Referred Over From Malware Removal Group - Computer is SLOW

[awriternot]

Hi,

 

I've been working with Maniac to remove some Malware from my PC.  All of a sudden my computer started running unbearably slow.  Not sure what's going on, but something isn't right.  So, Maniac sent me over here. ).

 

In case you need to see my Malware Removal thread: https://forums.malwarebytes.org/index.php?/topic/144578-jeffneed-help-again/?hl=%20awriternot

 

 

 

Not sure what info you need, so I re-ran Farbar:

 

  Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014

Ran by Owner (administrator) on MIKKI-PC on 02-07-2014 01:18:44

Running from C:\Users\Owner\Downloads

Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 11

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 

Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe

(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe

(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Programs\Google\MusicManager\MusicManager.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe

(Acer Group) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE

(Mozy, Inc.) C:\Program Files\MozyHome\mozystat.exe

() C:\Program Files\Box\Box Sync\BoxSyncMonitor.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe

(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

(Mozy, Inc.) C:\Program Files\MozyHome\mozybackup.exe

(Mozy, Inc.) C:\Program Files\MozyHome\mozybackup.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google) C:\Users\Owner\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9644576 2009-12-15] (Realtek Semiconductor)

HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-10] (Synaptics Incorporated)

HKLM\...\Run: [Trend Micro Titanium] => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [1304296 2012-12-18] (Trend Micro Inc.)

HKLM\...\Run: [boxSync] => c:\Program Files\Box\Box Sync\BoxSync.exe [13509056 2014-06-25] (Box, Inc.)

HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [1300792 2014-04-10] (Malwarebytes Corporation)

HKLM-x32\...\Run: [] => [X]

HKLM\...\Policies\Explorer: [HideSCAHealth] 1

HKU\.DEFAULT\...\Policies\Explorer: [HideSCAHealth] 1

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-06-02] (Glarysoft Ltd)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [MusicManager] => C:\Users\Owner\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7631872 2014-05-15] (Google Inc.)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Policies\Explorer: [NoDesktopCleanupWizard] 1

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MozyHome Status.lnk

ShortcutTarget: MozyHome Status.lnk -> C:\Program Files\MozyHome\mozystat.exe (Mozy, Inc.)

SSODL: EldosMountNotificator-cbfs4 - {B8FD60CF-9D65-44C7-BECA-891CB8C4D5AD} - C:\Windows\system32\cbfsMntNtf4.dll (EldoS Corporation)

SSODL-x32: EldosMountNotificator-cbfs4 - {B8FD60CF-9D65-44C7-BECA-891CB8C4D5AD} - C:\Windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation)

ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  StashNotUploaded -> {34DF8AC2-A6BB-4855-B45A-CC1B4D9183E3} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers:  StashPendingChanges -> {6673BC77-4A7B-4299-A130-14312E6B203A} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers:  StashUpToDate -> {04547006-32F5-4635-844B-B8D7FCE47692} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: 0000BoxSyncFileLocked -> {b973655f-b823-3729-abea-e88cb316ddd4} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncNotSynced -> {a316141f-fa66-334c-8d40-a8f4e6d21080} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncProblem -> {a74ad9e8-37eb-31db-9026-8eda10d85860} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncSynced -> {c3de22fc-b307-320f-ba41-27d95101bbf3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: AsusWSShellExt_B -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: AsusWSShellExt_O -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: AsusWSShellExt_U -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: EldosIconOverlay-cbfs4 -> {D2244D6F-F44D-4A19-8A6E-9B7AACCA4E89} => C:\Windows\system32\cbfsMntNtf4.dll (EldoS Corporation)

ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: mozy -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: mozy2 -> {747E722C-CB46-4a9d-BDFE-192AAD5099B1} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: mozy3 -> {EE6F5A00-7898-40f7-AB77-51FF9D6DEB20} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: EldosIconOverlay-cbfs4 -> {D2244D6F-F44D-4A19-8A6E-9B7AACCA4E89} => C:\Windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation)

BootExecute: autocheck autochk *  

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

SearchScopes: HKLM-x32 - DefaultScope value is missing.

BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg.dll (Trend Micro Inc.)

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe64.dll (Trend Micro Inc.)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll (Trend Micro Inc.)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (Trend Micro Inc.)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File

DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://mdajun.mdanderson.org/dana-cached/sc/JuniperSetupClient.cab

Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe64.dll (Trend Micro Inc.)

Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg.dll (Trend Micro Inc.)

Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)

Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (Trend Micro Inc.)

Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll (Trend Micro Inc.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75

 

FireFox:

========

FF ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1212152.dll (Adobe Systems, Inc.)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)

FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Owner\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Owner\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npMozCouponPrinter.dll (Coupons, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

FF Extension: Flash and Video Download - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2014-05-27]

FF Extension: Show my Password - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2014-03-11]

FF HKLM-x32\...\Firefox\Extensions: [{38783831-6098-4faa-A9C9-1EE1E343F4D2}] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension

FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension [2014-05-25]

FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension

FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension [2014-05-25]

 

Chrome: 

=======

CHR HomePage: hxxp://www.yahoo.com/

CHR StartupUrls: "https://www.yahoo.com/"

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-25]

CHR Extension: (eBay) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnadbgmffcofipfljniafanjcafjlbom [2014-02-16]

CHR Extension: (Google Cast) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-06-21]

CHR Extension: (HelloFax: 50 Free Fax Pages) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bocmleclimfnadgmcdgecijlblfcmfnm [2014-02-16]

CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2014-06-21]

CHR Extension: (UNO 3 3D Online) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcdaicmkpfammeidmhpolmlgggokkmh [2014-01-28]

CHR Extension: (Box - 10GB of FREE storage) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2014-02-16]

CHR Extension: (Google Play Music) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-22]

CHR Extension: (UNO HD) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbiocfeggkcomnebamodmbngedojipdp [2014-01-28]

CHR Extension: (Wunderlist - To-do and Task list) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc [2014-02-16]

CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2014-06-17]

CHR Extension: (Save to Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2014-01-21]

CHR Extension: (Pin It Button) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2014-01-21]

CHR Extension: (PDF Mergy) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2014-04-02]

CHR Extension: (Word Game Trainer) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndbgieifalnpdogdmpldfbahjnlamgi [2014-01-28]

CHR Extension: (Crackle) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-02-28]

CHR Extension: (Kindle Cloud Reader) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-02-16]

CHR Extension: (Google Play Music) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-01-21]

CHR Extension: (Word Wizard) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhecaejbhpbamhhgffmialehafkaedk [2014-01-28]

CHR Extension: (PDF to Word Converter App) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclipofobaadknkadkpgggmjkebddjam [2014-02-16]

CHR Extension: (UNO ONLINE!) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jffcjnoimmgcilbfgfhjkldapkdkicii [2014-01-28]

CHR Extension: (Google Play) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-02-16]

CHR Extension: (Pocket) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2014-01-21]

CHR Extension: (Hangouts) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-06-15]

CHR Extension: (OneDrive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2014-01-21]

CHR Extension: (Save to Pocket) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2014-04-02]

CHR Extension: (Google Wallet) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]

CHR Extension: (Wunderlist for Chrome) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcflmmmcfpacggndoaaflkmcoblhnbh [2014-02-16]

CHR Extension: (Picasa) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-01-21]

CHR Extension: (Evernote Web Clipper) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-01-21]

CHR HKCU\...\Chrome\Extension: [bpghhlfbjmmjohhnonhjgpbjdlbnmapf] - C:\Users\Owner\AppData\Local\CRE\bpghhlfbjmmjohhnonhjgpbjdlbnmapf.crx [2014-01-21]

CHR HKLM-x32\...\Chrome\Extension: [bpghhlfbjmmjohhnonhjgpbjdlbnmapf] - C:\Users\Owner\AppData\Local\CRE\bpghhlfbjmmjohhnonhjgpbjdlbnmapf.crx [2014-01-21]

 

==================== Services (Whitelisted) =================

 

S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [28768 2014-04-14] (Box, Inc.)

R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [91248 2012-12-28] (CyberLink Corp.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)

S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [78960 2012-12-28] (CyberLink)

R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296048 2012-12-28] (CyberLink)

S2 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe [285795 2014-01-27] () [File not signed]

R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [347448 2014-04-10] (Malwarebytes Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)

R2 mozybackup; C:\Program Files\MozyHome\mozybackup.exe [54040 2011-08-04] (Mozy, Inc.)

R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]

R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=qb -dt=60000 -ad [X]

S2 pcregservice; C:\Program Files\pcreg\pcreg.exe [X]

 

==================== Drivers (Whitelisted) ====================

 

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-02] (Glarysoft Ltd)

R1 cbfs4; C:\Windows\system32\drivers\cbfs4.sys [387776 2013-10-25] (EldoS Corporation)

S3 DigiartyVirtualCDBus; C:\Windows\System32\drivers\DigiartyVirtualCDBus.sys [276256 2014-05-27] (Digiarty Software, Inc.)

R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63928 2014-04-11] ()

R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-25] (Glarysoft Ltd)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-02] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)

R1 mozyFilter; C:\Windows\System32\DRIVERS\mozy.sys [67808 2013-05-21] (Mozy, Inc.)

R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [83704 2012-09-10] (Cyberlink Corp.)

S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)

R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [107048 2012-09-24] (Trend Micro Inc.)

R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [173504 2012-09-24] (Trend Micro Inc.)

R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [67344 2011-11-23] (Trend Micro Inc.)

R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [77184 2012-09-24] (Trend Micro Inc.)

R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [210704 2011-11-23] (Trend Micro Inc.)

R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2011-11-23] (Trend Micro Inc.)

R3 vpnpbus; C:\Windows\System32\DRIVERS\vpnpbus.sys [18624 2013-10-25] (EldoS Corporation)

R3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-07-19] (Cisco Systems, Inc.)

R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [130320 2012-12-28] (CyberLink Corp.)

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

S3 motmodem; system32\DRIVERS\motmodem.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-07-02 01:17 - 2014-07-02 01:18 - 02083840 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

2014-07-02 01:16 - 2014-07-02 01:16 - 01073664 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe

2014-07-02 01:00 - 2014-07-02 01:00 - 00000000 ___HD () C:\Windows\AxInstSV

2014-06-30 21:19 - 2014-07-02 00:59 - 00000858 _____ () C:\Windows\PFRO.log

2014-06-30 20:53 - 2014-06-30 20:53 - 00000000 ___HD () C:\Users\Owner\.boxsync

2014-06-30 20:17 - 2014-06-30 20:17 - 06326144 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\disk-defrag-setup.exe

2014-06-30 20:10 - 2014-06-30 20:10 - 00037835 _____ () C:\Users\Owner\Desktop\combofix6-30-14.txt

2014-06-30 20:09 - 2014-06-30 20:09 - 00037835 _____ () C:\ComboFix.txt

2014-06-30 19:50 - 2014-06-30 20:09 - 00000000 ____D () C:\ComboFix

2014-06-30 19:38 - 2014-07-02 00:59 - 00000168 _____ () C:\Windows\setupact.log

2014-06-30 19:38 - 2014-06-30 19:38 - 05254432 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-06-30 19:38 - 2014-06-30 19:38 - 00000000 _____ () C:\Windows\setuperr.log

2014-06-30 19:36 - 2014-06-30 19:36 - 00002990 _____ () C:\Windows\System32\Tasks\{D6EDDEA0-CAD6-44C1-BE74-B6E14523E291}

2014-06-30 19:35 - 2014-06-30 19:35 - 00002990 _____ () C:\Windows\System32\Tasks\{1032C08F-28F6-4E57-A3DE-07BDDAC58C2A}

2014-06-30 19:34 - 2014-06-30 19:34 - 00001729 _____ () C:\Users\Owner\Desktop\Trend Micro Titanium Internet Security 2012.lnk

2014-06-30 19:08 - 2014-06-30 19:08 - 00149232 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer.exe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer (1).exe

2014-06-27 00:02 - 2014-06-27 00:02 - 00000633 _____ () C:\Users\Owner\Desktop\JRT.txt

2014-06-26 23:39 - 2014-06-26 23:39 - 04161050 _____ () C:\Users\Owner\Downloads\tdsskiller.zip

2014-06-24 20:15 - 2014-06-30 19:09 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics

2014-06-24 19:14 - 2014-06-24 19:14 - 00204496 _____ (Malwarebytes) C:\Users\Owner\Downloads\startuplite-setup-1.07.exe

2014-06-24 19:10 - 2014-06-24 19:10 - 19623432 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\boost-speed-setup.exe

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MusicBrainz

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Local\cache

2014-06-22 22:00 - 2014-06-22 22:00 - 00001142 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk

2014-06-22 22:00 - 2014-06-22 22:00 - 00000000 ____D () C:\Program Files (x86)\MusicBrainz Picard

2014-06-22 21:58 - 2014-06-22 21:58 - 08790287 _____ (MusicBrainz) C:\Users\Owner\Downloads\picard-setup-1.2.exe

2014-06-22 20:50 - 2014-06-22 20:50 - 01678013 _____ () C:\Users\Owner\Downloads\pc-decrapifier-2.3.1.exe

2014-06-22 16:19 - 2014-06-22 16:19 - 00003744 ____N () C:\bootsqm.dat

2014-06-22 12:47 - 2014-06-22 12:47 - 00000036 _____ () C:\Users\Owner\Desktop\defrag.bat

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner (1).exe

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Desktop\ATF-Cleaner (1).exe

2014-06-22 12:32 - 2014-06-22 12:32 - 02042031 _____ () C:\Users\Owner\Downloads\PUIDGenerator25.mmip

2014-06-22 12:32 - 2014-06-22 12:32 - 00019750 _____ () C:\Users\Owner\Downloads\GenreFinder50.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00087023 _____ () C:\Users\Owner\Downloads\BatchArtFinder42.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00042067 _____ () C:\Users\Owner\Downloads\DiscogsAutoTagWeb_V4.45.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00040134 _____ () C:\Users\Owner\Downloads\DiscogsBatchTagger_V2.15.mmip

2014-06-22 12:01 - 2014-06-22 12:01 - 00061335 _____ () C:\Users\Owner\Downloads\advancedduplicatefindfix382149.mmip

2014-06-21 21:13 - 2014-06-30 20:00 - 00000000 ____D () C:\ProgramData\Temp

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2014-06-21 20:24 - 2014-05-07 14:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2014-06-21 20:23 - 2014-05-07 15:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2014-06-21 20:23 - 2014-05-07 14:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2014-06-21 20:23 - 2014-05-07 14:58 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2014-06-21 20:21 - 2014-06-21 20:23 - 00004416 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log

2014-06-21 17:01 - 2014-06-21 17:01 - 02021104 _____ (Coupons.com Incorporated) C:\Users\Owner\Downloads\CouponPrinterCPS.exe

2014-06-21 16:27 - 2014-06-21 16:27 - 00003058 _____ () C:\Windows\System32\Tasks\ScanToPCActivationApp.exe_{06239D3B-E808-499B-B4BA-93B2E91926CA}

2014-06-21 12:43 - 2014-07-02 00:48 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-06-21 12:43 - 2014-06-21 12:43 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-21 12:28 - 2014-06-21 12:28 - 00009400 _____ () C:\Users\Owner\Downloads\mban 6-21-14.xml

2014-06-21 12:28 - 2014-06-21 12:27 - 00024180 _____ () C:\Users\Owner\Downloads\mban 6-20-14.xml

2014-06-17 00:07 - 2014-06-17 08:46 - 00000000 ___SD () C:\Users\Owner\Box Sync

2014-06-17 00:07 - 2014-06-17 00:07 - 00001551 _____ () C:\Users\Owner\Desktop\Box Sync.lnk

2014-06-16 23:55 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files\Box

2014-06-16 22:21 - 2014-06-16 22:21 - 00448512 _____ (OldTimer Tools) C:\Users\Owner\Downloads\TFC.exe

2014-06-16 22:20 - 2014-06-16 22:20 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner.exe

2014-06-16 21:56 - 2014-06-16 21:56 - 00483809 _____ (Lars Hederer ) C:\Users\Owner\Downloads\ntregopt-setup.exe

2014-06-15 21:50 - 2014-06-15 21:50 - 00918672 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleVoiceAndVideoSetup.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00616149 _____ () C:\Users\Owner\Downloads\tripex_312.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\xml

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\docs

2014-06-15 21:29 - 2014-06-26 23:10 - 00000000 ____D () C:\Program Files (x86)\Morphyre

2014-06-15 21:27 - 2014-06-15 21:28 - 11980075 _____ () C:\Users\Owner\Downloads\morphyre_1v57.exe

2014-06-15 19:36 - 2014-06-15 19:36 - 00000000 ____D () C:\Windows\Hewlett-Packard

2014-06-15 19:35 - 2014-06-15 19:42 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\HpUpdate

2014-06-15 18:10 - 2014-06-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Valassis

2014-06-15 16:07 - 2014-06-15 16:07 - 00001087 _____ () C:\Users\Owner\Desktop\Documents - Shortcut.lnk

2014-06-14 18:20 - 2014-06-14 18:20 - 00000000 ____D () C:\Users\Owner\Documents\Dupes

2014-06-14 18:19 - 2014-06-14 18:53 - 00000000 ____D () C:\Users\Owner\AppData\Local\MindGems

2014-06-14 18:17 - 2014-06-14 18:17 - 02452548 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\AudioDedupe.exe

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast Duplicate File Finder

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\Program Files (x86)\Fast Duplicate File Finder

2014-06-14 17:56 - 2014-06-14 17:56 - 02784293 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\FastDuplicateFileFinder.exe

2014-06-14 17:40 - 2014-06-14 17:40 - 00090534 _____ () C:\Users\Owner\Documents\report.txt

2014-06-14 17:36 - 2014-06-14 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2014-06-14 17:29 - 2014-06-14 17:29 - 40514640 _____ (Google Inc.) C:\Users\Owner\Downloads\Google_Chrome_v35.0.1916.153.exe

2014-06-14 17:29 - 2014-06-14 17:29 - 33972080 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\Internet_Explorer_for_Windows_XP_(64bit)_v8.exe

2014-06-14 17:25 - 2014-06-14 17:26 - 86930272 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Users\Owner\Downloads\Evernote_5.4.0.3698.exe

2014-06-14 17:25 - 2014-06-14 17:26 - 19168944 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(Non_IE)_v14.0.0.125.exe

2014-06-14 17:24 - 2014-06-14 17:26 - 29836648 _____ (Mozilla) C:\Users\Owner\Downloads\Mozilla_Firefox_v30.0.exe

2014-06-14 17:24 - 2014-06-14 17:26 - 18583216 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(IE)_v14.0.0.125.exe

2014-06-14 17:24 - 2014-06-14 17:25 - 15196000 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_v4.1.2.1706.exe

2014-06-14 16:53 - 2014-06-14 16:53 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled

2014-06-14 16:11 - 2014-07-02 01:00 - 00000386 _____ () C:\BackupLoader.ini

2014-06-14 16:11 - 2014-06-14 16:11 - 00001051 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk

2014-06-14 16:11 - 2014-06-02 20:26 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe

2014-06-14 16:11 - 2014-06-02 20:05 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys

2014-06-14 16:07 - 2014-06-14 16:08 - 13566912 _____ () C:\Users\Owner\Downloads\gup5setup.exe

2014-06-14 15:57 - 2014-05-08 04:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2014-06-14 15:57 - 2014-05-08 04:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll

2014-06-14 15:57 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2014-06-14 15:57 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2014-06-14 15:57 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2014-06-14 15:57 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2014-06-14 15:57 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2014-06-14 15:57 - 2014-03-26 09:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2014-06-14 15:57 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2014-06-14 15:57 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2014-06-14 15:57 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2014-06-14 15:57 - 2014-03-26 09:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2014-06-14 15:57 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll

2014-06-14 15:57 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2014-06-14 15:56 - 2014-05-30 05:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-06-14 15:56 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-06-14 15:56 - 2014-05-30 05:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2014-06-14 15:56 - 2014-05-30 04:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-06-14 15:56 - 2014-05-30 04:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2014-06-14 15:56 - 2014-05-30 04:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-06-14 15:56 - 2014-05-30 04:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2014-06-14 15:56 - 2014-05-30 04:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-06-14 15:56 - 2014-05-30 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-06-14 15:56 - 2014-05-30 04:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-06-14 15:56 - 2014-05-30 04:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2014-06-14 15:56 - 2014-05-30 04:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2014-06-14 15:56 - 2014-05-30 04:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2014-06-14 15:56 - 2014-05-30 04:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-06-14 15:56 - 2014-05-30 04:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2014-06-14 15:56 - 2014-05-30 04:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-06-14 15:56 - 2014-05-30 04:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2014-06-14 15:56 - 2014-05-30 04:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-06-14 15:56 - 2014-05-30 03:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-06-14 15:56 - 2014-05-30 03:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-06-14 15:56 - 2014-05-30 03:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-06-14 15:56 - 2014-05-30 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2014-06-14 15:56 - 2014-05-30 03:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2014-06-14 15:56 - 2014-05-30 03:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-06-14 15:56 - 2014-05-30 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2014-06-14 15:56 - 2014-05-30 03:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-06-14 15:56 - 2014-05-30 03:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-06-14 15:56 - 2014-05-30 03:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-06-14 15:56 - 2014-05-30 03:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-06-14 15:56 - 2014-05-30 03:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-06-14 15:56 - 2014-05-30 03:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-06-14 15:56 - 2014-05-30 03:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2014-06-14 15:56 - 2014-05-30 03:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2014-06-14 15:56 - 2014-05-30 03:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2014-06-14 15:56 - 2014-05-30 03:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2014-06-14 15:56 - 2014-05-30 03:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2014-06-14 15:56 - 2014-05-30 03:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2014-06-14 15:56 - 2014-05-30 03:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-06-14 15:56 - 2014-05-30 03:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2014-06-14 15:56 - 2014-05-30 03:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2014-06-14 15:56 - 2014-05-30 02:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-06-14 15:56 - 2014-05-30 02:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-06-14 15:56 - 2014-05-30 02:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-06-14 15:56 - 2014-05-30 02:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2014-06-14 15:56 - 2014-05-30 02:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2014-06-14 15:56 - 2014-05-30 02:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-06-14 15:56 - 2014-05-30 02:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-06-14 15:56 - 2014-05-30 02:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-06-14 15:56 - 2014-05-30 02:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-06-14 15:56 - 2014-05-30 02:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-06-14 15:56 - 2014-05-30 02:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2014-06-14 15:56 - 2014-05-30 02:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2014-06-14 15:51 - 2014-06-08 04:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-06-14 15:50 - 2014-06-08 04:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-06-10 01:40 - 2014-06-10 01:40 - 00127173 _____ () C:\Users\Owner\Downloads\searchmyfiles-x64 (1).zip

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki.xlsx

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki (1).xlsx

2014-06-09 22:44 - 2014-06-09 22:44 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe

2014-06-09 22:35 - 2014-06-09 22:35 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe

2014-06-09 22:20 - 2005-10-20 12:03 - 00140288 _____ () C:\Users\Owner\Desktop\NTREGOPT.EXE

2014-06-09 22:12 - 2014-06-09 22:13 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (2).zip

2014-06-09 21:34 - 2014-06-09 21:34 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (1).zip

2014-06-09 21:20 - 2014-06-09 21:20 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt.zip

2014-06-05 22:58 - 2014-06-05 22:58 - 00000000 ____D () C:\Users\Owner\PresentationTube_Files_3

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PresentationTube

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\Program Files (x86)\PresentationTube

2014-06-05 22:43 - 2014-06-05 22:45 - 17710766 _____ () C:\Users\Owner\Downloads\PresentationTubeRecorderPro30.zip

2014-06-02 21:27 - 2014-06-14 17:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

 

==================== One Month Modified Files and Folders =======

 

2014-07-02 01:18 - 2014-07-02 01:17 - 02083840 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

2014-07-02 01:18 - 2014-05-28 18:39 - 00029125 _____ () C:\Users\Owner\Downloads\FRST.txt

2014-07-02 01:18 - 2014-04-20 22:06 - 00000000 ____D () C:\FRST

2014-07-02 01:16 - 2014-07-02 01:16 - 01073664 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe

2014-07-02 01:06 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-07-02 01:06 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-07-02 01:04 - 2014-05-28 20:36 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-07-02 01:02 - 2013-09-22 18:34 - 00000000 ____D () C:\Users\Owner\AppData\Local\Box Sync

2014-07-02 01:02 - 2013-08-14 22:01 - 00004974 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MIKKI-PC-Owner Mikki-PC

2014-07-02 01:00 - 2014-07-02 01:00 - 00000000 ___HD () C:\Windows\AxInstSV

2014-07-02 01:00 - 2014-06-14 16:11 - 00000386 _____ () C:\BackupLoader.ini

2014-07-02 01:00 - 2014-05-25 01:37 - 00000332 _____ () C:\Windows\Tasks\GlaryInitialize 5.job

2014-07-02 01:00 - 2010-11-07 19:02 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-07-02 01:00 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-07-02 00:59 - 2014-06-30 21:19 - 00000858 _____ () C:\Windows\PFRO.log

2014-07-02 00:59 - 2014-06-30 19:38 - 00000168 _____ () C:\Windows\setupact.log

2014-07-02 00:58 - 2013-02-28 13:19 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-07-02 00:58 - 2010-07-31 12:39 - 01434064 _____ () C:\Windows\WindowsUpdate.log

2014-07-02 00:48 - 2014-06-21 12:43 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-07-02 00:35 - 2010-11-07 18:48 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000UA.job

2014-07-01 22:40 - 2011-08-04 15:15 - 00004668 _____ () C:\Windows\mozy.flt

2014-07-01 22:40 - 2011-08-04 15:15 - 00003854 _____ () C:\Windows\mozy.blk

2014-07-01 22:03 - 2013-09-22 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Box Sync

2014-07-01 21:52 - 2010-11-07 18:48 - 00000856 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000Core.job

2014-06-30 20:53 - 2014-06-30 20:53 - 00000000 ___HD () C:\Users\Owner\.boxsync

2014-06-30 20:53 - 2010-10-15 15:01 - 00000000 ____D () C:\Users\Owner

2014-06-30 20:17 - 2014-06-30 20:17 - 06326144 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\disk-defrag-setup.exe

2014-06-30 20:10 - 2014-06-30 20:10 - 00037835 _____ () C:\Users\Owner\Desktop\combofix6-30-14.txt

2014-06-30 20:09 - 2014-06-30 20:09 - 00037835 _____ () C:\ComboFix.txt

2014-06-30 20:09 - 2014-06-30 19:50 - 00000000 ____D () C:\ComboFix

2014-06-30 20:09 - 2014-02-06 21:31 - 00000000 ____D () C:\Qoobox

2014-06-30 20:05 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini

2014-06-30 20:00 - 2014-06-21 21:13 - 00000000 ____D () C:\ProgramData\Temp

2014-06-30 19:49 - 2014-05-08 21:15 - 05212874 ____R (Swearware) C:\Users\Owner\Desktop\ComboFix.exe

2014-06-30 19:38 - 2014-06-30 19:38 - 05254432 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-06-30 19:38 - 2014-06-30 19:38 - 00000000 _____ () C:\Windows\setuperr.log

2014-06-30 19:36 - 2014-06-30 19:36 - 00002990 _____ () C:\Windows\System32\Tasks\{D6EDDEA0-CAD6-44C1-BE74-B6E14523E291}

2014-06-30 19:35 - 2014-06-30 19:35 - 00002990 _____ () C:\Windows\System32\Tasks\{1032C08F-28F6-4E57-A3DE-07BDDAC58C2A}

2014-06-30 19:34 - 2014-06-30 19:34 - 00001729 _____ () C:\Users\Owner\Desktop\Trend Micro Titanium Internet Security 2012.lnk

2014-06-30 19:09 - 2014-06-24 20:15 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics

2014-06-30 19:09 - 2013-04-08 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics

2014-06-30 19:09 - 2013-04-08 16:25 - 00000000 ____D () C:\Program Files (x86)\Auslogics

2014-06-30 19:08 - 2014-06-30 19:08 - 00149232 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT

2014-06-30 17:27 - 2011-12-14 19:18 - 00000000 ____D () C:\Windows\SysWOW64\Adobe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer.exe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer (1).exe

2014-06-27 00:02 - 2014-06-27 00:02 - 00000633 _____ () C:\Users\Owner\Desktop\JRT.txt

2014-06-26 23:39 - 2014-06-26 23:39 - 04161050 _____ () C:\Users\Owner\Downloads\tdsskiller.zip

2014-06-26 23:36 - 2012-01-07 14:39 - 00000000 ____D () C:\Program Files\Common Files\Adobe

2014-06-26 23:36 - 2010-07-22 05:40 - 00000000 ____D () C:\ProgramData\Adobe

2014-06-26 23:32 - 2010-07-22 05:40 - 00000000 ____D () C:\Program Files (x86)\Adobe

2014-06-26 23:27 - 2012-01-07 14:40 - 00000000 ____D () C:\Program Files\Adobe

2014-06-26 23:10 - 2014-06-15 21:29 - 00000000 ____D () C:\Program Files (x86)\Morphyre

2014-06-24 19:14 - 2014-06-24 19:14 - 00204496 _____ (Malwarebytes) C:\Users\Owner\Downloads\startuplite-setup-1.07.exe

2014-06-24 19:13 - 2014-05-26 19:55 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MediaMonkey

2014-06-24 19:10 - 2014-06-24 19:10 - 19623432 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\boost-speed-setup.exe

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MusicBrainz

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Local\cache

2014-06-22 22:00 - 2014-06-22 22:00 - 00001142 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk

2014-06-22 22:00 - 2014-06-22 22:00 - 00000000 ____D () C:\Program Files (x86)\MusicBrainz Picard

2014-06-22 21:58 - 2014-06-22 21:58 - 08790287 _____ (MusicBrainz) C:\Users\Owner\Downloads\picard-setup-1.2.exe

2014-06-22 21:05 - 2014-01-28 02:07 - 00000000 ____D () C:\Program Files (x86)\Evernote

2014-06-22 21:04 - 2012-08-08 05:51 - 00000000 ____D () C:\Program Files (x86)\Motorola Mobility

2014-06-22 21:03 - 2012-02-13 22:02 - 00000000 ____D () C:\ProgramData\Skype

2014-06-22 21:01 - 2012-06-20 06:00 - 00000000 ____D () C:\Program Files (x86)\Shutterfly

2014-06-22 21:00 - 2010-07-22 05:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2014-06-22 20:50 - 2014-06-22 20:50 - 01678013 _____ () C:\Users\Owner\Downloads\pc-decrapifier-2.3.1.exe

2014-06-22 20:41 - 2013-06-24 05:34 - 00000000 ____D () C:\Temp

2014-06-22 16:19 - 2014-06-22 16:19 - 00003744 ____N () C:\bootsqm.dat

2014-06-22 12:47 - 2014-06-22 12:47 - 00000036 _____ () C:\Users\Owner\Desktop\defrag.bat

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner (1).exe

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Desktop\ATF-Cleaner (1).exe

2014-06-22 12:32 - 2014-06-22 12:32 - 02042031 _____ () C:\Users\Owner\Downloads\PUIDGenerator25.mmip

2014-06-22 12:32 - 2014-06-22 12:32 - 00019750 _____ () C:\Users\Owner\Downloads\GenreFinder50.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00087023 _____ () C:\Users\Owner\Downloads\BatchArtFinder42.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00042067 _____ () C:\Users\Owner\Downloads\DiscogsAutoTagWeb_V4.45.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00040134 _____ () C:\Users\Owner\Downloads\DiscogsBatchTagger_V2.15.mmip

2014-06-22 12:01 - 2014-06-22 12:01 - 00061335 _____ () C:\Users\Owner\Downloads\advancedduplicatefindfix382149.mmip

2014-06-21 21:16 - 2011-08-05 18:07 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozyHome

2014-06-21 21:16 - 2011-08-05 18:07 - 00000000 ____D () C:\Program Files\MozyHome

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2014-06-21 20:23 - 2014-06-21 20:21 - 00004416 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log

2014-06-21 20:23 - 2013-05-26 21:14 - 00000000 ____D () C:\Program Files (x86)\Java

2014-06-21 17:01 - 2014-06-21 17:01 - 02021104 _____ (Coupons.com Incorporated) C:\Users\Owner\Downloads\CouponPrinterCPS.exe

2014-06-21 16:27 - 2014-06-21 16:27 - 00003058 _____ () C:\Windows\System32\Tasks\ScanToPCActivationApp.exe_{06239D3B-E808-499B-B4BA-93B2E91926CA}

2014-06-21 13:17 - 2013-06-19 18:23 - 00000000 ____D () C:\Program Files\Microsoft Office 15

2014-06-21 12:52 - 2013-01-09 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive

2014-06-21 12:43 - 2014-06-21 12:43 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-21 12:43 - 2010-11-07 19:02 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-06-21 12:31 - 2009-07-13 23:45 - 00000000 ____D () C:\Windows\Setup

2014-06-21 12:28 - 2014-06-21 12:28 - 00009400 _____ () C:\Users\Owner\Downloads\mban 6-21-14.xml

2014-06-21 12:27 - 2014-06-21 12:28 - 00024180 _____ () C:\Users\Owner\Downloads\mban 6-20-14.xml

2014-06-21 12:17 - 2014-01-28 02:05 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

2014-06-21 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF

2014-06-17 08:46 - 2014-06-17 00:07 - 00000000 ___SD () C:\Users\Owner\Box Sync

2014-06-17 00:17 - 2013-12-23 18:03 - 00000000 ____D () C:\Users\Owner\Documents\Box Files Backup (not synced)

2014-06-17 00:07 - 2014-06-17 00:07 - 00001551 _____ () C:\Users\Owner\Desktop\Box Sync.lnk

2014-06-16 23:55 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files\Box

2014-06-16 22:21 - 2014-06-16 22:21 - 00448512 _____ (OldTimer Tools) C:\Users\Owner\Downloads\TFC.exe

2014-06-16 22:20 - 2014-06-16 22:20 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner.exe

2014-06-16 22:05 - 2010-10-15 15:01 - 07077888 _____ () C:\Users\Owner\NTUSER.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 86769664 _____ () C:\Windows\system32\config\SOFTWARE.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 23855104 _____ () C:\Windows\system32\config\SYSTEM.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00335872 _____ () C:\Windows\system32\config\DEFAULT.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00057344 _____ () C:\Windows\system32\config\SAM.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00028672 _____ () C:\Windows\system32\config\SECURITY.bak

2014-06-16 21:56 - 2014-06-16 21:56 - 00483809 _____ (Lars Hederer ) C:\Users\Owner\Downloads\ntregopt-setup.exe

2014-06-16 21:25 - 2010-11-07 18:48 - 00003882 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000UA

2014-06-16 21:25 - 2010-11-07 18:48 - 00003486 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000Core

2014-06-16 12:39 - 2014-03-12 11:03 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\.technic

2014-06-15 21:50 - 2014-06-15 21:50 - 00918672 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleVoiceAndVideoSetup.exe

2014-06-15 21:50 - 2013-11-20 08:17 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Mozilla

2014-06-15 21:50 - 2010-11-07 18:40 - 00000000 ____D () C:\Users\Owner\AppData\Local\Google

2014-06-15 21:31 - 2014-06-15 21:31 - 00616149 _____ () C:\Users\Owner\Downloads\tripex_312.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\xml

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\docs

2014-06-15 21:29 - 2014-03-08 14:20 - 00000000 ____D () C:\Program Files (x86)\iTunes

2014-06-15 21:28 - 2014-06-15 21:27 - 11980075 _____ () C:\Users\Owner\Downloads\morphyre_1v57.exe

2014-06-15 20:14 - 2013-11-20 08:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-06-15 19:42 - 2014-06-15 19:35 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\HpUpdate

2014-06-15 19:37 - 2012-12-02 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2014-06-15 19:37 - 2012-12-02 17:43 - 00000000 ____D () C:\Program Files (x86)\HP

2014-06-15 19:36 - 2014-06-15 19:36 - 00000000 ____D () C:\Windows\Hewlett-Packard

2014-06-15 18:10 - 2014-06-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Valassis

2014-06-15 18:02 - 2012-02-01 06:41 - 00000000 ____D () C:\Program Files (x86)\Amazon

2014-06-15 17:03 - 2014-05-25 01:36 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5

2014-06-15 16:56 - 2013-04-17 02:22 - 00000000 ____D () C:\Users\Owner\4-15-13_Maxx files

2014-06-15 16:49 - 2012-08-20 06:35 - 00000000 ___RD () C:\Users\Owner\Grad

2014-06-15 16:07 - 2014-06-15 16:07 - 00001087 _____ () C:\Users\Owner\Desktop\Documents - Shortcut.lnk

2014-06-15 16:06 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

2014-06-15 00:13 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache

2014-06-14 18:54 - 2010-07-22 05:34 - 00000000 ____D () C:\Program Files (x86)\Google

2014-06-14 18:53 - 2014-06-14 18:19 - 00000000 ____D () C:\Users\Owner\AppData\Local\MindGems

2014-06-14 18:20 - 2014-06-14 18:20 - 00000000 ____D () C:\Users\Owner\Documents\Dupes

2014-06-14 18:17 - 2014-06-14 18:17 - 02452548 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\AudioDedupe.exe

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast Duplicate File Finder

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\Program Files (x86)\Fast Duplicate File Finder

2014-06-14 17:56 - 2014-06-14 17:56 - 02784293 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\FastDuplicateFileFinder.exe

2014-06-14 17:40 - 2014-06-14 17:40 - 00090534 _____ () C:\Users\Owner\Documents\report.txt

2014-06-14 17:36 - 2014-06-14 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2014-06-14 17:29 - 2014-06-14 17:29 - 40514640 _____ (Google Inc.) C:\Users\Owner\Downloads\Google_Chrome_v35.0.1916.153.exe

2014-06-14 17:29 - 2014-06-14 17:29 - 33972080 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\Internet_Explorer_for_Windows_XP_(64bit)_v8.exe

2014-06-14 17:28 - 2013-02-28 13:19 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2014-06-14 17:28 - 2013-02-28 13:19 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater

2014-06-14 17:28 - 2012-02-21 08:41 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2014-06-14 17:27 - 2014-06-02 21:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-06-14 17:27 - 2014-05-26 19:55 - 00001014 _____ () C:\Users\Public\Desktop\MediaMonkey.lnk

2014-06-14 17:27 - 2014-05-26 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey

2014-06-14 17:27 - 2014-05-26 19:55 - 00000000 ____D () C:\Program Files (x86)\MediaMonkey

2014-06-14 17:27 - 2013-11-20 08:17 - 00001130 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2014-06-14 17:26 - 2014-06-14 17:25 - 86930272 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Users\Owner\Downloads\Evernote_5.4.0.3698.exe

2014-06-14 17:26 - 2014-06-14 17:25 - 19168944 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(Non_IE)_v14.0.0.125.exe

2014-06-14 17:26 - 2014-06-14 17:24 - 29836648 _____ (Mozilla) C:\Users\Owner\Downloads\Mozilla_Firefox_v30.0.exe

2014-06-14 17:26 - 2014-06-14 17:24 - 18583216 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(IE)_v14.0.0.125.exe

2014-06-14 17:25 - 2014-06-14 17:24 - 15196000 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_v4.1.2.1706.exe

2014-06-14 17:10 - 2013-04-08 16:36 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Glarysoft

2014-06-14 16:53 - 2014-06-14 16:53 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled

2014-06-14 16:41 - 2012-10-04 20:36 - 00000000 ____D () C:\Users\Owner\AppData\Local\Backup Assistant Plus

2014-06-14 16:25 - 2013-08-01 20:20 - 00000000 ____D () C:\Windows\system32\MRT

2014-06-14 16:15 - 2010-10-15 16:40 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-06-14 16:11 - 2014-06-14 16:11 - 00001051 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk

2014-06-14 16:11 - 2014-05-25 01:37 - 00002972 _____ () C:\Windows\System32\Tasks\GU5SkipUAC

2014-06-14 16:11 - 2014-05-25 01:37 - 00002628 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5

2014-06-14 16:11 - 2014-05-25 01:37 - 00001063 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk

2014-06-14 16:08 - 2014-06-14 16:07 - 13566912 _____ () C:\Users\Owner\Downloads\gup5setup.exe

2014-06-14 16:08 - 2014-05-05 20:40 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-06-12 11:29 - 2014-05-07 22:13 - 00000000 ____D () C:\Users\Owner\Documents\My Box Files(mroneal@mdanderson.org)

2014-06-10 03:14 - 2013-10-20 12:06 - 00000000 ____D () C:\Users\Owner\Documents\Finance

2014-06-10 01:40 - 2014-06-10 01:40 - 00127173 _____ () C:\Users\Owner\Downloads\searchmyfiles-x64 (1).zip

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki.xlsx

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki (1).xlsx

2014-06-09 22:44 - 2014-06-09 22:44 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe

2014-06-09 22:35 - 2014-06-09 22:35 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe

2014-06-09 22:33 - 2014-03-22 21:53 - 02080768 _____ (Farbar) C:\Users\Owner\Desktop\FRST64.exe

2014-06-09 22:13 - 2014-06-09 22:12 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (2).zip

2014-06-09 21:34 - 2014-06-09 21:34 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (1).zip

2014-06-09 21:20 - 2014-06-09 21:20 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt.zip

2014-06-08 04:13 - 2014-06-14 15:51 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-06-08 04:08 - 2014-06-14 15:50 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-06-05 22:58 - 2014-06-05 22:58 - 00000000 ____D () C:\Users\Owner\PresentationTube_Files_3

2014-06-05 22:58 - 2010-10-15 15:02 - 00000000 ____D () C:\Users\Owner\AppData\Local\VirtualStore

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PresentationTube

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\Program Files (x86)\PresentationTube

2014-06-05 22:50 - 2013-06-19 20:23 - 00000000 ___RD () C:\Users\Owner\SkyDrive

2014-06-05 22:45 - 2014-06-05 22:43 - 17710766 _____ () C:\Users\Owner\Downloads\PresentationTubeRecorderPro30.zip

2014-06-02 20:27 - 2014-01-26 15:59 - 00000685 _____ () C:\Users\Owner\Desktop\SkyDrive.lnk

2014-06-02 20:26 - 2014-06-14 16:11 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe

2014-06-02 20:05 - 2014-06-14 16:11 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys

 

Files to move or delete:

====================

C:\Users\Owner\cc_20130408_145109.reg

C:\Users\Owner\setup.exe

 

 

Some content of TEMP:

====================

C:\Users\Owner\AppData\Local\Temp\log4net.dll

C:\Users\Owner\AppData\Local\Temp\SyncRestarter.exe

C:\Users\Owner\AppData\Local\Temp\sync_upgrader.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2014-06-28 00:40

 

==================== End Of Log ============================

 

Help?

 

Thanks so much!

[AdvancedSetup]

Please go into Control Panel, Add/Remove and uninstall ALL versions of Java and then run the following.
 
Please download JavaRa-1.16 and save it to your computer.

• Double click to open the zip file and then select all and choose Copy.
• Create a new folder on your Desktop named RemoveJava and paste the files into this new folder.
• Quit all browsers and other running applications.
• Right-click on JavaRa.exe in RemoveJava folder and choose Run as administrator to start the program.
• From the drop-down menu, choose English and click on Select.
• JavaRa will open; click on Remove Older Versions to remove the older versions of Java installed on your computer.
• Click Yes when prompted. When JavaRa is done, a notice will appear that a logfile has been produced. Click OK.
• A logfile will pop up. Please save it to a convenient location and post it in your next reply.

 

NEXT:

 

Please Run TFC by OldTimer to clear temporary files:

• Download TFC from here and save it to your desktop.
• http://oldtimer.geekstogo.com/TFC.exe
• Close any open programs and Internet browsers.
• Double click TFC.exe to run it on XP (for Vista and Windows 7 right click and choose "Run as administrator") and once it opens click on the Start button on the lower left of the program to allow it to begin cleaning.
• Please be patient as clearing out temp files may take a while.
• Once it completes you may be prompted to restart your computer, please do so.
• Once it's finished you may delete TFC.exe from your desktop or save it for later use for the cleaning of temporary files.
• RESTART THE COMPUTER NOW!!

 

 

NEXT:

 

Restart the computer and run a new FRST scan. Make sure you place a check mark in the ADDITIONS.TXT check box and post back both new logs as attachments.

 

[awriternot]

Hi Ron,

 

Thank you so much for helping.  I did as instructed above and here are the logs:

 

Java:

 

JavaRa 1.16 Removal Log.

 

Report follows after line.

 

------------------------------------

 

The JavaRa removal process was started on Thu Jul 03 22:03:03 2014

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0001-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0002-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0003-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0004-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0005-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0006-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0007-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0008-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0009-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0010-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0011-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0012-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0013-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0014-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0015-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0016-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0017-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0018-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0019-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0020-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0021-ABCDEFFDCBA}. The error returned was 124.

 

There was an error removing C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0022-ABCDEFFDCBA}. The error returned was 124.

 

------------------------------------

 

Finished reporting.

 

 

FRST:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-07-2014

Ran by Owner (administrator) on MIKKI-PC on 03-07-2014 22:18:21

Running from C:\Users\Owner\Desktop

Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 11

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 

Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe

(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe

(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Programs\Google\MusicManager\MusicManager.exe

(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Microsoft Corporation) C:\Windows\System32\msiexec.exe

(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Acer Group) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE

(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Mozy, Inc.) C:\Program Files\MozyHome\mozystat.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google) C:\Users\Owner\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

() C:\Program Files\Box\Box Sync\BoxSyncMonitor.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9644576 2009-12-15] (Realtek Semiconductor)

HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-10] (Synaptics Incorporated)

HKLM\...\Run: [Trend Micro Titanium] => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [1304296 2012-12-18] (Trend Micro Inc.)

HKLM\...\Run: [boxSync] => c:\Program Files\Box\Box Sync\BoxSync.exe [13509056 2014-06-25] (Box, Inc.)

HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [1300792 2014-04-10] (Malwarebytes Corporation)

HKLM-x32\...\Run: [] => [X]

HKLM\...\Policies\Explorer: [HideSCAHealth] 1

HKU\.DEFAULT\...\Policies\Explorer: [HideSCAHealth] 1

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-06-02] (Glarysoft Ltd)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [MusicManager] => C:\Users\Owner\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7631872 2014-05-15] (Google Inc.)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Policies\Explorer: [NoDesktopCleanupWizard] 1

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MozyHome Status.lnk

ShortcutTarget: MozyHome Status.lnk -> C:\Program Files\MozyHome\mozystat.exe (Mozy, Inc.)

SSODL: EldosMountNotificator-cbfs4 - {B8FD60CF-9D65-44C7-BECA-891CB8C4D5AD} - C:\Windows\system32\cbfsMntNtf4.dll (EldoS Corporation)

SSODL-x32: EldosMountNotificator-cbfs4 - {B8FD60CF-9D65-44C7-BECA-891CB8C4D5AD} - C:\Windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation)

ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  StashNotUploaded -> {34DF8AC2-A6BB-4855-B45A-CC1B4D9183E3} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers:  StashPendingChanges -> {6673BC77-4A7B-4299-A130-14312E6B203A} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers:  StashUpToDate -> {04547006-32F5-4635-844B-B8D7FCE47692} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: 0000BoxSyncFileLocked -> {b973655f-b823-3729-abea-e88cb316ddd4} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncNotSynced -> {a316141f-fa66-334c-8d40-a8f4e6d21080} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncProblem -> {a74ad9e8-37eb-31db-9026-8eda10d85860} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncSynced -> {c3de22fc-b307-320f-ba41-27d95101bbf3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: AsusWSShellExt_B -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: AsusWSShellExt_O -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: AsusWSShellExt_U -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: EldosIconOverlay-cbfs4 -> {D2244D6F-F44D-4A19-8A6E-9B7AACCA4E89} => C:\Windows\system32\cbfsMntNtf4.dll (EldoS Corporation)

ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: mozy -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: mozy2 -> {747E722C-CB46-4a9d-BDFE-192AAD5099B1} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: mozy3 -> {EE6F5A00-7898-40f7-AB77-51FF9D6DEB20} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: EldosIconOverlay-cbfs4 -> {D2244D6F-F44D-4A19-8A6E-9B7AACCA4E89} => C:\Windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation)

BootExecute: autocheck autochk *  

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

SearchScopes: HKLM-x32 - DefaultScope value is missing.

BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg.dll (Trend Micro Inc.)

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe64.dll (Trend Micro Inc.)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll (Trend Micro Inc.)

BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (Trend Micro Inc.)

Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File

DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://mdajun.mdanderson.org/dana-cached/sc/JuniperSetupClient.cab

Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe64.dll (Trend Micro Inc.)

Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg.dll (Trend Micro Inc.)

Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)

Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (Trend Micro Inc.)

Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll (Trend Micro Inc.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75

 

FireFox:

========

FF ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1212152.dll (Adobe Systems, Inc.)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)

FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Owner\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Owner\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npMozCouponPrinter.dll (Coupons, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

FF Extension: Flash and Video Download - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2014-05-27]

FF Extension: Show my Password - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2014-03-11]

FF HKLM-x32\...\Firefox\Extensions: [{38783831-6098-4faa-A9C9-1EE1E343F4D2}] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension

FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension [2014-05-25]

FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension

FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension [2014-05-25]

 

Chrome: 

=======

CHR HomePage: hxxp://www.yahoo.com/

CHR StartupUrls: "https://www.yahoo.com/"

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-25]

CHR Extension: (eBay) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnadbgmffcofipfljniafanjcafjlbom [2014-02-16]

CHR Extension: (Google Cast) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-06-21]

CHR Extension: (HelloFax: 50 Free Fax Pages) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bocmleclimfnadgmcdgecijlblfcmfnm [2014-02-16]

CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2014-06-21]

CHR Extension: (UNO 3 3D Online) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcdaicmkpfammeidmhpolmlgggokkmh [2014-01-28]

CHR Extension: (Box - 10GB of FREE storage) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2014-02-16]

CHR Extension: (Google Play Music) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-22]

CHR Extension: (UNO HD) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbiocfeggkcomnebamodmbngedojipdp [2014-01-28]

CHR Extension: (Wunderlist - To-do and Task list) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc [2014-02-16]

CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2014-06-17]

CHR Extension: (Save to Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2014-01-21]

CHR Extension: (Pin It Button) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2014-01-21]

CHR Extension: (PDF Mergy) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2014-04-02]

CHR Extension: (Word Game Trainer) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndbgieifalnpdogdmpldfbahjnlamgi [2014-01-28]

CHR Extension: (Crackle) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-02-28]

CHR Extension: (Kindle Cloud Reader) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-02-16]

CHR Extension: (Google Play Music) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-01-21]

CHR Extension: (Word Wizard) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhecaejbhpbamhhgffmialehafkaedk [2014-01-28]

CHR Extension: (PDF to Word Converter App) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclipofobaadknkadkpgggmjkebddjam [2014-02-16]

CHR Extension: (UNO ONLINE!) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jffcjnoimmgcilbfgfhjkldapkdkicii [2014-01-28]

CHR Extension: (Google Play) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-02-16]

CHR Extension: (Pocket) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2014-01-21]

CHR Extension: (Hangouts) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-06-15]

CHR Extension: (OneDrive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2014-01-21]

CHR Extension: (Save to Pocket) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2014-04-02]

CHR Extension: (Google Wallet) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]

CHR Extension: (Wunderlist for Chrome) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcflmmmcfpacggndoaaflkmcoblhnbh [2014-02-16]

CHR Extension: (Picasa) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-01-21]

CHR Extension: (Evernote Web Clipper) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-01-21]

CHR HKCU\...\Chrome\Extension: [bpghhlfbjmmjohhnonhjgpbjdlbnmapf] - C:\Users\Owner\AppData\Local\CRE\bpghhlfbjmmjohhnonhjgpbjdlbnmapf.crx [2014-01-21]

CHR HKLM-x32\...\Chrome\Extension: [bpghhlfbjmmjohhnonhjgpbjdlbnmapf] - C:\Users\Owner\AppData\Local\CRE\bpghhlfbjmmjohhnonhjgpbjdlbnmapf.crx [2014-01-21]

 

==================== Services (Whitelisted) =================

 

S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [28768 2014-04-14] (Box, Inc.)

S2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [91248 2012-12-28] (CyberLink Corp.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)

S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [78960 2012-12-28] (CyberLink)

R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296048 2012-12-28] (CyberLink)

S2 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe [285795 2014-01-27] () [File not signed]

R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [347448 2014-04-10] (Malwarebytes Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)

S2 mozybackup; C:\Program Files\MozyHome\mozybackup.exe [54040 2011-08-04] (Mozy, Inc.)

R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]

R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=qb -dt=60000 -ad [X]

S2 pcregservice; C:\Program Files\pcreg\pcreg.exe [X]

 

==================== Drivers (Whitelisted) ====================

 

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-02] (Glarysoft Ltd)

R1 cbfs4; C:\Windows\system32\drivers\cbfs4.sys [387776 2013-10-25] (EldoS Corporation)

S3 DigiartyVirtualCDBus; C:\Windows\System32\drivers\DigiartyVirtualCDBus.sys [276256 2014-05-27] (Digiarty Software, Inc.)

R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63928 2014-04-11] ()

R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-25] (Glarysoft Ltd)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-03] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)

R1 mozyFilter; C:\Windows\System32\DRIVERS\mozy.sys [67808 2013-05-21] (Mozy, Inc.)

R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [83704 2012-09-10] (Cyberlink Corp.)

S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)

R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [107048 2012-09-24] (Trend Micro Inc.)

R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [173504 2012-09-24] (Trend Micro Inc.)

R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [67344 2011-11-23] (Trend Micro Inc.)

R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [77184 2012-09-24] (Trend Micro Inc.)

S3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [210704 2011-11-23] (Trend Micro Inc.)

R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2011-11-23] (Trend Micro Inc.)

R3 vpnpbus; C:\Windows\System32\DRIVERS\vpnpbus.sys [18624 2013-10-25] (EldoS Corporation)

R3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-07-19] (Cisco Systems, Inc.)

R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [130320 2012-12-28] (CyberLink Corp.)

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

S3 motmodem; system32\DRIVERS\motmodem.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-07-03 22:18 - 2014-07-03 22:20 - 00028971 _____ () C:\Users\Owner\Desktop\FRST.txt

2014-07-03 22:18 - 2014-07-03 22:18 - 00000000 ____D () C:\Users\Owner\Desktop\FRST-OlderVersion

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\Users\Owner\Desktop\JavaRa070314.txt

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\JavaRa.log

2014-07-03 22:02 - 2010-12-27 19:23 - 00400384 _____ (The RaProducts Team: Paul McLain and Fred de Vries) C:\Users\Owner\Desktop\JavaRa.exe

2014-07-03 21:56 - 2014-07-03 21:55 - 00165483 _____ () C:\Users\Owner\Desktop\JavaRa-1.16-28-5-13.zip

2014-07-03 21:55 - 2014-07-03 21:55 - 00165483 _____ () C:\Users\Owner\Downloads\JavaRa-1.16-28-5-13.zip

2014-07-03 21:50 - 2012-07-05 22:06 - 00772544 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll

2014-07-03 21:50 - 2012-07-05 22:06 - 00687544 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll

2014-07-02 06:43 - 2014-07-02 06:44 - 00862376 _____ () C:\Windows\Minidump\070214-31465-01.dmp

2014-07-02 06:43 - 2014-07-02 06:43 - 424165171 _____ () C:\Windows\MEMORY.DMP

2014-07-02 01:30 - 2014-07-02 01:30 - 15197736 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_4.1.3.1708.exe

2014-07-02 01:17 - 2014-07-02 01:18 - 02083840 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

2014-07-02 01:16 - 2014-07-02 01:16 - 01073664 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe

2014-06-30 21:19 - 2014-07-02 00:59 - 00000858 _____ () C:\Windows\PFRO.log

2014-06-30 20:53 - 2014-06-30 20:53 - 00000000 ___HD () C:\Users\Owner\.boxsync

2014-06-30 20:17 - 2014-06-30 20:17 - 06326144 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\disk-defrag-setup.exe

2014-06-30 20:10 - 2014-06-30 20:10 - 00037835 _____ () C:\Users\Owner\Desktop\combofix6-30-14.txt

2014-06-30 20:09 - 2014-06-30 20:09 - 00037835 _____ () C:\ComboFix.txt

2014-06-30 19:50 - 2014-06-30 20:09 - 00000000 ____D () C:\ComboFix

2014-06-30 19:38 - 2014-07-03 22:14 - 00000336 _____ () C:\Windows\setupact.log

2014-06-30 19:38 - 2014-07-02 06:44 - 05254520 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-06-30 19:38 - 2014-06-30 19:38 - 00000000 _____ () C:\Windows\setuperr.log

2014-06-30 19:36 - 2014-06-30 19:36 - 00002990 _____ () C:\Windows\System32\Tasks\{D6EDDEA0-CAD6-44C1-BE74-B6E14523E291}

2014-06-30 19:35 - 2014-06-30 19:35 - 00002990 _____ () C:\Windows\System32\Tasks\{1032C08F-28F6-4E57-A3DE-07BDDAC58C2A}

2014-06-30 19:34 - 2014-06-30 19:34 - 00001729 _____ () C:\Users\Owner\Desktop\Trend Micro Titanium Internet Security 2012.lnk

2014-06-30 19:08 - 2014-07-02 06:47 - 00150416 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer.exe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer (1).exe

2014-06-27 00:02 - 2014-06-27 00:02 - 00000633 _____ () C:\Users\Owner\Desktop\JRT.txt

2014-06-26 23:39 - 2014-06-26 23:39 - 04161050 _____ () C:\Users\Owner\Downloads\tdsskiller.zip

2014-06-24 20:15 - 2014-06-30 19:09 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics

2014-06-24 19:14 - 2014-06-24 19:14 - 00204496 _____ (Malwarebytes) C:\Users\Owner\Downloads\startuplite-setup-1.07.exe

2014-06-24 19:10 - 2014-06-24 19:10 - 19623432 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\boost-speed-setup.exe

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MusicBrainz

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Local\cache

2014-06-22 22:00 - 2014-06-22 22:00 - 00001142 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk

2014-06-22 22:00 - 2014-06-22 22:00 - 00000000 ____D () C:\Program Files (x86)\MusicBrainz Picard

2014-06-22 21:58 - 2014-06-22 21:58 - 08790287 _____ (MusicBrainz) C:\Users\Owner\Downloads\picard-setup-1.2.exe

2014-06-22 20:50 - 2014-06-22 20:50 - 01678013 _____ () C:\Users\Owner\Downloads\pc-decrapifier-2.3.1.exe

2014-06-22 16:19 - 2014-06-22 16:19 - 00003744 ____N () C:\bootsqm.dat

2014-06-22 12:47 - 2014-06-22 12:47 - 00000036 _____ () C:\Users\Owner\Desktop\defrag.bat

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner (1).exe

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Desktop\ATF-Cleaner (1).exe

2014-06-22 12:32 - 2014-06-22 12:32 - 02042031 _____ () C:\Users\Owner\Downloads\PUIDGenerator25.mmip

2014-06-22 12:32 - 2014-06-22 12:32 - 00019750 _____ () C:\Users\Owner\Downloads\GenreFinder50.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00087023 _____ () C:\Users\Owner\Downloads\BatchArtFinder42.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00042067 _____ () C:\Users\Owner\Downloads\DiscogsAutoTagWeb_V4.45.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00040134 _____ () C:\Users\Owner\Downloads\DiscogsBatchTagger_V2.15.mmip

2014-06-22 12:01 - 2014-06-22 12:01 - 00061335 _____ () C:\Users\Owner\Downloads\advancedduplicatefindfix382149.mmip

2014-06-21 21:13 - 2014-06-30 20:00 - 00000000 ____D () C:\ProgramData\Temp

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-21 20:21 - 2014-06-21 20:23 - 00004416 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log

2014-06-21 17:01 - 2014-06-21 17:01 - 02021104 _____ (Coupons.com Incorporated) C:\Users\Owner\Downloads\CouponPrinterCPS.exe

2014-06-21 16:27 - 2014-06-21 16:27 - 00003058 _____ () C:\Windows\System32\Tasks\ScanToPCActivationApp.exe_{06239D3B-E808-499B-B4BA-93B2E91926CA}

2014-06-21 12:43 - 2014-07-03 21:48 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-06-21 12:43 - 2014-06-21 12:43 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-21 12:28 - 2014-06-21 12:28 - 00009400 _____ () C:\Users\Owner\Downloads\mban 6-21-14.xml

2014-06-21 12:28 - 2014-06-21 12:27 - 00024180 _____ () C:\Users\Owner\Downloads\mban 6-20-14.xml

2014-06-17 00:07 - 2014-06-17 08:46 - 00000000 ___SD () C:\Users\Owner\Box Sync

2014-06-17 00:07 - 2014-06-17 00:07 - 00001551 _____ () C:\Users\Owner\Desktop\Box Sync.lnk

2014-06-16 23:55 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files\Box

2014-06-16 22:21 - 2014-06-16 22:21 - 00448512 _____ (OldTimer Tools) C:\Users\Owner\Downloads\TFC.exe

2014-06-16 22:20 - 2014-06-16 22:20 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner.exe

2014-06-16 21:56 - 2014-06-16 21:56 - 00483809 _____ (Lars Hederer ) C:\Users\Owner\Downloads\ntregopt-setup.exe

2014-06-15 21:50 - 2014-06-15 21:50 - 00918672 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleVoiceAndVideoSetup.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00616149 _____ () C:\Users\Owner\Downloads\tripex_312.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\xml

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\docs

2014-06-15 21:29 - 2014-06-26 23:10 - 00000000 ____D () C:\Program Files (x86)\Morphyre

2014-06-15 21:27 - 2014-06-15 21:28 - 11980075 _____ () C:\Users\Owner\Downloads\morphyre_1v57.exe

2014-06-15 19:36 - 2014-06-15 19:36 - 00000000 ____D () C:\Windows\Hewlett-Packard

2014-06-15 19:35 - 2014-06-15 19:42 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\HpUpdate

2014-06-15 18:10 - 2014-06-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Valassis

2014-06-15 16:07 - 2014-06-15 16:07 - 00001087 _____ () C:\Users\Owner\Desktop\Documents - Shortcut.lnk

2014-06-14 18:20 - 2014-06-14 18:20 - 00000000 ____D () C:\Users\Owner\Documents\Dupes

2014-06-14 18:19 - 2014-06-14 18:53 - 00000000 ____D () C:\Users\Owner\AppData\Local\MindGems

2014-06-14 18:17 - 2014-06-14 18:17 - 02452548 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\AudioDedupe.exe

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast Duplicate File Finder

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\Program Files (x86)\Fast Duplicate File Finder

2014-06-14 17:56 - 2014-06-14 17:56 - 02784293 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\FastDuplicateFileFinder.exe

2014-06-14 17:40 - 2014-06-14 17:40 - 00090534 _____ () C:\Users\Owner\Documents\report.txt

2014-06-14 17:36 - 2014-06-14 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2014-06-14 17:29 - 2014-06-14 17:29 - 40514640 _____ (Google Inc.) C:\Users\Owner\Downloads\Google_Chrome_v35.0.1916.153.exe

2014-06-14 17:29 - 2014-06-14 17:29 - 33972080 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\Internet_Explorer_for_Windows_XP_(64bit)_v8.exe

2014-06-14 17:25 - 2014-06-14 17:26 - 86930272 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Users\Owner\Downloads\Evernote_5.4.0.3698.exe

2014-06-14 17:25 - 2014-06-14 17:26 - 19168944 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(Non_IE)_v14.0.0.125.exe

2014-06-14 17:24 - 2014-06-14 17:26 - 29836648 _____ (Mozilla) C:\Users\Owner\Downloads\Mozilla_Firefox_v30.0.exe

2014-06-14 17:24 - 2014-06-14 17:26 - 18583216 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(IE)_v14.0.0.125.exe

2014-06-14 17:24 - 2014-06-14 17:25 - 15196000 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_v4.1.2.1706.exe

2014-06-14 16:53 - 2014-06-14 16:53 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled

2014-06-14 16:11 - 2014-07-03 22:14 - 00000386 _____ () C:\BackupLoader.ini

2014-06-14 16:11 - 2014-06-14 16:11 - 00001051 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk

2014-06-14 16:11 - 2014-06-02 20:26 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe

2014-06-14 16:11 - 2014-06-02 20:05 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys

2014-06-14 16:07 - 2014-06-14 16:08 - 13566912 _____ () C:\Users\Owner\Downloads\gup5setup.exe

2014-06-14 15:57 - 2014-05-08 04:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2014-06-14 15:57 - 2014-05-08 04:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll

2014-06-14 15:57 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2014-06-14 15:57 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2014-06-14 15:57 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2014-06-14 15:57 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2014-06-14 15:57 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2014-06-14 15:57 - 2014-03-26 09:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2014-06-14 15:57 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2014-06-14 15:57 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2014-06-14 15:57 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2014-06-14 15:57 - 2014-03-26 09:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2014-06-14 15:57 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll

2014-06-14 15:57 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2014-06-14 15:56 - 2014-05-30 05:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-06-14 15:56 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-06-14 15:56 - 2014-05-30 05:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2014-06-14 15:56 - 2014-05-30 04:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-06-14 15:56 - 2014-05-30 04:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2014-06-14 15:56 - 2014-05-30 04:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-06-14 15:56 - 2014-05-30 04:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2014-06-14 15:56 - 2014-05-30 04:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-06-14 15:56 - 2014-05-30 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-06-14 15:56 - 2014-05-30 04:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-06-14 15:56 - 2014-05-30 04:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2014-06-14 15:56 - 2014-05-30 04:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2014-06-14 15:56 - 2014-05-30 04:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2014-06-14 15:56 - 2014-05-30 04:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-06-14 15:56 - 2014-05-30 04:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2014-06-14 15:56 - 2014-05-30 04:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-06-14 15:56 - 2014-05-30 04:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2014-06-14 15:56 - 2014-05-30 04:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-06-14 15:56 - 2014-05-30 03:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-06-14 15:56 - 2014-05-30 03:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-06-14 15:56 - 2014-05-30 03:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-06-14 15:56 - 2014-05-30 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2014-06-14 15:56 - 2014-05-30 03:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2014-06-14 15:56 - 2014-05-30 03:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-06-14 15:56 - 2014-05-30 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2014-06-14 15:56 - 2014-05-30 03:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-06-14 15:56 - 2014-05-30 03:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-06-14 15:56 - 2014-05-30 03:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-06-14 15:56 - 2014-05-30 03:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-06-14 15:56 - 2014-05-30 03:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-06-14 15:56 - 2014-05-30 03:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-06-14 15:56 - 2014-05-30 03:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2014-06-14 15:56 - 2014-05-30 03:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2014-06-14 15:56 - 2014-05-30 03:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2014-06-14 15:56 - 2014-05-30 03:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2014-06-14 15:56 - 2014-05-30 03:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2014-06-14 15:56 - 2014-05-30 03:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2014-06-14 15:56 - 2014-05-30 03:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-06-14 15:56 - 2014-05-30 03:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2014-06-14 15:56 - 2014-05-30 03:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2014-06-14 15:56 - 2014-05-30 02:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-06-14 15:56 - 2014-05-30 02:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-06-14 15:56 - 2014-05-30 02:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-06-14 15:56 - 2014-05-30 02:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2014-06-14 15:56 - 2014-05-30 02:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2014-06-14 15:56 - 2014-05-30 02:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-06-14 15:56 - 2014-05-30 02:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-06-14 15:56 - 2014-05-30 02:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-06-14 15:56 - 2014-05-30 02:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-06-14 15:56 - 2014-05-30 02:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-06-14 15:56 - 2014-05-30 02:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2014-06-14 15:56 - 2014-05-30 02:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2014-06-14 15:51 - 2014-06-08 04:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-06-14 15:50 - 2014-06-08 04:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-06-10 01:40 - 2014-06-10 01:40 - 00127173 _____ () C:\Users\Owner\Downloads\searchmyfiles-x64 (1).zip

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki.xlsx

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki (1).xlsx

2014-06-09 22:44 - 2014-06-09 22:44 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe

2014-06-09 22:35 - 2014-06-09 22:35 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe

2014-06-09 22:20 - 2005-10-20 12:03 - 00140288 _____ () C:\Users\Owner\Desktop\NTREGOPT.EXE

2014-06-09 22:12 - 2014-06-09 22:13 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (2).zip

2014-06-09 21:34 - 2014-06-09 21:34 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (1).zip

2014-06-09 21:20 - 2014-06-09 21:20 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt.zip

2014-06-05 22:58 - 2014-06-05 22:58 - 00000000 ____D () C:\Users\Owner\PresentationTube_Files_3

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PresentationTube

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\Program Files (x86)\PresentationTube

2014-06-05 22:43 - 2014-06-05 22:45 - 17710766 _____ () C:\Users\Owner\Downloads\PresentationTubeRecorderPro30.zip

 

==================== One Month Modified Files and Folders =======

 

2014-07-03 22:20 - 2014-07-03 22:18 - 00028971 _____ () C:\Users\Owner\Desktop\FRST.txt

2014-07-03 22:18 - 2014-07-03 22:18 - 00000000 ____D () C:\Users\Owner\Desktop\FRST-OlderVersion

2014-07-03 22:18 - 2014-04-20 22:06 - 00000000 ____D () C:\FRST

2014-07-03 22:18 - 2014-03-22 21:53 - 02083840 _____ (Farbar) C:\Users\Owner\Desktop\FRST64.exe

2014-07-03 22:17 - 2013-09-22 18:34 - 00000000 ____D () C:\Users\Owner\AppData\Local\Box Sync

2014-07-03 22:16 - 2013-08-14 22:01 - 00004974 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MIKKI-PC-Owner Mikki-PC

2014-07-03 22:15 - 2014-05-28 20:36 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-07-03 22:14 - 2014-06-30 19:38 - 00000336 _____ () C:\Windows\setupact.log

2014-07-03 22:14 - 2014-06-14 16:11 - 00000386 _____ () C:\BackupLoader.ini

2014-07-03 22:14 - 2014-05-25 01:37 - 00000332 _____ () C:\Windows\Tasks\GlaryInitialize 5.job

2014-07-03 22:14 - 2010-11-07 19:02 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-07-03 22:14 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-07-03 22:13 - 2010-07-31 12:39 - 01455326 _____ () C:\Windows\WindowsUpdate.log

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\Users\Owner\Desktop\JavaRa070314.txt

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\JavaRa.log

2014-07-03 21:58 - 2013-02-28 13:19 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-07-03 21:55 - 2014-07-03 21:56 - 00165483 _____ () C:\Users\Owner\Desktop\JavaRa-1.16-28-5-13.zip

2014-07-03 21:55 - 2014-07-03 21:55 - 00165483 _____ () C:\Users\Owner\Downloads\JavaRa-1.16-28-5-13.zip

2014-07-03 21:51 - 2010-11-07 18:48 - 00000856 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000Core.job

2014-07-03 21:48 - 2014-06-21 12:43 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-07-03 21:42 - 2010-11-07 18:48 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000UA.job

2014-07-03 07:30 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-07-03 07:30 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-07-02 06:47 - 2014-06-30 19:08 - 00150416 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT

2014-07-02 06:44 - 2014-07-02 06:43 - 00862376 _____ () C:\Windows\Minidump\070214-31465-01.dmp

2014-07-02 06:44 - 2014-06-30 19:38 - 05254520 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-07-02 06:43 - 2014-07-02 06:43 - 424165171 _____ () C:\Windows\MEMORY.DMP

2014-07-02 06:43 - 2014-04-20 19:03 - 00000000 ____D () C:\Windows\Minidump

2014-07-02 02:00 - 2014-05-26 19:55 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MediaMonkey

2014-07-02 01:31 - 2014-05-26 19:55 - 00001014 _____ () C:\Users\Public\Desktop\MediaMonkey.lnk

2014-07-02 01:31 - 2014-05-26 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey

2014-07-02 01:31 - 2014-05-26 19:55 - 00000000 ____D () C:\Program Files (x86)\MediaMonkey

2014-07-02 01:30 - 2014-07-02 01:30 - 15197736 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_4.1.3.1708.exe

2014-07-02 01:22 - 2014-05-28 18:39 - 00068541 _____ () C:\Users\Owner\Downloads\FRST.txt

2014-07-02 01:18 - 2014-07-02 01:17 - 02083840 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

2014-07-02 01:16 - 2014-07-02 01:16 - 01073664 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe

2014-07-02 00:59 - 2014-06-30 21:19 - 00000858 _____ () C:\Windows\PFRO.log

2014-07-01 22:40 - 2011-08-04 15:15 - 00004668 _____ () C:\Windows\mozy.flt

2014-07-01 22:40 - 2011-08-04 15:15 - 00003854 _____ () C:\Windows\mozy.blk

2014-07-01 22:03 - 2013-09-22 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Box Sync

2014-06-30 20:53 - 2014-06-30 20:53 - 00000000 ___HD () C:\Users\Owner\.boxsync

2014-06-30 20:53 - 2010-10-15 15:01 - 00000000 ____D () C:\Users\Owner

2014-06-30 20:17 - 2014-06-30 20:17 - 06326144 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\disk-defrag-setup.exe

2014-06-30 20:10 - 2014-06-30 20:10 - 00037835 _____ () C:\Users\Owner\Desktop\combofix6-30-14.txt

2014-06-30 20:09 - 2014-06-30 20:09 - 00037835 _____ () C:\ComboFix.txt

2014-06-30 20:09 - 2014-06-30 19:50 - 00000000 ____D () C:\ComboFix

2014-06-30 20:09 - 2014-02-06 21:31 - 00000000 ____D () C:\Qoobox

2014-06-30 20:05 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini

2014-06-30 20:00 - 2014-06-21 21:13 - 00000000 ____D () C:\ProgramData\Temp

2014-06-30 19:49 - 2014-05-08 21:15 - 05212874 ____R (Swearware) C:\Users\Owner\Desktop\ComboFix.exe

2014-06-30 19:38 - 2014-06-30 19:38 - 00000000 _____ () C:\Windows\setuperr.log

2014-06-30 19:36 - 2014-06-30 19:36 - 00002990 _____ () C:\Windows\System32\Tasks\{D6EDDEA0-CAD6-44C1-BE74-B6E14523E291}

2014-06-30 19:35 - 2014-06-30 19:35 - 00002990 _____ () C:\Windows\System32\Tasks\{1032C08F-28F6-4E57-A3DE-07BDDAC58C2A}

2014-06-30 19:34 - 2014-06-30 19:34 - 00001729 _____ () C:\Users\Owner\Desktop\Trend Micro Titanium Internet Security 2012.lnk

2014-06-30 19:09 - 2014-06-24 20:15 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics

2014-06-30 19:09 - 2013-04-08 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics

2014-06-30 19:09 - 2013-04-08 16:25 - 00000000 ____D () C:\Program Files (x86)\Auslogics

2014-06-30 17:27 - 2011-12-14 19:18 - 00000000 ____D () C:\Windows\SysWOW64\Adobe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer.exe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer (1).exe

2014-06-27 00:02 - 2014-06-27 00:02 - 00000633 _____ () C:\Users\Owner\Desktop\JRT.txt

2014-06-26 23:39 - 2014-06-26 23:39 - 04161050 _____ () C:\Users\Owner\Downloads\tdsskiller.zip

2014-06-26 23:36 - 2012-01-07 14:39 - 00000000 ____D () C:\Program Files\Common Files\Adobe

2014-06-26 23:36 - 2010-07-22 05:40 - 00000000 ____D () C:\ProgramData\Adobe

2014-06-26 23:32 - 2010-07-22 05:40 - 00000000 ____D () C:\Program Files (x86)\Adobe

2014-06-26 23:27 - 2012-01-07 14:40 - 00000000 ____D () C:\Program Files\Adobe

2014-06-26 23:10 - 2014-06-15 21:29 - 00000000 ____D () C:\Program Files (x86)\Morphyre

2014-06-24 19:14 - 2014-06-24 19:14 - 00204496 _____ (Malwarebytes) C:\Users\Owner\Downloads\startuplite-setup-1.07.exe

2014-06-24 19:10 - 2014-06-24 19:10 - 19623432 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\boost-speed-setup.exe

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MusicBrainz

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Local\cache

2014-06-22 22:00 - 2014-06-22 22:00 - 00001142 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk

2014-06-22 22:00 - 2014-06-22 22:00 - 00000000 ____D () C:\Program Files (x86)\MusicBrainz Picard

2014-06-22 21:58 - 2014-06-22 21:58 - 08790287 _____ (MusicBrainz) C:\Users\Owner\Downloads\picard-setup-1.2.exe

2014-06-22 21:05 - 2014-01-28 02:07 - 00000000 ____D () C:\Program Files (x86)\Evernote

2014-06-22 21:04 - 2012-08-08 05:51 - 00000000 ____D () C:\Program Files (x86)\Motorola Mobility

2014-06-22 21:03 - 2012-02-13 22:02 - 00000000 ____D () C:\ProgramData\Skype

2014-06-22 21:01 - 2012-06-20 06:00 - 00000000 ____D () C:\Program Files (x86)\Shutterfly

2014-06-22 21:00 - 2010-07-22 05:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2014-06-22 20:50 - 2014-06-22 20:50 - 01678013 _____ () C:\Users\Owner\Downloads\pc-decrapifier-2.3.1.exe

2014-06-22 20:41 - 2013-06-24 05:34 - 00000000 ____D () C:\Temp

2014-06-22 16:19 - 2014-06-22 16:19 - 00003744 ____N () C:\bootsqm.dat

2014-06-22 12:47 - 2014-06-22 12:47 - 00000036 _____ () C:\Users\Owner\Desktop\defrag.bat

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner (1).exe

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Desktop\ATF-Cleaner (1).exe

2014-06-22 12:32 - 2014-06-22 12:32 - 02042031 _____ () C:\Users\Owner\Downloads\PUIDGenerator25.mmip

2014-06-22 12:32 - 2014-06-22 12:32 - 00019750 _____ () C:\Users\Owner\Downloads\GenreFinder50.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00087023 _____ () C:\Users\Owner\Downloads\BatchArtFinder42.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00042067 _____ () C:\Users\Owner\Downloads\DiscogsAutoTagWeb_V4.45.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00040134 _____ () C:\Users\Owner\Downloads\DiscogsBatchTagger_V2.15.mmip

2014-06-22 12:01 - 2014-06-22 12:01 - 00061335 _____ () C:\Users\Owner\Downloads\advancedduplicatefindfix382149.mmip

2014-06-21 21:16 - 2011-08-05 18:07 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozyHome

2014-06-21 21:16 - 2011-08-05 18:07 - 00000000 ____D () C:\Program Files\MozyHome

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-21 20:23 - 2014-06-21 20:21 - 00004416 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log

2014-06-21 20:23 - 2013-05-26 21:14 - 00000000 ____D () C:\Program Files (x86)\Java

2014-06-21 17:01 - 2014-06-21 17:01 - 02021104 _____ (Coupons.com Incorporated) C:\Users\Owner\Downloads\CouponPrinterCPS.exe

2014-06-21 16:27 - 2014-06-21 16:27 - 00003058 _____ () C:\Windows\System32\Tasks\ScanToPCActivationApp.exe_{06239D3B-E808-499B-B4BA-93B2E91926CA}

2014-06-21 13:17 - 2013-06-19 18:23 - 00000000 ____D () C:\Program Files\Microsoft Office 15

2014-06-21 12:52 - 2013-01-09 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive

2014-06-21 12:43 - 2014-06-21 12:43 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-21 12:43 - 2010-11-07 19:02 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-06-21 12:31 - 2009-07-13 23:45 - 00000000 ____D () C:\Windows\Setup

2014-06-21 12:28 - 2014-06-21 12:28 - 00009400 _____ () C:\Users\Owner\Downloads\mban 6-21-14.xml

2014-06-21 12:27 - 2014-06-21 12:28 - 00024180 _____ () C:\Users\Owner\Downloads\mban 6-20-14.xml

2014-06-21 12:17 - 2014-01-28 02:05 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

2014-06-21 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF

2014-06-17 08:46 - 2014-06-17 00:07 - 00000000 ___SD () C:\Users\Owner\Box Sync

2014-06-17 00:17 - 2013-12-23 18:03 - 00000000 ____D () C:\Users\Owner\Documents\Box Files Backup (not synced)

2014-06-17 00:07 - 2014-06-17 00:07 - 00001551 _____ () C:\Users\Owner\Desktop\Box Sync.lnk

2014-06-16 23:55 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files\Box

2014-06-16 22:21 - 2014-06-16 22:21 - 00448512 _____ (OldTimer Tools) C:\Users\Owner\Downloads\TFC.exe

2014-06-16 22:20 - 2014-06-16 22:20 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner.exe

2014-06-16 22:05 - 2010-10-15 15:01 - 07077888 _____ () C:\Users\Owner\NTUSER.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 86769664 _____ () C:\Windows\system32\config\SOFTWARE.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 23855104 _____ () C:\Windows\system32\config\SYSTEM.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00335872 _____ () C:\Windows\system32\config\DEFAULT.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00057344 _____ () C:\Windows\system32\config\SAM.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00028672 _____ () C:\Windows\system32\config\SECURITY.bak

2014-06-16 21:56 - 2014-06-16 21:56 - 00483809 _____ (Lars Hederer ) C:\Users\Owner\Downloads\ntregopt-setup.exe

2014-06-16 21:25 - 2010-11-07 18:48 - 00003882 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000UA

2014-06-16 21:25 - 2010-11-07 18:48 - 00003486 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000Core

2014-06-16 12:39 - 2014-03-12 11:03 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\.technic

2014-06-15 21:50 - 2014-06-15 21:50 - 00918672 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleVoiceAndVideoSetup.exe

2014-06-15 21:50 - 2013-11-20 08:17 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Mozilla

2014-06-15 21:50 - 2010-11-07 18:40 - 00000000 ____D () C:\Users\Owner\AppData\Local\Google

2014-06-15 21:31 - 2014-06-15 21:31 - 00616149 _____ () C:\Users\Owner\Downloads\tripex_312.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\xml

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\docs

2014-06-15 21:29 - 2014-03-08 14:20 - 00000000 ____D () C:\Program Files (x86)\iTunes

2014-06-15 21:28 - 2014-06-15 21:27 - 11980075 _____ () C:\Users\Owner\Downloads\morphyre_1v57.exe

2014-06-15 20:14 - 2013-11-20 08:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-06-15 19:42 - 2014-06-15 19:35 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\HpUpdate

2014-06-15 19:37 - 2012-12-02 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2014-06-15 19:37 - 2012-12-02 17:43 - 00000000 ____D () C:\Program Files (x86)\HP

2014-06-15 19:36 - 2014-06-15 19:36 - 00000000 ____D () C:\Windows\Hewlett-Packard

2014-06-15 18:10 - 2014-06-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Valassis

2014-06-15 18:02 - 2012-02-01 06:41 - 00000000 ____D () C:\Program Files (x86)\Amazon

2014-06-15 17:03 - 2014-05-25 01:36 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5

2014-06-15 16:56 - 2013-04-17 02:22 - 00000000 ____D () C:\Users\Owner\4-15-13_Maxx files

2014-06-15 16:49 - 2012-08-20 06:35 - 00000000 ___RD () C:\Users\Owner\Grad

2014-06-15 16:07 - 2014-06-15 16:07 - 00001087 _____ () C:\Users\Owner\Desktop\Documents - Shortcut.lnk

2014-06-15 16:06 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

2014-06-15 00:13 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache

2014-06-14 18:54 - 2010-07-22 05:34 - 00000000 ____D () C:\Program Files (x86)\Google

2014-06-14 18:53 - 2014-06-14 18:19 - 00000000 ____D () C:\Users\Owner\AppData\Local\MindGems

2014-06-14 18:20 - 2014-06-14 18:20 - 00000000 ____D () C:\Users\Owner\Documents\Dupes

2014-06-14 18:17 - 2014-06-14 18:17 - 02452548 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\AudioDedupe.exe

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast Duplicate File Finder

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\Program Files (x86)\Fast Duplicate File Finder

2014-06-14 17:56 - 2014-06-14 17:56 - 02784293 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\FastDuplicateFileFinder.exe

2014-06-14 17:40 - 2014-06-14 17:40 - 00090534 _____ () C:\Users\Owner\Documents\report.txt

2014-06-14 17:36 - 2014-06-14 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2014-06-14 17:29 - 2014-06-14 17:29 - 40514640 _____ (Google Inc.) C:\Users\Owner\Downloads\Google_Chrome_v35.0.1916.153.exe

2014-06-14 17:29 - 2014-06-14 17:29 - 33972080 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\Internet_Explorer_for_Windows_XP_(64bit)_v8.exe

2014-06-14 17:28 - 2013-02-28 13:19 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2014-06-14 17:28 - 2013-02-28 13:19 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater

2014-06-14 17:28 - 2012-02-21 08:41 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2014-06-14 17:27 - 2014-06-02 21:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-06-14 17:27 - 2013-11-20 08:17 - 00001130 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2014-06-14 17:26 - 2014-06-14 17:25 - 86930272 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Users\Owner\Downloads\Evernote_5.4.0.3698.exe

2014-06-14 17:26 - 2014-06-14 17:25 - 19168944 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(Non_IE)_v14.0.0.125.exe

2014-06-14 17:26 - 2014-06-14 17:24 - 29836648 _____ (Mozilla) C:\Users\Owner\Downloads\Mozilla_Firefox_v30.0.exe

2014-06-14 17:26 - 2014-06-14 17:24 - 18583216 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(IE)_v14.0.0.125.exe

2014-06-14 17:25 - 2014-06-14 17:24 - 15196000 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_v4.1.2.1706.exe

2014-06-14 17:10 - 2013-04-08 16:36 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Glarysoft

2014-06-14 16:53 - 2014-06-14 16:53 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled

2014-06-14 16:41 - 2012-10-04 20:36 - 00000000 ____D () C:\Users\Owner\AppData\Local\Backup Assistant Plus

2014-06-14 16:25 - 2013-08-01 20:20 - 00000000 ____D () C:\Windows\system32\MRT

2014-06-14 16:15 - 2010-10-15 16:40 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-06-14 16:11 - 2014-06-14 16:11 - 00001051 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk

2014-06-14 16:11 - 2014-05-25 01:37 - 00002972 _____ () C:\Windows\System32\Tasks\GU5SkipUAC

2014-06-14 16:11 - 2014-05-25 01:37 - 00002628 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5

2014-06-14 16:11 - 2014-05-25 01:37 - 00001063 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk

2014-06-14 16:08 - 2014-06-14 16:07 - 13566912 _____ () C:\Users\Owner\Downloads\gup5setup.exe

2014-06-14 16:08 - 2014-05-05 20:40 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-06-12 11:29 - 2014-05-07 22:13 - 00000000 ____D () C:\Users\Owner\Documents\My Box Files(mroneal@mdanderson.org)

2014-06-10 03:14 - 2013-10-20 12:06 - 00000000 ____D () C:\Users\Owner\Documents\Finance

2014-06-10 01:40 - 2014-06-10 01:40 - 00127173 _____ () C:\Users\Owner\Downloads\searchmyfiles-x64 (1).zip

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki.xlsx

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki (1).xlsx

2014-06-09 22:44 - 2014-06-09 22:44 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe

2014-06-09 22:35 - 2014-06-09 22:35 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe

2014-06-09 22:13 - 2014-06-09 22:12 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (2).zip

2014-06-09 21:34 - 2014-06-09 21:34 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (1).zip

2014-06-09 21:20 - 2014-06-09 21:20 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt.zip

2014-06-08 04:13 - 2014-06-14 15:51 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-06-08 04:08 - 2014-06-14 15:50 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-06-05 22:58 - 2014-06-05 22:58 - 00000000 ____D () C:\Users\Owner\PresentationTube_Files_3

2014-06-05 22:58 - 2010-10-15 15:02 - 00000000 ____D () C:\Users\Owner\AppData\Local\VirtualStore

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PresentationTube

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\Program Files (x86)\PresentationTube

2014-06-05 22:50 - 2013-06-19 20:23 - 00000000 ___RD () C:\Users\Owner\SkyDrive

2014-06-05 22:45 - 2014-06-05 22:43 - 17710766 _____ () C:\Users\Owner\Downloads\PresentationTubeRecorderPro30.zip

 

Files to move or delete:

====================

C:\Users\Owner\cc_20130408_145109.reg

C:\Users\Owner\setup.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2014-06-28 00:40

 

==================== End Of Log ============================

 

 

[awriternot]

Addition:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-07-2014

Ran by Owner (administrator) on MIKKI-PC on 03-07-2014 22:18:21

Running from C:\Users\Owner\Desktop

Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 11

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 

Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe

(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe

(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Programs\Google\MusicManager\MusicManager.exe

(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Microsoft Corporation) C:\Windows\System32\msiexec.exe

(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Acer Group) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE

(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Mozy, Inc.) C:\Program Files\MozyHome\mozystat.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Google Inc.) C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe

(Google) C:\Users\Owner\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe

() C:\Program Files\Box\Box Sync\BoxSyncMonitor.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9644576 2009-12-15] (Realtek Semiconductor)

HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-10] (Synaptics Incorporated)

HKLM\...\Run: [Trend Micro Titanium] => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [1304296 2012-12-18] (Trend Micro Inc.)

HKLM\...\Run: [boxSync] => c:\Program Files\Box\Box Sync\BoxSync.exe [13509056 2014-06-25] (Box, Inc.)

HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [1300792 2014-04-10] (Malwarebytes Corporation)

HKLM-x32\...\Run: [] => [X]

HKLM\...\Policies\Explorer: [HideSCAHealth] 1

HKU\.DEFAULT\...\Policies\Explorer: [HideSCAHealth] 1

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-06-02] (Glarysoft Ltd)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Run: [MusicManager] => C:\Users\Owner\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7631872 2014-05-15] (Google Inc.)

HKU\S-1-5-21-2681166796-2007918134-1661358387-1000\...\Policies\Explorer: [NoDesktopCleanupWizard] 1

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MozyHome Status.lnk

ShortcutTarget: MozyHome Status.lnk -> C:\Program Files\MozyHome\mozystat.exe (Mozy, Inc.)

SSODL: EldosMountNotificator-cbfs4 - {B8FD60CF-9D65-44C7-BECA-891CB8C4D5AD} - C:\Windows\system32\cbfsMntNtf4.dll (EldoS Corporation)

SSODL-x32: EldosMountNotificator-cbfs4 - {B8FD60CF-9D65-44C7-BECA-891CB8C4D5AD} - C:\Windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation)

ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

ShellIconOverlayIdentifiers:  StashNotUploaded -> {34DF8AC2-A6BB-4855-B45A-CC1B4D9183E3} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers:  StashPendingChanges -> {6673BC77-4A7B-4299-A130-14312E6B203A} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers:  StashUpToDate -> {04547006-32F5-4635-844B-B8D7FCE47692} => C:\Program Files\Mozy\Stash\StashShell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: 0000BoxSyncFileLocked -> {b973655f-b823-3729-abea-e88cb316ddd4} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncNotSynced -> {a316141f-fa66-334c-8d40-a8f4e6d21080} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncProblem -> {a74ad9e8-37eb-31db-9026-8eda10d85860} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: 0000BoxSyncSynced -> {c3de22fc-b307-320f-ba41-27d95101bbf3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)

ShellIconOverlayIdentifiers: AsusWSShellExt_B -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: AsusWSShellExt_O -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: AsusWSShellExt_U -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\ASUS WebStorage Sync\1.0.18.84\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers: EldosIconOverlay-cbfs4 -> {D2244D6F-F44D-4A19-8A6E-9B7AACCA4E89} => C:\Windows\system32\cbfsMntNtf4.dll (EldoS Corporation)

ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)

ShellIconOverlayIdentifiers: mozy -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: mozy2 -> {747E722C-CB46-4a9d-BDFE-192AAD5099B1} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers: mozy3 -> {EE6F5A00-7898-40f7-AB77-51FF9D6DEB20} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)

ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File

ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File

ShellIconOverlayIdentifiers-x32: EldosIconOverlay-cbfs4 -> {D2244D6F-F44D-4A19-8A6E-9B7AACCA4E89} => C:\Windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation)

BootExecute: autocheck autochk *  

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

SearchScopes: HKLM-x32 - DefaultScope value is missing.

BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg.dll (Trend Micro Inc.)

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe64.dll (Trend Micro Inc.)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll (Trend Micro Inc.)

BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (Trend Micro Inc.)

Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File

DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://mdajun.mdanderson.org/dana-cached/sc/JuniperSetupClient.cab

Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe64.dll (Trend Micro Inc.)

Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg.dll (Trend Micro Inc.)

Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)

Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (Trend Micro Inc.)

Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll (Trend Micro Inc.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75

 

FireFox:

========

FF ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1212152.dll (Adobe Systems, Inc.)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)

FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Owner\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Owner\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Owner\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npMozCouponPrinter.dll (Coupons, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin ProgramFiles/Appdata: C:\Users\Owner\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

FF Extension: Flash and Video Download - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2014-05-27]

FF Extension: Show my Password - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\ghug7evk.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2014-03-11]

FF HKLM-x32\...\Firefox\Extensions: [{38783831-6098-4faa-A9C9-1EE1E343F4D2}] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension

FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\firefoxextension [2014-05-25]

FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension

FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension [2014-05-25]

 

Chrome: 

=======

CHR HomePage: hxxp://www.yahoo.com/

CHR StartupUrls: "https://www.yahoo.com/"

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-25]

CHR Extension: (eBay) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnadbgmffcofipfljniafanjcafjlbom [2014-02-16]

CHR Extension: (Google Cast) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-06-21]

CHR Extension: (HelloFax: 50 Free Fax Pages) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bocmleclimfnadgmcdgecijlblfcmfnm [2014-02-16]

CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2014-06-21]

CHR Extension: (UNO 3 3D Online) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkcdaicmkpfammeidmhpolmlgggokkmh [2014-01-28]

CHR Extension: (Box - 10GB of FREE storage) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2014-02-16]

CHR Extension: (Google Play Music) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2014-06-22]

CHR Extension: (UNO HD) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbiocfeggkcomnebamodmbngedojipdp [2014-01-28]

CHR Extension: (Wunderlist - To-do and Task list) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjliknjliaohjgjajlgolhijphojjdkc [2014-02-16]

CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2014-06-17]

CHR Extension: (Save to Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2014-01-21]

CHR Extension: (Pin It Button) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2014-01-21]

CHR Extension: (PDF Mergy) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2014-04-02]

CHR Extension: (Word Game Trainer) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndbgieifalnpdogdmpldfbahjnlamgi [2014-01-28]

CHR Extension: (Crackle) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-02-28]

CHR Extension: (Kindle Cloud Reader) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-02-16]

CHR Extension: (Google Play Music) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-01-21]

CHR Extension: (Word Wizard) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhecaejbhpbamhhgffmialehafkaedk [2014-01-28]

CHR Extension: (PDF to Word Converter App) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclipofobaadknkadkpgggmjkebddjam [2014-02-16]

CHR Extension: (UNO ONLINE!) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jffcjnoimmgcilbfgfhjkldapkdkicii [2014-01-28]

CHR Extension: (Google Play) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-02-16]

CHR Extension: (Pocket) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2014-01-21]

CHR Extension: (Hangouts) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-06-15]

CHR Extension: (OneDrive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2014-01-21]

CHR Extension: (Save to Pocket) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2014-04-02]

CHR Extension: (Google Wallet) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]

CHR Extension: (Wunderlist for Chrome) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcflmmmcfpacggndoaaflkmcoblhnbh [2014-02-16]

CHR Extension: (Picasa) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-01-21]

CHR Extension: (Evernote Web Clipper) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-01-21]

CHR HKCU\...\Chrome\Extension: [bpghhlfbjmmjohhnonhjgpbjdlbnmapf] - C:\Users\Owner\AppData\Local\CRE\bpghhlfbjmmjohhnonhjgpbjdlbnmapf.crx [2014-01-21]

CHR HKLM-x32\...\Chrome\Extension: [bpghhlfbjmmjohhnonhjgpbjdlbnmapf] - C:\Users\Owner\AppData\Local\CRE\bpghhlfbjmmjohhnonhjgpbjdlbnmapf.crx [2014-01-21]

 

==================== Services (Whitelisted) =================

 

S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [28768 2014-04-14] (Box, Inc.)

S2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [91248 2012-12-28] (CyberLink Corp.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)

S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [78960 2012-12-28] (CyberLink)

R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296048 2012-12-28] (CyberLink)

S2 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe [285795 2014-01-27] () [File not signed]

R2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [347448 2014-04-10] (Malwarebytes Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)

S2 mozybackup; C:\Program Files\MozyHome\mozybackup.exe [54040 2011-08-04] (Mozy, Inc.)

R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]

R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=qb -dt=60000 -ad [X]

S2 pcregservice; C:\Program Files\pcreg\pcreg.exe [X]

 

==================== Drivers (Whitelisted) ====================

 

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-02] (Glarysoft Ltd)

R1 cbfs4; C:\Windows\system32\drivers\cbfs4.sys [387776 2013-10-25] (EldoS Corporation)

S3 DigiartyVirtualCDBus; C:\Windows\System32\drivers\DigiartyVirtualCDBus.sys [276256 2014-05-27] (Digiarty Software, Inc.)

R1 ESProtectionDriver; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys [63928 2014-04-11] ()

R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-25] (Glarysoft Ltd)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-03] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)

R1 mozyFilter; C:\Windows\System32\DRIVERS\mozy.sys [67808 2013-05-21] (Mozy, Inc.)

R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [83704 2012-09-10] (Cyberlink Corp.)

S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)

R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [107048 2012-09-24] (Trend Micro Inc.)

R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [173504 2012-09-24] (Trend Micro Inc.)

R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [67344 2011-11-23] (Trend Micro Inc.)

R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [77184 2012-09-24] (Trend Micro Inc.)

S3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [210704 2011-11-23] (Trend Micro Inc.)

R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2011-11-23] (Trend Micro Inc.)

R3 vpnpbus; C:\Windows\System32\DRIVERS\vpnpbus.sys [18624 2013-10-25] (EldoS Corporation)

R3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-07-19] (Cisco Systems, Inc.)

R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [130320 2012-12-28] (CyberLink Corp.)

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

S3 motmodem; system32\DRIVERS\motmodem.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-07-03 22:18 - 2014-07-03 22:20 - 00028971 _____ () C:\Users\Owner\Desktop\FRST.txt

2014-07-03 22:18 - 2014-07-03 22:18 - 00000000 ____D () C:\Users\Owner\Desktop\FRST-OlderVersion

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\Users\Owner\Desktop\JavaRa070314.txt

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\JavaRa.log

2014-07-03 22:02 - 2010-12-27 19:23 - 00400384 _____ (The RaProducts Team: Paul McLain and Fred de Vries) C:\Users\Owner\Desktop\JavaRa.exe

2014-07-03 21:56 - 2014-07-03 21:55 - 00165483 _____ () C:\Users\Owner\Desktop\JavaRa-1.16-28-5-13.zip

2014-07-03 21:55 - 2014-07-03 21:55 - 00165483 _____ () C:\Users\Owner\Downloads\JavaRa-1.16-28-5-13.zip

2014-07-03 21:50 - 2012-07-05 22:06 - 00772544 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll

2014-07-03 21:50 - 2012-07-05 22:06 - 00687544 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll

2014-07-02 06:43 - 2014-07-02 06:44 - 00862376 _____ () C:\Windows\Minidump\070214-31465-01.dmp

2014-07-02 06:43 - 2014-07-02 06:43 - 424165171 _____ () C:\Windows\MEMORY.DMP

2014-07-02 01:30 - 2014-07-02 01:30 - 15197736 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_4.1.3.1708.exe

2014-07-02 01:17 - 2014-07-02 01:18 - 02083840 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

2014-07-02 01:16 - 2014-07-02 01:16 - 01073664 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe

2014-06-30 21:19 - 2014-07-02 00:59 - 00000858 _____ () C:\Windows\PFRO.log

2014-06-30 20:53 - 2014-06-30 20:53 - 00000000 ___HD () C:\Users\Owner\.boxsync

2014-06-30 20:17 - 2014-06-30 20:17 - 06326144 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\disk-defrag-setup.exe

2014-06-30 20:10 - 2014-06-30 20:10 - 00037835 _____ () C:\Users\Owner\Desktop\combofix6-30-14.txt

2014-06-30 20:09 - 2014-06-30 20:09 - 00037835 _____ () C:\ComboFix.txt

2014-06-30 19:50 - 2014-06-30 20:09 - 00000000 ____D () C:\ComboFix

2014-06-30 19:38 - 2014-07-03 22:14 - 00000336 _____ () C:\Windows\setupact.log

2014-06-30 19:38 - 2014-07-02 06:44 - 05254520 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-06-30 19:38 - 2014-06-30 19:38 - 00000000 _____ () C:\Windows\setuperr.log

2014-06-30 19:36 - 2014-06-30 19:36 - 00002990 _____ () C:\Windows\System32\Tasks\{D6EDDEA0-CAD6-44C1-BE74-B6E14523E291}

2014-06-30 19:35 - 2014-06-30 19:35 - 00002990 _____ () C:\Windows\System32\Tasks\{1032C08F-28F6-4E57-A3DE-07BDDAC58C2A}

2014-06-30 19:34 - 2014-06-30 19:34 - 00001729 _____ () C:\Users\Owner\Desktop\Trend Micro Titanium Internet Security 2012.lnk

2014-06-30 19:08 - 2014-07-02 06:47 - 00150416 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer.exe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer (1).exe

2014-06-27 00:02 - 2014-06-27 00:02 - 00000633 _____ () C:\Users\Owner\Desktop\JRT.txt

2014-06-26 23:39 - 2014-06-26 23:39 - 04161050 _____ () C:\Users\Owner\Downloads\tdsskiller.zip

2014-06-24 20:15 - 2014-06-30 19:09 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics

2014-06-24 19:14 - 2014-06-24 19:14 - 00204496 _____ (Malwarebytes) C:\Users\Owner\Downloads\startuplite-setup-1.07.exe

2014-06-24 19:10 - 2014-06-24 19:10 - 19623432 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\boost-speed-setup.exe

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MusicBrainz

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Local\cache

2014-06-22 22:00 - 2014-06-22 22:00 - 00001142 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk

2014-06-22 22:00 - 2014-06-22 22:00 - 00000000 ____D () C:\Program Files (x86)\MusicBrainz Picard

2014-06-22 21:58 - 2014-06-22 21:58 - 08790287 _____ (MusicBrainz) C:\Users\Owner\Downloads\picard-setup-1.2.exe

2014-06-22 20:50 - 2014-06-22 20:50 - 01678013 _____ () C:\Users\Owner\Downloads\pc-decrapifier-2.3.1.exe

2014-06-22 16:19 - 2014-06-22 16:19 - 00003744 ____N () C:\bootsqm.dat

2014-06-22 12:47 - 2014-06-22 12:47 - 00000036 _____ () C:\Users\Owner\Desktop\defrag.bat

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner (1).exe

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Desktop\ATF-Cleaner (1).exe

2014-06-22 12:32 - 2014-06-22 12:32 - 02042031 _____ () C:\Users\Owner\Downloads\PUIDGenerator25.mmip

2014-06-22 12:32 - 2014-06-22 12:32 - 00019750 _____ () C:\Users\Owner\Downloads\GenreFinder50.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00087023 _____ () C:\Users\Owner\Downloads\BatchArtFinder42.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00042067 _____ () C:\Users\Owner\Downloads\DiscogsAutoTagWeb_V4.45.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00040134 _____ () C:\Users\Owner\Downloads\DiscogsBatchTagger_V2.15.mmip

2014-06-22 12:01 - 2014-06-22 12:01 - 00061335 _____ () C:\Users\Owner\Downloads\advancedduplicatefindfix382149.mmip

2014-06-21 21:13 - 2014-06-30 20:00 - 00000000 ____D () C:\ProgramData\Temp

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-21 20:21 - 2014-06-21 20:23 - 00004416 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log

2014-06-21 17:01 - 2014-06-21 17:01 - 02021104 _____ (Coupons.com Incorporated) C:\Users\Owner\Downloads\CouponPrinterCPS.exe

2014-06-21 16:27 - 2014-06-21 16:27 - 00003058 _____ () C:\Windows\System32\Tasks\ScanToPCActivationApp.exe_{06239D3B-E808-499B-B4BA-93B2E91926CA}

2014-06-21 12:43 - 2014-07-03 21:48 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-06-21 12:43 - 2014-06-21 12:43 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-21 12:28 - 2014-06-21 12:28 - 00009400 _____ () C:\Users\Owner\Downloads\mban 6-21-14.xml

2014-06-21 12:28 - 2014-06-21 12:27 - 00024180 _____ () C:\Users\Owner\Downloads\mban 6-20-14.xml

2014-06-17 00:07 - 2014-06-17 08:46 - 00000000 ___SD () C:\Users\Owner\Box Sync

2014-06-17 00:07 - 2014-06-17 00:07 - 00001551 _____ () C:\Users\Owner\Desktop\Box Sync.lnk

2014-06-16 23:55 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files\Box

2014-06-16 22:21 - 2014-06-16 22:21 - 00448512 _____ (OldTimer Tools) C:\Users\Owner\Downloads\TFC.exe

2014-06-16 22:20 - 2014-06-16 22:20 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner.exe

2014-06-16 21:56 - 2014-06-16 21:56 - 00483809 _____ (Lars Hederer ) C:\Users\Owner\Downloads\ntregopt-setup.exe

2014-06-15 21:50 - 2014-06-15 21:50 - 00918672 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleVoiceAndVideoSetup.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00616149 _____ () C:\Users\Owner\Downloads\tripex_312.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\xml

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\docs

2014-06-15 21:29 - 2014-06-26 23:10 - 00000000 ____D () C:\Program Files (x86)\Morphyre

2014-06-15 21:27 - 2014-06-15 21:28 - 11980075 _____ () C:\Users\Owner\Downloads\morphyre_1v57.exe

2014-06-15 19:36 - 2014-06-15 19:36 - 00000000 ____D () C:\Windows\Hewlett-Packard

2014-06-15 19:35 - 2014-06-15 19:42 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\HpUpdate

2014-06-15 18:10 - 2014-06-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Valassis

2014-06-15 16:07 - 2014-06-15 16:07 - 00001087 _____ () C:\Users\Owner\Desktop\Documents - Shortcut.lnk

2014-06-14 18:20 - 2014-06-14 18:20 - 00000000 ____D () C:\Users\Owner\Documents\Dupes

2014-06-14 18:19 - 2014-06-14 18:53 - 00000000 ____D () C:\Users\Owner\AppData\Local\MindGems

2014-06-14 18:17 - 2014-06-14 18:17 - 02452548 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\AudioDedupe.exe

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast Duplicate File Finder

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\Program Files (x86)\Fast Duplicate File Finder

2014-06-14 17:56 - 2014-06-14 17:56 - 02784293 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\FastDuplicateFileFinder.exe

2014-06-14 17:40 - 2014-06-14 17:40 - 00090534 _____ () C:\Users\Owner\Documents\report.txt

2014-06-14 17:36 - 2014-06-14 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2014-06-14 17:29 - 2014-06-14 17:29 - 40514640 _____ (Google Inc.) C:\Users\Owner\Downloads\Google_Chrome_v35.0.1916.153.exe

2014-06-14 17:29 - 2014-06-14 17:29 - 33972080 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\Internet_Explorer_for_Windows_XP_(64bit)_v8.exe

2014-06-14 17:25 - 2014-06-14 17:26 - 86930272 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Users\Owner\Downloads\Evernote_5.4.0.3698.exe

2014-06-14 17:25 - 2014-06-14 17:26 - 19168944 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(Non_IE)_v14.0.0.125.exe

2014-06-14 17:24 - 2014-06-14 17:26 - 29836648 _____ (Mozilla) C:\Users\Owner\Downloads\Mozilla_Firefox_v30.0.exe

2014-06-14 17:24 - 2014-06-14 17:26 - 18583216 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(IE)_v14.0.0.125.exe

2014-06-14 17:24 - 2014-06-14 17:25 - 15196000 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_v4.1.2.1706.exe

2014-06-14 16:53 - 2014-06-14 16:53 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled

2014-06-14 16:11 - 2014-07-03 22:14 - 00000386 _____ () C:\BackupLoader.ini

2014-06-14 16:11 - 2014-06-14 16:11 - 00001051 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk

2014-06-14 16:11 - 2014-06-02 20:26 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe

2014-06-14 16:11 - 2014-06-02 20:05 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys

2014-06-14 16:07 - 2014-06-14 16:08 - 13566912 _____ () C:\Users\Owner\Downloads\gup5setup.exe

2014-06-14 15:57 - 2014-05-08 04:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2014-06-14 15:57 - 2014-05-08 04:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll

2014-06-14 15:57 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2014-06-14 15:57 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2014-06-14 15:57 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2014-06-14 15:57 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2014-06-14 15:57 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2014-06-14 15:57 - 2014-03-26 09:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2014-06-14 15:57 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2014-06-14 15:57 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2014-06-14 15:57 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2014-06-14 15:57 - 2014-03-26 09:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2014-06-14 15:57 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll

2014-06-14 15:57 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2014-06-14 15:56 - 2014-05-30 05:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-06-14 15:56 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-06-14 15:56 - 2014-05-30 05:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2014-06-14 15:56 - 2014-05-30 04:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-06-14 15:56 - 2014-05-30 04:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2014-06-14 15:56 - 2014-05-30 04:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-06-14 15:56 - 2014-05-30 04:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2014-06-14 15:56 - 2014-05-30 04:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-06-14 15:56 - 2014-05-30 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-06-14 15:56 - 2014-05-30 04:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-06-14 15:56 - 2014-05-30 04:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2014-06-14 15:56 - 2014-05-30 04:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2014-06-14 15:56 - 2014-05-30 04:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2014-06-14 15:56 - 2014-05-30 04:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-06-14 15:56 - 2014-05-30 04:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2014-06-14 15:56 - 2014-05-30 04:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-06-14 15:56 - 2014-05-30 04:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2014-06-14 15:56 - 2014-05-30 04:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-06-14 15:56 - 2014-05-30 03:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-06-14 15:56 - 2014-05-30 03:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-06-14 15:56 - 2014-05-30 03:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-06-14 15:56 - 2014-05-30 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2014-06-14 15:56 - 2014-05-30 03:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2014-06-14 15:56 - 2014-05-30 03:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-06-14 15:56 - 2014-05-30 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2014-06-14 15:56 - 2014-05-30 03:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-06-14 15:56 - 2014-05-30 03:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-06-14 15:56 - 2014-05-30 03:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-06-14 15:56 - 2014-05-30 03:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-06-14 15:56 - 2014-05-30 03:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-06-14 15:56 - 2014-05-30 03:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-06-14 15:56 - 2014-05-30 03:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2014-06-14 15:56 - 2014-05-30 03:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2014-06-14 15:56 - 2014-05-30 03:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2014-06-14 15:56 - 2014-05-30 03:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2014-06-14 15:56 - 2014-05-30 03:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2014-06-14 15:56 - 2014-05-30 03:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2014-06-14 15:56 - 2014-05-30 03:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-06-14 15:56 - 2014-05-30 03:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2014-06-14 15:56 - 2014-05-30 03:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2014-06-14 15:56 - 2014-05-30 02:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-06-14 15:56 - 2014-05-30 02:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-06-14 15:56 - 2014-05-30 02:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-06-14 15:56 - 2014-05-30 02:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2014-06-14 15:56 - 2014-05-30 02:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2014-06-14 15:56 - 2014-05-30 02:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-06-14 15:56 - 2014-05-30 02:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-06-14 15:56 - 2014-05-30 02:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-06-14 15:56 - 2014-05-30 02:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-06-14 15:56 - 2014-05-30 02:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-06-14 15:56 - 2014-05-30 02:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2014-06-14 15:56 - 2014-05-30 02:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2014-06-14 15:51 - 2014-06-08 04:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-06-14 15:50 - 2014-06-08 04:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-06-10 01:40 - 2014-06-10 01:40 - 00127173 _____ () C:\Users\Owner\Downloads\searchmyfiles-x64 (1).zip

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki.xlsx

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki (1).xlsx

2014-06-09 22:44 - 2014-06-09 22:44 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe

2014-06-09 22:35 - 2014-06-09 22:35 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe

2014-06-09 22:20 - 2005-10-20 12:03 - 00140288 _____ () C:\Users\Owner\Desktop\NTREGOPT.EXE

2014-06-09 22:12 - 2014-06-09 22:13 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (2).zip

2014-06-09 21:34 - 2014-06-09 21:34 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (1).zip

2014-06-09 21:20 - 2014-06-09 21:20 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt.zip

2014-06-05 22:58 - 2014-06-05 22:58 - 00000000 ____D () C:\Users\Owner\PresentationTube_Files_3

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PresentationTube

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\Program Files (x86)\PresentationTube

2014-06-05 22:43 - 2014-06-05 22:45 - 17710766 _____ () C:\Users\Owner\Downloads\PresentationTubeRecorderPro30.zip

 

==================== One Month Modified Files and Folders =======

 

2014-07-03 22:20 - 2014-07-03 22:18 - 00028971 _____ () C:\Users\Owner\Desktop\FRST.txt

2014-07-03 22:18 - 2014-07-03 22:18 - 00000000 ____D () C:\Users\Owner\Desktop\FRST-OlderVersion

2014-07-03 22:18 - 2014-04-20 22:06 - 00000000 ____D () C:\FRST

2014-07-03 22:18 - 2014-03-22 21:53 - 02083840 _____ (Farbar) C:\Users\Owner\Desktop\FRST64.exe

2014-07-03 22:17 - 2013-09-22 18:34 - 00000000 ____D () C:\Users\Owner\AppData\Local\Box Sync

2014-07-03 22:16 - 2013-08-14 22:01 - 00004974 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for MIKKI-PC-Owner Mikki-PC

2014-07-03 22:15 - 2014-05-28 20:36 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-07-03 22:14 - 2014-06-30 19:38 - 00000336 _____ () C:\Windows\setupact.log

2014-07-03 22:14 - 2014-06-14 16:11 - 00000386 _____ () C:\BackupLoader.ini

2014-07-03 22:14 - 2014-05-25 01:37 - 00000332 _____ () C:\Windows\Tasks\GlaryInitialize 5.job

2014-07-03 22:14 - 2010-11-07 19:02 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-07-03 22:14 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-07-03 22:13 - 2010-07-31 12:39 - 01455326 _____ () C:\Windows\WindowsUpdate.log

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\Users\Owner\Desktop\JavaRa070314.txt

2014-07-03 22:03 - 2014-07-03 22:03 - 00003495 _____ () C:\JavaRa.log

2014-07-03 21:58 - 2013-02-28 13:19 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-07-03 21:55 - 2014-07-03 21:56 - 00165483 _____ () C:\Users\Owner\Desktop\JavaRa-1.16-28-5-13.zip

2014-07-03 21:55 - 2014-07-03 21:55 - 00165483 _____ () C:\Users\Owner\Downloads\JavaRa-1.16-28-5-13.zip

2014-07-03 21:51 - 2010-11-07 18:48 - 00000856 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000Core.job

2014-07-03 21:48 - 2014-06-21 12:43 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-07-03 21:42 - 2010-11-07 18:48 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000UA.job

2014-07-03 07:30 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-07-03 07:30 - 2009-07-13 23:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-07-02 06:47 - 2014-06-30 19:08 - 00150416 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT

2014-07-02 06:44 - 2014-07-02 06:43 - 00862376 _____ () C:\Windows\Minidump\070214-31465-01.dmp

2014-07-02 06:44 - 2014-06-30 19:38 - 05254520 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-07-02 06:43 - 2014-07-02 06:43 - 424165171 _____ () C:\Windows\MEMORY.DMP

2014-07-02 06:43 - 2014-04-20 19:03 - 00000000 ____D () C:\Windows\Minidump

2014-07-02 02:00 - 2014-05-26 19:55 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MediaMonkey

2014-07-02 01:31 - 2014-05-26 19:55 - 00001014 _____ () C:\Users\Public\Desktop\MediaMonkey.lnk

2014-07-02 01:31 - 2014-05-26 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey

2014-07-02 01:31 - 2014-05-26 19:55 - 00000000 ____D () C:\Program Files (x86)\MediaMonkey

2014-07-02 01:30 - 2014-07-02 01:30 - 15197736 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_4.1.3.1708.exe

2014-07-02 01:22 - 2014-05-28 18:39 - 00068541 _____ () C:\Users\Owner\Downloads\FRST.txt

2014-07-02 01:18 - 2014-07-02 01:17 - 02083840 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (2).exe

2014-07-02 01:16 - 2014-07-02 01:16 - 01073664 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe

2014-07-02 00:59 - 2014-06-30 21:19 - 00000858 _____ () C:\Windows\PFRO.log

2014-07-01 22:40 - 2011-08-04 15:15 - 00004668 _____ () C:\Windows\mozy.flt

2014-07-01 22:40 - 2011-08-04 15:15 - 00003854 _____ () C:\Windows\mozy.blk

2014-07-01 22:03 - 2013-09-22 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Box Sync

2014-06-30 20:53 - 2014-06-30 20:53 - 00000000 ___HD () C:\Users\Owner\.boxsync

2014-06-30 20:53 - 2010-10-15 15:01 - 00000000 ____D () C:\Users\Owner

2014-06-30 20:17 - 2014-06-30 20:17 - 06326144 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\disk-defrag-setup.exe

2014-06-30 20:10 - 2014-06-30 20:10 - 00037835 _____ () C:\Users\Owner\Desktop\combofix6-30-14.txt

2014-06-30 20:09 - 2014-06-30 20:09 - 00037835 _____ () C:\ComboFix.txt

2014-06-30 20:09 - 2014-06-30 19:50 - 00000000 ____D () C:\ComboFix

2014-06-30 20:09 - 2014-02-06 21:31 - 00000000 ____D () C:\Qoobox

2014-06-30 20:05 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini

2014-06-30 20:00 - 2014-06-21 21:13 - 00000000 ____D () C:\ProgramData\Temp

2014-06-30 19:49 - 2014-05-08 21:15 - 05212874 ____R (Swearware) C:\Users\Owner\Desktop\ComboFix.exe

2014-06-30 19:38 - 2014-06-30 19:38 - 00000000 _____ () C:\Windows\setuperr.log

2014-06-30 19:36 - 2014-06-30 19:36 - 00002990 _____ () C:\Windows\System32\Tasks\{D6EDDEA0-CAD6-44C1-BE74-B6E14523E291}

2014-06-30 19:35 - 2014-06-30 19:35 - 00002990 _____ () C:\Windows\System32\Tasks\{1032C08F-28F6-4E57-A3DE-07BDDAC58C2A}

2014-06-30 19:34 - 2014-06-30 19:34 - 00001729 _____ () C:\Users\Owner\Desktop\Trend Micro Titanium Internet Security 2012.lnk

2014-06-30 19:09 - 2014-06-24 20:15 - 00000000 ____D () C:\Windows\System32\Tasks\Auslogics

2014-06-30 19:09 - 2013-04-08 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics

2014-06-30 19:09 - 2013-04-08 16:25 - 00000000 ____D () C:\Program Files (x86)\Auslogics

2014-06-30 17:27 - 2011-12-14 19:18 - 00000000 ____D () C:\Windows\SysWOW64\Adobe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer.exe

2014-06-28 13:46 - 2014-06-28 13:46 - 01080528 _____ (Unity Technologies ApS) C:\Users\Owner\Downloads\UnityWebPlayer (1).exe

2014-06-27 00:02 - 2014-06-27 00:02 - 00000633 _____ () C:\Users\Owner\Desktop\JRT.txt

2014-06-26 23:39 - 2014-06-26 23:39 - 04161050 _____ () C:\Users\Owner\Downloads\tdsskiller.zip

2014-06-26 23:36 - 2012-01-07 14:39 - 00000000 ____D () C:\Program Files\Common Files\Adobe

2014-06-26 23:36 - 2010-07-22 05:40 - 00000000 ____D () C:\ProgramData\Adobe

2014-06-26 23:32 - 2010-07-22 05:40 - 00000000 ____D () C:\Program Files (x86)\Adobe

2014-06-26 23:27 - 2012-01-07 14:40 - 00000000 ____D () C:\Program Files\Adobe

2014-06-26 23:10 - 2014-06-15 21:29 - 00000000 ____D () C:\Program Files (x86)\Morphyre

2014-06-24 19:14 - 2014-06-24 19:14 - 00204496 _____ (Malwarebytes) C:\Users\Owner\Downloads\startuplite-setup-1.07.exe

2014-06-24 19:10 - 2014-06-24 19:10 - 19623432 _____ (Auslogics Labs Pty Ltd ) C:\Users\Owner\Downloads\boost-speed-setup.exe

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\MusicBrainz

2014-06-22 22:01 - 2014-06-22 22:01 - 00000000 ____D () C:\Users\Owner\AppData\Local\cache

2014-06-22 22:00 - 2014-06-22 22:00 - 00001142 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBrainz Picard.lnk

2014-06-22 22:00 - 2014-06-22 22:00 - 00000000 ____D () C:\Program Files (x86)\MusicBrainz Picard

2014-06-22 21:58 - 2014-06-22 21:58 - 08790287 _____ (MusicBrainz) C:\Users\Owner\Downloads\picard-setup-1.2.exe

2014-06-22 21:05 - 2014-01-28 02:07 - 00000000 ____D () C:\Program Files (x86)\Evernote

2014-06-22 21:04 - 2012-08-08 05:51 - 00000000 ____D () C:\Program Files (x86)\Motorola Mobility

2014-06-22 21:03 - 2012-02-13 22:02 - 00000000 ____D () C:\ProgramData\Skype

2014-06-22 21:01 - 2012-06-20 06:00 - 00000000 ____D () C:\Program Files (x86)\Shutterfly

2014-06-22 21:00 - 2010-07-22 05:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2014-06-22 20:50 - 2014-06-22 20:50 - 01678013 _____ () C:\Users\Owner\Downloads\pc-decrapifier-2.3.1.exe

2014-06-22 20:41 - 2013-06-24 05:34 - 00000000 ____D () C:\Temp

2014-06-22 16:19 - 2014-06-22 16:19 - 00003744 ____N () C:\bootsqm.dat

2014-06-22 12:47 - 2014-06-22 12:47 - 00000036 _____ () C:\Users\Owner\Desktop\defrag.bat

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner (1).exe

2014-06-22 12:38 - 2014-06-22 12:38 - 00050688 _____ (Atribune.org) C:\Users\Owner\Desktop\ATF-Cleaner (1).exe

2014-06-22 12:32 - 2014-06-22 12:32 - 02042031 _____ () C:\Users\Owner\Downloads\PUIDGenerator25.mmip

2014-06-22 12:32 - 2014-06-22 12:32 - 00019750 _____ () C:\Users\Owner\Downloads\GenreFinder50.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00087023 _____ () C:\Users\Owner\Downloads\BatchArtFinder42.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00042067 _____ () C:\Users\Owner\Downloads\DiscogsAutoTagWeb_V4.45.mmip

2014-06-22 12:31 - 2014-06-22 12:31 - 00040134 _____ () C:\Users\Owner\Downloads\DiscogsBatchTagger_V2.15.mmip

2014-06-22 12:01 - 2014-06-22 12:01 - 00061335 _____ () C:\Users\Owner\Downloads\advancedduplicatefindfix382149.mmip

2014-06-21 21:16 - 2011-08-05 18:07 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozyHome

2014-06-21 21:16 - 2011-08-05 18:07 - 00000000 ____D () C:\Program Files\MozyHome

2014-06-21 20:24 - 2014-06-21 20:24 - 00000000 ____D () C:\ProgramData\Oracle

2014-06-21 20:23 - 2014-06-21 20:21 - 00004416 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log

2014-06-21 20:23 - 2013-05-26 21:14 - 00000000 ____D () C:\Program Files (x86)\Java

2014-06-21 17:01 - 2014-06-21 17:01 - 02021104 _____ (Coupons.com Incorporated) C:\Users\Owner\Downloads\CouponPrinterCPS.exe

2014-06-21 16:27 - 2014-06-21 16:27 - 00003058 _____ () C:\Windows\System32\Tasks\ScanToPCActivationApp.exe_{06239D3B-E808-499B-B4BA-93B2E91926CA}

2014-06-21 13:17 - 2013-06-19 18:23 - 00000000 ____D () C:\Program Files\Microsoft Office 15

2014-06-21 12:52 - 2013-01-09 21:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive

2014-06-21 12:43 - 2014-06-21 12:43 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-06-21 12:43 - 2010-11-07 19:02 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-06-21 12:31 - 2009-07-13 23:45 - 00000000 ____D () C:\Windows\Setup

2014-06-21 12:28 - 2014-06-21 12:28 - 00009400 _____ () C:\Users\Owner\Downloads\mban 6-21-14.xml

2014-06-21 12:27 - 2014-06-21 12:28 - 00024180 _____ () C:\Users\Owner\Downloads\mban 6-20-14.xml

2014-06-21 12:17 - 2014-01-28 02:05 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

2014-06-21 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF

2014-06-17 08:46 - 2014-06-17 00:07 - 00000000 ___SD () C:\Users\Owner\Box Sync

2014-06-17 00:17 - 2013-12-23 18:03 - 00000000 ____D () C:\Users\Owner\Documents\Box Files Backup (not synced)

2014-06-17 00:07 - 2014-06-17 00:07 - 00001551 _____ () C:\Users\Owner\Desktop\Box Sync.lnk

2014-06-16 23:55 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files\Box

2014-06-16 22:21 - 2014-06-16 22:21 - 00448512 _____ (OldTimer Tools) C:\Users\Owner\Downloads\TFC.exe

2014-06-16 22:20 - 2014-06-16 22:20 - 00050688 _____ (Atribune.org) C:\Users\Owner\Downloads\ATF-Cleaner.exe

2014-06-16 22:05 - 2010-10-15 15:01 - 07077888 _____ () C:\Users\Owner\NTUSER.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 86769664 _____ () C:\Windows\system32\config\SOFTWARE.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 23855104 _____ () C:\Windows\system32\config\SYSTEM.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00335872 _____ () C:\Windows\system32\config\DEFAULT.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00057344 _____ () C:\Windows\system32\config\SAM.bak

2014-06-16 22:05 - 2009-07-13 21:34 - 00028672 _____ () C:\Windows\system32\config\SECURITY.bak

2014-06-16 21:56 - 2014-06-16 21:56 - 00483809 _____ (Lars Hederer ) C:\Users\Owner\Downloads\ntregopt-setup.exe

2014-06-16 21:25 - 2010-11-07 18:48 - 00003882 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000UA

2014-06-16 21:25 - 2010-11-07 18:48 - 00003486 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2681166796-2007918134-1661358387-1000Core

2014-06-16 12:39 - 2014-03-12 11:03 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\.technic

2014-06-15 21:50 - 2014-06-15 21:50 - 00918672 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleVoiceAndVideoSetup.exe

2014-06-15 21:50 - 2013-11-20 08:17 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Mozilla

2014-06-15 21:50 - 2010-11-07 18:40 - 00000000 ____D () C:\Users\Owner\AppData\Local\Google

2014-06-15 21:31 - 2014-06-15 21:31 - 00616149 _____ () C:\Users\Owner\Downloads\tripex_312.exe

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\xml

2014-06-15 21:31 - 2014-06-15 21:31 - 00000000 ____D () C:\docs

2014-06-15 21:29 - 2014-03-08 14:20 - 00000000 ____D () C:\Program Files (x86)\iTunes

2014-06-15 21:28 - 2014-06-15 21:27 - 11980075 _____ () C:\Users\Owner\Downloads\morphyre_1v57.exe

2014-06-15 20:14 - 2013-11-20 08:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-06-15 19:42 - 2014-06-15 19:35 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\HpUpdate

2014-06-15 19:37 - 2012-12-02 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2014-06-15 19:37 - 2012-12-02 17:43 - 00000000 ____D () C:\Program Files (x86)\HP

2014-06-15 19:36 - 2014-06-15 19:36 - 00000000 ____D () C:\Windows\Hewlett-Packard

2014-06-15 18:10 - 2014-06-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Valassis

2014-06-15 18:02 - 2012-02-01 06:41 - 00000000 ____D () C:\Program Files (x86)\Amazon

2014-06-15 17:03 - 2014-05-25 01:36 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5

2014-06-15 16:56 - 2013-04-17 02:22 - 00000000 ____D () C:\Users\Owner\4-15-13_Maxx files

2014-06-15 16:49 - 2012-08-20 06:35 - 00000000 ___RD () C:\Users\Owner\Grad

2014-06-15 16:07 - 2014-06-15 16:07 - 00001087 _____ () C:\Users\Owner\Desktop\Documents - Shortcut.lnk

2014-06-15 16:06 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

2014-06-15 00:13 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache

2014-06-14 18:54 - 2010-07-22 05:34 - 00000000 ____D () C:\Program Files (x86)\Google

2014-06-14 18:53 - 2014-06-14 18:19 - 00000000 ____D () C:\Users\Owner\AppData\Local\MindGems

2014-06-14 18:20 - 2014-06-14 18:20 - 00000000 ____D () C:\Users\Owner\Documents\Dupes

2014-06-14 18:17 - 2014-06-14 18:17 - 02452548 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\AudioDedupe.exe

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fast Duplicate File Finder

2014-06-14 17:57 - 2014-06-14 17:57 - 00000000 ____D () C:\Program Files (x86)\Fast Duplicate File Finder

2014-06-14 17:56 - 2014-06-14 17:56 - 02784293 _____ (MindGems, Inc. ) C:\Users\Owner\Downloads\FastDuplicateFileFinder.exe

2014-06-14 17:40 - 2014-06-14 17:40 - 00090534 _____ () C:\Users\Owner\Documents\report.txt

2014-06-14 17:36 - 2014-06-14 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2014-06-14 17:29 - 2014-06-14 17:29 - 40514640 _____ (Google Inc.) C:\Users\Owner\Downloads\Google_Chrome_v35.0.1916.153.exe

2014-06-14 17:29 - 2014-06-14 17:29 - 33972080 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\Internet_Explorer_for_Windows_XP_(64bit)_v8.exe

2014-06-14 17:28 - 2013-02-28 13:19 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2014-06-14 17:28 - 2013-02-28 13:19 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater

2014-06-14 17:28 - 2012-02-21 08:41 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2014-06-14 17:27 - 2014-06-02 21:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-06-14 17:27 - 2013-11-20 08:17 - 00001130 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2014-06-14 17:26 - 2014-06-14 17:25 - 86930272 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Users\Owner\Downloads\Evernote_5.4.0.3698.exe

2014-06-14 17:26 - 2014-06-14 17:25 - 19168944 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(Non_IE)_v14.0.0.125.exe

2014-06-14 17:26 - 2014-06-14 17:24 - 29836648 _____ (Mozilla) C:\Users\Owner\Downloads\Mozilla_Firefox_v30.0.exe

2014-06-14 17:26 - 2014-06-14 17:24 - 18583216 _____ (Adobe Systems Incorporated) C:\Users\Owner\Downloads\Adobe_Flash_Player_(IE)_v14.0.0.125.exe

2014-06-14 17:25 - 2014-06-14 17:24 - 15196000 _____ (Ventis Media Inc. ) C:\Users\Owner\Downloads\MediaMonkey_v4.1.2.1706.exe

2014-06-14 17:10 - 2013-04-08 16:36 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Glarysoft

2014-06-14 16:53 - 2014-06-14 16:53 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled

2014-06-14 16:41 - 2012-10-04 20:36 - 00000000 ____D () C:\Users\Owner\AppData\Local\Backup Assistant Plus

2014-06-14 16:25 - 2013-08-01 20:20 - 00000000 ____D () C:\Windows\system32\MRT

2014-06-14 16:15 - 2010-10-15 16:40 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-06-14 16:11 - 2014-06-14 16:11 - 00001051 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk

2014-06-14 16:11 - 2014-05-25 01:37 - 00002972 _____ () C:\Windows\System32\Tasks\GU5SkipUAC

2014-06-14 16:11 - 2014-05-25 01:37 - 00002628 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5

2014-06-14 16:11 - 2014-05-25 01:37 - 00001063 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk

2014-06-14 16:08 - 2014-06-14 16:07 - 13566912 _____ () C:\Users\Owner\Downloads\gup5setup.exe

2014-06-14 16:08 - 2014-05-05 20:40 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-06-12 11:29 - 2014-05-07 22:13 - 00000000 ____D () C:\Users\Owner\Documents\My Box Files(mroneal@mdanderson.org)

2014-06-10 03:14 - 2013-10-20 12:06 - 00000000 ____D () C:\Users\Owner\Documents\Finance

2014-06-10 01:40 - 2014-06-10 01:40 - 00127173 _____ () C:\Users\Owner\Downloads\searchmyfiles-x64 (1).zip

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki.xlsx

2014-06-09 23:28 - 2014-06-09 23:28 - 00106154 _____ () C:\Users\Owner\Downloads\BUDGET_060514_mikki (1).xlsx

2014-06-09 22:44 - 2014-06-09 22:44 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64 (1).exe

2014-06-09 22:35 - 2014-06-09 22:35 - 02080768 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe

2014-06-09 22:13 - 2014-06-09 22:12 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (2).zip

2014-06-09 21:34 - 2014-06-09 21:34 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt (1).zip

2014-06-09 21:20 - 2014-06-09 21:20 - 00145237 _____ () C:\Users\Owner\Downloads\ntregopt.zip

2014-06-08 04:13 - 2014-06-14 15:51 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-06-08 04:08 - 2014-06-14 15:50 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-06-05 22:58 - 2014-06-05 22:58 - 00000000 ____D () C:\Users\Owner\PresentationTube_Files_3

2014-06-05 22:58 - 2010-10-15 15:02 - 00000000 ____D () C:\Users\Owner\AppData\Local\VirtualStore

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PresentationTube

2014-06-05 22:51 - 2014-06-05 22:51 - 00000000 ____D () C:\Program Files (x86)\PresentationTube

2014-06-05 22:50 - 2013-06-19 20:23 - 00000000 ___RD () C:\Users\Owner\SkyDrive

2014-06-05 22:45 - 2014-06-05 22:43 - 17710766 _____ () C:\Users\Owner\Downloads\PresentationTubeRecorderPro30.zip

 

Files to move or delete:

====================

C:\Users\Owner\cc_20130408_145109.reg

C:\Users\Owner\setup.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2014-06-28 00:40

 

==================== End Of Log ============================

 

[AdvancedSetup]

Well you have a boatload of software loading with Windows and you're running Trend Micro antivirus which typically can be a pretty resource heavy antivirus plus many apps that are reaching out to sync with the different apps on the Internet t Cloud services.  What if you run MSCONFIG and then click on "Diagnostic startup" and restart the computer. Is it noticeably faster now?