Below are both logs. ESET NOD32 is not up to date. I don't use it, should I?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-06-2015 01
Ran by Robert Levine (administrator) on ROBERTLEVINE-LA on 28-06-2015 20:49:04
Running from C:\Users\Robert Levine\Desktop
Loaded Profiles: Robert Levine (Available Profiles: Robert Levine)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic...ery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Acer) C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.EXE
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Acer Incorporated) C:\Program Files\Gateway\Gateway Power Management\ePowerEvent.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_190.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_190.exe
(Farbar) C:\Users\Robert Levine\Desktop\FRST64(1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-07-06] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7940128 2009-07-06] (Realtek Semiconductor)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe [828960 2009-08-06] (Acer Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [825864 2009-08-17] (Dritek System Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-03-06] (IObit)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-08-20] (Google Inc.)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21969480 2015-05-19] (Google)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-14] (SUPERAntiSpyware)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_190_Plugin.exe [927920 2015-06-24] (Adobe Systems Incorporated)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\MountPoints2: {946da12e-35a6-11e2-848a-00269e4e6115} - D:\LGAutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-25] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2009-12-03]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer: source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer: source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = http://search.comcast.net/search/?cat=Web&con=toolbar&q={searchTerms}
SearchScopes: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer: source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW_enUS356
SearchScopes: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> {B730E2FB-931E-C117-652C-C429D0471E60} URL = http://www.bing.com/search?q={searchTerms}&pc=ZUGO&form=ZGAIDF
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-14] (IObit)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-12-29] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.6.5825.1100\swg64.dll [2010-12-02] (Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10] (Sun Microsystems, Inc.)
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-29] (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll [2010-12-02] (Google Inc.)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-04-01] (IObit)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-12-29] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-29] (Google Inc.)
Toolbar: HKU\S-1-5-21-562143518-3092077655-1884302216-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-12-29] (Google Inc.)
DPF: HKLM {8AD9C840-044E-11D1-B3E9-00805F499D93}
https://healthweb.stjohn.org/update/...ndows-i586.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75
Tcpip\..\Interfaces\{3735CC59-560E-41A5-9231-88599413F005}: [DhcpNameServer] 75.75.76.76 75.75.75.75
Tcpip\..\Interfaces\{7478F35A-A3A8-4F20-826B-2B339EB04BA7}: [DhcpNameServer] 68.87.66.249 162.150.8.28
FireFox:
========
FF ProfilePath: C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage:
https://www.google.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll [2015-06-24] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-24] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-10-31] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-02-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-562143518-3092077655-1884302216-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll [2012-12-27] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\user.js [2015-02-14]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\searchplug ins\bing-zugo.xml [2010-12-02]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\xfinity.xml [2012-02-28]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\Extensions \iobitascsurfingprotection@iobit.com [2015-04-18]
FF Extension: Search Toolbar - C:\Users\Robert Levine\AppData\Roaming\Mozilla\Firefox\Profiles\512m0xqq.default\Extensions \searchtoolbar@zugo.com [2010-12-02]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009-12-02]
Chrome:
=======
CHR Profile: C:\Users\Robert Levine\AppData\Local\Google\Chrome\User Data\Default
CHR HKU\S-1-5-21-562143518-3092077655-1884302216-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ROBERT~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlha lf_live.crx [2013-05-04]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [143120 2013-05-23] (SUPERAntiSpyware.com)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880 2015-04-03] (IObit)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-01-27] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-03-26] (IObit)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2014-11-10] (IObit)
S3 int15.sys; C:\Windows\System32\OEM\Factory\int15.sys [17952 2008-03-28] (Acer, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 PTDUBus; C:\Windows\System32\DRIVERS\PTDUBus.sys [70672 2009-08-12] (DEVGURU Co., LTD.)
S3 PTDUMdm; C:\Windows\System32\DRIVERS\PTDUMdm.sys [173456 2009-08-12] (DEVGURU Co., LTD.(
www.devguru.co.kr))
S3 PTDUVsp; C:\Windows\System32\DRIVERS\PTDUVsp.sys [173456 2009-08-12] (DEVGURU Co., LTD.(
www.devguru.co.kr))
S3 PTDUWFLT; C:\Windows\System32\DRIVERS\PTDUWFLT.sys [12688 2009-08-12] (DEVGURU Co., LTD.)
S3 PTDUWWAN; C:\Windows\System32\DRIVERS\PTDUWWAN.sys [141840 2009-08-12] (DEVGURU Co., LTD.)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2014-11-10] (IObit.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2014-11-10] (IObit.com)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-28 20:49 - 2015-06-28 20:49 - 00018037 _____ C:\Users\Robert Levine\Desktop\FRST.txt
2015-06-28 20:47 - 2015-06-28 20:47 - 02112512 _____ (Farbar) C:\Users\Robert Levine\Desktop\FRST64(1).exe
2015-06-27 19:12 - 2015-06-27 19:12 - 00281632 _____ C:\Windows\Minidump\062715-29749-01.dmp
2015-06-24 22:48 - 2015-06-24 22:48 - 18174128 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-06-15 19:19 - 2015-06-15 19:19 - 00000000 ____D C:\Users\Robert Levine\AppData\Local\GWX
2015-06-15 19:17 - 2015-06-27 19:12 - 00000112 _____ C:\Windows\setupact.log
2015-06-15 19:17 - 2015-06-15 19:17 - 00006164 _____ C:\Windows\PFRO.log
2015-06-15 19:17 - 2015-06-15 19:17 - 00000000 _____ C:\Windows\setuperr.log
2015-06-15 19:15 - 2015-06-15 19:15 - 70262784 _____ C:\Windows\system32\config\components.iodefrag.bak
2015-06-15 19:15 - 2015-06-15 19:15 - 00000000 ____H C:\asc_rdflag
2015-06-13 16:36 - 2015-06-13 16:36 - 00509440 _____ (Tech Support Guy System) C:\Users\Robert Levine\Downloads\SysInfo.exe
2015-06-09 22:08 - 2015-05-25 13:08 - 03206144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-09 22:08 - 2015-05-22 14:18 - 01021440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-09 22:08 - 2015-05-22 14:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-09 22:08 - 2015-05-22 14:13 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-09 22:08 - 2015-05-21 09:19 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-09 22:08 - 2015-04-29 14:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-09 22:08 - 2015-04-29 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-09 22:08 - 2015-04-29 14:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-09 22:08 - 2015-04-29 14:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-09 22:08 - 2015-04-29 14:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-09 22:08 - 2015-04-29 14:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-06-09 22:08 - 2015-04-29 14:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-06-09 22:08 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-06-09 22:08 - 2015-04-29 14:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-06-09 22:08 - 2015-04-29 14:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-06-09 22:08 - 2015-04-24 14:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-09 22:08 - 2015-04-24 13:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-09 22:07 - 2015-06-01 15:16 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-09 22:07 - 2015-06-01 14:07 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-09 22:07 - 2015-05-27 10:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-09 22:07 - 2015-05-27 10:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-09 22:07 - 2015-05-22 23:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-06-09 22:07 - 2015-05-22 23:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-09 22:07 - 2015-05-22 23:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-06-09 22:07 - 2015-05-22 23:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-09 22:07 - 2015-05-22 23:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-09 22:07 - 2015-05-22 23:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-09 22:07 - 2015-05-22 23:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-09 22:07 - 2015-05-22 23:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-06-09 22:07 - 2015-05-22 23:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-06-09 22:07 - 2015-05-22 23:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-06-09 22:07 - 2015-05-22 23:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-09 22:07 - 2015-05-22 23:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-06-09 22:07 - 2015-05-22 23:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-09 22:07 - 2015-05-22 22:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-06-09 22:07 - 2015-05-22 22:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-09 22:07 - 2015-05-22 22:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-06-09 22:07 - 2015-05-22 22:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-09 22:07 - 2015-05-22 22:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-09 22:07 - 2015-05-22 22:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-09 22:07 - 2015-05-22 22:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-09 22:07 - 2015-05-22 22:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-09 22:07 - 2015-05-22 22:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-09 22:07 - 2015-05-22 22:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-09 22:07 - 2015-05-22 22:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-09 22:07 - 2015-05-22 22:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-09 22:07 - 2015-05-22 22:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-09 22:07 - 2015-05-22 15:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-09 22:07 - 2015-05-22 15:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-09 22:07 - 2015-05-22 15:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-09 22:07 - 2015-05-22 15:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-09 22:07 - 2015-05-22 15:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-09 22:07 - 2015-05-22 15:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-09 22:07 - 2015-05-22 15:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-09 22:07 - 2015-05-22 14:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-09 22:07 - 2015-05-22 14:53 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-09 22:07 - 2015-05-22 14:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-09 22:07 - 2015-05-22 14:52 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-09 22:07 - 2015-05-22 14:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-09 22:07 - 2015-05-22 14:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-09 22:07 - 2015-05-22 14:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-09 22:07 - 2015-05-22 14:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-09 22:07 - 2015-05-22 14:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-09 22:07 - 2015-05-22 14:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-09 22:07 - 2015-05-22 14:36 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-09 22:07 - 2015-05-22 14:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-09 22:07 - 2015-05-22 14:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-09 22:07 - 2015-05-22 14:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-09 22:07 - 2015-05-22 14:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-09 22:07 - 2015-05-22 14:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-09 22:07 - 2015-05-22 14:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-09 22:07 - 2015-05-22 14:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-09 22:07 - 2015-05-22 14:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-09 22:07 - 2015-05-22 13:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-09 22:07 - 2015-05-22 13:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-09 22:07 - 2015-05-22 13:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-09 22:07 - 2015-05-22 13:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 01255424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-04 22:03 - 2015-06-04 22:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-04 22:03 - 2015-06-04 22:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-04 22:03 - 2015-06-04 22:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-04 22:03 - 2015-06-04 22:03 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-06-04 22:02 - 2015-06-04 22:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-04 22:02 - 2015-06-04 22:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 03147776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 02589184 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-06-04 21:58 - 2015-06-04 21:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-06-04 21:58 - 2015-06-04 21:58 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-06-04 21:58 - 2015-06-04 21:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 01632768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-06-04 21:57 - 2015-06-04 21:57 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-06-02 21:57 - 2015-06-02 21:57 - 00000092 _____ C:\Windows\wininit.ini
2015-06-02 21:53 - 2015-06-02 22:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-28 20:49 - 2013-11-14 20:54 - 00000000 ____D C:\FRST
2015-06-28 20:45 - 2010-02-12 13:09 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-28 20:43 - 2013-02-04 20:26 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-28 20:06 - 2009-07-14 00:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-28 20:06 - 2009-07-14 00:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-28 20:00 - 2008-01-09 22:13 - 01510794 _____ C:\Windows\WindowsUpdate.log
2015-06-28 12:32 - 2010-02-12 13:09 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-27 19:17 - 2012-11-13 10:36 - 00000000 ___RD C:\Users\Robert Levine\Google Drive
2015-06-27 19:15 - 2013-12-18 14:53 - 00000000 ____D C:\ProgramData\ProductData
2015-06-27 19:13 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-27 19:12 - 2014-12-20 00:56 - 386893139 _____ C:\Windows\MEMORY.DMP
2015-06-27 19:12 - 2012-12-03 12:25 - 00000000 ____D C:\Windows\Minidump
2015-06-27 18:35 - 2013-06-17 23:59 - 00001790 _____ C:\Users\Robert Levine\Desktop\Rankings.txt
2015-06-24 22:49 - 2013-02-04 20:26 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-24 22:49 - 2013-02-04 20:26 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-24 22:49 - 2011-07-20 10:11 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-19 23:33 - 2015-02-14 19:23 - 00002148 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-06-15 19:23 - 2009-07-14 01:13 - 00782510 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-15 19:19 - 2009-07-14 01:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-15 19:18 - 2009-07-14 00:45 - 00387848 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-15 19:16 - 2014-03-16 23:46 - 81084416 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-06-15 19:15 - 2014-03-16 23:46 - 00274432 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-06-15 19:15 - 2014-03-16 23:46 - 00028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-06-15 19:15 - 2014-03-16 23:46 - 00024576 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2015-06-15 19:11 - 2014-12-11 15:38 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-15 19:11 - 2014-05-06 20:27 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-15 19:11 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-14 13:01 - 2012-11-13 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-06-13 16:21 - 2009-08-20 03:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-13 16:12 - 2013-08-17 03:02 - 00000000 ____D C:\Windows\system32\MRT
2015-06-13 13:15 - 2009-12-03 00:39 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-02 22:34 - 2014-01-30 23:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-02 22:32 - 2013-01-16 16:15 - 00000000 ____D C:\ProgramData\APN
2015-06-02 22:03 - 2014-10-26 19:24 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-02 22:03 - 2014-10-26 19:24 - 00001069 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-02 22:03 - 2014-10-26 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-02 22:03 - 2014-10-26 19:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
==================== Files in the root of some directories =======
2013-11-04 16:04 - 2013-11-04 16:04 - 50053120 _____ () C:\Program Files (x86)\GUT3B6B.tmp
2010-12-02 21:17 - 2010-12-02 21:17 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-06-03 01:04
==================== End of log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01
Ran by Robert Levine at 2015-06-28 20:50:48
Running from C:\Users\Robert Levine\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-562143518-3092077655-1884302216-500 - Administrator - Disabled)
Guest (S-1-5-21-562143518-3092077655-1884302216-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-562143518-3092077655-1884302216-1002 - Limited - Enabled)
Robert Levine (S-1-5-21-562143518-3092077655-1884302216-1000 - Administrator - Enabled) => C:\Users\Robert Levine
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET NOD32 Antivirus 4.0 (Disabled - Out of date) {CB0F8167-5331-BA19-698E-64816B6801A5}
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: ESET NOD32 Antivirus 4.0 (Disabled - Out of date) {706E6083-750B-B597-533E-5FF310EF4B18}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.2.0 - IObit)
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}) (Version: 1.2.17.05001 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.2.17.05001 - Alcor Micro Corp.) Hidden
Amazon MP3 Downloader 1.0.17 (HKLM-x32\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{CCE825DB-347A-4004-A186-5F4A6FDD8547}) (Version: 2.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D70884EA-E2CE-4539-91DB-4766CC1E5F5F}) (Version: 6.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.5 - Atheros Communications Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
Gateway InfoCentre (HKLM-x32\...\Gateway InfoCentre) (Version: 3.02.3000 - Gateway Incorporated)
Gateway Power Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3002 - Gateway Incorporated)
Gateway Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3003 - Gateway Incorporated)
Gateway Registration (HKLM-x32\...\Gateway Registration) (Version: 1.02.3004 - Gateway Incorporated)
Gateway ScreenSaver (HKLM-x32\...\Gateway Screensaver) (Version: 1.2.0730 - Gateway Incorporated)
Gateway Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Gateway Incorporated)
Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 6.6.1124.846 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Gateway Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
InterActual Player (HKLM-x32\...\InterActual Player) (Version: - )
IObit Apps Toolbar v9.9 (HKLM-x32\...\{6006D54D-D06A-4D6D-9218-90455E678421}) (Version: 9.9 - Spigot, Inc.) <==== ATTENTION
IObit Malware Fighter 3 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 3.0 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.2 - IObit)
iTunes (HKLM\...\{0E5D76AD-A3FB-48D5-8400-8903B10317D3}) (Version: 11.0.1.12 - Apple Inc.)
J2SE Runtime Environment 5.0 Update 6 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.01 - Gateway)
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
PANTECH UM175 Driver (HKLM\...\{C13AF9C7-8E06-4354-B629-DF6192CE4A66}) (Version: 3.3.3524.918 - PANTECH CO.,LTD)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5888 - Realtek Semiconductor Corp.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1032 - SUPERAntiSpyware.com)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Welcome Center (HKLM-x32\...\Gateway Welcome Center) (Version: 1.00.3005 - Gateway Incorporated)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}) (Version: 14.0.8064.206 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
13-05-2015 22:23:40 Windows Update
13-05-2015 23:43:20 Windows Update
20-05-2015 22:34:01 Windows Update
22-05-2015 19:06:29 Windows Modules Installer
24-05-2015 10:19:10 Windows Update
30-05-2015 18:25:16 Windows Update
02-06-2015 21:49:12 Windows Update
04-06-2015 21:56:16 Windows Modules Installer
07-06-2015 18:16:40 Windows Update
11-06-2015 22:02:33 Windows Update
13-06-2015 13:11:36 Windows Update
16-06-2015 20:28:32 Windows Update
20-06-2015 21:16:11 Windows Update
24-06-2015 22:13:40 Windows Update
28-06-2015 18:06:40 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08906AE9-5FCB-4717-AEF3-617D2D5B1E8B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {242667FE-E276-43E0-B452-D7FC881A9253} - System32\Tasks\{A1BC4878-D205-4E80-A2C6-EC51BB1C110A} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {3F4811C6-5F78-4023-AD65-2152BFCA93FB} - System32\Tasks\ASC8_SkipUac_Robert Levine => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-04-09] (IObit)
Task: {3FE689FC-5AFA-4198-A738-C782767FC328} - System32\Tasks\Uninstaller_SkipUac_Robert_Levine => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
Task: {47D77908-91C3-41C3-8B69-B4135B99C555} - System32\Tasks\{AA77018D-3EDC-45AB-9D3F-08B20A134887} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {4F21C938-1C1E-4FF6-9CAD-D473885DEC1B} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Gateway\Gateway Recovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {55006490-A6A0-4C81-A3B2-B5C73E9304BB} - System32\Tasks\{0911B644-F96A-4E2E-8ABE-5E703AACB783} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {57B2D87C-61C0-4A82-82DF-605864F07910} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
Task: {57D7C65B-5B15-4E13-B14D-5CB9021F744F} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2010-04-27] (Microsoft Corporation)
Task: {6D7C1A58-CFC2-4DBD-B1D0-479E72AC4739} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {89F9B29F-5509-458F-8802-E92F5093EF70} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24] (Adobe Systems Incorporated)
Task: {924E83FE-607B-4FB5-80E7-903A06EA41CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: {9DD858E7-8329-405B-A980-985373781E32} - System32\Tasks\{5C163488-CD72-4E1C-8CB6-08069F9893A8} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {9DF6FA2B-0CBA-44B4-A57B-8F6F088274B0} - System32\Tasks\{9CB0A5E2-3DB0-4CBE-8C32-845A33CB3A6B} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {AF575985-1D55-45EA-8F44-D56F3830A74B} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-04-09] (IObit)
Task: {B1888DEC-1A58-486E-8121-AF7E21D061EC} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-562143518-3092077655-1884302216-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {CC37FA65-9196-4ED1-A0AA-5FC224235A6D} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-562143518-3092077655-1884302216-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {E036FEAA-F7EF-44C9-936E-4C95F6EBF79A} - System32\Tasks\{EDB63B8F-D65A-4ACE-BCB3-103335F3C0E8} => C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe
Task: {E114752B-F887-4833-A839-5F7947CFE92F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2009-12-02 09:03 - 2009-07-20 13:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2009-12-02 09:03 - 2009-07-20 05:00 - 00077824 _____ () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2015-02-14 19:23 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\sqlite3.dll
2015-04-18 16:07 - 2015-01-09 18:46 - 00517408 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\sqlite3.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-02-14 19:23 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madExcept_.bpl
2015-02-14 19:23 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madBasic_.bpl
2015-02-14 19:23 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madDisAsm_.bpl
2015-02-14 19:23 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-02-14 19:26 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-02-14 19:26 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-02-14 19:26 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-06-27 19:15 - 2015-06-27 19:15 - 00098816 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32api.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00110080 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pywintypes27.dll
2015-06-27 19:15 - 2015-06-27 19:15 - 00364544 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pythoncom27.dll
2015-06-27 19:15 - 2015-06-27 19:15 - 00045568 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_socket.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 01161216 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_ssl.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00320512 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32com.shell.shell.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00713216 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_hashlib.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 01175040 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._core_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00805888 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._gdi_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00811008 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._windows_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 01062400 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._controls_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00735232 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._misc_.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00682496 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pysqlite2._sqlite.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00087552 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_ctypes.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00119808 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32file.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00108544 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32security.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00007168 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\hashobjs_ext.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00026624 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\usb_ext.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00167936 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32gui.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00018432 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32event.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00128512 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_elementtree.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00127488 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\pyexpat.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00013824 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\common.time34.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00036864 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_psutil_windows.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00038912 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32inet.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00011264 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32crypt.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00070656 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._html2.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00027136 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_multiprocessing.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00020480 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\_yappi.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00035840 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32process.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00686080 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\unicodedata.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00122368 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._wizard.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00024064 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32pipe.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00010240 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\select.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00025600 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32pdh.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00525640 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\windows._lib_cacheinvalidation.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00017408 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32profile.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00022528 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\win32ts.pyd
2015-06-27 19:15 - 2015-06-27 19:15 - 00078336 _____ () C:\Users\Robert Levine\AppData\Local\Temp\_MEI9922\wx._animate.pyd
2015-04-18 16:07 - 2015-01-09 18:46 - 00182048 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2015-04-18 16:07 - 2015-01-09 18:46 - 00145184 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2015-06-24 22:49 - 2015-06-24 22:49 - 16867504 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-562143518-3092077655-1884302216-1000\...\100sexlinks.com -> 100sexlinks.com
There are 4788 more restricted sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-562143518-3092077655-1884302216-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Robert Levine\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 75.75.76.76 - 75.75.75.75
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{521CB2D6-A73E-4760-9A58-3D03B52AB4BA}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{9A55B11E-B381-41FA-BA1D-F74EC20AAD70}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{5E269310-8F91-4892-B192-BAA91B7688FA}] => (Allow) svchost.exe
FirewallRules: [{46B1393C-C5F0-47E0-869A-F547CECA3BB8}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{85F47C38-8166-416A-87D1-C175B80326A5}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{94FA2C9A-8054-4ED1-86D8-0D8AFAC8D4E0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{700C7856-5E5C-43F2-A4EF-00FD1B8AF1C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5933B877-D324-43EC-9AE1-DD87209DBAAC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6C20A7F2-189C-46AC-B9AB-9626D5944FAE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FE13CAB0-518A-4583-AEF3-D3F8BD8C48E9}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{C8716A05-C129-4991-A545-FD3ABEA7BBC1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{88437958-85B4-4E89-B4CF-D0264852855E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{853B8275-7174-4027-AEA1-E7D873E0D48C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{FF32D750-8B7E-4EA1-B7FE-2A04DC258F7C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/28/2015 05:22:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2059
Error: (06/28/2015 05:22:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2059
Error: (06/28/2015 05:22:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/28/2015 02:53:10 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3595714
Error: (06/28/2015 02:53:10 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3595714
Error: (06/28/2015 02:53:10 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/28/2015 01:53:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1404
Error: (06/28/2015 01:53:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1404
Error: (06/28/2015 01:53:15 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/28/2015 00:24:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 36433691
System errors:
=============
Error: (06/27/2015 07:23:58 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for FailureCommand with the following error:
%%5
Error: (06/27/2015 07:23:50 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5
Error: (06/27/2015 07:14:34 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom
Error: (06/27/2015 07:13:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Group Policy Client service failed to start due to the following error:
%%1053
Error: (06/27/2015 07:12:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Group Policy Client service to connect.
Error: (06/27/2015 07:12:58 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x000000d1 (0x000000000000000a, 0x0000000000000002, 0x0000000000000000, 0xfffff880018456f0)C:\Windows\MEMORY.DMP062715-29749-01
Error: (06/27/2015 07:12:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 7:11:37 PM on 6/27/2015 was unexpected.
Error: (06/27/2015 01:23:41 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.201.171.0
Update Source: %NT AUTHORITY59
Update Stage: 4.8.0204.00
Source Path: 4.8.0204.01
Signature Type: %NT AUTHORITY602
Update Type: %NT AUTHORITY604
User: NT AUTHORITY\SYSTEM
Current Engine Version: %NT AUTHORITY605
Previous Engine Version: %NT AUTHORITY606
Error code: %NT AUTHORITY607
Error description: %NT AUTHORITY608
Error: (06/15/2015 07:28:18 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for FailureCommand with the following error:
%%5
Error: (06/15/2015 07:28:15 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5
Microsoft Office:
=========================
==================== Memory info ===========================
Processor: Genuine Intel(R) CPU U4100 @ 1.30GHz
Percentage of memory in use: 48%
Total physical RAM: 3002.91 MB
Available physical RAM: 1552.75 MB
Total Pagefile: 6004.04 MB
Available Pagefile: 3963.48 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: (Gateway) (Fixed) (Total:285.99 GB) (Free:231.4 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 7A67CF72)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=286 GB) - (Type=07 NTFS)
==================== End of log ============================