affected by virus (adware) which does not allow installation of malwarebytes

pranavrshah · February 26, 2014

Suffering since a week.

Started off with only browser crashes, but then started crashing when i opened a pdf.

(tried all browsers,)

IE = did not work at all

Chrome = crash when file downloaded

Firefox same

Torch, Safari (Hang in between)

Then it did not let me download things, the download completed but browser crashed.

And now, even after downloading does not allow me to install a exe file.

If installed, does not let me run it.

Also tried going to safe mode, and then installing it, but failed

Please help:

Logs are:

DDS

=============

DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 10.0.9200.16798 BrowserJavaVersion: 10.51.2

Run by Pranav Shah at 19:00:20 on 2014-02-25

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8094.6107 [GMT -6:00]

.

AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k RPCSS

c:\Program Files\Microsoft Security Client\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Intel\WiFi\bin\EvtEng.exe

c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

C:\Windows\SysWOW64\NLSSRV32.EXE

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe

C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\SysWOW64\vmnat.exe

C:\Windows\SysWOW64\vmnetdhcp.exe

C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

c:\Program Files\Microsoft Security Client\NisSrv.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\TortoiseSVN\bin\TSVNCache.exe

C:\Program Files\TortoiseGit\bin\TGitCache.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

go.speedbit.com/?s=D9Naya1

www.google.com/ig/redirectdomain?brand=KMOH&bmod=KMOH

searchy.easylifeapp.com/?pid=625&src=ie1&r=2013/07/02&hid=1149993220&lg=EN&cc=US

uProxyOverride = <local>;192.168.*.*;*.local

feed.snap.do/?publisher=Download&dpid=Download&co=US&userid=647fafd3-fa18-402d-9290-b0ea83d3c819&searchtype=ds&q={searchTerms}

mWinlogon: Userinit = userinit.exe,

BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL

BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

BHO: Microsoft Web Test Recorder 10.0 Helper: {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll

BHO: {E8861423-0DAB-459E-A8D5-DB264E69E70C} - <orphaned>

TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>

EB: Web Test Recorder 10.0: {5802D092-1784-4908-8CDB-99B6842D353D} -

uRun: [Flutter] "C:\Users\Pranav Shah\AppData\Local\Flutter\Flutter.exe"

uRun: [Google Update] "C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64"

uRunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"

uRunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"

uRunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"

mRun: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

mRun: [KeyAccess] kass.exe

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [EfficientReminderFree] <no file>

mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

mRunOnce: [714D5C97-13D9-4FE0-8007-11AC1E168EBA] cmd.exe /C start /D "C:\Users\PRANAV~1\AppData\Local\Temp" /B 714D5C97-13D9-4FE0-8007-11AC1E168EBA.exe -activeimages -postboot

mRunOnce: [75AFA93B-2683-4527-BFB1-5170117ADF2A] cmd.exe /C start /D "C:\Users\PRANAV~1\AppData\Local\Temp" /B 75AFA93B-2683-4527-BFB1-5170117ADF2A.exe -postboot

StartupFolder: C:\Users\PRANAV~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-Explorer: NoDriveTypeAutoRun = dword:95

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-System: HideFastUserSwitching = dword:0

IE: Clip image - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4

IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3

IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1

IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0

IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000

IE: New note - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html

IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105

IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html

LSP: %windir%\system32\vsocklib.dll

DPF: {8AD9C840-044E-11D1-B3E9-java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

DPF: {CAFEEFAC-0017-0000-0009-java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

TCP: NameServer = 75.75.75.75 75.75.76.76

TCP: Interfaces\{7BE48D4D-1D8E-4098-AB4A-679207F5430F} : NameServer = 75.75.75.75,75.75.76.76

TCP: Interfaces\{7BE48D4D-1D8E-4098-AB4A-679207F5430F} : DHCPNameServer = 75.75.75.75 75.75.76.76

TCP: Interfaces\{C36AA9D5-0252-496C-8E03-81C93DC64B78} : DHCPNameServer = 75.75.75.75 75.75.76.76

TCP: Interfaces\{C36AA9D5-0252-496C-8E03-81C93DC64B78}\559434D275966496 : DHCPNameServer = 128.248.171.50 128.248.7.50

TCP: Interfaces\{C36AA9D5-0252-496C-8E03-81C93DC64B78}\84F4D454D233431423 : DHCPNameServer = 75.75.75.75 75.75.76.76

TCP: Interfaces\{CB627AE9-C444-42ED-BED6-0112DACEA89E} : DHCPNameServer = 192.168.42.129

Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

AppInit_DLLs= c:\windows\syswow64\nvinit.dll

SSODL: WebCheck - <orphaned>

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

x64-mWinlogon: Userinit = userinit.exe,

x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll

x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL

x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL

x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

x64-TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>

x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll

x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

x64-IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html

x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\

go.speedbit.com/search.aspx?s=D9Naya1&q=

FF - prefs.js: browser.search.selectedEngine - Google

www.google.com/

search.conduit.com/ResultsExt.aspx?ctid=CT3287822&SearchSource=2&CUI=UN15791103262581259&UM=2&sspv=TB_SB&q=

FF - plugin: C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\Users\Pranav Shah\AppData\Local\Citrix\Plugins\104\npappdetector.dll

FF - plugin: C:\Users\Pranav Shah\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll

FF - plugin: C:\Users\Pranav Shah\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll

FF - plugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll

FF - plugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll

FF - plugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll

FF - plugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\plugins\npo1d.dll

.

---- FIREFOX POLICIES ----

FF - user.js: network.protocol-handler.warn-external.dnupdate - false

FF - user.js: extensions.delta.tlbrSrchUrl -

FF - user.js: extensions.delta.id - e4c6100800000000000000fffdf777da

FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

FF - user.js: extensions.delta.instlDay - 15858

FF - user.js: extensions.delta.vrsn - 1.8.21.5

FF - user.js: extensions.delta.vrsni - 1.8.21.5

FF - user.js: extensions.delta.vrsnTs - 1.8.21.50:48:33

FF - user.js: extensions.delta.prtnrId - delta

FF - user.js: extensions.delta.prdct - delta

FF - user.js: extensions.delta.aflt - babsst

FF - user.js: extensions.delta.smplGrp - none

FF - user.js: extensions.delta.tlbrId - base

FF - user.js: extensions.delta.instlRef - sst

FF - user.js: extensions.delta.dfltLng - en

FF - user.js: extensions.delta.excTlbr - false

FF - user.js: extensions.delta.ffxUnstlRst - true

FF - user.js: extensions.delta.admin - false

FF - user.js: extensions.delta_i.babTrack - affID=119842&tt=gc_

FF - user.js: extensions.delta_i.babExt -

FF - user.js: extensions.delta_i.srcExt - ss

FF - user.js: extensions.delta.autoRvrt - false

FF - user.js: extensions.delta.rvrt - false

FF - user.js: extensions.delta.newTab - false

.

search.conduit.com/?ctid=CT3287822&CUI=UN15791103262581259&UM=2&SearchSource=13&sspv=TB_SB

FF - user.js: extensions.privitize.searchou.com/?id=e4c6100800000000000000fffdf777da&q=

FF - user.js: extensions.privitize.id - e4c6100800000000000000fffdf777da

FF - user.js: extensions.privitize.appId - {301966DF-A84B-4255-AAB9-574B5CE237E4}

FF - user.js: extensions.privitize.instlDay - 15862

FF - user.js: extensions.privitize.vrsn - 1.8.16.22

FF - user.js: extensions.privitize.vrsni - 1.8.16.22

FF - user.js: extensions.privitize.vrsnTs - 1.8.16.2222:43:10

FF - user.js: extensions.privitize.prtnrId - privitize

FF - user.js: extensions.privitize.prdct - privitize

FF - user.js: extensions.privitize.aflt - orgnl

FF - user.js: extensions.privitize.smplGrp - none

FF - user.js: extensions.privitize.tlbrId - base

FF - user.js: extensions.privitize.instlRef -

FF - user.js: extensions.privitize.dfltLng -

FF - user.js: extensions.privitize.excTlbr - true

FF - user.js: extensions.privitize.ffxUnstlRst - false

FF - user.js: extensions.privitize.admin - false

FF - user.js: extensions.privitize.autoRvrt - false

FF - user.js: extensions.privitize.rvrt - false

FF - user.js: extensions.privitize.hmpg - true

searchou.com/?id=e4c6100800000000000000fffdf777da

FF - user.js: extensions.privitize.dfltSrch - true

FF - user.js: extensions.privitize.srchPrvdr - Search The Web (privitize)

searchou.com/?q={searchTerms}&id=e4c6100800000000000000fffdf777da

FF - user.js: extensions.privitize.dnsErr - true

FF - user.js: extensions.privitize.newTab - true

searchou.com/?id=e4c6100800000000000000fffdf777da

.

============= SERVICES / DRIVERS ===============

.

R0 fbfmon;fbfmon;C:\Windows\System32\drivers\fbfmon.sys [2012-9-7 57952]

R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2011-12-5 16152]

R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-9-27 248240]

R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-10-8 30056]

R0 vsock;vSockets Driver;C:\Windows\System32\drivers\vsock.sys [2013-6-2 70256]

R1 BPntDrv;BPntDrv;C:\Windows\System32\drivers\BPntDrv.sys [2012-9-7 13408]

R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 134944]

R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\NLSSRV32.EXE [2012-6-21 69640]

R2 QuickControlMasterSvc;Lenovo QuickControl Master Service;C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2013-10-3 59384]

R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-1-18 450848]

R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2012-8-1 917656]

R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\Windows\System32\drivers\AcpiVpc.sys [2011-12-15 30816]

R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;C:\Windows\System32\drivers\AmpPal.sys [2011-12-5 195584]

R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;C:\Windows\System32\drivers\bcbtums.sys [2012-9-7 134696]

R3 hswpan;WPAN Driver;C:\Windows\System32\drivers\hswpan.sys [2012-1-27 109056]

R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2012-7-8 331264]

R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2011-12-5 355096]

R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2011-12-5 785688]

R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\drivers\iwdbus.sys [2012-1-26 25496]

R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-6-13 104048]

R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]

R3 QuickControlService;Lenovo QuickControl Service;C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2013-10-3 139256]

R3 vm331avs;Digital Camera 1;C:\Windows\System32\drivers\vm331avs.sys [2012-9-7 952832]

S2 ADExchange;ArcSoft Exchange Service;C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe --> C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]

S2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-3-4 5093216]

S2 TorchCrashHandler;Torch Crash Handler;C:\Users\Pranav Shah\AppData\Local\Torch\Update\TorchCrashHandler.exe [2013-7-30 1207648]

S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;C:\Windows\System32\drivers\AmpPal.sys [2011-12-5 195584]

S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\System32\drivers\ssadadb.sys [2011-5-13 36328]

S3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2011-1-29 31088]

S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-9-7 48488]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]

S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\drivers\intelaud.sys [2012-1-26 34200]

S3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2011-10-26 173656]

S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2012-1-18 351136]

S3 LVUVC64;Logitech HD Webcam C270(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2012-1-18 4865568]

S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-1 178824]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-1-22 19456]

S3 SMARTMouseFilterx64;HID-compliant mouse;C:\Windows\System32\drivers\SMARTMouseFilterx64.sys [2009-1-25 12584]

S3 SMARTVHidMiniVistaAmd64;SMART HID Device;C:\Windows\System32\drivers\SMARTVHidMiniVistaAmd64.sys [2009-1-25 15784]

S3 SMARTVTabletPCx64;SMART Virtual TabletPC;C:\Windows\System32\drivers\SMARTVTabletPCx64.sys [2009-1-25 17832]

S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\System32\drivers\ssadbus.sys [2011-5-13 157672]

S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\System32\drivers\ssadmdfl.sys [2011-5-13 16872]

S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\System32\drivers\ssadmdm.sys [2011-5-13 177640]

S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\System32\drivers\ssadserd.sys [2011-5-13 146920]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-1-22 57856]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-1-22 30208]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]

S3 VSPerfDrv100;Performance Tools Driver 10.0;C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2010-3-17 68440]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-9-20 1255736]

S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]

S3 wsvd;wsvd;C:\Windows\System32\drivers\wsvd.sys [2009-7-21 121840]

S4 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-12-5 659968]

S4 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-12-5 135952]

S4 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-9-7 13592]

S4 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]

S4 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-9-7 161560]

S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]

S4 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-8 273168]

S4 RsFx0103;RsFx0103 Driver;C:\Windows\System32\drivers\RsFx0103.sys [2009-3-30 311656]

S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-3-30 427880]

S4 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-9-7 363800]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

S4 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2011-12-8 594704]

.

=============== File Associations ===============

.

FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [userChoice]

FileExt: .js: JSFile="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1"

.

=============== Created Last 30 ================

.

2014-02-26 00:36:56 75888 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{439A20C9-7AFE-4F90-B91A-7A58609A1464}\offreg.dll

2014-02-25 05:16:16 421704 ----a-w- C:\Windows\System32\drivers\htzvdydl.sys

2014-02-25 05:09:12 -------- d-----w- C:\TDSSKiller_Quarantine

2014-02-25 04:54:28 421704 ----a-w- C:\Windows\System32\drivers\ntngmvux.sys

2014-02-25 04:54:05 421704 ----a-w- C:\Windows\System32\drivers\pgooafmf.sys

2014-02-25 04:54:04 -------- d-----w- C:\ProgramData\AVAST Software

2014-02-25 04:44:21 -------- d-----w- C:\Users\Pranav Shah\AppData\Roaming\Malwarebytes

2014-02-25 04:44:17 -------- d-----w- C:\ProgramData\Malwarebytes

2014-02-25 04:44:16 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2014-02-25 04:44:16 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-02-25 04:23:53 -------- d-----w- C:\OETemp

2014-02-25 03:12:17 10536864 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{439A20C9-7AFE-4F90-B91A-7A58609A1464}\mpengine.dll

2014-02-25 02:40:06 -------- d-----w- C:\Program Files (x86)\Common Files\Bitdefender

2014-02-25 02:29:41 -------- d-----w- C:\Users\Pranav Shah\AppData\Roaming\QuickScan

2014-02-25 01:29:41 -------- d---a-w- C:\Kaspersky Rescue Disk 10.0

2014-02-24 22:17:40 10536864 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2014-02-20 23:23:45 1031560 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{942A9FA0-D5C7-4EFE-9AFF-172A72372E2C}\gapaengine.dll

2014-02-15 09:04:30 -------- d-----w- C:\Program Files (x86)\MSXML 4.0

2014-02-12 22:12:15 1882112 ----a-w- C:\Windows\System32\msxml3.dll

2014-02-11 00:25:56 288768 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\hpcpp5r1.dll

2014-02-11 00:25:38 716800 ----atw- C:\Windows\System32\PSRC9371.DLL

2014-02-11 00:25:37 82432 ----a-w- C:\Windows\SysWow64\msxml4r.dll

2014-02-11 00:25:34 -------- d-----w- C:\Program Files (x86)\PharosSystems

2014-02-11 00:25:28 -------- d-----w- C:\Program Files (x86)\Pharos

2014-02-07 02:54:58 -------- d-----w- C:\Users\Pranav Shah\AppData\Roaming\Efficient Reminder Free

2014-02-07 02:54:55 -------- d-----w- C:\Program Files (x86)\Efficient Reminder Free

2014-02-07 02:24:53 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2014-01-30 21:14:02 -------- d-----w- C:\Windows\Migration

.

==================== Find3M ====================

.

2014-02-01 09:19:49 2241536 ----a-w- C:\Windows\System32\wininet.dll

2014-02-01 09:18:25 3960320 ----a-w- C:\Windows\System32\jscript9.dll

2014-02-01 09:18:21 67072 ----a-w- C:\Windows\System32\iesetup.dll

2014-02-01 09:18:21 136704 ----a-w- C:\Windows\System32\iesysprep.dll

2014-02-01 07:58:31 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll

2014-02-01 07:57:20 2877952 ----a-w- C:\Windows\SysWow64\jscript9.dll

2014-02-01 07:57:16 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll

2014-02-01 07:57:16 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

2014-02-01 07:40:43 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2014-02-01 07:34:53 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2014-02-01 06:45:40 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2014-02-01 06:38:03 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe

2014-01-19 07:33:29 270496 ------w- C:\Windows\System32\MpSigStub.exe

2013-12-24 23:09:41 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll

2013-12-24 22:48:32 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll

2013-12-21 09:39:33 600064 ----a-w- C:\Windows\System32\vbscript.dll

2013-12-21 07:56:10 523776 ----a-w- C:\Windows\SysWow64\vbscript.dll

2013-12-07 22:55:19 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll

2013-12-06 02:30:08 2048 ----a-w- C:\Windows\System32\msxml3r.dll

2013-12-06 02:02:08 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll

2013-12-06 02:02:08 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll

2013-12-04 02:27:33 485888 ----a-w- C:\Windows\System32\secproc_isv.dll

2013-12-04 02:27:33 123392 ----a-w- C:\Windows\System32\secproc_ssp_isv.dll

2013-12-04 02:27:33 123392 ----a-w- C:\Windows\System32\secproc_ssp.dll

2013-12-04 02:27:16 488448 ----a-w- C:\Windows\System32\secproc.dll

2013-12-04 02:26:32 528384 ----a-w- C:\Windows\System32\msdrm.dll

2013-12-04 02:16:51 658432 ----a-w- C:\Windows\System32\RMActivate_isv.exe

2013-12-04 02:16:51 626176 ----a-w- C:\Windows\System32\RMActivate.exe

2013-12-04 02:16:50 552960 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe

2013-12-04 02:16:48 553984 ----a-w- C:\Windows\System32\RMActivate_ssp.exe

2013-12-04 02:03:20 87040 ----a-w- C:\Windows\SysWow64\secproc_ssp_isv.dll

2013-12-04 02:03:20 87040 ----a-w- C:\Windows\SysWow64\secproc_ssp.dll

2013-12-04 02:03:20 423936 ----a-w- C:\Windows\SysWow64\secproc_isv.dll

2013-12-04 02:03:08 428032 ----a-w- C:\Windows\SysWow64\secproc.dll

2013-12-04 02:02:06 390144 ----a-w- C:\Windows\SysWow64\msdrm.dll

2013-12-04 01:54:14 510976 ----a-w- C:\Windows\SysWow64\RMActivate_ssp.exe

2013-12-04 01:54:10 594944 ----a-w- C:\Windows\SysWow64\RMActivate_isv.exe

2013-12-04 01:54:09 572416 ----a-w- C:\Windows\SysWow64\RMActivate.exe

2013-12-04 01:54:06 508928 ----a-w- C:\Windows\SysWow64\RMActivate_ssp_isv.exe

.

============= FINISH: 19:01:08.55 ===============

Attach

=============================

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 9/17/2012 12:35:07 PM

System Uptime: 2/25/2014 6:33:52 PM (1 hours ago)

.

Motherboard: LENOVO | | Product Name

Processor: Intel® Core i7-3610QM CPU @ 2.30GHz | U3E1 | 2301/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 881 GiB total, 672.635 GiB free.

D: is FIXED (NTFS) - 25 GiB total, 18.704 GiB free.

F: is CDROM (CDFS)

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP394: 2/14/2014 5:53:41 PM - Windows Update

RP395: 2/15/2014 3:00:15 AM - Windows Update

RP396: 2/18/2014 3:00:15 AM - Windows Update

RP397: 2/20/2014 3:00:15 AM - Windows Update

RP398: 2/22/2014 3:00:15 AM - Windows Update

RP399: 2/23/2014 2:49:38 PM - Windows Update

RP400: 2/24/2014 10:32:35 AM - Windows Update

RP401: 2/24/2014 6:04:38 PM - Windows Update

RP402: 2/24/2014 6:46:43 PM - Installed Safari

RP403: 2/24/2014 7:01:23 PM - Removed Motorola Device Manager

RP404: 2/24/2014 7:02:07 PM - Removed Citrix Online Launcher

RP405: 2/24/2014 7:02:21 PM - Removed Secure Download Manager

RP406: 2/24/2014 7:02:40 PM - Removed Motorola Mobile Drivers Installation 6.3.0

RP407: 2/24/2014 7:05:01 PM - Removed OpenOffice 4.0.1

RP408: 2/24/2014 7:45:42 PM - Removed Adobe Reader X (10.1.9).

RP409: 2/24/2014 9:56:13 PM - Installed Microsoft Fix it 50267

.

==== Installed Programs ======================

.

64 Bit HP BiDi Channel Components Installer

Adobe AIR

Akamai NetSession Interface

Android SDK Tools

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver

Athtek Skype Recorder

Bonjour

Crystal Reports for Visual Studio

D3DX10

Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition

DesignerVista

Efficient Reminder Free 3.55

Energy Management

Evernote v. 5.1.2

GadgetTrak

Git version 1.8.1.2-preview20130201

GitHub

Google Chrome

Google Talk Plugin

Google Update Helper

Hotfix for Microsoft Visual Studio 2010 Ultimate - ENU (KB2542054)

Intel AppUp(SM) center

Intel PROSet Wireless

Intel® Control Center

Intel® Management Engine Components

Intel® OpenCL CPU Runtime

Intel® Processor Graphics

Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed

Intel® Rapid Storage Technology

Intel® USB 3.0 eXtensible Host Controller Driver

Intel® WiDi

Intel® Wireless Display

Intel® Wireless Music device driver

Intel® PROSet/Wireless WiFi Software

Intel® Trusted Connect Service Client

Intelligent Touchpad

iTunes

Java 7 Update 45 (64-bit)

Java 7 Update 51

Java Auto Updater

Java SE Development Kit 7 Update 45 (64-bit)

JMicron Flash Media Controller Driver

Junk Mail filter update

Lenovo EasyCamera

Lenovo EE Boot Optimizer

Lenovo OneKey Recovery

Lenovo QuickControl

Lenovo Registration

Lenovo YouCam

LockKey

Malwarebytes Anti-Malware version 1.75.0.1300

Mesh Runtime

Microsoft .NET Framework 4 Multi-Targeting Pack

Microsoft .NET Framework 4.5.1

Microsoft Access MUI (English) 2013

Microsoft Access Setup Metadata MUI (English) 2013

Microsoft Application Error Reporting

Microsoft ASP.NET MVC 2

Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools

Microsoft DCF MUI (English) 2013

Microsoft Excel MUI (English) 2013

Microsoft Groove MUI (English) 2013

Microsoft Help Viewer 1.0

Microsoft InfoPath MUI (English) 2013

Microsoft Lync MUI (English) 2013

Microsoft Office 32-bit Components 2013

Microsoft Office OSM MUI (English) 2013

Microsoft Office OSM UX MUI (English) 2013

Microsoft Office Professional Plus 2013

Microsoft Office Proofing (English) 2013

Microsoft Office Proofing Tools 2013 - English

Microsoft Office Proofing Tools 2013 - Español

Microsoft Office Shared 32-bit MUI (English) 2013

Microsoft Office Shared MUI (English) 2013

Microsoft Office Shared Setup Metadata MUI (English) 2013

Microsoft OneNote MUI (English) 2013

Microsoft Outlook MUI (English) 2013

Microsoft PowerPoint MUI (English) 2013

Microsoft Publisher MUI (English) 2013

Microsoft Security Client

Microsoft Security Essentials

Microsoft Server Speech Platform Runtime (x64)

Microsoft Silverlight

Microsoft Silverlight 3 SDK

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft SQL Server 2008 (64-bit)

Microsoft SQL Server 2008 Browser

Microsoft SQL Server 2008 Common Files

Microsoft SQL Server 2008 Database Engine Services

Microsoft SQL Server 2008 Database Engine Shared

Microsoft SQL Server 2008 Native Client

Microsoft SQL Server 2008 R2 Data-Tier Application Framework

Microsoft SQL Server 2008 R2 Data-Tier Application Project

Microsoft SQL Server 2008 R2 Management Objects

Microsoft SQL Server 2008 R2 Management Objects (x64)

Microsoft SQL Server 2008 R2 Transact-SQL Language Service

Microsoft SQL Server 2008 RsFx Driver

Microsoft SQL Server 2008 Setup Support Files

Microsoft SQL Server Compact 3.5 SP2 ENU

Microsoft SQL Server Compact 3.5 SP2 x64 ENU

Microsoft SQL Server Database Publishing Wizard 1.4

Microsoft SQL Server System CLR Types

Microsoft SQL Server System CLR Types (x64)

Microsoft SQL Server VSS Writer

Microsoft Sync Framework Runtime v1.0 SP1 (x64)

Microsoft Sync Framework SDK v1.0 SP1

Microsoft Sync Framework Services v1.0 SP1 (x64)

Microsoft Sync Services for ADO.NET v2.0 SP1 (x64)

Microsoft Team Foundation Server 2010 Object Model - ENU

Microsoft VC9 runtime libraries

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319

Microsoft Visual F# 2.0 Runtime

Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools

Microsoft Visual Studio 2010 IntelliTrace Collection (x64)

Microsoft Visual Studio 2010 Office Developer Tools (x64)

Microsoft Visual Studio 2010 Performance Collection Tools - ENU

Microsoft Visual Studio 2010 SharePoint Developer Tools

Microsoft Visual Studio 2010 Tools for Office Runtime (x64)

Microsoft Visual Studio 2010 Ultimate - ENU

Microsoft Visual Studio Macro Tools

Microsoft Word MUI (English) 2013

MinGW-Get version 0.5-beta-20120426-1

Movavi Screen Capture Studio 4

Mozilla Firefox 27.0.1 (x86 en-US)

Mozilla Maintenance Service

MSVCRT

MSVCRT_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MySQL Workbench 5.2 CE

Node.js

Notepad++

NVIDIA Control Panel 306.97

NVIDIA Graphics Driver 306.97

NVIDIA Install Application

NVIDIA Optimus 1.10.8

NVIDIA PhysX

NVIDIA PhysX System Software 9.11.1111

NVIDIA Update 1.10.8

NVIDIA Update Components

Onekey Theater

Outils de vérification linguistique 2013 de Microsoft Office - Français

Pharos

Python 2.7 setuptools-0.6c11

Python 2.7.5

Qt 5.0.0

Realtek High Definition Audio Driver

Realtek PC Camera

Safari

Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)

Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)

Security Update for Microsoft Excel 2013 (KB2827238) 64-Bit Edition

Security Update for Microsoft Lync 2013 (KB2850057) 64-Bit Edition

Security Update for Microsoft Office 2013 (KB2768005) 64-Bit Edition

Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition

Security Update for Microsoft Office 2013 (KB2850064) 64-Bit Edition

Security Update for Microsoft Visual Studio 2010 Ultimate - ENU (KB2251489)

Security Update for Microsoft Visual Studio 2010 Ultimate - ENU (KB2644980)

Security Update for Microsoft Visual Studio Macro Tools (KB2669970)

Security Update for Microsoft Word 2013 (KB2827224) 64-Bit Edition

Security Update for Microsoft Word 2013 (KB2863834) 64-Bit Edition

Service Pack 1 for SQL Server 2008 (KB968369) (64-bit)

Skype™ 6.10

Sql Server Customer Experience Improvement Program

Sublime Text 2.0.2

Synaptics Pointing Device Driver

TeamViewer 8

tools-freebsd

tools-linux

tools-netware

tools-solaris

tools-windows

tools-winPre2k

TortoiseGit 1.8.1.0 (64 bit)

TortoiseSVN 1.7.11.23600 (64 bit)

Ubuntu

Unity

Unity Web Player

Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition

Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition

Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition

Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition

Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition

Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition

Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition

Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition

Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition

Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition

Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition

Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition

Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition

Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition

Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition

Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition

Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition

Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition

Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition

Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition

Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition

Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition

Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition

Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition

Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition

Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition

Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition

Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition

Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition

Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition

Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition

Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition

Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition

Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition

Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition

Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition

Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition

Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition

Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition

UserGuide

VeriFace

Visual Studio 2010 Prerequisites - English

Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU

VLC media player 2.0.8

VMware Workstation

WampServer 2.4

Web Deployment Tool

Windows Driver Package - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1)

Windows Live Communications Platform

Windows Live Essentials

Windows Live Family Safety

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Language Selector

Windows Live Mail

Windows Live Mesh

Windows Live Mesh ActiveX Control for Remote Connections

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live Remote Client

Windows Live Remote Client Resources

Windows Live Remote Service

Windows Live Remote Service Resources

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Mobile Device Updater Component

WinRAR 4.20 (64-bit)

Zune

Zune Language Pack (CHS)

Zune Language Pack (CHT)

Zune Language Pack (CSY)

Zune Language Pack (DAN)

Zune Language Pack (DEU)

Zune Language Pack (ELL)

Zune Language Pack (ESP)

Zune Language Pack (FIN)

Zune Language Pack (FRA)

Zune Language Pack (HUN)

Zune Language Pack (IND)

Zune Language Pack (ITA)

Zune Language Pack (JPN)

Zune Language Pack (KOR)

Zune Language Pack (MSL)

Zune Language Pack (NLD)

Zune Language Pack (NOR)

Zune Language Pack (PLK)

Zune Language Pack (PTB)

Zune Language Pack (PTG)

Zune Language Pack (RUS)

Zune Language Pack (SVE)

.

==== Event Viewer Messages From Past Week ========

.

2/25/2014 6:49:46 PM, Error: Service Control Manager [7034] - The Google Update Service (gupdate) service terminated unexpectedly. It has done this 1 time(s).

2/25/2014 6:38:23 PM, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

2/25/2014 6:38:23 PM, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure.

2/25/2014 6:36:57 PM, Error: Service Control Manager [7034] - The TeamViewer 8 service terminated unexpectedly. It has done this 3 time(s).

2/25/2014 6:36:52 PM, Error: Service Control Manager [7031] - The TeamViewer 8 service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 2000 milliseconds: Restart the service.

2/25/2014 6:36:48 PM, Error: Service Control Manager [7031] - The TeamViewer 8 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 2000 milliseconds: Restart the service.

2/25/2014 6:36:21 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: LHDmgr

2/25/2014 6:36:07 PM, Error: Service Control Manager [7000] - The Torch Crash Handler service failed to start due to the following error: Torch Crash Handler is not a valid Win32 application.

2/25/2014 6:29:23 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:29:22 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}

2/25/2014 6:29:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

2/25/2014 6:29:16 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}

2/25/2014 6:29:16 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}

2/25/2014 6:29:14 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

2/25/2014 6:29:07 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

2/25/2014 6:19:08 PM, Error: Service Control Manager [7001] - The WinHTTP Web Proxy Auto-Discovery Service service depends on the DHCP Client service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:18:29 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BPntDrv DfsC discache LHDmgr MpFilter NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf ws2ifsl

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The Microsoft Network Inspection System service depends on the Microsoft Malware Protection Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2014 6:18:28 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2014 1:04:10 AM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

2/24/2014 9:57:54 PM, Error: Microsoft-Windows-DNS-Client [1012] - There was an error while attempting to read the local hosts file.

2/24/2014 7:20:16 PM, Error: Service Control Manager [7034] - The Pharos Systems ComTaskMaster service terminated unexpectedly. It has done this 1 time(s).

2/24/2014 7:14:02 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the SQL Server (SQLEXPRESS) service to connect.

2/24/2014 7:14:02 PM, Error: Service Control Manager [7000] - The SQL Server (SQLEXPRESS) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

2/24/2014 6:27:51 PM, Error: Service Control Manager [7001] - The VMware Workstation Server service depends on the Workstation service which failed to start because of the following error: The dependency service or group failed to start.

2/24/2014 6:27:51 PM, Error: Service Control Manager [7001] - The PST Service service depends on the Workstation service which failed to start because of the following error: The dependency service or group failed to start.

2/24/2014 6:10:23 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the VMware Workstation Server service to connect.

2/24/2014 6:10:23 PM, Error: Service Control Manager [7000] - The VMware Workstation Server service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

2/24/2014 6:05:38 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Internet Explorer 11 for Windows 7 for x64-based Systems.

2/24/2014 3:31:30 PM, Error: Service Control Manager [7034] - The Google Update Service (gupdate) service terminated unexpectedly. It has done this 4 time(s).

2/24/2014 11:14:58 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {D3DCB472-7261-43CE-924B-0704BD730D5F}

2/24/2014 11:14:58 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}

2/24/2014 11:14:45 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

2/24/2014 11:13:45 PM, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:\Windows\System32\IWMSSvc.dll Error Code: 21

2/24/2014 11:13:38 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BPntDrv discache LHDmgr MpFilter spldr Wanarpv6

2/24/2014 11:05:53 PM, Error: Service Control Manager [7001] - The VMware Workstation Server service depends on the VMware Authorization Service service which failed to start because of the following error: The dependency service or group failed to start.

2/24/2014 10:32:55 AM, Error: Service Control Manager [7034] - The Google Update Service (gupdate) service terminated unexpectedly. It has done this 3 time(s).

2/24/2014 10:24:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

2/24/2014 10:23:57 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}

2/23/2014 4:01:02 PM, Error: BTHUSB [17] - The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

2/23/2014 10:24:04 PM, Error: Service Control Manager [7034] - The Google Update Service (gupdate) service terminated unexpectedly. It has done this 2 time(s).

2/20/2014 12:04:07 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0xdeaddead (0x000000000f00004b, 0x000000000023002c, 0x0000000012a60000, 0x0000000000000000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 022014-46394-01.

.

==== End Of File ===========================

kevinf80 · February 26, 2014

Hello and

P2P/Piracy Warning:

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Please download RKill from here: http://www.bleepingcomputer.com/download/rkill/

There are three buttons to choose from with different names on, select the first one and save it to your desktop.

Double-click on the Rkill desktop icon to run the tool.
If using Vista or Windows 7, right-click on it and Run As Administrator.
A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
A log pops up at the end of the run. This log file is located at C:\rkill.log. Please post this in your next reply.
If you do not see the black box flash on the screen delete the icon from the desktop and go back to the link for the download, select the next button and try to run the tool again, continue to repeat this process using the remaining buttons until the tool runs. You will find further links if you scroll down the page with other names, try them one at a time.
If the tool does not run from any of the links provided, please let me know.

Next,

Run Malwarebytes, Open > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick scan

Make sure that everything is checked, and click Remove Selected on any found items.

Post the produced log

Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Let me see those logs...

Kevin

pranavrshah · February 26, 2014

hey thanks for the reply

i even tried rkill

it killed several host files, processes but even after that am unable to start malwarebytes...

do you want me to go to next step?

also, i do not have any torrent software on my laptop.

I am not sure of keygens, cracks..

any way to search only those?

if not, lets delete it as we see them..

kevinf80 · February 26, 2014

Continue and run FRST..

pranavrshah · February 26, 2014

FRST

========================

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-02-2014

Ran by Pranav Shah (administrator) on PRANAVS-LENOVO on 26-02-2014 03:59:09

Running from C:\Users\Pranav Shah\Downloads

Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)

Internet Explorer Version 10

Boot Mode: Safe Mode (with Networking)

The only official download link for FRST:

Download link for 32-Bit version:

Download link for 64-Bit Version:

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe

(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe

(http://code.google.com/p/TortoiseGit) C:\Program Files\TortoiseGit\bin\TGitCache.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)

HKLM-x32\...\Run: [uSB3MON] - C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291096 2011-12-05] (Intel Corporation)

HKLM-x32\...\Run: [KeyAccess] - kass.exe

HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)

HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)

HKLM-x32\...\Run: [EfficientReminderFree] - [X]

HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)

HKLM-x32\...\Runonce: [714D5C97-13D9-4FE0-8007-11AC1E168EBA] - cmd.exe /C start /D "C:\Users\PRANAV~1\AppData\Local\Temp" /B 714D5C97-13D9-4FE0-8007-11AC1E168EBA.exe -activeimages -postboot [X]

HKLM-x32\...\Runonce: [75AFA93B-2683-4527-BFB1-5170117ADF2A] - cmd.exe /C start /D "C:\Users\PRANAV~1\AppData\Local\Temp" /B 75AFA93B-2683-4527-BFB1-5170117ADF2A.exe -postboot [X]

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\Run: [Flutter] - "C:\Users\Pranav Shah\AppData\Local\Flutter\Flutter.exe"

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\Run: [Google Update] - C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-01-13] (Google Inc.)

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\RunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64] - C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64"

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\RunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64] - C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\RunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] - C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\RunOnce: [uninstall C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] - C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\MountPoints2: {827fcf2a-1eee-11e2-98aa-446d57bf21db} - E:\setup.exe

HKU\S-1-5-21-3890269222-3444457665-715705810-1002\...\MountPoints2: {827fd015-1eee-11e2-98aa-446d57bf21db} - H:\setup.exe

AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [247144 2012-10-08] (NVIDIA Corporation)

AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [202600 2012-10-08] (NVIDIA Corporation)

Startup: C:\Users\Pranav Shah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk

ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=KMOH&bmod=KMOH

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.speedbit.com/?s=D9Naya1

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs =

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://searchy.easylifeapp.com/?pid=625&src=ie1&r=2013/07/02&hid=1149993220&lg=EN&cc=US

SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2465} URL = http://isearch.fantastigames.com/web?src=ieb&gct=ds&appid=107&systemid=465&q={searchTerms}

SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=468&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=7130230674354084&q={searchTerms}

SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2465} URL = http://isearch.fantastigames.com/web?src=ieb&gct=ds&appid=107&systemid=465&q={searchTerms}

SearchScopes: HKLM-x32 - DefaultScope {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://go.speedbit.com/search.aspx?s=D9Naya1&q={searchTerms}

SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snap.do/?publisher=Download&dpid=Download&co=US&userid=647fafd3-fa18-402d-9290-b0ea83d3c819&searchtype=ds&q={searchTerms}

SearchScopes: HKLM-x32 - {01bd49d7-c76b-4310-8beb-14d7e5f322c6} URL = http://searchy.easylifeapp.com/?q={searchTerms}&pid=625&src=ie2&r=2013/07/02&hid=1149993220&lg=EN&cc=US

SearchScopes: HKLM-x32 - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=843&q={searchTerms}&s_it=webpickaol-ie&s_qt=sb&tb_uuid=E3F01768E3E941728275BBDC16B5F898&tb_oid=01-06-2013&tb_mrud=01-06-2013

SearchScopes: HKLM-x32 - {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://go.speedbit.com/search.aspx?s=D9Naya1&q={searchTerms}

SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=468&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=7130230674354084&q={searchTerms}

SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2465} URL = http://isearch.fantastigames.com/web?src=ieb&gct=ds&appid=107&systemid=465&q={searchTerms}

SearchScopes: HKCU - DefaultScope {4E2B2F0F-E1A4-4BCA-8300-2B951549B644} URL = http://searchou.com/?q={searchTerms}&id=e4c6100800000000000000fffdf777da&r=153

SearchScopes: HKCU - 978DA674B2F343E5ABB97DF5217C6304 URL = http://searchy.easylifeapp.com/?q={searchTerms}&pid=625&src=ie2&r=2013/07/02&hid=1149993220&lg=EN&cc=US

SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snap.do/?publisher=Download&dpid=Download&co=US&userid=647fafd3-fa18-402d-9290-b0ea83d3c819&searchtype=ds&q={searchTerms}

SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&affID=119842&tt=gc_&babsrc=SP_ss&mntrId=E4C600FFFDF777DA

SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://blekkosearch.mystart.com/blekkotb_sa5/?source=f06b8e24&tbp=rbox&toolbarid=blekkotb_sa5&u=3420E4BF49063362D5868050A2A02FC8&q={searchTerms}

SearchScopes: HKCU - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=843&q={searchTerms}&s_it=webpickaol-ie&s_qt=sb&tb_uuid=E3F01768E3E941728275BBDC16B5F898&tb_oid=01-06-2013&tb_mrud=01-06-2013

SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =

SearchScopes: HKCU - {4E2B2F0F-E1A4-4BCA-8300-2B951549B644} URL = http://searchou.com/?q={searchTerms}&id=e4c6100800000000000000fffdf777da&r=153

SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}

SearchScopes: HKCU - {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://go.speedbit.com/search.aspx?s=D9Naya1&q={searchTerms}

SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=468&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=7130230674354084&q={searchTerms}

SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2465} URL = http://isearch.fantastigames.com/web?src=ieb&gct=ds&appid=107&systemid=465&q={searchTerms}

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: Microsoft Web Test Recorder 10.0 Helper - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)

BHO-x32: No Name - {E8861423-0DAB-459E-A8D5-DB264E69E70C} - No File

Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File

Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 128.248.171.50 128.248.7.50

Tcpip\..\Interfaces\{7BE48D4D-1D8E-4098-AB4A-679207F5430F}: [NameServer]75.75.75.75,75.75.76.76

FireFox:

========

FF ProfilePath: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default

FF user.js: detected! => C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\user.js

FF SearchEngineOrder.1: Speedbit Search

FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");

FF SearchEngineOrder.3: Bing

FF SelectedSearchEngine: Google

FF Homepage: https://www.google.com/

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll ()

FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File

FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Pranav Shah\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)

FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)

FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Pranav Shah\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Pranav Shah\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Pranav Shah\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Users\Pranav Shah\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin ProgramFiles/Appdata: C:\Users\Pranav Shah\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()

FF Plugin ProgramFiles/Appdata: C:\Users\Pranav Shah\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\babylon.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\bingp.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\delta.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\EasyLife.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\mixidj-v8-customized-web-search.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\privitize.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\Search_Results.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\speedbit.xml

FF SearchPlugin: C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\searchplugins\Web Search.xml

FF Extension: Bitdefender QuickScan - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2014-02-24]

FF Extension: Price Check by AOL - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\Firefox\Profiles\mecfw0ku.default\Extensions\{1DEC6447-C74F-4886-9002-202C27C703F1}.xpi [2012-09-17]

FF HKLM-x32\...\Firefox\Extensions: [{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}] - C:\Users\Pranav Shah\AppData\Roaming\Mozilla\FireFox\{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}.xpi

Chrome:

=======

CHR Extension: (Google Docs) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-25]

CHR Extension: (Google Drive) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-25]

CHR Extension: (YouTube) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-25]

CHR Extension: (Google Search) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-25]

CHR Extension: (uTorrentControl_v2) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda [2014-02-25]

CHR Extension: (Torch Share) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiplfnciaokpcennlkldkdaeaaomamof [2014-02-25]

CHR Extension: (DvdVideoSoft Free Youtube Download) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2014-02-25]

CHR Extension: (Google Wallet) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-25]

CHR Extension: (MixiDJ V8) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\oajgghejjpgkmpgbchgjieahoefimdle [2014-02-25]

CHR Extension: (Gmail) - C:\Users\Pranav Shah\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-25]

CHR HKCU\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Pranav Shah\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-08-26]

CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Pranav Shah\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-26]

CHR HKCU\...\Chrome\Extension: [oajgghejjpgkmpgbchgjieahoefimdle] - C:\Users\Pranav Shah\AppData\Local\CRE\oajgghejjpgkmpgbchgjieahoefimdle.crx [2013-03-27]

CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Pranav Shah\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-08-26]

CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Pranav Shah\AppData\Local\Torch\Plugins\TorchPlugin.crx [2013-09-13]

CHR HKLM-x32\...\Chrome\Extension: [oajgghejjpgkmpgbchgjieahoefimdle] - C:\Users\Pranav Shah\AppData\Local\CRE\oajgghejjpgkmpgbchgjieahoefimdle.crx [2013-03-27]

CHR HKLM-x32\...\Chrome\Extension: [palpbfjgianahgbbeodmcohjdmaelbeo] - C:\Program Files\Common Files\SpeedBit\SBUpdate\SpeedbitNewTab.crx [2013-03-27]

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

S4 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)

S2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)

S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()

S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)

S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-10-03] (Lenovo Group Limited)

S3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [139256 2013-10-03] (Lenovo Group Limited)

S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)

S2 TorchCrashHandler; C:\Users\Pranav Shah\AppData\Local\Torch\Update\TorchCrashHandler.exe [1207648 2013-07-30] (TorchMedia Inc.)

S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe [12867584 2013-06-23] ()

S4 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)

S2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [X]

==================== Drivers (Whitelisted) ====================

S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-01] (Broadcom Corporation.)

R3 hswpan; C:\Windows\System32\DRIVERS\hswpan.sys [109056 2012-01-27] (Ozmo Inc)

R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.)

S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)

S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)

S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [12584 2009-01-25] (SMART Technologies ULC)

S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [15784 2009-01-25] (SMART Technologies ULC)

S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [17832 2009-01-25] (SMART Technologies ULC)

S3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [952832 2011-12-06] (Vimicro Corporation)

R0 vsock; C:\Windows\System32\drivers\vsock.sys [70256 2012-07-06] (VMware, Inc.)

U3 BcmSqlStartupSvc;

S3 btwampfl; \??\C:\Windows\system32\drivers\btwampfl.sys [X]

S3 btwaudio; system32\drivers\btwaudio.sys [X]

S3 btwavdt; system32\DRIVERS\btwavdt.sys [X]

S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]

S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]

U2 CLKMSVC10_3A60B698;

U2 CLKMSVC10_C3B3B687;

U2 DriverService;

U2 iATAgentService;

U2 idealife Update Service;

U3 IGRS;

U2 IviRegMgr;

S0 LHDmgr; System32\DRIVERS\LhdX64.sys [X]

S3 motandroidusb; System32\Drivers\motoandroid.sys [X]

S3 motccgp; system32\DRIVERS\motccgp.sys [X]

S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]

U2 Oasis2Service;

U2 PCCarerService;

U2 ReadyComm.DirectRouter;

U2 RichVideo;

U2 RtLedService;

U2 SeaPort;

U2 SoftwareService;

S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-26 03:59 - 2014-02-26 03:59 - 00025074 _____ () C:\Users\Pranav Shah\Downloads\FRST.txt

2014-02-26 03:58 - 2014-02-26 03:59 - 00000000 ____D () C:\FRST

2014-02-26 03:58 - 2014-02-26 03:58 - 02155520 _____ (Farbar) C:\Users\Pranav Shah\Downloads\FRST64 (2).exe

2014-02-26 03:58 - 2014-02-26 03:58 - 02155520 _____ (Farbar) C:\Users\Pranav Shah\Downloads\FRST64 (1).exe

2014-02-26 03:57 - 2014-02-26 03:57 - 02155520 _____ (Farbar) C:\Users\Pranav Shah\Downloads\FRST64.exe

2014-02-25 19:01 - 2014-02-25 19:01 - 00032122 _____ () C:\Users\Pranav Shah\Desktop\dds.txt

2014-02-25 19:01 - 2014-02-25 19:01 - 00024421 _____ () C:\Users\Pranav Shah\Desktop\attach.txt

2014-02-25 18:52 - 2014-02-25 18:52 - 00688992 ____R (Swearware) C:\Users\Pranav Shah\Downloads\dds.scr

2014-02-25 18:47 - 2014-02-25 18:47 - 00398752 _____ (Bleeping Computer, LLC) C:\Users\Pranav Shah\Downloads\unhide.exe

2014-02-25 18:45 - 2014-02-25 18:45 - 00002226 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-02-25 18:44 - 2014-02-25 20:49 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-02-25 18:44 - 2014-02-25 18:49 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-02-25 18:44 - 2014-02-25 18:44 - 00003904 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-02-25 18:44 - 2014-02-25 18:44 - 00003652 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-02-24 23:19 - 2014-02-24 23:19 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\mbar

2014-02-24 23:18 - 2014-02-24 23:19 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Pranav Shah\Downloads\mbar-1.07.0.1009.exe

2014-02-24 23:16 - 2014-02-24 23:16 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\htzvdydl.sys

2014-02-24 23:09 - 2014-02-24 23:09 - 00000000 ____D () C:\TDSSKiller_Quarantine

2014-02-24 22:54 - 2014-02-24 22:54 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\pgooafmf.sys

2014-02-24 22:54 - 2014-02-24 22:54 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\ntngmvux.sys

2014-02-24 22:54 - 2014-02-24 22:54 - 00000000 ____D () C:\ProgramData\AVAST Software

2014-02-24 22:53 - 2014-02-24 22:53 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Pranav Shah\Downloads\tdsskiller.exe

2014-02-24 22:49 - 2014-02-24 22:51 - 88504776 _____ (AVAST Software) C:\Users\Pranav Shah\Downloads\ji.exe

2014-02-24 22:44 - 2014-02-24 22:44 - 00001080 _____ () C:\Users\Public\Desktop\google update.lnk

2014-02-24 22:44 - 2014-02-24 22:44 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Malwarebytes

2014-02-24 22:44 - 2014-02-24 22:44 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-02-24 22:44 - 2014-02-24 22:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-02-24 22:44 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-02-24 22:25 - 2014-02-24 22:25 - 25640672 _____ (Microsoft Corporation) C:\Users\Pranav Shah\Downloads\Windows-KB890830-x64-V5.9.exe

2014-02-24 22:23 - 2014-02-24 22:23 - 04011240 _____ (Avira Operations GmbH & Co. KG) C:\Users\Pranav Shah\Downloads\avira_oe_client_antivirus_en.exe

2014-02-24 22:02 - 2014-02-24 22:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Pranav Shah\Downloads\j93049jjojno.exe

2014-02-24 21:55 - 2014-02-24 21:55 - 00991232 _____ () C:\Users\Pranav Shah\Downloads\MicrosoftFixit50267.msi

2014-02-24 21:52 - 2014-02-24 21:55 - 00056167 _____ () C:\Users\Pranav Shah\Downloads\Result.txt

2014-02-24 21:50 - 2014-02-24 21:50 - 00982016 _____ (Farbar) C:\Users\Pranav Shah\Downloads\MiniToolBox.exe

2014-02-24 21:50 - 2014-02-24 21:50 - 00080456 _____ (Malwarebytes Corporation) C:\Users\Pranav Shah\Downloads\mbam-clean-1.60.2.0003.exe

2014-02-24 21:42 - 2014-02-24 22:18 - 00002590 _____ () C:\Users\Pranav Shah\Desktop\Rkill.txt

2014-02-24 21:18 - 2014-02-24 21:18 - 00000047 _____ () C:\Users\Pranav Shah\AppData\Roaming\mbam.context.scan

2014-02-24 20:36 - 2014-02-24 20:36 - 05697760 _____ () C:\Users\Pranav Shah\Downloads\bitdefender_isecurity_[quickscan].exe

2014-02-24 20:29 - 2014-02-24 22:28 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\QuickScan

2014-02-24 19:29 - 2014-02-25 12:16 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0

2014-02-24 19:24 - 2014-02-24 19:24 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Pranav Shah\Downloads\rkill.com

2014-02-24 19:19 - 2014-02-24 18:58 - 88527196 _____ () C:\Users\Pranav Shah\Desktop\gooogle.exe

2014-02-24 18:47 - 2014-02-24 18:47 - 00002491 _____ () C:\Users\Public\Desktop\Safari.lnk

2014-02-24 18:47 - 2014-02-24 18:47 - 00000000 ____D () C:\Program Files (x86)\Safari

2014-02-24 18:47 - 2014-02-24 18:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-02-24 18:17 - 2014-02-24 18:17 - 00282840 _____ (Mozilla) C:\Users\Pranav Shah\Downloads\Firefox Setup Stub 27.0.1.exe

2014-02-24 01:28 - 2014-02-24 01:28 - 00074752 _____ () C:\Users\Pranav Shah\Downloads\optimization.ppt

2014-02-21 01:02 - 2014-02-21 01:02 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\ms project docs

2014-02-20 23:11 - 2014-02-20 23:11 - 09227439 _____ () C:\Users\Pranav Shah\Documents\apple interview.wma

2014-02-20 12:03 - 2014-02-20 12:04 - 00293480 _____ () C:\Windows\Minidump\022014-46394-01.dmp

2014-02-19 22:57 - 2014-02-19 22:57 - 00803840 _____ () C:\Users\Pranav Shah\Downloads\ch16.ppt

2014-02-19 22:57 - 2014-02-19 22:57 - 00317440 _____ () C:\Users\Pranav Shah\Downloads\08-DB-CControl-Rec.ppt

2014-02-19 21:17 - 2014-02-19 21:17 - 01614756 _____ () C:\Users\Pranav Shah\Downloads\exterminator-PLDI.pptx

2014-02-17 12:22 - 2014-02-17 12:22 - 00000740 _____ () C:\Users\Pranav Shah\Downloads\Cover_Letter_Pranav_Shah_Fulltime_Software_Engineer.txt

2014-02-15 03:07 - 2014-02-15 03:07 - 00295234 _____ () C:\Windows\msxml4-KB973688-enu.LOG

2014-02-15 03:04 - 2014-02-15 03:04 - 00294238 _____ () C:\Windows\msxml4-KB954430-enu.LOG

2014-02-15 03:04 - 2014-02-15 03:04 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0

2014-02-15 03:01 - 2014-02-01 03:20 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-02-15 03:01 - 2014-02-01 03:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-02-15 03:01 - 2014-02-01 03:19 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 19274240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 15403520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-02-15 03:01 - 2014-02-01 03:18 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-02-15 03:01 - 2014-02-01 01:58 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-02-15 03:01 - 2014-02-01 01:58 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 14359040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-02-15 03:01 - 2014-02-01 01:57 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-02-15 03:01 - 2014-02-01 01:40 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-02-15 03:01 - 2014-02-01 01:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-02-15 03:01 - 2014-02-01 00:45 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2014-02-15 03:01 - 2014-02-01 00:38 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2014-02-15 03:01 - 2013-12-21 03:39 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2014-02-15 03:01 - 2013-12-21 01:56 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2014-02-14 10:35 - 2014-02-14 11:24 - 00005821 _____ () C:\Users\Pranav Shah\Downloads\CernerInterviewQuestions.txt

2014-02-13 02:20 - 2014-02-13 02:20 - 13298987 _____ () C:\Users\Pranav Shah\Downloads\FT_prep-2014-02-13.zip

2014-02-12 16:12 - 2013-12-31 17:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls

2014-02-12 16:12 - 2013-12-31 17:04 - 00420008 _____ () C:\Windows\system32\locale.nls

2014-02-12 16:12 - 2013-12-24 17:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll

2014-02-12 16:12 - 2013-12-24 16:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2014-02-12 16:12 - 2013-12-05 20:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2014-02-12 16:12 - 2013-12-05 20:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2014-02-12 16:12 - 2013-12-05 20:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2014-02-12 16:12 - 2013-12-05 20:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2014-02-12 16:12 - 2013-12-03 20:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll

2014-02-12 16:12 - 2013-12-03 20:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll

2014-02-12 16:12 - 2013-12-03 20:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll

2014-02-12 16:12 - 2013-12-03 20:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll

2014-02-12 16:12 - 2013-12-03 20:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll

2014-02-12 16:12 - 2013-12-03 20:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe

2014-02-12 16:12 - 2013-12-03 20:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe

2014-02-12 16:12 - 2013-12-03 20:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe

2014-02-12 16:12 - 2013-12-03 20:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe

2014-02-12 16:12 - 2013-12-03 20:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll

2014-02-12 16:12 - 2013-12-03 20:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll

2014-02-12 16:12 - 2013-12-03 20:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll

2014-02-12 16:12 - 2013-12-03 20:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll

2014-02-12 16:12 - 2013-12-03 20:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll

2014-02-12 16:12 - 2013-12-03 19:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe

2014-02-12 16:12 - 2013-12-03 19:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe

2014-02-12 16:12 - 2013-12-03 19:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe

2014-02-12 16:12 - 2013-12-03 19:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe

2014-02-12 16:12 - 2013-11-26 02:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2014-02-12 16:12 - 2013-11-22 16:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2014-02-10 18:26 - 2014-02-10 18:26 - 00000000 ____D () C:\ProgramData\Hewlett-Packard

2014-02-10 18:25 - 2014-02-10 18:25 - 00000000 ____D () C:\Program Files (x86)\PharosSystems

2014-02-10 18:25 - 2014-02-10 18:25 - 00000000 ____D () C:\Program Files (x86)\Pharos

2014-02-10 18:25 - 2010-01-14 19:15 - 00716800 ____T (Pharos Systems International) C:\Windows\system32\PSRC9371.DLL

2014-02-10 18:25 - 2010-01-14 19:15 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll

2014-02-10 13:44 - 2014-02-10 13:44 - 00000623 _____ () C:\Users\Pranav Shah\Downloads\univ (2).txt

2014-02-10 12:02 - 2014-02-10 12:02 - 00000716 _____ () C:\Users\Pranav Shah\Downloads\univ (1).txt

2014-02-09 16:55 - 2014-02-10 12:19 - 00000855 _____ () C:\Users\Pranav Shah\Downloads\univ.txt

2014-02-08 22:06 - 2014-02-08 22:06 - 00290696 _____ () C:\Windows\Minidump\020814-96829-01.dmp

2014-02-07 11:09 - 2014-02-07 11:09 - 00229376 _____ (Chris Severance) C:\Users\Pranav Shah\Downloads\NppTextFX.dll

2014-02-07 11:03 - 2014-02-07 11:05 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Notepad++

2014-02-07 11:03 - 2014-02-07 11:03 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++

2014-02-07 11:03 - 2014-02-07 11:03 - 00000000 ____D () C:\Program Files (x86)\Notepad++

2014-02-06 20:55 - 2013-08-28 16:33 - 01851392 _____ () C:\Users\Pranav Shah\Documents\MyReminder.erfx

2014-02-06 20:54 - 2014-02-06 20:55 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Efficient Reminder Free

2014-02-06 20:54 - 2014-02-06 20:54 - 00000000 ____D () C:\Program Files (x86)\Efficient Reminder Free

2014-02-06 20:24 - 2014-02-06 20:24 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log

2014-02-06 20:24 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2014-02-06 20:24 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2014-02-06 20:24 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2014-02-06 20:24 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2014-02-06 12:34 - 2014-02-06 12:36 - 144674096 _____ () C:\Users\Pranav Shah\Downloads\cm-10.0.0-wingray.zip

2014-02-02 16:51 - 2014-02-02 16:51 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ssadadb_01005.Wdf

2014-02-02 11:40 - 2014-02-02 11:40 - 00357874 _____ () C:\Users\Pranav Shah\Downloads\Absconder.zip

2014-02-01 19:14 - 2014-02-01 19:14 - 00000937 ____H () C:\Users\Pranav Shah\.gitk

2014-02-01 19:05 - 2014-02-01 19:05 - 00000020 ___SH () C:\Users\Pranav Shah\ntuser.ini

2014-02-01 17:22 - 2014-02-09 01:19 - 00005236 _____ () C:\Users\Pranav Shah\_viminfo

2014-01-30 19:38 - 2014-01-30 19:38 - 00448062 _____ () C:\Users\Pranav Shah\Documents\final page rank report.xps

2014-01-29 01:56 - 2014-02-21 16:25 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\FT

2014-01-27 20:08 - 2014-01-27 20:08 - 00016259 _____ () C:\Users\Pranav Shah\Downloads\pranav graduation.htm

2014-01-27 20:08 - 2014-01-27 20:08 - 00000000 ____D () C:\Users\Pranav Shah\Downloads\pranav graduation_files

==================== One Month Modified Files and Folders =======

2014-02-26 03:59 - 2014-02-26 03:59 - 00025074 _____ () C:\Users\Pranav Shah\Downloads\FRST.txt

2014-02-26 03:59 - 2014-02-26 03:58 - 00000000 ____D () C:\FRST

2014-02-26 03:58 - 2014-02-26 03:58 - 02155520 _____ (Farbar) C:\Users\Pranav Shah\Downloads\FRST64 (2).exe

2014-02-26 03:58 - 2014-02-26 03:58 - 02155520 _____ (Farbar) C:\Users\Pranav Shah\Downloads\FRST64 (1).exe

2014-02-26 03:57 - 2014-02-26 03:57 - 02155520 _____ (Farbar) C:\Users\Pranav Shah\Downloads\FRST64.exe

2014-02-26 03:56 - 2012-09-17 11:35 - 03033349 _____ () C:\FaceProv.log

2014-02-26 03:52 - 2013-03-07 19:12 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\TSVNCache

2014-02-26 03:52 - 2012-09-07 03:06 - 00189981 _____ () C:\Windows\system32\fastboot.set

2014-02-26 03:51 - 2010-11-20 21:47 - 00449388 _____ () C:\Windows\PFRO.log

2014-02-25 21:41 - 2012-09-07 02:14 - 01731337 _____ () C:\Windows\WindowsUpdate.log

2014-02-25 21:38 - 2014-01-13 15:08 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002UA.job

2014-02-25 20:49 - 2014-02-25 18:44 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-02-25 19:01 - 2014-02-25 19:01 - 00032122 _____ () C:\Users\Pranav Shah\Desktop\dds.txt

2014-02-25 19:01 - 2014-02-25 19:01 - 00024421 _____ () C:\Users\Pranav Shah\Desktop\attach.txt

2014-02-25 18:52 - 2014-02-25 18:52 - 00688992 ____R (Swearware) C:\Users\Pranav Shah\Downloads\dds.scr

2014-02-25 18:49 - 2014-02-25 18:44 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-02-25 18:47 - 2014-02-25 18:47 - 00398752 _____ (Bleeping Computer, LLC) C:\Users\Pranav Shah\Downloads\unhide.exe

2014-02-25 18:45 - 2014-02-25 18:45 - 00002226 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-02-25 18:45 - 2012-09-17 19:58 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\Google

2014-02-25 18:45 - 2012-09-07 03:05 - 00000000 ____D () C:\Program Files (x86)\Google

2014-02-25 18:44 - 2014-02-25 18:44 - 00003904 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-02-25 18:44 - 2014-02-25 18:44 - 00003652 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-02-25 18:43 - 2009-07-13 22:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-02-25 18:43 - 2009-07-13 22:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-02-25 18:37 - 2013-03-14 14:18 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\TGitCache

2014-02-25 18:36 - 2013-06-01 12:42 - 00000000 ____D () C:\ProgramData\VMware

2014-02-25 18:35 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-02-25 18:34 - 2009-07-13 22:51 - 00063353 _____ () C:\Windows\setupact.log

2014-02-25 12:16 - 2014-02-24 19:29 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0

2014-02-24 23:19 - 2014-02-24 23:19 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\mbar

2014-02-24 23:19 - 2014-02-24 23:18 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Pranav Shah\Downloads\mbar-1.07.0.1009.exe

2014-02-24 23:16 - 2014-02-24 23:16 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\htzvdydl.sys

2014-02-24 23:12 - 2012-09-18 11:35 - 00000000 ____D () C:\Windows\SysWOW64\gt

2014-02-24 23:09 - 2014-02-24 23:09 - 00000000 ____D () C:\TDSSKiller_Quarantine

2014-02-24 22:54 - 2014-02-24 22:54 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\pgooafmf.sys

2014-02-24 22:54 - 2014-02-24 22:54 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\ntngmvux.sys

2014-02-24 22:54 - 2014-02-24 22:54 - 00000000 ____D () C:\ProgramData\AVAST Software

2014-02-24 22:53 - 2014-02-24 22:53 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Pranav Shah\Downloads\tdsskiller.exe

2014-02-24 22:51 - 2014-02-24 22:49 - 88504776 _____ (AVAST Software) C:\Users\Pranav Shah\Downloads\ji.exe

2014-02-24 22:44 - 2014-02-24 22:44 - 00001080 _____ () C:\Users\Public\Desktop\google update.lnk

2014-02-24 22:44 - 2014-02-24 22:44 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Malwarebytes

2014-02-24 22:44 - 2014-02-24 22:44 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-02-24 22:44 - 2014-02-24 22:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-02-24 22:28 - 2014-02-24 20:29 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\QuickScan

2014-02-24 22:25 - 2014-02-24 22:25 - 25640672 _____ (Microsoft Corporation) C:\Users\Pranav Shah\Downloads\Windows-KB890830-x64-V5.9.exe

2014-02-24 22:23 - 2014-02-24 22:23 - 04011240 _____ (Avira Operations GmbH & Co. KG) C:\Users\Pranav Shah\Downloads\avira_oe_client_antivirus_en.exe

2014-02-24 22:18 - 2014-02-24 21:42 - 00002590 _____ () C:\Users\Pranav Shah\Desktop\Rkill.txt

2014-02-24 22:02 - 2014-02-24 22:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Pranav Shah\Downloads\j93049jjojno.exe

2014-02-24 21:55 - 2014-02-24 21:55 - 00991232 _____ () C:\Users\Pranav Shah\Downloads\MicrosoftFixit50267.msi

2014-02-24 21:55 - 2014-02-24 21:52 - 00056167 _____ () C:\Users\Pranav Shah\Downloads\Result.txt

2014-02-24 21:50 - 2014-02-24 21:50 - 00982016 _____ (Farbar) C:\Users\Pranav Shah\Downloads\MiniToolBox.exe

2014-02-24 21:50 - 2014-02-24 21:50 - 00080456 _____ (Malwarebytes Corporation) C:\Users\Pranav Shah\Downloads\mbam-clean-1.60.2.0003.exe

2014-02-24 21:18 - 2014-02-24 21:18 - 00000047 _____ () C:\Users\Pranav Shah\AppData\Roaming\mbam.context.scan

2014-02-24 20:36 - 2014-02-24 20:36 - 05697760 _____ () C:\Users\Pranav Shah\Downloads\bitdefender_isecurity_[quickscan].exe

2014-02-24 20:13 - 2013-06-01 18:14 - 00000000 ____D () C:\ProgramData\coNtoinuieTosave

2014-02-24 19:46 - 2012-10-10 18:26 - 00000000 ____D () C:\Program Files (x86)\Adobe

2014-02-24 19:46 - 2012-10-10 18:25 - 00000000 ____D () C:\ProgramData\Adobe

2014-02-24 19:24 - 2014-02-24 19:24 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Pranav Shah\Downloads\rkill.com

2014-02-24 19:16 - 2012-09-17 22:20 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\TeamViewer

2014-02-24 19:16 - 2009-07-13 22:45 - 05123600 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-02-24 19:14 - 2012-09-17 12:39 - 00116520 _____ () C:\Users\Pranav Shah\AppData\Local\GDIPFONTCACHEV1.DAT

2014-02-24 19:11 - 2012-11-03 14:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-02-24 19:02 - 2013-10-03 10:57 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\Citrix

2014-02-24 19:01 - 2013-11-26 20:24 - 00000000 ____D () C:\Program Files (x86)\Motorola Mobility

2014-02-24 19:00 - 2013-05-07 09:19 - 00000000 ____D () C:\Program Files (x86)\OpenVPN

2014-02-24 19:00 - 2012-11-13 11:50 - 00000000 ____D () C:\Users\Pranav Shah\.nbi

2014-02-24 19:00 - 2012-09-29 12:34 - 00000000 ____D () C:\Program Files (x86)\FreeTime

2014-02-24 18:58 - 2014-02-24 19:19 - 88527196 _____ () C:\Users\Pranav Shah\Desktop\gooogle.exe

2014-02-24 18:48 - 2012-09-17 11:35 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\VirtualStore

2014-02-24 18:47 - 2014-02-24 18:47 - 00002491 _____ () C:\Users\Public\Desktop\Safari.lnk

2014-02-24 18:47 - 2014-02-24 18:47 - 00000000 ____D () C:\Program Files (x86)\Safari

2014-02-24 18:47 - 2014-02-24 18:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-02-24 18:47 - 2013-01-15 03:56 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Apple Computer

2014-02-24 18:47 - 2013-01-15 03:56 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\Apple Computer

2014-02-24 18:47 - 2012-11-03 18:32 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\Mozilla

2014-02-24 18:17 - 2014-02-24 18:17 - 00282840 _____ (Mozilla) C:\Users\Pranav Shah\Downloads\Firefox Setup Stub 27.0.1.exe

2014-02-24 18:12 - 2014-01-09 05:35 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\ManyCam

2014-02-24 18:05 - 2013-11-12 03:00 - 00471216 _____ () C:\Windows\IE11_main.log

2014-02-24 01:28 - 2014-02-24 01:28 - 00074752 _____ () C:\Users\Pranav Shah\Downloads\optimization.ppt

2014-02-23 22:47 - 2012-11-07 19:20 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\Eclipse

2014-02-23 22:46 - 2012-11-09 18:45 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\eclipse

2014-02-23 22:36 - 2014-01-13 15:08 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002Core.job

2014-02-23 17:25 - 2012-09-18 19:58 - 00000000 ____D () C:\Users\Pranav Shah\Documents\VisualWorks Projects

2014-02-23 12:03 - 2012-11-07 09:38 - 00000366 _____ () C:\Windows\Tasks\Driver Robot.job

2014-02-22 16:00 - 2012-09-17 22:39 - 00000000 ____D () C:\Users\Pranav Shah\Documents\Youcam

2014-02-21 16:25 - 2014-01-29 01:56 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\FT

2014-02-21 01:02 - 2014-02-21 01:02 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\ms project docs

2014-02-20 23:11 - 2014-02-20 23:11 - 09227439 _____ () C:\Users\Pranav Shah\Documents\apple interview.wma

2014-02-20 12:04 - 2014-02-20 12:03 - 00293480 _____ () C:\Windows\Minidump\022014-46394-01.dmp

2014-02-20 12:03 - 2012-09-17 22:50 - 596986627 _____ () C:\Windows\MEMORY.DMP

2014-02-20 12:03 - 2012-09-17 22:50 - 00000000 ____D () C:\Windows\Minidump

2014-02-19 22:57 - 2014-02-19 22:57 - 00803840 _____ () C:\Users\Pranav Shah\Downloads\ch16.ppt

2014-02-19 22:57 - 2014-02-19 22:57 - 00317440 _____ () C:\Users\Pranav Shah\Downloads\08-DB-CControl-Rec.ppt

2014-02-19 21:17 - 2014-02-19 21:17 - 01614756 _____ () C:\Users\Pranav Shah\Downloads\exterminator-PLDI.pptx

2014-02-18 03:03 - 2013-07-12 23:36 - 00000000 ____D () C:\Windows\system32\MRT

2014-02-17 13:38 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\rescache

2014-02-17 12:22 - 2014-02-17 12:22 - 00000740 _____ () C:\Users\Pranav Shah\Downloads\Cover_Letter_Pranav_Shah_Fulltime_Software_Engineer.txt

2014-02-16 15:08 - 2012-09-17 20:14 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Skype

2014-02-15 03:07 - 2014-02-15 03:07 - 00295234 _____ () C:\Windows\msxml4-KB973688-enu.LOG

2014-02-15 03:04 - 2014-02-15 03:04 - 00294238 _____ () C:\Windows\msxml4-KB954430-enu.LOG

2014-02-15 03:04 - 2014-02-15 03:04 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0

2014-02-15 03:03 - 2012-09-07 02:35 - 00873060 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

2014-02-15 03:03 - 2009-07-13 23:13 - 00873060 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-02-14 11:24 - 2014-02-14 10:35 - 00005821 _____ () C:\Users\Pranav Shah\Downloads\CernerInterviewQuestions.txt

2014-02-13 02:20 - 2014-02-13 02:20 - 13298987 _____ () C:\Users\Pranav Shah\Downloads\FT_prep-2014-02-13.zip

2014-02-12 22:21 - 2014-01-13 15:08 - 00003914 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002UA

2014-02-12 22:21 - 2014-01-13 15:08 - 00003518 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002Core

2014-02-11 13:23 - 2013-02-10 14:04 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\hp1

2014-02-10 18:26 - 2014-02-10 18:26 - 00000000 ____D () C:\ProgramData\Hewlett-Packard

2014-02-10 18:25 - 2014-02-10 18:25 - 00000000 ____D () C:\Program Files (x86)\PharosSystems

2014-02-10 18:25 - 2014-02-10 18:25 - 00000000 ____D () C:\Program Files (x86)\Pharos

2014-02-10 13:44 - 2014-02-10 13:44 - 00000623 _____ () C:\Users\Pranav Shah\Downloads\univ (2).txt

2014-02-10 12:19 - 2014-02-09 16:55 - 00000855 _____ () C:\Users\Pranav Shah\Downloads\univ.txt

2014-02-10 12:02 - 2014-02-10 12:02 - 00000716 _____ () C:\Users\Pranav Shah\Downloads\univ (1).txt

2014-02-09 01:19 - 2014-02-01 17:22 - 00005236 _____ () C:\Users\Pranav Shah\_viminfo

2014-02-09 01:19 - 2012-09-17 11:35 - 00000000 ____D () C:\Users\Pranav Shah

2014-02-08 22:06 - 2014-02-08 22:06 - 00290696 _____ () C:\Windows\Minidump\020814-96829-01.dmp

2014-02-08 21:18 - 2013-11-06 20:19 - 00000000 ___HD () C:\Users\Pranav Shah\.git

2014-02-07 11:09 - 2014-02-07 11:09 - 00229376 _____ (Chris Severance) C:\Users\Pranav Shah\Downloads\NppTextFX.dll

2014-02-07 11:05 - 2014-02-07 11:03 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Notepad++

2014-02-07 11:03 - 2014-02-07 11:03 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++

2014-02-07 11:03 - 2014-02-07 11:03 - 00000000 ____D () C:\Program Files (x86)\Notepad++

2014-02-06 20:55 - 2014-02-06 20:54 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Efficient Reminder Free

2014-02-06 20:54 - 2014-02-06 20:54 - 00000000 ____D () C:\Program Files (x86)\Efficient Reminder Free

2014-02-06 20:25 - 2013-12-07 22:39 - 00000000 ____D () C:\ProgramData\Oracle

2014-02-06 20:24 - 2014-02-06 20:24 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log

2014-02-06 20:24 - 2013-12-07 22:42 - 00000000 ____D () C:\Program Files (x86)\Java

2014-02-06 20:23 - 2012-11-03 18:32 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\Mozilla

2014-02-06 12:36 - 2014-02-06 12:34 - 144674096 _____ () C:\Users\Pranav Shah\Downloads\cm-10.0.0-wingray.zip

2014-02-04 19:09 - 2012-10-07 15:54 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-02-02 16:51 - 2014-02-02 16:51 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ssadadb_01005.Wdf

2014-02-02 11:40 - 2014-02-02 11:40 - 00357874 _____ () C:\Users\Pranav Shah\Downloads\Absconder.zip

2014-02-01 19:58 - 2013-07-12 23:42 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\GitHub

2014-02-01 19:58 - 2013-07-12 23:42 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\GitHub

2014-02-01 19:56 - 2012-11-13 20:11 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Local\Deployment

2014-02-01 19:14 - 2014-02-01 19:14 - 00000937 ____H () C:\Users\Pranav Shah\.gitk

2014-02-01 19:05 - 2014-02-01 19:05 - 00000020 ___SH () C:\Users\Pranav Shah\ntuser.ini

2014-02-01 17:36 - 2013-07-12 23:42 - 00000000 ____D () C:\Users\Pranav Shah\Documents\GitHub

2014-02-01 03:20 - 2014-02-15 03:01 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-02-01 03:19 - 2014-02-15 03:01 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-02-01 03:19 - 2014-02-15 03:01 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 19274240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 15403520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-02-01 03:18 - 2014-02-15 03:01 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-02-01 01:58 - 2014-02-15 03:01 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-02-01 01:58 - 2014-02-15 03:01 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 14359040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-02-01 01:57 - 2014-02-15 03:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-02-01 01:40 - 2014-02-15 03:01 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-02-01 01:34 - 2014-02-15 03:01 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-02-01 00:45 - 2014-02-15 03:01 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2014-02-01 00:38 - 2014-02-15 03:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2014-01-31 21:24 - 2013-11-07 19:13 - 00000000 ____D () C:\Users\Pranav Shah\Desktop\tempworkspace

2014-01-31 21:02 - 2012-11-07 19:20 - 00000000 ____D () C:\Users\Pranav Shah\workspace

2014-01-30 20:35 - 2013-10-31 07:59 - 00000000 ____D () C:\Users\Pranav Shah\.android

2014-01-30 19:38 - 2014-01-30 19:38 - 00448062 _____ () C:\Users\Pranav Shah\Documents\final page rank report.xps

2014-01-28 15:22 - 2012-11-29 11:52 - 00000000 ____D () C:\Users\Pranav Shah\AppData\Roaming\vlc

2014-01-27 20:08 - 2014-01-27 20:08 - 00016259 _____ () C:\Users\Pranav Shah\Downloads\pranav graduation.htm

2014-01-27 20:08 - 2014-01-27 20:08 - 00000000 ____D () C:\Users\Pranav Shah\Downloads\pranav graduation_files

Files to move or delete:

====================

C:\Users\Pranav Shah\AppData\Roaming\CamLayout.ini

C:\Users\Pranav Shah\AppData\Roaming\CamShapes.ini

C:\Users\android-sdk\AVD Manager.exe

C:\Users\android-sdk\SDK Manager.exe

C:\Users\android-sdk\uninstall.exe

Some content of TEMP:

====================

C:\Users\Pranav Shah\AppData\Local\Temp\714D5C97-13D9-4FE0-8007-11AC1E168EBA.exe

C:\Users\Pranav Shah\AppData\Local\Temp\75AFA93B-2683-4527-BFB1-5170117ADF2A.exe

C:\Users\Pranav Shah\AppData\Local\Temp\bitdefender_isecurity_[quickscan].exe

C:\Users\Pranav Shah\AppData\Local\Temp\fp_pl_pfs_installer.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-02-20 14:16

==================== End Of Log ============================

pranavrshah · February 26, 2014

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-02-2014

Ran by Pranav Shah at 2014-02-26 04:00:30

Running from C:\Users\Pranav Shah\Downloads

Boot Mode: Safe Mode (with Networking)

==========================================================

==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

64 Bit HP BiDi Channel Components Installer (Version: 1.2.0.2 - Hewlett-Packard) Hidden

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden

Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)

Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.14.15 - Atheros Communications Inc.)

Athtek Skype Recorder (HKLM-x32\...\{5EA0321F-C05B-4496-B936-D5A831C25862}) (Version: 5.9.5 - Athtek)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BED39C88-768C-4345-BF11-58436C984F2A}) (Version: - Microsoft)

DesignerVista (HKLM-x32\...\{9627ADAF-9617-42C3-BC7B-9038CD15A4A5}) (Version: 5.0.0 - DesignerVista Soft LLC)

Efficient Reminder Free 3.55 (HKLM-x32\...\Efficient Reminder Free_is1) (Version: - Efficient Software)

Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.4.1 - Lenovo)

Energy Management (x32 Version: 7.0.4.1 - Lenovo) Hidden

Evernote v. 5.1.2 (HKLM-x32\...\{12FB6296-8840-11E3-86D7-00163E98E7D0}) (Version: 5.1.2.2387 - Evernote Corp.)

GadgetTrak (HKLM-x32\...\InstallShield_{BBB111A8-422E-4D24-931D-918FE5BE47B1}) (Version: 3.0.4 - GadgetTrak Inc.)

GadgetTrak (x32 Version: 3.0.4 - GadgetTrak Inc.) Hidden

Git version 1.8.1.2-preview20130201 (HKLM-x32\...\Git_is1) (Version: 1.8.1.2-preview20130201 - The Git Development Community)

GitHub (HKCU\...\5f7eb300e2ea4ebf) (Version: 1.2.6.4 - GitHub, Inc.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.117 - Google Inc.)

Google Talk Plugin (HKLM-x32\...\{41101F0C-DBD9-321C-A6B1-E0689B495A4E}) (Version: 5.1.4.17398 - Google)

Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden

Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 38645) (Version: 03.05.11 - Intel)

Intel PROSet Wireless (Version: - ) Hidden

Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)

Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)

Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)

Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.0.199 - Intel Corporation)

Intel® WiDi (HKLM-x32\...\{7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}) (Version: 3.0.13.0 - Intel Corporation)

Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )

Intel® Wireless Music device driver (HKLM\...\{4169B8AC-D144-4E38-A9CA-637EA44129ED}) (Version: 1.5.5323.0 - Intel Corporation)

Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)

Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)

Intelligent Touchpad (HKLM-x32\...\{FDB0A81A-1173-4B15-BEA4-89FEA0474F17}) (Version: 1.00.0108 - Lenovo)

iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)

Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)

Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

Java SE Development Kit 7 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170450}) (Version: 1.7.0.450 - Oracle)

JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.64.1 - JMicron Technology Corp.)

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 13.11.1206.1 - Vimicro)

Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.9 - Lenovo)

Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0.3712 - CyberLink Corp.)

Lenovo OneKey Recovery (Version: 7.0.0.3712 - CyberLink Corp.) Hidden

Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 1.20 - Lenovo Group Limited)

Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.)

Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3728 - CyberLink Corp.)

Lenovo YouCam (x32 Version: 3.1.3728 - CyberLink Corp.) Hidden

LockKey (HKLM-x32\...\InstallShield_{AF192694-4B15-4AC1-92F3-1B02E98C08BD}) (Version: 1.38.1.2 - Lenovo)

LockKey (x32 Version: 1.38.1.2 - Lenovo) Hidden

Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden

Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)

Microsoft ASP.NET MVC 2 (HKLM-x32\...\{1803A630-3C38-4D2B-9B9A-0CB37243539C}) (Version: 2.0.50217.0 - Microsoft Corporation)

Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)

Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden

Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)

Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden

Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)

Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)

Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)

Microsoft SQL Server 2008 (64-bit) (Version: - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)

Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)

Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM-x32\...\{0DDCEC37-369C-484B-B16D-B4413FD42FB9}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{E5AE9031-79A5-4627-9641-BEFA82819B08}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{DA67488A-2689-4F10-B90F-D2F6977509D6}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{78C3657E-742C-40B1-9F53-E5A921D40F17}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)

Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)

Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)

Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)

Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4A8CE6D7-4D52-43B9-970B-03FC75FAD667}) (Version: 10.50.1447.4 - Microsoft Corporation)

Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)

Microsoft Sync Framework Runtime v1.0 SP1 (x64) (HKLM\...\{8438EC02-B8A9-462D-AC72-1B521349C001}) (Version: 1.0.3010.0 - Microsoft Corporation)

Microsoft Sync Framework SDK v1.0 SP1 (HKLM-x32\...\{0E3DFC64-CC49-4BE2-8C9C-58EF129675DB}) (Version: 1.0.3010.0 - Microsoft Corporation)

Microsoft Sync Framework Services v1.0 SP1 (x64) (HKLM\...\{034106B5-54B7-467F-B477-5B7DBB492624}) (Version: 1.0.3010.0 - Microsoft Corporation)

Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (HKLM\...\{1D1CEEF8-3741-45BD-8E77-963E1DEBDDD3}) (Version: 2.0.3010.0 - Microsoft Corporation)

Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.30319 - Microsoft Corporation) Hidden

Microsoft VC9 runtime libraries (x32 Version: 2.0.0 - AOL Inc.) Hidden

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (HKLM\...\{F5079164-1DB9-3BDA-853B-F78AF67CE071}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (HKLM\...\{88BAE373-00F4-3E33-828F-96E89E5E0CB9}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.30319 - Microsoft Corporation) Hidden

Microsoft Visual Studio 2010 Performance Collection Tools - ENU (Version: 10.0.30319 - Microsoft Corporation) Hidden

Microsoft Visual Studio 2010 SharePoint Developer Tools (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.40303 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308 - Microsoft Corporation) Hidden

Microsoft Visual Studio 2010 Ultimate - ENU (HKLM-x32\...\Microsoft Visual Studio 2010 Ultimate - ENU) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual Studio 2010 Ultimate - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden

Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden

Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

MinGW-Get version 0.5-beta-20120426-1 (HKLM-x32\...\{AC2C1BDB-1E91-4F94-B99C-E716FE2E9C75}_is1) (Version: 0.5-beta-20120426-1 - MinGW)

Movavi Screen Capture Studio 4 (HKLM-x32\...\Movavi Screen Capture Studio 4) (Version: 4.2.1 - MOVAVI)

Mozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

MySQL Workbench 5.2 CE (HKLM-x32\...\{48A9B9DD-66B9-4846-AA7C-825A5729B643}) (Version: 5.2.47 - Oracle Corporation)

Node.js (HKLM-x32\...\{2D41A012-35EE-4724-AE8E-E592EDD9F89D}) (Version: 0.10.13 - Joyent, Inc. and other Node contributors)

Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.3 - Notepad++ Team)

NVIDIA Control Panel 306.97 (Version: 306.97 - NVIDIA Corporation) Hidden

NVIDIA Graphics Driver 306.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 306.97 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.85.551 - NVIDIA Corporation) Hidden

NVIDIA Optimus 1.10.8 (Version: 1.10.8 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.11.1111 - NVIDIA Corporation) Hidden

NVIDIA PhysX System Software 9.11.1111 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.11.1111 - NVIDIA Corporation)

NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)

NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden

Onekey Theater (HKLM-x32\...\InstallShield_{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.9 - Lenovo)

Onekey Theater (x32 Version: 2.0.2.9 - Lenovo) Hidden

Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Pharos (HKLM-x32\...\Pharos) (Version: - )

Python 2.7 setuptools-0.6c11 (HKLM-x32\...\setuptools-py2.7) (Version: - )

Python 2.7.5 (HKLM-x32\...\{DBDD570E-0952-475f-9453-AB88F3DD5659}) (Version: 2.7.5150 - Python Software Foundation)

Qt 5.0.0 (HKCU\...\Qt 5.0.0) (Version: 5.0.0 - Qt)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6543 - Realtek Semiconductor Corp.)

Realtek PC Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.1.7600.117 - Realtek Semiconductor Corp.)

Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)

Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)

Skype™ 6.10 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.10.104 - Skype Technologies S.A.)

Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden

Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.38.0 - Synaptics Incorporated)

TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.26038 - TeamViewer)

tools-freebsd (x32 Version: 9.2.0.812388 - VMware, Inc.) Hidden

tools-linux (x32 Version: 9.2.0.812388 - VMware, Inc.) Hidden

tools-netware (x32 Version: 9.2.0.812388 - VMware, Inc.) Hidden

tools-solaris (x32 Version: 9.2.0.812388 - VMware, Inc.) Hidden

tools-windows (x32 Version: 9.2.0.812388 - VMware, Inc.) Hidden

tools-winPre2k (x32 Version: 9.2.0.812388 - VMware, Inc.) Hidden

TortoiseGit 1.8.1.0 (64 bit) (HKLM\...\{314C9E10-5E93-42B4-947D-5AF2BA7F40D3}) (Version: 1.8.1.0 - TortoiseGit)

TortoiseSVN 1.7.11.23600 (64 bit) (HKLM\...\{6B13A3F1-F66A-42FB-9E62-98952D582187}) (Version: 1.7.23600 - TortoiseSVN)

Ubuntu (HKLM-x32\...\Wubi) (Version: 12.04.3-rev279 - Ubuntu)

Unity (HKLM-x32\...\Unity) (Version: - Unity Technologies ApS)

Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)

Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition (HKLM\...\{90150000-0015-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{D5412C67-998B-4246-A668-AB522D9F63FE}) (Version: - Microsoft)

Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{614E655F-A0ED-435A-8E0C-A81EE4BA7BC7}) (Version: - Microsoft)

Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{5E759A69-FA72-4B3C-BE2F-D1194764D31E}) (Version: - Microsoft)

Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{F8580E12-045B-471B-AF74-98C977347F4E}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{43EB1F58-DAA0-4F61-A4EE-C5651F85A047}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{43EB1F58-DAA0-4F61-A4EE-C5651F85A047}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{76CACE05-7A19-4EAC-87D7-5BFF63AF7CDF}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{76CACE05-7A19-4EAC-87D7-5BFF63AF7CDF}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{FEFF9FF6-FF61-455E-A8CC-3A1311A657AD}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{3FF4EA9F-3505-4726-A974-6593A968FFCC}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{9406D70B-2D9C-4613-A75A-F35B66BA8AFA}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{CA390537-AA88-450F-A240-5FB4648A124A}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C8D57F4A-0824-4043-89E7-3C6280B67A47}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{AC4470FB-8011-4F16-B5D4-E0A34DE10C87}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D8B3D175-48B8-413F-8484-4D81E744B51C}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{8587E5B1-6279-4396-B9AC-20B334F4FF88}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{39E58ED8-B687-49BD-88F9-968563F51F8E}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C809B1D6-BD31-4496-BCFE-4567E0854F5F}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{856D47BC-036C-4692-8702-D6CCA8F428D0}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{4FD8F672-3206-469C-B9F0-D6E72F7ACAB2}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{CA0554C4-62FE-4F66-BC87-1EE1EAC675EF}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{CA0554C4-62FE-4F66-BC87-1EE1EAC675EF}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{F33ABF6A-3007-47E8-8E38-506A18E54641}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{B38036CB-BAF6-41D4-8810-FD016453ABB9}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{2A286156-257B-4528-9DB5-B4D4D53211BC}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{92833C80-DC88-4A22-8630-407F810EF57B}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUSR_{602346D6-8E2F-4B0E-820A-CD62AC5B0DC9}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUSR_{00A8F3D3-B596-4E04-A180-C9EB4EC87762}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{F2187E8D-C68A-4655-8551-1932878A5581}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{9353CD85-4B19-45C4-8DBA-1391926351F6}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{9353CD85-4B19-45C4-8DBA-1391926351F6}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{6EE51F51-57B1-4DC7-96C2-857DB7F0BE93}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{0A90C645-3F9A-4CF9-BF62-2609602E3DAB}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{3A48DE63-607B-4FEA-A862-B52669C4433C}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{A3C746D9-41B4-4C7E-BF60-0F8C50AD5A0F}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C4B559C7-AA71-4B77-ACA3-50BEA8B4241B}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C4B559C7-AA71-4B77-ACA3-50BEA8B4241B}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{000791D2-642D-418E-A3E9-96E72D8C67B8}) (Version: - Microsoft)

Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{000791D2-642D-418E-A3E9-96E72D8C67B8}) (Version: - Microsoft)

Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition (HKLM\...\{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{EADF44E2-DD3F-4FAC-B17F-566956C06503}) (Version: - Microsoft)

Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{CF6FBF49-BE22-4B98-9D7D-CB2A3236BC44}) (Version: - Microsoft)

Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{CF6FBF49-BE22-4B98-9D7D-CB2A3236BC44}) (Version: - Microsoft)

Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{97164652-BF81-41EE-8C0C-C086578E9956}) (Version: - Microsoft)

Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{E8F64CB5-1419-47A8-9FCE-F6E4137F2D25}) (Version: - Microsoft)

Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{52105DB7-F9D9-482C-8796-1461BBB69123}) (Version: - Microsoft)

Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{6FF949A3-1C3F-41C2-9464-933E885ECB53}) (Version: - Microsoft)

Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BBD4F4CE-65D4-4CEB-AE19-E5296A57AA6C}) (Version: - Microsoft)

Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{2837C624-A972-43CF-BCE5-0AE2EFED72E3}) (Version: - Microsoft)

Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{A3417E9E-5B94-4BFF-AAA4-933B1AE46306}) (Version: - Microsoft)

Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{A3417E9E-5B94-4BFF-AAA4-933B1AE46306}) (Version: - Microsoft)

Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition (HKLM\...\{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{538E777B-4508-4ABF-97E2-B93C1BF1CD77}) (Version: - Microsoft)

Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition (HKLM\...\{90150000-00C1-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{538E777B-4508-4ABF-97E2-B93C1BF1CD77}) (Version: - Microsoft)

Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{F16E7B82-23FE-4054-AB73-EAE53965251C}) (Version: - Microsoft)

Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D1F1940B-94DF-4DCB-BF82-9530D7FBB1BF}) (Version: - Microsoft)

Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{DA8548B2-D229-4643-B6E2-989B3CFEECFB}) (Version: - Microsoft)

Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{DA8548B2-D229-4643-B6E2-989B3CFEECFB}) (Version: - Microsoft)

Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{DA8548B2-D229-4643-B6E2-989B3CFEECFB}) (Version: - Microsoft)

UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo)

UserGuide (x32 Version: 1.0.0.6 - Lenovo) Hidden

VeriFace (HKLM-x32\...\VeriFace) (Version: 4.0.1.1230 - Lenovo)

Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.30319 - Microsoft Corporation)

Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)

VLC media player 2.0.8 (HKLM-x32\...\VLC media player) (Version: 2.0.8 - VideoLAN)

VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 9.0.0 - VMware, Inc)

VMware Workstation (Version: 9.0.0 - VMware, Inc.) Hidden

WampServer 2.4 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL))

Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)

Windows Driver Package - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1) (HKLM\...\99841829BE839365AA67B2AD0E50D371F59F8A1E) (Version: 12/15/2011 7.1.0.1 - Lenovo)

Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Mobile Device Updater Component (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

Zune (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (CHS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (CHT) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (CSY) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (DAN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (DEU) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (ELL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (ESP) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (FIN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (FRA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (HUN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (IND) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (ITA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (JPN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (KOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (MSL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (NLD) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (NOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (PLK) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (PTB) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (PTG) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (RUS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

Zune Language Pack (SVE) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

==================== Restore Points =========================

14-02-2014 23:53:41 Windows Update

15-02-2014 09:00:15 Windows Update

18-02-2014 09:00:15 Windows Update

20-02-2014 09:00:15 Windows Update

22-02-2014 09:00:15 Windows Update

23-02-2014 20:49:38 Windows Update

24-02-2014 16:32:35 Windows Update

25-02-2014 00:04:38 Windows Update

25-02-2014 00:46:43 Installed Safari

25-02-2014 01:01:23 Removed Motorola Device Manager

25-02-2014 01:02:07 Removed Citrix Online Launcher

25-02-2014 01:02:21 Removed Secure Download Manager

25-02-2014 01:02:40 Removed Motorola Mobile Drivers Installation 6.3.0

25-02-2014 01:05:01 Removed OpenOffice 4.0.1

25-02-2014 01:45:42 Removed Adobe Reader X (10.1.9).

25-02-2014 03:56:13 Installed Microsoft Fix it 50267

==================== Hosts content: ==========================

2009-07-13 20:34 - 2013-09-03 17:19 - 00000833 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {15A3C5C5-690A-434C-B046-1F3DBF6BA6D4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002Core => C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-13] (Google Inc.)

Task: {2D935931-D924-472F-9FBB-F3B320B5160E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002UA => C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-13] (Google Inc.)

Task: {728497A9-9BEC-4874-99C1-65EBCAACA4CE} - System32\Tasks\Driver Robot => C:\Program Files (x86)\Driver Robot\1.2.0.5\DriverRobot.exe

Task: {9ECF8420-5BB3-4800-A34E-01AC5DAA4E72} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)

Task: {B0C791DE-EDDF-4B24-9B66-0000A6EA11F8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)

Task: {BDC38D6E-639E-43F9-829D-761C0A6A5706} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe

Task: {BEC1851B-E575-4D96-8A12-67AFC0530F35} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-25] (Google Inc.)

Task: {D0401F36-1DC1-4EC2-84E7-163E3AF5C580} - System32\Tasks\{DC4F06B8-6BB9-4D5A-8C21-140A3B63AA46} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.107/en/abandoninstall?page=tsProgressBar

Task: {D7119364-F662-42D9-8FDD-56F1DDA97EB7} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29] (CyberLink)

Task: {EB05B8EB-DF8F-4BEA-AF30-14D282F250AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)

Task: {EF68E433-4F2B-40C5-848F-80B75D8DF93F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-25] (Google Inc.)

Task: C:\Windows\Tasks\Driver Robot.job => C:\Program Files (x86)\Driver Robot\1.2.0.5\DriverRobot.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002Core.job => C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3890269222-3444457665-715705810-1002UA.job => C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-10-17 11:25 - 2013-10-17 11:25 - 08866472 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll

2013-02-07 23:13 - 2013-02-07 23:13 - 00560792 _____ () C:\Program Files\TortoiseGit\bin\libgit2.dll

2013-02-07 23:13 - 2013-02-07 23:13 - 00087192 _____ () C:\Program Files\TortoiseGit\bin\zlib1.dll

2012-12-12 21:37 - 2012-12-12 21:37 - 00088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll

2012-09-07 03:05 - 2012-09-07 03:05 - 01510752 _____ () C:\Windows\system32\Apblend64.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows:nlsPreferences

AlternateDataStreams: C:\ProgramData\Temp:373E1720

AlternateDataStreams: C:\ProgramData\Temp:56E2E879

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\39707518.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\68777538.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\39707518.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\68777538.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\Services: AMPPALR3 => 2

MSCONFIG\Services: BTHSSecurityMgr => 2

MSCONFIG\Services: btwdins => 2

MSCONFIG\Services: Connectify => 2

MSCONFIG\Services: cphs => 3

MSCONFIG\Services: CronService => 2

MSCONFIG\Services: EvtEng => 2

MSCONFIG\Services: GTLogon => 3

MSCONFIG\Services: GTService => 2

MSCONFIG\Services: GTWatcher => 3

MSCONFIG\Services: gupdate => 2

MSCONFIG\Services: gupdatem => 3

MSCONFIG\Services: IAStorDataMgrSvc => 2

MSCONFIG\Services: Intel® Capability Licensing Service Interface => 2

MSCONFIG\Services: jhi_service => 2

MSCONFIG\Services: LMS => 2

MSCONFIG\Services: McAfee SiteAdvisor Service => 2

MSCONFIG\Services: McAWFwk => 3

MSCONFIG\Services: mcmscsvc => 2

MSCONFIG\Services: McNaiAnn => 2

MSCONFIG\Services: McNASvc => 2

MSCONFIG\Services: McODS => 3

MSCONFIG\Services: McOobeSv => 2

MSCONFIG\Services: McProxy => 2

MSCONFIG\Services: MSK80Service => 2

MSCONFIG\Services: MyWiFiDHCPDNS => 3

MSCONFIG\Services: NitroDriverReadSpool2 => 2

MSCONFIG\Services: nlsX86cc => 2

MSCONFIG\Services: nvsvc => 2

MSCONFIG\Services: nvUpdatusService => 2

MSCONFIG\Services: RegSrvc => 2

MSCONFIG\Services: SkypeUpdate => 2

MSCONFIG\Services: TeamViewer7 => 2

MSCONFIG\Services: UNS => 2

MSCONFIG\Services: ZeroConfigService => 2

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup

MSCONFIG\startupreg: 331BigDog => C:\Program Files (x86)\USB Camera\VM331_STI.EXE

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true

MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Pranav Shah\AppData\Local\Akamai\netsession_win.exe"

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

MSCONFIG\startupreg: Connectify => C:\Program Files (x86)\Connectify\Connectify.exe

MSCONFIG\startupreg: Energy Management => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe

MSCONFIG\startupreg: EnergyUtility => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe

MSCONFIG\startupreg: Google Update => "C:\Users\Pranav Shah\AppData\Local\Google\Update\GoogleUpdate.exe" /c

MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe

MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe

MSCONFIG\startupreg: iLivid => "C:\Users\Pranav Shah\AppData\Local\iLivid\iLivid.exe" -autorun

MSCONFIG\startupreg: Intel AppUp(SM) center => "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4

MSCONFIG\startupreg: Intelligent Touchpad => C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

MSCONFIG\startupreg: Lenovo EE Boot Optimizer => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe

MSCONFIG\startupreg: Lenovo Registration => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot

MSCONFIG\startupreg: LockKey => C:\Program Files (x86)\LockKey\LockKey.exe

MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

MSCONFIG\startupreg: MobileAppSync => "C:\Program Files\Mobile App Sync\D2MClient.exe"

MSCONFIG\startupreg: OfficeSyncProcess => "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

MSCONFIG\startupreg: OnekeyStudio => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe

MSCONFIG\startupreg: PC Remote Server => C:\Program Files (x86)\PC Remote\PC Remote\PCRemote.exe /silent

MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe

MSCONFIG\startupreg: Remote Mouse => C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe

MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\system32\StikyNot.exe

MSCONFIG\startupreg: RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4

MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

MSCONFIG\startupreg: Sendori Tray => "C:\Program Files (x86)\Sendori\SendoriTray.exe"

MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

MSCONFIG\startupreg: SkyDrive => "C:\Users\Pranav Shah\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background

MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

MSCONFIG\startupreg: SynLenovoGestureMgr => %ProgramFiles%\Synaptics\SynTP\SynLenovoGestureMgr.exe

MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

MSCONFIG\startupreg: UpdateP2GShortCut => "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"

MSCONFIG\startupreg: UpdatePRCShortCut => "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"

MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

MSCONFIG\startupreg: VeriFaceManager => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe

MSCONFIG\startupreg: vmware-tray.exe => "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

MSCONFIG\startupreg: YouCam Mirage => "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"

MSCONFIG\startupreg: YouCam Tray => "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s

MSCONFIG\startupreg: Zune Launcher => "C:\Program Files\Zune\ZuneLauncher.exe"

==================== Faulty Device Manager Devices =============

Name: Security Processor Loader Driver

Description: Security Processor Loader Driver

Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Manufacturer:

Service: spldr

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: VMware VMCI Host Device

Description: VMware VMCI Host Device

Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}

Manufacturer: VMware, Inc.

Service: vmci

Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)

Resolution: Update the driver

==================== Event log errors: =========================

Application errors:

==================

Error: (02/26/2014 03:52:48 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/25/2014 09:39:28 PM) (Source: Application Error) (User: )

Description: Faulting application name: chrome.exe, version: 33.0.1750.117, time stamp: 0x5305442b

Faulting module name: urlmon.dll, version: 10.0.9200.16798, time stamp: 0x52ec7dd2

Exception code: 0xc0000005

Fault offset: 0x0004e9f1

Faulting process id: 0x1b08

Faulting application start time: 0xchrome.exe0

Faulting application path: chrome.exe1

Faulting module path: chrome.exe2

Report Id: chrome.exe3

Error: (02/25/2014 09:38:53 PM) (Source: Application Error) (User: )

Description: Faulting application name: chrome.exe, version: 33.0.1750.117, time stamp: 0x5305442b

Faulting module name: urlmon.dll, version: 10.0.9200.16798, time stamp: 0x52ec7dd2

Exception code: 0xc0000005

Fault offset: 0x0004e9fe

Faulting process id: 0xc60

Faulting application start time: 0xchrome.exe0

Faulting application path: chrome.exe1

Faulting module path: chrome.exe2

Report Id: chrome.exe3

Error: (02/25/2014 09:38:25 PM) (Source: Google Update) (User: Pranavs-Lenovo)

Description: Google Update has encountered a fatal error.

ver=1.3.22.5;lang=en;id=;is_machine=0;oop=0;upload=0;minidump=C:\Users\Pranav Shah\AppData\Local\Google\CrashReports\fe3e8844-8ba0-4525-8d3a-eca30c7e0a35.dmp

Error: (02/25/2014 09:11:54 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5023

Error: (02/25/2014 09:11:54 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 5023

Error: (02/25/2014 09:11:54 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/25/2014 09:11:53 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 4025

Error: (02/25/2014 09:11:53 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 4025

Error: (02/25/2014 09:11:53 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

System errors:

=============

Error: (02/26/2014 03:59:05 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:59:05 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:59:05 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:51 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:51 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:51 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:16 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:16 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:16 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Error: (02/26/2014 03:58:16 AM) (Source: Service Control Manager) (User: )

Description: The Computer Browser service depends on the Server service which failed to start because of the following error:

%%1068

Microsoft Office Sessions:

=========================

Error: (02/26/2014 03:52:48 AM) (Source: WinMgmt)(User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/25/2014 09:39:28 PM) (Source: Application Error)(User: )

Description: chrome.exe33.0.1750.1175305442burlmon.dll10.0.9200.1679852ec7dd2c00000050004e9f11b0801cf32a44c328d16C:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\syswow64\urlmon.dll97f07793-9e97-11e3-bbc3-d96eb51b80e0

Error: (02/25/2014 09:38:53 PM) (Source: Application Error)(User: )

Description: chrome.exe33.0.1750.1175305442burlmon.dll10.0.9200.1679852ec7dd2c00000050004e9fec6001cf329e0033ababC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\syswow64\urlmon.dll83363158-9e97-11e3-bbc3-d96eb51b80e0

Error: (02/25/2014 09:38:25 PM) (Source: Google Update)(User: Pranavs-Lenovo)

Description: Google Update has encountered a fatal error.

ver=1.3.22.5;lang=en;id=;is_machine=0;oop=0;upload=0;minidump=C:\Users\Pranav Shah\AppData\Local\Google\CrashReports\fe3e8844-8ba0-4525-8d3a-eca30c7e0a35.dmp

Error: (02/25/2014 09:11:54 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5023

Error: (02/25/2014 09:11:54 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 5023

Error: (02/25/2014 09:11:54 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/25/2014 09:11:53 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 4025

Error: (02/25/2014 09:11:53 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 4025

Error: (02/25/2014 09:11:53 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

CodeIntegrity Errors:

===================================

Date: 2014-02-22 16:00:26.035