Jump to content

Laptop running strangely, been to the local shop, but


Recommended Posts

Had a virus removed at the local shop, but every program stops responding intermittently and comes back slowly. Opera crashes if I try to download an attachment from an Outlook web app, IE crashes when I try and reply to an email. Malwarebytes keeps blocking malicious websites and refers to bin files in my C: drive. Should those be deleted? Thanks for any and all help!

 

FRST:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-07-2014 01
Ran by Robert (administrator) on ROBERT-PC on 18-07-2014 13:00:33
Running from C:\Users\Robert\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Code 42 Software) C:\Program Files\CrashPlan\CrashPlanService.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Novatel Wireless Inc.) C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
() C:\ExpressGateUtil\VAWinService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
() C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUS) C:\Windows\AsScrPro.exe
(Code 42 Software, Inc.) C:\Program Files\CrashPlan\CrashPlanTray.exe
() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwtxapps.exe
(PFU LIMITED) C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsMon.exe
() C:\ExpressGateUtil\VAWinAgent.exe
(PFU LIMITED) C:\Windows\SSDriver\fi5110\SsWiaChecker.exe
(Windows ® Win 7 DDK provider) C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(Dropbox, Inc.) C:\Users\Robert\AppData\Roaming\Dropbox\bin\Dropbox.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.1 Home Edition\bin\EpmNews.exe
(MagicISO, Inc.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Microsoft Corporation) C:\Windows\System32\wiawow64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\pia_manager\pia_manager.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(http://www.ruby-lang.org/) C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\bin\rubyw.exe
() C:\Program Files\pia_manager\pia_manager.exe
(http://www.ruby-lang.org/) C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\bin\rubyw.exe
() C:\Program Files\pia_manager\pia_tray\pia_tray.exe
(Code 42 Software, Inc.) C:\Program Files\CrashPlan\CrashPlanTray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Program Files (x86)\Moneydance\Moneydance.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
() C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
(Tracker Software Products (Canada) Ltd.) C:\Program Files\Tracker Software\PDF Viewer\PDFXCview.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Code 42 Software) C:\Program Files\CrashPlan\CrashPlanDesktop.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
() C:\Program Files\pia_manager\openvpn.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_14_0_0_145_ActiveX.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-15] ()
HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2735400 2011-03-31] (Synaptics Incorporated)
HKLM\...\Run: [intelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [synAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [92968 2010-10-08] (Synaptics Incorporated)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\THXCfg64.dll [17920 2009-10-15] (Creative Technology Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11075176 2010-07-22] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [shadowPlay] => C:\Windows\system32\nvspcap64.dll [1179576 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1568000 2014-07-03] (Bitdefender)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] ()
HKLM-x32\...\Run: [ASUS Screen Saver Protector] => C:\Windows\AsScrPro.exe [3058304 2011-02-23] (ASUS)
HKLM-x32\...\Run: [THX TruStudio NB Settings] => C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [905216 2010-09-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [updReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [VAWinAgent] => C:\ExpressGateUtil\VAWinAgent.exe [21504 2010-08-12] ()
HKLM-x32\...\Run: [scanSnap WIA Service Checker] => C:\Windows\SSDriver\fi5110\SsWiaChecker.exe [86016 2009-09-30] (PFU LIMITED)
HKLM-x32\...\Run: [FLxHCIm] => C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [37888 2010-11-19] (Windows ® Win 7 DDK provider)
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [74752 2011-07-11] (Nullsoft, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-03] (Apple Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5716608 2011-07-21] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.1 Home Edition\bin\EpmNews.exe [2086984 2012-11-29] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2013-12-05] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [brStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5563760 2014-06-02] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694072 2013-10-15] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1852264 2014-05-23] (Western Digital Technologies, Inc.)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [842048 2011-03-17] (DT Soft Ltd)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [RemotePrint] => C:\Program Files (x86)\Fixmo\Remote Print\Remote Print.exe [48640 2011-01-24] (Chocolate Chunk Apps)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2646128 2010-11-06] (PeerBlock, LLC)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1326408 2013-11-15] (Apple Inc.)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6262552 2014-06-24] (Piriform Ltd)
HKU\S-1-5-21-4139967906-2727956835-2078117196-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [810968 2014-07-08] (Bitdefender)
AppInit_DLLs: => File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CrashPlan Tray.lnk
ShortcutTarget: CrashPlan Tray.lnk -> C:\Program Files\CrashPlan\CrashPlanTray.exe (Code 42 Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk
ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScanSnap Manager.lnk
ShortcutTarget: ScanSnap Manager.lnk -> C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsMon.exe (PFU LIMITED)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Robert\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
ShellIconOverlayIdentifiers: AsusWSShellExt_B -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: AsusWSShellExt_O -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: 
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://wolcottllc.net:555/sites/tps/Lists/TPS%20Entry/AllItems.aspx
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://wolcottllc.net:555/sites/0050/09-0030/Action%20Pages/PartyReview.aspx
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: PDFXChange 4.0 -> {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} -> C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll (Tracker Software Products (Canada) Ltd.)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll (Tracker Software Products (Canada) Ltd.)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {9BDF4724-10AA-43D5-BD15-AEA0D2287303} http://zone.msn.com/bingame/zpagames/zpa_txhe.cab79352.cab
DPF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
DPF: HKLM-x32 {DAF7E6E6-D53A-439A-B28D-12271406B8A9} http://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\syswow64\urlmon.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 209.222.18.222 209.222.18.218
 
FireFox:
========
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\hzre6x1l.default
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF NetworkProxy: "http", "109.202.98.42"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "ssl", "109.202.98.42"
FF NetworkProxy: "ssl_port", 8081
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=10.65.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 - C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Robert\AppData\Local\Citrix\Plugins\94\npappdetector.dll (Citrix Online)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Robert\AppData\Roaming\mozilla\plugins\npatgpc.dll (Cisco WebEx LLC)
FF Extension: Garmin Communicator - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\hzre6x1l.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2013-11-20]
FF Extension: Imgur Uploader - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\hzre6x1l.default\Extensions\giorgio@gilestro.tk.xpi [2012-03-07]
FF Extension: Beef Taco (Targeted Advertising Cookie Opt-Out) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\hzre6x1l.default\Extensions\john@velvetcache.org.xpi [2011-03-30]
FF Extension: Adblock Plus - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\hzre6x1l.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-03-30]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-07-16]
FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Robert\AppData\Roaming\IDM\idmmzcc3
 
==================== Services (Whitelisted) =================
 
R2 astccV6; C:\Windows\SysWOW64\nlssrv32.exe [71496 2013-06-11] (Nalpeiron Ltd.)
S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2011-03-29] (Autodesk)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 CrashPlanService; C:\Program Files\CrashPlan\CrashPlanService.exe [223232 2014-06-26] (Code 42 Software) [File not signed]
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2011-02-23] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2011-02-23] (Creative Labs) [File not signed]
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] () [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
R2 NWVZHelper; C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe [270848 2010-06-14] (Novatel Wireless Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
S4 SQLAgent$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-06-12] (Bitdefender)
R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [77312 2010-08-20] () [File not signed]
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1513416 2014-07-01] (Bitdefender)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-06-02] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-06-02] (Western Digital Technologies, Inc.)
 
==================== Drivers (Whitelisted) ====================
 
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2013-12-02] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2013-12-02] (BitDefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
S3 BthPan; C:\Windows\System32\DRIVERS\bthpan.sys [93696 2011-03-31] (Microsoft Corporation) [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [272448 2011-07-28] (DT Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2012-12-21] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14920 2012-12-21] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2012-12-21] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2012-12-21] ()
R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [49664 2010-11-19] (Fresco Logic)
R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-18] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [45600 2009-12-17] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [24176 2010-11-06] ()
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-16] ()
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MREMP50; \??\C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS [X]
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50; \??\C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
S3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-18 13:00 - 2014-07-18 13:01 - 00037627 _____ () C:\Users\Robert\Downloads\FRST.txt
2014-07-18 13:00 - 2014-07-18 13:00 - 00000000 ____D () C:\FRST
2014-07-18 12:59 - 2014-07-18 12:59 - 02086912 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2014-07-18 12:49 - 2014-07-18 12:50 - 05336664 _____ () C:\Users\Robert\Downloads\RogueKillerX64.exe
2014-07-18 11:20 - 2014-07-18 11:20 - 00000000 ____D () C:\Users\Robert\Documents\RhinoSoft
2014-07-18 11:06 - 2014-07-18 11:06 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-18 11:06 - 2014-07-18 11:06 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-18 11:06 - 2014-07-18 11:06 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-18 11:06 - 2014-07-18 11:06 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-07-18 11:06 - 2014-07-18 11:06 - 00000000 ____D () C:\Program Files\Java
2014-07-18 11:03 - 2014-07-18 11:04 - 10276600 _____ (Opera Software ASA) C:\Users\Robert\Downloads\Opera_1215_en_Setup.exe
2014-07-18 11:01 - 2014-07-18 11:02 - 10276600 _____ (Opera Software ASA) C:\Users\Robert\Downloads\5822.tmp
2014-07-18 11:00 - 2014-07-18 11:00 - 31012264 _____ (Oracle Corporation) C:\Users\Robert\Downloads\jre-7u65-windows-x64.exe
2014-07-18 10:59 - 2014-07-18 10:59 - 00001801 _____ () C:\Users\Robert\Downloads\Default.jnlp
2014-07-18 10:46 - 2014-07-18 10:46 - 00302011 _____ () C:\Users\Robert\Downloads\WindowsUpdateDiagnostic.diagcab
2014-07-18 07:17 - 2014-07-18 07:17 - 00000385 _____ () C:\Users\Robert\AppData\Roaminguser_gensett.xml
2014-07-18 07:12 - 2014-07-18 07:12 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-07-18 07:11 - 2014-07-18 07:11 - 00000022 _____ () C:\Windows\S.dirmngr
2014-07-18 07:09 - 2014-07-18 07:09 - 00000896 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_18__13_9_13.txt
2014-07-18 07:04 - 2014-07-18 07:04 - 00043520 _____ (Piriform Ltd) C:\Windows\system32\RecuvaBootTime.exe
2014-07-18 07:04 - 2014-07-18 07:04 - 00000174 _____ () C:\Windows\system32\RecuvaBootTimeConfig.cfg
2014-07-17 14:24 - 2014-07-17 14:24 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\CrashPlan
2014-07-17 14:23 - 2014-07-17 14:24 - 00000000 ____D () C:\ProgramData\CrashPlan
2014-07-17 14:23 - 2014-07-17 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrashPlan
2014-07-17 14:23 - 2014-07-17 14:23 - 00000000 ____D () C:\Program Files\CrashPlan
2014-07-17 11:42 - 2014-07-17 11:42 - 00049941 _____ () C:\Users\Robert\Downloads\22F3.tmp
2014-07-16 20:30 - 2014-07-16 20:30 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys.upd
2014-07-16 20:30 - 2014-07-16 20:30 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll.upd
2014-07-16 20:22 - 2014-07-16 20:22 - 00617819 _____ () C:\ProgramData\1405561798.bdinstall.bin
2014-07-16 20:00 - 2014-07-16 20:00 - 00002128 _____ () C:\Users\Public\Desktop\Bitdefender Antivirus Plus 2015.lnk
2014-07-16 20:00 - 2014-07-16 20:00 - 00000684 ____H () C:\bdr-cf01
2014-07-16 20:00 - 2014-07-16 20:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-07-16 20:00 - 2014-07-16 20:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-07-16 19:59 - 2014-07-16 19:59 - 00000000 ____D () C:\ProgramData\BDLogging
2014-07-16 19:59 - 2013-12-02 12:58 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-07-16 19:59 - 2013-12-02 12:56 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-07-16 19:59 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2014-07-16 19:59 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2014-07-16 19:59 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2014-07-16 19:59 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2014-07-16 19:54 - 2014-07-16 20:06 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Bitdefender
2014-07-16 19:53 - 2014-07-16 20:00 - 00253404 ____H () C:\bdr-ld01
2014-07-16 19:53 - 2014-07-16 20:00 - 00009216 ____H () C:\bdr-ld01.mbr
2014-07-16 19:53 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz
2014-07-16 19:53 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01
2014-07-16 19:50 - 2014-07-16 20:00 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____N () C:\Windows\system32\bdsandboxuiskin32.dll
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____D () C:\Program Files\Bitdefender
2014-07-16 19:50 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll
2014-07-16 19:50 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll
2014-07-16 19:50 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2014-07-16 19:50 - 2013-08-07 13:46 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-07-16 19:49 - 2014-07-16 19:49 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\QuickScan
2014-07-16 19:41 - 2014-07-16 19:50 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-07-16 19:37 - 2014-07-16 19:37 - 06770064 _____ () C:\Users\Robert\Downloads\DE21.tmp
2014-07-16 14:20 - 2014-07-16 14:20 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\ODIN
2014-07-16 10:19 - 2014-07-16 10:19 - 00182000 _____ () C:\Users\Robert\Downloads\3B31.tmp
2014-07-15 20:26 - 2014-07-15 21:47 - 00000000 ____D () C:\Program Files (x86)\WinThruster
2014-07-15 20:26 - 2014-07-15 20:26 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Solvusoft
2014-07-15 18:36 - 2014-07-16 18:18 - 00001572 _____ () C:\Users\Robert\.pia_manager_crash.log
2014-07-15 17:45 - 2014-07-15 17:45 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-ROBERT-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2014-07-15 17:45 - 2014-07-15 17:45 - 00000000 ____D () C:\RegBackup
2014-07-15 16:28 - 2014-07-15 16:28 - 00002165 _____ () C:\Users\Robert\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-07-15 16:28 - 2014-07-15 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-07-15 16:22 - 2014-07-15 16:22 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-07-15 15:59 - 2014-07-18 07:09 - 00059554 _____ () C:\Windows\PFRO.log
2014-07-15 15:35 - 2014-07-18 12:16 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-15 15:34 - 2014-07-15 15:34 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-15 15:34 - 2014-07-15 15:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-15 15:34 - 2014-07-15 15:34 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-15 15:34 - 2014-07-15 15:34 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-15 15:34 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-15 15:34 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-15 15:34 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-15 14:49 - 2014-07-15 14:49 - 00000911 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_15__20_49_37.txt
2014-07-14 20:40 - 2014-07-14 20:40 - 00000165 ____H () C:\Users\Robert\Downloads\~$Wyoming Leasehold Takeoff Assignment Sheet_Carbon_Sweetwater_20140714.xlsx
2014-07-14 12:36 - 2014-07-14 13:49 - 00000000 ____D () C:\Program Files\Highresolution Enterprises
2014-07-14 12:36 - 2014-07-14 12:36 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Highresolution Enterprises
2014-07-13 13:52 - 2014-07-13 13:54 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\MechCAD
2014-07-12 16:44 - 2014-07-12 16:45 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-12 11:36 - 2014-07-12 11:36 - 00000911 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_12__17_36_15.txt
2014-07-11 21:14 - 2014-07-11 21:14 - 00000896 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_12__3_14_20.txt
2014-07-11 21:06 - 2014-07-11 21:06 - 00000867 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_12__3_6_48.txt
2014-07-11 06:51 - 2014-07-15 14:58 - 00000000 ____D () C:\Users\Robert\Desktop\Piriform
2014-07-10 10:15 - 2014-07-18 07:03 - 00000000 ____D () C:\Program Files\Recuva
2014-07-10 10:15 - 2014-07-10 10:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-07-10 10:15 - 2014-07-10 10:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2014-07-10 10:15 - 2014-07-10 10:15 - 00000000 ____D () C:\Program Files\Speccy
2014-07-10 10:14 - 2014-07-10 10:15 - 00000000 ____D () C:\Program Files\Defraggler
2014-07-10 10:14 - 2014-07-10 10:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2014-07-10 07:52 - 2014-07-18 07:11 - 00007372 _____ () C:\Windows\setupact.log
2014-07-10 07:52 - 2014-07-10 07:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-09 17:40 - 2014-07-09 17:41 - 00000000 ____D () C:\Windows\pss
2014-07-09 08:07 - 2014-06-29 20:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-09 08:07 - 2014-06-29 20:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-09 08:07 - 2014-06-20 14:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 08:07 - 2014-06-20 13:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 08:07 - 2014-06-18 19:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 08:07 - 2014-06-18 19:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 08:07 - 2014-06-18 19:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 08:07 - 2014-06-18 18:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 08:07 - 2014-06-18 18:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-09 08:07 - 2014-06-18 18:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 08:07 - 2014-06-18 18:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-09 08:07 - 2014-06-18 18:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-09 08:07 - 2014-06-18 18:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 08:07 - 2014-06-18 18:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 08:07 - 2014-06-18 18:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-09 08:07 - 2014-06-18 18:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-09 08:07 - 2014-06-18 18:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-09 08:07 - 2014-06-18 18:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-09 08:07 - 2014-06-18 18:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 08:07 - 2014-06-18 18:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 08:07 - 2014-06-18 18:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 08:07 - 2014-06-18 17:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 08:07 - 2014-06-18 17:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 08:07 - 2014-06-18 17:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 08:07 - 2014-06-18 17:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 08:07 - 2014-06-18 17:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 08:07 - 2014-06-18 17:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 08:07 - 2014-06-18 17:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 08:07 - 2014-06-18 17:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-09 08:07 - 2014-06-18 17:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-09 08:07 - 2014-06-18 17:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-09 08:07 - 2014-06-18 17:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-09 08:07 - 2014-06-18 17:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 08:07 - 2014-06-18 17:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 08:07 - 2014-06-18 17:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 08:07 - 2014-06-18 17:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-09 08:07 - 2014-06-18 17:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 08:07 - 2014-06-18 17:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-09 08:07 - 2014-06-18 17:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-09 08:07 - 2014-06-18 17:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-09 08:07 - 2014-06-18 17:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-09 08:07 - 2014-06-18 17:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 08:07 - 2014-06-18 17:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-09 08:07 - 2014-06-18 17:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-09 08:07 - 2014-06-18 16:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 08:07 - 2014-06-18 16:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 08:07 - 2014-06-18 16:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 08:07 - 2014-06-18 16:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 08:07 - 2014-06-18 16:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 08:07 - 2014-06-18 16:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 08:07 - 2014-06-18 16:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-09 08:07 - 2014-06-18 16:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 08:07 - 2014-06-18 16:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 08:07 - 2014-06-18 16:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 08:07 - 2014-06-18 16:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-09 08:07 - 2014-06-18 16:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 08:07 - 2014-06-18 16:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 08:07 - 2014-06-18 16:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-09 08:07 - 2014-06-17 20:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 08:07 - 2014-06-17 19:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 08:07 - 2014-06-17 19:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 08:07 - 2014-06-06 04:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 08:07 - 2014-06-06 03:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-09 08:07 - 2014-05-30 02:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-09 08:07 - 2014-05-30 01:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-09 08:07 - 2014-05-30 00:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-09 08:04 - 2014-06-05 08:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 08:04 - 2014-06-05 08:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-07-09 08:04 - 2014-06-05 08:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-08 13:23 - 2014-07-08 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moneydance
2014-07-08 13:23 - 2014-07-08 13:23 - 00000000 ____D () C:\Program Files (x86)\Moneydance
2014-07-08 13:10 - 2014-07-08 13:16 - 00000000 ____D () C:\Users\Robert\.moneydance
2014-07-06 23:05 - 2014-07-07 15:23 - 00000000 ____D () C:\Program Files (x86)\Quicken
2014-07-06 23:05 - 2014-07-06 23:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quicken 2014
2014-07-06 23:05 - 2013-12-13 15:10 - 04200744 _____ (Amyuni Technologies http://www.amyuni.com) C:\Windows\SysWOW64\cdintf400.dll
2014-07-06 22:46 - 2014-07-07 07:14 - 00002186 _____ () C:\Users\Robert\screenleap.log
2014-07-06 22:46 - 2014-07-07 05:33 - 00000172 _____ () C:\Users\Robert\.screenleap
2014-07-06 21:16 - 2014-07-06 23:05 - 00000126 _____ () C:\Windows\QUICKEN.INI
2014-07-06 20:04 - 2014-07-06 20:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-02 07:24 - 2014-07-02 07:24 - 00002214 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-07-02 07:24 - 2014-07-02 07:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-06-30 18:41 - 2014-06-30 18:41 - 00000218 _____ () C:\Users\Robert\.recently-used.xbel
2014-06-30 16:09 - 2014-06-30 16:09 - 00000000 ____D () C:\Users\Robert\Downloads\Tor Browser
2014-06-24 12:24 - 2014-06-24 12:24 - 00000000 ____D () C:\Program Files\Western Digital
 
==================== One Month Modified Files and Folders =======
 
2014-07-18 13:02 - 2012-09-16 20:18 - 00000000 ____D () C:\Users\Robert\Documents\Outlook Files
2014-07-18 13:01 - 2014-07-18 13:00 - 00037627 _____ () C:\Users\Robert\Downloads\FRST.txt
2014-07-18 13:00 - 2014-07-18 13:00 - 00000000 ____D () C:\FRST
2014-07-18 12:59 - 2014-07-18 12:59 - 02086912 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2014-07-18 12:56 - 2012-12-14 21:39 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\uTorrent
2014-07-18 12:50 - 2014-07-18 12:49 - 05336664 _____ () C:\Users\Robert\Downloads\RogueKillerX64.exe
2014-07-18 12:50 - 2012-09-14 12:30 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-18 12:33 - 2011-02-23 06:08 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-18 12:16 - 2014-07-15 15:35 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-18 11:34 - 2014-04-02 09:48 - 00000390 _____ () C:\Windows\Tasks\update-S-1-5-21-4139967906-2727956835-2078117196-1000.job
2014-07-18 11:21 - 2014-04-02 09:48 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot
2014-07-18 11:20 - 2014-07-18 11:20 - 00000000 ____D () C:\Users\Robert\Documents\RhinoSoft
2014-07-18 11:06 - 2014-07-18 11:06 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-18 11:06 - 2014-07-18 11:06 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-18 11:06 - 2014-07-18 11:06 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-18 11:06 - 2014-07-18 11:06 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-07-18 11:06 - 2014-07-18 11:06 - 00000000 ____D () C:\Program Files\Java
2014-07-18 11:04 - 2014-07-18 11:03 - 10276600 _____ (Opera Software ASA) C:\Users\Robert\Downloads\Opera_1215_en_Setup.exe
2014-07-18 11:02 - 2014-07-18 11:01 - 10276600 _____ (Opera Software ASA) C:\Users\Robert\Downloads\5822.tmp
2014-07-18 11:00 - 2014-07-18 11:00 - 31012264 _____ (Oracle Corporation) C:\Users\Robert\Downloads\jre-7u65-windows-x64.exe
2014-07-18 10:59 - 2014-07-18 10:59 - 00001801 _____ () C:\Users\Robert\Downloads\Default.jnlp
2014-07-18 10:48 - 2011-02-23 05:56 - 01650371 _____ () C:\Windows\WindowsUpdate.log
2014-07-18 10:46 - 2014-07-18 10:46 - 00302011 _____ () C:\Users\Robert\Downloads\WindowsUpdateDiagnostic.diagcab
2014-07-18 10:36 - 2013-02-25 13:04 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Dropbox
2014-07-18 07:32 - 2012-06-10 21:45 - 00000000 ____D () C:\Users\Robert\AppData\Local\43BC30EA-DBDD-4AB3-9BA4-BB444A2D90AB.aplzod
2014-07-18 07:29 - 2014-06-07 14:55 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-18 07:29 - 2009-07-13 23:32 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-07-18 07:29 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\tracing
2014-07-18 07:19 - 2009-07-13 22:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-18 07:19 - 2009-07-13 22:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-18 07:17 - 2014-07-18 07:17 - 00000385 _____ () C:\Users\Robert\AppData\Roaminguser_gensett.xml
2014-07-18 07:17 - 2014-06-07 14:50 - 00008192 _____ () C:\Windows\SysWOW64\WDPABKP.dat
2014-07-18 07:17 - 2014-05-19 09:19 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\DropboxMaster
2014-07-18 07:17 - 2013-02-25 13:07 - 00000000 ___RD () C:\Users\Robert\Dropbox
2014-07-18 07:17 - 2011-02-23 06:08 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-18 07:12 - 2014-07-18 07:12 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-07-18 07:11 - 2014-07-18 07:11 - 00000022 _____ () C:\Windows\S.dirmngr
2014-07-18 07:11 - 2014-07-10 07:52 - 00007372 _____ () C:\Windows\setupact.log
2014-07-18 07:11 - 2014-05-01 13:44 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-07-18 07:11 - 2011-02-23 06:36 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-18 07:11 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-18 07:09 - 2014-07-18 07:09 - 00000896 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_18__13_9_13.txt
2014-07-18 07:09 - 2014-07-15 15:59 - 00059554 _____ () C:\Windows\PFRO.log
2014-07-18 07:04 - 2014-07-18 07:04 - 00043520 _____ (Piriform Ltd) C:\Windows\system32\RecuvaBootTime.exe
2014-07-18 07:04 - 2014-07-18 07:04 - 00000174 _____ () C:\Windows\system32\RecuvaBootTimeConfig.cfg
2014-07-18 07:03 - 2014-07-10 10:15 - 00000000 ____D () C:\Program Files\Recuva
2014-07-17 22:40 - 2014-05-05 09:39 - 00025430 _____ () C:\Users\Robert\Documents\analysis.xlsx
2014-07-17 22:27 - 2009-07-13 23:13 - 00878414 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-17 21:05 - 2011-04-04 15:55 - 00000000 ____D () C:\Users\Robert\AppData\Local\CrashDumps
2014-07-17 14:24 - 2014-07-17 14:24 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\CrashPlan
2014-07-17 14:24 - 2014-07-17 14:23 - 00000000 ____D () C:\ProgramData\CrashPlan
2014-07-17 14:23 - 2014-07-17 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrashPlan
2014-07-17 14:23 - 2014-07-17 14:23 - 00000000 ____D () C:\Program Files\CrashPlan
2014-07-17 11:42 - 2014-07-17 11:42 - 00049941 _____ () C:\Users\Robert\Downloads\22F3.tmp
2014-07-16 20:30 - 2014-07-16 20:30 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys.upd
2014-07-16 20:30 - 2014-07-16 20:30 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll.upd
2014-07-16 20:22 - 2014-07-16 20:22 - 00617819 _____ () C:\ProgramData\1405561798.bdinstall.bin
2014-07-16 20:06 - 2014-07-16 19:54 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Bitdefender
2014-07-16 20:00 - 2014-07-16 20:00 - 00002128 _____ () C:\Users\Public\Desktop\Bitdefender Antivirus Plus 2015.lnk
2014-07-16 20:00 - 2014-07-16 20:00 - 00000684 ____H () C:\bdr-cf01
2014-07-16 20:00 - 2014-07-16 20:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-07-16 20:00 - 2014-07-16 20:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-07-16 20:00 - 2014-07-16 19:53 - 00253404 ____H () C:\bdr-ld01
2014-07-16 20:00 - 2014-07-16 19:53 - 00009216 ____H () C:\bdr-ld01.mbr
2014-07-16 20:00 - 2014-07-16 19:50 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-07-16 19:59 - 2014-07-16 19:59 - 00000000 ____D () C:\ProgramData\BDLogging
2014-07-16 19:54 - 2009-07-13 21:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____N () C:\Windows\system32\bdsandboxuiskin32.dll
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____D () C:\Program Files\Bitdefender
2014-07-16 19:50 - 2014-07-16 19:41 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-07-16 19:49 - 2014-07-16 19:49 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\QuickScan
2014-07-16 19:41 - 2013-03-19 08:56 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-07-16 19:37 - 2014-07-16 19:37 - 06770064 _____ () C:\Users\Robert\Downloads\DE21.tmp
2014-07-16 19:37 - 2013-02-22 07:05 - 03908608 ___SH () C:\Users\Robert\Downloads\Thumbs.db
2014-07-16 18:18 - 2014-07-15 18:36 - 00001572 _____ () C:\Users\Robert\.pia_manager_crash.log
2014-07-16 14:20 - 2014-07-16 14:20 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\ODIN
2014-07-16 12:24 - 2014-05-05 15:17 - 00001104 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-07-16 12:24 - 2014-05-05 15:17 - 00001092 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-07-16 10:19 - 2014-07-16 10:19 - 00182000 _____ () C:\Users\Robert\Downloads\3B31.tmp
2014-07-15 21:50 - 2011-03-29 10:08 - 00141704 _____ () C:\Users\Robert\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-15 21:49 - 2011-03-29 10:05 - 00000000 ____D () C:\Users\Robert
2014-07-15 21:47 - 2014-07-15 20:26 - 00000000 ____D () C:\Program Files (x86)\WinThruster
2014-07-15 21:47 - 2011-02-23 06:48 - 00000000 ____D () C:\ExpressGateUtil
2014-07-15 21:47 - 2009-07-14 01:44 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-07-15 21:47 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\registration
2014-07-15 21:41 - 2013-03-16 13:03 - 01211392 ___SH () C:\Users\Robert\Desktop\Thumbs.db
2014-07-15 20:26 - 2014-07-15 20:26 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Solvusoft
2014-07-15 17:45 - 2014-07-15 17:45 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-ROBERT-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2014-07-15 17:45 - 2014-07-15 17:45 - 00000000 ____D () C:\RegBackup
2014-07-15 16:28 - 2014-07-15 16:28 - 00002165 _____ () C:\Users\Robert\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-07-15 16:28 - 2014-07-15 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-07-15 16:22 - 2014-07-15 16:22 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-07-15 16:17 - 2013-12-04 10:57 - 00000000 ____D () C:\AdwCleaner
2014-07-15 16:16 - 2011-03-29 11:43 - 00000000 ____D () C:\Users\Robert\AppData\Local\Google
2014-07-15 15:59 - 2009-07-13 22:45 - 00000000 ____D () C:\Windows\Setup
2014-07-15 15:57 - 2013-08-06 20:14 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-15 15:52 - 2011-07-26 22:07 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\ManyCam
2014-07-15 15:34 - 2014-07-15 15:34 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-15 15:34 - 2014-07-15 15:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-15 15:34 - 2014-07-15 15:34 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-15 15:34 - 2014-07-15 15:34 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-15 14:58 - 2014-07-11 06:51 - 00000000 ____D () C:\Users\Robert\Desktop\Piriform
2014-07-15 14:49 - 2014-07-15 14:49 - 00000911 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_15__20_49_37.txt
2014-07-15 14:05 - 2011-03-29 21:33 - 00000000 ____D () C:\Users\Robert\Documents\Wolcott
2014-07-15 06:33 - 2011-03-30 09:01 - 00012322 _____ () C:\Users\Robert\Sti_Trace.log
2014-07-14 20:40 - 2014-07-14 20:40 - 00000165 ____H () C:\Users\Robert\Downloads\~$Wyoming Leasehold Takeoff Assignment Sheet_Carbon_Sweetwater_20140714.xlsx
2014-07-14 13:49 - 2014-07-14 12:36 - 00000000 ____D () C:\Program Files\Highresolution Enterprises
2014-07-14 12:36 - 2014-07-14 12:36 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Highresolution Enterprises
2014-07-14 12:31 - 2012-06-06 13:49 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Media Player Classic
2014-07-14 06:49 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-13 13:54 - 2014-07-13 13:52 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\MechCAD
2014-07-13 13:16 - 2012-12-14 11:57 - 00000000 ____D () C:\Users\Robert\Documents\Western Minerals LLC
2014-07-13 12:44 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Health Insurance
2014-07-12 16:45 - 2014-07-12 16:44 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-12 16:45 - 2014-05-19 10:44 - 00001785 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-12 16:45 - 2014-03-01 14:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-12 16:44 - 2014-03-04 11:33 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-12 16:44 - 2014-03-01 13:56 - 00000000 ____D () C:\Program Files\iTunes
2014-07-12 11:36 - 2014-07-12 11:36 - 00000911 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_12__17_36_15.txt
2014-07-11 21:14 - 2014-07-11 21:14 - 00000896 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_12__3_14_20.txt
2014-07-11 21:06 - 2014-07-11 21:06 - 00000867 _____ () C:\Windows\system32\Recuva_BootTime_2014_7_12__3_6_48.txt
2014-07-10 18:41 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\rescache
2014-07-10 10:15 - 2014-07-10 10:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-07-10 10:15 - 2014-07-10 10:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2014-07-10 10:15 - 2014-07-10 10:15 - 00000000 ____D () C:\Program Files\Speccy
2014-07-10 10:15 - 2014-07-10 10:14 - 00000000 ____D () C:\Program Files\Defraggler
2014-07-10 10:14 - 2014-07-10 10:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2014-07-10 09:22 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Quicken
2014-07-10 07:52 - 2014-07-10 07:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-10 07:52 - 2009-07-13 22:45 - 00492504 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-10 07:49 - 2014-05-07 08:07 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-10 07:49 - 2009-07-14 01:45 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 07:49 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-10 07:49 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-10 07:33 - 2011-03-29 10:53 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-10 07:31 - 2013-08-11 09:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-09 17:41 - 2014-07-09 17:40 - 00000000 ____D () C:\Windows\pss
2014-07-09 17:35 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Registry Backup
2014-07-09 17:34 - 2011-05-25 12:43 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-09 17:33 - 2011-05-25 12:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-09 04:35 - 2011-02-23 06:15 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-07-08 16:19 - 2013-08-01 21:42 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Bitcoin
2014-07-08 14:33 - 2013-09-13 10:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-07-08 13:23 - 2014-07-08 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Moneydance
2014-07-08 13:23 - 2014-07-08 13:23 - 00000000 ____D () C:\Program Files (x86)\Moneydance
2014-07-08 13:16 - 2014-07-08 13:10 - 00000000 ____D () C:\Users\Robert\.moneydance
2014-07-08 11:50 - 2012-09-14 12:30 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-08 11:50 - 2012-09-14 12:30 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-08 11:50 - 2011-05-18 09:54 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-07 15:23 - 2014-07-06 23:05 - 00000000 ____D () C:\Program Files (x86)\Quicken
2014-07-07 14:40 - 2014-05-01 13:39 - 00003162 _____ () C:\Windows\System32\Tasks\Private Internet Access Startup
2014-07-07 14:39 - 2014-05-01 13:39 - 00000000 ____D () C:\Program Files\pia_manager
2014-07-07 07:14 - 2014-07-06 22:46 - 00002186 _____ () C:\Users\Robert\screenleap.log
2014-07-07 05:33 - 2014-07-06 22:46 - 00000172 _____ () C:\Users\Robert\.screenleap
2014-07-06 23:05 - 2014-07-06 23:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quicken 2014
2014-07-06 23:05 - 2014-07-06 21:16 - 00000126 _____ () C:\Windows\QUICKEN.INI
2014-07-06 23:05 - 2011-03-29 11:48 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Intuit
2014-07-06 23:05 - 2011-03-29 11:47 - 00000000 ____D () C:\ProgramData\Intuit
2014-07-06 21:11 - 2013-11-30 20:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-06 20:04 - 2014-07-06 20:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-06 18:35 - 2011-03-29 13:21 - 00000000 ____D () C:\Users\Robert\Quicken
2014-07-04 17:49 - 2014-07-16 19:53 - 49563064 ____H () C:\bdr-im01.gz
2014-07-04 17:11 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Home Projects
2014-07-03 13:23 - 2012-07-14 21:56 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\vlc
2014-07-02 20:58 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Recipes
2014-07-02 07:24 - 2014-07-02 07:24 - 00002214 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-07-02 07:24 - 2014-07-02 07:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-07-02 07:24 - 2011-02-23 06:07 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-30 18:41 - 2014-06-30 18:41 - 00000218 _____ () C:\Users\Robert\.recently-used.xbel
2014-06-30 16:35 - 2012-09-27 17:57 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\gtk-2.0
2014-06-30 16:35 - 2012-09-27 17:32 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\gnupg
2014-06-30 16:09 - 2014-06-30 16:09 - 00000000 ____D () C:\Users\Robert\Downloads\Tor Browser
2014-06-29 20:09 - 2014-07-09 08:07 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-29 20:04 - 2014-07-09 08:07 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-28 08:17 - 2013-03-28 11:46 - 00275456 ___SH () C:\Users\Robert\Documents\Thumbs.db
2014-06-26 17:40 - 2011-04-01 09:23 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-26 15:15 - 2011-03-29 10:53 - 00000000 ____D () C:\Users\Robert\AppData\Local\Microsoft Help
2014-06-24 15:14 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Oil Lease
2014-06-24 12:24 - 2014-06-24 12:24 - 00000000 ____D () C:\Program Files\Western Digital
2014-06-24 12:24 - 2014-06-07 14:49 - 00000000 ____D () C:\Program Files\Common Files\Western Digital
2014-06-24 12:24 - 2014-06-07 14:48 - 00000000 ____D () C:\ProgramData\Western Digital
2014-06-24 12:24 - 2014-06-07 14:48 - 00000000 ____D () C:\Program Files (x86)\Western Digital
2014-06-21 16:18 - 2012-12-14 11:58 - 00000000 ____D () C:\Users\Robert\Desktop\wallpapers
2014-06-20 14:14 - 2014-07-09 08:07 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-20 13:39 - 2014-07-09 08:07 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-20 12:22 - 2012-12-14 11:54 - 00000000 ____D () C:\Users\Robert\Documents\eBay
2014-06-20 10:47 - 2012-12-14 11:56 - 00000000 ____D () C:\Users\Robert\Documents\Tax
2014-06-19 13:27 - 2011-02-23 06:08 - 00003908 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-19 13:27 - 2011-02-23 06:08 - 00003656 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-18 19:39 - 2014-07-09 08:07 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-18 19:06 - 2014-07-09 08:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-18 19:06 - 2014-07-09 08:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-18 18:48 - 2014-07-09 08:07 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-18 18:42 - 2014-07-09 08:07 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-18 18:42 - 2014-07-09 08:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-18 18:41 - 2014-07-09 08:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-18 18:41 - 2014-07-09 08:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-18 18:32 - 2014-07-09 08:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-18 18:31 - 2014-07-09 08:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-18 18:26 - 2014-07-09 08:07 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-18 18:24 - 2014-07-09 08:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-18 18:24 - 2014-07-09 08:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-18 18:23 - 2014-07-09 08:07 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-18 18:16 - 2014-07-09 08:07 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-18 18:14 - 2014-07-09 08:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-18 18:09 - 2014-07-09 08:07 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-18 17:59 - 2014-07-09 08:07 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-18 17:56 - 2014-07-09 08:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-18 17:53 - 2014-07-09 08:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-18 17:51 - 2014-07-09 08:07 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-18 17:50 - 2014-07-09 08:07 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-18 17:48 - 2014-07-09 08:07 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-18 17:39 - 2014-07-09 08:07 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-18 17:38 - 2014-07-09 08:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-18 17:37 - 2014-07-09 08:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-18 17:36 - 2014-07-09 08:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-18 17:35 - 2014-07-09 08:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-18 17:33 - 2014-07-09 08:07 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-18 17:32 - 2014-07-09 08:07 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-18 17:28 - 2014-07-09 08:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-18 17:28 - 2014-07-09 08:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-18 17:27 - 2014-07-09 08:07 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-18 17:27 - 2014-07-09 08:07 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-18 17:25 - 2014-07-09 08:07 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-18 17:23 - 2014-07-09 08:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-18 17:22 - 2014-07-09 08:07 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-18 17:12 - 2014-07-09 08:07 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-18 17:06 - 2014-07-09 08:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-18 17:01 - 2014-07-09 08:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-18 16:59 - 2014-07-09 08:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-18 16:58 - 2014-07-09 08:07 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-18 16:58 - 2014-07-09 08:07 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-18 16:52 - 2014-07-09 08:07 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-18 16:51 - 2014-07-09 08:07 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-18 16:49 - 2014-07-09 08:07 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-18 16:46 - 2014-07-09 08:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-18 16:45 - 2014-07-09 08:07 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-18 16:35 - 2014-07-09 08:07 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-18 16:34 - 2014-07-09 08:07 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-18 16:15 - 2014-07-09 08:07 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-18 16:13 - 2014-07-09 08:07 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-18 16:09 - 2014-07-09 08:07 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-18 16:07 - 2014-07-09 08:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-18 07:55 - 2014-06-03 07:30 - 00003830 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1386263678
2014-06-18 07:55 - 2011-10-20 07:50 - 00000000 ____D () C:\Program Files (x86)\Opera
 
Some content of TEMP:
====================
C:\Users\Robert\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp80gxet.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-08 09:17
 
==================== End Of Log ============================
 
 
Link to post
Share on other sites

Addition:

 


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-07-2014 01

Ran by Robert at 2014-07-18 13:02:24

Running from C:\Users\Robert\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}

AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 

==================== Installed Programs ======================

 

64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden

Adobe AIR (x32 Version: 2.7.0.19530 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)

Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)

AMD APP KernelAnalyzer 1.8 (x32 Version: 1.8 - Advanced Micro Devices, Inc) Hidden

AMD APP Profiler 2.2 (x32 Version: 2.2 - Advanced Micro Devices, Inc) Hidden

AMD APP SDK Developer (Version: 2.4.595.10 - Advanced Micro Devices Inc.) Hidden

AMD APP SDK Runtime (Version: 2.4.595.10 - Advanced Micro Devices Inc.) Hidden

AMD APP SDK Samples (x32 Version: 2.4.595.10 - Advanced Micro Devices Inc.) Hidden

AnswerWorks 5.0 English Runtime (HKLM-x32\...\{DBCC73BA-C69A-4BF5-B4BF-F07501EE7039}) (Version: 5.0.7 - Vantage Software Technologies)

Apple Application Support (HKLM-x32\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ASUS AI Recovery (HKLM-x32\...\{02EE09E7-958A-4E7F-80B6-8BA2D262BD04}) (Version: 1.0.12 - ASUS)

ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0009 - ASUS)

ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0031 - ASUS)

ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.20 - asus)

ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 2.0.46.1429 - eCareme Technologies, Inc.)

Asus_G73_Screensaver (HKLM-x32\...\Asus_G73_Screensaver) (Version: 1.0.0001 - ASUS)

ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0014 - ASUS)

Audacity 1.3.12 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version:  - Audacity Team)

Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)

AutoCAD 2009 - English (HKLM\...\AutoCAD 2009 - English) (Version: 17.2.56.0 - Autodesk)

AutoCAD 2009 - English (Version: 17.2.56.0 - Autodesk) Hidden

Bitdefender Antivirus Plus 2015 (HKLM\...\Bitdefender) (Version: 18.12.0.958 - Bitdefender)

BlackBerry Device Software v6.0.0 for the BlackBerry 9330 smartphone (HKLM-x32\...\{E8C181E9-BBC5-4285-8147-D887D4E83952}) (Version: 6.0.0.415 (Platform 4.4.0.314) - Research In Motion Ltd.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Brother MFL-Pro Suite MFC-J4510DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)

Bulk Rename Utility 2.7.1.2 (HKLM-x32\...\Bulk Rename Utility_is1) (Version:  - TGRMN Software)

Canon PowerShot ELPH 530 HS and 320 HS_IXUS 510 HS and 240 HS Camera User Guide (HKLM-x32\...\CameraUserGuide-PSELPH530HSand320HS_IXUS510HSand240HS) (Version: 1.0.0.7 - Canon Inc.)

Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.8.0.17 - Canon Inc.)

Canon Utilities ImageBrowser EX (HKLM-x32\...\ImageBrowser EX) (Version: 1.4.0.5 - Canon Inc.)

Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)

CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)

Cisco Connect (HKLM-x32\...\Cisco Connect) (Version: 1.4.11299.0 - Cisco Consumer Products LLC)

Cisco WebEx Meetings (HKCU\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)

Complément Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Complemento Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)

Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)

Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)

CopyTrans Suite Remove Only (HKCU\...\CopyTrans Suite) (Version: 2.37 - WindSolutions)

CrashPlan (HKLM\...\{F80817FB-59A8-4591-AFB3-A8949D573B87}) (Version: 3.6.3 - Code 42 Software)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 4.41.0314.0232 - DT Soft Ltd)

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5C78021E-3C8E-4EDF-97EA-E9B8D808FD6D}) (Version:  - Microsoft)

Defraggler (HKLM\...\Defraggler) (Version: 2.17 - Piriform)

DeLorme Street Atlas USA 2008 (HKLM-x32\...\{81D0EAC7-B352-4E71-B8A1-461E41029A2E}) (Version: 1.00.2008 - DeLorme Publishing, Inc.)

DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden

DJ_AIO_06_F4500_SW_MIN (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden

Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)

EaseUS Partition Master 9.2.1 Home Edition (HKLM-x32\...\EaseUS Partition Master Home Edition_is1) (Version:  - EaseUS)

Easy DVD Player (HKLM-x32\...\Easy DVD Player) (Version: 3.5.1.0833 - ZJMedia)

ExpressGate Cloud (HKLM-x32\...\InstallShield_{499DED08-6FA8-4749-8E94-8526CC9D1CA8}) (Version: 2.1.81.393 - Asus)

ExpressGate Cloud (x32 Version: 2.1.81.393 - Asus) Hidden

Free Audio CD Burner version 1.4.7 (HKLM-x32\...\Free Audio CD Burner_is1) (Version:  - DVDVideoSoft Limited.)

Free YouTube to MP3 Converter version 3.9.35.324 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version:  - DVDVideoSoft Limited.)

Fresco Logic USB3.0 Host Controller (HKLM\...\{45C1C61B-9DA9-4B61-8C89-C76B1746C3AA}) (Version: 3.0.110.12 - Fresco Logic Inc.)

Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Garmin Communicator Plugin (HKLM-x32\...\{032A13FF-D26D-4844-9597-7EF698627985}) (Version: 4.1.0 - Garmin Ltd or its subsidiaries)

Garmin Communicator Plugin x64 (HKLM\...\{AFA301E1-B410-4F1B-B1C0-2E92FDCD94AD}) (Version: 4.1.0 - Garmin Ltd or its subsidiaries)

Garmin WebUpdater (HKLM-x32\...\{AE1EC58E-B2AC-4959-A4C2-C38202A25239}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries)

GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden

Google Drive (HKLM-x32\...\{75939021-3B68-419D-8DC1-E9823BFF9658}) (Version: 1.16.7009.9618 - Google, Inc.)

Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)

Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version:  - Google Inc.)

Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden

GoToMeeting 5.5.0.1133 (HKCU\...\GoToMeeting) (Version: 5.5.0.1133 - CitrixOnline)

Gpg4win (2.1.0) (HKLM-x32\...\GPG4Win) (Version: 2.1.0 - The Gpg4win Project)

GroundSchool - Private and Recreational Pilot (HKLM-x32\...\GroundSchool - Private and Recreational Pilot_is1) (Version:  - Dauntless Software)

HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)

HP Deskjet 3050 J610 series Basic Device Software (HKLM\...\{6457BD83-98CF-4267-93D7-F173FF3E7C25}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

HP Deskjet F4500 All-in-One Driver 14.0 Rel. 6 (HKLM\...\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}) (Version: 14.0 - HP)

HP Photosmart Plus B209a-m All-in-One Driver 14.0 Rel. 6 (HKLM\...\{B2DAB009-8236-48A0-AD7F-E940F5AB1578}) (Version: 14.0 - HP)

HP Product Detection (HKLM-x32\...\{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}) (Version: 10.7.9.0 - Hewlett-Packard Company)

iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)

Imgur Uploader (HKLM-x32\...\{21AF2C88-A2D7-436D-A261-017865640E84}) (Version: 1.0.0 - iamhrh)

InFlac 1.1.1 (HKLM-x32\...\InFlac) (Version: 1.1.1 - Michael Facquet)

Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)

Intel® Turbo Boost Technology Monitor (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.400.4 - Intel)

iTunes (HKLM\...\{33E28B58-7BA0-47B7-AA01-9225ABA2B8A9}) (Version: 11.3.0.54 - Apple Inc.)

Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.450 - Oracle)

Java 7 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417065FF}) (Version: 7.0.650 - Oracle)

Java Auto Updater (x32 Version: 2.0.6.1 - Sun Microsystems, Inc.) Hidden

Java 6 Update 30 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.300 - Oracle)

JPEG to PDF 1.0 (HKLM-x32\...\{4097ADD8-7890-4CBD-953A-1187EF2C6FA5}_is1) (Version:  - jpegtopdf.com)

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

KONICA MINOLTA bizhub C650 Series (HKLM\...\KONICA MINOLTA bizhub C650 Series Installer) (Version:  - KONICA MINOLTA)

LAME v3.98.3 for Audacity (HKLM-x32\...\LAME for Audacity_is1) (Version:  - )

MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )

Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Messenger 分享元件 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Messenger 浏览器插件 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Metes and Bounds (HKLM-x32\...\Metes and Bounds ) (Version:  - Sandy Knoll Software, LLC)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)

Microsoft Mouse and Keyboard Center (Version: 2.2.173.0 - Microsoft Corporation) Hidden

Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0404-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0804-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0816-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0C0A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Visual Web Developer 2007 (x32 Version: 12.0.4518.1066 - Microsoft Corporation) Hidden

Microsoft Office Visual Web Developer MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server 2008 (HKLM-x32\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)

Microsoft SQL Server 2008 (x32 Version:  - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.0.1600.22 - Microsoft Corporation)

Microsoft SQL Server 2008 Common Files (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Database Engine Services (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Database Engine Shared (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Management Objects (HKLM-x32\...\{F5E87B12-3C27-452F-8E78-21D42164FD83}) (Version: 10.0.1600.22 - Microsoft Corporation)

Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)

Microsoft SQL Server 2008 RsFx Driver (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden

Microsoft SQL Server 2008 Setup Support Files (English) (HKLM-x32\...\{9D6D76A6-4328-49E8-97A7-531A74841DA5}) (Version: 10.0.1600.22 - Microsoft Corporation)

Microsoft SQL Server Compact 3.5 SP1 Design Tools English (HKLM-x32\...\{0C19D563-5F25-4621-BF10-01F741BD283F}) (Version: 3.5.5692.0 - Microsoft Corporation)

Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)

Microsoft SQL Server Database Publishing Wizard 1.3 (HKLM-x32\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 10.0.1600.22 - Microsoft Corporation)

Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.0.1600.22 - Microsoft Corporation)

Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (HKLM-x32\...\Microsoft Visual Basic 2008 Express Edition with SP1 - ENU) (Version:  - Microsoft Corporation)

Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden

Microsoft Visual Basic 2008 Step by Step (HKLM-x32\...\{2680ED27-5D5B-4994-A505-16D8ADE006C0}) (Version: 2.00.10 - Microsoft Press)

Microsoft Visual C# 2008 Express Edition with SP1 - ENU (HKLM-x32\...\Microsoft Visual C# 2008 Express Edition with SP1 - ENU) (Version:  - Microsoft Corporation)

Microsoft Visual C# 2008 Express Edition with SP1 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (HKLM-x32\...\Microsoft Visual C++ 2008 Express Edition with SP1 - ENU) (Version:  - Microsoft Corporation)

Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)

Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729 - Microsoft Corporation) Hidden

Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (HKLM-x32\...\{90A80D89-A0E4-33C1-B13D-B93CB3496867}.KB945140) (Version: 1 - Microsoft Corporation)

Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)

Microsoft Visual Web Developer 2008 Express Edition with SP1 - ENU (HKLM-x32\...\Microsoft Visual Web Developer 2008 Express Edition with SP1 - ENU) (Version:  - Microsoft Corporation)

Microsoft Visual Web Developer 2008 Express Edition with SP1 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden

Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)

Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu (HKLM\...\{DFB3AD2B-4EE2-3077-BF1D-3CA164BC5336}) (Version: 3.5.30729 - Microsoft Corporation)

Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Web - enu (HKLM\...\{B6901D72-1BF0-30FB-B9BC-B6DC1266E0F4}) (Version: 3.5.30729 - Microsoft Corporation)

Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (HKLM\...\{F5C819A5-E068-4f7d-B91A-1BD18702AFFB}) (Version: 6.1.5295.17011 - Microsoft Corporation)

Moneydance 2014 (HKLM-x32\...\5244-9769-3058-9401) (Version: 2014 - The Infinite Kind)

Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)

MPC-HC 1.6.2.4902 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.6.2.4902 - MPC-HC Team)

Mr Smooth v1.0 (HKLM-x32\...\Mr Smooth_is1) (Version:  - Swim Smooth)

MrSmooth (HKLM-x32\...\{AF81A6CC-F27F-2E0C-8B9A-5F6DA8687E0E}) (Version: 1.0 - Swim Smooth (Swim Smooth UK))

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)

Net Deed Plotter (HKLM-x32\...\Net Deed Plotter) (Version: 5.50 - Greenbrier Graphics, LLC)

Net Deed Plotter (x32 Version: 5.50 - Greenbrier Graphics, LLC) Hidden

Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden

Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)

NVIDIA 3D Vision Driver 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 334.89 - NVIDIA Corporation)

NVIDIA Control Panel 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden

NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.6114 - NVIDIA Corporation)

NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)

NVIDIA Graphics Driver 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden

NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden

NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)

NVIDIA ShadowPlay 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden

NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3489 - NVIDIA Corporation) Hidden

NVIDIA Update 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden

NVIDIA Update Core (Version: 11.10.13 - NVIDIA Corporation) Hidden

NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)

Opera Stable 22.0.1471.70 (HKLM-x32\...\Opera 22.0.1471.70) (Version: 22.0.1471.70 - Opera Software ASA)

PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.194.0 - Tracker Software Products Ltd)

PDF-XChange 4 Pro (HKLM\...\{E38531EE-318C-4EFB-A36B-1A57BFBDAB3C}_is1) (Version: 4.210.210.0 - Tracker Software Products Ltd)

PeerBlock 1.1 (r518) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.1.0.518 - PeerBlock, LLC)

Private Internet Access Support Files (HKLM-x32\...\{7D72DAFF-DCB2-437B-BC22-4B2ABF21462B}) (Version: 1.0.0.0 - Private Internet Access)

PS_AIO_06_B209a-m_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden

Quicken 2011 (HKLM-x32\...\{5FE545A1-D215-4216-9189-E7B39C9D1CC1}) (Version: 20.1.8.6 - Intuit)

Quicken 2014 (HKLM-x32\...\{0877F595-254F-45F4-991D-3F72E86B17CE}) (Version: 23.1.7.6 - Intuit)

QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)

Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6162 - Realtek Semiconductor Corp.)

Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.)

Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)

Remote Print (HKLM-x32\...\{AEE380FA-85C4-465E-BC6D-C39AA0B196BA}) (Version: 1.0.0 - Fixmo)

Rosetta Stone V3 (HKLM-x32\...\{7210BCFE-ED8D-4261-8537-81B5A4BDFA2A}) (Version: 3.0.35 - Rosetta Stone)

Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden

ScanSnap (x32 Version: 4.2.31.1 - PFU Limited) Hidden

ScanSnap Manager (HKLM-x32\...\{DBCDB997-EEEB-4BE9-BAFF-26B4094DBDE6}) (Version: V4.2L31 - PFU)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden

SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)

SHIELD Streaming (Version: 1.7.321 - NVIDIA Corporation) Hidden

Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)

Sql Server Customer Experience Improvement Program (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden

SQL Server System CLR Types (HKLM-x32\...\{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}) (Version: 10.0.1600.22 - Microsoft Corporation)

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.20.0 - Synaptics Incorporated)

TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)

THX TruStudio (HKLM-x32\...\{B11AB9C8-18A6-41DC-98B4-4988CC030136}) (Version: TAMB-AUS1D-2-LB R04 - Creative Technology Limited)

Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden

Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.8.1 - Tweaking.com)

Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)

Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)

Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_VisualWebDeveloper_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)

Update for Microsoft Office 2007 System (KB2539530) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{C0BDC1DE-C35E-422B-8CBD-C1D555468720}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version:  - Microsoft)

Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_VisualWebDeveloper_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)

Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)

Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)

Update for Microsoft Visual Studio Web Authoring Component (KB945140) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{F9DE79A2-9049-4589-9787-815147371581}) (Version:  - Microsoft)

Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)

VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden

Verizon Mobile Broadband Drivers (HKLM-x32\...\{F19553C5-F843-4C27-BF9F-9DE4D901B895}) (Version: 3.02.002.002 - Novatel Wireless)

Verizon Wireless USB760 Firmware Updates (HKLM-x32\...\{CAC2CF93-B532-4A88-81FE-110750C3E4BA}) (Version: 1.0.5 - Smith Micro Software, Inc.)

Virtua Tennis 3 (HKLM-x32\...\{9B63540D-D942-4C38-B42E-A48AE0145970}) (Version: 1.00.0000 - Sega)

Visual C++ 2008 Runtime (x64) (x32 Version: 1.0.1 - Highresolution Enterprises) Hidden

VLC media player 2.0.5 (HKLM\...\VLC media player) (Version: 2.0.5 - VideoLAN)

WD Drive Utilities (HKLM-x32\...\{E61CFDDA-40DD-4400-95CA-12819C50B5C2}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.)

WD Quick View (HKLM-x32\...\{324C58C7-A292-4523-A943-91DE1EB6A1FE}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)

WD Security (HKLM-x32\...\{90C3D9C7-2F83-4399-8E28-A00228CFFDF8}) (Version: 1.0.7.3 - Western Digital Technologies, Inc.)

WD SmartWare (HKLM\...\{F6ABA2F3-9759-48CD-B25B-A07A811E92E4}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)

WD SmartWare Installer (HKLM-x32\...\{72fda14f-5a07-49d5-b7f7-202377e9b522}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)

WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.8200 - Broadcom Corporation)

Winamp (HKLM-x32\...\Winamp) (Version: 5.621  - Nullsoft, Inc)

Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)

WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )

Windows Driver Package - Broadcom (BTHUSB) Bluetooth  (02/25/2010 6.2.0.9419) (HKLM\...\85CE3A3657FAE5FD305B143E90E6FC89BA53001C) (Version: 02/25/2010 6.2.0.9419 - Broadcom)

Windows Driver Package - Broadcom Bluetooth  (01/19/2010 6.2.0.1417) (HKLM\...\7341A1B43E7FE58942EB1E820A17C18305DFBCE6) (Version: 01/19/2010 6.2.0.1417 - Broadcom)

Windows Driver Package - Broadcom Bluetooth  (07/29/2009 6.1.7100.0) (HKLM\...\2AA10AB519DC7432D599A0E860206A7DDCC27764) (Version: 07/29/2009 6.1.7100.0 - Broadcom)

Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)

Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)

Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)

Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden

Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 照片库 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 软件包 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)

WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)

YouTube Downloader 2.7.2 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version:  - BienneSoft)

用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (HKLM-x32\...\{F992409C-9D10-4AE2-BAEB-B5409AD3785E}) (Version: 15.4.5722.2 - Microsoft Corporation)

適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)

 

==================== Restore Points  =========================

 

17-07-2014 00:28:13 Windows Update

17-07-2014 20:23:13 Installed CrashPlan

18-07-2014 17:05:41 Installed Java 7 Update 65 (64-bit)

 

==================== Hosts content: ==========================

 

2009-07-13 20:34 - 2013-11-22 14:33 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {19C7B20B-2793-4CF7-8B11-B9ECCC22951E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)

Task: {27A19EF1-3E37-463E-9076-CFBDBF531D2E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {28BC49E7-D506-4AE6-9B23-5C8A85FD73F7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)

Task: {2C2D464B-0E11-4A21-A397-09901AE416A0} - System32\Tasks\IHSelfDeleteTASK => CMD

Task: {3EE206F7-C855-4E02-864D-F220A124C2B8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-23] (Google Inc.)

Task: {3EE54FA4-201F-4095-AB9A-AC0453EC7B62} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-07-31] (ASUS)

Task: {43392170-21B9-46B2-A803-6A5257DB3852} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)

Task: {46BA29E3-5B33-460B-A945-921B26B97D4B} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)

Task: {513A9BA3-6468-4365-B4E2-B0D599938CDB} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)

Task: {565F74AC-EA43-4D66-AC64-8B382E3A92B8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08] (Adobe Systems Incorporated)

Task: {5D63D84D-367A-4CFA-8588-C78422974629} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup

Task: {67A263C2-6080-4029-BB0E-19A8A57D5834} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-21] (ASUS)

Task: {9E1DF3CD-A8D6-4281-933D-EB516BE5707F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-23] (Google Inc.)

Task: {C3E22C76-EEAF-41E9-BE0F-99EA642C02BE} - System32\Tasks\{5EF2A79A-DD77-4A09-9804-A315D3E785C6} => C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CoinMiner.exe

Task: {DC697E6C-05A8-4DE4-9208-2113C39424F5} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)

Task: {DCBEC504-7775-4494-87BE-6F68C5406D08} - System32\Tasks\Opera scheduled Autoupdate 1386263678 => C:\Program Files (x86)\Opera\launcher.exe [2014-06-16] (Opera Software)

Task: {E4D90E0F-BE05-48DB-BFDE-A2DDBBAB4189} - \update-sys No Task File <==== ATTENTION

Task: {E5E8A287-2A57-4491-B0DB-CA7E2AF69BC9} - System32\Tasks\IHUninstallTrackingTASK => CMD

Task: {EB49C483-71DB-4303-AD7D-1C5E609FF0EA} - System32\Tasks\update-S-1-5-21-4139967906-2727956835-2078117196-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

Task: {EC5A2039-D127-4247-BD3A-0F2844F8E073} - System32\Tasks\Private Internet Access Startup => C:\Program Files\pia_manager\pia_manager.exe [2014-07-07] ()

Task: {FEF8A019-125B-4906-B760-118A571D1172} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\update-S-1-5-21-4139967906-2727956835-2078117196-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

 

==================== Loaded Modules (whitelisted) =============

 

2014-07-16 19:59 - 2014-06-06 15:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll

2014-07-16 19:59 - 2014-07-11 17:30 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui

2014-07-16 19:59 - 2014-06-18 10:54 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl

2014-07-16 19:59 - 2014-06-18 10:54 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl

2014-07-16 19:59 - 2014-06-18 10:54 - 02599584 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl

2014-07-16 19:59 - 2014-06-18 10:54 - 01322896 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl

2013-10-21 17:15 - 2014-02-08 11:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2012-08-08 09:32 - 2007-02-09 10:41 - 00014848 _____ () C:\Windows\System32\KOAZJA_L.dll

2014-06-26 13:07 - 2014-06-26 13:07 - 00014848 _____ () C:\Program Files\CrashPlan\md564.dll

2014-06-26 13:07 - 2014-06-26 13:07 - 00230400 _____ () C:\Program Files\CrashPlan\cpnative64.dll

2011-03-02 09:20 - 2011-03-02 09:20 - 00224256 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe

2013-09-18 10:30 - 2005-04-21 22:36 - 00143360 _____ () C:\Windows\system32\BrSNMP64.dll

2010-08-20 20:47 - 2010-08-20 20:47 - 00077312 _____ () C:\ExpressGateUtil\VAWinService.exe

2010-03-15 19:48 - 2010-03-15 19:48 - 00148816 _____ () C:\Program Files (x86)\ASUS\ASUS WebStorage\EcaremeDLL.dll

2011-02-23 06:15 - 2011-02-23 06:15 - 00030032 _____ () C:\Windows\assembly\GAC_MSIL\SqliteShared\1.0.3726.20828__0d0f4b69e50e559b\SqliteShared.dll

2011-02-23 06:15 - 2011-02-23 06:15 - 00931840 _____ () C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.60.0__db937bc2d44ff139\System.Data.SQLite.dll

2011-03-30 11:51 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll

2013-11-09 12:41 - 2013-08-23 14:36 - 00721263 _____ () C:\Windows\SysWOW64\ISCM64.dll

2012-06-18 09:24 - 2012-06-18 09:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll

2010-03-15 19:48 - 2010-03-15 19:48 - 01754448 _____ () C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe

2012-02-19 09:23 - 2011-03-31 19:29 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll

2010-09-23 18:53 - 2010-09-23 18:53 - 01601536 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

2013-12-16 12:53 - 2013-10-03 11:42 - 00069120 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe

2010-08-12 19:52 - 2010-08-12 19:52 - 00021504 _____ () C:\ExpressGateUtil\VAWinAgent.exe

2014-04-14 13:41 - 2014-04-14 13:41 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll

2010-04-02 19:21 - 2008-09-30 23:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 08818914 _____ () C:\Program Files\pia_manager\pia_manager.exe

2014-05-01 13:39 - 2014-07-07 14:39 - 00184320 _____ () C:\Program Files\pia_manager\pia_tray\pia_tray.exe

2014-07-08 13:23 - 2014-04-05 20:50 - 00288256 _____ () C:\Program Files (x86)\Moneydance\Moneydance.exe

2014-06-18 07:55 - 2014-06-18 07:54 - 01396344 _____ () C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe

2014-05-01 13:39 - 2014-07-07 14:39 - 00690176 _____ () C:\Program Files\pia_manager\openvpn.exe

2014-05-01 13:39 - 2014-07-07 14:39 - 00190317 _____ () C:\Program Files\pia_manager\liblzo2-2.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00108441 _____ () C:\Program Files\pia_manager\libpkcs11-helper-1.dll

2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2011-03-02 09:16 - 2011-03-02 09:16 - 00208384 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll

2011-03-02 09:13 - 2011-03-02 09:13 - 00048640 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll

2011-03-02 09:11 - 2011-03-02 09:11 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll

2011-03-02 09:16 - 2011-03-02 09:16 - 00073216 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll

2011-03-02 09:17 - 2011-03-02 09:17 - 00603136 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-11.dll

2010-08-12 19:52 - 2010-08-12 19:52 - 00151552 _____ () C:\ExpressGateUtil\libexpat.dll

2010-08-12 19:52 - 2010-08-12 19:52 - 00057344 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL

2013-12-16 12:53 - 2013-10-03 11:42 - 00112128 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll

2011-03-30 08:37 - 2003-03-26 18:46 - 00135168 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsImgIO.dll

2011-03-30 08:37 - 2008-10-16 19:01 - 00036864 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuUpdater.dll

2011-03-30 09:02 - 2008-06-10 18:10 - 00032768 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsLaunchApp.dll

2011-03-30 09:02 - 2008-02-20 17:49 - 00028672 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsExtention.dll

2011-03-30 09:02 - 2008-06-17 14:18 - 00024576 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsCommon.dll

2011-03-30 08:37 - 2007-06-26 20:27 - 00167936 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\SSsltsa.dll

2011-03-30 08:37 - 2003-04-21 14:19 - 00020480 _____ () C:\Windows\SSDriver\fi5110\fjipl.dll

2011-03-30 08:37 - 2003-04-21 14:19 - 00851968 _____ () C:\Windows\SSDriver\fi5110\fjiplA6.DLL

2011-03-30 08:37 - 2005-07-08 11:36 - 00094208 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\f5bdkedr.dll

2011-03-30 08:37 - 1996-12-19 13:24 - 00068608 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\F5BDKAKU.DLL

2011-03-30 08:37 - 2003-11-20 21:56 - 00020480 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\ssIpl.dll

2011-03-30 08:37 - 2003-11-20 21:56 - 00294912 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\ssIplA6.DLL

2011-03-30 08:36 - 2007-05-16 08:45 - 00011776 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\SecurityManager.dll

2011-03-30 08:36 - 2007-05-16 08:45 - 00009216 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PolicyCommon.dll

2014-07-18 07:17 - 2014-07-18 07:17 - 00043008 _____ () c:\users\robert\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp80gxet.dll

2013-08-23 13:01 - 2013-08-23 13:01 - 25100288 _____ () C:\Users\Robert\AppData\Roaming\Dropbox\bin\libcef.dll

2013-09-18 10:30 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll

2014-07-18 07:17 - 2014-07-18 07:17 - 00012800 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\enc\encdb.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00009728 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\enc\iso_8859_1.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00014848 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\enc\trans\transdb.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00094208 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\src\rgloader\rgloader193.mswin.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00009216 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\etc.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00094208 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\site_ruby\1.9.1\rgloader\rgloader193.mswin.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00126976 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\win32ole.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00087552 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\dl.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00016384 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\fiddle.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00127316 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\bin\libffi-6.dll

2014-07-18 07:17 - 2014-07-18 07:17 - 00008704 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\enc\utf_16le.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00013312 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\enc\trans\utf_16_32.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00095744 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\1.9.1\i386-mingw32\enc\trans\single_byte.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00026624 _____ () C:\Users\Robert\AppData\Local\Temp\ocr19F5.tmp\lib\ruby\gems\1.9.1\gems\win32-api-1.5.0-universal-mingw32\lib\win32\ruby19\win32\api.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00012800 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\encdb.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00009728 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\iso_8859_1.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00014848 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\trans\transdb.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00094208 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\src\rgloader\rgloader193.mswin.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00094208 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\site_ruby\1.9.1\rgloader\rgloader193.mswin.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00118784 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\socket.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00069120 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\zlib.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00083968 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\bin\zlib1.dll

2014-07-18 07:17 - 2014-07-18 07:17 - 00026624 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\stringio.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00275968 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\openssl.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00015360 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\digest.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00008192 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\fcntl.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00009216 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\etc.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00023552 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\json\ext\parser.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00008704 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\utf_16be.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00008704 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\utf_16le.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00008704 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\utf_32be.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00008704 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\utf_32le.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00036352 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\json\ext\generator.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00126976 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\win32ole.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00087552 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\dl.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00016384 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\fiddle.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00127316 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\bin\libffi-6.dll

2014-07-18 07:17 - 2014-07-18 07:17 - 00013312 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\trans\utf_16_32.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00095744 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\1.9.1\i386-mingw32\enc\trans\single_byte.so

2014-07-18 07:17 - 2014-07-18 07:17 - 00026624 _____ () C:\Users\Robert\AppData\Local\Temp\ocr3C54.tmp\lib\ruby\gems\1.9.1\gems\win32-api-1.5.0-universal-mingw32\lib\win32\ruby19\win32\api.so

2014-05-01 13:39 - 2014-07-07 14:39 - 00815104 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\khost.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 01198592 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\PocoFoundation.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00745472 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\CFLite.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00059904 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\zlib1.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 01234944 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\libxml2.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00200704 _____ () C:\Program Files\pia_manager\pia_tray\modules\tiapp\1.2.0.RC6d\tiappmodule.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00290816 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\PocoUtil.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00511488 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\PocoXML.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00180224 _____ () C:\Program Files\pia_manager\pia_tray\modules\tifilesystem\1.2.0.RC6d\tifilesystemmodule.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00344064 _____ () C:\Program Files\pia_manager\pia_tray\modules\tiui\1.2.0.RC6d\tiuimodule.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00368640 _____ () C:\Program Files\pia_manager\pia_tray\modules\tinetwork\1.2.0.RC6d\tinetworkmodule.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00642048 _____ () C:\Program Files\pia_manager\pia_tray\runtime\1.2.0.RC6d\PocoNet.dll

2014-05-01 13:39 - 2014-07-07 14:39 - 00217088 _____ () C:\Program Files\pia_manager\pia_tray\modules\tiprocess\1.2.0.RC6d\tiprocessmodule.dll

2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf

2014-06-18 07:55 - 2014-06-18 07:54 - 00877688 _____ () C:\Program Files (x86)\Opera\22.0.1471.70\libglesv2.dll

2014-06-18 07:55 - 2014-06-18 07:54 - 00135800 _____ () C:\Program Files (x86)\Opera\22.0.1471.70\libegl.dll

2014-06-18 07:55 - 2014-06-18 07:54 - 00957048 _____ () C:\Program Files (x86)\Opera\22.0.1471.70\ffmpegsumo.dll

2014-07-08 11:50 - 2014-07-08 11:50 - 17029808 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll

2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll

2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

AlternateDataStreams: C:\Windows:AstInfo

AlternateDataStreams: C:\Windows:nlsPreferences

AlternateDataStreams: C:\Users\Robert\Downloads\FRST64.exe:BDU

AlternateDataStreams: C:\Users\Robert\Downloads\Opera_1215_en_Setup.exe:BDU

AlternateDataStreams: C:\Users\Robert\Downloads\RogueKillerX64.exe:BDU

 

==================== Safe Mode (whitelisted) ===================

 

 

==================== EXE Association (whitelisted) =============

 

 

==================== MSCONFIG/TASK MANAGER disabled items =========

 

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Audible Download Manager.lnk => C:\Windows\pss\Audible Download Manager.lnk.CommonStartup

MSCONFIG\startupfolder: C:^Users^Robert^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Bitcoin.lnk => C:\Windows\pss\Bitcoin.lnk.Startup

MSCONFIG\startupfolder: C:^Users^Robert^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2010 Screen Clipper and Launcher.lnk.Startup

MSCONFIG\startupreg: BitTorrent DNA => 

MSCONFIG\startupreg: GoToMeeting => "C:\Program Files (x86)\Citrix\GoToMeeting\1133\g2mstart.exe" "/Trigger RunAtLogon"

MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

 

==================== Faulty Device Manager Devices =============

 

Name: Deskjet F4500 series

Description: Deskjet F4500 series

Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}

Manufacturer: HP

Service: 

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

 

Name: Envy 100 D410 series

Description: Envy 100 D410 series

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Bluetooth Device (Personal Area Network)

Description: Bluetooth Device (Personal Area Network)

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: BthPan

Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48)

Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers.

 

Name: designjet 5500 (Q1251A)

Description: designjet 5500 (Q1251A)

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: HP Color LaserJet CP4005

Description: HP Color LaserJet CP4005

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Photosmart D110 series

Description: Photosmart D110 series

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Officejet 6500 E709n

Description: Officejet 6500 E709n

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Officejet Pro 8500 A909g

Description: Officejet Pro 8500 A909g

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: designjet 5500 (Q1251A)

Description: designjet 5500 (Q1251A)

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Deskjet F4500 series

Description: Deskjet F4500 series

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Officejet 6500 E709n

Description: Officejet 6500 E709n

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: designjet 5500 (Q1251A)

Description: designjet 5500 (Q1251A)

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Officejet Pro 8600

Description: Officejet Pro 8600

Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}

Manufacturer: HP

Service: 

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

 

Name: Photosmart Plus B209a-m

Description: Photosmart Plus B209a-m

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

Name: Deskjet F4500 series

Description: Deskjet F4500 series

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (07/18/2014 01:00:08 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program IEXPLORE.EXE version 11.0.9600.17207 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 30ac

 

Start Time: 01cfa2b8f90d8ce5

 

Termination Time: 31

 

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

Report Id:

 

Error: (07/18/2014 00:55:38 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000001F2C50).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:55:38 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000001F2C50).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:49:15 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program IEXPLORE.EXE version 11.0.9600.17207 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

 

Process ID: 24e8

 

Start Time: 01cfa28e7554bb2d

 

Termination Time: 37

 

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

Report Id:

 

Error: (07/18/2014 00:40:35 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},0000000000353470).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:40:35 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},0000000000353470).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:35:04 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},000000000014C380).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:35:03 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},000000000014C380).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:03:51 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002498A0).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:03:51 PM) (Source: VSS) (EventID: 12294) (User: )

Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.

Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002498A0).

 

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

 

System errors:

=============

Error: (07/18/2014 07:13:39 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (07/18/2014 07:11:48 AM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Nalpeiron Licensing Service service terminated with the following error: 

%%183

 

Error: (07/18/2014 07:10:21 AM) (Source: Application Popup) (EventID: 1060) (User: )

Description: \SystemRoot\system32\DRIVERS\bthpan.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

 

Error: (07/18/2014 07:06:45 AM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Spooler service.

 

Error: (07/17/2014 07:56:51 AM) (Source: Schannel) (EventID: 4108) (User: NT AUTHORITY)

Description: The certificate received from the remote server has not validated correctly. The error code is 0x80092013. The SSL connection request has failed. The attached data contains the server certificate.

 

Error: (07/17/2014 07:56:51 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)

Description: The following fatal alert was generated: 43. The internal error state is 552.

 

Error: (07/16/2014 07:46:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (07/16/2014 07:45:19 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: The Nalpeiron Licensing Service service terminated with the following error: 

%%183

 

Error: (07/16/2014 07:44:37 PM) (Source: Application Popup) (EventID: 1060) (User: )

Description: \SystemRoot\system32\DRIVERS\bthpan.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

 

Error: (07/16/2014 07:42:28 PM) (Source: DCOM) (EventID: 10010) (User: )

Description: {9E6E74C7-0E85-4D14-8851-7635E2C1C528}

 

 

Microsoft Office Sessions:

=========================

Error: (07/18/2014 01:00:08 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: IEXPLORE.EXE11.0.9600.1720730ac01cfa2b8f90d8ce531C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

Error: (07/18/2014 00:55:38 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000001F2C50)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:55:38 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000001F2C50)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:49:15 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: IEXPLORE.EXE11.0.9600.1720724e801cfa28e7554bb2d37C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

 

Error: (07/18/2014 00:40:35 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},0000000000353470)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:40:35 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},0000000000353470)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:35:04 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},000000000014C380)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:35:03 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},000000000014C380)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:03:51 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002498A0)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

Error: (07/18/2014 00:03:51 PM) (Source: VSS) (EventID: 12294) (User: )

Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000002498A0)

 

Operation:

   Get Shadow Copy Properties

 

Context:

   Execution Context: Coordinator

 

 

CodeIntegrity Errors:

===================================

  Date: 2014-07-18 07:10:21.933

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-18 07:10:21.777

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-16 19:44:37.429

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-16 19:44:37.242

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-16 11:39:45.681

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-16 11:39:45.385

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-15 21:48:20.438

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-15 21:48:20.282

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-15 21:06:48.882

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-07-15 21:06:48.679

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\bthpan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

 

==================== Memory info =========================== 

 

Percentage of memory in use: 75%

Total physical RAM: 8169.17 MB

Available physical RAM: 2009.03 MB

Total Pagefile: 16336.52 MB

Available Pagefile: 8326.62 MB

Total Virtual: 8192 MB

Available Virtual: 8191.82 MB

 

==================== Drives ================================

 

Drive c: (OS) (Fixed) (Total:444.27 GB) (Free:138.65 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive g: (GARMIN) (Removable) (Total:0.47 GB) (Free:0.47 GB) FAT32

Drive i: (11-01318-51) (Removable) (Total:1.89 GB) (Free:1.89 GB) FAT32

Drive j: (My Passport) (Fixed) (Total:1862.98 GB) (Free:758.47 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: E0C5913D)

Partition 1: (Not Active) - (Size=21 GB) - (Type=1C)

Partition 2: (Active) - (Size=444 GB) - (Type=07 NTFS)

 

========================================================

Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: D9571315)

Partition 1: (Not Active) - (Size=-198659014656) - (Type=07 NTFS)

 

========================================================

Disk: 2 (Size: 486 MB) (Disk ID: 6F20736B)

No partition Table on disk 2.

Disk 2 is a removable device.

 

========================================================

Disk: 3 (Size: 2 GB) (Disk ID: 0EBD6E1B)

Partition 1: (Not Active) - (Size=2 GB) - (Type=0B)

 

==================== End Of Log ============================

Link to post
Share on other sites

  • 1 month later...
  • Root Admin

Very sorry for the delay. The site has been very busy and there has been more demand for support than we were able handle for a while there.
I'm just now getting back to see if you still need help or not. If you do please reply back and let me know and I'll go ahead and assist you.

Thank you
 

Link to post
Share on other sites

  • 1 month later...
  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.