Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-02-2015
Ran by Bridget (administrator) on BRIDGET-PC on 21-02-2015 14:18:17
Running from C:\Users\Bridget\Downloads
Loaded Profiles: Bridget (Available profiles: Bridget)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.0.0.128\ccSvcHst.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Mixesoft Project) C:\Users\Bridget\AppData\Local\Mixesoft\AppNHost\appnhost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [896032 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2328944 2011-01-07] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2015-01-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ToshibaServiceStation] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1294136 2009-10-06] (TOSHIBA Corporation)
HKLM-x32\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\...\Run: [appnhost] => C:\Users\Bridget\AppData\Local\Mixesoft\AppNHost\appnhost.exe [453176 2014-08-08] (Mixesoft Project)
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\...\MountPoints2: {38078d4b-a1e0-11dd-a8e4-88ae1d490acc} - E:\Autorun.exe
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\...\MountPoints2: {40721f25-9dcd-11dd-8a6f-88ae1d490acc} - E:\MotorolaDeviceManagerSetup.exe -a
AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~2.DLL => C:\PROGRA~2\SupTab\SEARCH~2.DLL File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\SupTab\SEARCH~1.DLL => "C:\PROGRA~2\SupTab\SEARCH~1.DLL" File Not Found
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://www.msn.com/
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://start.toshiba.com/g/
HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://www.msn.com/?pc=AV01
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {D19EE6DA-2378-4E89-A48A-509CB5EB910D} URL =
SearchScopes: HKU\.DEFAULT -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> C21C9A5F607F44EF983234E68BA51160 URL =
SearchScopes: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> {D19EE6DA-2378-4E89-A48A-509CB5EB910D} URL =
SearchScopes: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: No Name -> {BFE4B5CB-63F7-4A51-9266-6167655D5B4F} -> No File
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: No Name -> {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - No Name - {b278d9f8-0fa9-465e-9938-0c392605d8e3} - No File
Toolbar: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> No Name - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No File
Toolbar: HKU\S-1-5-21-1494171341-1486453739-2533022584-1001 -> No Name - {30F9B915-B755-4826-820B-08FBA6BD249D} - No File
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Hosts: 127.0.0.1 d3oxij66pru1i3.cloudfront.net
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
FireFox:
========
FF ProfilePath: C:\Users\Bridget\AppData\Roaming\Mozilla\Firefox\Profiles\avb5pwdi.default
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: hxxp://www.bing.com/search
FF SearchEngineOrder.1: Microsoft (Bing)
FF SelectedSearchEngine: Microsoft (Bing)
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.bing.com/search
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter -> C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safesearch.xml
FF Extension: LastPass - C:\Users\Bridget\AppData\Roaming\Mozilla\Firefox\Profiles\avb5pwdi.default\Extensions\
[email protected] [2015-02-16]
FF Extension: AdBlock for Firefox - C:\Users\Bridget\AppData\Roaming\Mozilla\Firefox\Profiles\avb5pwdi.default\Extensions\
[email protected] [2015-02-13]
FF Extension: Perfect Redirector - C:\Users\Bridget\AppData\Roaming\Mozilla\Firefox\Profiles\avb5pwdi.default\Extensions\{4B797F68-9C25-4926-8959-728E54D7B699}.xpi [2015-02-13]
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox
FF HKLM-x32\...\Firefox\Extensions: [{635abd67-4fe9-1b23-4f01-e679fa7484c1}] - error\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Chrome:
=======
CHR Profile: C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-20]
CHR Extension: (Google Docs) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-04]
CHR Extension: (Google Drive) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-04]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-20]
CHR Extension: (YouTube) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-04]
CHR Extension: (3D Graffiti) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabfebkdmghefegjmochekfnmiikkko [2015-02-20]
CHR Extension: (Google Search) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-04]
CHR Extension: (GIMP on rollApp) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\eodhmnkhmnkmimhckfpkgmbmcgjkaddo [2015-02-20]
CHR Extension: (Google Sheets) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-20]
CHR Extension: (PicMonkey) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2015-02-20]
CHR Extension: (Click&Clean) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2015-02-20]
CHR Extension: (AdBlock) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-02-20]
CHR Extension: (No History) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljamgkbcojbnmcaonjokopmcblmmpfch [2015-02-20]
CHR Extension: (Google Wallet) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-17]
CHR Extension: (Instagram for Chrome) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2015-02-20]
CHR Extension: (Click&Clean App) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-02-20]
CHR Extension: (Gmail) - C:\Users\Bridget\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-04]
CHR HKLM\...\Chrome\Extension: [iagcajndpnfncplednpbnkahadegklfa] - C:\Users\Bridget\AppData\Local\speedial.crx [2008-05-22]
CHR HKU\S-1-5-21-1494171341-1486453739-2533022584-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [iagcajndpnfncplednpbnkahadegklfa] - C:\Users\Bridget\AppData\Local\speedial.crx [2008-05-22]
CHR HKLM-x32\...\Chrome\Extension: [iagcajndpnfncplednpbnkahadegklfa] - C:\Users\Bridget\AppData\Local\speedial.crx [2008-05-22]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [mkndcbhcgphcfkkddanakjiepeknbgle] - C:\Program Files (x86)\RelevantKnowledge\rlcm.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [niapdbllcanepiiimjjndipklodoedlc] - C:\Program Files (x86)\Yontoo\YontooLayers.crx [2013-02-13]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ElevationManager\AdobeUpdateService.exe [710320 2015-01-07] (Adobe Systems Incorporated)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.0.0.128\ccSvcHst.exe [126904 2010-05-22] (Symantec Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
S4 70e6ca8c; "C:\windows\system32\rundll32.exe" "c:\progra~2\optimi~1\OptProCrashSvc.dll",ServiceMain
S4 IePluginServices; No ImagePath
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2008-07-07] (The OpenVPN Project)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-01] (HTC, Corporation) [File not signed]
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20100528.021\ENG64.SYS [117808 2010-05-28] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20100528.021\EX64.SYS [1773104 2010-05-28] (Symantec Corporation)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2012-03-26] (Apple Inc.) [File not signed]
U5 regi; C:\Windows\System32\Drivers\regi.sys [14112 2007-04-17] (InterVideo)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [1514568 2013-05-02] (Realtek Semiconductor Corporation )
S1 SRTSP; C:\Windows\system32\drivers\NISx64\1200000.080\SRTSP64.SYS [701800 2010-05-23] (Symantec Corporation) [File not signed]
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1200000.080\SRTSPX64.SYS [38248 2010-05-23] (Symantec Corporation) [File not signed]
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-11] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-21 14:18 - 2015-02-21 14:19 - 00023656 ____C () C:\Users\Bridget\Downloads\FRST.txt
2015-02-21 14:17 - 2015-02-21 14:18 - 00000000 ___DC () C:\FRST
2015-02-21 14:17 - 2015-02-21 14:17 - 02086912 ____C (Farbar) C:\Users\Bridget\Downloads\FRST64.exe
2015-02-21 13:37 - 2015-02-21 13:29 - 02992292 ____C () C:\Users\Bridget\Documents\performace.html
2015-02-21 13:36 - 2015-02-21 13:36 - 00000000 ___DC () C:\Users\Bridget\Documents\2015 performance monitor results
2015-02-21 03:07 - 2015-02-21 03:07 - 00804985 ____C () C:\Users\Bridget\Downloads\RegpairSetup.exe
2015-02-21 02:54 - 2015-02-21 02:54 - 00000340 ____C () C:\Users\Bridget\Downloads\ClickClean-v8.4-Options.json
2015-02-20 15:51 - 2015-02-20 15:51 - 02925856 ____C (BoostSoftware Inc. ) C:\Users\Bridget\Downloads\PCHealthBoost-Setup.exe
2015-02-20 11:15 - 2015-02-20 11:15 - 00000000 ___DC () C:\Users\Bridget\AppData\Local\Mixesoft
2015-02-20 11:14 - 2015-02-20 11:14 - 00282624 ____C () C:\Users\Bridget\Downloads\appnhost.msi
2015-02-20 10:12 - 2015-02-20 10:16 - 00016088 ____C () C:\Users\Bridget\Downloads\software_removal_tool.log
2015-02-20 10:03 - 2015-02-20 10:10 - 00002230 ____C () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-20 10:03 - 2015-02-20 10:03 - 00000000 ___DC () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-20 10:02 - 2015-02-21 14:07 - 00000900 ____C () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-20 10:02 - 2015-02-21 12:00 - 00000896 ____C () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-20 10:02 - 2015-02-20 10:02 - 00880208 ____C (Google Inc.) C:\Users\Bridget\Downloads\ChromeSetup.exe
2015-02-20 10:02 - 2015-02-20 10:02 - 00003896 ____C () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-20 10:02 - 2015-02-20 10:02 - 00003644 ____C () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-19 19:23 - 2015-02-19 19:23 - 02077392 ____C (Microsoft Corporation) C:\Users\Bridget\Downloads\IE11-Windows6.1.exe
2015-02-18 22:33 - 2015-02-18 22:34 - 00000000 ___DC () C:\Program Files (x86)\QuickTime
2015-02-18 22:33 - 2015-02-18 22:33 - 00001816 ____C () C:\Users\Public\Desktop\QuickTime Player.lnk
2015-02-18 22:33 - 2015-02-18 22:33 - 00000000 ___DC () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-02-18 22:22 - 2015-02-18 22:24 - 42096984 ____C (Apple Inc.) C:\Users\Bridget\Downloads\QuickTimeInstaller(1).exe
2015-02-18 14:37 - 2015-02-18 14:37 - 00001051 ____C () C:\Users\Bridget\Desktop\Adobe Photoshop CC 2014.lnk
2015-02-18 03:29 - 2015-02-18 03:29 - 00000000 ___DC () C:\Users\Bridget\Documents\Adobe
2015-02-18 03:27 - 2015-02-18 03:27 - 00000000 ___DC () C:\Users\Bridget\AppData\Roaming\PDAppFlex
2015-02-14 23:27 - 2015-02-14 23:27 - 00000000 ___DC () C:\Users\Bridget\Desktop\original wedding library copy from minichip
2015-02-14 23:14 - 2015-02-14 23:14 - 00001284 ____C () C:\Users\Bridget\Desktop\Adobe Creative Cloud.lnk
2015-02-14 23:11 - 2015-02-14 23:13 - 00000000 ___DC () C:\Users\Bridget\Desktop\Jeremy Bridget wedding full
2015-02-13 21:18 - 2015-02-13 21:18 - 00000000 ___DC () C:\Users\Bridget\Documents\test resorces monitering
2015-02-13 17:33 - 2015-02-13 17:33 - 00003510 _____ () C:\windows\System32\Tasks\AdobeAAMUpdater-1.0-Bridget-PC-Bridget
2015-02-13 17:19 - 2015-02-13 17:19 - 00001051 ____C () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2015-02-13 12:58 - 2015-02-13 14:08 - 00000000 __RDC () C:\Users\Bridget\Dropbox
2015-02-13 12:44 - 2015-02-14 23:11 - 00000000 ___DC () C:\Users\Bridget\Desktop\jeremy
2015-02-13 12:40 - 2015-02-13 12:40 - 00000000 ___DC () C:\Users\Bridget\Desktop\ellis fam pics
2015-02-13 12:38 - 2015-02-13 12:38 - 00000000 ___DC () C:\Users\Bridget\Desktop\bridgets pics
2015-02-13 12:16 - 2015-02-13 14:10 - 00000000 ___DC () C:\Users\Bridget\AppData\Roaming\Dropbox
2015-02-13 12:16 - 2015-02-13 12:16 - 00355464 ____C (Dropbox, Inc.) C:\Users\Bridget\Downloads\DropboxInstaller.exe
2015-02-13 09:29 - 2015-02-13 09:29 - 00001284 ____C () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-02-13 01:48 - 2015-02-13 02:28 - 00000000 ___DC () C:\Users\Bridget\Downloads\AVPN
2015-02-12 23:29 - 2015-02-12 23:29 - 00000000 ___DC () C:\Users\Bridget\AppData\Local\Toshiba Corporation
2015-02-12 21:48 - 2015-02-12 21:49 - 00000000 ___DC () C:\Users\Bridget\AppData\Local\MigWiz
2015-02-12 19:58 - 2015-02-12 19:58 - 00000000 ___DC () C:\Program Files\Bonjour
2015-02-12 19:58 - 2015-02-12 19:58 - 00000000 ___DC () C:\Program Files (x86)\Bonjour
2015-02-12 19:27 - 2015-02-12 19:27 - 71647536 ____C (Apple Inc.) C:\Users\Bridget\Downloads\icloudsetup.exe
2015-02-12 16:49 - 2015-01-22 22:42 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-02-12 16:49 - 2015-01-22 22:41 - 06041600 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-02-12 16:49 - 2015-01-22 21:43 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2015-02-12 16:49 - 2015-01-22 21:17 - 04300800 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-02-11 20:57 - 2015-02-11 20:57 - 00000000 ___DC () C:\Users\Bridget\ipad upload pic backup files 2,11,2015
2015-02-11 17:20 - 2015-01-13 23:47 - 00389808 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-02-11 17:20 - 2015-01-13 23:09 - 00342712 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-02-11 17:20 - 2015-01-11 21:05 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-02-11 17:20 - 2015-01-11 21:05 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-02-11 17:20 - 2015-01-11 20:48 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-02-11 17:20 - 2015-01-11 20:39 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-02-11 17:20 - 2015-01-11 20:34 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-02-11 17:20 - 2015-01-11 20:25 - 19740160 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-02-11 17:20 - 2015-01-11 20:21 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2015-02-11 17:20 - 2015-01-11 20:13 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 17:20 - 2015-01-11 20:07 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2015-02-11 17:20 - 2015-01-11 20:07 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2015-02-11 17:20 - 2015-01-11 20:05 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2015-02-11 17:20 - 2015-01-11 20:02 - 02277888 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-02-11 17:20 - 2015-01-11 19:59 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2015-02-11 17:20 - 2015-01-11 19:48 - 00718848 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-02-11 17:20 - 2015-01-11 19:40 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 17:20 - 2015-01-11 19:35 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-02-11 17:20 - 2015-01-11 19:33 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-02-11 17:20 - 2015-01-11 19:23 - 02052608 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-02-11 17:20 - 2015-01-11 19:23 - 00688640 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-02-11 17:20 - 2015-01-11 19:14 - 01548288 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-02-11 17:20 - 2015-01-11 18:56 - 01307136 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-02-11 17:20 - 2015-01-11 18:55 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2015-02-11 17:19 - 2015-01-11 21:09 - 25056256 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-02-11 17:19 - 2015-01-11 20:49 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-02-11 17:19 - 2015-01-11 20:48 - 02885632 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-02-11 17:19 - 2015-01-11 20:48 - 00584192 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-02-11 17:19 - 2015-01-11 20:47 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-02-11 17:19 - 2015-01-11 20:40 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-02-11 17:19 - 2015-01-11 20:36 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-02-11 17:19 - 2015-01-11 20:34 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-02-11 17:19 - 2015-01-11 20:25 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-02-11 17:19 - 2015-01-11 20:21 - 00490496 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-02-11 17:19 - 2015-01-11 20:08 - 00503296 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-02-11 17:19 - 2015-01-11 20:08 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-02-11 17:19 - 2015-01-11 20:07 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-02-11 17:19 - 2015-01-11 20:04 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-02-11 17:19 - 2015-01-11 20:00 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2015-02-11 17:19 - 2015-01-11 19:57 - 00478208 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2015-02-11 17:19 - 2015-01-11 19:55 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2015-02-11 17:19 - 2015-01-11 19:48 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-02-11 17:19 - 2015-01-11 19:46 - 02125824 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-02-11 17:19 - 2015-01-11 19:46 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-02-11 17:19 - 2015-01-11 19:45 - 00418304 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-02-11 17:19 - 2015-01-11 19:43 - 14401024 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-02-11 17:19 - 2015-01-11 19:36 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2015-02-11 17:19 - 2015-01-11 19:27 - 02358272 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-02-11 17:19 - 2015-01-11 19:22 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2015-02-11 17:19 - 2015-01-11 19:14 - 12829184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-02-11 17:19 - 2015-01-11 19:02 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-02-11 17:19 - 2015-01-11 19:00 - 01888256 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-02-11 17:19 - 2015-01-10 00:48 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00248832 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00221184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2015-02-11 17:19 - 2015-01-10 00:27 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2015-02-11 17:18 - 2015-02-03 21:16 - 00894976 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-02-11 17:18 - 2015-02-03 21:16 - 00762368 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-02-11 17:18 - 2015-02-03 21:16 - 00609280 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-02-11 17:18 - 2015-02-03 21:16 - 00414720 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-02-11 17:18 - 2015-02-03 21:16 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-02-11 17:18 - 2015-02-03 21:16 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-02-11 17:18 - 2015-02-03 21:13 - 01098752 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-02-11 17:18 - 2015-01-27 17:36 - 01239720 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2015-02-11 17:17 - 2015-01-15 02:14 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-02-11 17:17 - 2015-01-15 02:14 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-02-11 17:17 - 2015-01-15 02:09 - 01461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-02-11 17:17 - 2015-01-15 02:09 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-02-11 17:17 - 2015-01-15 02:09 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-02-11 17:17 - 2015-01-15 02:09 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-02-11 17:17 - 2015-01-15 02:09 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-02-11 17:17 - 2015-01-15 02:08 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-02-11 17:17 - 2015-01-15 02:06 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-02-11 17:17 - 2015-01-15 02:06 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-02-11 17:17 - 2015-01-15 02:04 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-02-11 17:17 - 2015-01-15 01:42 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2015-02-11 17:17 - 2015-01-15 01:42 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2015-02-11 17:17 - 2015-01-15 01:41 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2015-02-11 17:17 - 2015-01-15 01:39 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2015-02-11 17:17 - 2015-01-15 01:39 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2015-02-11 17:17 - 2015-01-15 01:37 - 00686080 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2015-02-11 17:17 - 2015-01-14 22:22 - 00458824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-02-11 17:17 - 2015-01-12 21:10 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-02-11 17:17 - 2015-01-12 20:49 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2015-02-11 17:17 - 2014-12-11 23:31 - 01480192 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-02-11 17:17 - 2014-12-11 23:07 - 01174528 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2015-02-11 17:17 - 2014-11-25 21:53 - 00861696 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2015-02-11 17:17 - 2014-11-25 21:32 - 00571904 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2015-02-11 17:17 - 2014-07-06 20:07 - 00229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-02-11 17:17 - 2014-07-06 20:06 - 00187904 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2015-02-11 17:17 - 2014-07-06 19:40 - 00179200 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2015-02-11 17:17 - 2014-07-06 19:40 - 00143872 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2015-02-11 17:16 - 2015-01-14 00:09 - 05554112 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-02-11 17:16 - 2015-01-14 00:05 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-02-11 17:16 - 2015-01-14 00:05 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-02-11 17:16 - 2015-01-14 00:04 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-02-11 17:16 - 2015-01-13 23:44 - 03972544 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2015-02-11 17:16 - 2015-01-13 23:44 - 03917760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2015-02-11 17:16 - 2015-01-13 23:41 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2015-02-11 17:16 - 2015-01-08 20:03 - 03201536 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-02-11 17:16 - 2014-12-07 21:09 - 00406528 _____ (Microsoft Corporation) C:\windows\system32\scesrv.dll
2015-02-11 17:16 - 2014-12-07 20:46 - 00308224 _____ (Microsoft Corporation) C:\windows\SysWOW64\scesrv.dll
2015-02-05 20:23 - 2015-02-05 20:23 - 00000197 ____C () C:\windows\system32\2015-02-06-02-23-21.079-AvastVBoxSVC.exe-1508.log
2015-02-05 19:58 - 2015-02-05 19:58 - 00000197 ____C () C:\windows\system32\2015-02-06-01-58-03.078-AvastVBoxSVC.exe-4936.log
2015-01-29 11:57 - 2015-01-29 11:57 - 00000000 ___DC () C:\Program Files (x86)\Mozilla Firefox
2015-01-29 10:52 - 2015-01-29 10:52 - 00000197 ____C () C:\windows\system32\2015-01-29-16-52-31.005-AvastVBoxSVC.exe-3748.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-21 14:18 - 2009-07-13 22:45 - 00019248 ___HC () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-21 14:18 - 2009-07-13 22:45 - 00019248 ___HC () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-21 14:13 - 2012-04-18 07:54 - 00000830 ____C () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-02-21 13:51 - 2010-09-06 19:30 - 01511271 ____C () C:\windows\WindowsUpdate.log
2015-02-21 12:13 - 2014-11-23 00:58 - 00000000 ___DC () C:\Program Files\Adobe
2015-02-21 12:04 - 2013-03-14 16:53 - 00000000 ___DC () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-02-21 12:01 - 2013-10-03 14:14 - 00000000 ___DC () C:\Users\Bridget\AppData\Local\Adobe
2015-02-21 12:00 - 2009-07-13 23:08 - 00000006 ___HC () C:\windows\Tasks\SA.DAT
2015-02-21 12:00 - 2008-07-02 23:40 - 00000438 ____C () C:\windows\system32\Drivers\etc\hosts.ics
2015-02-21 12:00 - 2008-05-22 19:55 - 00117623 ____C () C:\windows\setupact.log
2015-02-21 03:08 - 2014-11-06 23:37 - 00007628 ____C () C:\Users\Bridget\AppData\Local\Resmon.ResmonCfg
2015-02-20 10:15 - 2008-05-22 19:55 - 00992022 ____C () C:\windows\PFRO.log
2015-02-20 10:14 - 2008-07-02 13:57 - 00000000 ___DC () C:\ProgramData\IePluginServices
2015-02-20 10:03 - 2010-07-22 18:58 - 00000000 ___DC () C:\Program Files (x86)\Google
2015-02-19 19:23 - 2008-05-22 07:25 - 00047417 ____C () C:\windows\IE11_main.log
2015-02-19 00:40 - 2012-06-07 11:59 - 00000000 ___DC () C:\Users\Bridget\AppData\Roaming\SoftGrid Client
2015-02-18 13:06 - 2009-07-13 23:13 - 00783464 ____C () C:\windows\system32\PerfStringBackup.INI
2015-02-18 05:45 - 2008-06-13 04:45 - 00000288 ____C () C:\windows\Tasks\RegClean Pro_UPDATES.job
2015-02-18 03:29 - 2011-02-25 19:41 - 00000000 ___DC () C:\Users\Bridget\AppData\Roaming\Adobe
2015-02-18 03:10 - 2014-11-23 00:52 - 00000000 ___DC () C:\Program Files\Common Files\Adobe
2015-02-18 03:08 - 2014-11-15 02:41 - 00000000 ___DC () C:\Users\Bridget\Creative Cloud Files
2015-02-18 03:06 - 2010-09-06 19:52 - 00000000 ___DC () C:\ProgramData\Adobe
2015-02-13 21:30 - 2009-07-13 23:08 - 00032606 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2015-02-13 17:33 - 2014-11-23 20:21 - 00000000 ___DC () C:\ProgramData\regid.1986-12.com.adobe
2015-02-13 17:30 - 2010-09-06 19:52 - 00000000 ___DC () C:\Program Files (x86)\Adobe
2015-02-13 14:28 - 2011-02-25 19:24 - 00000000 ___DC () C:\Users\Bridget
2015-02-13 12:49 - 2011-02-25 20:46 - 00000000 ___DC () C:\Users\Bridget\AppData\Local\Google
2015-02-13 12:43 - 2013-10-08 20:53 - 00000000 ___DC () C:\Users\Bridget\Desktop\Daytonas pics
2015-02-13 12:40 - 2012-08-27 09:52 - 00000000 ___DC () C:\Users\Bridget\Desktop\lil wayne
2015-02-13 09:29 - 2014-11-12 17:01 - 00000000 ___DC () C:\ProgramData\Package Cache
2015-02-13 03:37 - 2009-07-13 21:20 - 00000000 ____D () C:\windows\rescache
2015-02-12 23:46 - 2010-07-22 18:50 - 00000000 __HDC () C:\Program Files (x86)\InstallShield Installation Information
2015-02-12 23:45 - 2010-07-22 18:57 - 00000000 ___DC () C:\ProgramData\Toshiba
2015-02-12 23:45 - 2010-07-22 18:50 - 00000000 ___DC () C:\Program Files\TOSHIBA
2015-02-12 23:41 - 2010-07-22 18:50 - 00000000 ___DC () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
2015-02-12 19:58 - 2012-09-09 10:52 - 00000000 ___DC () C:\ProgramData\Apple
2015-02-12 18:29 - 2008-05-22 19:50 - 00000000 ___DC () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2015-02-12 18:28 - 2008-05-22 08:05 - 00000000 ___DC () C:\Users\Bridget\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall
2015-02-12 16:39 - 2009-07-13 22:45 - 00278856 ____C () C:\windows\system32\FNTCACHE.DAT
2015-02-12 16:37 - 2014-12-10 03:27 - 00000000 ___DC () C:\windows\system32\appraiser
2015-02-12 16:37 - 2014-11-08 03:04 - 00000000 __SDC () C:\windows\system32\CompatTel
2015-02-11 23:47 - 2013-09-16 15:36 - 00000000 ___DC () C:\windows\system32\MRT
2015-02-11 23:40 - 2011-04-08 15:54 - 116773704 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-02-05 22:53 - 2011-09-26 23:05 - 00000000 ___DC () C:\ProgramData\Skype
2015-02-05 22:50 - 2014-11-06 22:20 - 00000000 ___DC () C:\Users\Bridget\AppData\Roaming\JAM Software
2015-02-05 22:47 - 2013-02-13 15:18 - 00000000 _SHDC () C:\AI_RecycleBin
2015-02-05 21:58 - 2011-03-21 11:16 - 00000000 ___DC () C:\ProgramData\AVAST Software
2015-02-05 21:09 - 2014-11-13 02:39 - 00000000 ___DC () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-02-05 21:09 - 2013-06-24 19:14 - 00000000 ___DC () C:\Program Files (x86)\iTunes
2015-02-05 21:07 - 2013-06-24 19:14 - 00000000 ___DC () C:\Program Files\iPod
2015-02-05 20:52 - 2012-06-07 11:58 - 00776078 ____C () C:\windows\SysWOW64\PerfStringBackup.INI
2015-02-05 20:29 - 2009-07-13 23:32 - 00000000 __RDC () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-02-05 20:18 - 2014-12-31 22:57 - 00000000 ___DC () C:\Program Files (x86)\AVG
2015-02-05 20:18 - 2014-12-31 22:52 - 00000000 ___DC () C:\ProgramData\MFAData
2015-02-05 20:18 - 2014-11-09 09:08 - 00000000 ___DC () C:\Program Files (x86)\Mozilla Maintenance Service
2015-02-05 19:56 - 2012-04-18 07:54 - 00701616 ____C (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 19:56 - 2012-04-18 07:54 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-02-05 19:56 - 2011-07-06 08:21 - 00071344 ____C (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2014-11-07 12:56 - 2014-11-07 14:10 - 10137600 ____C () C:\Program Files (x86)\GUTA62E.tmp
2014-12-01 01:30 - 2014-12-01 01:30 - 0000049 ____C () C:\Users\Bridget\AppData\Roaming\mbam.context.scan
2014-12-21 19:29 - 2014-12-26 00:29 - 0000128 ____C () C:\Users\Bridget\AppData\Roaming\WB.CFG
2014-12-26 00:29 - 2014-12-26 00:29 - 0234679 ____C () C:\Users\Bridget\AppData\Local\dsi1.dat
2014-12-26 00:29 - 2014-12-26 00:29 - 0161916 ____C () C:\Users\Bridget\AppData\Local\dsi2.dat
2008-01-01 00:31 - 2008-01-01 00:31 - 0000889 ____C () C:\Users\Bridget\AppData\Local\recently-used.xbel
2014-11-06 23:37 - 2015-02-21 03:08 - 0007628 ____C () C:\Users\Bridget\AppData\Local\Resmon.ResmonCfg
2008-05-22 08:05 - 2008-05-22 08:05 - 0358193 ____C () C:\Users\Bridget\AppData\Local\speedial.crx
2014-12-10 18:14 - 2014-12-11 22:56 - 0000952 __SHC () C:\ProgramData\KGyGaAvL.sys
Some content of TEMP:
====================
C:\Users\Bridget\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpx8gn6s.dll
C:\Users\Bridget\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Bridget\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Bridget\AppData\Local\Temp\GLB1A2B.EXE
C:\Users\Bridget\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Bridget\AppData\Local\Temp\SDShelEx-x64.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-13 03:30
==================== End Of Log ============================