Jump to content

Infected - Malwarebytes Crashes when updating or starting a scan


Recommended Posts

Malwarebytes crashes when updating or starting scan

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-06-2014 01Ran by KarenO (administrator) on KAREN-PC on 27-06-2014 20:28:09Running from C:\Users\KarenO\DesktopPlatform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 8Boot Mode: NormalThe only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(Microsoft Corporation) C:\Windows\System32\wlanext.exe(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe(Intel Corporation) C:\Windows\System32\igfxtray.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe(Microsoft Corporation) C:\Windows\System32\msiexec.exe==================== Registry (Whitelisted) ==================HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6611048 2011-02-18] (Realtek Semiconductor)HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.)HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10222080 2010-12-14] (Intel Corporation)HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-06-16] (Intel(R) Corporation)HKLM-x32\...\Run: [] => [X]HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)HKLM-x32\...\Run: [NeroLauncher] => C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [67496 2011-07-07] ()HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\615\G2AWinLogon_x64.dll (Citrix Online, a division of Citrix Systems, Inc.)Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)Startup: C:\Users\karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnkShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No FileShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No FileShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No FileShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No FileGroupPolicy: Group Policy on Chrome detected <======= ATTENTION==================== Internet (Whitelisted) ====================HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearchHKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exeSearchScopes: HKLM-x32 - DefaultScope value is missing.BHO: No Name - {0D68CD4C-4307-3B80-F9ED-D4E5C848DF02} -  No FileBHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO-x32: VIPRE Search Guard Helper - {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} - C:\Program Files (x86)\VIPRE\VSGN.dll No FileBHO-x32: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)BHO-x32: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No FileToolbar: HKLM-x32 - VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} -  No FileToolbar: HKCU - No Name - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} -  No FileHandler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} -  No FileHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No FileHandler: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} -  No FileHandler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)Handler-x32: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\VSGN.dll No FileFilter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} -  No FileFilter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} -  No FileTcpip\Parameters: [DhcpNameServer] 10.0.0.10 10.0.0.12FireFox:========FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL No FileFF Plugin: @microsoft.com/GENUINE - disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\progra~2\mcafee\msc\npmcsn~1.dll No FileFF Plugin-x32: @microsoft.com/GENUINE - disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)==================== Services (Whitelisted) =================R2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [901184 2010-12-14] (Intel Corporation) [File not signed]R3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-12-14] (Intel Corporation) [File not signed]R2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [974912 2010-12-14] (Intel Corporation) [File not signed]S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-05-30] (Microsoft Corporation) [File not signed]R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-06-16] ()==================== Drivers (Whitelisted) ====================R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-27] (Malwarebytes Corporation)R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)==================== NetSvcs (Whitelisted) ======================================= One Month Created Files and Folders ========2014-06-27 20:28 - 2014-06-27 20:28 - 00012999 _____ () C:\Users\KarenO\Desktop\FRST.txt2014-06-27 20:25 - 2014-06-27 20:28 - 00000000 ____D () C:\FRST2014-06-27 20:25 - 2014-06-27 20:25 - 02083328 _____ (Farbar) C:\Users\KarenO\Desktop\FRST64.exe2014-06-27 20:20 - 2014-06-27 19:50 - 00000000 ____D () C:\Windows\Panther2014-06-27 20:15 - 2014-06-27 20:15 - 00262144 _____ () C:\Windows\system32\config\userdiff2014-06-27 20:14 - 2014-06-27 20:20 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-06-27 20:13 - 2014-06-27 20:20 - 00001104 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2014-06-27 20:13 - 2014-06-27 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-06-27 20:13 - 2014-06-27 20:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-06-27 20:13 - 2014-06-27 20:13 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-06-27 20:13 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2014-06-27 20:13 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys2014-06-27 20:13 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys2014-06-27 20:12 - 2014-06-27 20:12 - 00109296 _____ () C:\Users\KarenO\AppData\Local\GDIPFONTCACHEV1.DAT2014-06-27 20:02 - 2014-06-27 18:56 - 00000000 ___HD () C:\$WINDOWS.~Q2014-06-27 19:58 - 2014-06-27 20:01 - 00000000 ___HD () C:\$INPLACE.~TR2014-06-27 19:51 - 2014-06-27 19:51 - 00001445 _____ () C:\Users\KarenO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk2014-06-27 19:51 - 2014-06-27 19:51 - 00001411 _____ () C:\Users\KarenO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk2014-06-27 19:50 - 2014-06-27 19:50 - 00000020 ___SH () C:\Users\KarenO\ntuser.ini2014-06-27 19:18 - 2012-02-17 00:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll2014-06-27 19:18 - 2012-02-16 23:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll2014-06-27 19:18 - 2012-02-16 22:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys2014-06-27 19:18 - 2012-02-16 22:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys2014-06-27 19:13 - 2012-06-02 16:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll2014-06-27 19:13 - 2012-06-02 16:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll2014-06-27 19:13 - 2012-06-02 16:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe2014-06-27 19:13 - 2012-06-02 16:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll2014-06-27 19:13 - 2012-06-02 16:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll2014-06-27 19:13 - 2012-06-02 16:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll2014-06-27 19:13 - 2012-06-02 16:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll2014-06-27 19:12 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll2014-06-27 19:12 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe2014-06-27 19:00 - 2014-06-27 20:14 - 00449834 _____ () C:\Windows\WindowsUpdate.log2014-06-27 18:51 - 2014-06-27 20:10 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks2014-06-27 18:51 - 2014-06-27 20:10 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\Desktop\Play Games2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\Desktop\Play Games2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help2014-06-27 18:26 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen2014-06-27 18:26 - 2009-07-13 22:54 - 00000000 ___RD () C:\Users\karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-06-27 18:26 - 2009-07-13 22:49 - 00000000 ___RD () C:\Users\karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-06-27 18:25 - 2014-06-27 19:50 - 00000000 ____D () C:\Users\KarenO2014-06-27 18:25 - 2014-06-27 18:25 - 00001355 _____ () C:\Windows\TSSysprep.log2014-06-27 18:25 - 2014-06-27 18:25 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk2014-06-27 18:25 - 2014-06-27 18:25 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk2014-06-27 18:25 - 2014-06-27 18:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf2014-06-27 18:25 - 2009-07-13 22:54 - 00000000 ___RD () C:\Users\KarenO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-06-27 18:25 - 2009-07-13 22:49 - 00000000 ___RD () C:\Users\KarenO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-06-27 18:24 - 2014-06-27 18:24 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf2014-06-27 18:24 - 2014-06-27 18:24 - 00000000 ____D () C:\Windows\system32\SRSLabs2014-06-27 18:24 - 2014-06-27 18:24 - 00000000 ____D () C:\Program Files\DellTPad2014-06-27 18:23 - 2014-06-27 18:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM2014-06-27 18:23 - 2014-06-27 18:23 - 00000000 ____D () C:\Program Files\Realtek2014-06-27 17:39 - 2014-06-27 18:48 - 00000000 ___RD () C:\Users\KarenO\Desktop\MySyncUPFiles2014-06-27 17:39 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Nero2014-06-27 17:39 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Local\Nero2014-06-27 17:39 - 2014-06-27 17:39 - 00000047 _____ () C:\Windows\NeroDigital.ini2014-06-27 17:22 - 2014-06-27 17:28 - 00003100 _____ () C:\Users\KarenO\Desktop\Windows Compatibility Report.htm2014-06-27 17:20 - 2014-06-27 17:25 - 00025192 _____ () C:\Windows\RPSETUP.EXE.LOG2014-06-27 17:10 - 2014-06-27 17:10 - 00019503 _____ () C:\ComboFix.txt2014-06-27 17:00 - 2014-06-27 17:00 - 05212118 ____R (Swearware) C:\Users\KarenO\Desktop\ComboFix.exe2014-06-27 16:57 - 2014-06-27 19:54 - 02386590 _____ (VS Revo Group Ltd.) C:\Users\KarenO\Desktop\revosetup.exe2014-06-27 16:52 - 2014-06-27 19:53 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{41637388-8D4F-46A5-98CA-02B9E0E70FA3}2014-06-27 16:52 - 2014-06-27 18:36 - 00000000 ____D () C:\Windows\ERUNT2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\Desktop\Play Games2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Macromedia2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Intel2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\deb27c1a-00e6-4263-94b2-8b78ea4d32ae2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Creative2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Adobe2014-06-27 16:51 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\KarenO\AppData\Local\SoftThinks2014-06-27 16:51 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Apple Computer2014-06-27 16:51 - 2014-06-27 12:13 - 00000000 ____D () C:\Users\KarenO\AppData\Local\Microsoft Help2014-06-27 16:49 - 2014-06-27 16:49 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\karen\Desktop\mbam-setup-2.0.2.1012.exe2014-06-27 16:47 - 2014-06-27 16:47 - 02386739 _____ (VS Revo Group Ltd.) C:\Users\karen\Desktop\revosetup.exe2014-06-27 16:36 - 2014-06-27 20:26 - 00000000 ____D () C:\Program Files (x86)\VIPRE2014-06-27 13:21 - 2014-06-27 13:23 - 00000568 _____ () C:\Users\karen\Desktop\run.bat2014-06-27 13:19 - 2014-06-27 18:35 - 00000000 ____D () C:\Program Files (x86)\Windows Resource Kits2014-06-27 13:07 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen\Desktop\dotnetfx_cleanup_tool2014-06-27 13:07 - 2014-06-27 13:07 - 00266065 _____ () C:\Users\karen\Desktop\dotnetfx_cleanup_tool.zip2014-06-27 13:06 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen\AppData\Roaming\VIPRE2014-06-27 12:58 - 2014-06-27 13:02 - 00003926 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{D65FC3A1-0229-4589-9D52-F401296D380F}2014-06-27 12:38 - 2014-06-27 19:50 - 00000000 ____D () C:\Recovery2014-06-27 12:33 - 2014-06-27 17:54 - 00551243 _____ () C:\Windows\WindowsUpdate (1).log2014-06-27 12:18 - 2014-06-27 18:55 - 00022840 _____ () C:\Windows\system32\emptyregdb.dat2014-06-27 10:54 - 2014-06-27 18:56 - 00012127 _____ () C:\Windows\comsetup.log2014-06-27 10:40 - 2014-06-27 17:24 - 00001890 _____ () C:\Windows\diagwrn.xml2014-06-27 10:40 - 2014-06-27 17:24 - 00001890 _____ () C:\Windows\diagerr.xml2014-06-27 10:22 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\karen\AppData\Local\CrashDumps2014-06-27 10:07 - 2014-05-21 17:14 - 55765488 _____ (ThreatTrack Security, Inc.) C:\Users\karen\Desktop\SBVIPRE_FW_EN.7.0.6.2 Full Installer 405.exe2014-06-27 10:05 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen\AppData\Roaming\TeamViewer2014-06-27 09:59 - 2014-06-27 09:59 - 00000000 ____D () C:\NPE2014-06-27 09:58 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\karen\AppData\Local\NPE2014-06-27 09:58 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Norton2014-06-27 09:37 - 2014-06-27 09:49 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)2014-06-27 09:34 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit2014-06-27 09:23 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner2014-06-27 09:23 - 2014-06-27 18:28 - 00000000 ____D () C:\Program Files\CCleaner2014-06-27 09:23 - 2014-06-27 09:23 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC2014-06-27 09:23 - 2014-06-27 09:23 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk2014-06-27 09:09 - 2014-06-27 12:59 - 06588304 _____ (ThreatTrack Security, Inc) C:\Users\karen\Downloads\setup-vipre-internet-security-en-us-trial.exe2014-06-27 08:57 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\HitmanPro2014-06-27 08:50 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Emsisoft2014-06-27 07:54 - 2014-06-27 18:30 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware2014-06-27 07:52 - 2014-06-27 07:52 - 00265752 _____ (Secure By Design Inc.) C:\Users\karen\Desktop\Ninite Air Chrome Java NET Reader Installer.exe2014-06-27 06:49 - 2014-06-27 07:46 - 00000000 ____D () C:\VIPRERESCUE2014-06-27 06:31 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen\AppData\Roaming\deb27c1a-00e6-4263-94b2-8b78ea4d32ae2014-06-27 06:29 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\karen\AppData\Local\VIPRE2014-06-27 06:29 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Downloaded Installations2014-06-27 06:03 - 2011-06-26 00:45 - 00256000 _____ () C:\Windows\PEV.exe2014-06-27 06:03 - 2010-11-07 11:20 - 00208896 _____ () C:\Windows\MBR.exe2014-06-27 06:03 - 2009-04-19 22:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe2014-06-27 06:03 - 2000-08-30 18:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe2014-06-27 06:03 - 2000-08-30 18:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe2014-06-27 06:03 - 2000-08-30 18:00 - 00098816 _____ () C:\Windows\sed.exe2014-06-27 06:03 - 2000-08-30 18:00 - 00080412 _____ () C:\Windows\grep.exe2014-06-27 06:03 - 2000-08-30 18:00 - 00068096 _____ () C:\Windows\zip.exe2014-06-27 06:02 - 2014-06-27 18:36 - 00000000 ____D () C:\Windows\erdnt2014-06-27 06:02 - 2014-06-27 17:10 - 00000000 ____D () C:\Qoobox2014-06-27 06:00 - 2014-06-27 06:00 - 00001429 _____ () C:\Users\karen\Desktop\iexplore - Shortcut.lnk2014-06-27 05:52 - 2014-06-27 05:53 - 00000000 ____D () C:\AdwCleaner2014-06-27 05:52 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll2014-06-26 14:27 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Geek Squad2014-06-17 08:32 - 2014-06-17 08:32 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8a392ae3dc5.job2014-06-15 08:26 - 2014-06-27 05:42 - 00000310 _____ () C:\Windows\SysWOW64\ff.bin2014-06-15 08:21 - 2014-06-27 05:36 - 00000552 _____ () C:\Windows\SysWOW64\schtasks.bin2014-06-15 08:01 - 2014-06-27 18:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-06-14 16:39 - 2014-06-27 19:50 - 00000258 __RSH () C:\ProgramData\ntuser.pol2014-06-14 08:30 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Check2014-06-14 08:30 - 2014-06-27 18:34 - 00000000 ____D () C:\Program Files (x86)\Software Check2014-06-14 08:28 - 2014-06-17 08:35 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Severe Weather Alerts2014-06-14 08:25 - 2014-06-27 18:29 - 00000000 ____D () C:\Program Files\pcmax2014-06-14 08:25 - 2014-06-14 08:25 - 00003690 _____ () C:\Windows\System32\Tasks\pcreg2014-06-10 20:35 - 2014-05-30 04:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-06-10 20:35 - 2014-05-30 03:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-06-10 20:35 - 2014-05-30 03:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-06-10 20:35 - 2014-05-30 03:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-06-10 20:35 - 2014-05-30 03:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-06-10 20:35 - 2014-05-30 03:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-06-10 20:35 - 2014-05-30 02:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-06-10 20:35 - 2014-05-30 02:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-06-10 20:35 - 2014-05-30 02:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-06-10 20:35 - 2014-05-30 02:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-06-10 20:35 - 2014-05-30 02:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-06-10 20:35 - 2014-05-30 01:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-06-10 20:35 - 2014-05-30 01:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-06-03 13:08 - 2014-06-03 13:08 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1489 - Shortcut.lnk2014-06-03 13:06 - 2014-06-03 13:06 - 00001263 _____ () C:\Users\karen\Desktop\IMG_1460 - Shortcut.lnk2014-06-03 12:40 - 2014-06-03 12:40 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1345 - Shortcut.lnk2014-06-03 12:29 - 2014-06-03 12:29 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1353 - Shortcut.lnk2014-06-03 12:29 - 2014-06-03 12:29 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1347 - Shortcut.lnk2014-06-03 12:28 - 2014-06-03 12:28 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1342 - Shortcut.lnk2014-06-03 12:24 - 2014-06-03 12:24 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1336 - Shortcut.lnk2014-06-03 12:24 - 2014-06-03 12:24 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1333 - Shortcut.lnk2014-05-29 14:39 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Malwarebytes2014-05-28 12:10 - 2014-06-27 18:49 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Apple Computer2014-05-28 12:10 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\karen\AppData\Local\Apple Computer2014-05-28 12:10 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes2014-05-28 12:10 - 2014-05-28 12:10 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk2014-05-28 12:09 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys2014-05-28 12:08 - 2014-06-27 18:54 - 00000000 ____D () C:\Windows\System32\Tasks\Apple2014-05-28 12:08 - 2014-06-27 18:48 - 00000000 ____D () C:\Users\karen\AppData\Local\Apple2014-05-28 12:08 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Apple Computer2014-05-28 12:08 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF692014-05-28 12:08 - 2014-06-27 18:32 - 00000000 ____D () C:\Program Files (x86)\iTunes2014-05-28 12:08 - 2014-06-27 18:29 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update2014-05-28 12:08 - 2014-06-27 18:28 - 00000000 ____D () C:\Program Files\iTunes2014-05-28 12:08 - 2014-06-27 18:28 - 00000000 ____D () C:\Program Files\iPod2014-05-28 12:08 - 2014-05-28 12:08 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk2014-05-28 12:07 - 2014-06-27 18:35 - 00000000 ____D () C:\ProgramData\Apple2014-05-28 12:07 - 2014-06-27 18:29 - 00000000 ____D () C:\Program Files (x86)\Bonjour2014-05-28 12:07 - 2014-06-27 18:28 - 00000000 ____D () C:\Program Files\Common Files\Apple2014-05-28 12:07 - 2014-06-27 18:28 - 00000000 ____D () C:\Program Files\Bonjour==================== One Month Modified Files and Folders =======2014-06-27 20:28 - 2014-06-27 20:28 - 00012999 _____ () C:\Users\KarenO\Desktop\FRST.txt2014-06-27 20:28 - 2014-06-27 20:25 - 00000000 ____D () C:\FRST2014-06-27 20:26 - 2014-06-27 16:36 - 00000000 ____D () C:\Program Files (x86)\VIPRE2014-06-27 20:25 - 2014-06-27 20:25 - 02083328 _____ (Farbar) C:\Users\KarenO\Desktop\FRST64.exe2014-06-27 20:20 - 2014-06-27 20:14 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-06-27 20:20 - 2014-06-27 20:13 - 00001104 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2014-06-27 20:20 - 2014-06-27 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-06-27 20:20 - 2014-06-27 20:13 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-06-27 20:20 - 2009-07-13 23:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG2014-06-27 20:20 - 2009-07-13 23:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template2014-06-27 20:19 - 2009-07-13 22:45 - 00025872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-06-27 20:19 - 2009-07-13 22:45 - 00025872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-06-27 20:17 - 2009-07-13 23:13 - 00726316 _____ () C:\Windows\system32\PerfStringBackup.INI2014-06-27 20:15 - 2014-06-27 20:15 - 00262144 _____ () C:\Windows\system32\config\userdiff2014-06-27 20:14 - 2014-06-27 19:00 - 00449834 _____ () C:\Windows\WindowsUpdate.log2014-06-27 20:13 - 2014-06-27 20:13 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-06-27 20:12 - 2014-06-27 20:12 - 00109296 _____ () C:\Users\KarenO\AppData\Local\GDIPFONTCACHEV1.DAT2014-06-27 20:11 - 2011-09-06 17:08 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup2014-06-27 20:10 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks2014-06-27 20:10 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks2014-06-27 20:10 - 2010-11-20 21:47 - 00025342 _____ () C:\Windows\PFRO.log2014-06-27 20:10 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-06-27 20:10 - 2009-07-13 22:51 - 00400537 _____ () C:\Windows\setupact.log2014-06-27 20:01 - 2014-06-27 19:58 - 00000000 ___HD () C:\$INPLACE.~TR2014-06-27 19:54 - 2014-06-27 16:57 - 02386590 _____ (VS Revo Group Ltd.) C:\Users\KarenO\Desktop\revosetup.exe2014-06-27 19:53 - 2014-06-27 16:52 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{41637388-8D4F-46A5-98CA-02B9E0E70FA3}2014-06-27 19:51 - 2014-06-27 19:51 - 00001445 _____ () C:\Users\KarenO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk2014-06-27 19:51 - 2014-06-27 19:51 - 00001411 _____ () C:\Users\KarenO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk2014-06-27 19:51 - 2009-07-13 22:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk2014-06-27 19:50 - 2014-06-27 20:20 - 00000000 ____D () C:\Windows\Panther2014-06-27 19:50 - 2014-06-27 19:50 - 00000020 ___SH () C:\Users\KarenO\ntuser.ini2014-06-27 19:50 - 2014-06-27 18:25 - 00000000 ____D () C:\Users\KarenO2014-06-27 19:50 - 2014-06-27 12:38 - 00000000 ____D () C:\Recovery2014-06-27 19:50 - 2014-06-14 16:39 - 00000258 __RSH () C:\ProgramData\ntuser.pol2014-06-27 19:50 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\Recovery2014-06-27 19:30 - 2012-02-23 08:29 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-06-27 19:12 - 2009-07-13 23:32 - 00000000 ____D () C:\Windows\system32\restore2014-06-27 19:03 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\rescache2014-06-27 18:57 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\Registration2014-06-27 18:56 - 2014-06-27 20:02 - 00000000 ___HD () C:\$WINDOWS.~Q2014-06-27 18:56 - 2014-06-27 10:54 - 00012127 _____ () C:\Windows\comsetup.log2014-06-27 18:55 - 2014-06-27 12:18 - 00022840 _____ () C:\Windows\system32\emptyregdb.dat2014-06-27 18:54 - 2014-05-28 12:08 - 00000000 ____D () C:\Windows\System32\Tasks\Apple2014-06-27 18:54 - 2012-01-19 13:08 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform2014-06-27 18:54 - 2009-07-13 23:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD2014-06-27 18:54 - 2009-07-13 21:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy2014-06-27 18:52 - 2009-07-13 22:45 - 00417448 _____ () C:\Windows\system32\FNTCACHE.DAT2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\Desktop\Play Games2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\Desktop\Play Games2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia2014-06-27 18:51 - 2014-06-27 18:51 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help2014-06-27 18:51 - 2009-07-13 22:46 - 00005157 _____ () C:\Windows\DtcInstall.log2014-06-27 18:51 - 2009-07-13 21:20 - 00000000 __RHD () C:\Users\Default2014-06-27 18:51 - 2009-07-13 21:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-06-27 18:51 - 2009-07-13 21:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-06-27 18:51 - 2009-07-13 21:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-06-27 18:51 - 2009-07-13 21:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-06-27 18:49 - 2014-06-27 18:26 - 00000000 ____D () C:\Users\karen2014-06-27 18:49 - 2014-06-27 13:07 - 00000000 ____D () C:\Users\karen\Desktop\dotnetfx_cleanup_tool2014-06-27 18:49 - 2014-06-27 13:06 - 00000000 ____D () C:\Users\karen\AppData\Roaming\VIPRE2014-06-27 18:49 - 2014-06-27 10:05 - 00000000 ____D () C:\Users\karen\AppData\Roaming\TeamViewer2014-06-27 18:49 - 2014-06-27 06:31 - 00000000 ____D () C:\Users\karen\AppData\Roaming\deb27c1a-00e6-4263-94b2-8b78ea4d32ae2014-06-27 18:49 - 2014-05-29 14:39 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Malwarebytes2014-06-27 18:49 - 2014-05-28 12:10 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Apple Computer2014-06-27 18:49 - 2013-12-06 18:59 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Dropbox2014-06-27 18:49 - 2012-09-20 18:06 - 00000000 ____D () C:\Users\karen\Documents\OneNote Notebooks2014-06-27 18:49 - 2012-09-13 03:01 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Skype2014-06-27 18:49 - 2012-05-26 16:15 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Leadertech2014-06-27 18:49 - 2012-02-29 10:28 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Xilot2014-06-27 18:49 - 2012-02-07 09:58 - 00000000 ____D () C:\Users\karen\Documents\Outlook Files2014-06-27 18:49 - 2012-01-19 13:00 - 00000000 ____D () C:\Users\karen\Documents\Fax2014-06-27 18:49 - 2012-01-19 13:00 - 00000000 ____D () C:\Users\karen\AppData\Roaming\PCDr2014-06-27 18:49 - 2012-01-19 12:55 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Nero2014-06-27 18:49 - 2012-01-19 12:50 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Adobe2014-06-27 18:49 - 2012-01-19 12:48 - 00000000 ___RD () C:\Users\karen\Desktop\MySyncUPFiles2014-06-27 18:49 - 2012-01-19 12:33 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Dell Touch Zone2014-06-27 18:49 - 2012-01-19 12:33 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Dell2014-06-27 18:49 - 2012-01-19 12:33 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Creative2014-06-27 18:49 - 2012-01-19 12:30 - 00000000 ___RD () C:\Users\karen\Desktop\Play Games2014-06-27 18:49 - 2012-01-19 12:30 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Macromedia2014-06-27 18:49 - 2012-01-19 12:30 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Intel2014-06-27 18:48 - 2014-06-27 17:39 - 00000000 ___RD () C:\Users\KarenO\Desktop\MySyncUPFiles2014-06-27 18:48 - 2014-06-27 17:39 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Nero2014-06-27 18:48 - 2014-06-27 17:39 - 00000000 ____D () C:\Users\KarenO\AppData\Local\Nero2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\Desktop\Play Games2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Macromedia2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Intel2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\deb27c1a-00e6-4263-94b2-8b78ea4d32ae2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Creative2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Adobe2014-06-27 18:48 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Local\SoftThinks2014-06-27 18:48 - 2014-06-27 10:22 - 00000000 ____D () C:\Users\karen\AppData\Local\CrashDumps2014-06-27 18:48 - 2014-06-27 09:58 - 00000000 ____D () C:\Users\karen\AppData\Local\NPE2014-06-27 18:48 - 2014-06-27 06:29 - 00000000 ____D () C:\Users\karen\AppData\Local\VIPRE2014-06-27 18:48 - 2014-05-28 12:10 - 00000000 ____D () C:\Users\karen\AppData\Local\Apple Computer2014-06-27 18:48 - 2014-05-28 12:08 - 00000000 ____D () C:\Users\karen\AppData\Local\Apple2014-06-27 18:48 - 2012-04-05 14:13 - 00000000 ____D () C:\Users\karen\AppData\Local\HP2014-06-27 18:48 - 2012-02-23 08:29 - 00000000 ____D () C:\Users\karen\AppData\Local\Google2014-06-27 18:48 - 2012-01-21 16:40 - 00000000 ____D () C:\Users\karen\AppData\Local\Adobe2014-06-27 18:48 - 2012-01-19 14:03 - 00000000 ____D () C:\Users\karen\AppData\Local\Nero_AG2014-06-27 18:48 - 2012-01-19 13:06 - 00000000 ____D () C:\Users\karen\AppData\Local\Microsoft Help2014-06-27 18:48 - 2012-01-19 12:55 - 00000000 ____D () C:\Users\karen\AppData\Local\Nero2014-06-27 18:48 - 2012-01-19 12:53 - 00000000 ____D () C:\Users\karen\AppData\Local\Citrix2014-06-27 18:48 - 2012-01-19 12:53 - 00000000 ____D () C:\Users\karen\AppData\Local\Apps\2.02014-06-27 18:48 - 2012-01-19 12:34 - 00000000 ____D () C:\Users\karen\AppData\Local\Dell2014-06-27 18:48 - 2012-01-19 12:32 - 00000000 ____D () C:\Users\karen\AppData\Local\VirtualStore2014-06-27 18:48 - 2012-01-19 12:30 - 00000000 ____D () C:\Users\karen\AppData\Local\SoftThinks2014-06-27 18:38 - 2012-01-19 13:00 - 00000000 ____D () C:\Windows\SysWOW64\oem2014-06-27 18:38 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK2014-06-27 18:38 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR2014-06-27 18:38 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe2014-06-27 18:37 - 2014-05-07 03:02 - 00000000 ___SD () C:\Windows\system32\CompatTel2014-06-27 18:37 - 2012-01-19 13:56 - 00000000 ____D () C:\Windows\system32\Macromed2014-06-27 18:37 - 2012-01-19 12:02 - 00000000 ____D () C:\Windows\SMINST2014-06-27 18:37 - 2011-09-06 16:36 - 00000000 ____D () C:\Windows\SysWOW64\Macromed2014-06-27 18:37 - 2011-04-12 02:28 - 00000000 ____D () C:\Windows\ShellNew2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\zh-HK2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\tr-TR2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\sysprep2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\oobe2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\NDF2014-06-27 18:37 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\Resources2014-06-27 18:36 - 2014-06-27 16:52 - 00000000 ____D () C:\Windows\ERUNT2014-06-27 18:36 - 2014-06-27 06:02 - 00000000 ____D () C:\Windows\erdnt2014-06-27 18:36 - 2011-09-06 17:37 - 00000000 ___HD () C:\Users\Public\Rxtemp2014-06-27 18:36 - 2011-09-06 17:34 - 00000000 ____D () C:\Windows\en2014-06-27 18:36 - 2011-09-06 16:51 - 00000000 ____D () C:\Windows\Dell2014-06-27 18:36 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\Cursors2014-06-27 18:35 - 2014-06-27 13:19 - 00000000 ____D () C:\Program Files (x86)\Windows Resource Kits2014-06-27 18:35 - 2014-06-27 09:58 - 00000000 ____D () C:\ProgramData\Norton2014-06-27 18:35 - 2014-06-27 09:34 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit2014-06-27 18:35 - 2014-06-27 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner2014-06-27 18:35 - 2014-06-27 08:57 - 00000000 ____D () C:\ProgramData\HitmanPro2014-06-27 18:35 - 2014-06-27 08:50 - 00000000 ____D () C:\ProgramData\Emsisoft2014-06-27 18:35 - 2014-06-27 06:29 - 00000000 ____D () C:\ProgramData\Downloaded Installations2014-06-27 18:35 - 2014-06-26 14:27 - 00000000 ____D () C:\ProgramData\Geek Squad2014-06-27 18:35 - 2014-06-14 08:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Check2014-06-27 18:35 - 2014-05-28 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes2014-06-27 18:35 - 2014-05-28 12:08 - 00000000 ____D () C:\ProgramData\Apple Computer2014-06-27 18:35 - 2014-05-28 12:08 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF692014-06-27 18:35 - 2014-05-28 12:07 - 00000000 ____D () C:\ProgramData\Apple2014-06-27 18:35 - 2014-05-27 15:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java2014-06-27 18:35 - 2014-03-04 08:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype2014-06-27 18:35 - 2013-08-03 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\digital publishing2014-06-27 18:35 - 2013-03-12 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight2014-06-27 18:35 - 2012-04-05 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP2014-06-27 18:35 - 2012-04-05 14:14 - 00000000 ____D () C:\ProgramData\HP2014-06-27 18:35 - 2012-01-19 13:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office2014-06-27 18:35 - 2012-01-19 13:06 - 00000000 ____D () C:\ProgramData\Microsoft Help2014-06-27 18:35 - 2012-01-19 12:59 - 00000000 ____D () C:\ProgramData\PCDr2014-06-27 18:35 - 2012-01-19 12:59 - 00000000 ____D () C:\ProgramData\MFAData2014-06-27 18:35 - 2012-01-19 12:54 - 00000000 ____D () C:\ProgramData\Citrix2014-06-27 18:35 - 2011-09-06 18:09 - 00000000 ____D () C:\ProgramData\Dell2014-06-27 18:35 - 2011-09-06 17:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe Online2014-06-27 18:35 - 2011-09-06 17:34 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live2014-06-27 18:35 - 2011-09-06 17:33 - 00000000 ____D () C:\Program Files (x86)\Windows Live2014-06-27 18:35 - 2011-09-06 17:25 - 00000000 ____D () C:\Users\Public\Documents\Dell2014-06-27 18:35 - 2011-09-06 17:23 - 00000000 ____D () C:\ProgramData\Nero2014-06-27 18:35 - 2011-09-06 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero2014-06-27 18:35 - 2011-09-06 17:18 - 00000000 ____D () C:\Program Files (x86)\Zinio Reader 42014-06-27 18:35 - 2011-09-06 17:16 - 00000000 ____D () C:\Users\Public\Blio2014-06-27 18:35 - 2011-09-06 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-NFB Reading Technology2014-06-27 18:35 - 2011-09-06 17:14 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Stage2014-06-27 18:35 - 2011-09-06 17:14 - 00000000 ____D () C:\ProgramData\Temp2014-06-27 18:35 - 2011-09-06 17:14 - 00000000 ____D () C:\ProgramData\install_clap2014-06-27 18:35 - 2011-09-06 17:10 - 00000000 ____D () C:\ProgramData\Skype2014-06-27 18:35 - 2011-09-06 17:10 - 00000000 ____D () C:\ProgramData\Cozi2014-06-27 18:35 - 2011-09-06 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe2014-06-27 18:35 - 2011-09-06 17:03 - 00000000 ____D () C:\ProgramData\WildTangent2014-06-27 18:35 - 2011-09-06 17:02 - 00000000 ____D () C:\ProgramData\Adobe2014-06-27 18:35 - 2011-09-06 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation2014-06-27 18:35 - 2011-09-06 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless2014-06-27 18:35 - 2011-09-06 16:52 - 00000000 ____D () C:\ProgramData\Intel2014-06-27 18:35 - 2011-09-06 16:49 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel2014-06-27 18:35 - 2011-09-06 16:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell2014-06-27 18:35 - 2011-09-06 16:48 - 00000000 ____D () C:\ProgramData\Sun2014-06-27 18:35 - 2011-04-12 02:28 - 00000000 ___RD () C:\Users\Public\Recorded TV2014-06-27 18:35 - 2009-07-13 23:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games2014-06-27 18:34 - 2014-06-15 08:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-06-27 18:34 - 2014-06-14 08:30 - 00000000 ____D () C:\Program Files (x86)\Software Check2014-06-27 18:34 - 2013-03-12 19:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2014-06-27 18:34 - 2011-09-06 17:38 - 00000000 ____D () C:\Program Files (x86)\TrustedID2014-06-27 18:34 - 2011-09-06 17:33 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition2014-06-27 18:34 - 2011-09-06 17:23 - 00000000 ____D () C:\Program Files (x86)\Nero2014-06-27 18:34 - 2011-09-06 17:15 - 00000000 ____D () C:\Program Files (x86)\PlayReady2014-06-27 18:34 - 2011-09-06 17:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office2014-06-27 18:34 - 2011-09-06 17:11 - 00000000 ___RD () C:\Program Files (x86)\Skype2014-06-27 18:34 - 2011-09-06 17:03 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games2014-06-27 18:34 - 2011-09-06 17:03 - 00000000 ____D () C:\Program Files (x86)\WildTangent2014-06-27 18:32 - 2014-05-28 12:08 - 00000000 ____D () C:\Program Files (x86)\iTunes2014-06-27 18:32 - 2012-01-19 13:07 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services2014-06-27 18:32 - 2011-09-06 17:38 - 00000000 ____D () C:\Program Files (x86)\Jagex2014-06-27 18:32 - 2011-09-06 17:16 - 00000000 ____D () C:\Program Files (x86)\K-NFB Reading Technology Inc2014-06-27 18:32 - 2011-09-06 16:48 - 00000000 ____D () C:\Program Files (x86)\Java2014-06-27 18:30 - 2014-06-27 07:54 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware2014-06-27 18:30 - 2012-04-05 14:14 - 00000000 ____D () C:\Program Files (x86)\HP2014-06-27 18:30 - 2012-04-05 14:14 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard2014-06-27 18:30 - 2012-02-23 08:28 - 00000000 ____D () C:\Program Files (x86)\Google2014-06-27 18:30 - 2011-09-06 18:27 - 00000000 ____D () C:\Program Files (x86)\Intel2014-06-27 18:30 - 2011-09-06 17:25 - 00000000 ____D () C:\Program Files (x86)\Dell Stage2014-06-27 18:30 - 2011-09-06 17:12 - 00000000 ____D () C:\Program Files (x86)\eBay2014-06-27 18:30 - 2011-09-06 16:57 - 00000000 ____D () C:\Program Files (x86)\Intel Corporation2014-06-27 18:30 - 2011-09-06 16:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-06-27 18:29 - 2014-06-14 08:25 - 00000000 ____D () C:\Program Files\pcmax2014-06-27 18:29 - 2014-05-28 12:08 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update2014-06-27 18:29 - 2014-05-28 12:07 - 00000000 ____D () C:\Program Files (x86)\Bonjour2014-06-27 18:29 - 2012-01-19 12:57 - 00000000 ____D () C:\Program Files (x86)\AVG2014-06-27 18:29 - 2012-01-19 12:54 - 00000000 ____D () C:\Program Files (x86)\Citrix2014-06-27 18:29 - 2011-09-06 18:09 - 00000000 ____D () C:\Program Files\ZinioReader42014-06-27 18:29 - 2011-09-06 17:32 - 00000000 ____D () C:\Program Files\Windows Live2014-06-27 18:29 - 2011-09-06 17:26 - 00000000 ____D () C:\Program Files (x86)\Creative Live! Cam2014-06-27 18:29 - 2011-09-06 17:26 - 00000000 ____D () C:\Program Files (x86)\Creative2014-06-27 18:29 - 2011-09-06 17:14 - 00000000 ____D () C:\Program Files (x86)\Dell2014-06-27 18:29 - 2011-09-06 17:14 - 00000000 ____D () C:\Program Files (x86)\Cyberlink2014-06-27 18:29 - 2011-09-06 17:10 - 00000000 ____D () C:\Program Files (x86)\Cozi Express2014-06-27 18:29 - 2011-09-06 17:02 - 00000000 ____D () C:\Program Files (x86)\Adobe2014-06-27 18:29 - 2011-09-06 16:52 - 00000000 ____D () C:\Program Files (x86)\Cisco2014-06-27 18:28 - 2014-06-27 09:23 - 00000000 ____D () C:\Program Files\CCleaner2014-06-27 18:28 - 2014-05-28 12:08 - 00000000 ____D () C:\Program Files\iTunes2014-06-27 18:28 - 2014-05-28 12:08 - 00000000 ____D () C:\Program Files\iPod2014-06-27 18:28 - 2014-05-28 12:07 - 00000000 ____D () C:\Program Files\Common Files\Apple2014-06-27 18:28 - 2014-05-28 12:07 - 00000000 ____D () C:\Program Files\Bonjour2014-06-27 18:28 - 2013-03-12 19:08 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2014-06-27 18:28 - 2012-04-05 14:14 - 00000000 ____D () C:\Program Files\HP2014-06-27 18:28 - 2012-01-19 12:58 - 00000000 ____D () C:\Program Files\Microsoft Office2014-06-27 18:28 - 2011-09-06 18:13 - 00000000 ____D () C:\Program Files\Dell Games Folder2014-06-27 18:28 - 2011-09-06 17:41 - 00000000 ____D () C:\Program Files\dell stage2014-06-27 18:28 - 2011-09-06 16:58 - 00000000 ____D () C:\Program Files\Dell2014-06-27 18:28 - 2011-09-06 16:52 - 00000000 ____D () C:\Program Files\Intel2014-06-27 18:28 - 2011-09-06 16:49 - 00000000 ____D () C:\Program Files\Java2014-06-27 18:28 - 2011-09-06 16:49 - 00000000 ____D () C:\Program Files\Common Files\Intel2014-06-27 18:28 - 2011-09-06 16:36 - 00000000 ____D () C:\Program Files\Dell Inc2014-06-27 18:28 - 2009-07-13 21:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared2014-06-27 18:25 - 2014-06-27 18:25 - 00001355 _____ () C:\Windows\TSSysprep.log2014-06-27 18:25 - 2014-06-27 18:25 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk2014-06-27 18:25 - 2014-06-27 18:25 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk2014-06-27 18:25 - 2014-06-27 18:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf2014-06-27 18:25 - 2009-07-13 22:51 - 00000084 _____ () C:\Windows\setuperr.log2014-06-27 18:25 - 2009-07-13 21:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories2014-06-27 18:24 - 2014-06-27 18:24 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf2014-06-27 18:24 - 2014-06-27 18:24 - 00000000 ____D () C:\Windows\system32\SRSLabs2014-06-27 18:24 - 2014-06-27 18:24 - 00000000 ____D () C:\Program Files\DellTPad2014-06-27 18:23 - 2014-06-27 18:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM2014-06-27 18:23 - 2014-06-27 18:23 - 00000000 ____D () C:\Program Files\Realtek2014-06-27 17:54 - 2014-06-27 12:33 - 00551243 _____ () C:\Windows\WindowsUpdate (1).log2014-06-27 17:39 - 2014-06-27 17:39 - 00000047 _____ () C:\Windows\NeroDigital.ini2014-06-27 17:28 - 2014-06-27 17:22 - 00003100 _____ () C:\Users\KarenO\Desktop\Windows Compatibility Report.htm2014-06-27 17:25 - 2014-06-27 17:20 - 00025192 _____ () C:\Windows\RPSETUP.EXE.LOG2014-06-27 17:24 - 2014-06-27 10:40 - 00001890 _____ () C:\Windows\diagwrn.xml2014-06-27 17:24 - 2014-06-27 10:40 - 00001890 _____ () C:\Windows\diagerr.xml2014-06-27 17:10 - 2014-06-27 17:10 - 00019503 _____ () C:\ComboFix.txt2014-06-27 17:10 - 2014-06-27 06:02 - 00000000 ____D () C:\Qoobox2014-06-27 17:08 - 2009-07-13 20:34 - 00000215 _____ () C:\Windows\system.ini2014-06-27 17:00 - 2014-06-27 17:00 - 05212118 ____R (Swearware) C:\Users\KarenO\Desktop\ComboFix.exe2014-06-27 16:51 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Roaming\Apple Computer2014-06-27 16:49 - 2014-06-27 16:49 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\karen\Desktop\mbam-setup-2.0.2.1012.exe2014-06-27 16:47 - 2014-06-27 16:47 - 02386739 _____ (VS Revo Group Ltd.) C:\Users\karen\Desktop\revosetup.exe2014-06-27 13:23 - 2014-06-27 13:21 - 00000568 _____ () C:\Users\karen\Desktop\run.bat2014-06-27 13:07 - 2014-06-27 13:07 - 00266065 _____ () C:\Users\karen\Desktop\dotnetfx_cleanup_tool.zip2014-06-27 13:02 - 2014-06-27 12:58 - 00003926 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{D65FC3A1-0229-4589-9D52-F401296D380F}2014-06-27 12:59 - 2014-06-27 09:09 - 06588304 _____ (ThreatTrack Security, Inc) C:\Users\karen\Downloads\setup-vipre-internet-security-en-us-trial.exe2014-06-27 12:13 - 2014-06-27 16:51 - 00000000 ____D () C:\Users\KarenO\AppData\Local\Microsoft Help2014-06-27 09:59 - 2014-06-27 09:59 - 00000000 ____D () C:\NPE2014-06-27 09:49 - 2014-06-27 09:37 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)2014-06-27 09:23 - 2014-06-27 09:23 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC2014-06-27 09:23 - 2014-06-27 09:23 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk2014-06-27 07:52 - 2014-06-27 07:52 - 00265752 _____ (Secure By Design Inc.) C:\Users\karen\Desktop\Ninite Air Chrome Java NET Reader Installer.exe2014-06-27 07:46 - 2014-06-27 06:49 - 00000000 ____D () C:\VIPRERESCUE2014-06-27 06:00 - 2014-06-27 06:00 - 00001429 _____ () C:\Users\karen\Desktop\iexplore - Shortcut.lnk2014-06-27 05:53 - 2014-06-27 05:52 - 00000000 ____D () C:\AdwCleaner2014-06-27 05:53 - 2012-02-23 08:29 - 00000000 ____D () C:\Program Files\Google2014-06-27 05:49 - 2012-01-19 14:33 - 00001945 _____ () C:\Windows\epplauncher.mif2014-06-27 05:42 - 2014-06-15 08:26 - 00000310 _____ () C:\Windows\SysWOW64\ff.bin2014-06-27 05:36 - 2014-06-15 08:21 - 00000552 _____ () C:\Windows\SysWOW64\schtasks.bin2014-06-26 20:53 - 2011-09-06 17:09 - 00000000 ____D () C:\Temp2014-06-17 08:35 - 2014-06-14 08:28 - 00000000 ____D () C:\Users\karen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Severe Weather Alerts2014-06-17 08:32 - 2014-06-17 08:32 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8a392ae3dc5.job2014-06-14 16:45 - 2014-05-25 13:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome2014-06-14 08:25 - 2014-06-14 08:25 - 00003690 _____ () C:\Windows\System32\Tasks\pcreg2014-06-11 03:08 - 2013-08-15 03:03 - 00000000 ____D () C:\Windows\system32\MRT2014-06-03 13:08 - 2014-06-03 13:08 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1489 - Shortcut.lnk2014-06-03 13:06 - 2014-06-03 13:06 - 00001263 _____ () C:\Users\karen\Desktop\IMG_1460 - Shortcut.lnk2014-06-03 12:40 - 2014-06-03 12:40 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1345 - Shortcut.lnk2014-06-03 12:29 - 2014-06-03 12:29 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1353 - Shortcut.lnk2014-06-03 12:29 - 2014-06-03 12:29 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1347 - Shortcut.lnk2014-06-03 12:28 - 2014-06-03 12:28 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1342 - Shortcut.lnk2014-06-03 12:24 - 2014-06-03 12:24 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1336 - Shortcut.lnk2014-06-03 12:24 - 2014-06-03 12:24 - 00001259 _____ () C:\Users\karen\Desktop\IMG_1333 - Shortcut.lnk2014-05-30 04:02 - 2014-06-10 20:35 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-05-30 03:38 - 2014-06-10 20:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-05-30 03:21 - 2014-06-10 20:35 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-05-30 03:20 - 2014-06-10 20:35 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-05-30 03:11 - 2014-06-10 20:35 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-05-30 03:08 - 2014-06-10 20:35 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-05-30 02:55 - 2014-06-10 20:35 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-05-30 02:42 - 2014-06-10 20:35 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-05-30 02:27 - 2014-06-10 20:35 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-05-30 02:24 - 2014-06-10 20:35 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-05-30 02:10 - 2014-06-10 20:35 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-05-30 01:56 - 2014-06-10 20:35 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-05-30 01:50 - 2014-06-10 20:35 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-05-29 18:54 - 2014-05-24 17:36 - 00000000 ____D () C:\Users\karen\AppData\Local\Weather_Warnings_LLC2014-05-29 18:54 - 2009-07-13 20:34 - 00000612 _____ () C:\Windows\win.ini2014-05-28 12:10 - 2014-05-28 12:10 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk2014-05-28 12:08 - 2014-05-28 12:08 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk==================== Bamital & volsnap Check =================C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2014-06-27 19:45==================== End Of Log ============================
Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2014 01

Ran by KarenO at 2014-06-27 20:29:13

Running from C:\Users\KarenO\Desktop

Boot Mode: Normal

==========================================================

==================== Security Center ========================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Accidental Damage Services Agreement (HKLM-x32\...\{EF85FEF4-EB92-4075-A6D2-5F519BB30A2C}) (Version: 2.0.0 - Dell Inc.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 11 ActiveX 64-bit (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.1.102.62 - Adobe Systems Incorporated)

Adobe Reader X (10.1.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)

Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)

Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Banctec Service Agreement (HKLM-x32\...\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}) (Version: 2.0.0 - Dell Inc.)

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden

Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Blio (HKLM-x32\...\{400182B4-CA55-46A9-9D88-F8413DCFB36D}) (Version: 2.3.7140 - K-NFB Reading Technology, Inc.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden

Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)

Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Complete Care Business Service Agreement (HKLM-x32\...\{0ECFCB07-9BFE-4970-ACA1-D568D982760B}) (Version: 2.0.0 - Dell Inc.)

Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)

Cozi (HKLM-x32\...\{EA1F3D6C-A6F5-4CDC-B0D3-9C56C06B4D29}) (Version: 1.0.6505.38692 - Cozi Group, Inc.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version: - Microsoft)

Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell Inc.)

Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell Inc.)

Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell)

Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)

Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)

Dell Home Systems Service Agreement (HKLM-x32\...\{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}) (Version: 2.0.0 - Dell Inc.)

Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)

Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)

Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.204 - ALPS ELECTRIC CO., LTD.)

Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)

Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden

Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)

Digital Aviation Reference Library (HKLM-x32\...\{9930D15E-94E7-4F3E-9203-15BCC66799F3}) (Version: 4.5 - )

Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden

Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden

eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)

Escape Whisper Valley (TM) (x32 Version: 2.2.0.95 - WildTangent) Hidden

Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden

FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden

Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden

Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)

Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden

GoToAssist Corporate (HKLM-x32\...\GoToAssist) (Version: 9.1.0.615 - Citrix Online, a division of Citrix Systems, Inc.)

HP Officejet 6500 E710n-z Basic Device Software (HKLM\...\{ADDF4B84-5D28-4EAE-8511-EF808C8BC81C}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

HP Officejet 6500 E710n-z Help (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)

HP Officejet 6500 E710n-z Product Improvement Study (HKLM\...\{D5510D28-D0E4-433E-A0F3-EE3FCECA60D2}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)

I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)

Intel PROSet Wireless (Version: - ) Hidden

Intel PROSet Wireless (x32 Version: - ) Hidden

Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2345 - Intel Corporation)

Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{5A80B0BA-79AF-4B11-B851-CCB9F7977AC0}) (Version: 1.0.1.0489 - Intel Corporation)

Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{451A5ECC-C9A5-4944-B28D-23656C9E03D0}) (Version: 14.1.2000 - Intel Corporation)

Intel(R) WiDi (HKLM-x32\...\{03703CBB-563D-45CE-8B35-CB04CAB258BE}) (Version: 2.1.38.0 - Intel Corporation)

Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )

iTunes (HKLM\...\{1CF5754A-545B-4360-BFDE-2847BC728DFC}) (Version: 11.2.0.115 - Apple Inc.)

Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

Java(TM) 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle)

Java(TM) 6 Update 24 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.240 - Oracle)

Jewel Quest (x32 Version: 2.2.0.95 - WildTangent) Hidden

Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Luxor (x32 Version: 2.2.0.95 - WildTangent) Hidden

Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)

Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard)

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Client Profile (HKLM\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}) (Version: - )

Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden

Nero 10 Movie ThemePack Basic (x32 Version: 10.6.10000.1.0 - Nero AG) Hidden

Nero Blu-ray Player (x32 Version: 12.1.20074 - Nero AG) Hidden

Nero Control Center 10 (x32 Version: 10.6.13000.0.11 - Nero AG) Hidden

Nero ControlCenter 10 Help (CHM) (x32 Version: 10.2.10800 - Nero AG) Hidden

Nero Core Components 10 (x32 Version: 2.0.20000.9.12 - Nero AG) Hidden

Nero Update (x32 Version: 11.0.13600.45.0 - Nero AG) Hidden

Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden

Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden

PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)

Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden

Premium Service Agreement (HKLM-x32\...\{C33AA6D6-F5EC-48F3-AFDC-8141345D473A}) (Version: 2.0.0 - Dell Inc.)

QualxServ Service Agreement (HKLM-x32\...\{903679E8-44C8-4C07-9600-05C92654FC50}) (Version: 2.0.0 - Dell Inc.)

Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.15 - Dell Inc.)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6312 - Realtek Semiconductor Corp.)

Samantha Swift (x32 Version: 2.2.0.95 - WildTangent) Hidden

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden

Skype Toolbars (HKLM-x32\...\{981029E0-7FC9-4CF3-AB39-6F133621921A}) (Version: 1.0.4051 - Skype Technologies S.A.)

Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)

SyncUP (HKLM-x32\...\{40F06490-8C14-43AA-99D3-EEEFDBAC3CFC}) (Version: 1.10.11100.8.106 - Nero AG)

SyncUP (HKLM-x32\...\{D92C9CCE-E5F0-4125-977A-0590F3225B74}) (Version: 10.2.14900 - Nero AG)

TrustedID (HKLM-x32\...\{C16A92EF-017B-4839-9C75-FBADB5A1FA27}) (Version: 5.0 - TrustedID)

TrustedID IDMonitor Identity Protection (HKLM-x32\...\{0E74474A-1CDF-4249-A507-CE8C1DCEC8BC}) (Version: 1.1.0 - TrustedID Inc)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version: - Microsoft)

Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version: - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version: - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)

Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)

Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)

Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version: - Microsoft)

Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden

Wedding Dash - Ready, Aim, Love! (x32 Version: 2.2.0.95 - WildTangent) Hidden

WildTangent Games (HKLM-x32\...\WildTangent dell Master Uninstall) (Version: 1.0.2.5 - WildTangent)

WildTangent Games App (Dell Games) (x32 Version: 4.0.5.2 - WildTangent) Hidden

Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)

Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)

Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

==================== Restore Points =========================

28-06-2014 01:12:35 Windows Update

28-06-2014 01:50:52 Windows Update

28-06-2014 01:52:12 Windows Update

==================== Hosts content: ==========================

2009-07-13 20:34 - 2014-06-27 06:25 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {00301562-BC40-40FC-86D3-E8A5149BAF7B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)

Task: {35D67162-7E19-4CFA-AD8C-5CCC549CC972} - System32\Tasks\TidyNetwork Update => C:\Users\karen\AppData\Local\TidyNetwork\petnupdate.exe

Task: {3C2D6D26-3917-407D-8035-0D6B23BFAFA5} - \UpdaterEX No Task File <==== ATTENTION

Task: {47736E9D-1DC8-4934-A91A-08F04AE99D35} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710n-z => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)

Task: {5A14D820-6B59-4ABD-9E51-FD0D6E657F3F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-23] (Google Inc.)

Task: {7FF2F4A4-4BA6-44EA-AF14-493112F77394} - System32\Tasks\pcreg => C:\Program Files\pcmax\service.exe <==== ATTENTION

Task: {9117C5F8-F3C7-4255-B824-8CAB70C93848} - System32\Tasks\{9A235EA4-6F97-43A0-88BF-92A7CFF6444C} => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe [2014-05-08] (Adobe Systems Incorporated)

Task: {BC6EC4F1-6847-4A52-99B8-A0C5EBCA5CB7} - \Speedial No Task File <==== ATTENTION

Task: {CB21F9EA-83B5-4165-BEBD-974AD45673D4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {E94DA746-F845-4B8F-94E0-363403A62214} - \BrowserSafeguard Update Task No Task File <==== ATTENTION

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8a392ae3dc5.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-06-16 10:37 - 2011-06-16 10:37 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll

2011-09-06 17:08 - 2011-08-18 10:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

2011-09-06 18:04 - 2011-03-26 17:29 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll

2011-06-16 10:37 - 2011-06-16 10:37 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll

2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\karen\Desktop\Dell Purchase ID_ 2002996470252.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\2012 Benefit Elections.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\ABBA.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Amy Olson wants to share _Christmas 2011_ with you (1).eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Amy Olson wants to share _Christmas 2011_ with you.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Another _-.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Drinking Vino with Pepper_-.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\injectable training.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Karen Olsen-Fields (1).eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Karen Olsen-Fields.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Latest contacts for Don and Dana.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Nest boxes.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\NSO Payment Confirmation.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Nursing Faculty positions.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Payroll Report (1).eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Payroll Report (2).eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Payroll Report.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Payroll Tax Cut Extension.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Redtail Pictures (1).eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Redtail Pictures.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Revised Draft.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Re_ Hard choices.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Re_ Pictures.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Re_ Practice sites.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Re_ vickie mannek.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Strawberry Angel Food Dessert Recipe.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Swedish Meat Balls _from Pillsbury Cookbook.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\This recipe sounds good - - found on internet.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Welcome to Dropbox.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Wells Fargo Business Payroll (1).eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Wells Fargo Business Payroll.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\WorldFengur - Member subscription - United States Icelandic Horse Congress.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Your DIRECTV Service Is Temporarily Suspended _Confirmation of Your Request.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Downloads\Your pet portraits - one of two.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Documents\payroll 10-2011.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Documents\Payroll Report.eml:OECustomProperty

AlternateDataStreams: C:\Users\karen\Documents\two of two.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

==================== MSCONFIG/TASK MANAGER disabled items =========

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface

Description: Microsoft Teredo Tunneling Adapter

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: tunnel

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:

==================

Error: (06/27/2014 08:22:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

.

Error: (06/27/2014 08:22:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

.

Error: (06/27/2014 08:22:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )

Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

.

System errors:

=============

Error: (06/27/2014 08:11:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:

%%-2147467259

Error: (06/27/2014 08:11:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Function Discovery Resource Publication service terminated with the following error:

%%-2147467259

Error: (06/27/2014 08:11:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/27/2014 08:10:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Function Discovery Resource Publication service terminated with the following error:

%%-2147467259

Error: (06/27/2014 08:07:24 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/27/2014 08:07:16 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:

%%-2147467259

Error: (06/27/2014 08:07:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Function Discovery Resource Publication service terminated with the following error:

%%-2147467259

Error: (06/27/2014 07:56:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Function Discovery Resource Publication service terminated with the following error:

%%-2147467259

Error: (06/27/2014 07:52:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:

%%-2147467259

Error: (06/27/2014 07:52:05 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Function Discovery Resource Publication service terminated with the following error:

%%-2147467259

Microsoft Office Sessions:

=========================

Error: (06/27/2014 08:22:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )

Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/27/2014 08:22:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )

Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (06/27/2014 08:22:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )

Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

CodeIntegrity Errors:

===================================

Date: 2014-06-27 17:06:48.864

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\KarenO\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 17:06:48.864

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\KarenO\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 17:06:48.849

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\KarenO\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 17:06:48.849

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\KarenO\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 17:06:48.818

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\KarenO\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 17:06:48.818

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\KarenO\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 06:25:06.265

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 06:25:06.187

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 06:24:16.797

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\karen\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-06-27 06:24:16.719

Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\karen\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Percentage of memory in use: 28%

Total physical RAM: 6038.17 MB

Available physical RAM: 4323.93 MB

Total Pagefile: 12074.54 MB

Available Pagefile: 10141.29 MB

Total Virtual: 8192 MB

Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:576.54 GB) (Free:522.74 GB) NTFS

Drive d: (GSP1RMCHPXFRER_EN_DVD) (CDROM) (Total:3.09 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 07F2837E)

Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)

Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=577 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Link to post
Share on other sites

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 7:01:05 AM, on 6/28/2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.17126)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Users\KarenO\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} - (no file)

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (file missing)

O3 - Toolbar: VIPRE Search Guard Toolbar - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - (no file)

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: vipresg - {47BE2E5B-703B-444F-ABD3-05717D2191C6} - (no file)

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - (no file)

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe

O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files (x86)\Citrix\GoToAssist\615\g2aservice.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 11581 bytes

Link to post
Share on other sites

  • 1 month later...
  • 3 weeks later...
  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.