Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-09-2014
Ran by g (administrator) on RONS-ALIENWARE on 23-09-2014 10:34:37
Running from C:\Users\g\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
() C:\Users\g\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFXWindowsService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\msi\ODD Monitor\ODD_Monitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.5.0.19\n360.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcCMService.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\pcServiceHost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() C:\Program Files (x86)\AlienRespawn\Components\Scheduler\STService.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.5.0.19\n360.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4093186601-1063034090-4258288859-1002\...\Run: [Artisan 720(Network)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGYA.EXE [224768 2010-01-11] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4093186601-1063034090-4258288859-1002\...\MountPoints2: {70a2b40b-6044-11e3-908d-d4bed9fc8f7b} - D:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-4093186601-1063034090-4258288859-1002\...\MountPoints2: {70a2b5f1-6044-11e3-908d-d4bed9fc8f7b} - D:\LiteAuto.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-02-26] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [201576 2013-02-26] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: OverlayExcluded -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.5.0.19\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayPending -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.5.0.19\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayProtected -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.5.0.19\buShell.dll (Symantec Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US,es-GT;q=0.5
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.5.0.19\coIEPlg.dll (Symantec Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.5.0.19\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Act.UI.InternetExplorer.Plugins.AttachFile.CAttachFile -> {D5233FCD-D258-4903-89B8-FB1568E7413D} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
FireFox:
========
FF ProfilePath: C:\Users\g\AppData\Roaming\Mozilla\Firefox\Profiles\q0x8jozo.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @spoon.net/Spoon Plugin 3.33 -> C:\Program Files (x86)\Spoon\3.33.6.270\npMozillaSpoonPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2014-09-23]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2013-11-25]
FF Extension: No Name - C:\Users\g\AppData\Roaming\Mozilla\Firefox\Profiles\q0x8jozo.default\extensions\faststartff@gmail.com [Not Found]
Chrome:
=======
CHR Profile: C:\Users\g\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\g\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-03]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\g\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-22]
CHR Extension: (Motive Extension) - C:\Users\g\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmgmpmklgfbohogafcfobonnkogchec [2014-04-11]
CHR Extension: (Google Wallet) - C:\Users\g\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR HKLM-x32\...\Chrome\Extension: [edmgmpmklgfbohogafcfobonnkogchec] - C:\Program Files (x86)\Common Files\Motive\extensions\MotiveRequest.crx [2013-08-26]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 ACT! Scheduler; C:\Program Files (x86)\ACT\Act for Windows\Act.Scheduler.exe [81920 2008-07-31] (Sage Software, Inc.) [File not signed]
R2 AlienFXWindowsService; C:\Program Files\Alienware\Command Center\AlienFXWindowsService.exe [13168 2012-06-18] (Alienware)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-18] (Nero AG)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [163608 2012-03-06] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MSI_ODD_Service; c:\Program Files (x86)\msi\ODD Monitor\ODD_Monitor.exe [76800 2011-10-04] (Micro-Star Int'l Co., Ltd.) [File not signed]
R2 MSSQL$ACT7; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.5.0.19\N360.exe [265040 2014-07-31] (Symantec Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 pcCMService; C:\Program Files (x86)\Common Files\Motive\pcCMService.exe [361472 2012-03-13] (Alcatel-Lucent) [File not signed]
R2 pcCMService64; C:\Program Files\Common Files\Motive\pcCMService.exe [441344 2012-03-13] (Alcatel-Lucent) [File not signed]
R2 pcServiceHost; C:\Program Files (x86)\Common Files\Motive\pcServiceHost.exe [342528 2013-04-01] (Alcatel-Lucent) [File not signed]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140912.003\BHDrvx64.sys [1586904 2014-09-12] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1505000.013\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-09] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-09-09] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140922.001\IDSvia64.sys [633560 2014-08-27] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-23] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2012-03-13] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MREMP50a64; C:\Program Files\Common Files\Motive\MREMP50a64.SYS [43008 2012-03-13] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2012-03-13] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 MRESP50a64; C:\Program Files\Common Files\Motive\MRESP50a64.SYS [40960 2012-03-13] (Printing Communications Assoc., Inc. (PCAUSA))
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140922.033\ENG64.SYS [129752 2014-08-20] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140922.033\EX64.SYS [2137304 2014-08-20] (Symantec Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.)
R3 NTIOLib_X64; C:\Program Files (x86)\msi\ODD Monitor\NTIOLib_X64.sys [14136 2010-01-18] (MSI)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1505000.013\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1505000.013\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
S2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-08-26] (Samsung Electronics)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1505000.013\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1505000.013\SYMEFA64.SYS [1148120 2014-03-03] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-11-24] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1505000.013\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1505000.013\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-20] (Anchorfree Inc.)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S4 NvStUSB; \SystemRoot\system32\drivers\nvstusb.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-23 10:34 - 2014-09-23 10:34 - 00020747 _____ () C:\Users\g\Desktop\FRST.txt
2014-09-23 10:33 - 2014-09-23 10:34 - 00000000 ____D () C:\FRST
2014-09-23 10:31 - 2014-09-23 10:30 - 02106368 _____ (Farbar) C:\Users\g\Desktop\FRST64.exe
2014-09-23 10:30 - 2014-09-23 10:30 - 02106368 _____ (Farbar) C:\Users\g\Downloads\FRST64.exe
2014-09-23 09:37 - 2014-09-23 09:37 - 00000876 _____ () C:\Users\g\Desktop\JRT.txt
2014-09-23 09:33 - 2014-09-23 09:33 - 00000000 ____D () C:\Windows\ERUNT
2014-09-23 09:32 - 2014-09-23 09:31 - 01024790 _____ (Thisisu) C:\Users\g\Desktop\JRT.exe
2014-09-23 09:30 - 2014-09-23 09:31 - 01024790 _____ (Thisisu) C:\Users\g\Downloads\JRT.exe
2014-09-23 09:25 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-23 09:24 - 2014-09-23 09:26 - 00000000 ____D () C:\AdwCleaner
2014-09-23 09:23 - 2014-09-23 09:22 - 01373475 _____ () C:\Users\g\Desktop\adwcleaner_3.310.exe
2014-09-23 09:22 - 2014-09-23 09:22 - 01373475 _____ () C:\Users\g\Downloads\adwcleaner_3.310.exe
2014-09-21 20:07 - 2014-09-23 09:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-21 20:06 - 2014-09-21 20:06 - 00001126 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-21 20:06 - 2014-09-21 20:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-21 20:06 - 2014-09-21 20:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-21 20:06 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-21 20:06 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-20 08:57 - 2014-09-20 08:57 - 00014981 _____ () C:\Users\g\Desktop\hijackthis.log
2014-09-20 08:57 - 2014-09-20 08:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\g\Desktop\HiJackThis.exe
2014-09-20 08:54 - 2014-09-20 08:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\g\Downloads\HiJackThis.exe
2014-09-20 08:54 - 2014-09-20 08:54 - 00014861 _____ () C:\Users\g\Downloads\hijackthis.log
2014-09-18 13:38 - 2014-09-18 13:38 - 112332800 _____ () C:\Users\g\Desktop\linda current-2014-09-18.QDF-backup
2014-09-16 23:09 - 2014-09-16 23:09 - 00000210 _____ () C:\Users\g\Downloads\Close_Reading.ics
2014-09-14 13:01 - 2014-09-14 13:01 - 12835784 _____ (Macrovision Corporation) C:\Users\g\Downloads\MovieTracer_1004a.exe
2014-09-13 01:17 - 2014-09-13 13:27 - 00000000 ____D () C:\Users\g\Documents\Sony PMB
2014-09-13 01:12 - 2014-09-13 01:12 - 00001838 _____ () C:\Users\Public\Desktop\PMB Help.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00001129 _____ () C:\Users\Public\Desktop\PMB.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00001056 _____ () C:\Users\Public\Desktop\PMB Launcher.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2014-09-13 01:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-09-13 01:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-09-12 23:48 - 2014-09-12 23:49 - 04191321 _____ () C:\Users\g\Downloads\IMG_0033.MOV
2014-09-12 15:27 - 2014-09-12 15:27 - 00061995 _____ () C:\Users\g\Downloads\Apr2014_City_Rates.xlsx
2014-09-12 15:15 - 2014-09-12 15:15 - 03687352 _____ (Sony Corporation) C:\Users\g\Downloads\PMB56_Updater1105a (2).exe
2014-09-11 22:43 - 2014-09-11 22:44 - 36999144 _____ (Narrative) C:\Users\g\Downloads\NarrativeUploader.exe
2014-09-09 16:56 - 2014-09-09 16:56 - 03687352 _____ (Sony Corporation) C:\Users\g\Downloads\PMB56_Updater1105a (1).exe
2014-09-09 16:20 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-09-09 16:20 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-09-09 16:20 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-09-09 16:20 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-09-09 16:20 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-09-09 16:20 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-09-09 16:20 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-09-09 16:20 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-09-09 16:20 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-09-09 16:20 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-09-09 16:20 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-09-09 16:20 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-09-09 16:20 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-09-09 16:20 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-09-09 16:20 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-09-09 16:20 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-09-09 16:20 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-09-09 16:20 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-09-09 16:20 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-09-09 16:20 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-09-09 16:20 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-09-09 16:20 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-09-09 16:20 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-09-09 16:20 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-09-09 16:20 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-09-09 16:20 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-09-09 16:19 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-09-09 16:19 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-09-09 16:19 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-09-09 16:19 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-09-09 16:19 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-09-09 16:19 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-09-09 16:19 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-09-09 16:19 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-09-09 16:19 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-09-09 16:19 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-09-09 16:19 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-09-09 16:19 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-09-09 16:19 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-09-09 16:19 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-09-09 16:19 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-09-09 16:19 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-09-09 16:19 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-09-09 16:19 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-09-09 16:14 - 2014-09-14 15:29 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-09-09 16:13 - 2014-09-13 01:11 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-09-09 16:03 - 2014-09-09 16:03 - 00003028 _____ () C:\Windows\System32\Tasks\{96D74858-05F7-4B2A-8C2A-689DAC89985E}
2014-09-09 16:00 - 2014-09-09 16:00 - 03687352 _____ (Sony Corporation) C:\Users\g\Downloads\PMB56_Updater1105a.exe
2014-09-09 15:55 - 2014-09-09 15:55 - 06892672 _____ () C:\Users\g\Downloads\PMBP_WIN57_Upgrade1208a.exe
2014-09-09 15:54 - 2014-09-13 01:17 - 00000000 ____D () C:\Users\g\AppData\Roaming\Sony Corporation
2014-09-09 13:05 - 2014-09-09 13:05 - 17903792 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-09-09 13:02 - 2014-09-09 13:02 - 00000000 ____D () C:\Users\g\.MCTranscodingSDK
2014-09-09 12:57 - 2014-09-09 13:06 - 00000000 ____D () C:\Users\Public\Documents\Lightworks
2014-09-09 12:57 - 2014-09-09 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightworks
2014-09-09 12:57 - 2014-09-09 12:57 - 00000000 ____D () C:\ProgramData\Geevs
2014-09-09 12:56 - 2014-09-18 15:49 - 00000000 ____D () C:\Program Files (x86)\Lightworks
2014-09-09 12:45 - 2014-09-09 12:46 - 79044088 _____ (Lightworks) C:\Users\g\Downloads\lwks.download.32.exe
2014-09-09 12:43 - 2014-09-09 12:43 - 00655896 _____ () C:\Users\g\Downloads\lightworks-setup.exe
2014-09-09 11:16 - 2014-09-09 11:16 - 00001421 _____ () C:\Users\Public\Desktop\SeaTools for Windows.lnk
2014-09-09 11:16 - 2014-09-09 11:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-09 11:16 - 2014-09-09 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate
2014-09-09 11:16 - 2014-09-09 11:16 - 00000000 ____D () C:\Program Files (x86)\Seagate
2014-09-09 11:13 - 2014-09-09 11:13 - 26771088 _____ () C:\Users\g\Downloads\SeaToolsforWindowsSetup.exe
2014-09-09 10:01 - 2014-09-09 10:01 - 02297856 _____ () C:\Users\g\Desktop\Ron Quicken-2014-09-09.QDF-backup
2014-09-09 09:06 - 2014-09-09 09:06 - 00000000 ____D () C:\Users\g\AppData\Local\Skype
2014-09-09 09:06 - 2014-09-09 09:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-04 12:08 - 2014-09-04 12:08 - 00019066 _____ () C:\Users\g\Documents\My Movie.wlmp
2014-09-04 10:20 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-09-04 10:20 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-09-04 10:20 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-09-04 10:20 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-09-04 10:20 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-09-04 10:20 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-09-04 10:20 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-09-04 10:20 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-09-04 10:19 - 2014-09-13 01:12 - 00160292 _____ () C:\Windows\DirectX.log
2014-09-04 10:19 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-09-04 10:19 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-09-04 10:19 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-09-04 10:19 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-09-04 10:18 - 2014-09-18 16:38 - 00000000 ____D () C:\Users\g\AppData\Local\Windows Live
2014-09-04 10:17 - 2014-09-04 10:17 - 01239752 _____ (Microsoft Corporation) C:\Users\g\Downloads\wlsetup-web.exe
2014-09-01 21:04 - 2014-09-04 12:38 - 00000000 ____D () C:\Users\g\Documents\Wondershare Video Editor
2014-09-01 21:04 - 2014-09-01 21:04 - 00000000 ____D () C:\Users\g\AppData\Local\Wondershare
2014-09-01 21:03 - 2014-09-01 21:03 - 00745248 _____ (Wondershare) C:\Users\g\Downloads\video-editor_setup_full846.exe
2014-09-01 21:03 - 2014-09-01 21:03 - 00000000 ____D () C:\Users\Public\Documents\Wondershare
2014-09-01 14:57 - 2014-09-01 14:57 - 00449633 _____ () C:\Users\g\Downloads\what your classmates sound like.wma
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-23 10:34 - 2014-09-23 10:34 - 00020747 _____ () C:\Users\g\Desktop\FRST.txt
2014-09-23 10:34 - 2014-09-23 10:33 - 00000000 ____D () C:\FRST
2014-09-23 10:31 - 2014-05-16 15:15 - 00000000 ____D () C:\Users\g\Documents\Divorce backup
2014-09-23 10:30 - 2014-09-23 10:31 - 02106368 _____ (Farbar) C:\Users\g\Desktop\FRST64.exe
2014-09-23 10:30 - 2014-09-23 10:30 - 02106368 _____ (Farbar) C:\Users\g\Downloads\FRST64.exe
2014-09-23 10:21 - 2012-10-26 22:27 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-23 10:18 - 2013-07-20 00:31 - 00000099 _____ () C:\Users\Public\LMDebug.log
2014-09-23 10:05 - 2012-09-14 18:15 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-23 09:38 - 2009-07-13 21:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-23 09:38 - 2009-07-13 21:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-23 09:37 - 2014-09-23 09:37 - 00000876 _____ () C:\Users\g\Desktop\JRT.txt
2014-09-23 09:34 - 2012-09-14 20:09 - 01171512 _____ () C:\Windows\WindowsUpdate.log
2014-09-23 09:33 - 2014-09-23 09:33 - 00000000 ____D () C:\Windows\ERUNT
2014-09-23 09:31 - 2014-09-23 09:32 - 01024790 _____ (Thisisu) C:\Users\g\Desktop\JRT.exe
2014-09-23 09:31 - 2014-09-23 09:30 - 01024790 _____ (Thisisu) C:\Users\g\Downloads\JRT.exe
2014-09-23 09:29 - 2014-09-21 20:07 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-23 09:28 - 2014-06-01 01:00 - 00020614 _____ () C:\Windows\setupact.log
2014-09-23 09:28 - 2014-01-16 09:18 - 00000000 ____D () C:\Users\g\AppData\Local\HTC MediaHub
2014-09-23 09:28 - 2012-12-26 21:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-23 09:28 - 2012-10-26 22:27 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-23 09:28 - 2012-09-14 18:40 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-09-23 09:28 - 2012-09-14 18:40 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-09-23 09:28 - 2012-09-14 18:34 - 00000000 ____D () C:\Program Files (x86)\AlienRespawn
2014-09-23 09:28 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-23 09:27 - 2014-04-08 06:32 - 00332576 _____ () C:\Windows\PFRO.log
2014-09-23 09:26 - 2014-09-23 09:24 - 00000000 ____D () C:\AdwCleaner
2014-09-23 09:22 - 2014-09-23 09:23 - 01373475 _____ () C:\Users\g\Desktop\adwcleaner_3.310.exe
2014-09-23 09:22 - 2014-09-23 09:22 - 01373475 _____ () C:\Users\g\Downloads\adwcleaner_3.310.exe
2014-09-23 07:27 - 2012-12-08 23:54 - 00000000 ____D () C:\Users\g\AppData\Local\Adobe
2014-09-22 16:27 - 2013-07-21 00:12 - 00000000 ____D () C:\Users\g\AppData\Roaming\Skype
2014-09-22 15:00 - 2013-07-19 03:25 - 00000000 ____D () C:\Users\g\Documents\Outlook Files
2014-09-22 13:37 - 2013-07-25 17:10 - 00000000 ____D () C:\Program Files (x86)\Quicken
2014-09-22 12:29 - 2013-07-18 10:54 - 00000952 ___SH () C:\ProgramData\KGyGaAvL.sys
2014-09-21 20:06 - 2014-09-21 20:06 - 00001126 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-21 20:06 - 2014-09-21 20:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-21 20:06 - 2014-09-21 20:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-21 20:06 - 2013-12-02 12:06 - 00000000 ____D () C:\Users\g\AppData\Roaming\Malwarebytes
2014-09-21 20:06 - 2013-12-02 12:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-21 20:06 - 2013-12-02 12:05 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-09-21 19:53 - 2014-07-06 12:28 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-09-21 19:52 - 2009-07-13 20:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-09-21 19:51 - 2014-08-16 16:55 - 00000000 ____D () C:\ProgramData\eLicenser
2014-09-20 18:04 - 2014-08-16 16:49 - 00000000 ____D () C:\Users\g\Desktop\Flower Drum Song
2014-09-20 16:04 - 2009-07-13 22:13 - 00849626 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-20 08:57 - 2014-09-20 08:57 - 00014981 _____ () C:\Users\g\Desktop\hijackthis.log
2014-09-20 08:54 - 2014-09-20 08:57 - 00388608 _____ (Trend Micro Inc.) C:\Users\g\Desktop\HiJackThis.exe
2014-09-20 08:54 - 2014-09-20 08:54 - 00388608 _____ (Trend Micro Inc.) C:\Users\g\Downloads\HiJackThis.exe
2014-09-20 08:54 - 2014-09-20 08:54 - 00014861 _____ () C:\Users\g\Downloads\hijackthis.log
2014-09-19 17:46 - 2013-07-18 11:11 - 00003910 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{FA4E74E7-2854-4B97-9CC1-5FC574421287}
2014-09-18 16:38 - 2014-09-04 10:18 - 00000000 ____D () C:\Users\g\AppData\Local\Windows Live
2014-09-18 16:25 - 2009-07-13 20:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-09-18 15:49 - 2014-09-09 12:56 - 00000000 ____D () C:\Program Files (x86)\Lightworks
2014-09-18 13:38 - 2014-09-18 13:38 - 112332800 _____ () C:\Users\g\Desktop\linda current-2014-09-18.QDF-backup
2014-09-18 13:36 - 2014-06-03 15:18 - 02338816 _____ () C:\Users\g\Documents\Ron Quicken.QDF
2014-09-17 14:44 - 2014-06-03 15:19 - 01572576 _____ () C:\Users\g\Documents\Ron QuickenOFXLOG.DAT
2014-09-16 23:09 - 2014-09-16 23:09 - 00000210 _____ () C:\Users\g\Downloads\Close_Reading.ics
2014-09-16 14:01 - 2013-07-31 16:11 - 00000000 ____D () C:\Users\g\AppData\Local\Amazon Cloud Player
2014-09-14 15:29 - 2014-09-09 16:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-09-14 15:29 - 2012-09-14 18:27 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-14 13:01 - 2014-09-14 13:01 - 12835784 _____ (Macrovision Corporation) C:\Users\g\Downloads\MovieTracer_1004a.exe
2014-09-13 13:27 - 2014-09-13 01:17 - 00000000 ____D () C:\Users\g\Documents\Sony PMB
2014-09-13 01:17 - 2014-09-09 15:54 - 00000000 ____D () C:\Users\g\AppData\Roaming\Sony Corporation
2014-09-13 01:14 - 2013-07-26 06:05 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-09-13 01:12 - 2014-09-13 01:12 - 00001838 _____ () C:\Users\Public\Desktop\PMB Help.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00001129 _____ () C:\Users\Public\Desktop\PMB.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00001056 _____ () C:\Users\Public\Desktop\PMB Launcher.lnk
2014-09-13 01:12 - 2014-09-13 01:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2014-09-13 01:12 - 2014-09-04 10:19 - 00160292 _____ () C:\Windows\DirectX.log
2014-09-13 01:11 - 2014-09-09 16:13 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-09-12 23:49 - 2014-09-12 23:48 - 04191321 _____ () C:\Users\g\Downloads\IMG_0033.MOV
2014-09-12 23:31 - 2014-06-03 15:33 - 00000000 ____D () C:\Users\g\Documents\BACKUP
2014-09-12 15:27 - 2014-09-12 15:27 - 00061995 _____ () C:\Users\g\Downloads\Apr2014_City_Rates.xlsx
2014-09-12 15:15 - 2014-09-12 15:15 - 03687352 _____ (Sony Corporation) C:\Users\g\Downloads\PMB56_Updater1105a (2).exe
2014-09-11 22:44 - 2014-09-11 22:43 - 36999144 _____ (Narrative) C:\Users\g\Downloads\NarrativeUploader.exe
2014-09-10 21:24 - 2014-08-21 10:23 - 00000000 ____D () C:\Users\g\Desktop\Tee pics king and i
2014-09-10 21:04 - 2013-07-31 16:11 - 00000000 ____D () C:\Users\g\AppData\Local\CrashDumps
2014-09-10 17:13 - 2012-12-08 23:53 - 00000000 ____D () C:\Users\g
2014-09-10 10:08 - 2013-07-26 21:05 - 00000000 ____D () C:\Users\g\Documents\Quicken
2014-09-09 16:56 - 2014-09-09 16:56 - 03687352 _____ (Sony Corporation) C:\Users\g\Downloads\PMB56_Updater1105a (1).exe
2014-09-09 16:03 - 2014-09-09 16:03 - 00003028 _____ () C:\Windows\System32\Tasks\{96D74858-05F7-4B2A-8C2A-689DAC89985E}
2014-09-09 16:00 - 2014-09-09 16:00 - 03687352 _____ (Sony Corporation) C:\Users\g\Downloads\PMB56_Updater1105a.exe
2014-09-09 15:55 - 2014-09-09 15:55 - 06892672 _____ () C:\Users\g\Downloads\PMBP_WIN57_Upgrade1208a.exe
2014-09-09 13:06 - 2014-09-09 12:57 - 00000000 ____D () C:\Users\Public\Documents\Lightworks
2014-09-09 13:05 - 2014-09-09 13:05 - 17903792 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-09-09 13:05 - 2012-09-14 18:15 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-09 13:05 - 2012-09-14 18:15 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-09 13:05 - 2012-09-14 18:15 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-09 13:02 - 2014-09-09 13:02 - 00000000 ____D () C:\Users\g\.MCTranscodingSDK
2014-09-09 12:57 - 2014-09-09 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightworks
2014-09-09 12:57 - 2014-09-09 12:57 - 00000000 ____D () C:\ProgramData\Geevs
2014-09-09 12:46 - 2014-09-09 12:45 - 79044088 _____ (Lightworks) C:\Users\g\Downloads\lwks.download.32.exe
2014-09-09 12:44 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\Resources
2014-09-09 12:43 - 2014-09-09 12:43 - 00655896 _____ () C:\Users\g\Downloads\lightworks-setup.exe
2014-09-09 11:16 - 2014-09-09 11:16 - 00001421 _____ () C:\Users\Public\Desktop\SeaTools for Windows.lnk
2014-09-09 11:16 - 2014-09-09 11:16 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-09 11:16 - 2014-09-09 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate
2014-09-09 11:16 - 2014-09-09 11:16 - 00000000 ____D () C:\Program Files (x86)\Seagate
2014-09-09 11:13 - 2014-09-09 11:13 - 26771088 _____ () C:\Users\g\Downloads\SeaToolsforWindowsSetup.exe
2014-09-09 10:01 - 2014-09-09 10:01 - 02297856 _____ () C:\Users\g\Desktop\Ron Quicken-2014-09-09.QDF-backup
2014-09-09 09:06 - 2014-09-09 09:06 - 00000000 ____D () C:\Users\g\AppData\Local\Skype
2014-09-09 09:06 - 2014-09-09 09:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-09 09:06 - 2013-07-21 00:12 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-09 09:06 - 2013-07-21 00:12 - 00000000 ____D () C:\ProgramData\Skype
2014-09-08 15:59 - 2014-04-22 17:18 - 00011594 _____ () C:\Windows\RPSETUP.EXE.LOG
2014-09-08 08:15 - 2014-08-16 16:55 - 00000000 ____D () C:\Program Files (x86)\Steinberg
2014-09-08 08:15 - 2014-07-12 17:08 - 00000000 ____D () C:\Program Files (x86)\Spoon
2014-09-05 10:32 - 2014-08-16 17:21 - 00000000 ____D () C:\Program Files (x86)\Direct WAV MP3 Splitter
2014-09-04 12:38 - 2014-09-01 21:04 - 00000000 ____D () C:\Users\g\Documents\Wondershare Video Editor
2014-09-04 12:08 - 2014-09-04 12:08 - 00019066 _____ () C:\Users\g\Documents\My Movie.wlmp
2014-09-04 10:17 - 2014-09-04 10:17 - 01239752 _____ (Microsoft Corporation) C:\Users\g\Downloads\wlsetup-web.exe
2014-09-03 14:37 - 2009-07-13 21:45 - 05071016 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-01 21:05 - 2012-12-08 23:54 - 00114552 _____ () C:\Users\g\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-01 21:04 - 2014-09-01 21:04 - 00000000 ____D () C:\Users\g\AppData\Local\Wondershare
2014-09-01 21:03 - 2014-09-01 21:03 - 00745248 _____ (Wondershare) C:\Users\g\Downloads\video-editor_setup_full846.exe
2014-09-01 21:03 - 2014-09-01 21:03 - 00000000 ____D () C:\Users\Public\Documents\Wondershare
2014-09-01 14:57 - 2014-09-01 14:57 - 00449633 _____ () C:\Users\g\Downloads\what your classmates sound like.wma
Some content of TEMP:
====================
C:\Users\g\AppData\Local\Temp\Quarantine.exe
C:\Users\g\AppData\Local\Temp\_is2607.exe
C:\Users\g\AppData\Local\Temp\_is3504.exe
C:\Users\g\AppData\Local\Temp\_is415.exe
C:\Users\g\AppData\Local\Temp\_isBBA1.exe
C:\Users\g\AppData\Local\Temp\_isCCD.exe
C:\Users\g\AppData\Local\Temp\_isE3AA.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-16 08:57
==================== End Of Log ============================