Hi,
I'll be looking over your logs and will have some instructions for you this evening. However, I must ask that you paste the logs into your replies instead of attaching them. It makes it easier to research them.
I'll post these logs into the a reply so I can access them this evening.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by Dad (administrator) on HOMERJAY on 07-04-2014 07:23:02
Running from C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version:
http://www.bleepingc...can-tool/dl/81/Download link for 64-Bit Version:
http://www.bleepingc...can-tool/dl/82/Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:
http://www.geekstogo...very-scan-tool/==================== Processes (Whitelisted) =================
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Microsoft) C:\WINDOWS\arservice.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehRecvr.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehSched.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
(Intel Corporation) C:\WINDOWS\system32\IProsetMonitor.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation) C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files\Norton 360\Norton 360\Engine\21.2.0.38\N360.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\Program Files\pcreg\pcreg.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() C:\WINDOWS\system32\atwtusb.exe
(Microsoft Corporation) C:\WINDOWS\ehome\mcrdsvc.exe
(WALTOP International Corp.) C:\WINDOWS\system32\TblMouse.exe
(PixArt Imaging Incorporation) C:\WINDOWS\PixArt\PAC7302\Monitor.exe
(Symantec Corporation) C:\Program Files\Norton 360\Norton 360\Engine\21.2.0.38\N360.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Apache Software Foundation) C:\Program Files\Apache Group\Apache2\bin\ApacheMonitor.exe
(Logitech Inc.) C:\Program Files\SetPoint\SetPoint.exe
(Logitech Inc.) C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
() C:\WINDOWS\system32\atwtusb.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [TblMouse] - C:\WINDOWS\system32\TblMouse.exe [65184 2007-10-09] (WALTOP International Corp.)
HKLM\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [PAC7302_Monitor] - C:\WINDOWS\PixArt\PAC7302\Monitor.exe [323584 2007-12-10] (PixArt Imaging Incorporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [20026472 1999-12-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15512424 2012-09-23] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\WINDOWS\system32\NvMCTray.dll [108392 2012-09-23] (NVIDIA Corporation)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1634112 2012-09-23] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\qttask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [pcreg] - C:\Program Files\pcreg\service.exe [90184 2014-03-13] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\.DEFAULT\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-229142031-1004967283-3177539258-1008\...\Run: [HP Officejet Pro 8600 (NET)] - C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [1804648 2011-09-09] (Hewlett-Packard Co.)
HKU\S-1-5-21-229142031-1004967283-3177539258-1008\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-229142031-1004967283-3177539258-1008\...\Run: [pcreg] - C:\Program Files\pcreg\service.exe [90184 2014-03-13] ()
HKU\S-1-5-21-229142031-1004967283-3177539258-1008\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-229142031-1004967283-3177539258-1008\...\MountPoints2: K - K:\VZW_Software_upgrade_assistant.exe
AppInit_DLLs: c:\progra~1\settin~1\systemk\syskldr.dll => c:\progra~1\settin~1\systemk\syskldr.dll File Not Found
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
Lsa: [Authentication Packages] msv1_0 nwprovau
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Monitor Apache Servers.lnk
ShortcutTarget: Monitor Apache Servers.lnk -> C:\Program Files\Apache Group\Apache2\bin\ApacheMonitor.exe (Apache Software Foundation)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SetPoint.lnk
ShortcutTarget: SetPoint.lnk -> C:\Program Files\SetPoint\SetPoint.exe (Logitech Inc.)
Startup: C:\Documents and Settings\Default User\Start Menu\Programs\Startup\Pin.lnk
ShortcutTarget: Pin.lnk -> C:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\LogMeInRemoteUser\Start Menu\Programs\Startup\Pin.lnk
ShortcutTarget: Pin.lnk -> C:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\UpdatusUser\Start Menu\Programs\Startup\Pin.lnk
ShortcutTarget: Pin.lnk -> C:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\systemk\x64\sysapcrt.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.default-s...&tm=305&src=hmpHKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://ie.redirect.h...lion&pf=desktopHKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.msn.com/?...=EIE8HP&PC=UP61SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL =
http://www.default-s...p={searchTerms}SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
http://search.condui...rchTerms}&SSPV=SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
http://search.condui...rchTerms}&SSPV=SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {35BD7BC1-4C85-4F7F-ACA6-876B606CD4DB} URL =
http://www.ask.com/w...src=0&o=0&l=dirSearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL =
http://www.default-s...p={searchTerms}SearchScopes: HKCU - {DD458146-C277-42A1-8FA1-561B6806DEA8} URL =
http://websearch.ask...DD-9541C9C7D4BBBHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Norton 360\Engine\21.2.0.38\coIEPlg.dll (Symantec Corporation)
BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Norton 360\Engine\21.2.0.38\IPS\IPSBHO.DLL (Symantec Corporation)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll No File
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Norton 360\Engine\21.2.0.38\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}
http://appldnld.appl...ex/qtplugin.cabDPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A}
http://www.shockwave...ploader_v10.cabHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
FireFox:
========
FF ProfilePath: C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Application Data\Mozilla\Firefox\Profiles\846bmugo.default-1370280888171
FF DefaultSearchEngine: Conduit Search
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: default-search.net
FF Homepage: file:///c:/home.htm
FF Keyword.URL: hxxp://www.default-search.net/search?sid=476&aid=100&itype=n&ver=11471&tm=305&src=ds&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2105 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.2.2163 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1212 - C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.10 - C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.0.0.1 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Application Data\Mozilla\Firefox\Profiles\846bmugo.default-1370280888171\searchplugins\ask-jeeves.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
FF Extension: Firebug - C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Application Data\Mozilla\Firefox\Profiles\846bmugo.default-1370280888171\Extensions\
[email protected] [2013-08-05]
FF Extension: Lightbeam - C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Application Data\Mozilla\Firefox\Profiles\846bmugo.default-1370280888171\Extensions\
[email protected] [2013-10-24]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Mozilla Firefox\extensions\
[email protected]FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2014-01-29]
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\
FF Extension: Norton Toolbar - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn\ []
========================== Services (Whitelisted) =================
R2 AdobeActiveFileMonitor9.0; C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [169408 2010-09-05] (Adobe Systems Incorporated)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 1999-12-31] (LSI Corporation)
R2 ARSVC; C:\WINDOWS\arservice.exe [58880 2005-08-03] (Microsoft)
R2 Intel® PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [110752 2010-09-21] (Intel Corporation)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation)
R2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
R2 MsDepSvc; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [67400 2011-04-01] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43129288 2012-06-29] (Microsoft Corporation)
R2 N360; C:\Program Files\Norton 360\Norton 360\Engine\21.2.0.38\N360.exe [265040 2014-03-12] (Symantec Corporation)
R2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-13] (Microsoft Corporation)
R2 pcregservice; C:\Program Files\pcreg\pcreg.exe [33864 2014-03-13] ()
S0 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [69632 2004-09-29] (HP)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [379848 2012-06-29] (Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [528256 2012-12-11] (Wacom Technology, Corp.)
R2 WTService; C:\WINDOWS\system32\atwtusb.exe [364192 2007-12-06] ()
==================== Drivers (Whitelisted) ====================
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 1999-12-31] (Creative)
S3 Andbus; C:\WINDOWS\System32\DRIVERS\lgandbus.sys [14336 2012-03-02] (LG Electronics Inc.)
S3 AndDiag; C:\WINDOWS\System32\DRIVERS\lganddiag.sys [20736 2012-03-02] (LG Electronics Inc.)
S3 AndGps; C:\WINDOWS\System32\DRIVERS\lgandgps.sys [20096 2012-03-02] (LG Electronics Inc.)
S3 ANDModem; C:\WINDOWS\System32\DRIVERS\lgandmodem.sys [25088 2012-03-02] (LG Electronics Inc.)
S3 androidusb; C:\WINDOWS\System32\Drivers\lgandadb.sys [25728 2012-03-02] (Google Inc)
S3 aracpi; C:\WINDOWS\System32\DRIVERS\aracpi.sys [22784 2005-08-03] (Microsoft Corporation)
R3 arhidfltr; C:\WINDOWS\System32\DRIVERS\arhidfltr.sys [19200 2005-08-03] (Microsoft Corporation)
R3 arkbcfltr; C:\WINDOWS\System32\DRIVERS\arkbcfltr.sys [5376 2005-08-03] (Microsoft Corporation)
R3 armoucfltr; C:\WINDOWS\System32\DRIVERS\armoucfltr.sys [4992 2005-08-03] (Microsoft Corporation)
R3 ARPolicy; C:\WINDOWS\System32\DRIVERS\arpolicy.sys [10112 2005-08-03] (Microsoft Corporation)
S3 AVEO; C:\WINDOWS\System32\DRIVERS\AVEOdcnt.sys [224256 2010-01-21] (AVEO Corp)
R0 bb-run; C:\WINDOWS\System32\DRIVERS\bb-run.sys [17408 2003-11-05] (Promise Technology, Inc.)
R1 BHDrvx86; C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140319.001\BHDrvx86.sys [1098968 2014-03-18] (Symantec Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 ccSet_N360; C:\WINDOWS\system32\drivers\N360\1502000.026\ccSetx86.sys [127064 2013-09-25] (Symantec Corporation)
R3 CXFALCON; C:\WINDOWS\System32\drivers\cxfalcon.sys [100480 2005-08-16] (Conexant Systems, Inc.)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376920 2014-01-31] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [108120 2014-01-28] (Symantec Corporation)
R0 ftsata2; C:\WINDOWS\System32\DRIVERS\ftsata2.sys [175104 2005-06-30] (Promise Technology, Inc.)
R3 hidkmdf; C:\WINDOWS\System32\DRIVERS\hidkmdf.sys [11680 2012-12-03] (Windows ® Win 7 DDK provider)
R3 IDSxpx86; C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140404.001\IDSxpx86.sys [383120 2014-03-25] (Symantec Corporation)
R3 LUsbFilt; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [28688 2007-04-11] (Logitech, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 1999-12-31] (Creative Technology Ltd.)
R3 NAVENG; C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140406.021\NAVENG.SYS [93272 2014-04-02] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140406.021\NAVEX15.SYS [1612376 2014-04-02] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [124264 2012-07-03] (NVIDIA Corporation)
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2004-08-10] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2004-08-10] (Microsoft Corporation)
R3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-13] (Microsoft Corporation)
S3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [457216 2009-04-28] (PixArt Imaging Inc.)
S4 RsFx0153; C:\WINDOWS\System32\DRIVERS\RsFx0153.sys [249288 2012-06-29] (Microsoft Corporation)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R3 SRTSP; C:\WINDOWS\System32\Drivers\N360\1502000.026\SRTSP.SYS [664280 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\N360\1502000.026\SRTSPX.SYS [32344 2013-09-09] (Symantec Corporation)
S3 SWDUMon; C:\WINDOWS\System32\DRIVERS\SWDUMon.sys [12984 2012-04-13] ()
R0 SymDS; C:\WINDOWS\System32\drivers\N360\1502000.026\SYMDS.SYS [367704 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\WINDOWS\System32\drivers\N360\1502000.026\SYMEFA.SYS [936152 2014-03-03] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142936 2014-01-29] (Symantec Corporation)
S3 SymIM; C:\WINDOWS\System32\DRIVERS\SymIM.sys [47960 2013-09-09] (Symantec Corporation)
R3 SymIMMP; C:\WINDOWS\System32\DRIVERS\SymIM.sys [47960 2013-09-09] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\N360\1502000.026\Ironx86.SYS [206936 2013-09-26] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\N360\1502000.026\SYMTDI.SYS [423256 2014-02-17] (Symantec Corporation)
S3 WacHidRouter; C:\WINDOWS\System32\DRIVERS\wachidrouter.sys [70048 2012-12-03] (Wacom Technology)
S3 wacomrouterfilter; C:\WINDOWS\System32\DRIVERS\wacomrouterfilter.sys [13728 2012-11-15] (Wacom Technology)
S3 WN5301; C:\WINDOWS\System32\DRIVERS\wn5301.sys [468768 2005-10-05] (Liteon Technology Inc.)
S3 dsNcAdpt; system32\DRIVERS\dsNcAdpt.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]
U1 WS2IFSL;
S2 zumbus; system32\DRIVERS\zumbus.sys [X]
==================== NetSvcs (Whitelisted) ===================
NETSVC: MHN -> C:\Windows\System32\mhn.dll (Microsoft Corporation)
==================== One Month Created Files and Folders ========
2014-04-07 07:23 - 2014-04-07 07:23 - 00023513 _____ () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\FRST.txt
2014-04-07 07:21 - 2014-04-07 07:23 - 00000000 ____D () C:\FRST
2014-04-07 07:17 - 2014-04-07 07:17 - 04745728 _____ (AVAST Software) C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\aswmbr.exe
2014-04-07 07:15 - 2014-04-07 07:15 - 01145856 _____ (Farbar) C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\FRST.exe
2014-04-06 17:02 - 2014-04-06 17:02 - 03423972 ____R () C:\2013Backup_2014-04-06_170202.mbf
2014-04-06 15:49 - 2014-04-06 15:49 - 03408054 ____R () C:\2013Backup_2014-04-06_154912.mbf
2014-04-04 15:47 - 2014-04-04 15:51 - 00000000 ____D () C:\WINDOWS\system32\CATRJunk
2014-04-04 15:38 - 2014-04-04 15:38 - 03182166 _____ () C:\WINDOWS\4_14image.bmp
2014-04-04 15:05 - 2014-04-04 15:05 - 00000000 _____ () C:\END
2014-04-03 07:25 - 2014-04-03 07:25 - 03396905 ____R () C:\2013Backup_2014-04-03_072538.mbf
2014-04-02 13:37 - 2014-04-07 03:41 - 00000328 _____ () C:\WINDOWS\Tasks\bench-sys.job
2014-04-02 13:33 - 2014-04-06 21:18 - 00000354 _____ () C:\WINDOWS\Tasks\At1.job
2014-04-02 13:33 - 2014-04-06 21:18 - 00000266 _____ () C:\WINDOWS\Tasks\pcreg.job
2014-04-02 13:32 - 2014-04-02 13:33 - 00000000 ____D () C:\Program Files\pcreg
2014-03-31 11:37 - 2014-04-06 14:57 - 00000218 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-03-31 11:37 - 2014-03-31 11:37 - 00000212 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-03-29 20:58 - 2013-09-09 19:47 - 00047960 ____R (Symantec Corporation) C:\WINDOWS\system32\Drivers\SymIM.sys
2014-03-28 20:52 - 2014-03-30 13:54 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-03-27 03:03 - 2014-03-27 03:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2014-03-27 03:00 - 2014-03-27 03:03 - 00006821 _____ () C:\WINDOWS\KB2934207.log
2014-03-26 15:40 - 2014-02-25 18:59 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2014-03-26 15:40 - 2014-02-25 18:59 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2014-03-21 22:40 - 2014-03-21 22:39 - 00110592 _____ () C:\WINDOWS\Minidump\Mini032114-01.dmp
2014-03-21 07:34 - 2014-04-06 10:38 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\PattenU
2014-03-16 14:33 - 2014-04-07 07:08 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\Mary Moose
2014-03-15 12:30 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\SelfMV
2014-03-15 12:30 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\samsung
2014-03-15 12:30 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\All Users\Documents\NativeFus_Log
2014-03-15 12:30 - 2014-02-25 16:48 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\system32\secman.dll
2014-03-15 12:29 - 2014-04-02 13:46 - 00000000 ____D () C:\Program Files\Samsung
2014-03-15 12:27 - 2014-03-15 12:27 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Application Data\Downloaded Installations
2014-03-15 12:20 - 2008-04-13 19:12 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpusd.dll
2014-03-15 12:20 - 2001-08-17 22:36 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpusb.dll
2014-03-15 12:12 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Application Data\Samsung
2014-03-15 12:12 - 2014-03-15 12:12 - 00000000 ____D () C:\Documents and Settings\All Users\Documents\SmartSwitch
2014-03-14 03:06 - 2014-03-14 03:07 - 00132116 _____ () C:\WINDOWS\KB2925418-IE8.log
2014-03-14 03:06 - 2014-03-14 03:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-03-14 03:06 - 2014-03-14 03:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-03-14 03:01 - 2014-03-14 03:01 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
2014-03-13 06:50 - 2014-03-14 03:06 - 00130647 _____ () C:\WINDOWS\KB2929961.log
2014-03-13 06:49 - 2014-03-14 03:06 - 00134032 _____ () C:\WINDOWS\KB2930275.log
2014-03-11 12:10 - 2014-04-04 16:32 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\Mulvaney
==================== One Month Modified Files and Folders =======
2014-04-07 07:23 - 2014-04-07 07:23 - 00023513 _____ () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\FRST.txt
2014-04-07 07:23 - 2014-04-07 07:21 - 00000000 ____D () C:\FRST
2014-04-07 07:17 - 2014-04-07 07:17 - 04745728 _____ (AVAST Software) C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\aswmbr.exe
2014-04-07 07:15 - 2014-04-07 07:15 - 01145856 _____ (Farbar) C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\FRST.exe
2014-04-07 07:08 - 2014-03-16 14:33 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\Mary Moose
2014-04-07 07:02 - 2010-02-25 11:48 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-07 07:00 - 2013-05-09 04:49 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-04-07 06:32 - 2012-02-18 22:07 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Application Data\Adobe
2014-04-07 05:53 - 2005-08-30 21:55 - 00000280 _____ () C:\WINDOWS\wiadebug.log
2014-04-07 05:07 - 2014-01-29 08:55 - 00125533 _____ () C:\WINDOWS\setupapi.log
2014-04-07 03:41 - 2014-04-02 13:37 - 00000328 _____ () C:\WINDOWS\Tasks\bench-sys.job
2014-04-07 02:00 - 2012-11-16 17:47 - 00000338 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-HOMERJAY-Dad.job
2014-04-07 02:00 - 2010-11-18 19:32 - 00000364 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-HOMERJAY-HP_Administrator.job
2014-04-06 21:18 - 2014-04-02 13:33 - 00000354 _____ () C:\WINDOWS\Tasks\At1.job
2014-04-06 21:18 - 2014-04-02 13:33 - 00000266 _____ () C:\WINDOWS\Tasks\pcreg.job
2014-04-06 18:02 - 2010-02-25 11:48 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-06 18:02 - 2005-08-31 05:17 - 00031912 _____ () C:\WINDOWS\SchedLgU.Txt
2014-04-06 17:02 - 2014-04-06 17:02 - 03423972 ____R () C:\2013Backup_2014-04-06_170202.mbf
2014-04-06 17:02 - 2012-02-24 19:34 - 16097280 _____ () C:\2012Feb.mny
2014-04-06 15:49 - 2014-04-06 15:49 - 03408054 ____R () C:\2013Backup_2014-04-06_154912.mbf
2014-04-06 15:43 - 2005-08-31 05:17 - 01311583 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-06 14:59 - 2005-09-01 11:58 - 00000000 ____D () C:\WINDOWS\Registration
2014-04-06 14:59 - 2005-08-31 05:02 - 00000776 _____ () C:\WINDOWS\win.ini
2014-04-06 14:57 - 2014-03-31 11:37 - 00000218 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-04-06 14:57 - 2013-11-11 16:33 - 00000642 _____ () C:\WINDOWS\Tasks\Amazon Music Helper.job
2014-04-06 14:57 - 2012-02-14 18:45 - 00000178 ___SH () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\ntuser.ini
2014-04-06 14:57 - 2005-08-31 05:17 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-04-06 14:57 - 2005-08-30 21:55 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2014-04-06 14:54 - 2013-06-06 07:43 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Application Data\NPE
2014-04-06 14:54 - 2005-08-30 23:34 - 00000279 __RSH () C:\boot.ini
2014-04-06 10:38 - 2014-03-21 07:34 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\PattenU
2014-04-06 10:10 - 2013-11-20 12:34 - 00070656 _____ () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\Daily List.xls
2014-04-05 11:56 - 2014-01-14 16:27 - 00109145 _____ () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\2014BillPay.xlsx
2014-04-04 16:32 - 2014-03-11 12:10 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\Mulvaney
2014-04-04 15:51 - 2014-04-04 15:47 - 00000000 ____D () C:\WINDOWS\system32\CATRJunk
2014-04-04 15:38 - 2014-04-04 15:38 - 03182166 _____ () C:\WINDOWS\4_14image.bmp
2014-04-04 15:05 - 2014-04-04 15:05 - 00000000 _____ () C:\END
2014-04-03 23:38 - 2006-04-27 22:50 - 00000000 ____D () C:\Program Files\Las Vegas Casino
2014-04-03 23:36 - 2010-02-10 08:01 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-04-03 15:21 - 2012-03-08 19:53 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-04-03 07:25 - 2014-04-03 07:25 - 03396905 ____R () C:\2013Backup_2014-04-03_072538.mbf
2014-04-02 15:18 - 2005-09-01 11:54 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-04-02 14:11 - 2010-05-19 08:56 - 00000000 ____D () C:\Program Files\Lexmark 1200 Series
2014-04-02 14:11 - 2008-07-20 14:30 - 00000000 ____D () C:\Program Files\ABBYY FineReader 5.0 Sprint
2014-04-02 13:46 - 2014-03-15 12:29 - 00000000 ____D () C:\Program Files\Samsung
2014-04-02 13:33 - 2014-04-02 13:32 - 00000000 ____D () C:\Program Files\pcreg
2014-04-01 11:25 - 2013-07-22 10:05 - 00001011 _____ () C:\home.htm
2014-04-01 11:23 - 2013-07-22 10:05 - 00000000 ____D () C:\home_files
2014-03-31 22:42 - 2008-08-20 21:02 - 00002187 _____ () C:\Documents and Settings\All Users\Desktop\Safari.lnk
2014-03-31 11:37 - 2014-03-31 11:37 - 00000212 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-03-31 11:34 - 2013-05-08 05:42 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-03-30 13:54 - 2014-03-28 20:52 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-03-29 21:01 - 2014-01-29 09:18 - 00000000 ____D () C:\WINDOWS\system32\Drivers\N360
2014-03-29 20:57 - 2014-01-29 09:24 - 00001975 _____ () C:\Documents and Settings\All Users\Desktop\Norton 360.LNK
2014-03-29 20:57 - 2014-01-29 09:18 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Norton 360
2014-03-27 03:03 - 2014-03-27 03:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2014-03-27 03:03 - 2014-03-27 03:00 - 00006821 _____ () C:\WINDOWS\KB2934207.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00912948 _____ () C:\WINDOWS\tsoc.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00654517 _____ () C:\WINDOWS\comsetup.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00398319 _____ () C:\WINDOWS\ntdtcsetup.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00240333 _____ () C:\WINDOWS\MedCtrOC.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00232234 _____ () C:\WINDOWS\iis6.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00111793 _____ () C:\WINDOWS\ehOCGen.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00108384 _____ () C:\WINDOWS\ocmsn.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00099104 _____ () C:\WINDOWS\tabletoc.log
2014-03-27 03:03 - 2005-08-31 05:04 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-03-27 03:03 - 2005-08-31 04:59 - 01983696 _____ () C:\WINDOWS\FaxSetup.log
2014-03-27 03:03 - 2005-08-31 04:59 - 00972531 _____ () C:\WINDOWS\ocgen.log
2014-03-27 03:03 - 2005-08-31 04:59 - 00360008 _____ () C:\WINDOWS\netfxocm.log
2014-03-27 03:03 - 2005-08-31 04:59 - 00230231 _____ () C:\WINDOWS\plusoc.log
2014-03-27 03:03 - 2005-08-31 04:59 - 00099445 _____ () C:\WINDOWS\msgsocm.log
2014-03-27 03:03 - 2005-08-31 04:57 - 00617814 _____ () C:\WINDOWS\msmqinst.log
2014-03-26 18:30 - 2012-04-17 18:16 - 00001680 _____ () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Application Data\Adobe Save for Web 12.0 Prefs
2014-03-21 22:40 - 2006-06-03 10:35 - 00000000 ____D () C:\WINDOWS\Minidump
2014-03-21 22:39 - 2014-03-21 22:40 - 00110592 _____ () C:\WINDOWS\Minidump\Mini032114-01.dmp
2014-03-18 15:29 - 2013-08-14 03:14 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-18 15:25 - 2012-02-21 09:00 - 87350280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-15 12:30 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\SelfMV
2014-03-15 12:30 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\samsung
2014-03-15 12:30 - 2014-03-15 12:30 - 00000000 ____D () C:\Documents and Settings\All Users\Documents\NativeFus_Log
2014-03-15 12:30 - 2014-03-15 12:12 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Application Data\Samsung
2014-03-15 12:29 - 2005-12-08 10:09 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-15 12:27 - 2014-03-15 12:27 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Application Data\Downloaded Installations
2014-03-15 12:12 - 2014-03-15 12:12 - 00000000 ____D () C:\Documents and Settings\All Users\Documents\SmartSwitch
2014-03-14 03:27 - 2005-08-31 05:05 - 03628824 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-14 03:25 - 2010-02-13 10:40 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-14 03:07 - 2014-03-14 03:06 - 00132116 _____ () C:\WINDOWS\KB2925418-IE8.log
2014-03-14 03:07 - 2005-12-08 09:55 - 00263358 _____ () C:\WINDOWS\updspapi.log
2014-03-14 03:07 - 2005-08-31 05:04 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2014-03-14 03:06 - 2014-03-14 03:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-03-14 03:06 - 2014-03-14 03:06 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-03-14 03:06 - 2014-03-13 06:50 - 00130647 _____ () C:\WINDOWS\KB2929961.log
2014-03-14 03:06 - 2014-03-13 06:49 - 00134032 _____ () C:\WINDOWS\KB2930275.log
2014-03-14 03:03 - 2008-07-20 13:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-03-14 03:01 - 2014-03-14 03:01 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
2014-03-13 00:43 - 2012-02-14 18:45 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75
2014-03-12 12:00 - 2012-06-29 18:53 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-12 12:00 - 2012-06-29 18:53 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-03-12 08:26 - 2011-01-11 11:35 - 00000000 ____D () C:\Documents and Settings\All Users\Documents\SarasDoodles
2014-03-11 09:10 - 2014-03-04 08:10 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\Sallie Mae
2014-03-10 12:26 - 2012-03-28 18:11 - 00000000 ____D () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\My Documents\Taxes
2014-03-09 22:24 - 2005-08-31 05:07 - 00688336 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-08 07:09 - 2013-01-30 17:01 - 00027136 _____ () C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\Birthdays2013.xls
Files to move or delete:
====================
C:\Windows\Tasks\At1.job
Some content of TEMP:
====================
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\file_159755.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\file_to_run551064.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\file_to_run551629.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\file_to_run55288.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\nsa3B.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\nsd2A.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\nsi2F.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\nsw27.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\nsx1A.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\nsz32.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\SettingsManagerSetup.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\speedmax.exe
C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Temp\SPSetup.exe
==================== Bamital & volsnap Check =================
C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll => MD5 is legit
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by Dad at 2014-04-07 07:24:51
Running from C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Norton 360 (Disabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton 360 (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
==================== Installed Programs ======================
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.9.0.1210 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.9.0.1210 - Adobe Systems Incorporated) Hidden
Adobe Captivate 5.5 (HKLM\...\{7DE6CDC3-CFEE-4564-813D-3F59E5D71F10}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Captivate Quiz Results Analyzer (HKLM\...\QuizResultsAnalyzer1.5.D22673E681B55698FF9C7ED1AC2C76EECFF3CF3F.1) (Version: 1.5 - Adobe Systems Incorporated)
Adobe Captivate Quiz Results Analyzer (Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Captivate Reviewer (HKLM\...\AdobeCaptivateReviewer2.5.D22673E681B55698FF9C7ED1AC2C76EECFF3CF3F.1) (Version: 2.5 - Adobe Systems Incorporated)
Adobe Captivate Reviewer (HKLM\...\AdobeCaptivateReviewer2.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 - Adobe Systems Incorporated)
Adobe Captivate Reviewer (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Captivate Reviewer (Version: 2.5 - Adobe Systems Incorporated) Hidden
Adobe Connect 9 Add-in (HKCU\...\Adobe Connect 9 Add-in) (Version: 11,2,261,0 - Adobe Systems Incorporated)
Adobe Creative Suite 5.5 Design Premium (HKLM\...\{60E59A6C-7399-495A-B85C-C829F4E59602}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Premiere Elements 9 (HKLM\...\PremElem90) (Version: 9.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 9 (Version: 9.0.1 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.9) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Amazon Cloud Player (HKCU\...\Amazon Amazon Cloud Player) (Version: 1.7.0.344 - Amazon Services LLC)
Apple Application Support (HKLM\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0 (HKLM\...\Audacity_is1) (Version: - Audacity Team)
Bamboo Dock (HKLM\...\Bamboo Dock) (Version: 4.1 - Wacom Co., Ltd.)
Bamboo Dock (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Tablets Tutorial (Version: 3.0.20 - Wacom) Hidden
BYOB (HKLM\...\BYOB) (Version: - )
cp_LightScribeConfig (Version: 53.0.24.000 - Hewlett-Packard) Hidden
cp_LightScribePlugin (Version: 53.0.24.000 - Hewlett-Packard) Hidden
CP_Package_Variety1 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Package_Variety2 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Package_Variety3 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
DISCover (HKLM\...\DISCover) (Version: 3.21 - )
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
Elements 9 Organizer (Version: 9.0 - Adobe Systems Incorporated) Hidden
Elements STI Installer (Version: 1.0 - Adobe Systems Incorporated) Hidden
GoldWave v5.58 (HKLM\...\GoldWave v5.58) (Version: - )
High Definition Audio Driver Package - KB888111 (HKLM\...\KB888111WXPSP2) (Version: 20040219.000000 - Microsoft Corporation)
HP Boot Optimizer (HKLM\...\{3BA95526-6AE0-4B87-A62D-17187EF565FC}) (Version: 2.0.5.1 - Hewlett-Packard Company)
HP DigitalMedia Archive (HKLM\...\{F80239D8-7811-4D5E-B033-0D0BBFE32920}) (Version: 1.2 - Hewlett-Packard)
HP Image Zone for Media Center PC (HKLM\...\HP Image Zone for Media Center PC) (Version: - )
HP Multimedia Keyboard Software (HKLM\...\KBD) (Version: - )
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{9C55C629-6C4F-48A9-8840-C897DF6187ED}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM\...\{B6F5C6D8-C443-4B55-932F-AE11B5743FC4}) (Version: 140.0.2.2 - Hewlett Packard)
HP Solution Center & Imaging Support Tools 5.3 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 5.3 - HP)
HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
HPProductAssistant (Version: 53.0.13.000 - Hewlett-Packard) Hidden
HpSdpAppCoreApp (Version: 3.00.0000 - Hewlett-Packard) Hidden
IIS 7.5 Express (HKLM\...\{3A30B5F5-F12C-490F-8CD4-D200C75DF7E8}) (Version: 7.5.1190 - Microsoft Corporation)
Intel Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - )
Intel® Network Connections 15.7.176.1 (HKLM\...\{8C9B6B1F-0A8E-402A-A60C-110BBB38D67E}) (Version: 15.7.176.1 - Intel)
InterVideo WinDVD Player (HKLM\...\{3912A629-0020-0005-3757-2FBA74D4DF0A}) (Version: - )
InterVideo WinDVD Player (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.896 - InterVideo Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jing (HKLM\...\{22800204-9E53-45C7-B6F3-5BB0F1C1A147}) (Version: 2.8.13007.1 - TechSmith Corporation)
KhalInstallWrapper (Version: 4.00.121 - Logitech) Hidden
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
LG United Mobile Driver (HKLM\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.7.2.0 - LG Electronics)
LightScribe 1.4.52.1 (Version: 1.4.52.1 - Integrator) Hidden
Microsoft .NET Framework 1.0 Hotfix (KB2572066) (HKLM\...\KB2572066) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB2604042) (HKLM\...\KB2604042) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB2656378) (HKLM\...\KB2656378) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2698035) (HKLM\...\KB2698035) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2742607) (HKLM\...\KB2742607) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2833951) (HKLM\...\KB2833951) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2904878) (HKLM\...\KB2904878) (Version: - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ActiveSync 4.0 (HKLM\...\{B208806F-A231-4FA0-AB3F-5C1B8979223E}) (Version: 4.2.4876.0 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 2 - VWD Express 2010 Tools (HKLM\...\{5BDFAB82-060E-438B-AB4F-A2331B2294C0}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM\...\{1803A630-3C38-4D2B-9B9A-0CB37243539C}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - VWD Express 2010 Tools Update (HKLM\...\{21E7A706-31FF-46AA-A294-FA4A8917B59F}) (Version: 3.0.20406.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 (HKLM\...\{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - VWD Express 2010 Tools (HKLM\...\{3CFFC382-6C23-42CB-8B1E-625F9F84E362}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages (HKLM\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Away Mode (HKLM\...\AwayMode160) (Version: 6.0.0160.0 - Microsoft Corporation)
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 (Version: - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version: - Microsoft Corporation) Hidden
Microsoft Money Plus (HKLM\...\Money2008b) (Version: 17 - Microsoft)
Microsoft Money Shared Libraries (Version: 17.0.0.3817 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Communicator 2007 (HKLM\...\{E5BA0430-919F-46DD-B656-0796F8A5ADFF}) (Version: 2.0.6362.0 - Microsoft Corporation)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUSR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM\...\{05855322-BE43-41FE-B583-D3AE0C326D58}) (Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 R2 (HKLM\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (Version: - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 R2 Management Objects (HKLM\...\{83F2B8F4-5CF3-4BE9-9772-9543EAE4AC5F}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{EEB0EFE8-61EB-4C42-929A-CE25D3FBC0C6}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 RsFx Driver (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 R2 Setup (English) (HKLM\...\{7419AE1A-D1A5-4B24-BD78-C7ABCC26016F}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 ENU CTP1 (HKLM\...\{973805E6-9CDB-43F8-A14E-2161532B56A7}) (Version: 4.0.8854.1 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM\...\{C3F6F200-6D7B-4879-B9EE-700C0CE1FCDA}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{47BE41E6-2F0F-4D17-9C2D-3850FFD9D405}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40308 - Microsoft Corporation) Hidden
Microsoft Visual Web Developer 2010 Express - ENU (HKLM\...\Microsoft Visual Web Developer 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Web Developer 2010 Express - ENU (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Web Deploy 2.0 (HKLM\...\{5134B35A-B559-4762-94A4-FD4918977953}) (Version: 2.0.1070 - Microsoft Corporation)
Microsoft Web Platform Installer 4.6 (HKLM\...\{C8491840-1B85-40CF-8FF4-1CCA8078C00F}) (Version: 4.0.40719.0 - Microsoft Corporation)
Microsoft WinUsb 1.0 (HKLM\...\winusb0100) (Version: - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM\...\{95140000-0137-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 28.0 (x86 en-US) (HKLM\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
Mozilla Thunderbird 17.0.6 (x86 en-US) (HKLM\...\Mozilla Thunderbird 17.0.6 (x86 en-US)) (Version: 17.0.6 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6 Service Pack 2 (KB973686) (HKLM\...\{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}) (Version: 6.20.2003.0 - Microsoft Corporation)
muvee autoProducer 4.5 (HKLM\...\{E7137AFD-4E43-47A6-BDC7-533808F72B36}) (Version: 4.50.050 - muvee Technologies)
muvee autoProducer unPlugged 1.2 (HKLM\...\{DFB0FED6-0010-4E9B-A402-E513F2459161}) (Version: 1.20.100 - muvee Technologies)
Norton 360 (HKLM\...\N360) (Version: 21.2.0.38 - Symantec Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.5.1 - Notepad++ Team)
NuGet (HKLM\...\{A5630CB0-6D3C-4C93-9A51-03BEB835A982}) (Version: 1.2.103.0 - Microsoft Corporation)
NVIDIA Control Panel 306.81 (Version: 306.81 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 306.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 306.81 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.85.551 - NVIDIA Corporation) Hidden
NVIDIA nView 136.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.28 - NVIDIA Corporation)
NVIDIA nView Desktop Manager (Version: 6.14.10.13585 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.12.0604 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.12.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0604 - NVIDIA Corporation)
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PS2 (HKLM\...\PS2) (Version: - )
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RealPlayer (HKLM\...\RealPlayer 6.0) (Version: - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6304 - Realtek Semiconductor Corp.)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
SmartSound Quicktracks for Premiere Elements 9.0 (HKLM\...\InstallShield_{6748E773-5DA0-4D19-8AA5-273B4133A09B}) (Version: 3.12.3090 - SmartSound Software Inc)
SmartSound Quicktracks for Premiere Elements 9.0 (Version: 3.12.3090 - SmartSound Software Inc) Hidden
SolutionCenter (Version: 50.0.152.000 - Hewlett-Packard) Hidden
Sonic MyDVD Plus (HKLM\...\{21657574-BD54-48A2-9450-EB03B2C7FC29}) (Version: 6.2.0 - Sonic Solutions)
Sonic RecordNow Audio (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.4 - Sonic Solutions)
Sonic RecordNow Copy (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.4 - Sonic Solutions)
Sonic RecordNow Data (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.4 - Sonic Solutions)
Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
SQL Server 2008 R2 SP2 Common Files (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM\...\{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_PROPLUSR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878234) 32-Bit Edition (HKLM\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{EC1934B0-AE0F-4BBD-8955-54BB3247ED9E}) (Version: - Microsoft)
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB976662) (HKLM\...\KB976662-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Media Player 10 (KB913800) (Version: - Microsoft Corporation) Hidden
Update for Windows Media Player 10 (KB926251) (Version: - Microsoft Corporation) Hidden
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB961503) (HKLM\...\KB961503) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update Rollup 2 for Windows XP Media Center Edition 2005 (HKLM\...\KB900325) (Version: - Microsoft Corporation)
USB Tablet Manager (HKLM\...\Rmtablet) (Version: - )
ViewSonic Windows XP Signed Files (HKLM\...\{FC47C7A5-BE63-11D5-B7C9-005004566E4D}) (Version: - )
Visual Studio 2010 SP1 Tools for SQL Server Compact 4.0 ENU (HKLM\...\{D25C502E-FF51-424C-8C38-8596FE47D0CD}) (Version: 4.0.8482.1 - Microsoft Corporation)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.2-1 - Wacom Technology Corp.)
WCF RIA Services V1.0 SP1 (HKLM\...\{D9E6001A-5DC3-4620-AF7A-80B6CD48645D}) (Version: 4.1.60114.0 - Microsoft Corporation)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 53.0.13.000 - Hewlett-Packard) Hidden
WebTablet FB Plugin 32 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.2 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 11 (Version: - Microsoft Corporation) Hidden
Windows XP Media Center Edition 2005 KB2502898 (HKLM\...\KB2502898) (Version: - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2619340 (HKLM\...\KB2619340) (Version: - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2628259 (HKLM\...\KB2628259) (Version: - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB925766 (HKLM\...\KB925766) (Version: - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB973768 (HKLM\...\KB973768) (Version: - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
==================== Restore Points =========================
07-01-2014 15:21:49 System Checkpoint
08-01-2014 19:07:12 System Checkpoint
09-01-2014 23:38:35 System Checkpoint
11-01-2014 02:18:20 System Checkpoint
12-01-2014 02:28:02 System Checkpoint
13-01-2014 02:41:57 System Checkpoint
14-01-2014 03:43:34 System Checkpoint
14-01-2014 11:00:17 Software Distribution Service 3.0
15-01-2014 11:00:37 Software Distribution Service 3.0
16-01-2014 11:32:23 System Checkpoint
17-01-2014 12:32:24 System Checkpoint
18-01-2014 12:44:57 System Checkpoint
18-01-2014 16:25:41 Installed Java 7 Update 51
19-01-2014 16:44:57 System Checkpoint
20-01-2014 17:44:56 System Checkpoint
22-01-2014 01:48:12 System Checkpoint
23-01-2014 02:40:21 System Checkpoint
24-01-2014 02:47:35 System Checkpoint
25-01-2014 04:28:24 System Checkpoint
26-01-2014 04:47:53 System Checkpoint
27-01-2014 05:15:33 System Checkpoint
28-01-2014 05:17:33 System Checkpoint
29-01-2014 05:27:01 System Checkpoint
30-01-2014 05:31:32 System Checkpoint
31-01-2014 05:47:25 System Checkpoint
01-02-2014 07:19:40 System Checkpoint
02-02-2014 08:11:21 System Checkpoint
03-02-2014 09:10:01 System Checkpoint
04-02-2014 09:29:44 System Checkpoint
05-02-2014 10:28:44 System Checkpoint
06-02-2014 16:05:40 System Checkpoint
07-02-2014 16:09:29 System Checkpoint
08-02-2014 17:09:27 System Checkpoint
09-02-2014 17:57:23 System Checkpoint
10-02-2014 21:12:26 System Checkpoint
11-02-2014 22:18:08 System Checkpoint
12-02-2014 23:15:04 System Checkpoint
13-02-2014 09:51:44 Software Distribution Service 3.0
14-02-2014 09:57:23 System Checkpoint
15-02-2014 10:06:13 System Checkpoint
16-02-2014 10:06:22 System Checkpoint
17-02-2014 11:04:39 System Checkpoint
18-02-2014 23:11:04 System Checkpoint
20-02-2014 02:21:28 System Checkpoint
21-02-2014 02:31:59 System Checkpoint
22-02-2014 03:49:00 System Checkpoint
23-02-2014 15:45:01 System Checkpoint
24-02-2014 15:47:02 System Checkpoint
25-02-2014 00:04:45 Norton 360 Registry Clean
26-02-2014 04:16:49 System Checkpoint
27-02-2014 05:40:17 System Checkpoint
28-02-2014 06:19:45 System Checkpoint
01-03-2014 06:48:19 System Checkpoint
02-03-2014 07:24:43 System Checkpoint
03-03-2014 08:24:41 System Checkpoint
04-03-2014 09:14:29 System Checkpoint
05-03-2014 09:59:25 System Checkpoint
06-03-2014 10:59:26 System Checkpoint
07-03-2014 12:17:47 System Checkpoint
08-03-2014 12:32:00 System Checkpoint
09-03-2014 13:32:01 System Checkpoint
10-03-2014 15:21:18 System Checkpoint
11-03-2014 15:34:58 System Checkpoint
12-03-2014 18:18:56 System Checkpoint
13-03-2014 18:48:26 System Checkpoint
14-03-2014 10:00:33 Software Distribution Service 3.0
15-03-2014 10:29:41 System Checkpoint
15-03-2014 19:29:31 Installed Samsung Kies3
16-03-2014 19:37:22 System Checkpoint
17-03-2014 22:55:16 System Checkpoint
18-03-2014 22:25:06 Software Distribution Service 3.0
19-03-2014 23:36:27 System Checkpoint
20-03-2014 23:54:57 System Checkpoint
22-03-2014 00:08:07 System Checkpoint
23-03-2014 00:45:52 System Checkpoint
24-03-2014 00:46:17 System Checkpoint
25-03-2014 01:20:17 System Checkpoint
26-03-2014 01:26:42 System Checkpoint
27-03-2014 03:45:54 System Checkpoint
27-03-2014 10:00:18 Software Distribution Service 3.0
28-03-2014 10:25:36 System Checkpoint
29-03-2014 11:25:37 System Checkpoint
30-03-2014 12:00:28 System Checkpoint
31-03-2014 12:04:57 System Checkpoint
01-04-2014 12:39:54 System Checkpoint
02-04-2014 13:39:04 System Checkpoint
02-04-2014 20:45:46 Removed Samsung Kies3
03-04-2014 21:09:47 System Checkpoint
04-04-2014 21:15:11 System Checkpoint
05-04-2014 21:23:36 System Checkpoint
07-04-2014 00:51:56 System Checkpoint
==================== Scheduled Tasks (whitelisted) =============
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-HOMERJAY-Dad.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-HOMERJAY-HP_Administrator.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\Amazon Music Helper.job => C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Local Settings\Application Data\Amazon Cloud Player\Amazon Music Helper.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\At1.job => c:\Program Files\pcreg\service.exe
Task: C:\WINDOWS\Tasks\bench-sys.job => C:\Program Files\Bench\Updater\updater.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ErrorEND.job => C:\Program Files\ErrorEND\ErrorEND.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HubTask 0 {0E7C166E-2D2F-4269-9034-DE1898BF2B1A} 0~0.job => c:\Program Files\Common Files\Sonic Shared\Sonic Central\Main\Mediahub.exe
Task: C:\WINDOWS\Tasks\HubTask 1 {0E7C166E-2D2F-4269-9034-DE1898BF2B1A} 0~0.job => c:\Program Files\Common Files\Sonic Shared\Sonic Central\Main\Mediahub.exe
Task: C:\WINDOWS\Tasks\Install.job => C:\WINDOWS\system32\Macromed\Shockwave 10\nssstub.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\pcreg.job => C:\Program Files\pcreg\service.exe
==================== Loaded Modules (whitelisted) =============
2004-08-10 05:00 - 2011-02-04 15:48 - 00291840 _____ () C:\WINDOWS\system32\sbe.dll
2004-08-10 05:00 - 2013-01-01 23:49 - 01292288 _____ () C:\WINDOWS\system32\quartz.dll
2004-08-10 05:00 - 2008-04-13 17:11 - 00059904 _____ () C:\WINDOWS\system32\devenum.dll
2004-08-10 05:00 - 2008-04-13 17:11 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2004-08-10 12:00 - 2005-08-05 21:06 - 00165376 _____ () C:\WINDOWS\system32\mpg2splt.ax
2004-08-10 12:00 - 2005-08-05 22:01 - 00159744 _____ () C:\WINDOWS\system32\VBICodec.ax
2004-08-10 05:00 - 2011-10-14 15:38 - 00456192 _____ () C:\WINDOWS\system32\encdec.dll
2012-06-18 08:24 - 2012-06-18 08:24 - 00260096 _____ () C:\Program Files\Notepad++\NppShell_05.dll
2014-03-13 03:57 - 2014-03-13 03:57 - 00033864 _____ () C:\Program Files\pcreg\pcreg.exe
2013-08-22 17:05 - 2012-12-11 13:07 - 00963456 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2012-02-18 05:58 - 2007-12-06 01:25 - 00364192 _____ () C:\WINDOWS\system32\atwtusb.exe
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: 1394 Net Adapter
Description: 1394 Net Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: NIC1394
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (03/04/2014 08:00:34 PM) (Source: Application Error) (User: )
Description: Faulting application photoshopelementsorganizer.exe, version 9.0.0.0, faulting module quicktime.qts, version 7.74.80.86, fault address 0x0012c95c.
Processing media-specific event for [photoshopelementsorganizer.exe!ws!]
Error: (03/04/2014 03:26:37 PM) (Source: Application Error) (User: )
Description: Faulting application adobe premiere elements.exe, version 9.0.0.0, faulting module dsound.dll, version 5.3.2600.5512, fault address 0x000024df.
Processing media-specific event for [adobe premiere elements.exe!ws!]
Error: (02/14/2014 02:24:15 PM) (Source: Application Error) (User: )
Description: Faulting application msmoney.exe, version 17.0.0.3817, faulting module utlsrf08.dll, version 17.0.0.3817, fault address 0x00006f6b.
Processing media-specific event for [msmoney.exe!ws!]
Error: (02/13/2014 08:20:02 AM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
System errors:
=============
Error: (04/07/2014 03:25:22 AM) (Source: 0) (User: )
Description: \Device\LanmanDatagramReceiverLISASIMPSONNetBT_Tcpip_{84BE1FF7-AE1D-4F
Error: (04/06/2014 03:24:44 PM) (Source: 0) (User: )
Description: \Device\LanmanDatagramReceiverLISASIMPSONNetBT_Tcpip_{84BE1FF7-AE1D-4F
Error: (04/06/2014 02:59:28 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
iaStor
IntelIde
ViaIde
Error: (04/06/2014 02:59:28 PM) (Source: Service Control Manager) (User: )
Description: The Web Deployment Agent Service service hung on starting.
Error: (04/06/2014 02:58:06 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069
Error: (04/06/2014 02:58:06 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured
password due to the following error:
%%1331
To ensure that the service is
configured properly, use the Services snap-in in Microsoft Management
Console (MMC).
Error: (04/06/2014 02:58:06 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error:
%%2
Error: (04/06/2014 02:44:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
iaStor
IntelIde
ViaIde
Error: (04/06/2014 02:44:04 PM) (Source: Service Control Manager) (User: )
Description: The Web Deployment Agent Service service hung on starting.
Error: (04/06/2014 02:42:37 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069
Microsoft Office Sessions:
=========================
Error: (12/09/2013 05:41:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/26/2013 09:58:37 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.
Error: (07/12/2013 10:51:22 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 46 seconds with 0 seconds of active time. This session ended with a crash.
Error: (07/09/2013 03:16:06 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 79367 seconds with 360 seconds of active time. This session ended with a crash.
Error: (05/12/2013 09:37:11 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 35532 seconds with 3420 seconds of active time. This session ended with a crash.
Error: (04/18/2013 06:47:20 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 728 seconds with 60 seconds of active time. This session ended with a crash.
Error: (12/22/2012 05:09:53 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/19/2012 08:11:23 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 2278 seconds with 1200 seconds of active time. This session ended with a crash.
Error: (07/10/2012 06:41:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1354 seconds with 720 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Percentage of memory in use: 27%
Total physical RAM: 3070.41 MB
Available physical RAM: 2226.84 MB
Total Pagefile: 4953.83 MB
Available Pagefile: 4213.18 MB
Total Virtual: 2047.88 MB
Available Virtual: 1958.68 MB
==================== Drives ================================
Drive c: (HP_PAVILION) (Fixed) (Total:270.94 GB) (Free:75.7 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (HP_RECOVERY) (Fixed) (Total:8.5 GB) (Free:1.05 GB) FAT32 ==>[Drive with boot components (Windows XP)]
Drive k: (FreeAgent GoFlex Drive) (Fixed) (Total:465.76 GB) (Free:262.43 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 279 GB) (Disk ID: 1549F232)
Partition 1: (Not Active) - (Size=9 GB) - (Type=0C)
Partition 2: (Active) - (Size=271 GB) - (Type=07 NTFS)
========================================================
Disk: 5 (Size: 466 GB) (Disk ID: 00721070)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
==================== End Of Log ============================
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2014-04-07 11:07:42
-----------------------------
11:07:42.190 OS Version: Windows 5.1.2600 Service Pack 3
11:07:42.190 Number of processors: 2 586 0x404
11:07:42.190 ComputerName: HOMERJAY UserName: Dad
11:07:43.237 Initialize success
11:08:42.206 AVAST engine defs: 14040700
11:13:10.893 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-17
11:13:10.893 Disk 0 Vendor: Maxtor_6L300S0 BACE1G10 Size: 286168MB BusType: 3
11:13:11.565 Disk 0 MBR read successfully
11:13:11.581 Disk 0 MBR scan
11:13:11.612 Disk 0 unknown MBR code
11:13:11.628 Disk 0 Partition 1 00 0C FAT32 LBA RECOVERY 8714 MB offset 63
11:13:11.675 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 277442 MB offset 17848215
11:13:11.690 Disk 0 scanning sectors +586051200
11:13:12.534 Disk 0 scanning C:\WINDOWS\system32\drivers
11:14:12.878 Service scanning
11:14:16.565 Service BHDrvx86 C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140319.001\BHDrvx86.sys **LOCKED** 5
11:14:17.221 Service ccSet_N360 C:\WINDOWS\system32\drivers\N360\1502000.026\ccSetx86.sys **LOCKED** 5
11:14:19.221 Service eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys **LOCKED** 5
11:14:19.534 Service EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys **LOCKED** 5
11:14:23.081 Service IDSxpx86 C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140404.001\IDSxpx86.sys **LOCKED** 5
11:14:33.550 Service NAVENG C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140406.021\NAVENG.SYS **LOCKED** 5
11:14:33.800 Service NAVEX15 C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140406.021\NAVEX15.SYS **LOCKED** 5
11:14:42.956 Service SRTSPX C:\WINDOWS\system32\drivers\N360\1502000.026\SRTSPX.SYS **LOCKED** 5
11:14:44.003 Service SymDS C:\WINDOWS\system32\drivers\N360\1502000.026\SYMDS.SYS **LOCKED** 5
11:14:44.221 Service SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS **LOCKED** 5
11:14:44.456 Service SymIRON C:\WINDOWS\system32\drivers\N360\1502000.026\Ironx86.SYS **LOCKED** 5
11:14:44.596 Service SYMTDI C:\WINDOWS\System32\Drivers\N360\1502000.026\SYMTDI.SYS **LOCKED** 5
11:14:49.659 Modules scanning
11:15:47.690 Module: C:\WINDOWS\System32\drivers\dxgthk.sys **SUSPICIOUS**
11:16:01.440 Module: C:\WINDOWS\system32\ntdll.dll **SUSPICIOUS**
11:16:01.440 Disk 0 trace - called modules:
11:16:01.487 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:16:01.487 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8aeaaab8]
11:16:01.487 3 CLASSPNP.SYS[b8108fd7] -> nt!IofCallDriver -> \Device\0000007c[0x8aeff9e8]
11:16:01.487 5 ACPI.sys[b7f45620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-17[0x8ae35d98]
11:16:02.362 AVAST engine scan C:\WINDOWS
11:18:33.315 AVAST engine scan C:\WINDOWS\system32
11:33:48.065 AVAST engine scan C:\WINDOWS\system32\drivers
11:36:01.050 AVAST engine scan C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75
12:10:37.675 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\MBR.dat"
12:10:37.690 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator.YOUR-4DACD0EA75\Desktop\aswMBR.txt"