Hijack This Scan Help

Hi yayo_chulo1976,
Hijackthis does not work properly on the newer 64-bit systems.
We need some additional information to begin cleaning things up.
-----------------------------------------------------------
Download and Run the Farbar Scan Tool

• Download FRST64 and save to your Desktop.
  
• Double click Frst64.exe to launch it.
• FRST64 will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press the Scan button.
  • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
  • Please post them in your next reply.

Feel free to use separate replies if it's more convenient.
---------------------------------------------
Run CKScanner
Download CKScanner from HERE
Important - Save it to your desktop.
Right-Click CKScanner.exe, choose Run as administrator and click Search For Files.
After a couple minutes or less, when some text appears in the box, click Save List To File.
A message box will verify the file saved. It is important that you run the program just once..
Double-click the CKFiles.txt icon on your desktop, give permission if asked, and copy/paste the contents in your next reply.

askey127

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by Yai (administrator) on YAI-PC on 01-08-2014 07:44:57
Running from C:\Users\Yai\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Webroot) C:\Program Files\Webroot\WRSA.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Coupons.com Inc.) C:\Program Files (x86)\Coupons\CouponPrinterService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Fitbit, Inc.) C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe
(Seagate Technology LLC) C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Memeo) C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe
(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Webroot) C:\Program Files\Webroot\WRSA.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Seagate LLC) C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\widimon\widimon.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.EXE
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\mpas-d_bd_1.179.1461.0.exe
(Microsoft Corporation) C:\f2962da22cb5798dabd3a7\MpMiniSigStub.exe
(Microsoft Corporation) C:\Windows\System32\MpSigStub.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [590256 2011-09-23] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [712096 2011-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [710560 2011-11-25] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] => C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38824 2011-06-28] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1548208 2011-11-24] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [989056 2012-02-13] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2868496 2012-02-24] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452456 2012-02-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [TSleepSrv] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [253312 2011-11-21] (TOSHIBA)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-07-18] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [WRSVC] => C:\Program Files\Webroot\WRSA.exe [764536 2014-07-30] (Webroot)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\.DEFAULT\...\Policies\system: [DisableCMD] 0
HKU\.DEFAULT\...\Policies\system: [NoDispAppearancePage] 0
HKU\.DEFAULT\...\Policies\system: [NoDispBackgroundPage] 0
HKU\.DEFAULT\...\Policies\system: [NoDispSettingsPage] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFolderOptions] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoControlPanel] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFind] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFile] 0
HKU\.DEFAULT\...\Policies\Explorer: [HideClock] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSetFolders] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDFSTab] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoLogoff] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoResolveSearch] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSaveSettings] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoHardwareTab] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\.DEFAULT\...\MountPoints2: {335de3db-53f9-11e3-8886-00266c264d14} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-02-01] (Google Inc.)
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Run: [Google Update] => C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-11-11] (Google Inc.)
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: D - D:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: F - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {25e37647-f7de-11e2-ba6b-00266c264d14} - D:\TL-Bootstrap.exe
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {25e376e7-f7de-11e2-ba6b-00266c264d14} - D:\MotoCastSetup.exe -a
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {335de3db-53f9-11e3-8886-00266c264d14} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {3e495bbe-6ca3-11e2-a1bb-ec9c38f8810b} - H:\TL_Bootstrap.exe
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {744ed03e-fdeb-11e2-b73e-00266c264d14} - D:\MotoCastSetup.exe -a
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {8bcfcb3c-5afc-11e3-bcc3-00266c264d14} - D:\iLinker.exe
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\...\MountPoints2: {af640abf-7286-11e3-a1a9-00266c264d14} - D:\VZW_Software_upgrade_assistant.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install Webroot FF RunOnce.lnk
ShortcutTarget: Install Webroot FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\wruninstall.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install Webroot IE RunOnce.lnk
ShortcutTarget: Install Webroot IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\wruninstall.exe (No File)
Startup: C:\Users\Yai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Canon IJ Status Monitor Canon MX450 series Printer.lnk
ShortcutTarget: Canon IJ Status Monitor Canon MX450 series Printer.lnk -> C:\Users\Yai\CNMSSC~1.DLL,SMStarterEntryPoint CNBJNP_180CACF816B0;Canon MX450 series Printer;cnmss Canon MX450 series Printer (Local).dll;Canon IJ Status Monitor Canon MX450 series Printer.lnk (No File)
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: ShellExt1 -> {2012DE06-50C0-48BD-ACDE-88F95D4CAD1F} => C:\Program Files (x86)\4Sync\ShellExt.dll ()
ShellIconOverlayIdentifiers: ShellExt2 -> {C72C6188-BEF2-46E5-A89A-52F0ED75219E} => C:\Program Files (x86)\4Sync\ShellExt.dll ()
ShellIconOverlayIdentifiers: ShellExt3 -> {C92F6BC2-AF61-4C0E-80E0-939B8282DDB7} => C:\Program Files (x86)\4Sync\ShellExt.dll ()
ShellIconOverlayIdentifiers: ShellExt4 -> {CB1EFEF8-D5E0-49D1-B768-41B48B1D7803} => C:\Program Files (x86)\4Sync\ShellExt.dll ()
ShellIconOverlayIdentifiers: _WrSyncExcl -> {8D7FC74C-E409-42DF-8EEE-69D45FAE2F30} => C:\windows\system32\WRusr.dll (Webroot)
ShellIconOverlayIdentifiers: _WrSyncGreen -> {6DA1ED92-315E-4D0B-B354-9D5F519DBA95} => C:\windows\system32\WRusr.dll (Webroot)
ShellIconOverlayIdentifiers: _WrSyncRed -> {1914B27A-33C8-46F8-A1C2-F993268D4564} => C:\windows\system32\WRusr.dll (Webroot)
ShellIconOverlayIdentifiers: _WrSyncYellow -> {C14874EA-ACE4-4A47-8A81-18C4D1C40868} => C:\windows\system32\WRusr.dll (Webroot)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/?f=1&a=spd_md_1...GtByE0F0EyByE0A0C0E0DtDzy2Q&cr=1771114938&ir=
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=4a88a6b1-cd00-443e-88c1-9476f510c4ac&searchtype=ds&q={searchTerms}&installDate=28/07/2013
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,SearchURL = http://home.microsoft.com/access/autosearch.asp?p=%s
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {{67A2568C-7A0A-4EED-AECC-B5405DE63B64}} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNO
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {31090377-0740-419E-BEFC-A56E50500D5B} URL =
SearchScopes: HKLM - {{67A2568C-7A0A-4EED-AECC-B5405DE63B64}} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNO
SearchScopes: HKLM-x32 - DefaultScope {DD698B83-A519-4BF5-9E90-4CCDC55591B4} URL =
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=4a88a6b1-cd00-443e-88c1-9476f510c4ac&searchtype=ds&q={searchTerms}&installDate=28/07/2013
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://speedial.com/results.php?f=4&q={searchTerms}&a=spd_md_14_26_ch&cd=2XzuyEtN2Y1L1Qzuzy0CyE0EtAyCtAzy0DyE0AtC0FyEtByDtN0D0Tzu0SzytDzztN1L2XzutBtFtBtCtFtCtCtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBtA0C0AyByCzyzztGyDtC0C0EtG0B0B0CtCtGyEtDyC0DtGtD0DtB0F0FtCtD0F0F0DyC0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CyB0A0BzzzzyCtG0D0ByB0DtGzz0F0C0BtG0DtB0C0FtGtByE0F0EyByE0A0C0E0DtDzy2Q&cr=1771114938&ir=
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=4a88a6b1-cd00-443e-88c1-9476f510c4ac&searchtype=ds&q={searchTerms}&installDate=28/07/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://speedial.com/results.php?f=4&q={searchTerms}&a=spd_md_14_26_ch&cd=2XzuyEtN2Y1L1Qzuzy0CyE0EtAyCtAzy0DyE0AtC0FyEtByDtN0D0Tzu0SzytDzztN1L2XzutBtFtBtCtFtCtCtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBtA0C0AyByCzyzztGyDtC0C0EtG0B0B0CtCtGyEtDyC0DtGtD0DtB0F0FtCtD0F0F0DyC0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CyB0A0BzzzzyCtG0D0ByB0DtGzz0F0C0BtG0DtB0C0FtGtByE0F0EyByE0A0C0E0DtDzy2Q&cr=1771114938&ir=
SearchScopes: HKCU - {049C64F6-E1C2-46CE-8F5C-D08BDD6919D9} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {31090377-0740-419E-BEFC-A56E50500D5B} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {DD698B83-A519-4BF5-9E90-4CCDC55591B4} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {{67A2568C-7A0A-4EED-AECC-B5405DE63B64}} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar64.dll (Webroot)
BHO: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files\Webroot\WRData\PKG\Vistax64\wrflt.dll (Webroot)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: TOSHIBA Media Controller Plug-in -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll (TOSHIBA Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar.dll (Webroot)
BHO-x32: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files\Webroot\WRData\PKG\Vistax86\wrflt.dll (Webroot)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (TOSHIBA Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
Toolbar: HKLM - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar64.dll (Webroot)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
Toolbar: HKLM-x32 - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar.dll (Webroot)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default
FF DefaultSearchEngine: Speedial
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF SelectedSearchEngine: Speedial
FF Homepage: hxxp://speedial.com/?f=1&a=spd_md_14_26_ch&cd=2XzuyEtN2Y1L1Qzuzy0CyE0EtAyCtAzy0DyE0AtC0FyEtByDtN0D0Tzu0SzytDzztN1L2XzutBtFtBtCtFtCtCtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBtA0C0AyByCzyzztGyDtC0C0EtG0B0B0CtCtGyEtDyC0DtGtD0DtB0F0FtCtD0F0F0DyC0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA0CyB0A0BzzzzyCtG0D0ByB0DtGzz0F0C0BtG0DtB0C0FtGtByE0F0EyByE0A0C0E0DtDzy2Q&cr=1771114938&ir=
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=407453&p=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Motive.com/NpMotive,version=1.0 - C:\Program Files (x86)\ATT\8.3.1.18\ma\bin\npMotive.dll No File
FF Plugin-x32: @Motive.com/npMotiveRequest,version=1.0 - C:\Program Files (x86)\Common Files\Motive\npMotiveRequest.dll (Alcatel-Lucent)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Yai\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Yai\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\Speedial.xml
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\searchplugins\yahoo_ff.xml
FF Extension: Flash Video Downloader - Full HD Download - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2014-05-24]
FF Extension: Click&Clean - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2013-07-29]
FF Extension: SaveeRPro - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2014-07-10]
FF Extension: LastPass - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2014-05-08]
FF Extension: AOL Toolbar - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1} [2014-01-05]
FF Extension: Webroot Password Manager - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2014-07-30]
FF Extension: appbario13 - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\{976cd962-e0ca-4337-aea7-d93fae63a79c} [2013-12-28]
FF Extension: Speedial - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\{fa95f577-07cb-4470-ac90-e843f5f83c52} [2014-06-29]
FF Extension: Tube Enhancer Plus - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2013-08-27]
FF Extension: Slick Savings - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2014-05-14]
FF Extension: FastestFox - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2013-07-29]
FF Extension: Thumbnail Zoom Plus - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2013-07-29]
FF Extension: Tile Tabs - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\[email protected] [2013-07-29]
FF Extension: Start Page - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}.xpi [2014-05-14]
FF Extension: DownThemAll! - C:\Users\Yai\AppData\Roaming\Mozilla\Firefox\Profiles\gf2jlqhu.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-07-29]
FF Extension: Motive Extension - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected].xpi [2014-05-14]
FF Extension: Motive Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\[email protected] [2014-05-14]
FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-03-29]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-04-16]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer
FF Extension: Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer [2014-07-30]

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "https://www.google.com/"
CHR NewTab: "chrome-extension://ncdfeghkpohnalmpblddmnppfooljekh/core/newpage-pop.html", "chrome-extension://bakijjialdiiboeaknfpmflphhmljfkd/content/newtab/newtab.html"
CHR Extension: (Google Drive) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-27]
CHR Extension: (Speedial) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd [2014-06-26]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (WOT) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-04-07]
CHR Extension: (YouTube) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-07]
CHR Extension: (GeoGebra) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnbaboaihhkjoaolfnfoablhllahjnee [2014-07-27]
CHR Extension: (Google Cast) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2014-04-07]
CHR Extension: (Classic Games) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpckajjkmjncafjlkielcgheibdlnfgc [2014-07-27]
CHR Extension: (Go Extensions) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdlogpoaigpjcfjfllhjdaniobkjnkmg [2014-04-07]
CHR Extension: (Bible Inspiration Quotes) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\cefjlnahlihagmakdigkomidanbcheol [2014-07-27]
CHR Extension: (Slacker Radio) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckngegfcpnbbcejpfnakcdcjgigaiole [2014-07-27]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2014-07-27]
CHR Extension: (Spotify - Music for every moment) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2014-04-07]
CHR Extension: (Search by Image (by Google)) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2014-07-27]
CHR Extension: (AutoCAD 360) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjeclnkejmbepoibfnamioojinoopln [2014-04-07]
CHR Extension: (Read Later Fast) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\decdfngdidijkdjgbknlnepdljfaepji [2014-07-27]
CHR Extension: (Circles Share) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\deghekbbihbapplmbffglehkdhkeibbm [2014-06-09]
CHR Extension: (ESPN Cricinfo) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlklinjgampohhihndkofhhaahoicoip [2014-04-07]
CHR Extension: (NYTimes) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmphppfkcfflgglcokcbdkofpfegoel [2014-07-27]
CHR Extension: (Motive Extension) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmgmpmklgfbohogafcfobonnkogchec [2014-02-05]
CHR Extension: (Facebook news) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\edoadhjjfgeniilpmnoaddaihjkkhheb [2014-07-27]
CHR Extension: (Torrent Turbo Search App) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif [2014-04-07]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-04-18]
CHR Extension: (500px) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\egpociadnldbkfkjpmjoaibnbcoeplja [2014-07-27]
CHR Extension: (Box - 10GB of FREE storage) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2014-04-07]
CHR Extension: (Pandora) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl [2014-04-07]
CHR Extension: (Google Play Movies) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\fppdphmgcddhjeddoeghpjefkdlccljb [2014-04-07]
CHR Extension: (Watch TV Shows Online Free) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggnjneabfkaklfkpcjfddehokkgojffb [2014-07-27]
CHR Extension: (AdBlock) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-07]
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj [2014-01-26]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-04-07]
CHR Extension: (SearchPreview) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2014-04-07]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-05-08]
CHR Extension: (Flixster) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgbpjlnkjhllfgfdmieompodgaefjcfh [2014-04-07]
CHR Extension: (Feedly - News, Blogs and Youtube) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2014-07-27]
CHR Extension: (AirDroid) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2014-04-07]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2014-04-07]
CHR Extension: (Music Player for Google Drive) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh [2014-04-07]
CHR Extension: (Crackle) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-04-07]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2014-04-07]
CHR Extension: (Domain Error Assistant) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj [2014-04-07]
CHR Extension: (Dribbble HD) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ichgbbciejbjechpkakbegaaenamkpib [2014-06-30]
CHR Extension: (Pixlr Editor) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2014-04-07]
CHR Extension: (Incognito This!) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\icnaplnkjfjncegmphmlfpggildllbho [2014-05-06]
CHR Extension: (Google Play Music) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2014-04-07]
CHR Extension: (RealDownloader) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-04-02]
CHR Extension: (The Weather Channel for Chrome) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop [2014-04-07]
CHR Extension: (Dropbox) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-04-07]
CHR Extension: (appbario13) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\iolllphbfidpiigenecjjflaefapfnef [2014-04-02]
CHR Extension: (SoundCloud) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipebkipbeggmmkjjljenoblnfaenambp [2014-07-27]
CHR Extension: (Bitcasa Everywhere) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbebdjcjllheeclffnofhgcimmlkkbon [2014-04-30]
CHR Extension: (MOG Music) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgljcanfdcmdnncaneopdlcgjlkgpenj [2014-07-27]
CHR Extension: (Earth) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\jieopfhnlbjmbpckpdhfdedccdmngdac [2014-04-07]
CHR Extension: (Pocket Website) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\jijgclgmgjipgefcnnnibgllfonlfdap [2014-04-07]
CHR Extension: (StumbleUpon) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcahibnffhnnjcedflmchmokndkjnhpg [2014-07-27]
CHR Extension: (Google Voice (by Google)) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnhkahnjcbndmmehfkdnkjomaanaooo [2014-05-06]
CHR Extension: (Daily Horoscope) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjcmmiilfdkoehhfpcgkmnnnhkpkjnjn [2014-07-27]
CHR Extension: (Webroot Filtering Extension) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd [2014-07-30]
CHR Extension: (Hootsuite) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij [2014-07-27]
CHR Extension: (Google Play) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-04-07]
CHR Extension: (Evernote Web) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2014-04-07]
CHR Extension: (Pinterest ™ ) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldekkfiehnegbjkcmalkfcgfecambndd [2014-07-27]
CHR Extension: (Google Maps) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-04-07]
CHR Extension: (Extensions Manager (aka Switcher)) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpleipinonnoibneeejgjnoeekmbopbc [2014-05-06]
CHR Extension: (stingyTV) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcpdhldalfjnjgbpeiafgbklgkgoojbh [2014-07-27]
CHR Extension: (PocketCloud) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\mddnnaelaienpmompfgedlmpbkpbnhpb [2014-07-27]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2014-04-07]
CHR Extension: (Slick Savings) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-04-07]
CHR Extension: (Pocket) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk [2014-04-07]
CHR Extension: (Incredible StartPage - Productive Start Page) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdfeghkpohnalmpblddmnppfooljekh [2014-04-07]
CHR Extension: (Hangouts) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-05-06]
CHR Extension: (LastPass Vault) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncliohomlfopnmlfkepkcbnhmeijkhhf [2014-04-07]
CHR Extension: (OneDrive) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2014-07-27]
CHR Extension: (Google Wallet) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-14]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2014-07-27]
CHR Extension: (Any.do) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocgddccilgpeepgglnlpchkpgamkgmld [2014-04-07]
CHR Extension: (My Chrome Theme) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2014-07-27]
CHR Extension: (Webroot Password Manager) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfhiodnpcnnnpgbjbhfebjnbagmfhab [2014-07-31]
CHR Extension: (Picasa) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-04-07]
CHR Extension: (Instagram for Chrome) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2014-07-27]
CHR Extension: (GoPhoto.it) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-04-02]
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp [2014-01-26]
CHR Extension: (Evernote Web Clipper) - C:\Users\Yai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2014-04-07]
CHR HKCU\...\Chrome\Extension: [iolllphbfidpiigenecjjflaefapfnef] - C:\Users\Yai\AppData\Local\CRE\iolllphbfidpiigenecjjflaefapfnef.crx [2013-09-24]
CHR HKLM-x32\...\Chrome\Extension: [edmgmpmklgfbohogafcfobonnkogchec] - C:\Program Files (x86)\Common Files\Motive\extensions\MotiveRequest.crx [2014-02-05]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-03-06]
CHR HKLM-x32\...\Chrome\Extension: [iolllphbfidpiigenecjjflaefapfnef] - C:\Users\Yai\AppData\Local\CRE\iolllphbfidpiigenecjjflaefapfnef.crx [2013-09-24]
CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files (x86)\TornTV.com\torn11.crx [2013-09-24]
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - C:\ProgramData\WRData\PKG\CHROME\CHROME_1.0.0.32.crx [2014-07-30]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\Yai\AppData\Local\Slick Savings\coupons.crx [2014-01-26]
CHR HKLM-x32\...\Chrome\Extension: [nbmafkdmkkckhggblphicnnhlgljnoje] - C:\Program Files (x86)\TornTV.com\torn2_10.crx [2014-01-26]
CHR HKLM-x32\...\Chrome\Extension: [okfhiodnpcnnnpgbjbhfebjnbagmfhab] - C:\ProgramData\WRData\pkg\lpchrome.crx [2014-07-30]
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit14.crx [2012-07-31]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 CouponPrinterService; C:\Program Files (x86)\Coupons\CouponPrinterService.exe [176624 2014-02-13] (Coupons.com Inc.)
R2 Fitbit Connect; C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe [1384992 2013-10-02] (Fitbit, Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-01-20] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-01-20] (Intel Corporation)
S2 leagateDashboardService; C:\windows\System32\leagateDashboardService.dll [1607680 2013-12-23] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Thpsrv; C:\windows\system32\ThpSrv.exe [558592 2011-04-20] (TOSHIBA Corporation) [File not signed]
R2 TosCoSrv; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [580608 2012-02-02] (TOSHIBA Corporation) [File not signed]
R2 WRSVC; C:\Program Files\Webroot\WRSA.exe [764536 2014-07-30] (Webroot)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)
S2 HPSLPSVC; C:\Users\Yai\AppData\Local\Temp\7zS3F06\hpslpsvc64.dll [X]
S2 KMSEmulator; No ImagePath
S2 MCLIENT; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
S3 BTCFilterService; No ImagePath
S1 ccSet_MCLIENT; No ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-01] (DT Soft Ltd)
S1 lsnfd; No ImagePath
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 motandroidusb; No ImagePath
S3 motccgp; No ImagePath
S3 motccgpfl; No ImagePath
S3 MotoSwitchService; No ImagePath
S3 Motousbnet; No ImagePath
S3 motusbdevice; No ImagePath
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MREMP50a64; C:\Program Files\Common Files\Motive\MREMP50a64.SYS [43008 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50a64; C:\Program Files\Common Files\Motive\MRESP50a64.SYS [40960 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA))
S3 prl_virtual_sound; C:\Windows\System32\DRIVERS\prl_virtual_sound.sys [45800 2014-04-16] (Parallels Holdings, Ltd. and its affiliates.)
R3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [290520 2013-10-24] (Realtek Semiconductor Corp.)
S3 SmbDrv; C:\Windows\System32\DRIVERS\Smb_driver.sys [22800 2012-02-24] (Synaptics Incorporated)
R0 WRkrn; C:\Windows\System32\drivers\WRkrn.sys [114176 2014-07-30] (Webroot)
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
U0 SR;
U2 srservice;

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

NETSVC: leagateDashboardService -> C:\windows\System32\leagateDashboardService.dll ()

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 07:44 - 2014-08-01 07:45 - 00063625 _____ () C:\Users\Yai\Downloads\FRST.txt
2014-08-01 07:44 - 2014-08-01 07:45 - 00000000 ____D () C:\FRST
2014-08-01 07:43 - 2014-08-01 07:43 - 02094080 _____ (Farbar) C:\Users\Yai\Downloads\FRST64.exe
2014-08-01 07:40 - 2014-05-14 11:23 - 02477536 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-08-01 07:40 - 2014-05-14 11:23 - 00058336 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-08-01 07:40 - 2014-05-14 11:23 - 00044512 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-08-01 07:40 - 2014-05-14 11:21 - 02620928 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-08-01 07:39 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-08-01 07:39 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-08-01 07:39 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-08-01 07:39 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-08-01 00:32 - 2014-08-01 00:32 - 00018241 _____ () C:\Users\Yai\Desktop\Documents\hijackthis.log
2014-08-01 00:31 - 2014-08-01 00:31 - 00018241 _____ () C:\Users\Yai\Downloads\hijackthis.log
2014-08-01 00:28 - 2014-08-01 00:28 - 00388608 _____ (Trend Micro Inc.) C:\Users\Yai\Downloads\HijackThis.exe
2014-07-31 13:06 - 2014-07-31 13:06 - 00000776 _____ () C:\Users\Yai\Desktop\Webroot SecureAnywhere.lnk
2014-07-30 22:54 - 2014-07-30 22:55 - 00000000 ____D () C:\Users\Yai\AppData\Local\lptmp1577920504
2014-07-30 22:52 - 2014-08-01 07:45 - 00000000 ____D () C:\ProgramData\WRData
2014-07-30 22:52 - 2014-07-30 22:53 - 00000000 ____D () C:\Program Files\Webroot
2014-07-30 22:52 - 2014-07-30 22:52 - 00153256 _____ (Webroot) C:\windows\SysWOW64\WRusr.dll
2014-07-30 22:52 - 2014-07-30 22:52 - 00114176 _____ (Webroot) C:\windows\system32\Drivers\WRkrn.sys
2014-07-30 22:52 - 2014-07-30 22:52 - 00103816 _____ (Webroot) C:\windows\system32\WRusr.dll
2014-07-30 22:52 - 2014-07-30 22:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
2014-07-30 22:50 - 2014-07-30 22:51 - 00764536 _____ (Webroot) C:\Users\Yai\Downloads\wsainstall.exe
2014-07-30 07:30 - 2014-07-31 22:26 - 00018120 _____ () C:\windows\PFRO.log
2014-07-29 01:23 - 2014-07-29 01:23 - 00015998 _____ () C:\Users\Yai\Downloads\[kickass.to]kid.ink.main.chick.remix.feat.chris.brown.french.montana.yo.gotti.tyga.lil.bibby.2014.single.torrent
2014-07-29 01:22 - 2014-07-29 01:22 - 00008604 _____ () C:\Users\Yai\Downloads\[kickass.to]tyga.ft.young.thug.hookah.mp3.torrent
2014-07-29 01:22 - 2014-07-29 01:22 - 00003471 _____ () C:\Users\Yai\Downloads\[kickass.to]ca.h.out.she.twerkin.remix.ft.juicy.j.lil.boosie.ty.dolla.sign.kid.ink.mp3.torrent
2014-07-29 01:20 - 2014-07-29 01:20 - 00003126 _____ () C:\Users\Yai\Downloads\[kickass.to]jeezy.ft.jay.z.seen.it.all.320kbps.2014.torrent
2014-07-29 01:19 - 2014-07-29 01:19 - 00014033 _____ () C:\Users\Yai\Downloads\[kickass.to]rich.gang.lifestyle.feat.young.thug.rich.homie.quan.2014.single.torrent
2014-07-29 01:19 - 2014-07-29 01:19 - 00010013 _____ () C:\Users\Yai\Downloads\[kickass.to]jason.derulo.wiggle.ft.snoop.dogg.mp3.320kbps.torrent
2014-07-29 01:18 - 2014-07-29 01:18 - 00014032 _____ () C:\Users\Yai\Downloads\[kickass.to]t.i.about.the.money.feat.young.thug.2014.single.torrent
2014-07-29 01:17 - 2014-07-29 01:17 - 00011018 _____ () C:\Users\Yai\Downloads\[kickass.to]5.seconds.of.summer.amnesia.2014.itunes.single.the.hh.torrent
2014-07-29 01:15 - 2014-07-29 01:15 - 00013458 _____ () C:\Users\Yai\Downloads\[kickass.to]august.alsina.numb.feat.b.o.b.yo.gotti.2013.single.torrent
2014-07-29 01:15 - 2014-07-29 01:15 - 00009329 _____ () C:\Users\Yai\Downloads\[kickass.to]mr.probz.waves.2013.single.torrent
2014-07-29 01:14 - 2014-07-29 01:14 - 00003392 _____ () C:\Users\Yai\Downloads\[kickass.to]ajr.i.m.ready.2014.torrent
2014-07-29 01:13 - 2014-07-29 01:13 - 00014181 _____ () C:\Users\Yai\Downloads\[kickass.to]drake.0.to.100.the.catch.up.2014.single.torrent
2014-07-29 01:12 - 2014-07-29 01:12 - 00011881 _____ () C:\Users\Yai\Downloads\[kickass.to]electro.house.steve.aoki.chris.lake.tujamo.delirious.boneless.feat.kid.ink.ultra.ul5420.2014.mp3.320.kbps.edm.rg.torrent
2014-07-29 01:09 - 2014-07-29 01:09 - 00002887 _____ () C:\Users\Yai\Downloads\[kickass.to]tiesto.wasted.ft.matthew.koma.2014.torrent
2014-07-29 01:09 - 2014-07-29 01:09 - 00000987 _____ () C:\Users\Yai\Downloads\[kickass.to]tove.lo.habits.stay.high.the.chainsmokers.extended.mix.mp3.edm.rg.mousr.torrent
2014-07-29 01:08 - 2014-07-29 01:08 - 00013917 _____ () C:\Users\Yai\Downloads\[kickass.to]coldplay.a.sky.full.of.stars.2014.single.torrent
2014-07-29 01:07 - 2014-07-29 01:07 - 00011400 _____ () C:\Users\Yai\Downloads\[kickass.to]ingrid.michaelson.girls.chase.boys.single.2014.torrent
2014-07-29 01:07 - 2014-07-29 01:07 - 00003456 _____ () C:\Users\Yai\Downloads\[kickass.to]echosmith.cool.kids.2013.torrent
2014-07-29 01:05 - 2014-07-29 01:05 - 00008343 _____ () C:\Users\Yai\Downloads\[kickass.to]demi.lovato.really.dont.care.solo.version.2014.hipnhop.mp3.torrent
2014-07-29 01:04 - 2014-07-29 01:04 - 00013938 _____ () C:\Users\Yai\Downloads\[kickass.to]john.legend.all.of.me.2013.single.torrent
2014-07-29 01:03 - 2014-07-29 01:03 - 00010792 _____ () C:\Users\Yai\Downloads\[kickass.to]t.i.no.mediocre.feat.iggy.azalea.2014.single.torrent
2014-07-29 01:02 - 2014-07-29 01:02 - 00007724 _____ () C:\Users\Yai\Downloads\[kickass.to]lil.wayne.believe.me.feat.drake.torrent
2014-07-29 01:01 - 2014-07-29 01:01 - 00012701 _____ () C:\Users\Yai\Downloads\[kickass.to]chris.brown.new.flame.feat.usher.rick.ross.2014.single.torrent
2014-07-29 01:01 - 2014-07-29 01:01 - 00003930 _____ () C:\Users\Yai\Downloads\[kickass.to]nicki.minaj.no.flex.zone.remix.mp3.torrent
2014-07-29 01:00 - 2014-07-29 01:00 - 00003151 _____ () C:\Users\Yai\Downloads\[kickass.to]becky.g.shower.2014.torrent
2014-07-29 00:58 - 2014-07-29 00:58 - 00011919 _____ () C:\Users\Yai\Downloads\[kickass.to]onerepublic.love.runs.out.2014.single.torrent
2014-07-29 00:58 - 2014-07-29 00:58 - 00011269 _____ () C:\Users\Yai\Downloads\[kickass.to]ariana.grande.break.free.feat.zedd.2014.single.torrent
2014-07-29 00:57 - 2014-07-29 00:57 - 00002697 _____ () C:\Users\Yai\Downloads\[kickass.to]charli.xcx.boom.clap.2014.torrent
2014-07-29 00:56 - 2014-07-29 00:56 - 00012132 _____ () C:\Users\Yai\Downloads\[kickass.to]tinashe.2.on.feat.schoolboy.q.2014.single.torrent
2014-07-29 00:12 - 2014-07-29 00:12 - 00010065 _____ () C:\Users\Yai\Downloads\[kickass.to]ariana.grande.problem.feat.iggy.azalea.itunes.320.torrent
2014-07-29 00:11 - 2014-07-29 00:11 - 00010558 _____ () C:\Users\Yai\Downloads\[kickass.to]iggy.azalea.fancy.feat.charli.xcx.2014.single.torrent
2014-07-29 00:11 - 2014-07-29 00:11 - 00010184 _____ () C:\Users\Yai\Downloads\[kickass.to]maroon.5.maps.2014.single.torrent
2014-07-29 00:10 - 2014-07-29 00:10 - 00013943 _____ () C:\Users\Yai\Downloads\[kickass.to]jeremih.don.t.tell.em.feat.yg.2014.single.torrent
2014-07-29 00:08 - 2014-07-29 00:08 - 00011988 _____ () C:\Users\Yai\Downloads\[kickass.to]clean.bandit.ft.jess.glynne.rather.be.ft.jess.glynne.rather.be.mp3.zaankanter.torrent
2014-07-29 00:08 - 2014-07-29 00:08 - 00010381 _____ () C:\Users\Yai\Downloads\[kickass.to]pharrell.williams.come.get.it.bae.feat.miley.cyrus.mp3.320kbps.torrent
2014-07-29 00:07 - 2014-07-29 00:07 - 00009270 _____ () C:\Users\Yai\Downloads\[kickass.to]sam.smith.stay.with.me.2014.single.torrent
2014-07-29 00:06 - 2014-07-29 00:06 - 00013386 _____ () C:\Users\Yai\Downloads\[kickass.to]disclosure.feat.sam.smith.latch.torrent
2014-07-29 00:05 - 2014-07-29 00:05 - 00011744 _____ () C:\Users\Yai\Downloads\[kickass.to]magic.rude.single.torrent
2014-07-29 00:02 - 2014-07-29 00:02 - 00003764 _____ () C:\Users\Yai\Downloads\[kickass.to]rihanna.what.now.2013.torrent
2014-07-28 23:55 - 2014-07-28 23:55 - 00017477 _____ () C:\Users\Yai\Downloads\[kickass.to]rihanna.the.woman.in.black.2011.torrent
2014-07-28 23:44 - 2014-07-28 23:44 - 00012764 _____ () C:\Users\Yai\Downloads\[kickass.to]nico.and.vinz.am.i.wrong.torrent
2014-07-28 23:29 - 2014-07-28 23:29 - 00001215 _____ () C:\Users\Yai\Downloads\[kickass.to]stay.rihanna.feat.mikky.ekko.zertop.320kbps.torrent
2014-07-28 23:26 - 2014-07-28 23:26 - 00002420 _____ () C:\Users\Yai\Downloads\[kickass.to]get.lucky.featuring.pharrell.mp3.torrent
2014-07-28 12:31 - 2014-07-29 23:12 - 00000701 _____ () C:\Users\Yai\Desktop\Documents\07-28-14.txt
2014-07-27 22:26 - 2014-08-01 07:31 - 00000616 _____ () C:\windows\setupact.log
2014-07-27 22:26 - 2014-07-27 22:26 - 00000000 _____ () C:\windows\setuperr.log
2014-07-27 14:15 - 2014-08-01 07:45 - 00189787 _____ () C:\windows\WindowsUpdate.log
2014-07-26 08:44 - 2014-07-26 08:44 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\LastPass
2014-07-22 18:41 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-07-22 18:40 - 2014-07-22 18:40 - 00004489 _____ () C:\windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-22 18:40 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-22 18:40 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-07-22 18:40 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-07-22 17:10 - 2014-07-22 17:10 - 00018344 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.2011.biggest.boobs.18.24.february.2011.torrent
2014-07-22 17:08 - 2014-07-22 17:08 - 00003409 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.the.uncensored.version.tvs.sexiest.girls.and.more.14.february.2014.torrent
2014-07-22 17:07 - 2014-07-22 17:07 - 00033649 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.18.april.2014.the.uncensored.version.torrent
2014-07-22 17:07 - 2014-07-22 17:07 - 00016657 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.april.4.2014.uk.pdf.torrent
2014-07-22 17:06 - 2014-07-22 17:06 - 00019533 _____ () C:\Users\Yai\Downloads\[kickass.to]18.nuts.magazine.the.uncensored.version.march.28.2014.march.26.2014.pdf.torrent
2014-07-22 17:06 - 2014-07-22 17:06 - 00017137 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.21.february.2014.the.uncensored.version.torrent
2014-07-20 22:37 - 2014-07-20 22:37 - 00013327 _____ () C:\Users\Yai\Downloads\[kickass.to]perfect.*****.say.yes.to.love.2014.320kbps.torrent
2014-07-20 22:36 - 2014-07-20 22:36 - 00019458 _____ () C:\Users\Yai\Downloads\[kickass.to]neneh.cherry.blank.project.2014.torrent
2014-07-20 22:36 - 2014-07-20 22:36 - 00014137 _____ () C:\Users\Yai\Downloads\[kickass.to]perfect.*****.say.yes.to.love.2014.flac.torrent
2014-07-20 22:35 - 2014-07-20 22:35 - 00015627 _____ () C:\Users\Yai\Downloads\[rutracker.org].t4688107.torrent
2014-07-20 22:32 - 2014-07-20 22:32 - 00013862 _____ () C:\Users\Yai\Downloads\[rutracker.org].t4769273.torrent
2014-07-20 22:29 - 2014-07-20 22:29 - 00016844 _____ () C:\Users\Yai\Downloads\[kickass.to]lydia.loveless.somewhere.else.mp3.320.19glide58.h33t.torrent
2014-07-20 22:25 - 2014-07-20 22:25 - 00019656 _____ () C:\Users\Yai\Downloads\[kickass.to]james.vincent.mcmorrow.2.albums.2011.2014.mp3.320.torrent
2014-07-20 22:25 - 2014-07-20 22:25 - 00017471 _____ () C:\Users\Yai\Downloads\[kickass.to]isaiah.rashad.cilvia.demo.2014.itunes.torrent
2014-07-20 22:21 - 2014-07-20 22:21 - 00017600 _____ () C:\Users\Yai\Downloads\[kickass.to]2014.hurray.for.the.riff.raff.small.town.heroes.320.kbps.100.xy.torrent
2014-07-20 22:13 - 2014-07-20 22:13 - 00014727 _____ () C:\Users\Yai\Downloads\[kickass.to]future.honest.2014.album.deluxe.version.mp3.torrent
2014-07-20 21:52 - 2014-07-20 21:52 - 00057043 _____ () C:\Users\Yai\Downloads\[kickass.to]conor.oberst.upside.down.mountain.mp3.320.2014.trfkad.torrent
2014-07-20 21:27 - 2014-07-20 21:27 - 00018228 _____ () C:\Users\Yai\Downloads\[kickass.to]angel.olsen.burn.your.fire.for.no.witness.2014.320kbps.cbr.mp3.vx.p2pdl.torrent
2014-07-20 21:23 - 2014-07-20 21:23 - 00016879 _____ () C:\Users\Yai\Downloads\[kickass.to]alternative.rock.the.afghan.whigs.do.to.the.beast.2014.by.jamal.the.moroccan.torrent
2014-07-20 21:03 - 2014-07-20 21:03 - 00223078 _____ () C:\Users\Yai\Downloads\[kickass.to]wolfgang.amadeus.mozart.discography.tntvillage.torrent
2014-07-16 12:24 - 2014-07-16 12:24 - 00000046 _____ () C:\Users\Default\AppData\Roaming\WB.CFG
2014-07-16 12:24 - 2014-07-16 12:24 - 00000046 _____ () C:\Users\Default User\AppData\Roaming\WB.CFG
2014-07-15 08:27 - 2014-07-18 17:16 - 00000000 ____D () C:\lptmp23433
2014-07-13 19:52 - 2014-07-13 19:52 - 00001754 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-13 19:52 - 2014-07-13 19:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-13 19:50 - 2014-07-13 19:52 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-13 19:50 - 2014-07-13 19:52 - 00000000 ____D () C:\Program Files\iTunes
2014-07-13 19:50 - 2014-07-13 19:52 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-13 19:50 - 2014-07-13 19:50 - 00000000 ____D () C:\Program Files\iPod
2014-07-09 16:48 - 2014-06-29 21:09 - 00519168 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-07-09 16:48 - 2014-06-29 21:04 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-07-09 16:48 - 2014-06-17 21:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-07-09 16:48 - 2014-06-17 20:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-07-09 16:48 - 2014-06-17 20:10 - 03157504 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-07-09 16:48 - 2014-06-06 05:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-07-09 16:48 - 2014-06-06 04:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-07-09 16:48 - 2014-05-30 01:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-07-09 16:47 - 2014-06-20 15:14 - 00266424 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-07-09 16:47 - 2014-06-20 14:39 - 00240824 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-07-09 16:47 - 2014-06-18 20:39 - 23464448 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-07-09 16:47 - 2014-06-18 20:06 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-07-09 16:47 - 2014-06-18 20:06 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-07-09 16:47 - 2014-06-18 19:48 - 02768384 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-07-09 16:47 - 2014-06-18 19:42 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-07-09 16:47 - 2014-06-18 19:42 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-07-09 16:47 - 2014-06-18 19:41 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-07-09 16:47 - 2014-06-18 19:41 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-07-09 16:47 - 2014-06-18 19:32 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-07-09 16:47 - 2014-06-18 19:31 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-07-09 16:47 - 2014-06-18 19:26 - 00598016 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-07-09 16:47 - 2014-06-18 19:24 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-07-09 16:47 - 2014-06-18 19:24 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-07-09 16:47 - 2014-06-18 19:23 - 00752640 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-07-09 16:47 - 2014-06-18 19:16 - 17276416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-07-09 16:47 - 2014-06-18 19:14 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-07-09 16:47 - 2014-06-18 19:09 - 00452608 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-07-09 16:47 - 2014-06-18 18:59 - 00038400 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 16:47 - 2014-06-18 18:56 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-07-09 16:47 - 2014-06-18 18:53 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-07-09 16:47 - 2014-06-18 18:51 - 05721088 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-07-09 16:47 - 2014-06-18 18:50 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-07-09 16:47 - 2014-06-18 18:48 - 00292864 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-07-09 16:47 - 2014-06-18 18:39 - 00608768 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-07-09 16:47 - 2014-06-18 18:38 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-07-09 16:47 - 2014-06-18 18:37 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-07-09 16:47 - 2014-06-18 18:36 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-07-09 16:47 - 2014-06-18 18:35 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-07-09 16:47 - 2014-06-18 18:33 - 00631808 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-07-09 16:47 - 2014-06-18 18:32 - 02179072 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-07-09 16:47 - 2014-06-18 18:28 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-07-09 16:47 - 2014-06-18 18:28 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-07-09 16:47 - 2014-06-18 18:27 - 02040832 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-07-09 16:47 - 2014-06-18 18:27 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-07-09 16:47 - 2014-06-18 18:25 - 00442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-07-09 16:47 - 2014-06-18 18:23 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-07-09 16:47 - 2014-06-18 18:22 - 00592896 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-07-09 16:47 - 2014-06-18 18:12 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-07-09 16:47 - 2014-06-18 18:06 - 00032256 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-09 16:47 - 2014-06-18 18:01 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-07-09 16:47 - 2014-06-18 17:59 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-07-09 16:47 - 2014-06-18 17:58 - 02266112 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-07-09 16:47 - 2014-06-18 17:58 - 00239616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-07-09 16:47 - 2014-06-18 17:52 - 04254720 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-07-09 16:47 - 2014-06-18 17:51 - 13527040 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-07-09 16:47 - 2014-06-18 17:49 - 00526336 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-07-09 16:47 - 2014-06-18 17:46 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-07-09 16:47 - 2014-06-18 17:45 - 01964544 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-07-09 16:47 - 2014-06-18 17:35 - 11742208 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-07-09 16:47 - 2014-06-18 17:34 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-07-09 16:47 - 2014-06-18 17:15 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-07-09 16:47 - 2014-06-18 17:13 - 01791488 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-07-09 16:47 - 2014-06-18 17:09 - 01139200 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-07-09 16:47 - 2014-06-18 17:07 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-07-09 16:47 - 2014-06-05 09:45 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-07-09 16:47 - 2014-06-05 09:26 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-07-09 16:47 - 2014-06-05 09:25 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-07-09 16:47 - 2014-05-30 03:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-07-09 16:47 - 2014-05-30 02:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-07-07 23:21 - 2014-07-07 23:21 - 00262144 _____ () C:\windows\system32\config\elam
2014-07-04 13:09 - 2014-07-04 13:09 - 00000000 ____D () C:\Users\Yai\AppData\Local\{2D5E9BFF-B561-4838-8D7F-D4317E46DA37}
2014-07-02 20:30 - 2014-07-02 20:30 - 00001990 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk

LastRegBack: 2014-07-28 09:43

==================== End Of Log ============================

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 07:45 - 2014-08-01 07:44 - 00063625 _____ () C:\Users\Yai\Downloads\FRST.txt
2014-08-01 07:45 - 2014-08-01 07:44 - 00000000 ____D () C:\FRST
2014-08-01 07:45 - 2014-07-30 22:52 - 00000000 ____D () C:\ProgramData\WRData
2014-08-01 07:45 - 2014-07-27 14:15 - 00189787 _____ () C:\windows\WindowsUpdate.log
2014-08-01 07:43 - 2014-08-01 07:43 - 02094080 _____ (Farbar) C:\Users\Yai\Downloads\FRST64.exe
2014-08-01 07:40 - 2009-07-13 23:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-01 07:40 - 2009-07-13 23:45 - 00024608 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-01 07:36 - 2013-06-27 18:30 - 00000472 ____H () C:\windows\Tasks\schedule!2844174011.job
2014-08-01 07:36 - 2013-02-01 15:37 - 00000908 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-01 07:36 - 2013-02-01 14:20 - 00000828 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-08-01 07:36 - 2009-07-14 00:09 - 00000000 ____D () C:\windows\System32\Tasks\WPD
2014-08-01 07:32 - 2009-07-14 00:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-08-01 07:31 - 2014-07-27 22:26 - 00000616 _____ () C:\windows\setupact.log
2014-08-01 07:31 - 2009-07-14 00:08 - 00032602 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-08-01 01:01 - 2013-11-11 20:12 - 00000900 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3953454205-2245465809-1353616732-1000UA.job
2014-08-01 00:37 - 2013-12-06 20:13 - 00003910 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{0416E68D-2CEB-46C7-B55F-F39AE39E1018}
2014-08-01 00:32 - 2014-08-01 00:32 - 00018241 _____ () C:\Users\Yai\Desktop\Documents\hijackthis.log
2014-08-01 00:31 - 2014-08-01 00:31 - 00018241 _____ () C:\Users\Yai\Downloads\hijackthis.log
2014-08-01 00:28 - 2014-08-01 00:28 - 00388608 _____ (Trend Micro Inc.) C:\Users\Yai\Downloads\HijackThis.exe
2014-08-01 00:20 - 2013-02-01 15:37 - 00000912 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-01 00:13 - 2012-04-25 20:04 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-07-31 22:26 - 2014-07-30 07:30 - 00018120 _____ () C:\windows\PFRO.log
2014-07-31 17:32 - 2013-02-01 14:20 - 00000830 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-07-31 13:06 - 2014-07-31 13:06 - 00000776 _____ () C:\Users\Yai\Desktop\Webroot SecureAnywhere.lnk
2014-07-30 23:08 - 2013-02-08 19:30 - 00000000 ____D () C:\Users\Yai\AppData\Roaming\Temp
2014-07-30 23:02 - 2014-06-30 20:24 - 00000000 ____D () C:\ProgramData\SaverPro
2014-07-30 22:55 - 2014-07-30 22:54 - 00000000 ____D () C:\Users\Yai\AppData\Local\lptmp1577920504
2014-07-30 22:53 - 2014-07-30 22:52 - 00000000 ____D () C:\Program Files\Webroot
2014-07-30 22:52 - 2014-07-30 22:52 - 00153256 _____ (Webroot) C:\windows\SysWOW64\WRusr.dll
2014-07-30 22:52 - 2014-07-30 22:52 - 00114176 _____ (Webroot) C:\windows\system32\Drivers\WRkrn.sys
2014-07-30 22:52 - 2014-07-30 22:52 - 00103816 _____ (Webroot) C:\windows\system32\WRusr.dll
2014-07-30 22:52 - 2014-07-30 22:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
2014-07-30 22:51 - 2014-07-30 22:50 - 00764536 _____ (Webroot) C:\Users\Yai\Downloads\wsainstall.exe
2014-07-30 22:33 - 2014-03-15 00:23 - 00002079 _____ () C:\Users\Yai\Desktop\Documents\03-14-14.txt
2014-07-30 22:33 - 2013-04-18 15:02 - 00000000 ____D () C:\Users\Yai\Desktop\Documents\Excel Files
2014-07-30 09:37 - 2013-02-01 18:21 - 00000000 ____D () C:\ProgramData\Rosetta Stone
2014-07-29 23:12 - 2014-07-28 12:31 - 00000701 _____ () C:\Users\Yai\Desktop\Documents\07-28-14.txt
2014-07-29 22:37 - 2013-02-02 13:54 - 00000000 ____D () C:\Users\Yai\AppData\Roaming\Azureus
2014-07-29 05:01 - 2013-11-11 20:12 - 00000848 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3953454205-2245465809-1353616732-1000Core.job
2014-07-29 01:23 - 2014-07-29 01:23 - 00015998 _____ () C:\Users\Yai\Downloads\[kickass.to]kid.ink.main.chick.remix.feat.chris.brown.french.montana.yo.gotti.tyga.lil.bibby.2014.single.torrent
2014-07-29 01:22 - 2014-07-29 01:22 - 00008604 _____ () C:\Users\Yai\Downloads\[kickass.to]tyga.ft.young.thug.hookah.mp3.torrent
2014-07-29 01:22 - 2014-07-29 01:22 - 00003471 _____ () C:\Users\Yai\Downloads\[kickass.to]ca.h.out.she.twerkin.remix.ft.juicy.j.lil.boosie.ty.dolla.sign.kid.ink.mp3.torrent
2014-07-29 01:20 - 2014-07-29 01:20 - 00003126 _____ () C:\Users\Yai\Downloads\[kickass.to]jeezy.ft.jay.z.seen.it.all.320kbps.2014.torrent
2014-07-29 01:19 - 2014-07-29 01:19 - 00014033 _____ () C:\Users\Yai\Downloads\[kickass.to]rich.gang.lifestyle.feat.young.thug.rich.homie.quan.2014.single.torrent
2014-07-29 01:19 - 2014-07-29 01:19 - 00010013 _____ () C:\Users\Yai\Downloads\[kickass.to]jason.derulo.wiggle.ft.snoop.dogg.mp3.320kbps.torrent
2014-07-29 01:18 - 2014-07-29 01:18 - 00014032 _____ () C:\Users\Yai\Downloads\[kickass.to]t.i.about.the.money.feat.young.thug.2014.single.torrent
2014-07-29 01:17 - 2014-07-29 01:17 - 00011018 _____ () C:\Users\Yai\Downloads\[kickass.to]5.seconds.of.summer.amnesia.2014.itunes.single.the.hh.torrent
2014-07-29 01:15 - 2014-07-29 01:15 - 00013458 _____ () C:\Users\Yai\Downloads\[kickass.to]august.alsina.numb.feat.b.o.b.yo.gotti.2013.single.torrent
2014-07-29 01:15 - 2014-07-29 01:15 - 00009329 _____ () C:\Users\Yai\Downloads\[kickass.to]mr.probz.waves.2013.single.torrent
2014-07-29 01:14 - 2014-07-29 01:14 - 00003392 _____ () C:\Users\Yai\Downloads\[kickass.to]ajr.i.m.ready.2014.torrent
2014-07-29 01:13 - 2014-07-29 01:13 - 00014181 _____ () C:\Users\Yai\Downloads\[kickass.to]drake.0.to.100.the.catch.up.2014.single.torrent
2014-07-29 01:12 - 2014-07-29 01:12 - 00011881 _____ () C:\Users\Yai\Downloads\[kickass.to]electro.house.steve.aoki.chris.lake.tujamo.delirious.boneless.feat.kid.ink.ultra.ul5420.2014.mp3.320.kbps.edm.rg.torrent
2014-07-29 01:09 - 2014-07-29 01:09 - 00002887 _____ () C:\Users\Yai\Downloads\[kickass.to]tiesto.wasted.ft.matthew.koma.2014.torrent
2014-07-29 01:09 - 2014-07-29 01:09 - 00000987 _____ () C:\Users\Yai\Downloads\[kickass.to]tove.lo.habits.stay.high.the.chainsmokers.extended.mix.mp3.edm.rg.mousr.torrent
2014-07-29 01:08 - 2014-07-29 01:08 - 00013917 _____ () C:\Users\Yai\Downloads\[kickass.to]coldplay.a.sky.full.of.stars.2014.single.torrent
2014-07-29 01:07 - 2014-07-29 01:07 - 00011400 _____ () C:\Users\Yai\Downloads\[kickass.to]ingrid.michaelson.girls.chase.boys.single.2014.torrent
2014-07-29 01:07 - 2014-07-29 01:07 - 00003456 _____ () C:\Users\Yai\Downloads\[kickass.to]echosmith.cool.kids.2013.torrent
2014-07-29 01:05 - 2014-07-29 01:05 - 00008343 _____ () C:\Users\Yai\Downloads\[kickass.to]demi.lovato.really.dont.care.solo.version.2014.hipnhop.mp3.torrent
2014-07-29 01:04 - 2014-07-29 01:04 - 00013938 _____ () C:\Users\Yai\Downloads\[kickass.to]john.legend.all.of.me.2013.single.torrent
2014-07-29 01:03 - 2014-07-29 01:03 - 00010792 _____ () C:\Users\Yai\Downloads\[kickass.to]t.i.no.mediocre.feat.iggy.azalea.2014.single.torrent
2014-07-29 01:02 - 2014-07-29 01:02 - 00007724 _____ () C:\Users\Yai\Downloads\[kickass.to]lil.wayne.believe.me.feat.drake.torrent
2014-07-29 01:01 - 2014-07-29 01:01 - 00012701 _____ () C:\Users\Yai\Downloads\[kickass.to]chris.brown.new.flame.feat.usher.rick.ross.2014.single.torrent
2014-07-29 01:01 - 2014-07-29 01:01 - 00003930 _____ () C:\Users\Yai\Downloads\[kickass.to]nicki.minaj.no.flex.zone.remix.mp3.torrent
2014-07-29 01:00 - 2014-07-29 01:00 - 00003151 _____ () C:\Users\Yai\Downloads\[kickass.to]becky.g.shower.2014.torrent
2014-07-29 00:58 - 2014-07-29 00:58 - 00011919 _____ () C:\Users\Yai\Downloads\[kickass.to]onerepublic.love.runs.out.2014.single.torrent
2014-07-29 00:58 - 2014-07-29 00:58 - 00011269 _____ () C:\Users\Yai\Downloads\[kickass.to]ariana.grande.break.free.feat.zedd.2014.single.torrent
2014-07-29 00:57 - 2014-07-29 00:57 - 00002697 _____ () C:\Users\Yai\Downloads\[kickass.to]charli.xcx.boom.clap.2014.torrent
2014-07-29 00:56 - 2014-07-29 00:56 - 00012132 _____ () C:\Users\Yai\Downloads\[kickass.to]tinashe.2.on.feat.schoolboy.q.2014.single.torrent
2014-07-29 00:12 - 2014-07-29 00:12 - 00010065 _____ () C:\Users\Yai\Downloads\[kickass.to]ariana.grande.problem.feat.iggy.azalea.itunes.320.torrent
2014-07-29 00:11 - 2014-07-29 00:11 - 00010558 _____ () C:\Users\Yai\Downloads\[kickass.to]iggy.azalea.fancy.feat.charli.xcx.2014.single.torrent
2014-07-29 00:11 - 2014-07-29 00:11 - 00010184 _____ () C:\Users\Yai\Downloads\[kickass.to]maroon.5.maps.2014.single.torrent
2014-07-29 00:10 - 2014-07-29 00:10 - 00013943 _____ () C:\Users\Yai\Downloads\[kickass.to]jeremih.don.t.tell.em.feat.yg.2014.single.torrent
2014-07-29 00:08 - 2014-07-29 00:08 - 00011988 _____ () C:\Users\Yai\Downloads\[kickass.to]clean.bandit.ft.jess.glynne.rather.be.ft.jess.glynne.rather.be.mp3.zaankanter.torrent
2014-07-29 00:08 - 2014-07-29 00:08 - 00010381 _____ () C:\Users\Yai\Downloads\[kickass.to]pharrell.williams.come.get.it.bae.feat.miley.cyrus.mp3.320kbps.torrent
2014-07-29 00:07 - 2014-07-29 00:07 - 00009270 _____ () C:\Users\Yai\Downloads\[kickass.to]sam.smith.stay.with.me.2014.single.torrent
2014-07-29 00:06 - 2014-07-29 00:06 - 00013386 _____ () C:\Users\Yai\Downloads\[kickass.to]disclosure.feat.sam.smith.latch.torrent
2014-07-29 00:05 - 2014-07-29 00:05 - 00011744 _____ () C:\Users\Yai\Downloads\[kickass.to]magic.rude.single.torrent
2014-07-29 00:02 - 2014-07-29 00:02 - 00003764 _____ () C:\Users\Yai\Downloads\[kickass.to]rihanna.what.now.2013.torrent
2014-07-28 23:55 - 2014-07-28 23:55 - 00017477 _____ () C:\Users\Yai\Downloads\[kickass.to]rihanna.the.woman.in.black.2011.torrent
2014-07-28 23:44 - 2014-07-28 23:44 - 00012764 _____ () C:\Users\Yai\Downloads\[kickass.to]nico.and.vinz.am.i.wrong.torrent
2014-07-28 23:29 - 2014-07-28 23:29 - 00001215 _____ () C:\Users\Yai\Downloads\[kickass.to]stay.rihanna.feat.mikky.ekko.zertop.320kbps.torrent
2014-07-28 23:26 - 2014-07-28 23:26 - 00002420 _____ () C:\Users\Yai\Downloads\[kickass.to]get.lucky.featuring.pharrell.mp3.torrent
2014-07-28 08:39 - 2013-02-01 16:45 - 00000000 ____D () C:\Users\Yai\Desktop\Documents\Record Keeping
2014-07-27 22:26 - 2014-07-27 22:26 - 00000000 _____ () C:\windows\setuperr.log
2014-07-27 14:12 - 2013-03-09 19:59 - 00000000 ____D () C:\windows\Minidump
2014-07-27 14:12 - 2013-02-03 01:02 - 00000000 ____D () C:\Users\Yai\AppData\Local\CrashDumps
2014-07-26 08:44 - 2014-07-26 08:44 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\LastPass
2014-07-26 08:44 - 2013-05-14 18:33 - 00001424 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-25 21:06 - 2013-08-14 19:29 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-25 21:06 - 2013-08-14 19:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-25 21:01 - 2014-04-06 01:09 - 00000000 ____D () C:\Users\Yai\Desktop\Documents\Adobe
2014-07-25 01:43 - 2013-07-10 11:32 - 00000000 ____D () C:\Program Files\Vuze
2014-07-24 22:52 - 2014-05-08 09:35 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-07-24 03:01 - 2013-08-14 19:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-23 01:06 - 2013-02-01 16:37 - 00000000 ____D () C:\Users\Yai\Desktop\Documents\Books
2014-07-22 23:35 - 2013-04-18 15:03 - 00000000 ____D () C:\Users\Yai\Desktop\Documents\Word Files
2014-07-22 18:41 - 2013-11-17 20:40 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-22 18:40 - 2014-07-22 18:40 - 00004489 _____ () C:\windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-22 18:40 - 2012-04-25 19:56 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-22 17:10 - 2014-07-22 17:10 - 00018344 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.2011.biggest.boobs.18.24.february.2011.torrent
2014-07-22 17:08 - 2014-07-22 17:08 - 00003409 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.the.uncensored.version.tvs.sexiest.girls.and.more.14.february.2014.torrent
2014-07-22 17:07 - 2014-07-22 17:07 - 00033649 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.18.april.2014.the.uncensored.version.torrent
2014-07-22 17:07 - 2014-07-22 17:07 - 00016657 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.april.4.2014.uk.pdf.torrent
2014-07-22 17:06 - 2014-07-22 17:06 - 00019533 _____ () C:\Users\Yai\Downloads\[kickass.to]18.nuts.magazine.the.uncensored.version.march.28.2014.march.26.2014.pdf.torrent
2014-07-22 17:06 - 2014-07-22 17:06 - 00017137 _____ () C:\Users\Yai\Downloads\[kickass.to]nuts.magazine.21.february.2014.the.uncensored.version.torrent
2014-07-20 22:37 - 2014-07-20 22:37 - 00013327 _____ () C:\Users\Yai\Downloads\[kickass.to]perfect.*****.say.yes.to.love.2014.320kbps.torrent
2014-07-20 22:36 - 2014-07-20 22:36 - 00019458 _____ () C:\Users\Yai\Downloads\[kickass.to]neneh.cherry.blank.project.2014.torrent
2014-07-20 22:36 - 2014-07-20 22:36 - 00014137 _____ () C:\Users\Yai\Downloads\[kickass.to]perfect.*****.say.yes.to.love.2014.flac.torrent
2014-07-20 22:35 - 2014-07-20 22:35 - 00015627 _____ () C:\Users\Yai\Downloads\[rutracker.org].t4688107.torrent
2014-07-20 22:32 - 2014-07-20 22:32 - 00013862 _____ () C:\Users\Yai\Downloads\[rutracker.org].t4769273.torrent
2014-07-20 22:29 - 2014-07-20 22:29 - 00016844 _____ () C:\Users\Yai\Downloads\[kickass.to]lydia.loveless.somewhere.else.mp3.320.19glide58.h33t.torrent
2014-07-20 22:25 - 2014-07-20 22:25 - 00019656 _____ () C:\Users\Yai\Downloads\[kickass.to]james.vincent.mcmorrow.2.albums.2011.2014.mp3.320.torrent
2014-07-20 22:25 - 2014-07-20 22:25 - 00017471 _____ () C:\Users\Yai\Downloads\[kickass.to]isaiah.rashad.cilvia.demo.2014.itunes.torrent
2014-07-20 22:21 - 2014-07-20 22:21 - 00017600 _____ () C:\Users\Yai\Downloads\[kickass.to]2014.hurray.for.the.riff.raff.small.town.heroes.320.kbps.100.xy.torrent
2014-07-20 22:13 - 2014-07-20 22:13 - 00014727 _____ () C:\Users\Yai\Downloads\[kickass.to]future.honest.2014.album.deluxe.version.mp3.torrent
2014-07-20 21:52 - 2014-07-20 21:52 - 00057043 _____ () C:\Users\Yai\Downloads\[kickass.to]conor.oberst.upside.down.mountain.mp3.320.2014.trfkad.torrent
2014-07-20 21:27 - 2014-07-20 21:27 - 00018228 _____ () C:\Users\Yai\Downloads\[kickass.to]angel.olsen.burn.your.fire.for.no.witness.2014.320kbps.cbr.mp3.vx.p2pdl.torrent
2014-07-20 21:23 - 2014-07-20 21:23 - 00016879 _____ () C:\Users\Yai\Downloads\[kickass.to]alternative.rock.the.afghan.whigs.do.to.the.beast.2014.by.jamal.the.moroccan.torrent
2014-07-20 21:03 - 2014-07-20 21:03 - 00223078 _____ () C:\Users\Yai\Downloads\[kickass.to]wolfgang.amadeus.mozart.discography.tntvillage.torrent
2014-07-18 17:16 - 2014-07-15 08:27 - 00000000 ____D () C:\lptmp23433
2014-07-18 17:16 - 2013-12-22 01:48 - 00000000 ____D () C:\Program Files (x86)\LastPass
2014-07-16 12:24 - 2014-07-16 12:24 - 00000046 _____ () C:\Users\Default\AppData\Roaming\WB.CFG
2014-07-16 12:24 - 2014-07-16 12:24 - 00000046 _____ () C:\Users\Default User\AppData\Roaming\WB.CFG
2014-07-15 08:27 - 2014-06-13 00:53 - 00000000 ____D () C:\lptmp3488
2014-07-13 19:52 - 2014-07-13 19:52 - 00001754 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-13 19:52 - 2014-07-13 19:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-13 19:52 - 2014-07-13 19:50 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-13 19:52 - 2014-07-13 19:50 - 00000000 ____D () C:\Program Files\iTunes
2014-07-13 19:52 - 2014-07-13 19:50 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-13 19:50 - 2014-07-13 19:50 - 00000000 ____D () C:\Program Files\iPod
2014-07-12 10:44 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\rescache
2014-07-12 09:52 - 2013-07-03 20:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-11 03:02 - 2014-07-22 18:40 - 00098216 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-22 18:41 - 00272808 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-22 18:40 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-22 18:40 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-07-10 23:49 - 2013-02-01 16:48 - 00000000 ____D () C:\Users\Yai\Desktop\Documents\Tools
2014-07-10 22:23 - 2014-05-14 21:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-10 22:23 - 2013-07-03 20:11 - 00001134 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-09 22:43 - 2009-07-13 23:45 - 05211624 _____ () C:\windows\system32\FNTCACHE.DAT
2014-07-09 22:38 - 2014-05-07 08:14 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-07-09 22:38 - 2010-11-21 02:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 22:38 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-07-09 22:38 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\system32\Dism
2014-07-09 22:36 - 2013-02-02 21:44 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 22:33 - 2013-08-15 03:02 - 00000000 ____D () C:\windows\system32\MRT
2014-07-09 22:30 - 2013-02-02 11:15 - 96441528 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-07-09 12:26 - 2009-07-14 00:13 - 00782470 _____ () C:\windows\system32\PerfStringBackup.INI
2014-07-08 23:41 - 2014-06-30 20:12 - 00000000 ____D () C:\ProgramData\Fast And Safe
2014-07-08 17:13 - 2012-04-25 20:04 - 00699056 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-07-08 17:13 - 2012-04-25 20:04 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-08 17:13 - 2012-04-25 20:04 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-07-07 23:21 - 2014-07-07 23:21 - 00262144 _____ () C:\windows\system32\config\elam
2014-07-07 22:54 - 2014-06-20 02:49 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-07-07 22:38 - 2014-06-22 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft
2014-07-07 22:38 - 2014-06-22 12:28 - 00000000 ____D () C:\Program Files (x86)\Anvisoft
2014-07-07 22:37 - 2014-05-16 10:29 - 00001945 _____ () C:\windows\epplauncher.mif
2014-07-04 13:09 - 2014-07-04 13:09 - 00000000 ____D () C:\Users\Yai\AppData\Local\{2D5E9BFF-B561-4838-8D7F-D4317E46DA37}
2014-07-02 20:30 - 2014-07-02 20:30 - 00001990 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-07-02 20:30 - 2012-04-25 20:04 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk

Files to move or delete:
====================
C:\Users\Yai\cnmss Canon MX450 series Printer (Local).dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2014 02
Ran by Yai at 2014-08-01 07:46:12
Running from C:\Users\Yai\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Webroot SecureAnywhere (Enabled - Up to date) {66A6FE14-08CB-F415-3742-517201416109}
AS: Webroot SecureAnywhere (Enabled - Up to date) {DDC71FF0-2EF1-FB9B-0DF2-6A007AC62BB4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4Sync (HKLM-x32\...\4Sync) (Version: - )
7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.06 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Digital Editions 2.0 (HKLM-x32\...\Adobe Digital Editions 2.0) (Version: 2.0 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader X (10.1.10) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.12.13 - Atheros Communications Inc.)
AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk)
Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden
Bing Bar (HKLM-x32\...\{FF6DD716-7B10-4269-9F19-FFB07AC4CD95}) (Version: 7.3.124.0 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon MX450 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX450_series) (Version: 1.00 - Canon Inc.)
Canon MX450 series On-screen Manual (HKLM-x32\...\Canon MX450 series On-screen Manual) (Version: 7.6.0 - Canon Inc.)
Canon MX450 series User Registration (HKLM-x32\...\Canon MX450 series User Registration) (Version: - *Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.1.0 - Canon Inc.)
Canon Speed Dial Utility (HKLM-x32\...\Speed Dial Utility) (Version: 1.3.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
ChromecastApp (HKCU\...\{079ede36-133d-44b0-8053-c7c1fa8d2e0d}_is1) (Version: 1.5.316.0 - Google Inc.)
Content Manager Assistant for PlayStation(R) (HKLM-x32\...\{32C46540-7693-49E1-A81E-121B09C8303B}) (Version: 3.00.7187.47 - Sony Computer Entertainment Inc.)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{FD3E08F9-266E-49A8-93C4-A116BA2CD20A}) (Version: 16.2.0.998 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 16.2.998 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 16.2.998 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - BR (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x32 Version: 16.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x32 Version: 16.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - EN (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - ES (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x32 Version: 16.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FR (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (x32 Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (x32 Version: 16.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM Content (x32 Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x32 Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x32 Version: 16.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x32 Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (HKLM-x32\...\_{511DE7EA-AA68-4D7A-A2E3-0E7B5186B822}) (Version: 16.2.0.999 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x32 Version: 16.2 - Corel Corporation) Hidden
Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.7) (Version: 5.0.0.7 - Coupons.com Incorporated)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0328 - DT Soft Ltd)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5C78021E-3C8E-4EDF-97EA-E9B8D808FD6D}) (Version: - Microsoft)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.2.18828 - doubleTwist Corporation)
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
Fast And Safe (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{64af91bf}) (Version: - GTgroup) <==== ATTENTION
Fitbit Connect (HKLM-x32\...\{C257E096-67B0-4122-98F3-EE0D8798E03B}) (Version: 1.0.0.4065 - Fitbit Inc.)
FlvPlayer (HKCU\...\FlvPlayer) (Version: ${VERSION} - ) <==== ATTENTION
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKCU\...\Google+ Auto Backup) (Version: 1.0.25.141 - Google, Inc.)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.9.254 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{93F34C5C-ACAA-48F3-9B26-70359A117F12}) (Version: 3.0.12.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0708 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{538B98C3-773F-4F20-9C66-802D104DCBE2}) (Version: 1.23.219.2 - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
iTunes (HKLM\...\{33E28B58-7BA0-47B7-AA01-9225ABA2B8A9}) (Version: 11.3.0.54 - Apple Inc.)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Java(TM) 6 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216025FF}) (Version: 6.0.250 - Oracle)
Jpg2Pdf version 1.2 (HKLM-x32\...\{533D415A-4151-4AC5-858E-4068524C8051}_is1) (Version: 1.2 - Office Necessities inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version: - LastPass)
Licensing Service (03000201) (x32 Version: 03.00.02.15 - Protexis Inc.) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x86) (x32 Version: 7.1.00.00 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x86) English (x32 Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MP3jam 1.1.1.6 (HKLM-x32\...\MP3jam_is1) (Version: 1.1.1.6 - MP3jam)
Mp3tag v2.58 (HKLM-x32\...\Mp3tag) (Version: v2.58 - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Netflix in Windows Media Center (HKLM-x32\...\{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}) (Version: 3.3.101.0 - Microsoft Corporation)
Opera Stable 21.0.1432.57 (HKLM-x32\...\Opera 21.0.1432.57) (Version: 21.0.1432.57 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 8.4.1.210 - Electronic Arts, Inc.)
OverDrive Media Console (HKLM-x32\...\{D07205E7-F6D3-4333-AFCC-782A07685B72}) (Version: 3.2.20 - OverDrive, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.0 - Frank Heindörfer, Philip Chinery)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RealDownloader (x32 Version: 1.3.1 - RealNetworks, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6581 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.29006 - Realtek Semiconductor Corp.)
Rosetta Stone Version 3 (HKLM-x32\...\{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}) (Version: 3.3.5.2 - Rosetta Stone Ltd.)
Samsung i-Launcher 1.0.1.48 (HKLM-x32\...\Samsung i-Launcher) (Version: 1.0.1.48 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.0.13091.39 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.0.13091.39 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Seagate Dashboard (HKLM-x32\...\{C3A11907-930D-41AC-A135-CC3B12F92011}) (Version: 1.1.0.1554 - Memeo Inc.)
Seagate Manager Installer (HKLM-x32\...\InstallShield_{2A30052B-831C-41D3-8044-3C0388066350}) (Version: 2.01.0600 - Seagate)
Seagate Manager Installer (x32 Version: 2.01.0600 - Seagate) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SRS Premium Sound Control Panel (HKLM\...\{75A43A49-A6A1-4FCB-A41E-02D76E166691}) (Version: 1.12.1100 - SRS Labs, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.41.7 - Synaptics Incorporated)
TOSHIBA Application Installer (HKLM-x32\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.1.2 - TOSHIBA)
TOSHIBA Assist (HKLM-x32\...\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}) (Version: 4.2.3.1 - TOSHIBA CORPORATION)
Toshiba Book Place (HKLM-x32\...\{C31337DE-0CDC-45A9-9A32-F099AC78D557}) (Version: 3.0.9490 - K-NFB Reading Technology, Inc.)
TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{1C8C049A-145F-4A6E-8290-B5C245EBE39D}) (Version: 1.6.11.64 - TOSHIBA Corporation)
TOSHIBA Bulletin Board (Version: 1.6.11.64 - TOSHIBA Corporation) Hidden
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.11 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\{2C486987-D447-4E36-8D61-86E48E24199C}) (Version: 1.3.10.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.18.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (Version: 3.1.18.64 - TOSHIBA Corporation) Hidden
TOSHIBA Hardware Setup (HKLM-x32\...\{97965331-BC5D-4D9F-B6DF-5C0A123E4AE0}) (Version: 2.1.0.8 - TOSHIBA Corporation)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.2.2.15 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.11 - TOSHIBA Corporation)
TOSHIBA Media Controller (HKLM-x32\...\{C7A4F26F-F9B0-41B2-8659-99181108CDE3}) (Version: 1.0.87.5 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.8.0 - TOSHIBA CORPORATION)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.7.15.64 - TOSHIBA Corporation)
TOSHIBA Quality Application (HKLM-x32\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.4 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.6.52020009 - TOSHIBA CORPORATION)
TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}) (Version: 1.7.21.64 - TOSHIBA Corporation)
TOSHIBA ReelTime (Version: 1.7.21.64 - TOSHIBA Corporation) Hidden
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.1.2004 - TOSHIBA Corporation)
Toshiba Security Dashboard (HKLM-x32\...\ToshibaSD) (Version: 1.0.0.48 - Symantec Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.3.0 - TOSHIBA)
TOSHIBA Sleep Utility (HKLM-x32\...\{654F7484-88C5-46DC-AB32-C66BCB0E2102}) (Version: 1.4.0022.000104 - TOSHIBA Corporation)
TOSHIBA Supervisor Password (HKLM-x32\...\{0AF17224-CF88-40B8-BB1A-D179369847B4}) (Version: 2.1.0.3 - TOSHIBA Corporation)
TOSHIBA User's Guide (HKLM-x32\...\{3384E1D9-3F18-4A98-8655-180FEF0DFC02}) (Version: 1.00.02 - TOSHIBA)
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.6.0022.640207 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.6.0022.640207 - TOSHIBA Corporation) Hidden
TOSHIBA Value Added Package (x32 Version: 1.6.0022.640207 - TOSHIBA Corporation) Hidden
TOSHIBA VIDEO PLAYER (HKLM\...\{27C3DB42-A9C1-4B44-A164-93849D160D12}) (Version: 5.3.18.82 - Toshiba Corporation)
TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.3.33 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (x32 Version: 2.0.3.33 - TOSHIBA Corporation) Hidden
TOSHIBA Wireless Display Monitor (HKLM-x32\...\{617773AE-ADBA-4479-BB04-65FE7758B35C}) (Version: 1.0.1 - TOSHIBA CORPORATION)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{C0BDC1DE-C35E-422B-8CBD-C1D555468720}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3EFF1957-7DEA-4C7A-8E9C-2D6D58E4B2ED}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{3EFF1957-7DEA-4C7A-8E9C-2D6D58E4B2ED}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version: - Microsoft)
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.3.0.0 - Azureus Software, Inc.)
Webroot SecureAnywhere (HKLM-x32\...\WRUNINST) (Version: 8.0.4.104 - Webroot)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
YTD Video Downloader 4.7.2 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.7.2 - GreenTree Applications SRL)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3953454205-2245465809-1353616732-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3953454205-2245465809-1353616732-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3953454205-2245465809-1353616732-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Yai\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3953454205-2245465809-1353616732-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3953454205-2245465809-1353616732-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3953454205-2245465809-1353616732-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Yai\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)

==================== Restore Points =========================

22-07-2014 22:44:15 Windows Update
22-07-2014 23:39:20 Installed Java 7 Update 65
24-07-2014 08:00:11 Windows Update
29-07-2014 10:11:39 Windows Update
01-08-2014 12:37:41 Windows Update
01-08-2014 12:44:34 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2014-02-07 02:58 - 00001095 ____A C:\windows\system32\Drivers\etc\hosts
0.0.0.0 license.superantispyware.com
127.0.0.1 core1.proxyswitcher.com
127.0.0.1 core2.proxyswitcher.com
127.0.0.1 core3.proxyswitcher.com
127.0.0.1 core2.velns.org

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0391DFEC-6111-491B-A879-77CF0391EC3A} - System32\Tasks\AffiliatedUpdate => C:\Users\Yai\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {1A5810AF-038B-48B3-97A8-833031C1E27C} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3953454205-2245465809-1353616732-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {362A2A44-04C6-4353-9FC9-9C63604F18B2} - System32\Tasks\TOSHIBA Wireless Display Monitor => C:\Program Files (x86)\TOSHIBA\widimon\widimon.exe [2010-12-25] (TOSHIBA CORPORATION)
Task: {46105645-0CE3-4934-BD96-0E1EE7728B02} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {56BCA141-4773-49B6-B784-33D4AA8037E6} - System32\Tasks\schedule!2844174011 => C:\ProgramData\BetterSoft\EasylifeGadget Updater\EasylifeGadget Updater.exe <==== ATTENTION
Task: {5D917552-0C06-41E5-B0D5-F3C396A3AD3A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {650A5F0F-687B-4B65-84B4-6B2A092069D4} - System32\Tasks\IHUninstallTrackingTASK => CMD
Task: {6CBD4B88-AD37-432E-BA10-581F0B8D42E5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-01] (Google Inc.)
Task: {7249F42C-2A4B-4584-AFA6-66BFB99847C9} - System32\Tasks\Norton Management\Norton Error Processor => C:\Program Files (x86)\Norton Management\Engine\3.2.2.12\SymErr.exe
Task: {866D0508-506B-42DB-A31B-DFEA3CA4695C} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-YAI-PC => C:\Windows\ehome\McxTask.exe [2009-07-13] (Microsoft Corporation)
Task: {8F3D3F62-BB30-4C52-AD75-F54CE8132745} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3953454205-2245465809-1353616732-1000Core => C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe [2013-11-11] (Google Inc.)
Task: {9ECA0C88-848E-4606-8459-8DB4E7969C73} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3953454205-2245465809-1353616732-1000UA => C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe [2013-11-11] (Google Inc.)
Task: {BB30F9C2-43EA-458F-AB31-4D2339A34C8A} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3953454205-2245465809-1353616732-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {BE7382F6-5784-4AFD-BFD3-C32B8F37C4A4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {C1F29AEE-93E2-4DCB-BF32-36016BFC5C86} - System32\Tasks\Norton Management\Norton Error Analyzer => C:\Program Files (x86)\Norton Management\Engine\3.2.2.12\SymErr.exe
Task: {C7B4A86E-802F-474B-B7AA-24826C079614} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-01] (Google Inc.)
Task: {DF18FCFA-17D8-4565-B591-CAE7800B9BA1} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {E6D24CC4-73D1-424A-95D3-6AEC13717F2F} - System32\Tasks\Start Registry Reviver => C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe
Task: {E7236719-0443-400F-A2E1-EF95649253AD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08] (Adobe Systems Incorporated)
Task: {F619E0E4-5F47-4DA5-AEBF-B625500D939F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\AffiliatedUpdate.job => C:\Users\Yai\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3953454205-2245465809-1353616732-1000Core.job => C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3953454205-2245465809-1353616732-1000UA.job => C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\windows\Tasks\schedule!2844174011.job => C:\ProgramData\BetterSoft\EasylifeGadget Updater\EasylifeGadget Updater.exe

==================== Loaded Modules (whitelisted) =============

2013-02-01 17:11 - 2005-03-12 01:07 - 00087040 _____ () C:\windows\System32\pdfcmnnt.dll
2014-05-08 09:41 - 2012-03-28 07:49 - 00140456 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2013-02-01 14:20 - 2012-01-20 14:45 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2013-03-06 02:21 - 2013-03-06 02:21 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-09-25 14:16 - 2012-09-25 14:16 - 02190336 _____ () C:\Program Files (x86)\4Sync\ShellExt.dll
2012-09-25 14:17 - 2012-09-25 14:17 - 00652288 _____ () C:\Program Files (x86)\4Sync\lbase64.dll
2012-09-25 14:16 - 2012-09-25 14:16 - 00796160 _____ () C:\Program Files (x86)\4Sync\ShellCp.dll
2012-03-26 20:33 - 2012-03-26 20:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-11-25 21:51 - 2011-11-25 21:51 - 00079784 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-06-11 14:11 - 2014-06-05 08:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-06-11 14:11 - 2014-06-05 08:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-06-11 14:11 - 2014-06-05 08:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-11 14:11 - 2014-06-05 08:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-11 14:11 - 2014-06-05 08:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRkrn => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRSVC => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

HKU\.DEFAULT\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION!
HKU\.DEFAULT\Software\Classes\exefile: "%1" %* <===== ATTENTION!
HKU\S-1-5-19\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION!
HKU\S-1-5-19\Software\Classes\exefile: "%1" %* <===== ATTENTION!
HKU\S-1-5-20\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION!
HKU\S-1-5-20\Software\Classes\exefile: "%1" %* <===== ATTENTION!
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION!
HKU\S-1-5-21-3953454205-2245465809-1353616732-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Content Manager Assistant for PlayStation(R).lnk => C:\windows\pss\Content Manager Assistant for PlayStation(R).lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Install LastPass FF RunOnce.lnk => C:\windows\pss\Install LastPass FF RunOnce.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Install LastPass IE RunOnce.lnk => C:\windows\pss\Install LastPass IE RunOnce.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Media Browser Service.lnk => C:\windows\pss\Media Browser Service.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Yai^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Canon IJ Status Monitor Canon MX450 series Printer.lnk => C:\windows\pss\Canon IJ Status Monitor Canon MX450 series Printer.lnk.Startup
MSCONFIG\startupreg: 4Sync => "C:\Program Files (x86)\4Sync\4Sync.exe" -startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: ATT_McciTrayApp => "C:\Program Files\ATT\8.3.1.18\ma\bin\pcTrayApp.exe"
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: Badoo Desktop => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: BrowserAppCoreService =>
MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
MSCONFIG\startupreg: Conime => %windir%\system32\conime.exe
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DelayTSS => "C:\Program Files\Toshiba\DelayTSS\DelayTSS.exe"
MSCONFIG\startupreg: EKStatusMonitor =>
MSCONFIG\startupreg: Fitbit Connect => "C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe" /autorun
MSCONFIG\startupreg: Google Update => "C:\Users\Yai\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HLBackupScheduler => C:\Program Files\Verizon Cloud\V CAST Backup Scheduler.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: IJNetworkScannerSelectorEX => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MaxMenuMgr => "C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
MSCONFIG\startupreg: Memeo Instant Backup =>
MSCONFIG\startupreg: Messenger (Yahoo!) =>
MSCONFIG\startupreg: MotoCast =>
MSCONFIG\startupreg: Nikon Message Center 2 =>
MSCONFIG\startupreg: Parallels Access => "C:\Program Files (x86)\Parallels\Parallels Access\Application\prl_deskctl_wizard.exe" --autorun
MSCONFIG\startupreg: Plex Media Server => "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
MSCONFIG\startupreg: PSwitch => C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Seagate Dashboard => C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe --silent --no_ui
MSCONFIG\startupreg: SearchSettings =>
MSCONFIG\startupreg: SRS Premium Sound 3D => "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_PS3D.zip" /h
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TkBellExe =>
MSCONFIG\startupreg: TosNC => %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe

==================== Faulty Device Manager Devices =============

Name: lsnfd
Description: lsnfd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: lsnfd
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Norton Management Settings Manager
Description: Norton Management Settings Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ccSet_MCLIENT
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: =========================

Application errors:
==================
Error: (08/01/2014 07:32:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/01/2014 07:31:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_leagateDashboardService, version: 6.1.7601.17568, time stamp: 0x4d6c7db2
Faulting module name: leagatedashboardservice.dll, version: 0.0.0.0, time stamp: 0x52836d08
Exception code: 0xc0000005
Fault offset: 0x00000000000135db
Faulting process id: 0x404
Faulting application start time: 0xsvchost.exe_leagateDashboardService0
Faulting application path: svchost.exe_leagateDashboardService1
Faulting module path: svchost.exe_leagateDashboardService2
Report Id: svchost.exe_leagateDashboardService3

Error: (08/01/2014 07:31:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 10:28:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 10:27:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_leagateDashboardService, version: 6.1.7601.17568, time stamp: 0x4d6c7db2
Faulting module name: leagatedashboardservice.dll, version: 0.0.0.0, time stamp: 0x52836d08
Exception code: 0xc0000005
Fault offset: 0x00000000000135db
Faulting process id: 0x3c0
Faulting application start time: 0xsvchost.exe_leagateDashboardService0
Faulting application path: svchost.exe_leagateDashboardService1
Faulting module path: svchost.exe_leagateDashboardService2
Report Id: svchost.exe_leagateDashboardService3

Error: (07/31/2014 10:27:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 08:10:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 08:09:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_leagateDashboardService, version: 6.1.7601.17568, time stamp: 0x4d6c7db2
Faulting module name: leagatedashboardservice.dll, version: 0.0.0.0, time stamp: 0x52836d08
Exception code: 0xc0000005
Fault offset: 0x00000000000135db
Faulting process id: 0x3e4
Faulting application start time: 0xsvchost.exe_leagateDashboardService0
Faulting application path: svchost.exe_leagateDashboardService1
Faulting module path: svchost.exe_leagateDashboardService2
Report Id: svchost.exe_leagateDashboardService3

Error: (07/31/2014 08:09:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 00:13:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (08/01/2014 07:35:43 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The HP Network Devices Support service terminated with the following error:
%%126

Error: (08/01/2014 07:35:43 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error:
%%1056

Error: (08/01/2014 07:35:43 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Computer Browser service, but this action failed with the following error:
%%1056

Error: (08/01/2014 07:35:43 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (120000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X64 service to connect.

Error: (08/01/2014 07:32:51 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Shell Hardware Detection service, but this action failed with the following error:
%%1056

Error: (08/01/2014 07:31:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Management Instrumentation service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (08/01/2014 07:31:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Themes service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/01/2014 07:31:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Shell Hardware Detection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/01/2014 07:31:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Remote Desktop Configuration service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (08/01/2014 07:31:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The System Event Notification Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

Microsoft Office Sessions:
=========================
Error: (08/01/2014 07:32:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/01/2014 07:31:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_leagateDashboardService6.1.7601.175684d6c7db2leagatedashboardservice.dll0.0.0.052836d08c000000500000000000135db40401cfad847c3640d7C:\windows\system32\svchost.exec:\windows\system32\leagatedashboardservice.dllcd6bf6d7-1977-11e4-81fc-00266c264d14

Error: (08/01/2014 07:31:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 10:28:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 10:27:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_leagateDashboardService6.1.7601.175684d6c7db2leagatedashboardservice.dll0.0.0.052836d08c000000500000000000135db3c001cfad386e66b538C:\windows\system32\svchost.exec:\windows\system32\leagatedashboardservice.dllbb8eba51-192b-11e4-bf4a-00266c264d14

Error: (07/31/2014 10:27:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 08:10:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 08:09:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_leagateDashboardService6.1.7601.175684d6c7db2leagatedashboardservice.dll0.0.0.052836d08c000000500000000000135db3e401cfacc0990c8c81C:\windows\system32\svchost.exec:\windows\system32\leagatedashboardservice.dllea5a1043-18b3-11e4-89ed-00266c264d14

Error: (07/31/2014 08:09:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/31/2014 00:13:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

CodeIntegrity Errors:
===================================
Date: 2014-07-10 11:50:34.367
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-10 11:50:34.365
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-10 11:50:34.352
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-10 11:50:34.350
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-10 11:47:05.075
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-07-10 11:47:04.906
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-02-09 20:33:12.432
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00226_002\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-02-09 20:13:06.927
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-02-09 19:55:50.433
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-02-09 19:37:08.961
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Percentage of memory in use: 50%
Total physical RAM: 6031.3 MB
Available physical RAM: 2967.34 MB
Total Pagefile: 12171.48 MB
Available Pagefile: 8422.74 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (TI106411W0E) (Fixed) (Total:608.52 GB) (Free:337.95 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive z: (Image) (Fixed) (Total:44.94 GB) (Free:44.86 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 699 GB) (Disk ID: F51AF721)
Partition 1: (Active) - (Size=1 GB) - (Type=27)
Partition 2: (Not Active) - (Size=609 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=45 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=29 GB) - (Type=OF Extended)

==================== End Of Log ============================

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
c:\program files (x86)\corel\coreldraw graphics suite x6\custom data\bumpmap\cracks.cpt
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\addon.xml
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\changelog.txt
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\default.py
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\settings.xml
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\__init__.py
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\__init__.pyo
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\language\english\strings.xml
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\lib\addon.py
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\lib\addon.pyo
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\lib\crackle.py
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\lib\crackle.pyo
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\lib\__init__.py
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.crackle\resources\lib\__init__.pyo
c:\program files (x86)\xbmc\portable_data\addons\plugin.video.free.cable\resources\lib\crackle.py
c:\users\guest\favorites\crackle\free hollywood movies & tv series.url
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\readme.txt
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosettastonesetup.exe
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\crack\readme.txt
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\crack\rosettastoneversion3.exe
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\how to run the language packs\readme.txt
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\how to run the language packs\setupvirtualclonedrive5425.exe
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\readme.txt
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\french v3 levels 1-3\french level 1.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\french v3 levels 1-3\french level 2.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\french v3 levels 1-3\french level 3.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\german v3 levels 1-3\german - level 1.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\german v3 levels 1-3\german - level 2.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\german v3 levels 1-3\german - level 3.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\russian v3 levels 1-3\russian level 1.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\russian v3 levels 1-3\russian level 2.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\russian v3 levels 1-3\russian level 3.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\spanish (latin american) levels 1-3\spanish (latin america) level 1.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\spanish (latin american) levels 1-3\spanish (latin america) level 2.iso
c:\users\yai\desktop\documents\rosetta stone v3 install + crack\rosetta stone v3 language packs\spanish (latin american) levels 1-3\spanish (latin america) level 3.iso
c:\users\yai\desktop\documents\software\proxy switcher pro 5.8.1 final - scenedl (pimprg)\medicine\crack\proxyswitcher.exe
c:\users\yai\favorites\crackle\free hollywood movies & tv series.url
scanner sequence 3.ZZ.11.MDNAVZ

------------------------------------------------
Remove Programs Using Control Panel
From Start, Control Panel, click on Programs and Features
Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

Adobe Reader X
Coupon Printer for Windows
Fast And Safe
FlvPlayer
Java(TM) 6 Update 25
PDFCreator
Vuze

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine
--------------------------------------------------------
Download and Install the newest version of Adobe Reader for reading pdf files
There are security vulnerabilities in earlier versions of both Reader and Acrobat Pro. All versions numbered lower than 11.0.07 are vulnerable.
Go HERE to download the Installer AdbeRdr11007_en_US.exe .
Save the file to your desktop and run it to install the latest version of Adobe Reader.
Always be careful to UNCHECK any offer for toolbars, helpers or other "partner" Free programs
After the new Reader is installed, Open Adobe Reader XI, as it is called, and OK the license.
Click on Edit and select Preferences.
On the Left, click on the Javascript category and Uncheck Enable Acrobat Javascript.
Click on the Security (Enhanced) category
Uncheck Automatically trust sites from my Win OS security zones, and under Protected View, click on Files from potentially unsafe locations.
Click on the Trust Manager category and Uncheck Allow opening of non-PDF file attachments with external applications.
Click the OK button
When it asks if you are sure you want to make changes to Advanced Security Preferences, answer Yes.
When it finishes, you can remove the Installer from your desktop.
--------------------------------------------------------
Run A Fix With FRST64
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both the program (FRST.exe or FRST64.exe) and fixlist.txt be in the same location, or the fix will not work. (both on desktop is OK, or both in the same folder)

NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to the operating system

Run FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that, let the tool complete its run.
When finished, FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.
-----------------------------------------------------------
Download MGA Diagnostic Tool to your Desktop.

• Double click MGADiag.exe to launch the program.
• Click Continue and let the scan run.
• When finished it will have created a log.
• Click Copy.
• Next open Notepad.
  • Click Start > Run type Notepad click OK.
  • This will open an empty Notepad file.
  • Right click in the empty file and choose Paste to copy the log from MGA Diagnostics into it.
  • Save the file to your Desktop.
• Close MGA Diagnostic Tool.
• Copy/Paste the Notepad log you just made in your next reply please.

---------------------------------------------------
So, In Your Replies, we will be looking for the following :
The contents of:

• Fixlog.txt
• The log from MGADiag

Please feel free to use separate replies.

askey127

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: 0x0
Windows Product Key: *****-*****-4F8HK-M4P73-W8DQG
Windows Product Key Hash: Xs1iQgVeo0C+sObJxS7eu+FuBPQ=
Windows Product ID: 00359-OEM-8992687-00057
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.003
ID: {60E4D24E-4AA7-4885-A566-D7B0758DC5EF}(1)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Premium
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.140303-2144
TTS Error:
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 109 N/A
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{60E4D24E-4AA7-4885-A566-D7B0758DC5EF}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.003</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-W8DQG</PKey><PID>00359-OEM-8992687-00057</PID><PIDType>2</PIDType><SID>S-1-5-21-3953454205-2245465809-1353616732</SID><SYSTEM><Manufacturer>TOSHIBA</Manufacturer><Model>Satellite P875</Model></SYSTEM><BIOS><Manufacturer>Insyde Corp.</Manufacturer><Version>6.30</Version><SMBIOSVersion major="2" minor="7"/><Date>20130117000000.000000+000</Date></BIOS><HWID>D5C33807018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Central Standard Time(GMT-06:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>TOSINV</OEMID><OEMTableID>TOSINV00</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>109</Result><Products/><Applications/></Office></Software></GenuineResults>

Spsys.log Content: 0x80070002

Licensing Data-->
Software licensing service version: 6.1.7601.17514

Name: Windows(R) 7, HomePremium edition
Description: Windows Operating System - Windows(R) 7, OEM_SLP channel
Activation ID: d2c04e90-c3dd-4260-b0f3-f845f5d27d64
Application ID: 55c92734-d682-4d71-983e-d6ec3f16059f
Extended PID: 00359-00178-926-800057-02-1033-7601.0000-1162012
Installation ID: 013170177712009174249651985841756586470453931921961905
Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
Use License URL: http://go.microsoft.com/fwlink/?LinkID=88341
Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
Partial Product Key: W8DQG
License Status: Licensed
Remaining Windows rearm count: 2
Trusted time: 8/1/2014 1:07:21 PM

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: 0x00000000
HealthStatus: 0x0000000000000000
Event Time Stamp: 5:21:2014 19:01
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:

HWID Data-->
HWID Hash Current: MgAAAAIAAgABAAEAAAABAAAAAwABAAEAonbUJa5JdxZY+Bwvrs167oLiMh7ixLrslmM=

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information:
ACPI Table Name OEMID Value OEMTableID Value
APIC TOSINV TOSINV00
FACP TOSINV TOSINV00
DBGP TOSINV TOSINV00
HPET TOSINV TOSINV00
BOOT TOSINV TOSINV00
MCFG TOSINV TOSINV00
WDAT TOSINV TOSINV00
UEFI TOSINV TOSINV00
ASF! TOSINV TOSINV00
SLIC TOSINV TOSINV00
SSDT INSYDE CR CRB
ASPT TOSINV TOSINV00
SSDT INSYDE CR CRB
FPDT TOSINV TOSINV00
SSDT INSYDE CR CRB
SSDT INSYDE CR CRB

Now what should I Do?

On another note how did you learn all of this stuff? I am eager to learn about this stuff or any other helpful tips to troubleshoot computers and networking

yayo_chulo1976,
We are going to download fresh copies of FRST64.exe and FixList.txt to use.
These instructions are quite specific and exact.
You will need to follow them to continue receiving online help.
-------------------------------------------------------
IF You Don't Have Firefox, get it here and install it : http://www.getfirefox.net/
---------------------------------------------------------
Set Firefox as Default and Always Ask Where to Save Downloads
Open Firefox, then hit the Alt key once if necessary, so you can see the menu bar at the top.
In the top menu, click on Tools, and select Options.

In the new dialog window that pops up:
Click on the General icon in the top bar, and click the radiobutton labeled "Always ask me where to save files"
Click on the Advanced icon in the top bar.
Click the radiobutton labeled, "Always check to see if Firefox is the Default browser on startup."
Click OK.
-----------------------------------------------------------
Download and Run the Farbar Scan Tool
Download FRST64 and save to your Desktop.
Choose Save File
Click on Desktop as the location
Click Save
-----------------------------------------------------------
Save newest FixList.txt onto your desktop.
Click on the File attachment FixList.txt at the bottom of this post.
Choose Save File
Click on Desktop as the location
Click Save

If IE or Chrome asks to make itself the default browser, answer NO every time.

Now open FRST64.exe by right clicking and choosing Run as administrator.
Click the FIX button once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that, let the tool complete its run.
When finished, FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.
askey127