CreateRestorePoint: 
R1 ccHP; C:\Windows\system32\drivers\NISx64\1106000.020\ccHPx64.sys [615040 2010-02-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [475696 2010-01-26] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100326.001\IDSvia64.sys [466992 2009-10-28] (Symantec Corporation)
R3 internethelper_antiphishingd; C:\ProgramData\Internet Helper Anti-phishing\internethelper_antiphishingd.sys [51912 2014-05-09] (Green search security)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1106000.020\SRTSP64.SYS [505392 2010-02-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1106000.020\SRTSPX64.SYS [32304 2010-02-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1106000.020\SYMDS64.SYS [433200 2009-08-29] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1106000.020\SYMEFA64.SYS [221232 2010-02-03] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [173104 2010-01-26] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1106000.020\Ironx64.SYS [149552 2010-02-26] (Symantec Corporation)
R1 SYMTDIv; C:\Windows\System32\Drivers\NISx64\1106000.020\SYMTDIV.SYS [451120 2010-02-03] (Symantec Corporation)
S3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20100327.020\ENG64.SYS [X]
S3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20100327.020\EX64.SYS [X]
2015-01-23 09:55 - 2015-01-23 09:55 - 00002962 _____ () C:\Windows\System32\Tasks\{7FBA7EBE-17F1-447B-93BD-78FBAE54BF0A}
2015-01-23 09:53 - 2015-01-23 09:53 - 00002962 _____ () C:\Windows\System32\Tasks\{A1C6D0FB-7A50-4480-9599-195B6CD69985}
2015-01-23 09:52 - 2015-01-23 09:52 - 00002962 _____ () C:\Windows\System32\Tasks\{AC0B8B98-D899-4488-BBEC-5C183BF2122C}
2015-01-22 12:54 - 2015-01-22 12:54 - 00002980 _____ () C:\Windows\System32\Tasks\{EFAF4350-046D-4706-8052-98E4E0ED537D}
2015-01-22 12:54 - 2015-01-22 12:54 - 00002980 _____ () C:\Windows\System32\Tasks\{95487880-65F2-44DA-9FE5-C4C06E313C98}
2015-01-21 16:40 - 2015-01-21 16:40 - 00002980 _____ () C:\Windows\System32\Tasks\{3292651E-F6EC-42E4-B313-FB68D98C28F5}
2015-01-19 10:43 - 2015-01-19 10:43 - 00003112 _____ () C:\Windows\System32\Tasks\{3E302FBE-BD27-4D61-BC28-5FE4F7060DCC}
2015-01-18 18:16 - 2015-01-18 18:17 - 02139316 _____ () C:\Users\Nora\Downloads\37EF.tmp
2015-01-18 11:26 - 2015-01-18 11:26 - 01650875 _____ () C:\Users\Nora\Downloads\DCA9.tmp
2015-01-16 23:44 - 2015-01-16 23:44 - 00002962 _____ () C:\Windows\System32\Tasks\{6CCC45A5-6DB3-4805-A573-BD528091824A}
2015-01-16 23:12 - 2015-01-16 23:12 - 00002962 _____ () C:\Windows\System32\Tasks\{684FF1AD-3781-4D39-A168-A9A4D3279289}
2015-01-16 23:11 - 2015-01-16 23:11 - 00002962 _____ () C:\Windows\System32\Tasks\{DE6207D5-D0DF-48F5-9E80-7CE8B91BDE71}
2015-01-14 11:02 - 2015-01-14 11:02 - 02167615 _____ () C:\Users\Nora\Downloads\Unconfirmed 849476.crdownload
2015-01-12 09:44 - 2015-01-12 09:44 - 00002988 _____ () C:\Windows\System32\Tasks\{73F011BA-E314-4786-8022-15EB58178C8E}
2015-01-11 18:48 - 2015-01-11 18:48 - 00000000 ____D () C:\WebGuard
2015-01-11 16:21 - 2015-01-11 16:22 - 00026439 _____ () C:\Users\Nora\Downloads\follow_button.html
2015-01-11 12:09 - 2015-01-11 12:09 - 00002980 _____ () C:\Windows\System32\Tasks\{955B9E1C-4500-4170-9654-4EF5DA19ADE8}
2015-01-11 12:06 - 2015-01-11 12:06 - 00002980 _____ () C:\Windows\System32\Tasks\{14226124-8C15-425B-9EEB-79D92D1C715D}
2015-01-10 13:06 - 2015-01-10 13:07 - 00002466 _____ () C:\Users\Nora\Downloads\software_removal_tool (1).log
2015-01-10 11:38 - 2015-01-10 11:38 - 00002980 _____ () C:\Windows\System32\Tasks\{4522C34B-48A0-4029-8D9D-ABE8F163DEE4}
2015-01-10 11:34 - 2015-01-10 11:34 - 00002980 _____ () C:\Windows\System32\Tasks\{A966F337-70A6-40BD-A23E-9641A9E6100E}
2015-01-10 11:34 - 2015-01-10 11:34 - 00002980 _____ () C:\Windows\System32\Tasks\{9DEB03FB-5F8B-4090-8F51-2E3823B62909}
2015-01-10 11:33 - 2015-01-10 11:33 - 00002980 _____ () C:\Windows\System32\Tasks\{B0A3F8CD-EB22-4E69-AFBC-EEE9B35DE032}
2015-01-10 11:31 - 2015-01-10 11:31 - 00002980 _____ () C:\Windows\System32\Tasks\{6F179034-0990-4830-ACBF-7816EB6FC7D3}
2015-01-06 11:42 - 2015-01-06 11:42 - 00002962 _____ () C:\Windows\System32\Tasks\{F19E809E-A753-4569-8048-7C05DB27AA29}
2015-01-06 11:39 - 2015-01-06 11:39 - 00002962 _____ () C:\Windows\System32\Tasks\{8456279D-AB43-4050-A090-467AB068C6CA}
2015-01-06 10:51 - 2015-01-06 10:51 - 02205832 _____ (Microsoft Corporation) C:\Users\Nora\Downloads\MSNHomepage (1).EXE
2015-01-05 19:42 - 2015-01-05 19:42 - 00002980 _____ () C:\Windows\System32\Tasks\{38F0A657-B5C4-457A-B87A-2C1579F0C2CE}
2015-01-05 19:41 - 2015-01-05 19:41 - 00002980 _____ () C:\Windows\System32\Tasks\{CEF97E8D-F1DB-4970-93B2-3B0919769CAF}
2015-01-05 12:38 - 2015-01-05 12:38 - 00002980 _____ () C:\Windows\System32\Tasks\{A4FB5037-D470-41B8-8A8A-300D86117EC6}
2015-01-05 12:38 - 2015-01-05 12:38 - 00002980 _____ () C:\Windows\System32\Tasks\{975EC950-40E9-45BD-913E-A4A38E190FFD}
2015-01-03 16:25 - 2015-01-03 16:25 - 00002962 _____ () C:\Windows\System32\Tasks\{811DBE5B-F590-4464-A855-6D5F57D6E43C}
2015-01-02 17:32 - 2015-01-02 17:32 - 01082613 _____ () C:\Users\Nora\Downloads\(17) Facebook.htm
2015-01-02 17:31 - 2015-01-02 17:32 - 00000000 ____D () C:\Users\Nora\Downloads\(17) Facebook_files
2015-01-02 13:39 - 2015-01-24 11:13 - 00000000 ____D () C:\ProgramData\internethelper_antiphishing
2015-01-02 13:39 - 2015-01-16 18:03 - 00000000 ____D () C:\ProgramData\Internet Helper Anti-phishing
2015-01-02 13:34 - 2015-01-19 10:49 - 00000000 ____D () C:\ProgramData\WebGuard
2015-01-02 12:15 - 2015-01-02 12:16 - 42096984 _____ (Apple Inc.) C:\Users\Nora\Downloads\QuickTimeInstaller(4).exe
2015-01-02 12:08 - 2015-01-02 12:10 - 42096984 _____ (Apple Inc.) C:\Users\Nora\Downloads\QuickTimeInstaller(1).exe
2014-12-31 11:44 - 2014-12-31 11:44 - 00000000 __SHD () C:\Users\Nora\AppData\Local\EmieBrowserModeList
2014-12-31 11:21 - 2014-12-31 12:21 - 00000288 _____ () C:\Windows\Tasks\Voo Update.job
2015-01-20 10:01 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv
2015-01-20 10:01 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2015-01-15 18:58 - 2014-07-28 08:18 - 00000000 ____D () C:\Program Files (x86)\DriverUpdate
2011-06-04 18:30 - 2011-06-04 18:30 - 0000000 _____ () C:\Users\Nora\AppData\Local\{EE4DDEA8-849B-40BA-ADC6-84C2146798CF}
2009-12-17 13:41 - 2009-12-17 13:41 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2009-11-01 03:05 - 2009-11-01 03:06 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-12-17 13:41 - 2009-12-17 13:41 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2009-11-01 02:59 - 2009-11-01 03:00 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-17 13:40 - 2009-12-17 13:40 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2009-12-17 13:41 - 2009-12-17 13:41 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2009-11-01 02:59 - 2009-11-01 02:59 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-11-01 03:00 - 2009-11-01 03:05 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2009-12-17 13:41 - 2009-12-17 13:41 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log
Task: {01D3157B-E629-49C4-980B-043E06AC4241} - System32\Tasks\{CFB0932A-B25A-4025-8611-C88D2EBA1739} => C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2015-01-22] (AVAST Software)
Task: {0C32D74B-6BC5-41B2-8B5E-7752218138DC} - System32\Tasks\{C5E91B79-9709-47A1-BF04-DF0B406F3D53} => Firefox.exe 
Task: {0CE266A1-6753-4410-8308-3174BC943865} - System32\Tasks\{A1C6D0FB-7A50-4480-9599-195B6CD69985} => Firefox.exe 
Task: {0CF2ACB0-21A2-49CB-8F44-56CC48BA110D} - System32\Tasks\{3292651E-F6EC-42E4-B313-FB68D98C28F5} => Chrome.exe 
Task: {1B6058DE-3D8C-47DE-B6EF-2F6E8F266564} - System32\Tasks\{14226124-8C15-425B-9EEB-79D92D1C715D} => Chrome.exe 
Task: {1BFF48BF-3C65-43F9-A78E-60AE044B2A5B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {212E1AA7-2BA4-43F2-9BA2-E21F7E103C64} - System32\Tasks\{7CB98C50-D9BE-4909-AE82-35B0985E6848} => Firefox.exe 
Task: {2E62B6EE-D013-4FAD-81C9-22DB8E34A64E} - System32\Tasks\{EFAF4350-046D-4706-8052-98E4E0ED537D} => Chrome.exe 
Task: {30B2985C-1AB2-4D34-81B5-38DA2C6D8C1F} - System32\Tasks\Symantec\Symantec Error Processor 17.6.0.32 => C:\Program Files (x86)\Norton Internet Security\Engine\17.6.0.32\SymErr.exe [2010-03-26] (Symantec Corporation)
Task: {311AEFA0-F450-449B-8209-B22F29446AD3} - System32\Tasks\{FE32D741-F60C-4014-B91E-014D59AEF38D} => C:\Program Files (x86)\ARO 2011\ARO.exe [2011-01-25] (Support.com)
Task: {348E3055-6456-48CF-934F-D9E99EC65A3A} - System32\Tasks\{CEF97E8D-F1DB-4970-93B2-3B0919769CAF} => Chrome.exe 
Task: {37273D47-1C3C-4F47-938A-B8E182AD8EFE} - System32\Tasks\{975EC950-40E9-45BD-913E-A4A38E190FFD} => Chrome.exe 
Task: {3F36AC41-E031-4CE2-8A24-B87FA6650E4D} - System32\Tasks\{4522C34B-48A0-4029-8D9D-ABE8F163DEE4} => Chrome.exe 
Task: {421774C5-3C2E-47CB-A692-412DB13458D8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {42F825BF-2DD4-4FB3-BBAA-B407720DEE7E} - System32\Tasks\{6F179034-0990-4830-ACBF-7816EB6FC7D3} => Chrome.exe 
Task: {44A4146E-390F-428F-8E0D-6CED24DA281E} - System32\Tasks\ARO 2011 => C:\Program Files (x86)\ARO 2011\ARO.exe [2011-01-25] (Support.com)
Task: {53CEC116-048F-4E74-B4C1-7E6BC5DE00B6} - System32\Tasks\{B0A3F8CD-EB22-4E69-AFBC-EEE9B35DE032} => Chrome.exe 
Task: {58932495-C9B4-456B-9C5A-D1581D8F51B0} - System32\Tasks\{3E302FBE-BD27-4D61-BC28-5FE4F7060DCC} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Task: {5F9A9550-5E4E-4101-AD0B-9765963B4F0A} - System32\Tasks\{D7D0D0D3-4A0E-4BC7-B61E-206C4EF2243E} => Firefox.exe 
Task: {68E37F23-3EAD-4600-86B0-7A4068681C5A} - System32\Tasks\{A966F337-70A6-40BD-A23E-9641A9E6100E} => Chrome.exe 
Task: {6D83D45C-7F41-46EB-A876-8FFD883EFF30} - System32\Tasks\{38F0A657-B5C4-457A-B87A-2C1579F0C2CE} => Chrome.exe 
Task: {6E9A1C87-53BD-42C3-B3D2-E6B263EF871D} - System32\Tasks\{B360853A-8508-47E6-941A-27A2D557C810} => Firefox.exe 
Task: {7B6730DD-C895-4FB4-AB35-658A911EC171} - System32\Tasks\{21DD4D3F-8F5C-4CB3-911B-F14653FED949} => Firefox.exe 
Task: {7C878211-EBBB-4BAD-9328-0125122874B0} - System32\Tasks\{955B9E1C-4500-4170-9654-4EF5DA19ADE8} => Chrome.exe 
Task: {7C91F4DC-EA2F-4B6A-80B1-00A4765D6D36} - System32\Tasks\{DEA9C14D-A617-44B6-AF95-E52ABF75FCF0} => C:\Program Files (x86)\ARO 2011\ARO.exe [2011-01-25] (Support.com)
Task: {7D46CB65-C39B-40FC-94A5-B2E0AE998A20} - System32\Tasks\avastBCLRestartS-1-5-21-533477281-2566771568-2164580434-1001 => Firefox.exe 
Task: {7DCE117F-34B2-41F4-A4B5-E281E627D42B} - System32\Tasks\{FCD5A832-9D2D-4A24-973E-AF3CDEE52179} => Firefox.exe 
Task: {8326BACA-18FA-40EE-80A7-9AD5D2495919} - System32\Tasks\{811DBE5B-F590-4464-A855-6D5F57D6E43C} => Firefox.exe 
Task: {8ADBAD1F-8099-4787-B74F-82B2BE70AE6E} - System32\Tasks\{86B54C96-0281-40C8-8B36-C71D1E4B1B63} => Firefox.exe 
Task: {8ADBAD1F-8099-4787-B74F-82B2BE70AE6E} - System32\Tasks\{86B54C96-0281-40C8-8B36-C71D1E4B1B63} => Firefox.exe 
Task: {93B988FC-D71A-4900-A0E5-F81460BA1A0C} - System32\Tasks\{826E40F0-BAD8-49B8-AD68-AFA53F94421E} => Firefox.exe 
Task: {98DED753-9C5F-41E1-AD1B-5676FB876F72} - System32\Tasks\{AC0B8B98-D899-4488-BBEC-5C183BF2122C} => Firefox.exe 
Task: {AA652F5F-CD59-4C3B-BC9C-E02427CBDD17} - System32\Tasks\{E64FC190-389E-4FD1-8F0D-449DEC000F1D} => Firefox.exe 
Task: {B47E17A7-495F-44B4-9F1C-1A6AEE5C33E2} - System32\Tasks\{26A92FB9-3ECB-42E7-BFD3-55F233084927} => C:\Program Files (x86)\ARO 2011\ARO.exe [2011-01-25] (Support.com)
Task: {B5B26CD4-96AE-4A68-AA04-6699893ABB18} - System32\Tasks\{95487880-65F2-44DA-9FE5-C4C06E313C98} => Chrome.exe 
Task: {BD4D13DC-E390-493B-90D9-8B7089EF2845} - System32\Tasks\{15337126-7FFE-40B6-91A9-431C9199909A} => Firefox.exe 
Task: {D484B062-16AD-468E-A46E-2427773EDC8E} - System32\Tasks\{4C692D40-8403-4910-A293-DDF8BF62DF47} => Firefox.exe 
Task: {D6B6C4FF-823B-4CC5-9DFE-8C07F23BF0CD} - System32\Tasks\{7FBA7EBE-17F1-447B-93BD-78FBAE54BF0A} => Firefox.exe 
Task: {DA543196-8FD4-4AE9-A087-F010CBAD93B5} - System32\Tasks\{E8817E24-BA28-41D5-9C23-8E10C79A5305} => C:\Program Files (x86)\ARO 2011\ARO.exe [2011-01-25] (Support.com)
Task: {DC84F3C8-A22A-4A1A-812B-06D0861FD5B6} - System32\Tasks\{9DEB03FB-5F8B-4090-8F51-2E3823B62909} => Chrome.exe 
Task: {DF94DC17-57E1-4BA2-B51A-C93A0FC617BE} - System32\Tasks\Symantec\Symantec Error Analyzer 17.6.0.32 => C:\Program Files (x86)\Norton Internet Security\Engine\17.6.0.32\SymErr.exe [2010-03-26] (Symantec Corporation)
Task: {E04042A5-0FE1-495F-B08F-CC5B95D277DE} - System32\Tasks\{A2BD24AC-258E-4864-B6AA-D4C1C103FBBB} => Firefox.exe 
Task: {E55BC515-6EBC-4D1A-922A-42D0D98157EB} - System32\Tasks\{EB1A7F8F-C0ED-494F-8F1E-0B39298C564A} => Firefox.exe 
Task: {F158BDAF-B416-4B5D-B7DC-EDF0F8F65AAD} - System32\Tasks\{202CCD4D-3F1A-4652-99F6-191F59DBA8FB} => Firefox.exe 
Task: {F30C72E3-A4CE-4AAB-BE14-E69989855411} - System32\Tasks\{444017E6-DE6A-445B-96FB-7AD2232993B0} => Firefox.exe 
Task: {F6ECC49B-D038-40B2-88B4-031B4677F8E2} - System32\Tasks\{A4FB5037-D470-41B8-8A8A-300D86117EC6} => Chrome.exe 
Task: {F994897F-240D-44C9-A9D3-F93A7686EF49} - System32\Tasks\{32781823-6D2D-4E46-B337-3551625E59D4} => Firefox.exe 
Task: {FEED7FA7-582B-4526-B4F7-5DA1DECBFDE6} - System32\Tasks\{1A918A12-3900-41A7-909F-497414F69B87} => Firefox.exe 
Task: C:\Windows\Tasks\ARO 2011.job => C:\Program Files (x86)\ARO 2011\ARO.exe
Task: C:\Windows\Tasks\Voo Update.job => C:\Users\Nora\AppData\Roaming\VOOUPD~1\UPDATE~1\UPDATE~1.EXE ""="Driver"
C:\Windows\system32\drivers\NISx64
C:\ProgramData\Internet Helper Anti-phishing
C:\ProgramData\Norton
EmptyTemp: 
CMD: bitsadmin /reset /allusers