sorry didn't follow your detailed instructions. Here is the farbar log.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Gdubzdesigns (administrator) on GDUBZDESIGNS-PC on 04-04-2015 14:41:42
Running from C:\Users\Gdubzdesigns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U8RV8MMY
Loaded Profiles: Gdubzdesigns (Available profiles: Gdubzdesigns)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7506136 2013-12-06] (Realtek Semiconductor)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2327952 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-15] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227648 2015-03-30] (AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2641272 2012-08-18] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2015-01-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3477640 2012-09-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1047536 2014-04-08] (MSI)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [3468240 2014-08-26] (Micro-Star International)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-3185390833-596257309-2676586595-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [26232152 2015-02-19] (Google)
HKU\S-1-5-21-3185390833-596257309-2676586595-1000\...\Run: [HP Officejet 6500 E710n-z (NET)] => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2013\QBW32.EXE (Intuit Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3185390833-596257309-2676586595-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft...d=ie&ar=msnhome
HKU\S-1-5-21-3185390833-596257309-2676586595-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKU\S-1-5-21-3185390833-596257309-2676586595-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://msn.com/
SearchScopes: HKU\S-1-5-21-3185390833-596257309-2676586595-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-24] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-24] (AVAST Software)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-3185390833-596257309-2676586595-1000 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: HKLM-x32 {254AA86E-5655-4518-AA87-185D7CC41801} https://secure.logme...scueControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
Handler-x32: intu-help-qb6 - {6898B29B-BF49-43cb-A0B1-D0B9496AF491} - C:\Program Files (x86)\Intuit\QuickBooks 2013\HelpAsyncPluggableProtocol.dll [2012-08-18] (Intuit, Inc.)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll [2010-11-20] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Gdubzdesigns\AppData\Roaming\Mozilla\Firefox\Profiles\kwf3h082.default
FF Homepage: hxxp://www.msn.com/?pc=U142&ocid=U142DHP
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-01-07] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-17] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-17] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-04] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-02] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-01-07] (Adobe Systems)
FF user.js: detected! => C:\Users\Gdubzdesigns\AppData\Roaming\Mozilla\Firefox\Profiles\kwf3h082.default\user.js [2015-04-04]
FF Extension: Firebug - C:\Users\Gdubzdesigns\AppData\Roaming\Mozilla\Firefox\Profiles\kwf3h082.default\Extensions\[email protected] [2014-11-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-22]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-05-09]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-07-26]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox Developer Edition\firefox.exe
Chrome:
=======
CHR HomePage: Default -> hxxp://msn.com/
CHR StartupUrls: Default -> "hxxp://msn.com/"
CHR Profile: C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Awesome Screenshot: Capture, Annotate & Share) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2014-08-27]
CHR Extension: (Google Docs) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-09]
CHR Extension: (Google Drive) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-09]
CHR Extension: (YouTube) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-09]
CHR Extension: (Google Search) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-09]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-07-30]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Skype Click to Call) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-11-14]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-09]
CHR Extension: (Gmail) - C:\Users\Gdubzdesigns\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-09]
CHR HKU\S-1-5-21-3185390833-596257309-2676586595-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-24]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-24] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-24] (Avast Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-15] (NVIDIA Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-01] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1722320 2014-08-26] (Micro-Star International)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-15] (NVIDIA Corporation)
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2012-08-18] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2012-08-18] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2012-08-18] (Intuit Inc.) [File not signed]
S3 wampapache64; e:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [24576 2014-05-01] (Apache Software Foundation) [File not signed]
S3 wampmysqld64; e:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [12942848 2014-05-01] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [84816 2014-01-27] (Asmedia Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-24] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-11-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-24] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-24] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-01] ()
S3 ipadtst; C:\Program Files (x86)\MSI\Super Charger\ipadtst_64.sys [20464 2013-11-11] (Windows ® Win 7 DDK provider)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-01-19] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-04] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-08-15] (Apple, Inc.) [File not signed]
S3 ALSysIO; \??\C:\Users\GDUBZD~1\AppData\Local\Temp\ALSysIO64.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U3 wampapache; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 14:37 - 2015-04-04 14:41 - 00000000 ____D () C:\FRST
2015-04-04 14:33 - 2015-04-04 14:33 - 00034664 _____ () C:\ComboFix.txt
2015-04-04 14:13 - 2015-04-04 14:30 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-04 14:12 - 2015-04-04 14:12 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-04 14:12 - 2015-04-04 14:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-04 14:12 - 2015-04-04 14:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-04 14:12 - 2015-04-04 14:12 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-04 14:12 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-04 14:12 - 2015-03-17 06:15 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-04 14:12 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-04 14:10 - 2015-04-04 14:10 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\LogMeIn
2015-04-04 14:05 - 2015-04-04 14:06 - 00001594 _____ () C:\Windows\VPNUnInstall.MIF
2015-04-04 14:03 - 2015-04-04 14:30 - 00003304 _____ () C:\Windows\setupact.log
2015-04-04 14:03 - 2015-04-04 14:03 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-04 13:54 - 2015-04-04 13:54 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Gdubzdesigns\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-04 13:53 - 2015-04-04 13:53 - 00001533 _____ () C:\Users\Gdubzdesigns\Desktop\ComboFix.exe - Shortcut.lnk
2015-04-04 13:52 - 2015-04-04 13:52 - 05617096 ____R (Swearware) C:\Users\Gdubzdesigns\Downloads\ComboFix.exe
2015-04-04 03:00 - 2015-04-04 03:00 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 03:00 - 2015-04-04 03:00 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-03 08:20 - 2015-03-13 09:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-03 08:20 - 2015-03-13 09:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00400584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00390288 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00346824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-04-03 08:20 - 2015-03-13 09:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-03 08:20 - 2015-03-13 09:41 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-04-02 18:55 - 2015-04-02 18:58 - 85624468 _____ () C:\Users\Gdubzdesigns\Desktop\idcard_wp293.sql
2015-04-02 18:47 - 2015-04-02 18:47 - 00000000 _____ () C:\Users\Gdubzdesigns\Desktop\asASFD.mrpw2bh.partial
2015-04-02 18:36 - 2015-04-02 18:36 - 40218068 _____ () C:\Users\Gdubzdesigns\Desktop\idcard_wp293.sql.ycdfrk6.partial
2015-04-01 20:14 - 2015-04-01 20:15 - 15683171 _____ () C:\Users\Gdubzdesigns\Desktop\video.mp4
2015-04-01 09:10 - 2015-04-01 09:10 - 00000156 _____ () C:\Users\Gdubzdesigns\Desktop\hawaiian optics.txt
2015-04-01 09:02 - 2015-04-01 09:02 - 06420600 _____ (Tim Kosse) C:\Users\Gdubzdesigns\Downloads\FileZilla_3.10.3_win64-setup.exe
2015-03-30 10:11 - 2015-03-30 10:11 - 00054511 _____ () C:\Users\Gdubzdesigns\Desktop\iDcard30-Mar-2015_20_11_17.csv
2015-03-29 19:05 - 2015-03-30 05:41 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-03-27 09:13 - 2015-03-27 09:13 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\10000 Huge Collection of Fonts - Honest
2015-03-26 15:54 - 2015-03-26 15:54 - 00000000 ____D () C:\ProgramData\Sun
2015-03-25 08:47 - 2015-03-25 08:47 - 00000979 _____ () C:\Users\Public\Desktop\Winamp.lnk
2015-03-25 08:46 - 2015-03-25 08:47 - 10328598 _____ (Nullsoft, Inc.) C:\Users\Gdubzdesigns\Downloads\winamp5666_full_en-us_redux.exe
2015-03-25 06:19 - 2014-10-24 16:52 - 00934372 _____ () C:\Users\Gdubzdesigns\Desktop\demo-content.xml
2015-03-24 10:05 - 2015-03-24 10:05 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\Divi_2.1.2
2015-03-22 16:49 - 2015-03-22 16:55 - 00000000 ____D () C:\Users\Gdubzdesigns\Documents\Adobe Captivate Cached Projects
2015-03-22 16:49 - 2015-03-22 16:49 - 00000000 ____D () C:\Users\Gdubzdesigns\Documents\My Adobe Captivate Projects
2015-03-22 09:33 - 2015-03-22 09:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-22 09:14 - 2015-03-22 09:14 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Captivate 8 App Packager.lnk
2015-03-22 09:14 - 2015-03-22 09:14 - 00001011 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Captivate 8 (64 Bit).lnk
2015-03-22 09:13 - 2015-03-22 09:13 - 00001450 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Multi SCO Packager 8.lnk
2015-03-22 09:13 - 2015-03-22 09:13 - 00001050 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk
2015-03-22 09:11 - 2015-03-22 09:11 - 00001500 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Captivate Reviewer 8.lnk
2015-03-22 09:11 - 2015-03-22 09:11 - 00001287 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Captivate Quiz Results Analyzer 8.lnk
2015-03-22 09:11 - 2015-03-22 09:11 - 00000000 ____D () C:\Users\Public\Documents\Adobe
2015-03-22 09:11 - 2015-03-22 09:11 - 00000000 ____D () C:\Users\Gdubzdesigns\Documents\MathMagic Equation Editor
2015-03-22 09:11 - 2015-03-22 09:11 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MathMagic for Captivate
2015-03-22 09:11 - 2015-03-22 09:11 - 00000000 ____D () C:\Program Files (x86)\MathMagic for Captivate
2015-03-22 06:20 - 2015-03-22 06:21 - 00000000 ____D () C:\Users\Gdubzdesigns\Documents\My CamStudio Temp Files
2015-03-22 06:20 - 2015-03-22 06:20 - 00000096 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\version2.xml
2015-03-22 06:19 - 2015-03-22 06:21 - 00000408 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\CamShapes.ini
2015-03-22 06:19 - 2015-03-22 06:21 - 00000408 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\CamLayout.ini
2015-03-22 06:19 - 2015-03-22 06:21 - 00000110 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\Camdata.ini
2015-03-22 06:18 - 2015-03-22 06:18 - 16594432 _____ () C:\Users\Gdubzdesigns\Desktop\asdfasdf.avi
2015-03-22 06:17 - 2015-03-22 06:21 - 00004546 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\CamStudio.cfg
2015-03-22 06:16 - 2015-04-04 14:06 - 00000000 ____D () C:\Program Files (x86)\CamStudio 2.7
2015-03-22 06:15 - 2015-03-22 06:15 - 03099532 _____ (CamStudio Open Source ) C:\Users\Gdubzdesigns\Downloads\CamStudio_2.7_r316_setup [1].exe
2015-03-22 05:59 - 2015-03-22 05:59 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\Swift
2015-03-18 09:15 - 2015-03-18 09:15 - 07782048 _____ (TeamViewer GmbH) C:\Users\Gdubzdesigns\Downloads\TeamViewer_Setup_en (2).exe
2015-03-18 09:14 - 2015-03-18 09:14 - 07782048 _____ (TeamViewer GmbH) C:\Users\Gdubzdesigns\Downloads\TeamViewer_Setup_en (1).exe
2015-03-18 09:13 - 2015-03-18 09:14 - 07782048 _____ (TeamViewer GmbH) C:\Users\Gdubzdesigns\Downloads\TeamViewer_Setup_en.exe
2015-03-18 07:25 - 2015-03-24 10:07 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\KeePass
2015-03-18 05:55 - 2015-03-18 05:55 - 00001117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2015-03-18 05:55 - 2015-03-18 05:55 - 00001105 _____ () C:\Users\Gdubzdesigns\Desktop\KeePass 2.lnk
2015-03-18 05:55 - 2015-03-18 05:55 - 00000000 ____D () C:\Program Files (x86)\KeePass Password Safe 2
2015-03-17 15:10 - 2015-03-17 15:10 - 00004096 ____H () C:\Users\Gdubzdesigns\AppData\Local\keyfile3.drm
2015-03-17 14:53 - 2015-03-17 14:54 - 157802496 _____ () C:\Users\Gdubzdesigns\Downloads\emanageonesetup.msi
2015-03-16 10:44 - 2015-03-17 19:52 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\The.Jinx-The.Life.and.Deaths.of.Robert.Durst.Part.3.HDTV.x264-BATV[ettv]
2015-03-16 10:35 - 2015-03-16 10:43 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\The.Jinx-The.Life.and.Deaths.of.Robert.Durst.Part.5.HDTV.x264-BATV[ettv]
2015-03-16 10:35 - 2015-03-16 10:42 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\The.Jinx-The.Life.and.Deaths.of.Robert.Durst.Part.4.HDTV.x264-BATV[ettv]
2015-03-15 09:16 - 2015-03-18 07:43 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\TeamViewer
2015-03-15 08:57 - 2015-03-15 08:57 - 00001024 _____ () C:\.rnd
2015-03-15 08:57 - 2015-03-15 08:57 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\LogMeInIgnition
2015-03-14 08:25 - 2015-03-16 22:31 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\Build a Website From Scratch with HTML & CSS
2015-03-14 08:21 - 2015-03-16 10:47 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\Lynda - Creating a Responsive Website Design (Updated Feb 18, 2015)
2015-03-10 21:01 - 2015-03-05 19:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-10 21:01 - 2015-03-05 19:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-10 21:01 - 2015-03-05 19:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-10 21:01 - 2015-03-05 19:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-10 21:01 - 2015-03-05 19:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-10 21:01 - 2015-03-05 19:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-10 21:01 - 2015-03-05 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-10 21:01 - 2015-03-05 19:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-10 21:01 - 2015-03-05 19:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-10 21:01 - 2015-03-05 19:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-10 21:01 - 2015-03-05 19:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-10 21:01 - 2015-03-05 19:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-10 21:01 - 2015-03-05 19:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-10 21:01 - 2015-03-05 19:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-10 21:01 - 2015-03-05 19:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-10 21:01 - 2015-02-19 18:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-10 21:01 - 2015-02-19 18:40 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-10 21:01 - 2015-02-19 18:40 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-10 21:01 - 2015-02-19 18:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-10 21:01 - 2015-02-19 18:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-10 21:01 - 2015-02-19 18:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-10 21:01 - 2015-02-19 18:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-10 21:01 - 2015-02-19 18:12 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-10 21:01 - 2015-02-19 17:29 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-10 21:01 - 2015-02-19 17:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-10 21:01 - 2015-02-12 19:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-10 21:01 - 2015-02-12 19:22 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-10 21:01 - 2015-02-02 17:34 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-10 21:01 - 2015-02-02 17:34 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-10 21:01 - 2015-02-02 17:34 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-10 21:01 - 2015-02-02 17:33 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-10 21:01 - 2015-02-02 17:31 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-10 21:01 - 2015-02-02 17:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-10 21:01 - 2015-02-02 17:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-10 21:01 - 2015-02-02 17:30 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-10 21:01 - 2015-02-02 17:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-10 21:01 - 2015-02-02 17:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-10 21:01 - 2015-02-02 17:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-10 21:01 - 2015-02-02 17:28 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-10 21:01 - 2015-02-02 17:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-10 21:01 - 2015-02-02 17:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-10 21:01 - 2015-02-02 17:16 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-10 21:01 - 2015-02-02 17:16 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-10 21:01 - 2015-02-02 17:12 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-10 21:01 - 2015-02-02 17:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-10 21:01 - 2015-02-02 17:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-10 21:01 - 2015-02-02 17:11 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-10 21:01 - 2015-02-02 17:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-10 21:01 - 2015-02-02 17:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-10 21:01 - 2015-02-02 17:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-10 21:01 - 2015-02-02 17:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-10 21:01 - 2015-02-02 16:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-10 21:01 - 2015-01-30 17:48 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-10 21:01 - 2015-01-30 17:48 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-10 21:01 - 2015-01-30 13:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-10 21:01 - 2015-01-30 13:56 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-10 21:01 - 2014-10-31 12:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-10 21:01 - 2014-06-27 14:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-03-10 21:01 - 2014-06-27 14:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-03-10 21:00 - 2015-02-25 17:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-10 21:00 - 2015-02-23 17:15 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-10 21:00 - 2015-02-23 16:32 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-10 21:00 - 2015-02-20 15:16 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-10 21:00 - 2015-02-20 14:41 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-10 21:00 - 2015-02-20 14:27 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-10 21:00 - 2015-02-20 14:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-10 21:00 - 2015-02-20 14:25 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-10 21:00 - 2015-02-20 13:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-10 21:00 - 2015-02-20 13:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-10 21:00 - 2015-02-19 17:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-10 21:00 - 2015-02-19 17:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-10 21:00 - 2015-02-19 16:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-10 21:00 - 2015-02-19 16:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-10 21:00 - 2015-02-19 16:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-10 21:00 - 2015-02-19 16:48 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-10 21:00 - 2015-02-19 16:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-10 21:00 - 2015-02-19 16:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-10 21:00 - 2015-02-19 16:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-10 21:00 - 2015-02-19 16:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-10 21:00 - 2015-02-19 16:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-10 21:00 - 2015-02-19 16:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-10 21:00 - 2015-02-19 16:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-10 21:00 - 2015-02-19 16:32 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-10 21:00 - 2015-02-19 16:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-10 21:00 - 2015-02-19 16:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-10 21:00 - 2015-02-19 16:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-10 21:00 - 2015-02-19 16:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-10 21:00 - 2015-02-19 16:09 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-10 21:00 - 2015-02-19 16:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-10 21:00 - 2015-02-19 16:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-10 21:00 - 2015-02-19 16:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-10 21:00 - 2015-02-19 16:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-10 21:00 - 2015-02-19 16:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-10 21:00 - 2015-02-19 16:03 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-10 21:00 - 2015-02-19 16:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-10 21:00 - 2015-02-19 16:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-10 21:00 - 2015-02-19 15:58 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-10 21:00 - 2015-02-19 15:56 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-10 21:00 - 2015-02-19 15:56 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-10 21:00 - 2015-02-19 15:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-10 21:00 - 2015-02-19 15:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-10 21:00 - 2015-02-19 15:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-10 21:00 - 2015-02-19 15:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-10 21:00 - 2015-02-19 15:43 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-10 21:00 - 2015-02-19 15:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-10 21:00 - 2015-02-19 15:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-10 21:00 - 2015-02-19 15:30 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-10 21:00 - 2015-02-19 15:28 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-10 21:00 - 2015-02-19 15:24 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-10 21:00 - 2015-02-19 15:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-10 21:00 - 2015-02-19 15:23 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-10 21:00 - 2015-02-19 15:16 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-10 21:00 - 2015-02-19 15:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-10 21:00 - 2015-02-19 15:01 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-10 21:00 - 2015-02-19 14:57 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-10 21:00 - 2015-02-19 14:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-10 21:00 - 2015-02-02 17:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-10 21:00 - 2015-02-02 17:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-10 21:00 - 2015-01-16 16:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-10 21:00 - 2015-01-16 16:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-10 20:59 - 2015-02-03 17:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-10 20:59 - 2015-02-03 16:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-09 12:03 - 2015-04-04 14:08 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\Ipswitch
2015-03-08 15:06 - 2015-03-08 15:06 - 00000000 ____D () C:\Users\Gdubzdesigns\Tracing
2015-03-08 15:04 - 2015-03-08 15:04 - 140716211 _____ () C:\Users\Gdubzdesigns\Downloads\Blackish.S01E02.HDTV.x264-LOL.mp4
2015-03-08 15:04 - 2015-03-08 15:04 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\Blackish.S01E03.HDTV.x264-LOL[rarbg]
2015-03-08 15:03 - 2015-03-08 15:03 - 184972013 _____ () C:\Users\Gdubzdesigns\Downloads\Blackish.S01E01.HDTV.x264-LOL.mp4
2015-03-06 06:50 - 2015-03-06 08:14 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\Frontend Masters - Responsive Web Design
2015-03-06 06:48 - 2015-03-06 07:08 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\Creating a Responsive Website Design with Chris Converse
2015-03-06 06:48 - 2015-03-06 06:50 - 00000000 ____D () C:\Users\Gdubzdesigns\Downloads\[Tuts Plus] Responsive Web Design Revisited Video Tutorial-KTR
2015-03-06 06:48 - 2015-03-06 06:48 - 11819361 ____R () C:\Users\Gdubzdesigns\Downloads\Apress - Jonathan Fielding - Beginning Responsive Web Design with HTML5 and CSS3 [2014][Uzerus].zip
2015-03-06 06:29 - 2015-03-06 06:29 - 00746491 _____ () C:\Users\Gdubzdesigns\Downloads\uikit-2.17.0.zip
2015-03-05 07:10 - 2015-03-05 07:10 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
2015-03-05 07:06 - 2015-03-05 07:06 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\Pencil
2015-03-05 07:06 - 2015-03-05 07:06 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\Pencil
2015-03-05 07:05 - 2015-04-04 14:11 - 00000000 ____D () C:\Program Files (x86)\Evolus
2015-03-05 07:05 - 2015-03-05 07:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolus
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 14:37 - 2014-07-26 09:47 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-04 14:37 - 2009-07-13 19:13 - 00785366 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-04 14:37 - 2009-07-13 18:45 - 00026384 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-04 14:37 - 2009-07-13 18:45 - 00026384 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-04 14:33 - 2014-09-24 06:37 - 00000000 ____D () C:\Qoobox
2015-04-04 14:33 - 2014-05-09 12:59 - 01859752 _____ () C:\Windows\WindowsUpdate.log
2015-04-04 14:30 - 2014-05-09 21:24 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-04 14:30 - 2010-11-20 17:47 - 00113378 _____ () C:\Windows\PFRO.log
2015-04-04 14:30 - 2009-07-13 19:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-04 14:30 - 2009-07-13 16:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-04 14:22 - 2014-05-10 07:20 - 00000000 ___RD () C:\Users\Gdubzdesigns\Google Drive
2015-04-04 14:20 - 2009-07-13 18:45 - 05191952 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-04 14:18 - 2014-05-11 07:15 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\Microsoft Games
2015-04-04 14:12 - 2014-05-09 19:41 - 00017820 _____ () C:\Windows\DPINST.LOG
2015-04-04 14:10 - 2014-10-17 18:18 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-04-04 14:10 - 2014-10-04 17:11 - 00000000 ____D () C:\ProgramData\LogMeIn
2015-04-04 14:08 - 2014-05-09 16:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-04 14:04 - 2014-05-09 16:07 - 00003982 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{FC8BB6E7-5440-49A4-8962-19EABDD9D5BB}
2015-04-04 13:59 - 2014-09-09 07:06 - 00000000 ____D () C:\ProgramData\Apple
2015-04-04 13:52 - 2014-05-09 21:24 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-04 13:51 - 2014-09-10 05:45 - 00000000 ____D () C:\Windows\Minidump
2015-04-04 08:28 - 2014-05-09 18:20 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-04 08:05 - 2014-05-09 18:21 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\Skype
2015-04-04 02:00 - 2014-05-09 20:13 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\Adobe
2015-04-03 19:54 - 2014-05-09 21:24 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-04-03 15:04 - 2014-05-09 20:56 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\FileZilla
2015-04-03 08:22 - 2014-09-28 08:55 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-03 08:22 - 2014-09-28 08:47 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-03 08:22 - 2014-05-09 16:06 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-03 08:22 - 2014-05-09 16:04 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-03 08:20 - 2014-09-28 08:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-03 07:44 - 2014-05-12 07:17 - 00001456 _____ () C:\Users\Gdubzdesigns\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-04-01 20:15 - 2014-06-08 20:45 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\HandBrake
2015-03-29 18:57 - 2014-05-09 16:15 - 00123664 _____ () C:\Users\Gdubzdesigns\AppData\Local\GDIPFONTCACHEV1.DAT
2015-03-27 10:30 - 2014-05-10 08:42 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\uTorrent
2015-03-26 15:55 - 2014-06-30 12:02 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-26 06:16 - 2014-05-10 08:31 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-03-25 17:54 - 2014-05-26 13:18 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\Apps\2.0
2015-03-25 08:47 - 2014-11-07 07:31 - 00000000 ____D () C:\Program Files (x86)\Winamp
2015-03-24 10:15 - 2014-05-09 21:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-23 12:35 - 2014-05-09 22:02 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Local\CrashDumps
2015-03-22 21:04 - 2014-05-10 17:22 - 00000600 _____ () C:\Users\Gdubzdesigns\AppData\Local\PUTTY.RND
2015-03-22 16:49 - 2014-05-09 18:19 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\Adobe
2015-03-22 09:15 - 2014-05-10 08:12 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2015-03-22 09:14 - 2014-05-10 08:32 - 00000000 ____D () C:\Program Files\Adobe
2015-03-22 09:11 - 2014-05-09 20:14 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-03-18 07:57 - 2014-07-26 09:47 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-18 07:57 - 2014-07-26 09:47 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-18 07:57 - 2014-07-26 09:47 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-14 08:30 - 2009-07-13 19:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-13 09:41 - 2014-11-12 18:05 - 16022016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-13 09:41 - 2014-09-28 08:54 - 00027441 _____ () C:\Windows\system32\nvinfo.pb
2015-03-13 09:41 - 2014-08-19 22:15 - 18580512 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-03-13 09:41 - 2014-08-19 22:14 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-13 09:41 - 2014-08-19 22:14 - 14121624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-03-13 09:41 - 2014-08-19 22:14 - 03303448 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-03-13 09:41 - 2014-08-19 22:14 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-03-13 09:41 - 2014-08-19 22:13 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-03-13 09:41 - 2014-05-09 16:06 - 00073872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-03-13 09:41 - 2014-05-09 16:06 - 00060560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-03-13 06:16 - 2014-10-29 07:02 - 02559808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-03-13 06:16 - 2014-09-28 08:55 - 06861968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-03-13 06:16 - 2014-09-28 08:55 - 03526856 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-03-13 06:16 - 2014-09-28 08:55 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-03-13 06:16 - 2014-09-28 08:55 - 00386248 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-03-13 06:16 - 2014-09-28 08:55 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-03-11 03:52 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\rescache
2015-03-11 03:25 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-11 03:25 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 03:10 - 2014-09-28 08:55 - 04246327 _____ () C:\Windows\system32\nvcoproc.bin
2015-03-11 03:09 - 2014-05-09 18:14 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-11 03:05 - 2014-05-09 16:14 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 03:02 - 2014-05-09 18:17 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-10 20:54 - 2014-05-10 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-03-09 12:10 - 2015-02-28 06:30 - 00000099 _____ () C:\Users\Gdubzdesigns\Desktop\Gdubz Root Password.txt
2015-03-08 15:06 - 2014-10-07 06:26 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-08 15:06 - 2014-05-09 16:01 - 00000000 ____D () C:\Users\Gdubzdesigns
2015-03-08 15:05 - 2014-05-09 18:21 - 00000000 ____D () C:\ProgramData\Skype
2015-03-06 14:16 - 2014-05-09 20:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-03-06 14:16 - 2014-05-09 20:56 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2015-03-05 13:04 - 2014-05-19 12:39 - 00000000 ____D () C:\Users\Gdubzdesigns\AppData\Roaming\vlc
==================== Files in the root of some directories =======
2014-05-24 14:33 - 2014-03-04 08:37 - 0000226 _____ () C:\Program Files\update-southpark.bat
2014-05-24 14:33 - 2013-10-12 20:47 - 0000732 _____ () C:\Program Files\visit-www.nosteam.ro.html
2015-03-22 06:19 - 2015-03-22 06:21 - 0000110 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\Camdata.ini
2015-03-22 06:19 - 2015-03-22 06:21 - 0000408 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\CamLayout.ini
2015-03-22 06:19 - 2015-03-22 06:21 - 0000408 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\CamShapes.ini
2015-03-22 06:17 - 2015-03-22 06:21 - 0004546 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\CamStudio.cfg
2014-07-26 07:35 - 2014-07-26 07:35 - 0000000 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\Stardockfences_debug_snapshot.dat
2015-03-22 06:20 - 2015-03-22 06:20 - 0000096 _____ () C:\Users\Gdubzdesigns\AppData\Roaming\version2.xml
2014-05-12 07:17 - 2015-04-03 07:44 - 0001456 _____ () C:\Users\Gdubzdesigns\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-03-17 15:10 - 2015-03-17 15:10 - 0004096 ____H () C:\Users\Gdubzdesigns\AppData\Local\keyfile3.drm
2014-05-10 17:22 - 2015-03-22 21:04 - 0000600 _____ () C:\Users\Gdubzdesigns\AppData\Local\PUTTY.RND
2014-05-11 07:03 - 2014-05-11 07:03 - 0000057 _____ () C:\ProgramData\Ament.ini
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-04 00:53
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Gdubzdesigns at 2015-04-04 14:41:59
Running from C:\Users\Gdubzdesigns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U8RV8MMY
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3185390833-596257309-2676586595-1000\...\uTorrent) (Version: 3.4.2.38656 - BitTorrent Inc.)
Adobe Acrobat XI Pro (HKLM-x32\...\{23D3F585-AE29-4670-8E3E-64A0EFB29240}) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.00 - Adobe Systems)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.2.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated)
Adobe Captivate 8 (64 Bit) (HKLM-x32\...\{92397ACD-D9F9-11E3-B8F3-CE58971B0EB2}) (Version: 8.0.1 - Adobe Systems Incorporated)
Adobe Captivate Quiz Results Analyzer (HKLM-x32\...\QuizResultsAnalyzer8) (Version: 8 - Adobe Systems, Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.9.0.465 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2014 (HKLM-x32\...\{7F823F8E-4348-11E4-8BF8-81763C49AA32}) (Version: 15.1.0 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe InDesign CC 2014 (HKLM-x32\...\{CCDCB9C4-72BA-1014-A3F8-D123F2F18BC2}) (Version: 10.2.0.069 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology)
Avast Pro Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
FileZilla Client 3.10.2 (HKLM-x32\...\FileZilla Client) (Version: 3.10.2 - Tim Kosse)
Firefox Developer Edition 35.0a2 (x86 en-US) (HKLM-x32\...\Firefox Developer Edition 35.0a2 (x86 en-US)) (Version: 35.0a2 - Mozilla)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Drive (HKLM-x32\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel® Smart Connect Technology (HKLM\...\{D6FBF816-ACB8-46CC-ACC6-C8BBA85F497D}) (Version: 4.2.40.2418 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
ISO2Disc 1.05 (HKLM-x32\...\ISO2Disc_is1) (Version: - Top Password Software, Inc.)
KeePass Password Safe 2.28 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.28 - Dominik Reichl)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - )
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.0 (HKLM\...\{563F041C-DFDB-437B-A1E8-E141E0906076}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 36.0.4 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 en-US)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Live Update (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.009 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.025 - MSI)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA Graphics Driver 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
QuickBooks (x32 Version: 23.0.4001.2305 - Intuit Inc.) Hidden
QuickBooks Pro 2013 (HKLM-x32\...\{3C631966-387E-4054-85D9-BBFFABE32BD8}) (Version: 23.0.4001.2305 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7069 - Realtek Semiconductor Corp.)
S3 Browser version 4.9.5 (HKLM\...\S3 Browser_is1) (Version: 4.9.5.0 - NetSDK Software, LLC)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
System Requirements Lab Detection (HKLM-x32\...\{0E50E164-29AA-45B4-895B-29E708CDBDE3}) (Version: 2.0.0.0 - Husdawg, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WampServer 2.5 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL))
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Password Unlocker Enterprise 5.0.0.0 (HKLM-x32\...\{F43120F7-7DBF-4E10-BC9B-19379750AAF4}_is1) (Version: - Windows Password Unlocker, Inc.)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
18-03-2015 07:58:15 Removed LogMeIn
19-03-2015 03:00:10 Windows Update
20-03-2015 03:00:10 Windows Update
21-03-2015 03:00:10 Windows Update
22-03-2015 03:00:10 Windows Update
22-03-2015 05:59:03 Installed Swift
22-03-2015 06:02:56 Removed Swift
23-03-2015 03:00:10 Windows Update
24-03-2015 03:00:10 Windows Update
25-03-2015 03:00:13 Windows Update
26-03-2015 15:55:28 Removed Java 8 Update 40
31-03-2015 00:13:53 Windows Update
03-04-2015 03:38:30 Windows Update
04-04-2015 03:00:13 Windows Update
04-04-2015 13:58:29 Removed Apple Application Support
04-04-2015 13:59:33 Removed Apple Mobile Device Support
04-04-2015 14:00:35 Removed Apple Software Update
04-04-2015 14:04:43 Removed Bonjour
04-04-2015 14:05:12 Removed Cisco Systems VPN Client 5.0.07.0290
04-04-2015 14:07:50 Removed WS_FTP
04-04-2015 14:08:50 Removed iTunes
04-04-2015 14:10:42 Removed LogMeIn Rescue Technician Console
04-04-2015 14:13:27 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2014-12-29 19:58 - 2015-04-04 14:30 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {1278453A-1D82-41B5-9B69-10E74B2A8239} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {4BA236F8-E4F7-4533-931E-AA37D7B12E47} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2010-07-21] (Microsoft Corporation)
Task: {4E1FC42B-AF43-479E-B817-0073B0F0CA80} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-18] (Adobe Systems Incorporated)
Task: {531D7A42-870D-423D-B122-DD41B96CB217} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {5F0AC2EC-6741-4F25-A1CB-75F2442C1538} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {63ADDC8C-C5A5-4F2D-A4D7-C0E002EC2B53} - System32\Tasks\{BCD10A80-DCFD-42B6-8ED8-D642169E55A8} => pcalua.exe -a "C:\Users\Gdubzdesigns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\94USUE1V\vcredist_x86.exe" -d C:\Users\Gdubzdesigns\Desktop
Task: {6DE4DC82-CC25-41FA-B389-634E230DA23A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {70922C05-FC73-46B9-A2BC-9A76623B5450} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-09] (Google Inc.)
Task: {91D38677-A8F6-4C9A-83BF-3E509940729E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-09] (Google Inc.)
Task: {A539D367-02DC-4DBC-B9AC-3821D3726820} - System32\Tasks\AdobeAAMUpdater-1.0-Gdubzdesigns-PC-Gdubzdesigns => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-09-19] (Adobe Systems Incorporated)
Task: {B1DF9761-73DA-4DF9-ABE1-749E59718F94} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {BE82DA1A-18AD-45EA-B513-6C39949A72FD} - \Run_Bobby_Browser No Task File <==== ATTENTION
Task: {C084B0DB-A968-4455-A479-E1651498064C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-24] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2014-09-28 08:55 - 2015-03-13 06:16 - 00118472 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-08-01 17:31 - 2013-08-01 17:31 - 00198120 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
2013-08-01 17:31 - 2013-08-01 17:31 - 00054760 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
2013-08-01 17:31 - 2013-08-01 17:31 - 00034792 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\ISCTNetMon.dll
2014-11-24 17:59 - 2014-11-24 17:59 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-11-24 17:59 - 2014-11-24 17:59 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2014-12-19 15:57 - 2014-12-19 15:57 - 01039008 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-04-04 07:36 - 2015-04-04 07:36 - 02923520 _____ () C:\Program Files\AVAST Software\Avast\defs\15040401\algo.dll
2014-11-24 17:59 - 2014-11-24 17:59 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2014-06-04 07:20 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2014-05-09 20:14 - 2013-09-17 03:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:054203E4
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3185390833-596257309-2676586595-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gdubzdesigns\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-3185390833-596257309-2676586595-500 - Administrator - Disabled)
Gdubzdesigns (S-1-5-21-3185390833-596257309-2676586595-1000 - Administrator - Enabled) => C:\Users\Gdubzdesigns
Guest (S-1-5-21-3185390833-596257309-2676586595-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3185390833-596257309-2676586595-1004 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/04/2015 02:30:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/04/2015 02:22:55 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Unable to find the section for this mentu item!!!
Error: (04/04/2015 02:22:52 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Error: (04/04/2015 02:22:52 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Error: (04/04/2015 02:22:52 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Error: (04/04/2015 02:20:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/04/2015 02:06:47 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Gdubzdesigns-PC)
Description: Application or service 'Cisco Systems, Inc. VPN Service' could not be restarted.
Error: (04/04/2015 02:04:31 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Unable to find the section for this mentu item!!!
Error: (04/04/2015 02:04:29 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
Error: (04/04/2015 02:04:29 PM) (Source: QuickBooks) (EventID: 4) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle
System errors:
=============
Error: (04/04/2015 02:29:30 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (04/04/2015 02:28:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (04/04/2015 02:28:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (04/04/2015 02:26:43 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (04/04/2015 02:04:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Windows Image Acquisition (WIA) service terminated unexpectedly. It has done this 1 time(s).
Error: (04/04/2015 02:03:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 2:03:00 PM on 4/4/2015 was unexpected.
Error: (04/04/2015 02:01:22 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Error: (04/04/2015 02:00:36 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (04/04/2015 02:00:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (04/04/2015 01:59:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Apple Mobile Device service failed to start due to the following error:
%%1053
Microsoft Office Sessions:
=========================
Error: (12/28/2014 07:26:44 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 30836 seconds with 1380 seconds of active time. This session ended with a crash.
Error: (12/27/2014 10:51:29 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3774 seconds with 420 seconds of active time. This session ended with a crash.
Error: (12/27/2014 07:24:53 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 5421 seconds with 1140 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2015-04-04 14:28:50.860
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:28:50.829
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:28:50.813
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:28:50.782
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:00:36.059
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:00:36.028
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:00:35.997
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-04-04 14:00:35.966
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-03-02 12:50:41.107
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\New folder\Windows\explorer.exe because the set of per-page image hashes could not be found on the system.
Date: 2015-03-02 12:50:41.074
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\New folder\Windows\explorer.exe because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel® Core i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 15%
Total physical RAM: 16331.19 MB
Available physical RAM: 13728.52 MB
Total Pagefile: 32660.56 MB
Available Pagefile: 29971.35 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.66 GB) (Free:54.3 GB) NTFS
Drive e: () (Fixed) (Total:1862.79 GB) (Free:1299.99 GB) NTFS
Drive f: (HTML5 24 Hour Tr) (CDROM) (Total:0.75 GB) (Free:0 GB) CDFS
Drive g: (New Volume) (Fixed) (Total:1862.89 GB) (Free:1739.16 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 446D0A4F)
Partition: GPT Partition Type.
========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================