: [Service] smupdd
Successfully deleted: [Service] smupdd
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 10/05/2014 at 11:52:55.72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
rebooting machine to do final scan.
#20
Posted 05 October 2014 - 12:48 PM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
After reboot from doing the JRT program. I noticed that my network status icon from the notification area was missing. I went to to control panel config to ensure it was turned on, but it is off and the Behavior button for it is grayed out. Also the computer lost is sound. When I try to restart the Windows Audio and the Windows Audio endpoint builder i get error 1068: about dependency and error 1722: RPC serve is unavailable. RPC service is running.
I tried to run zoek from both the desktop and root of C: It never shows the window to enter in the controls you had shown. Just waited and then gives error boxes:
D:\Users\Pickett\appdata\local\Temp.vbs does not have program associated with it.
...\appdata\local\test.vbs has no program associated with it.
...\appdata\local\drt.vbs has no program associated with it
....\appdata\local\scripttest.vbs has no programm associated with it.
then tells me a reboot is required to complete the taks...
after reboot this is the log it shows:
Zoek.exe v5.0.0.0 Updated 04-October-2014
Tool run by Pickett_Kevin on Sun 10/05/2014 at 12:19:29.06.
Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 WMI=failure
Running in: Normal Mode Internet Access Detected
Launched: D:\Users\Pickett_Kevin\Desktop\zoek.exe
Scripts are disabled or blocked by a security program, you cannot run zoek.exe
Disable security programs or enable scripting, and try again.
==== Reset WMI ======================
Repository backup failed to complete
Error code: 0x80041003
Facility: WMI
Description: Access denied
The following services are dependent on the Windows Management Instrumentation service.
Stopping the Windows Management Instrumentation service will also stop these services.
Security Center
Intel® Rapid Storage Technology
The Security Center service is stopping.
The Security Center service was stopped successfully.
The Intel® Rapid Storage Technology service is stopping.
The Intel® Rapid Storage Technology service was stopped successfully.
The Windows Management Instrumentation service is stopping.
The Windows Management Instrumentation service was stopped successfully.
C:\Windows\system32\wbem\repository renamed to repository.old
C:\Windows\syswow64\wbem\repository renamed to repository.old
==== C:\zoek_backup content ======================
==== After Reboot ======================
==== EOF on Sun 10/05/2014 at 12:39:39.81 ======================
Same eror when ran from root of C:\ or from my desktop which is D:\users\pickett\desktop
I checked and Windows Management Instrumentation service is running.
#21
Posted 05 October 2014 - 05:40 PM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
I ran a utility to reset the security for files and folders back to default, and then ran a 'sfc /scannow' After those were done, I tried to run zoek again. This time it worked and allowed me to enter your parameters.
Here is the log for it:
Zoek.exe v5.0.0.0 Updated 05-October-2014
Tool run by Pickett_Kevin on Sun 10/05/2014 at 17:11:22.88.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Users\Pickett_Kevin\Desktop\zoek\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
D:\zoek-results2014-10-05-210800.log 1467 bytes
==== System Restore Info ======================
10/5/2014 5:12:56 PM Zoek.exe System Restore Point Created Succesfully.
==== Installed Programs ======================
Tools for .Net 3.5
4500_G510gm_Help
4500G510gm
4500G510gm_Software_Min
64 Bit HP CIO Components Installer
ActivePerl 5.16.3 Build 1604 (64-bit)
Adobe Acrobat XI Pro
Adobe AIR
Adobe Anchor Service CS4
Adobe Creative Suite 5 Master Collection
Adobe Creative Suite 6 Master Collection
Adobe Director 11.5
Adobe Download Assistant
Adobe Encore CS6 Library
Adobe Flash Player 14 ActiveX
Adobe Flash Player 15 Plugin
Adobe Help Manager
Adobe Premiere Pro CS6 Functional Content
Adobe Reader XI (11.0.09)
Adobe Setup
Adobe Shockwave Player 12.1
Adobe Soundbooth CS5 Codecs
Adobe Soundbooth CS5 Royalty Codecs
Adobe Update Manager CS4
Adobe Widget Browser
Adobe® Content Viewer
AI Suite II
AMD Accelerated Video Transcoding
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Media Foundation Decoders
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Asmedia ASM104x USB 3.0 Host Controller Driver
ASUS PC Diagnostics
AVS Audio Converter 7
AVS Audio Editor 7.1
AVS Cover Editor 2.0.1.3
AVS Disc Creator 5
AVS DVD Copy 4.1.2.283
AVS Image Converter 3.0.2.270
AVS Media Player 4.2.2.104
AVS Photo Editor
AVS Registry Cleaner 2.3.1.255
AVS Ringtone Maker version 1.6
AVS Video Converter 8
AVS Video Editor 6
AVS Video ReMaker 4.2.2.153
AzureTools.Notifications
Behaviors SDK (XAML) for Visual Studio
Belarc Advisor 8.3
bl
Blend for Visual Studio 2013
Blend for Visual Studio 2013 ENU resources
Blend for Visual Studio SDK for .NET 4.5
Blend for Visual Studio SDK for Silverlight 5
Blue Iris 3
Blue Iris ActiveX Control
Bluetooth Win7 Suite (64)
Bonjour
BufferChm
Build Tools - amd64
Build Tools - x86
Build Tools Language Resources - amd64
Build Tools Language Resources - x86
Bulk Rename Utility 2.7.1.2
Catalyst Control Center - Branding
Catalyst Control Center
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Classic Shell
D3DX10
Destinations
DeviceDiscovery
DFX
DMX Utilities
DocMgr
DocProc
Dos Panel 1.1
Dotfuscator and Analytics Community Edition
Dropbox
DVD Inventory 2.2.0.0
Elevated Installer
Entity Framework Tools for Visual Studio 2013
eWallet 7.6.2 for Windows PCs
Falcon µSC SSC Programmer
Falcon Controller Software
Fax
FFmpeg v0.6.2 for Audacity
FileZilla Client 3.9.0.5
Free YouTube Downloader 3.5.176
Garmin City Navigator North America NT 2014.30 Update
Garmin Communicator Plugin
Garmin Communicator Plugin x64
Garmin Express
Garmin Express Tray
Google Drive
Google Update Helper
GoPro Studio 2.0.1
GPBaseService2
Haali Media Splitter
HP Document Manager 2.0
HP Imaging Device Functions 13.0
HP Officejet 4500 G510g-m
HP Solution Center 13.0
HP Update
HPDiagnosticAlert
HPProductAssistant
IIS 8.0 Express
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
InstallShield 2013 Limited Edition
Intel® Control Center
Intel® Management Engine Components
Intel® Network Connections 19.3.141.0
Intel® Processor Graphics
Intel® Rapid Storage Technology
Intel® SDK for OpenCL - CPU Only Runtime Package
Intel® Watchdog Timer Driver (Intel® WDT)
Itibiti RTC
iTunes
Java 7 Update 67
Java Auto Updater
JavaScript Tooling
Jovian Color Picker
kitchi
LADSPA_plugins-win-0.4.15
LAME v3.99.3 (for Windows)
LD Calculator Lite 1.02 b1
Light-O-Rama
Lightjams
LocalESPC Dev12
LocalESPCui for en-us Dev12
LOR Object Creator
Macromedia FreeHand MXa
Magic Bullet Suite 64-bit
Malwarebytes Anti-Malware version 2.0.2.1012
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft .NET Framework 4.5 Multi-Targeting Pack
Microsoft .NET Framework 4.5 SDK
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU)
Microsoft .NET Framework 4.5.1 SDK
Microsoft Advertising SDK for Windows 8.1 - ENU
Microsoft Advertising Service Extension for Visual Studio
Microsoft Application Error Reporting
Microsoft ASP.NET MVC 3
Microsoft ASP.NET MVC 4 - Visual Studio 2013 - ENU
Microsoft ASP.NET MVC 4 Runtime
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2013 - ENU
Microsoft ASP.NET Web Pages
Microsoft ASP.NET Web Pages 2 - Visual Studio 2013 - ENU
Microsoft ASP.NET Web Pages 2 Runtime
Microsoft C++ REST SDK for Visual Studio 2013
Microsoft Exchange Web Services Managed API 2.1
Microsoft Expression Blend SDK for .NET 4
Microsoft Help Viewer 2.1
Microsoft Identity Extensions
Microsoft LightSwitch for Visual Studio 2013 Core
Microsoft LightSwitch for Visual Studio 2013 CoreRes - ENU
Microsoft LightSwitch for Visual Studio 2013 v4.5 Tools
Microsoft LightSwitch for Visual Studio 2013 v4.5 ToolsRes - ENU
Microsoft LightSwitch v4.5 SDK
Microsoft Network Monitor 3.4
Microsoft Network Monitor: NetworkMonitor Parsers 3.4
Microsoft NuGet - Visual Studio 2013
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) - ENU Language Pack
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Developer Tools for Visual Studio 2013 - March 2014 Update
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Visio 2007 Service Pack 3 (SP3)
Microsoft Office Visio MUI (English) 2007
Microsoft Office Visio Professional 2007
Microsoft Office Word MUI (English) 2007
Microsoft Portable Library Multi-Targeting Pack
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
Microsoft Report Viewer Add-On for Visual Studio 2013
Microsoft Security Client
Microsoft Security Essentials
Microsoft SharePoint 2013 Developer Tools for Visual Studio
Microsoft SharePoint 2013 Developer Tools for Visual Studio 2012 Nuget Package
Microsoft SharePoint 2013 Developer Tools for Visual Studio ENU Language Pack
Microsoft SharePoint 2013 Developer Tools for Visual Studio Finalizer
Microsoft Silverlight
Microsoft Silverlight 5 SDK
Microsoft SQL Server 2012 Command Line Utilities
Microsoft SQL Server 2012 Data-Tier App Framework
Microsoft SQL Server 2012 Data-Tier App Framework (x64)
Microsoft SQL Server 2012 Express LocalDB
Microsoft SQL Server 2012 Management Objects
Microsoft SQL Server 2012 Management Objects (x64)
Microsoft SQL Server 2012 Native Client
Microsoft SQL Server 2012 T-SQL Language Service
Microsoft SQL Server 2012 Transact-SQL Compiler Service
Microsoft SQL Server 2012 Transact-SQL ScriptDom
Microsoft SQL Server Compact 4.0 SP1 x64 ENU
Microsoft SQL Server Data Tools - enu (11.1.20627.00)
Microsoft SQL Server Data Tools - enu (12.0.30919.1)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1)
Microsoft SQL Server System CLR Types
Microsoft SQL Server System CLR Types (x64)
Microsoft System CLR Types for SQL Server 2012
Microsoft System CLR Types for SQL Server 2012 (x64)
Microsoft Team Foundation Server 2013 Object Model (x64)
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU
Microsoft Visual Basic 6 SP6 - KB2708437 Update
Microsoft Visual C++ ARM Libraries
Microsoft Visual C++ x64-arm Cross Compilers - ENU Resources
Microsoft Visual C++ x64-arm Cross Compilers
Microsoft Visual C++ x64-x86 Cross Compilers - ENU Resources
Microsoft Visual C++ x64-x86 Cross Compilers
Microsoft Visual C++ x64 Libraries
Microsoft Visual C++ x64 Native Compilers - ENU Resources
Microsoft Visual C++ x64 Native Compilers
Microsoft Visual C++ x86 Libraries
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 x64 Designtime - 12.0.21005
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources
Microsoft Visual C++ 2013 Compilers - ENU Resources
Microsoft Visual C++ 2013 Compilers
Microsoft Visual C++ 2013 Core Libraries
Microsoft Visual C++ 2013 Extended Libraries
Microsoft Visual C++ 2013 Microsoft Foundation Class Libraries
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86-x64 Compilers
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Microsoft Visual F# 3.1.1
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
Microsoft Visual Studio 2013 Devenv
Microsoft Visual Studio 2013 Devenv Resources
Microsoft Visual Studio 2013 IntelliTrace Core amd64
Microsoft Visual Studio 2013 IntelliTrace Core x86
Microsoft Visual Studio 2013 IntelliTrace Front End x86
Microsoft Visual Studio 2013 Performance Collection Tools - ENU
Microsoft Visual Studio 2013 Performance Collection Tools
Microsoft Visual Studio 2013 Preparation
Microsoft Visual Studio 2013 Profiling Tools
Microsoft Visual Studio 2013 SDK - ENU
Microsoft Visual Studio 2013 SDK Language Pack - ENU
Microsoft Visual Studio 2013 Shell (Minimum)
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies
Microsoft Visual Studio 2013 Shell (Minimum) Resources
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU
Microsoft Visual Studio 2013 VsGraphics Helper Dependencies
Microsoft Visual Studio Premium 2013 - ENU
Microsoft Visual Studio Premium 2013
Microsoft Visual Studio Professional 2013 - ENU
Microsoft Visual Studio Professional 2013
Microsoft Visual Studio Team Foundation Server 2012 Object Model
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
Microsoft Visual Studio Team Foundation Server 2013 Storyboarding (x64)
Microsoft Visual Studio Team Foundation Server 2013 Storyboarding Language Pack (x64) - ENU
Microsoft Visual Studio Ultimate 2013 - ENU
Microsoft Visual Studio Ultimate 2013
Microsoft Visual Studio Ultimate 2013 XAML UI Designer chs Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer cht Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core
Microsoft Visual Studio Ultimate 2013 XAML UI Designer csy Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer deu Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer esn Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer ita Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer jpn Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer kor Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer plk Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer ptb Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer rus Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer trk Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer fra Resources
Microsoft Web Deploy 3.5
Microsoft Web Deploy dbSqlPackage Provider - enu
Microsoft Web Developer Tools 2013 - Visual Studio 2013
Microsoft Web Platform Installer 4.6
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFCLOC_x86
Minleon LightShow Pro
Minleon LightShow Pro Scheduler
Movie Maker
Mozilla Firefox 32.0.3 (x86 en-US)
Mozilla Maintenance Service
MPLAB Tools v8.92
MSVCRT
MSVCRT Redists
MSVCRT110
MSVCRT110_amd64
MSXML 4.0
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 12
Nero Audio Pack 1
Nero BackItUp
Nero BackItUp Help (CHM)
Nero Blu-ray Player
Nero Blu-ray Player Help (CHM)
Nero Burning ROM
Nero Burning ROM Help (CHM)
Nero ControlCenter
Nero ControlCenter Help (CHM)
Nero Core Components
Nero Disc Menus Basic
Nero Effects Basic
Nero Express
Nero Express Help (CHM)
Nero Kwik Media
Nero Kwik Media Help (CHM)
Nero Kwik Themes Basic
Nero PiP Effects Basic
Nero Recode
Nero Recode Help (CHM)
Nero RescueAgent
Nero RescueAgent Help (CHM)
Nero SharedVideoCodecs
Nero Update
Nero Video
Nero Video Help (CHM)
neroxml
Network64
Next Generation Visualisations
Notepad++
OCR Software by I.R.I.S. 13.0
Open XML SDK 2.0 for Microsoft Office
Open XML SDK 2.0 Productivity Tool for Microsoft Office
Open XML SDK 2.5 for Microsoft Office
OutlookTools 2
PDF Settings CS6
ph
Photo Common
Photo Gallery
PL-2303 USB-to-Serial
PowerChute Personal Edition 3.0.2
PreEmptive Analytics Visual Studio Components
Prerequisite installer
Prerequisites for SSDT
ProntoEdit NG
ProntoEdit NG Setup Support
Python Tools Redirection Template
QuickTime 7
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
RegZooka
Scan
Screen AVI CAM 4.0
SDFormatter
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition
Security Update for Microsoft Office Visio 2007 suites (KB2596595) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2880515) 32-Bit Edition
SharePoint Client Components
Shark007 Advanced Codecs
SignBoard
SlimDX Runtime .NET 4.0 x64 (January 2012)
Smart Pixel System
Smart String Utility
SolutionCenter
Status
swMSM
Syncios version 2.0.9
System Requirements Lab for Intel
Team Explorer for Microsoft Visual Studio 2013
TeamViewer 9
Temp File Cleaner
The Print Shop 22
Toolbox
TrayApp
UltraCompare
UltraEdit
Update for (KB2504637)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2889914) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Visio 2007 Help (KB963666)
Update for Microsoft Office Word 2007 Help (KB963665)
VC User CRT71 RTL X86 ---
VC User MFC71 RTL X86 ---
VC80CRTRedist - 8.0.50727.6195
Vegas Pro 12.0 (64-bit)
Visual F# 3.1.1 SDK
Visual F# 3.1.1 VS
Visual Studio 2013 Prerequisites - ENU Language Pack
Visual Studio 2013 Prerequisites
Visual Studio 2013 Update 1 (KB2829760)
Visual Studio Extensions for Windows Library for JavaScript
Vixen 3.0.10 (64-bit)
VLC media player
WCF Data Services 5.6.0 Runtime
WCF Data Services Tools for Microsoft Visual Studio 2013
WCF RIA Services V1.0 SP2
WebReg
Welcome App (Start-up experience)
Windows App Certification Kit Native Components
Windows App Certification Kit x64
Windows Azure Mobile Services SDK
Windows Azure Mobile Services Tools for Visual Studio 2013 Preview - v1.0
Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0
Windows Azure Tools for LightSwitch for Visual Studio 2013 - March 2014 Update - v2.2
Windows Azure Tools for LightSwitch for Visual Studio 2013 - v2.1
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Media Player Firefox Plugin
Windows Runtime Intellisense Content - en-us
Windows Software Development Kit
Windows Software Development Kit DirectX x64 Remote
Windows Software Development Kit DirectX x86 Remote
Windows Software Development Kit for Windows Store Apps
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
Windows XP Targeting with C++
WinPcap 3.0
WinX HD Video Converter Deluxe 4.2.3
WinZip 17.5
WiX Toolset v3.8 Core
WiX Toolset v3.8 Managed SDK
WiX Toolset v3.8 Native 2013 SDK
WiX Toolset v3.8 Visual Studio Integration
WiX Toolset v3.8 X64
WiX Toolset v3.8.1128.0
Workflow Manager Client 1.0
Workflow Manager Tools 1.0 for Visual Studio
X10 Hardware™
x64 Components v4.7.5
x64Components v2.1.3
xLights-Nutcracker version 3.4.13
XML Notepad 2007
Zip Motion Block Video codec (Remove Only)
==== Running Processes ======================
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
D:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
d:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
D:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
D:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\Program Files (x86)\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
D:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
D:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\EC Simulator.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
D:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\Users\Pickett_Kevin\Desktop\zoek\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Services (whitelist) ======================
Powered by E Dev
R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [AMD External Events Utility] - AMD External Events Utility - C:\Windows\system32\atiesrxx.exe
R2 - [APC Data Service] - APC Data Service - "D:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe"
R2 - [APC UPS Service] - APC UPS Service - "D:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe"
R2 - [Apple Mobile Device] - Apple Mobile Device - "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
R2 - [asComSvc] - ASUS Com Service - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
R2 - [asHmComSvc] - ASUS HM Com Service - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
R2 - [AsSysCtrlService] - ASUS System Control Service - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
R2 - [AtherosSvc] - AtherosSvc - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
R2 - [Bonjour Service] - Bonjour Service - "C:\Program Files\Bonjour\mDNSResponder.exe"
R2 - [DTSAudioService] - DTSAudioService - "C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe"
R2 - [IAStorDataMgrSvc] - Intel® Rapid Storage Technology - "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"
R2 - [Intel® PROSet Monitoring Service] - Intel® PROSet Monitoring Service - C:\Windows\system32\IProsetMonitor.exe
R2 - [LMS] - Intel® Management and Security Application Local Management Service - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
R2 - [MsMpSvc] - Microsoft Antimalware Service - "C:\Program Files\Microsoft Security Client\MsMpEng.exe"
R2 - [RealNetworks Downloader Resolver Service] - RealNetworks Downloader Resolver Service - "C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
R2 - [sppsvc] - Software Protection - C:\Windows\system32\sppsvc.exe
R2 - [TeamViewer9] - TeamViewer 9 - "d:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
R2 - [UNS] - Intel® Management and Security Application User Notification Service - "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"
R2 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
R2 - [WSearch] - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
R3 - [iPod Service] - iPod Service - "C:\Program Files\iPod\bin\iPodService.exe"
R3 - [VSS] - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 - [ehRecvr] - Windows Media Center Receiver Service - C:\Windows\ehome\ehRecvr.exe
S2 - [ehSched] - Windows Media Center Scheduler Service - C:\Windows\ehome\ehsched.exe
S2 - [MBAMScheduler] - MBAMScheduler - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
S2 - [MBAMService] - MBAMService - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
S3 - [ALG] - Application Layer Gateway Service - C:\Windows\System32\alg.exe
S3 - [c2wts] - Claims to Windows Token Service - C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe
S3 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S3 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
S3 - [COMSysApp] - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [cphs] - Intel® Content Protection HECI Service - C:\Windows\SysWow64\IntelCpHeciSvc.exe
S3 - [Fax] - Fax - C:\Windows\system32\fxssvc.exe
S3 - [FLEXnet Licensing Service] - FLEXnet Licensing Service - "C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [fussvc] - Windows App Certification Kit Fast User Switching Utility Service - "d:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe"
S3 - [Garmin Core Update Service] - Garmin Core Update Service - "d:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
S3 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - [ICCS] - Intel® Integrated Clock Controller Service - Intel® ICCS - "C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe"
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\Windows\system32\IEEtwCollector.exe /V
S3 - [LightShow Pro Service] - LightShow Pro Service - "D:\Program Files\Minleon\LightShowPro\LightShowProService.exe"
S3 - [Macromedia Licensing Service] - Macromedia Licensing Service - "C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"
S3 - [Microsoft Office Groove Audit Service] - Microsoft Office Groove Audit Service - "D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe"
S3 - [MozillaMaintenance] - Mozilla Maintenance Service - "d:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\Windows\system32\msiexec.exe /V
S3 - [NisSrv] - Microsoft Network Inspection - "C:\Program Files\Microsoft Security Client\NisSrv.exe"
S3 - [odserv] - Microsoft Office Diagnostics Service - "C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
S3 - [PerfHost] - Performance Counter DLL Host - C:\Windows\SysWow64\perfhost.exe
S3 - [rpcapd] - Remote Packet Capture Protocol v.0 (experimental) - "C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
S3 - [SNMPTRAP] - SNMP Trap - C:\Windows\System32\snmptrap.exe
S3 - [SQLWriter] - SQL Server VSS Writer - "d:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
S3 - [SwitchBoard] - Adobe SwitchBoard - "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
S3 - [TrustedInstaller] - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - [vds] - Virtual Disk - C:\Windows\System32\vds.exe
S3 - [VsEtwService120] - Visual Studio ETW Event Collection Service - "C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe"
S3 - [wbengine] - Block Level Backup Engine Service - "C:\Windows\system32\wbengine.exe"
S3 - [wmiApSrv] - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S4 - [aspnet_state] - ASP.NET State Service - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S4 - [wlidsvc] - Windows Live ID Sign-in Assistant - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
==== System Specs ======================
Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 16282 MB
CPU Info: Intel® Core™ i7-2600K CPU @ 3.40GHz
CPU Speed: 3576.6 MHz
Sound Card: Speakers (Realtek High Definiti |
Realtek Digital Output(Optical) |
Realtek Digital Output (Realtek |
Display Adapters: AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | Intel® HD Graphics 3000 | Intel® HD Graphics 3000 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 2x; Generic PnP Monitor | Dell SE198WFP(Digital) |
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: TeamViewer VPN Adapter | Bluetooth Device (Personal Area Network) #2 | Intel® 82579V Gigabit Network Connection
CD / DVD Drives: 1x (E: | ) E: ASUS DRW-24B1ST a
Ports: COM6 LPT Port NOT Present.
Mouse: 6 Button Wheel Mouse Present
Hard Disks: C: 111.7GB | D: 931.5GB | F: 465.8GB | G: 465.8GB | H: 931.5GB
Hard Disks - Free: C: 30.9GB | D: 684.3GB | F: 342.6GB | G: 53.3GB | H: 931.3GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 11/09/12 | HPQOEM - 1072009
Time Zone: Mountain Standard Time
Motherboard *: ASUSTeK Computer INC. P8Z68-V PRO
Country: United States
Language: ENU
==== System Specs (Software) ======================
Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Default Browser: Firefox 32.0.3
Internet Explorer Version: 11.0.9600.17280
Mozilla Firefox version: 24.0 (x86 en-US)
Mozilla Firefox version: 32.0.3 (x86 en-US)
Adobe Reader version: 11.0.9.29
Sun Java version: 1.7.0_67 (32-bit)
Sun Java version: 1.7.0_67 (64-bit)
Flash Player version: 15.0.0.152
Shockwave Player version: 12.1.3r153
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-10-05 18:15:56 2D59187055E361DCCEDEA9C91FDC24CF 21052790 ----a-w- C:\Windows\repository.backup
2014-09-16 22:35:27 A8F0B315F67842060906A301108CDAB0 2080472 ----a-w- C:\Windows\RtlExUpd.dll
====== D:\Users\PICKET~1\AppData\Local\Temp ====
====== Java Cache =====
2014-10-05 21:52:43 D41D8CD98F00B204E9800998ECF8427E 0 -c--a-w- D:\Users\Administrator\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-473a9d69
====== C:\Windows\SysWOW64 =====
2014-10-05 22:55:10 D1B5A1528460980E82884DD217827260 6830 ----a-w- C:\Windows\SysWOW64\PerfStringBackup.TMP
2014-10-02 19:33:14 E3D7B3F64C30994409BDF8E48048A854 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-10-02 19:33:14 6DD476318F524D2DCB73AFEB2EE27B4A 61952 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-02 19:33:14 297EF1AB73B8FCE76BCA1365C2E49AFC 440320 ----a-w- C:\Windows\SysWOW64\ieui.dll
2014-10-02 19:33:13 D603AC77E17E5B9583E382F2EE0381A7 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-10-02 19:33:13 CC8F34B345DA638D77BB48C035DA628D 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll
2014-10-02 19:33:13 AA595171932ACC79DA9851067DCBDABF 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2014-10-02 19:33:13 84E96F4AF8A7748A3DE7C3EBBC6768E5 365056 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2014-10-02 19:33:13 7C3D593AB1E2F5E5687D97772EF99AC7 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2014-10-02 19:33:13 4F2EDC301EC63F803C0FDB6CC87EDA24 454656 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-10-02 19:33:13 42F6F28D4885505F687CAF0459FF9F90 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-10-02 19:33:13 13C2C87C35E52AAB1B439FB2E26DF2DE 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-10-02 19:33:13 074646C5A979DE79133DE4A8530A9C5D 603136 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-10-02 19:33:13 010DFAF3EF93994B805BAA1493D47973 243200 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2014-10-02 19:33:12 8D4FCAB2643DFEF68040B70F1EDCCBC5 327872 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2014-10-02 19:33:12 77F79126444896B5867E6761490735B8 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-02 19:33:12 5074835337862817DB3726558D0908DE 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-02 19:33:12 2E2E40E5D92EEA979548E307C5781038 597504 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2014-10-02 19:33:12 1D8C086A39B9794D7131384586811B25 678400 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2014-10-02 19:33:11 FD96C05DE700F5FD26273D6DDB6495A7 2185728 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-10-02 19:33:11 88EBB8526981D03C5777AB0A4AEBA8B4 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-02 19:33:10 D58988722C72D265B51A54103DFC2C6F 1812992 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-10-02 19:33:10 77B7DDF91F3ED2CDB6CF60224EE13433 4232704 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2014-10-02 19:33:10 6A3A809CA7A8F40C89E6F1D301898A66 2014208 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2014-10-02 19:33:10 41010A88B70A2168F801DC19EBD4CB4F 1190400 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-10-02 19:33:09 A3560FAFC1686D5EE9830B33B5C74B66 11769856 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-10-02 19:33:09 7BF1CE9240CB9DD27C3E30733176EB8E 17455104 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-10-02 19:26:33 B094390B6B2D0456821384771020870B 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2014-10-02 19:26:33 1B85FA0D0A93C011B76678733F39DB6C 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2014-10-02 19:26:33 10826DA2FC073702AEAB93AF3D73B066 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2014-10-02 19:26:31 1C0E369575F387460E2A5F28269B2CC4 1247744 ----a-w- C:\Windows\SysWOW64\DWrite.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-10-05 21:02:08 96721FF14F2E22622FB41A1A14C18BB4 6273640 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT
2014-10-02 19:33:14 9EFF09364ABDC86770FA0B1BCC9CA3C3 596480 ----a-w- C:\Windows\Sysnative\ieui.dll
2014-10-02 19:33:14 1BE1D1942825BE2146941DA274D2B92F 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-10-02 19:33:13 EF79F0B9E0F277F5797C475DF4248B97 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2014-10-02 19:33:13 EE6B22396FA99639A163B1B7E9736669 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2014-10-02 19:33:13 E76C23C71345ACBC65ED8F6E87AD01D1 195584 ----a-w- C:\Windows\Sysnative\msrating.dll
2014-10-02 19:33:13 C07D636B0237172345E68AE8B70A2984 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-10-02 19:33:13 C067D863FCD53B91A5BF78AE1CE88E54 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-10-02 19:33:13 A0600300428AB73664050659E738F11F 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll
2014-10-02 19:33:13 786ECD92C9D77F571134283E0FABAF1A 289280 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2014-10-02 19:33:13 68B0077C0D09D1B669A260F2921FD6B9 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll
2014-10-02 19:33:13 641068C626DE3AD348871D0D7931A3FA 547328 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-10-02 19:33:13 4CF33E458BAEDA917CAE9F2E8338479C 446464 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2014-10-02 19:33:13 305D5395A65D00C74A94AEA40E9909E9 758272 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2014-10-02 19:33:13 2D95BDB699FA1D531B642EA18464FE05 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2014-10-02 19:33:13 2AEFBA4339A34C8EF021B49D23D1F1DF 727040 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-10-02 19:33:13 0113777A28BEC88A50C2566F346E4B58 72704 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-10-02 19:33:12 A1BB4CFB25F7CE1D4F67DD71111823AA 374968 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2014-10-02 19:33:12 920BD93A0B64657A20CA66C2EBB167EA 23591424 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-10-02 19:33:12 4C8838D7C13E9080AF4B548CA791896B 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2014-10-02 19:33:12 33BAC6F66DB5FE5F7E20D41B025F490E 707072 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2014-10-02 19:33:12 227303FC6E95547EA274F4337BBC7278 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2014-10-02 19:33:12 1439630B47D717960D59423958754394 775168 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2014-10-02 19:33:11 75498A52C2AE248DEE5BDF5209768963 2793984 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-10-02 19:33:11 698C19E198F832E071778A1427E942C8 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2014-10-02 19:33:11 5A0C72B9D3CCA42D8AB74890C19443B2 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-10-02 19:33:10 FECA80905D551074E1A9298BD98103B7 1447424 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-10-02 19:33:10 F6304AACC5744016770C8C797CAA2AF7 5833728 ----a-w- C:\Windows\Sysnative\jscript9.dll
2014-10-02 19:33:10 97752927B6E2401011A96E0D6082E403 2104832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2014-10-02 19:33:10 39EBB9708453036A74C30C9A294023FF 2310656 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-10-02 19:33:09 BA56C68CCB912C4C08C97DD32C47AD31 13588480 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-10-02 19:26:33 EE4B105F1DBE1E864AFC72E7F0315432 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2014-10-02 19:26:33 33EF550DCCC58C93F5B65FD75BAD9832 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll
2014-10-02 19:26:31 DD85F00EC31F77315AE992B7B0411D65 1643520 ----a-w- C:\Windows\Sysnative\DWrite.dll
2014-09-27 23:40:58 2BC04F4CDE421FFEDF715442AD932472 6830 ----a-w- C:\Windows\Sysnative\PerfStringBackup.TMP
2014-09-27 23:38:51 !HASH: COULD NOT OPEN FILE !!!!! 13040 ---ha-w- C:\Windows\Sysnative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-27 23:38:51 !HASH: COULD NOT OPEN FILE !!!!! 13040 ---ha-w- C:\Windows\Sysnative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
====== C:\Windows\Sysnative\drivers =====
2014-10-04 15:21:04 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-09-18 19:35:46 4D1ECC8D02FB0C5C8B92D676283E4D77 34512 ----a-w- C:\Windows\Sysnative\drivers\voxaldriverx64.sys
2014-09-16 22:35:41 886CE666A9507E17475C7156B157D181 5804772 ----a-w- C:\Windows\Sysnative\drivers\rtvienna.dat
2014-09-16 22:35:40 4013C8B5C62F7F8E6A027DFB19173A4E 1099203 ----a-w- C:\Windows\Sysnative\drivers\RTAIODAT.DAT
2014-09-16 22:35:40 39246F2CFBF1D32C3A12E242661EC039 3962840 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys
2014-09-16 22:23:40 23B6F8081F5C7AF1343810641EE0DD58 495376 ----a-w- C:\Windows\Sysnative\drivers\e1c62x64.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-10-05 21:13:17 -------- d-----w- C:\Program Files\DVD Maker
2014-09-16 22:36:02 -------- d-----w- C:\Program Files\Realtek
2014-09-16 22:25:15 -------- d-----w- C:\Program Files\Intel
======= C:\PROGRA~2 =====
2014-10-02 19:34:34 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio 8
2014-10-01 16:49:07 -------- d-----w- C:\PROGRA~2\COMMON~1\VideoOS
2014-09-27 19:16:49 -------- d-----w- C:\PROGRA~2\Blue Iris ActiveX Control
2014-09-23 00:33:01 -------- d-----w- C:\PROGRA~2\IPCWebComponents
2014-09-18 20:14:32 -------- d-----w- C:\PROGRA~2\COMMON~1\Screaming Bee
2014-09-16 22:16:49 -------- d-----w- C:\PROGRA~2\SystemRequirementsLab
2014-09-14 20:43:54 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-09-14 20:43:44 -------- d-----w- C:\PROGRA~2\Java
======= D: =====
====== D:\Users\Pickett_Kevin\AppData\Roaming ======
2014-10-05 21:52:40 -------- dc----w- D:\Users\Administrator\AppData\Locallow\Sun
2014-10-05 21:52:01 -------- dc----w- D:\Users\Administrator\AppData\Local\Apps
2014-10-05 21:50:27 -------- dc----w- D:\Users\Administrator\AppData\Roaming\ClassicShell
2014-10-05 21:47:41 -------- dc----w- D:\Users\Administrator\AppData\Local\DFX
2014-10-05 21:47:40 -------- dc----w- D:\Users\Administrator\AppData\Roaming\Real
2014-10-05 21:47:38 -------- dc----w- D:\Users\Administrator\AppData\Local\Google
2014-10-05 21:02:23 F0AC801E3A4A6C420601A81C78CDE4B3 447784 -c--a-w- D:\Users\Pickett_Kevin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-03 22:33:40 -------- dc----w- D:\Users\Public\AppData\Local\temp
2014-10-03 22:33:40 -------- dc----w- D:\Users\Mcx1-ASUS_I7\AppData\Local\temp
2014-10-03 22:33:40 -------- dc----w- D:\Users\Guest\AppData\Local\temp
2014-10-03 22:33:40 -------- dc----w- D:\Users\DefaultAppPool\AppData\Local\temp
2014-10-03 22:33:40 -------- dc----w- D:\Users\Default\AppData\Local\temp
2014-10-03 22:33:40 -------- dc----w- D:\Users\Administrator\AppData\Local\temp
2014-10-03 22:09:17 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps
2014-09-28 23:02:34 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegZooka
2014-09-27 23:35:49 D4839DFA41E52ED859B9122344C643BA 26 -c--a-w- D:\Users\Pickett_Kevin\AppData\Roaming\Network Meter_Usage.ini
2014-09-17 17:07:06 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Locallow\EmieUserList
2014-09-17 17:07:06 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Locallow\EmieSiteList
2014-09-17 17:06:08 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Local\EmieUserList
2014-09-17 17:06:08 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Local\EmieSiteList
2014-09-17 16:44:29 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\Shark007
2014-09-17 16:44:07 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\Advanced
2014-09-17 16:42:39 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Local\Installer
2014-09-16 22:35:25 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-09-11 18:29:04 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\JVSG
====== D:\Users\Pickett_Kevin ======
2014-10-05 21:48:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SignBoard
2014-10-05 21:47:38 F0A692D16A9FE61EC70CC18765C5EE73 456 -csha-r- D:\Users\Administrator\ntuser.pol
2014-10-05 19:08:06 F0A692D16A9FE61EC70CC18765C5EE73 456 -csha-r- D:\Users\Pickett_Kevin\ntuser.pol
2014-10-05 17:04:27 12EFD5FA51597F188E5DB50BE20EE597 1375089 -c--a-w- D:\Users\Pickett_Kevin\Desktop\AdwCleaner.exe
2014-10-04 15:21:03 -------- d-----w- C:\ProgramData\RogueKiller
2014-10-04 15:20:11 5FFDF7917B1293C4DBDFB57D990A1A90 5472344 -c--a-w- D:\Users\Pickett_Kevin\Desktop\RogueKillerX64.exe
2014-10-04 14:42:10 9302D77A9F6683672A4F231DA2B86059 5185536 -c--a-w- D:\Users\Pickett_Kevin\Desktop\aswmbr.exe
2014-10-02 20:01:36 -------- d-----w- C:\ProgramData\Office Genuine Advantage
2014-09-30 22:19:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-09-28 22:24:34 FB11B410CF0709F87F670D515819FC51 711 -c--a-w- D:\Users\Pickett_Kevin\Application Mover.cfg
2014-09-28 01:37:23 -------- dc----w- D:\Users\Public\Branding
2014-09-26 19:10:21 -------- dc-h--w- D:\Users\Public\IPCamRecord
2014-09-25 13:06:37 -------- d-----w- C:\ProgramData\Deskshare
2014-09-23 00:33:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPCWebComponents
2014-09-17 16:44:29 -------- d-----w- C:\ProgramData\Shark007
2014-09-16 22:36:11 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\ProgramData\DP45977C.lfl
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Videos
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Searches
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Saved Games
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Pictures
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Music
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Links
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Favorites
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Downloads
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Documents
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Desktop
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Contacts
2014-09-14 20:43:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
====== C: exe-files ==
2014-10-05 17:51:09 978528654BA00F2870AF9AA369C41ED1 1704938 ----a-w- C:\JRT.exe
2014-10-05 16:58:47 12EFD5FA51597F188E5DB50BE20EE597 1375089 ----a-w- C:\AdwCleaner.exe
2014-10-03 14:30:48 CC32EE0FA4238DD97D3A550F51440606 2109440 ----a-w- C:\FRST64.exe
2014-10-02 19:33:14 ED689CF5DA7A0374D2A8E3A8550522F7 483328 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2014-10-02 19:33:14 665256B575BF83E4B188BE73450C5C29 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-10-02 19:33:14 4DABFE3A9D3C67E9D9AD83C7F8FAD855 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-10-02 19:33:14 0D75A74E925F00D9F256F6A53733DAF8 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
2014-10-02 19:33:13 42F6F28D4885505F687CAF0459FF9F90 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-10-02 19:33:13 2D95BDB699FA1D531B642EA18464FE05 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-10-02 19:33:12 33BAC6F66DB5FE5F7E20D41B025F490E 707072 ----a-w- C:\Windows\System32\ie4uinit.exe
2014-10-02 19:33:11 698C19E198F832E071778A1427E942C8 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-10-02 19:33:11 5A0C72B9D3CCA42D8AB74890C19443B2 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-10-02 19:33:10 EEA63B8CF19E59C4A51AD2D9A59DDA25 812216 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-10-02 19:33:10 9540F3F5489747E71101E8AC9850CC79 810168 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2014-10-01 17:33:51 D45AC19BCB0CDB46DA7B34EF21BF48B3 996536 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{5923C82E-6BB6-4186-AF14-3066D1F29323}\setup.exe
=== C: other files ==
2014-10-04 15:21:04 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2418582845-3554272899-2585186520-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"ASUS ShellProcess Execute"="C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe"
"ASUS AiChargerPlus Execute"="C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"Display"="D:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"iTunesHelper"="D:\Program Files (x86)\iTunes\iTunesHelper.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"TkBellExe"="D:\Program Files (x86)\RealPlayer\update\realsched.exe -osboot"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"
"HP Software Update"="D:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"DFX"="d:\Program Files (x86)\DFX\DFX.exe -startup"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_DTS"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORDTSUPTBT"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"AtherosBtStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"AthBtTray"="C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
==== Startup Registry Disabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acrobat Assistant 8.0"
"hkey"="HKLM"
"command"="\"d:\\Program Files (x86)\\Adobe\\Acrobat 11.0\\Acrobat\\Acrotray.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GarminExpressTrayApp]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GarminExpressTrayApp"
"hkey"="HKCU"
"command"="\"d:\\Program Files (x86)\\Garmin\\Express Tray\\ExpressTray.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKLM"
"command"="\"D:\\Program Files (x86)\\Microsoft Office\\Office12\\GrooveMonitor.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LightShowProHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LightShowProHelper"
"hkey"="HKCU"
"command"="D:\\Program Files\\Minleon\\LightShowPro\\LightShowProHelper.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"D:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Syncios device service]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Syncios device service"
"hkey"="HKLM"
"command"="D:\\Program Files (x86)\\Syncios\\SynciosDeviceService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\tsiVideo]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="tsiVideo"
"hkey"="HKCU"
"command"="C:\\Windows\\SysWOW64\\rundll32.exe D:\\Users\\PICKET~1\\AppData\\Local\\Temp\\\\mdi164.dll,runme"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CineForm Status.lnk]
"item"="CineForm Status"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CineForm Status.lnk"
"backup"="C:\\Windows\\pss\\CineForm Status.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="d:\\progra~1\\cineform\\Tools\\GOPROC~1.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Minleon LightShow Pro Scheduler - Auto Update.lnk]
"item"="Minleon LightShow Pro Scheduler - Auto Update"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Minleon LightShow Pro Scheduler - Auto Update.lnk"
"backup"="C:\\Windows\\pss\\Minleon LightShow Pro Scheduler - Auto Update.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="D:\\PROGRA~2\\Minleon\\LIGHTS~2.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CscService]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Fax]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WinDefend]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\wlidsvc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WPCSvc]
==== Startup Folders ======================
2013-06-29 20:12:40 778 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk
2013-06-17 18:48:14 1834 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [09/29/2013 12:57 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [09/29/2013 12:57 PM]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-ASUS_I7-Pickett_Kevin" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["D:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2418582845-3554272899-2585186520-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2418582845-3554272899-2585186520-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\Red Giant Link" ["C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe"]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS DigiVRM Help" [C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Mobilink Execute" [C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\ASUS Mobilink.exe]
"C:\Windows\SysNative\tasks\ASUS\Easy Update" [C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe]
"C:\Windows\SysNative\tasks\ASUS\USB 3.0 Boost Service" [C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"[email protected]"="d:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [09/28/2014 04:24 PM]
==== Firefox Extensions ======================
ProfilePath: D:\Users\PICKET~1\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins
- Adobe Acrobat - Create PDF - d:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
- Garmin Communicator - D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
- DownloadHelper - D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Garmin Communicator - %ProfilePath%\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Translate This - %ProfilePath%\extensions\[email protected]
- MP4 Downloader - %ProfilePath%\extensions\[email protected]
- Noia-4 temahanterare - %ProfilePath%\extensions\[email protected]
- NewScrollbars aka NoiaScrollbars - %ProfilePath%\extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
ProfilePath: D:\Users\PICKET~1\AppData\Local\Mozilla\Firefox\Profiles\j9cpfgrv.Kevin
- Noia-4 temahanterare - %ProfilePath%\extensions\[email protected]
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
==== Firefox Plugins ======================
Profilepath: D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director
5174E3BE46B2CCCDAF9CEB5B622CEA9B - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll - Shockwave for Director / Shockwave for Director
9CD7CD8FD07718851DD8081CDF8CA3E7 - D:\Program Files\AdobeCS6\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll - AdobeExManDetect
A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks™ RealDownloader Chrome Background Extension Plug-In (32-bit)
C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks™ RealDownloader PepperFlashVideoShim Plug-In (32-bit)
F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks™ RealDownloader HTML5VideoShim Plug-In (32-bit)
FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
Profilepath: D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\obx740rc.default-1412529368774
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director
5174E3BE46B2CCCDAF9CEB5B622CEA9B - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll - Shockwave for Director / Shockwave for Director
9CD7CD8FD07718851DD8081CDF8CA3E7 - D:\Program Files\AdobeCS6\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll - AdobeExManDetect
A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks™ RealDownloader Chrome Background Extension Plug-In (32-bit)
C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks™ RealDownloader PepperFlashVideoShim Plug-In (32-bit)
F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks™ RealDownloader HTML5VideoShim Plug-In (32-bit)
FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - d:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[]
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[04/16/2013 03:11 AM]
==== IE Start and Search Settings ======================
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft....?LinkId=255141"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE8SRC"
==== C:\zoek_backup content ======================
C:\zoek_backup (files=0 folders=0 0 bytes)
==== EOF on Sun 10/05/2014 at 17:14:45.89 ======================
.
BTW I did create a restore point prior to runing the file security settings, but I fogot to make one prior to removing Google Chome so I could get AdwCleaner to work.
Thanks for being patiant with me and helping me ensure all malware/junkware is removed from here. I see some programs listed in this report that I am not familar with, but I also realize that some programs install helper programs that may not always show up in the control panel install/uninstall programs.
#22
Posted 06 October 2014 - 07:47 PM
Biscuithd
-
- Malware Removal
-
- 2,573 posts
Trusted Helper
BTW I did create a restore point prior to runing the file security settings, but I fogot to make one prior to removing Google Chome so I could get AdwCleaner to work.
Chrome is an odd one in that it sometimes it does that.
Thanks for being patiant with me and helping me ensure all malware/junkware is removed from here.
Gosh, my pleasure! And, thank you as well! 
I see some programs listed in this report that I am not familar with, but I also realize that some programs install helper programs that may not always show up in the control panel install/uninstall programs.
Yes, sometimes there are Helper programs, but I'd be interested in what you're seeing. Let's be sure what they are and I'll help you remove the things that you don't want or no longer need.
Also, I'd like to run two more scans/cleans to catch any last bits that may be hiding on your machine.
We'll search for some remnants that might be hiding. Also, feel free to do uninstalls before or after these scans.
Please download Malwarebytes Anti-Malware and save it to your desktop.
- Install the progam and select update
- Once it has updated select Settings > Detection and Protection >Tick Scan for rootkits
- Go back to the Dashboard and select Scan Now
- If threats are detected, click the Apply Actions button, MBAM will ask for a reboot
- On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop.
Please post that log for my review.
Scan with ESET Online ScannerThis step can only be done using Internet Explorer, Google Chrome or Mozilla Firefox.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
Please visit ESET Online Scanner website.
Click there Run ESET Online Scanner.
If using Internet Explorer:
- Accept the Terms of Use and click Start.
- Allow the running of add-on.
- Download esetsmartinstaller_enu.exe that you'll be given link to.
- Double click esetsmartinstaller_enu.exe.
- Allow the Terms of Use and click Start.
- Make sure that Remove found threats is unchecked.
- Scan archives is checked.
- In Advanced Settings: Scan for potentially unwanted applications, Scan for potentially unsafe applications and Enable Anti-Stealth technology are checked.
- Click Start
- The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
- When completed, the program will begin to scan. This may take several hours. Please, be patient.
- Do not do anything on your machine as it may interrupt the scan.
- When the scan is done, click Finish.
- A logfile will be created at C:\Program Files (x86)\ESET\ESET Online Scanner. Open it using Notepad.
Don't forget to re-enable previously switched-off protection software!
#23
Posted 07 October 2014 - 08:37 AM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
I use Malware quite often. Although I don't always leave it running on the PC since I use Microsoft Security Essentials for my main virus protection. I do have Malware loading when PC is booted up and will run a scan on the PC every few days if I have been downloading or suspect a virus. Someone once told me is was not wise to run 2 virus programs at the same time always.
Anyway, here is the log from Malware.. Nothing found.
The questionable installed programs that showed up in the log, but do not show up in the control panel installed programs are:
Itibiti RTC
Network 64 (I have seen some post that say it is malware, and other post that say it is not)
PH
Other questionable files/directories:
user/appdata/local/temp/ FXSAPIDebugLogFile can delete it. It has no size and when opened with text editor it is blank.
Inside the user folder there is a folder named application data (not the appdata).
inside is
- Microsoft
- Forms
MSComctlib.exd
outlook.box
refedit.exd
- Red Giant
- link
chromium.txt
link.cfg
link.txt
- SystemRequirementsLab
srlproxy_intel_4.5.24.0A.dll
SystemRequirementsLab_Intel_4.5.24.0 (installer)
Can the /appdata/roaming/apple Computer be cleaned out to reduce size? What about older logs file ?
I also see folders in the appdata/roaming for apps that I have unistalled, can they be deleted?
MALWARE LOG:
user/appdata/local/temp/ FXSAPIDebugLogFile can delete it. It has no size and when opened with text editor it is blank.
Inside the user folder there is a folder named application data (not the appdata).
inside is
- Microsoft
- Forms
MSComctlib.exd
outlook.box
refedit.exd
- Red Giant
- link
chromium.txt
link.cfg
link.txt
- SystemRequirementsLab
srlproxy_intel_4.5.24.0A.dll
SystemRequirementsLab_Intel_4.5.24.0 (installer)
Can the /appdata/roaming/apple Computer be cleaned out to reduce size? What about older logs file ?
I also see folders in the appdata/roaming for apps that I have unistalled, can they be deleted?
MALWARE LOG:
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 10/7/2014
Scan Time: 8:18:04 AM
Logfile: MAB Log.text
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.10.07.07
Rootkit Database: v2014.09.19.01
License: Premium
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Pickett_Kevin
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 578929
Time Elapsed: 6 min, 54 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
Will send other report when it is finished.
thanks
#24
Posted 07 October 2014 - 08:48 AM
Biscuithd
-
- Malware Removal
-
- 2,573 posts
Trusted Helper
I use Malware quite often. Although I don't always leave it running on the PC since I use Microsoft Security Essentials for my main virus protection.
Yes, MSE is a fine A/V.
I do have Malware loading when PC is booted up and will run a scan on the PC every few days if I have been downloading or suspect a virus.
I don't usually recommend that MBAM be installed and running as it is a waste (in my opinion) of system resources. Using it in an "on demand" setting as you describe is perfect.
Someone once told me is was not wise to run 2 virus programs at the same time always.
That person is quite wise! One a/v to a computer. Two or more will interfere with each other and potentially miss things.
Just by way of clarification. MBAM is not an A/V. It is in the family of Anti-Malware and not Anti-Virus. Potentially, you can have one Anti-Malware and one Anti-Virus on a single machine without issues.
I wll research the programs that you indicated and get back to you.
#25
Posted 07 October 2014 - 12:13 PM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
Report from ESET:
C:\Program Files\Microsoft Games\Security\Manager\BingDesktopCore.dll a variant of Win64/Sathurbot.A trojan cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Nero\Patch.exe a variant of Win32/HackTool.Patcher.AD potentially unsafe application deleted - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Program Files\Microsoft Games\Security\Manager\BingDesktopCore.dll a variant of Win64/Sathurbot.A trojan cleaned by deleting - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe a variant of Win32/Systweak potentially unwanted application deleted - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Program Files (x86)\Common Files\Nero\Patch.exe a variant of Win32/HackTool.Patcher.AD potentially unsafe application deleted - quarantined
C:\System Volume Information\SystemRestore\FRStaging\Windows\Installer\2ce585.msi a variant of Win32/Systweak potentially unwanted application deleted - quarantined
C:\Windows\Installer\2ce585.msi a variant of Win32/Systweak potentially unwanted application deleted - quarantined
D:\Program Files\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe a variant of Win32/Systweak potentially unwanted application deleted - quarantined
D:\Users\Pickett_Kevin\Speech Software\voxal VoiceChanger\vxlsetupfree.exe a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application deleted - quarantined
#26
Posted 07 October 2014 - 01:54 PM
Biscuithd
-
- Malware Removal
-
- 2,573 posts
Trusted Helper
The questionable installed programs that showed up in the log, but do not show up in the control panel installed programs are:
Itibiti RTC
Network 64 (I have seen some post that say it is malware, and other post that say it is not)
PH
I can see Iticiti RTC in places other than the Installed Programs list, but not the other two. Sometimes the information that a tool gives is a bit misleading. The Installed programs list is sometimes just one area of the Registry with the list. Other times the tools looks for not only the entry in the Installed Programs list, but for physical evidence of the programs existance. If you want me to remove Iticiti RTC, I can easily create a script to do it. The others don't actually exist that I can see.
user/appdata/local/temp/ FXSAPIDebugLogFile can delete it. It has no size and when opened with text editor it is blank.
Yes. Anything in a Temp folder can be removed. I'll script that too for you.
Inside the user folder there is a folder named application data (not the appdata).
inside is
- Microsoft
- Forms
MSComctlib.exd
outlook.box
refedit.exd
- Red Giant
- link
chromium.txt
link.cfg
link.txt
- SystemRequirementsLab
srlproxy_intel_4.5.24.0A.dll
SystemRequirementsLab_Intel_4.5.24.0 (installer)
Can the /appdata/roaming/apple Computer be cleaned out to reduce size? What about older logs file ?
I also see folders in the appdata/roaming for apps that I have unistalled, can they be deleted?
MALWARE LOG:
user/appdata/local/temp/ FXSAPIDebugLogFile can delete it. It has no size and when opened with text editor it is blank.
Inside the user folder there is a folder named application data (not the appdata).
inside is
- Microsoft
- Forms
MSComctlib.exd
outlook.box
refedit.exd
- Red Giant
- link
chromium.txt
link.cfg
link.txt
- SystemRequirementsLab
srlproxy_intel_4.5.24.0A.dll
SystemRequirementsLab_Intel_4.5.24.0 (installer)
Can the /appdata/roaming/apple Computer be cleaned out to reduce size? What about older logs file ?
I also see folders in the appdata/roaming for apps that I have unistalled, can they be deleted?
Some of this stuff is quite necessary and others not so much. It depends on a lot of different factors. Many are just too difficult to leg out.
You can drive yourself crazy chasing all of this stuff. Much like chasing shadows. Honestly, there's not a lot of upside to doing it either. What most of the folks here do is, keep the desktop cleaned, clean up Temp from time to time (Run TFC), always backup your files and maybe once a year or every other year you can freshen the OS. Depending on the OS, you can do a reinstall of just the OS and leave your user files. In other cases, it's scorched earth (reformat and reinstall).
Anyway, I'll write you a script to remove the one program that I can see and clean up Temp. I'll try and get it done later today.
#27
Posted 07 October 2014 - 02:03 PM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
Thanks for your help...
#28
Posted 08 October 2014 - 06:50 AM
Biscuithd
-
- Malware Removal
-
- 2,573 posts
Trusted Helper
Ok, we're going to do these removals with Zoek which you already have downloaded.
Fix with ZOEK
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
- Right-click on the Zoek icon and select
Run as Administrator to start the tool. - Wait patiently until the main console will appear, it may take a minute or two.
- In the main box please paste in the following script:
createsrpoint; Itibiti RTC;u Network 64;u PH;u emptyalltemp; Reboot;
- Make sure that Scan All Users option is checked.
- Push Run Script and wait patiently. The scan may take a couple of minutes.
- When the scan completes, a zoek-results logfile should open in notepad.
- If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)
Please include its content in your next reply.
Don't forget to re-enable your switched-off protection software!
When this is done, then do a regular Zoek Scan as you did previously and post that after you post the zoek-results log and we can see if the fix worked and what is left to do.
#29
Posted 08 October 2014 - 11:22 AM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
zeok report.
Zoek.exe v5.0.0.0 Updated 07-October-2014
Tool run by Pickett_Kevin on Wed 10/08/2014 at 10:51:50.39.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Users\Pickett_Kevin\Desktop\zoek\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
D:\zoek-results2014-10-05-210800.log 1467 bytes
D:\zoek-results2014-10-05-231445.log 67011 bytes
==== System Restore Info ======================
10/8/2014 10:52:34 AM Zoek.exe System Restore Point Created Succesfully.
==== Deleting Files \ Folders ======================
"C:\Windows\Installer\6e0652b.msi" deleted
"C:\Windows\Installer\3c50d35.msi" deleted
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4E30E037E0535E84D9E3349209D354D4 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5979F581366931F4E99F03A782A2BDA5 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{730E03E4-350E-48E5-9D3E-4329903D454D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{185F9795-9663-4F13-9EF9-307A282ADB5A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\4E30E037E0535E84D9E3349209D354D4 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\5979F581366931F4E99F03A782A2BDA5 deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
D:\Users\Pickett_Kevin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\Local Settings\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\Local Settings\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=3 folders=0 3232926 bytes)
==== Empty Temp Folders ======================
D:\Users\Administrator\AppData\Local\temp emptied successfully
D:\Users\Default\AppData\Local\temp emptied successfully
D:\Users\DefaultAppPool\AppData\Local\temp emptied successfully
D:\Users\Guest\AppData\Local\temp emptied successfully
D:\Users\Mcx1-ASUS_I7\AppData\Local\temp emptied successfully
D:\Users\Pickett_Kevin\AppData\Local\Temp will be emptied at reboot
D:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on Wed 10/08/2014 at 10:55:50.05 ======================
After reboot it didn't delete the users\pickett_kevin\appdata\local\temp I ran the TempFileCleaner it emptied out the folder but did not delete the FSAPIDebugLogFile. However after more research I don't think i should delete it anyway.
Network64 - is part of the HP wireless printer controll. Since I use my printer wired from this computer no problem removing it
PH - might of been part of Adobe Audition. If it really needs it I can reinstall Audition
FSAPIDebugLogFile. Is the error log file for the MS Fax/Print. So if I did delete it I'm sure it would rebuild itself anyway. So I'll just leave it alone.
I will run Zeok with the setting from before and post when it is done.
kp
#30
Posted 08 October 2014 - 12:21 PM
pickett
- Topic Starter
-
- Member
-
- 22 posts
Member
Zoek report from Scan with the scan script from a day or two ago.
Zoek.exe v5.0.0.0 Updated 07-October-2014
Tool run by Pickett_Kevin on Wed 10/08/2014 at 11:23:20.36.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Users\Pickett_Kevin\Desktop\zoek\zoek.exe [Scan all users] [Script inserted]
==== Older Logs ======================
D:\zoek-results2014-10-05-210800.log 1467 bytes
D:\zoek-results2014-10-05-231445.log 67011 bytes
D:\zoek-results2014-10-08-165550.log 4496 bytes
==== System Restore Info ======================
10/8/2014 11:26:44 AM Zoek.exe System Restore Point Created Succesfully.
==== Installed Programs ======================
Tools for .Net 3.5
4500_G510gm_Help
4500G510gm
4500G510gm_Software_Min
64 Bit HP CIO Components Installer
ActivePerl 5.16.3 Build 1604 (64-bit)
Adobe Acrobat XI Pro
Adobe AIR
Adobe Anchor Service CS4
Adobe Creative Suite 5 Master Collection
Adobe Creative Suite 6 Master Collection
Adobe Director 11.5
Adobe Download Assistant
Adobe Encore CS6 Library
Adobe Flash Player 14 ActiveX
Adobe Flash Player 15 Plugin
Adobe Help Manager
Adobe Premiere Pro CS6 Functional Content
Adobe Reader XI (11.0.09)
Adobe Setup
Adobe Shockwave Player 12.1
Adobe Soundbooth CS5 Codecs
Adobe Soundbooth CS5 Royalty Codecs
Adobe Update Manager CS4
Adobe Widget Browser
Adobe® Content Viewer
AI Suite II
AMD Accelerated Video Transcoding
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Media Foundation Decoders
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Asmedia ASM104x USB 3.0 Host Controller Driver
ASUS PC Diagnostics
AVS Audio Converter 7
AVS Audio Editor 7.1
AVS Cover Editor 2.0.1.3
AVS Disc Creator 5
AVS DVD Copy 4.1.2.283
AVS Image Converter 3.0.2.270
AVS Media Player 4.2.2.104
AVS Photo Editor
AVS Registry Cleaner 2.3.1.255
AVS Ringtone Maker version 1.6
AVS Video Converter 8
AVS Video Editor 6
AVS Video ReMaker 4.2.2.153
AzureTools.Notifications
Behaviors SDK (XAML) for Visual Studio
Belarc Advisor 8.3
bl
Blend for Visual Studio 2013
Blend for Visual Studio 2013 ENU resources
Blend for Visual Studio SDK for .NET 4.5
Blend for Visual Studio SDK for Silverlight 5
Blue Iris 3
Blue Iris ActiveX Control
Bluetooth Win7 Suite (64)
Bonjour
BufferChm
Build Tools - amd64
Build Tools - x86
Build Tools Language Resources - amd64
Build Tools Language Resources - x86
Catalyst Control Center - Branding
Catalyst Control Center
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Classic Shell
D3DX10
Destinations
DeviceDiscovery
DMX Utilities
DocMgr
DocProc
Dos Panel 1.1
Dotfuscator and Analytics Community Edition
Dropbox
DVD Inventory 2.2.0.0
Elevated Installer
Entity Framework Tools for Visual Studio 2013
eWallet 7.6.2 for Windows PCs
Falcon µSC SSC Programmer
Falcon Controller Software
Fax
FFmpeg v0.6.2 for Audacity
FileZilla Client 3.9.0.5
Free YouTube Downloader 3.5.176
Garmin City Navigator North America NT 2014.30 Update
Garmin Communicator Plugin
Garmin Communicator Plugin x64
Garmin Express
Garmin Express Tray
Google Drive
Google Update Helper
GPBaseService2
Haali Media Splitter
HP Document Manager 2.0
HP Imaging Device Functions 13.0
HP Officejet 4500 G510g-m
HP Solution Center 13.0
HP Update
HPDiagnosticAlert
HPProductAssistant
IIS 8.0 Express
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
Intel® Control Center
Intel® Management Engine Components
Intel® Network Connections 19.3.141.0
Intel® Processor Graphics
Intel® Rapid Storage Technology
Intel® SDK for OpenCL - CPU Only Runtime Package
Intel® Watchdog Timer Driver (Intel® WDT)
iTunes
Java 7 Update 67
Java Auto Updater
JavaScript Tooling
Jovian Color Picker
kitchi
LADSPA_plugins-win-0.4.15
LAME v3.99.3 (for Windows)
LD Calculator Lite 1.02 b1
Light-O-Rama
Lightjams
LocalESPC Dev12
LocalESPCui for en-us Dev12
LOR Object Creator
Macromedia FreeHand MXa
Magic Bullet Suite 64-bit
Malwarebytes Anti-Malware version 2.0.2.1012
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft .NET Framework 4.5 Multi-Targeting Pack
Microsoft .NET Framework 4.5 SDK
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU)
Microsoft .NET Framework 4.5.1 SDK
Microsoft Advertising SDK for Windows 8.1 - ENU
Microsoft Advertising Service Extension for Visual Studio
Microsoft Application Error Reporting
Microsoft ASP.NET MVC 3
Microsoft ASP.NET MVC 4 - Visual Studio 2013 - ENU
Microsoft ASP.NET MVC 4 Runtime
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2013 - ENU
Microsoft ASP.NET Web Pages
Microsoft ASP.NET Web Pages 2 - Visual Studio 2013 - ENU
Microsoft ASP.NET Web Pages 2 Runtime
Microsoft C++ REST SDK for Visual Studio 2013
Microsoft Exchange Web Services Managed API 2.1
Microsoft Expression Blend SDK for .NET 4
Microsoft Help Viewer 2.1
Microsoft Identity Extensions
Microsoft LightSwitch for Visual Studio 2013 Core
Microsoft LightSwitch for Visual Studio 2013 CoreRes - ENU
Microsoft LightSwitch for Visual Studio 2013 v4.5 Tools
Microsoft LightSwitch for Visual Studio 2013 v4.5 ToolsRes - ENU
Microsoft LightSwitch v4.5 SDK
Microsoft Network Monitor 3.4
Microsoft Network Monitor: NetworkMonitor Parsers 3.4
Microsoft NuGet - Visual Studio 2013
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64) - ENU Language Pack
Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x64)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Developer Tools for Visual Studio 2013 - March 2014 Update
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Visio 2007 Service Pack 3 (SP3)
Microsoft Office Visio MUI (English) 2007
Microsoft Office Visio Professional 2007
Microsoft Office Word MUI (English) 2007
Microsoft Portable Library Multi-Targeting Pack
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
Microsoft Report Viewer Add-On for Visual Studio 2013
Microsoft Security Client
Microsoft Security Essentials
Microsoft SharePoint 2013 Developer Tools for Visual Studio
Microsoft SharePoint 2013 Developer Tools for Visual Studio 2012 Nuget Package
Microsoft SharePoint 2013 Developer Tools for Visual Studio ENU Language Pack
Microsoft SharePoint 2013 Developer Tools for Visual Studio Finalizer
Microsoft Silverlight
Microsoft Silverlight 5 SDK
Microsoft SQL Server 2012 Command Line Utilities
Microsoft SQL Server 2012 Data-Tier App Framework
Microsoft SQL Server 2012 Data-Tier App Framework (x64)
Microsoft SQL Server 2012 Express LocalDB
Microsoft SQL Server 2012 Management Objects
Microsoft SQL Server 2012 Management Objects (x64)
Microsoft SQL Server 2012 Native Client
Microsoft SQL Server 2012 T-SQL Language Service
Microsoft SQL Server 2012 Transact-SQL Compiler Service
Microsoft SQL Server 2012 Transact-SQL ScriptDom
Microsoft SQL Server Compact 4.0 SP1 x64 ENU
Microsoft SQL Server Data Tools - enu (11.1.20627.00)
Microsoft SQL Server Data Tools - enu (12.0.30919.1)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1)
Microsoft SQL Server System CLR Types
Microsoft SQL Server System CLR Types (x64)
Microsoft System CLR Types for SQL Server 2012
Microsoft System CLR Types for SQL Server 2012 (x64)
Microsoft Team Foundation Server 2013 Object Model (x64)
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU
Microsoft Visual Basic 6 SP6 - KB2708437 Update
Microsoft Visual C++ ARM Libraries
Microsoft Visual C++ x64-arm Cross Compilers - ENU Resources
Microsoft Visual C++ x64-arm Cross Compilers
Microsoft Visual C++ x64-x86 Cross Compilers - ENU Resources
Microsoft Visual C++ x64-x86 Cross Compilers
Microsoft Visual C++ x64 Libraries
Microsoft Visual C++ x64 Native Compilers - ENU Resources
Microsoft Visual C++ x64 Native Compilers
Microsoft Visual C++ x86 Libraries
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 x64 Designtime - 12.0.21005
Microsoft Visual C++ 2013 32bit Compilers - ENU Resources
Microsoft Visual C++ 2013 Compilers - ENU Resources
Microsoft Visual C++ 2013 Compilers
Microsoft Visual C++ 2013 Core Libraries
Microsoft Visual C++ 2013 Extended Libraries
Microsoft Visual C++ 2013 Microsoft Foundation Class Libraries
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86-x64 Compilers
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Microsoft Visual F# 3.1.1
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
Microsoft Visual Studio 2013 Devenv
Microsoft Visual Studio 2013 Devenv Resources
Microsoft Visual Studio 2013 IntelliTrace Core amd64
Microsoft Visual Studio 2013 IntelliTrace Core x86
Microsoft Visual Studio 2013 IntelliTrace Front End x86
Microsoft Visual Studio 2013 Performance Collection Tools - ENU
Microsoft Visual Studio 2013 Performance Collection Tools
Microsoft Visual Studio 2013 Preparation
Microsoft Visual Studio 2013 Profiling Tools
Microsoft Visual Studio 2013 SDK - ENU
Microsoft Visual Studio 2013 SDK Language Pack - ENU
Microsoft Visual Studio 2013 Shell (Minimum)
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies
Microsoft Visual Studio 2013 Shell (Minimum) Resources
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU
Microsoft Visual Studio 2013 VsGraphics Helper Dependencies
Microsoft Visual Studio Premium 2013 - ENU
Microsoft Visual Studio Premium 2013
Microsoft Visual Studio Professional 2013 - ENU
Microsoft Visual Studio Professional 2013
Microsoft Visual Studio Team Foundation Server 2012 Object Model
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
Microsoft Visual Studio Team Foundation Server 2013 Storyboarding (x64)
Microsoft Visual Studio Team Foundation Server 2013 Storyboarding Language Pack (x64) - ENU
Microsoft Visual Studio Ultimate 2013 - ENU
Microsoft Visual Studio Ultimate 2013
Microsoft Visual Studio Ultimate 2013 XAML UI Designer chs Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer cht Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core
Microsoft Visual Studio Ultimate 2013 XAML UI Designer csy Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer deu Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer esn Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer ita Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer jpn Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer kor Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer plk Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer ptb Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer rus Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer trk Resources
Microsoft Visual Studio Ultimate 2013 XAML UI Designer fra Resources
Microsoft Web Deploy 3.5
Microsoft Web Deploy dbSqlPackage Provider - enu
Microsoft Web Developer Tools 2013 - Visual Studio 2013
Microsoft Web Platform Installer 4.6
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFCLOC_x86
Minleon LightShow Pro
Minleon LightShow Pro Scheduler
Movie Maker
Mozilla Firefox 32.0.3 (x86 en-US)
Mozilla Maintenance Service
MPLAB Tools v8.92
MSVCRT
MSVCRT Redists
MSVCRT110
MSVCRT110_amd64
MSXML 4.0
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 12
Nero Audio Pack 1
Nero BackItUp
Nero BackItUp Help (CHM)
Nero Blu-ray Player
Nero Blu-ray Player Help (CHM)
Nero Burning ROM
Nero Burning ROM Help (CHM)
Nero ControlCenter
Nero ControlCenter Help (CHM)
Nero Core Components
Nero Disc Menus Basic
Nero Effects Basic
Nero Express
Nero Express Help (CHM)
Nero Kwik Media
Nero Kwik Media Help (CHM)
Nero Kwik Themes Basic
Nero PiP Effects Basic
Nero Recode
Nero Recode Help (CHM)
Nero RescueAgent
Nero RescueAgent Help (CHM)
Nero SharedVideoCodecs
Nero Update
Nero Video
Nero Video Help (CHM)
neroxml
Network64
Next Generation Visualisations
Notepad++
OCR Software by I.R.I.S. 13.0
Open XML SDK 2.0 for Microsoft Office
Open XML SDK 2.0 Productivity Tool for Microsoft Office
Open XML SDK 2.5 for Microsoft Office
OutlookTools 2
PDF Settings CS6
Photo Common
Photo Gallery
PL-2303 USB-to-Serial
PowerChute Personal Edition 3.0.2
PreEmptive Analytics Visual Studio Components
Prerequisite installer
Prerequisites for SSDT
ProntoEdit NG
ProntoEdit NG Setup Support
Python Tools Redirection Template
QuickTime 7
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Scan
Screen AVI CAM 4.0
SDFormatter
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition
Security Update for Microsoft Office Visio 2007 suites (KB2596595) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2880515) 32-Bit Edition
SharePoint Client Components
Shark007 Advanced Codecs
SignBoard
SlimDX Runtime .NET 4.0 x64 (January 2012)
Smart Pixel System
Smart String Utility
SolutionCenter
Status
swMSM
Syncios version 2.0.9
System Requirements Lab for Intel
Team Explorer for Microsoft Visual Studio 2013
TeamViewer 9
Temp File Cleaner
The Print Shop 22
Toolbox
TrayApp
UltraCompare
UltraEdit
Update for (KB2504637)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2889914) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Visio 2007 Help (KB963666)
Update for Microsoft Office Word 2007 Help (KB963665)
VC User CRT71 RTL X86 ---
VC User MFC71 RTL X86 ---
VC80CRTRedist - 8.0.50727.6195
Vegas Pro 12.0 (64-bit)
Visual F# 3.1.1 SDK
Visual F# 3.1.1 VS
Visual Studio 2013 Prerequisites - ENU Language Pack
Visual Studio 2013 Prerequisites
Visual Studio 2013 Update 1 (KB2829760)
Visual Studio Extensions for Windows Library for JavaScript
Vixen 3.0.10 (64-bit)
VLC media player
WCF Data Services 5.6.0 Runtime
WCF Data Services Tools for Microsoft Visual Studio 2013
WCF RIA Services V1.0 SP2
WebReg
Welcome App (Start-up experience)
Windows App Certification Kit Native Components
Windows App Certification Kit x64
Windows Azure Mobile Services SDK
Windows Azure Mobile Services Tools for Visual Studio 2013 Preview - v1.0
Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0
Windows Azure Tools for LightSwitch for Visual Studio 2013 - March 2014 Update - v2.2
Windows Azure Tools for LightSwitch for Visual Studio 2013 - v2.1
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Media Player Firefox Plugin
Windows Runtime Intellisense Content - en-us
Windows Software Development Kit
Windows Software Development Kit DirectX x64 Remote
Windows Software Development Kit DirectX x86 Remote
Windows Software Development Kit for Windows Store Apps
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
Windows XP Targeting with C++
WinPcap 3.0
WinX HD Video Converter Deluxe 4.2.3
WinZip 17.5
WiX Toolset v3.8 Core
WiX Toolset v3.8 Managed SDK
WiX Toolset v3.8 Native 2013 SDK
WiX Toolset v3.8 Visual Studio Integration
WiX Toolset v3.8 X64
WiX Toolset v3.8.1128.0
Workflow Manager Client 1.0
Workflow Manager Tools 1.0 for Visual Studio
X10 Hardware™
x64 Components v4.7.5
x64Components v2.1.3
xLights-Nutcracker version 3.4.13
XML Notepad 2007
Zip Motion Block Video codec (Remove Only)
==== Running Processes ======================
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
D:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
D:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\Program Files (x86)\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
D:\Program Files (x86)\iTunes\iTunesHelper.exe
D:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\EC Simulator.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
D:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
D:\Users\Pickett_Kevin\Desktop\zoek\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Services (whitelist) ======================
Powered by E Dev
R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [AMD External Events Utility] - AMD External Events Utility - C:\Windows\system32\atiesrxx.exe
R2 - [APC Data Service] - APC Data Service - "D:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe"
R2 - [APC UPS Service] - APC UPS Service - "D:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe"
R2 - [asComSvc] - ASUS Com Service - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
R2 - [asHmComSvc] - ASUS HM Com Service - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
R2 - [AsSysCtrlService] - ASUS System Control Service - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
R2 - [AtherosSvc] - AtherosSvc - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
R2 - [Bonjour Service] - Bonjour Service - "C:\Program Files\Bonjour\mDNSResponder.exe"
R2 - [DTSAudioService] - DTSAudioService - "C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe"
R2 - [IAStorDataMgrSvc] - Intel® Rapid Storage Technology - "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"
R2 - [Intel® PROSet Monitoring Service] - Intel® PROSet Monitoring Service - C:\Windows\system32\IProsetMonitor.exe
R2 - [LMS] - Intel® Management and Security Application Local Management Service - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
R2 - [MsMpSvc] - Microsoft Antimalware Service - "C:\Program Files\Microsoft Security Client\MsMpEng.exe"
R2 - [RealNetworks Downloader Resolver Service] - RealNetworks Downloader Resolver Service - "C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
R2 - [UNS] - Intel® Management and Security Application User Notification Service - "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"
R2 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
R3 - [iPod Service] - iPod Service - "C:\Program Files\iPod\bin\iPodService.exe"
R3 - [VSS] - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
R3 - [WSearch] - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 - [MBAMScheduler] - MBAMScheduler - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
S2 - [MBAMService] - MBAMService - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
S2 - [sppsvc] - Software Protection - C:\Windows\system32\sppsvc.exe
S3 - [ALG] - Application Layer Gateway Service - C:\Windows\System32\alg.exe
S3 - [Apple Mobile Device] - Apple Mobile Device - "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
S3 - [c2wts] - Claims to Windows Token Service - C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe
S3 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S3 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
S3 - [COMSysApp] - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [cphs] - Intel® Content Protection HECI Service - C:\Windows\SysWow64\IntelCpHeciSvc.exe
S3 - [ehRecvr] - Windows Media Center Receiver Service - C:\Windows\ehome\ehRecvr.exe
S3 - [ehSched] - Windows Media Center Scheduler Service - C:\Windows\ehome\ehsched.exe
S3 - [Fax] - Fax - C:\Windows\system32\fxssvc.exe
S3 - [FLEXnet Licensing Service] - FLEXnet Licensing Service - "C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [fussvc] - Windows App Certification Kit Fast User Switching Utility Service - "d:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe"
S3 - [Garmin Core Update Service] - Garmin Core Update Service - "d:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
S3 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - [ICCS] - Intel® Integrated Clock Controller Service - Intel® ICCS - "C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe"
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\Windows\system32\IEEtwCollector.exe /V
S3 - [LightShow Pro Service] - LightShow Pro Service - "D:\Program Files\Minleon\LightShowPro\LightShowProService.exe"
S3 - [Macromedia Licensing Service] - Macromedia Licensing Service - "C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"
S3 - [Microsoft Office Groove Audit Service] - Microsoft Office Groove Audit Service - "D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe"
S3 - [MozillaMaintenance] - Mozilla Maintenance Service - "d:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\Windows\system32\msiexec.exe /V
S3 - [NisSrv] - Microsoft Network Inspection - "C:\Program Files\Microsoft Security Client\NisSrv.exe"
S3 - [odserv] - Microsoft Office Diagnostics Service - "C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
S3 - [PerfHost] - Performance Counter DLL Host - C:\Windows\SysWow64\perfhost.exe
S3 - [rpcapd] - Remote Packet Capture Protocol v.0 (experimental) - "C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
S3 - [SNMPTRAP] - SNMP Trap - C:\Windows\System32\snmptrap.exe
S3 - [SQLWriter] - SQL Server VSS Writer - "d:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
S3 - [SwitchBoard] - Adobe SwitchBoard - "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
S3 - [TeamViewer9] - TeamViewer 9 - "d:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
S3 - [TrustedInstaller] - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - [vds] - Virtual Disk - C:\Windows\System32\vds.exe
S3 - [VsEtwService120] - Visual Studio ETW Event Collection Service - "C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe"
S3 - [wbengine] - Block Level Backup Engine Service - "C:\Windows\system32\wbengine.exe"
S3 - [wmiApSrv] - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S4 - [aspnet_state] - ASP.NET State Service - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S4 - [wlidsvc] - Windows Live ID Sign-in Assistant - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
==== System Specs ======================
Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 16282 MB
CPU Info: Intel® Core™ i7-2600K CPU @ 3.40GHz
CPU Speed: 3572.2 MHz
Sound Card: Speakers (Realtek High Definiti |
Realtek Digital Output(Optical) |
Realtek Digital Output (Realtek |
Display Adapters: AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | AMD Radeon HD 6800 Series | Intel® HD Graphics 3000 | Intel® HD Graphics 3000 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 2x; Generic PnP Monitor | Dell SE198WFP(Digital) |
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: TeamViewer VPN Adapter | Bluetooth Device (Personal Area Network) #2 | Intel® 82579V Gigabit Network Connection
CD / DVD Drives: 1x (E: | ) E: ASUS DRW-24B1ST a
Ports: COM6 LPT Port NOT Present.
Mouse: 6 Button Wheel Mouse Present
Hard Disks: C: 111.7GB | D: 931.5GB | F: 465.8GB | G: 465.8GB | H: 931.5GB
Hard Disks - Free: C: 29.7GB | D: 676.2GB | F: 342.6GB | G: 54.6GB | H: 931.4GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 11/09/12 | HPQOEM - 1072009
Time Zone: Mountain Standard Time
Motherboard *: ASUSTeK Computer INC. P8Z68-V PRO
Country: United States
Language: ENU
==== System Specs (Software) ======================
Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Default Browser: Firefox 32.0.3
Internet Explorer Version: 11.0.9600.17280
Mozilla Firefox version: 24.0 (x86 en-US)
Mozilla Firefox version: 32.0.3 (x86 en-US)
Adobe Reader version: 11.0.9.29
Sun Java version: 1.7.0_67 (32-bit)
Sun Java version: 1.7.0_67 (64-bit)
Flash Player version: 15.0.0.152
Shockwave Player version: 12.1.3r153
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-10-05 18:15:56 2D59187055E361DCCEDEA9C91FDC24CF 21052790 ----a-w- C:\Windows\repository.backup
2014-09-16 22:35:27 A8F0B315F67842060906A301108CDAB0 2080472 ----a-w- C:\Windows\RtlExUpd.dll
====== D:\Users\PICKET~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-10-05 22:55:10 D1B5A1528460980E82884DD217827260 6830 ----a-w- C:\Windows\SysWOW64\PerfStringBackup.TMP
2014-10-02 19:33:14 E3D7B3F64C30994409BDF8E48048A854 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-10-02 19:33:14 6DD476318F524D2DCB73AFEB2EE27B4A 61952 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-02 19:33:14 297EF1AB73B8FCE76BCA1365C2E49AFC 440320 ----a-w- C:\Windows\SysWOW64\ieui.dll
2014-10-02 19:33:13 D603AC77E17E5B9583E382F2EE0381A7 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-10-02 19:33:13 CC8F34B345DA638D77BB48C035DA628D 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll
2014-10-02 19:33:13 AA595171932ACC79DA9851067DCBDABF 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2014-10-02 19:33:13 84E96F4AF8A7748A3DE7C3EBBC6768E5 365056 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2014-10-02 19:33:13 7C3D593AB1E2F5E5687D97772EF99AC7 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2014-10-02 19:33:13 4F2EDC301EC63F803C0FDB6CC87EDA24 454656 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-10-02 19:33:13 42F6F28D4885505F687CAF0459FF9F90 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-10-02 19:33:13 13C2C87C35E52AAB1B439FB2E26DF2DE 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-10-02 19:33:13 074646C5A979DE79133DE4A8530A9C5D 603136 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-10-02 19:33:13 010DFAF3EF93994B805BAA1493D47973 243200 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2014-10-02 19:33:12 8D4FCAB2643DFEF68040B70F1EDCCBC5 327872 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2014-10-02 19:33:12 77F79126444896B5867E6761490735B8 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-02 19:33:12 5074835337862817DB3726558D0908DE 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-02 19:33:12 2E2E40E5D92EEA979548E307C5781038 597504 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2014-10-02 19:33:12 1D8C086A39B9794D7131384586811B25 678400 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2014-10-02 19:33:11 FD96C05DE700F5FD26273D6DDB6495A7 2185728 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-10-02 19:33:11 88EBB8526981D03C5777AB0A4AEBA8B4 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-02 19:33:10 D58988722C72D265B51A54103DFC2C6F 1812992 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-10-02 19:33:10 77B7DDF91F3ED2CDB6CF60224EE13433 4232704 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2014-10-02 19:33:10 6A3A809CA7A8F40C89E6F1D301898A66 2014208 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2014-10-02 19:33:10 41010A88B70A2168F801DC19EBD4CB4F 1190400 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-10-02 19:33:09 A3560FAFC1686D5EE9830B33B5C74B66 11769856 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-10-02 19:33:09 7BF1CE9240CB9DD27C3E30733176EB8E 17455104 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-10-02 19:26:33 B094390B6B2D0456821384771020870B 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2014-10-02 19:26:33 1B85FA0D0A93C011B76678733F39DB6C 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2014-10-02 19:26:33 10826DA2FC073702AEAB93AF3D73B066 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2014-10-02 19:26:31 1C0E369575F387460E2A5F28269B2CC4 1247744 ----a-w- C:\Windows\SysWOW64\DWrite.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-10-07 01:41:20 728DD5774878F73DCD97932DB3624CBC 6273640 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT
2014-10-02 19:33:14 9EFF09364ABDC86770FA0B1BCC9CA3C3 596480 ----a-w- C:\Windows\Sysnative\ieui.dll
2014-10-02 19:33:14 1BE1D1942825BE2146941DA274D2B92F 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-10-02 19:33:13 EF79F0B9E0F277F5797C475DF4248B97 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2014-10-02 19:33:13 EE6B22396FA99639A163B1B7E9736669 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2014-10-02 19:33:13 E76C23C71345ACBC65ED8F6E87AD01D1 195584 ----a-w- C:\Windows\Sysnative\msrating.dll
2014-10-02 19:33:13 C07D636B0237172345E68AE8B70A2984 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-10-02 19:33:13 C067D863FCD53B91A5BF78AE1CE88E54 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-10-02 19:33:13 A0600300428AB73664050659E738F11F 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll
2014-10-02 19:33:13 786ECD92C9D77F571134283E0FABAF1A 289280 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2014-10-02 19:33:13 68B0077C0D09D1B669A260F2921FD6B9 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll
2014-10-02 19:33:13 641068C626DE3AD348871D0D7931A3FA 547328 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-10-02 19:33:13 4CF33E458BAEDA917CAE9F2E8338479C 446464 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2014-10-02 19:33:13 305D5395A65D00C74A94AEA40E9909E9 758272 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2014-10-02 19:33:13 2D95BDB699FA1D531B642EA18464FE05 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2014-10-02 19:33:13 2AEFBA4339A34C8EF021B49D23D1F1DF 727040 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-10-02 19:33:13 0113777A28BEC88A50C2566F346E4B58 72704 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-10-02 19:33:12 A1BB4CFB25F7CE1D4F67DD71111823AA 374968 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2014-10-02 19:33:12 920BD93A0B64657A20CA66C2EBB167EA 23591424 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-10-02 19:33:12 4C8838D7C13E9080AF4B548CA791896B 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2014-10-02 19:33:12 33BAC6F66DB5FE5F7E20D41B025F490E 707072 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2014-10-02 19:33:12 227303FC6E95547EA274F4337BBC7278 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2014-10-02 19:33:12 1439630B47D717960D59423958754394 775168 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2014-10-02 19:33:11 75498A52C2AE248DEE5BDF5209768963 2793984 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-10-02 19:33:11 698C19E198F832E071778A1427E942C8 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2014-10-02 19:33:11 5A0C72B9D3CCA42D8AB74890C19443B2 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-10-02 19:33:10 FECA80905D551074E1A9298BD98103B7 1447424 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-10-02 19:33:10 F6304AACC5744016770C8C797CAA2AF7 5833728 ----a-w- C:\Windows\Sysnative\jscript9.dll
2014-10-02 19:33:10 97752927B6E2401011A96E0D6082E403 2104832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2014-10-02 19:33:10 39EBB9708453036A74C30C9A294023FF 2310656 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-10-02 19:33:09 BA56C68CCB912C4C08C97DD32C47AD31 13588480 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-10-02 19:26:33 EE4B105F1DBE1E864AFC72E7F0315432 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2014-10-02 19:26:33 33EF550DCCC58C93F5B65FD75BAD9832 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll
2014-10-02 19:26:31 DD85F00EC31F77315AE992B7B0411D65 1643520 ----a-w- C:\Windows\Sysnative\DWrite.dll
2014-09-27 23:40:58 6C7A76D531CDF77F5955C279B5B9C6D2 6830 ----a-w- C:\Windows\Sysnative\PerfStringBackup.TMP
2014-09-27 23:38:51 227343901550B69B935C398CE78E2DED 13040 ---ha-w- C:\Windows\Sysnative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-27 23:38:51 227343901550B69B935C398CE78E2DED 13040 ---ha-w- C:\Windows\Sysnative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
====== C:\Windows\Sysnative\drivers =====
2014-10-04 15:21:04 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-09-18 19:35:46 4D1ECC8D02FB0C5C8B92D676283E4D77 34512 ----a-w- C:\Windows\Sysnative\drivers\voxaldriverx64.sys
2014-09-16 22:35:41 886CE666A9507E17475C7156B157D181 5804772 ----a-w- C:\Windows\Sysnative\drivers\rtvienna.dat
2014-09-16 22:35:40 4013C8B5C62F7F8E6A027DFB19173A4E 1099203 ----a-w- C:\Windows\Sysnative\drivers\RTAIODAT.DAT
2014-09-16 22:35:40 39246F2CFBF1D32C3A12E242661EC039 3962840 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys
2014-09-16 22:23:40 23B6F8081F5C7AF1343810641EE0DD58 495376 ----a-w- C:\Windows\Sysnative\drivers\e1c62x64.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-10-06 18:46:09 -------- d-----w- C:\Program Files\iPod
2014-10-06 18:46:08 -------- d-----w- C:\Program Files\iTunes
2014-10-05 21:13:17 -------- d-----w- C:\Program Files\DVD Maker
2014-09-16 22:36:02 -------- d-----w- C:\Program Files\Realtek
2014-09-16 22:25:15 -------- d-----w- C:\Program Files\Intel
======= C:\PROGRA~2 =====
2014-10-07 14:39:49 -------- d-----w- C:\PROGRA~2\ESET
2014-10-07 00:45:03 -------- d-----w- C:\PROGRA~2\CineForm
2014-10-02 19:34:34 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio 8
2014-10-01 16:49:07 -------- d-----w- C:\PROGRA~2\COMMON~1\VideoOS
2014-09-27 19:16:49 -------- d-----w- C:\PROGRA~2\Blue Iris ActiveX Control
2014-09-23 00:33:01 -------- d-----w- C:\PROGRA~2\IPCWebComponents
2014-09-18 20:14:32 -------- d-----w- C:\PROGRA~2\COMMON~1\Screaming Bee
2014-09-16 22:16:49 -------- d-----w- C:\PROGRA~2\SystemRequirementsLab
2014-09-14 20:43:54 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-09-14 20:43:44 -------- d-----w- C:\PROGRA~2\Java
======= D: =====
====== D:\Users\Pickett_Kevin\AppData\Roaming ======
2014-10-08 16:54:33 -------- dc----w- D:\Users\Public\AppData\Local\temp
2014-10-08 16:54:33 -------- dc----w- D:\Users\Mcx1-ASUS_I7\AppData\Local\temp
2014-10-08 16:54:33 -------- dc----w- D:\Users\Guest\AppData\Local\temp
2014-10-08 16:54:33 -------- dc----w- D:\Users\DefaultAppPool\AppData\Local\temp
2014-10-08 16:54:33 -------- dc----w- D:\Users\Default\AppData\Local\temp
2014-10-08 16:54:33 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-10-08 16:54:33 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-10-08 16:54:32 -------- dc----w- D:\Users\Administrator\AppData\Local\temp
2014-10-07 01:41:34 3489C77896BEF14E1EC032FC311F3117 447784 -c--a-w- D:\Users\Pickett_Kevin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-07 00:22:59 8C3B43F5C06064F59F2694890658D8E8 301608 -c--a-w- D:\Users\Pickett_Kevin\AppData\Local\nslFE53.tmp
2014-10-07 00:21:24 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Local\RapidMediaConverter
2014-10-06 16:01:22 -------- dc----w- D:\Users\Mcx1-ASUS_I7\AppData\Roaming\vlc
2014-10-06 16:01:22 -------- dc----w- D:\Users\ASPNET\AppData\Roaming\vlc
2014-10-05 21:52:40 -------- dc----w- D:\Users\Administrator\AppData\Locallow\Sun
2014-10-05 21:52:01 -------- dc----w- D:\Users\Administrator\AppData\Local\Apps
2014-10-05 21:50:27 -------- dc----w- D:\Users\Administrator\AppData\Roaming\ClassicShell
2014-10-05 21:47:41 -------- dc----w- D:\Users\Administrator\AppData\Local\DFX
2014-10-05 21:47:40 -------- dc----w- D:\Users\Administrator\AppData\Roaming\Real
2014-10-05 21:47:38 -------- dc----w- D:\Users\Administrator\AppData\Local\Google
2014-10-03 22:09:17 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps
2014-09-27 23:35:49 02A19446244FC272DF816D2883C34A5D 26 -c--a-w- D:\Users\Pickett_Kevin\AppData\Roaming\Network Meter_Usage.ini
2014-09-17 17:07:06 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Locallow\EmieUserList
2014-09-17 17:07:06 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Locallow\EmieSiteList
2014-09-17 17:06:08 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Local\EmieUserList
2014-09-17 17:06:08 -------- dcsh--w- D:\Users\Pickett_Kevin\AppData\Local\EmieSiteList
2014-09-17 16:44:29 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\Shark007
2014-09-17 16:44:07 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\Advanced
2014-09-17 16:42:39 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Local\Installer
2014-09-16 22:35:25 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-09-11 18:29:04 -------- dc----w- D:\Users\Pickett_Kevin\AppData\Roaming\JVSG
====== D:\Users\Pickett_Kevin ======
2014-10-07 01:02:36 -------- dc----w- D:\Users\Pickett_Kevin\GoPro Files
2014-10-06 18:46:08 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-10-06 16:01:22 -------- dc----w- D:\Users\ASPNET\AppData
2014-10-06 14:40:22 ACA1573A8582162C5370E5F2EA7751B6 327 -c--a-w- D:\Users\Pickett_Kevin\Week 10-5.txt
2014-10-05 21:47:38 F0A692D16A9FE61EC70CC18765C5EE73 456 -csha-r- D:\Users\Administrator\ntuser.pol
2014-10-05 19:08:06 F0A692D16A9FE61EC70CC18765C5EE73 456 -csha-r- D:\Users\Pickett_Kevin\ntuser.pol
2014-10-05 17:04:27 12EFD5FA51597F188E5DB50BE20EE597 1375089 -c--a-w- D:\Users\Pickett_Kevin\Desktop\AdwCleaner.exe
2014-10-04 15:21:03 -------- d-----w- C:\ProgramData\RogueKiller
2014-10-04 15:20:11 5FFDF7917B1293C4DBDFB57D990A1A90 5472344 -c--a-w- D:\Users\Pickett_Kevin\Desktop\RogueKillerX64.exe
2014-10-04 14:42:10 9302D77A9F6683672A4F231DA2B86059 5185536 -c--a-w- D:\Users\Pickett_Kevin\Desktop\aswmbr.exe
2014-10-02 20:01:36 -------- d-----w- C:\ProgramData\Office Genuine Advantage
2014-09-30 22:19:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-09-28 01:37:23 -------- dc----w- D:\Users\Public\Branding
2014-09-26 19:10:21 -------- dc-h--w- D:\Users\Public\IPCamRecord
2014-09-23 00:33:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPCWebComponents
2014-09-17 16:44:29 -------- d-----w- C:\ProgramData\Shark007
2014-09-16 22:36:11 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\ProgramData\DP45977C.lfl
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Videos
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Searches
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Saved Games
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Pictures
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Music
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Links
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Favorites
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Downloads
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Documents
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Desktop
2014-09-16 22:35:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Contacts
2014-09-14 20:43:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
====== C: exe-files ==
2014-10-07 14:40:07 E273331224005C5A8A504164373DE1DC 535304 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
2014-10-07 14:40:07 9E47522861242EE002D7F385C35D1322 2887824 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
2014-10-07 14:40:07 5B3DE7968D23B476AFB256D8014B25B9 333424 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScannerA.exe
2014-10-07 14:40:07 47B06E473B78A792DF07D226E0537D63 119184 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe
2014-10-07 14:40:07 3C3F35C91F230493B088B334E39D1F7A 358144 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
2014-10-07 14:39:25 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\esetsmartinstaller_enu.exe
2014-10-07 00:44:54 B990C5A1F5495DB1C8CA0447A63223D8 455632 ------w- C:\ProgramData\Package Cache\{7f51bdb9-ee21-49ee-94d6-90afc321780e}\vcredist_x64.exe
2014-10-07 00:44:42 2335AB0C0E19C0EF416D07DF66FEE649 461368 ----a-w- C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
2014-10-05 17:51:09 978528654BA00F2870AF9AA369C41ED1 1704938 ----a-w- C:\JRT.exe
2014-10-03 14:30:48 CC32EE0FA4238DD97D3A550F51440606 2109440 ----a-w- C:\FRST64.exe
2014-10-02 19:33:14 ED689CF5DA7A0374D2A8E3A8550522F7 483328 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2014-10-02 19:33:14 665256B575BF83E4B188BE73450C5C29 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-10-02 19:33:14 4DABFE3A9D3C67E9D9AD83C7F8FAD855 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-10-02 19:33:14 0D75A74E925F00D9F256F6A53733DAF8 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
2014-10-02 19:33:13 42F6F28D4885505F687CAF0459FF9F90 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-10-02 19:33:13 2D95BDB699FA1D531B642EA18464FE05 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-10-02 19:33:12 33BAC6F66DB5FE5F7E20D41B025F490E 707072 ----a-w- C:\Windows\System32\ie4uinit.exe
2014-10-02 19:33:11 698C19E198F832E071778A1427E942C8 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-10-02 19:33:11 5A0C72B9D3CCA42D8AB74890C19443B2 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-10-02 19:33:10 EEA63B8CF19E59C4A51AD2D9A59DDA25 812216 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-10-02 19:33:10 9540F3F5489747E71101E8AC9850CC79 810168 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2014-10-01 17:33:51 D45AC19BCB0CDB46DA7B34EF21BF48B3 996536 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{5923C82E-6BB6-4186-AF14-3066D1F29323}\setup.exe
=== C: other files ==
2014-10-04 15:21:04 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2418582845-3554272899-2585186520-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"ASUS ShellProcess Execute"="C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe"
"ASUS AiChargerPlus Execute"="C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"Display"="D:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"TkBellExe"="D:\Program Files (x86)\RealPlayer\update\realsched.exe -osboot"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"
"iTunesHelper"="D:\Program Files (x86)\iTunes\iTunesHelper.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_DTS"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORDTSUPTBT"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
==== Startup Registry Disabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acrobat Assistant 8.0"
"hkey"="HKLM"
"command"="\"d:\\Program Files (x86)\\Adobe\\Acrobat 11.0\\Acrobat\\Acrotray.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeBridge]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeBridge"
"hkey"="HKCU"
"command"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AthBtTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AthBtTray"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Bluetooth Suite\\AthBtTray.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AtherosBtStack]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AtherosBtStack"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Bluetooth Suite\\BtvStack.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GarminExpressTrayApp]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GarminExpressTrayApp"
"hkey"="HKCU"
"command"="\"d:\\Program Files (x86)\\Garmin\\Express Tray\\ExpressTray.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKLM"
"command"="\"D:\\Program Files (x86)\\Microsoft Office\\Office12\\GrooveMonitor.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="D:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LightShowProHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LightShowProHelper"
"hkey"="HKCU"
"command"="D:\\Program Files\\Minleon\\LightShowPro\\LightShowProHelper.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"D:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Syncios device service]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Syncios device service"
"hkey"="HKLM"
"command"="D:\\Program Files (x86)\\Syncios\\SynciosDeviceService.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\tsiVideo]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="tsiVideo"
"hkey"="HKCU"
"command"="C:\\Windows\\SysWOW64\\rundll32.exe D:\\Users\\PICKET~1\\AppData\\Local\\Temp\\\\mdi164.dll,runme"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CineForm Status.lnk]
"item"="CineForm Status"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CineForm Status.lnk"
"backup"="C:\\Windows\\pss\\CineForm Status.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="d:\\progra~1\\cineform\\Tools\\GOPROC~1.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Minleon LightShow Pro Scheduler - Auto Update.lnk]
"item"="Minleon LightShow Pro Scheduler - Auto Update"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Minleon LightShow Pro Scheduler - Auto Update.lnk"
"backup"="C:\\Windows\\pss\\Minleon LightShow Pro Scheduler - Auto Update.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="D:\\PROGRA~2\\Minleon\\LIGHTS~2.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CscService]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Fax]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WinDefend]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\wlidsvc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WPCSvc]
==== Startup Folders ======================
2013-06-29 20:12:40 778 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk
2013-06-17 18:48:14 1834 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [09/29/2013 12:57 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [09/29/2013 12:57 PM]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["D:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2418582845-3554272899-2585186520-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2418582845-3554272899-2585186520-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\Red Giant Link" ["C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe"]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS DigiVRM Help" [C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Mobilink Execute" [C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\ASUS Mobilink.exe]
"C:\Windows\SysNative\tasks\ASUS\Easy Update" [C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe]
"C:\Windows\SysNative\tasks\ASUS\USB 3.0 Boost Service" [C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"[email protected]"="d:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [09/28/2014 04:24 PM]
==== Firefox Extensions ======================
ProfilePath: D:\Users\PICKET~1\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins
- Adobe Acrobat - Create PDF - d:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
- Garmin Communicator - D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
- DownloadHelper - D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Garmin Communicator - %ProfilePath%\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Translate This - %ProfilePath%\extensions\[email protected]
- MP4 Downloader - %ProfilePath%\extensions\[email protected]
- Noia-4 temahanterare - %ProfilePath%\extensions\[email protected]
- NewScrollbars aka NoiaScrollbars - %ProfilePath%\extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
ProfilePath: D:\Users\PICKET~1\AppData\Local\Mozilla\Firefox\Profiles\j9cpfgrv.Kevin
- Noia-4 temahanterare - %ProfilePath%\extensions\[email protected]
- Noia 4 - %ProfilePath%\extensions\{faf13420-5e24-11e0-80e3-0800200c9a66}.xpi
==== Firefox Plugins ======================
Profilepath: D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\76xje0f2.kevins
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director
5174E3BE46B2CCCDAF9CEB5B622CEA9B - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll - Shockwave for Director / Shockwave for Director
9CD7CD8FD07718851DD8081CDF8CA3E7 - D:\Program Files\AdobeCS6\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll - AdobeExManDetect
A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks™ RealDownloader Chrome Background Extension Plug-In (32-bit)
C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks™ RealDownloader PepperFlashVideoShim Plug-In (32-bit)
F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks™ RealDownloader HTML5VideoShim Plug-In (32-bit)
FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
Profilepath: D:\Users\Pickett_Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\obx740rc.default-1412529368774
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director
5174E3BE46B2CCCDAF9CEB5B622CEA9B - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll - Shockwave for Director / Shockwave for Director
9CD7CD8FD07718851DD8081CDF8CA3E7 - D:\Program Files\AdobeCS6\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll - AdobeExManDetect
A64F2C388DC26BE3E469EDC3657B14F4 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks™ RealDownloader Chrome Background Extension Plug-In (32-bit)
C45F7E59F2A0A6D3C4E90117F4752414 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks™ RealDownloader PepperFlashVideoShim Plug-In (32-bit)
F7AEAD4303A056F2D1685B43024776CA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks™ RealDownloader HTML5VideoShim Plug-In (32-bit)
FA0A3008589567CB7196620B05C9F28D - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - d:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[]
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[04/16/2013 03:11 AM]
==== IE Start and Search Settings ======================
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft....?LinkId=255141"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE8SRC"
==== C:\zoek_backup content ======================
C:\zoek_backup (files=3 folders=0 3232926 bytes)
==== EOF on Wed 10/08/2014 at 11:28:24.83 ======================
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
