Here are the 2 files (copied/pasted) below.
Addition.txt:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-02-2014
Ran by Cheryl at 2014-02-05 17:39:44
Running from C:\Users\Cheryl\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Norton Internet Security (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
==================== Installed Programs ======================
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop.com Inspiration Browser (x32 Version: 3.07 - Adobe Systems Incorporated)
Adobe Photoshop.com Inspiration Browser (x32 Version: 3.07 - Adobe Systems Incorporated) Hidden
Adobe Premiere Elements 9 (x32 Version: 9.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 9 (x32 Version: 9.0.1 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.06) (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Broadcom NetXtreme-I Netlink Driver and Management Installer (Version: 12.55.01 - Broadcom Corporation)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
C309a (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version: - Microsoft)
Dell System Detect (HKCU Version: 5.4.0.4 - Dell)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
DW 1525 Driver Installation (x32 Version: 7.0 - Dell)
Elements 9 Organizer (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Elements STI Installer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Fax (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
File Type Assistant (x32 Version: 2014.1.24.0 - ) <==== ATTENTION
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (x32 Version: 32.0.1700.102 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Greeting Card Factory Deluxe 6.0 (x32 Version: 6.0.0.20 - Nova Development)
HP Customer Participation Program 14.0 (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (Version: 14.0 - HP)
HP Photosmart C309a All-In-One Driver Software 14.0 Rel. 5 (Version: 14.0 - HP)
HP Photosmart Essential 3.5 (Version: 3.5 - HP)
HP Smart Web Printing 4.60 (Version: 4.60 - HP)
HP Solution Center 14.0 (Version: 14.0 - HP)
HP Update (x32 Version: 5.005.000.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PaperLabel (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PrintOnDisc (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
hpphotosmartdisclabelplugin (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Intel(R) Control Center (x32 Version: 1.2.0.1006 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179 - Intel Corporation)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Level Quality Watcher (Version: v1.01 - Level Quality Watcher) <==== ATTENTION
Logitech Solar App 1.10 (Version: 1.10.3 - Logitech)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Memeo Instant Backup (x32 Version: 4.60.0.7876 - Memeo Inc.)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mipony Download Manager Packages (HKCU Version: - ) <==== ATTENTION
Mozilla Firefox 27.0 (x86 en-US) (x32 Version: 27.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (x32 Version: 4.20.9818.0 - Microsoft Corporation)
Neat (x32 Version: 5.1.29.304 - The Neat Company)
Neat ADF Scanner 2008 Driver (Version: 2.0.1.2 - The Neat Company)
Neat ADF Scanner Driver (Version: 2.0.2.1 - The Neat Company)
Neat Core Files (x32 Version: 5.1.29.304 - The Neat Company) Hidden
Neat Mobile Scanner (Silver) Driver (Version: 2.0.1.1 - The Neat Company)
Neat Mobile Scanner 2008 Driver (Version: 2.0.1.1 - The Neat Company)
Neat Mobile Scanner Driver (Version: 2.0.1.2 - The Neat Company)
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Norton Internet Security (x32 Version: 21.1.0.18 - Symantec Corporation)
Notepad++ (x32 Version: 6.4.5 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA Control Panel 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (Version: 14.0 - HP)
PDFCreator (x32 Version: 1.2.0 - Frank Heindörfer, Philip Chinery)
Perfect Effects 4.0.4 (x32 Version: 4.0.4 - onOne Software)
Perfect Photo Suite 8 (x32 Version: 8.1.0 - onOne Software)
PS_AIO_05_C309_Software_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5953 - Realtek Semiconductor Corp.)
ROBLOX Player for Cheryl (HKCU Version: - ROBLOX Corporation)
ROBLOX Studio 2013 for Cheryl (HKCU Version: - ROBLOX Corporation)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Seagate Dashboard (x32 Version: 1.1.0.1548 - Memeo Inc.)
Send To Neat (Version: 1.1.0.0 - The Neat Company)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype Click to Call (x32 Version: 6.11.13348 - Skype Technologies S.A.)
Skypeâ„¢ 6.6 (x32 Version: 6.6.106 - Skype Technologies S.A.)
SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090 - SmartSound Software Inc)
SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090 - SmartSound Software Inc) Hidden
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden
Spotify (HKCU Version: 0.9.1.57.ge7405149 - Spotify AB)
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32 Version: - Microsoft)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WinRAR 5.01 (32-bit) (x32 Version: 5.01.0 - win.rar GmbH)
WinZip 17.5 (Version: 17.5.10480 - WinZip Computing, S.L. )
==================== Restore Points =========================
25-01-2014 15:18:36 Scheduled Checkpoint
31-01-2014 17:05:31 Windows Modules Installer
31-01-2014 17:32:50 Installed Java 7 Update 51
31-01-2014 17:41:39 Removed Java(TM) 6 Update 20 (64-bit)
01-02-2014 10:00:32 Windows Update
02-02-2014 16:40:37 Windows Modules Installer
03-02-2014 14:13:47 Removed Adobe Community Help
03-02-2014 14:15:06 Configured Microsoft Flight Simulator X Demo
==================== Hosts content: ==========================
2009-07-13 19:34 - 2009-06-10 14:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {15381189-C3FB-4939-8F61-6DE2A4B8348E} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {17FFAE4C-6E10-4E0C-AD43-CF2FDA14156A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-11] (Google Inc.)
Task: {23EC5E49-C4A4-49AA-BB7A-A37D2182D2E6} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)
Task: {3D725E18-8C5A-4D62-976E-FA26E3A58A57} - System32\Tasks\{474E945B-3BF2-4B60-BE4B-25B5CB6C9F4D} => C:\Users\PENNY\AppData\Roaming\Spotify\spotify.exe [2013-12-10] (Spotify Ltd)
Task: {47A192BE-B04F-477D-B6F4-B9B2C52E6621} - System32\Tasks\AdobeAAMUpdater-1.0-DELL-XPS-Cheryl => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {5386B8D7-3000-4483-9EF0-4C504F9B6AAB} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {71D51E18-DBA4-48B0-A503-9ACE3CC5F81B} - System32\Tasks\{A6058B86-0C7F-497B-ADB9-F24EDAA4ECBF} => C:\Users\PENNY\AppData\Roaming\Spotify\spotify.exe [2013-12-10] (Spotify Ltd)
Task: {941F1ABE-46CC-4CBC-A1F8-AF2BB6BE4849} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-11] (Google Inc.)
Task: {9A4EA300-690E-4DC0-901C-16154ABD1C4D} - \BrowserProtect No Task File
Task: {AE14E3A4-A95E-4335-BA6F-6D62C0424AA5} - System32\Tasks\4796 => Wscript.exe C:\Users\Cheryl\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {CD009415-445F-41C8-80A9-382F70F69344} - System32\Tasks\ProgramRefresh-ATFST => C:\Program Files (x86)\File Type Assistant\tsasetup.exe [2014-02-04] ( ) <==== ATTENTION
Task: {D0A8CC8A-C649-47FD-8FD8-3B7307C17793} - \DSite No Task File
Task: {DFC380A0-1E31-4F15-A27F-024BA5280BB7} - System32\Tasks\AdobeAAMUpdater-1.0-DELL-XPS-CHRISTIAN => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {E7BE955E-A4B5-43BC-9F59-58237DFB5A24} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {FC57572E-81C9-4295-A08E-1059C9C1442C} - System32\Tasks\ProgramUpdateCheck => C:\Program Files (x86)\File Type Assistant\TSAssist.exe [2014-01-24] (Trusted Software ApS) <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-02-04 12:50 - 2014-02-04 12:50 - 03583600 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-01-31 10:20 - 2014-01-31 14:14 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Windows:nlsPreferences
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Photosmart C309a series
Description: Photosmart C309a series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/05/2014 00:39:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
Error: (02/05/2014 00:38:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.
Error: (02/04/2014 00:20:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/04/2014 00:18:21 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (02/04/2014 11:39:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
The manifest file root element must be assembly.
Error: (02/04/2014 10:19:01 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 00:38:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 10:19:01 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 08:30:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 07:05:50 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: SHLWAPI.dll, version: 6.1.7601.17514, time stamp: 0x4ce7c9ab
Exception code: 0xc0000005
Fault offset: 0x0000000000011c66
Faulting process id: 0xc30
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
System errors:
=============
Error: (02/04/2014 00:19:24 PM) (Source: Service Control Manager) (User: )
Description: The Internet Connection Sharing (ICS) service depends on the Remote Access Connection Manager service which failed to start because of the following error:
%%1068
Error: (02/04/2014 00:19:24 PM) (Source: Service Control Manager) (User: )
Description: The Remote Access Connection Manager service depends on the Telephony service which failed to start because of the following error:
%%1058
Error: (02/04/2014 00:19:25 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\ExtensionAgents.
Error: (02/04/2014 00:19:24 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\ExtensionAgents.
Error: (02/04/2014 00:19:24 PM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.
Error: (02/04/2014 10:17:41 AM) (Source: Service Control Manager) (User: )
Description: The Internet Connection Sharing (ICS) service depends on the Remote Access Connection Manager service which failed to start because of the following error:
%%1068
Error: (02/04/2014 10:17:41 AM) (Source: Service Control Manager) (User: )
Description: The Remote Access Connection Manager service depends on the Telephony service which failed to start because of the following error:
%%1058
Error: (02/04/2014 10:17:42 AM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\ExtensionAgents.
Error: (02/04/2014 10:17:41 AM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\ExtensionAgents.
Error: (02/04/2014 10:17:41 AM) (Source: SNMP) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.
Microsoft Office Sessions:
=========================
Error: (02/05/2014 00:39:16 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (02/05/2014 00:38:48 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2
Error: (02/04/2014 00:20:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/04/2014 00:18:21 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (02/04/2014 11:39:14 AM) (Source: SideBySide)(User: )
Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2
Error: (02/04/2014 10:19:01 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 00:38:36 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 10:19:01 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 08:30:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/03/2014 07:05:50 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4SHLWAPI.dll6.1.7601.175144ce7c9abc00000050000000000011c66c3001cf204f6de255a7C:\Windows\Explorer.EXEC:\Windows\system32\SHLWAPI.dll48a22b04-8cdc-11e3-9d9c-b8ac6f9e2c64
==================== Memory info ===========================
Percentage of memory in use: 27%
Total physical RAM: 8151.08 MB
Available physical RAM: 5931.98 MB
Total Pagefile: 16300.34 MB
Available Pagefile: 13157.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:830.1 GB) NTFS
Drive e: (simpleportable) (Fixed) (Total:149.05 GB) (Free:121.5 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 8A427EA7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 149 GB) (Disk ID: 5AFFA10B)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
==================== End Of Log ============================
FRST.txt:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014
Ran by Cheryl (administrator) on DELL-XPS on 05-02-2014 17:39:14
Running from C:\Users\Cheryl\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version:
www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version:
www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated.
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Dell) C:\Users\Cheryl\AppData\Local\Apps\2.0\0VGNDKTE.65Z\V4CK1M3Y.K8L\dell..tion_0f612f649c4a10af_0005.0004_3ddfe37344028d2c\DellSystemDetect.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-09] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKU\.DEFAULT\...\Policies\system: [LogonHoursAction] 2
HKU\.DEFAULT\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\.DEFAULT\...\Policies\Explorer: [NofolderOptions] 0
HKU\S-1-5-19\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-812541193-508544737-3591713203-1000\...\Run: [DellSystemDetect] - C:\Users\Cheryl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKU\S-1-5-21-812541193-508544737-3591713203-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-812541193-508544737-3591713203-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-812541193-508544737-3591713203-1000\...\Policies\Explorer: [NofolderOptions] 0
AppInit_DLLs-x32: c:\progra~2\netnuc~1\gorill~1\gphelper.dllC:\PROGRA~2\NETNUC~1\GORILL~1\GPHelper.dll => File Not Found
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
www.msn.com/HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x17CD9F95E121CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: No Name - {5BDE3F24-D7B3-40D9-BD31-D1CFF12C47B4} - No File
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Video Player - {b39b8f53-08ce-4860-9bd9-ca48b5ba8207} - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta901\ie\VideoPlayerV3beta901.dll No File
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F}
lmpassage3.external.lmco.com/dana-cached/sc/JuniperSetupClient.cabHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.2
FireFox:
========
FF ProfilePath: C:\Users\Cheryl\AppData\Roaming\Mozilla\Firefox\Profiles\tnmn8nlx.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\Cheryl\AppData\Local\Roblox\Versions\version-bac2ef28b67142d0\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-04]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-04]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-13]
FF HKLM-x32\...\Firefox\Extensions: [{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}] - C:\Users\Cheryl\AppData\Roaming\Mozilla\FireFox\{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}.xpi
FF Extension: GPComponent - C:\Users\Cheryl\AppData\Roaming\Mozilla\FireFox\{a131ab52-77f3-4bd7-acc7-e2dfdfd298f0}.xpi [2013-03-29]
FF HKLM-x32\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files (x86)\Better-Surf\ff
FF Extension: Better-Surf - C:\Program Files (x86)\Better-Surf\ff [2013-11-25]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-01-09]
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta901.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta901\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha448.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha448\ff
FF Extension: Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha448\ff [2014-01-29]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-13]
Chrome:
=======
CHR HomePage: hxxp://www.delta-search.com/?affID=119351&tt=190313_wo2&babsrc=HP_ss&mntrId=AEE6B8AC6F9E2C64
CHR Extension: (Google Docs) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-03]
CHR Extension: (Google Drive) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-03]
CHR Extension: (YouTube) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-03]
CHR Extension: (Google Search) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-03]
CHR Extension: (Norton Identity Protection) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-02-03]
CHR Extension: (Media Player) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\naaaefjdlbejbglenfklnkfdhapdfohp [2014-02-03]
CHR Extension: (Google Wallet) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-03]
CHR Extension: (Gmail) - C:\Users\Cheryl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-03]
CHR HKCU\...\Chrome\Extension: [eomicmcfdeaijoflbogmckobfdkapbpj] - C:\Users\Cheryl\AppData\Local\CRE\eomicmcfdeaijoflbogmckobfdkapbpj.crx [2013-06-09]
CHR HKCU\...\Chrome\Extension: [gahpidfnpjlikfplofgcckpplbhopgpp] - C:\Users\Cheryl\AppData\Local\CRE\gahpidfnpjlikfplofgcckpplbhopgpp.crx [2013-12-11]
CHR HKCU\...\Chrome\Extension: [oelbclnhkbhlhikfmpmbakbgeonbjjnp] - C:\Users\Cheryl\AppData\Local\CRE\oelbclnhkbhlhikfmpmbakbgeonbjjnp.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [bkneacleckilehdcoiedbhpbddbaomoo] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta901\ch\VideoPlayerV3beta901.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [eomicmcfdeaijoflbogmckobfdkapbpj] - C:\Users\Cheryl\AppData\Local\CRE\eomicmcfdeaijoflbogmckobfdkapbpj.crx [2013-06-09]
CHR HKLM-x32\...\Chrome\Extension: [gahpidfnpjlikfplofgcckpplbhopgpp] - C:\Users\Cheryl\AppData\Local\CRE\gahpidfnpjlikfplofgcckpplbhopgpp.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-14]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\Exts\Chrome.crx [2014-01-20]
CHR HKLM-x32\...\Chrome\Extension: [oelbclnhkbhlhikfmpmbakbgeonbjjnp] - C:\Users\Cheryl\AppData\Local\CRE\oelbclnhkbhlhikfmpmbakbgeonbjjnp.crx [2014-01-20]
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx [2014-01-20]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
S4 Agent; C:\Windows\VPDAgent_x64.exe [148480 2012-12-04] (Two Pilots)
S4 L4301_Solar; C:\Program Files\Logitech\SolarApp\L4301_Solar.exe [405744 2013-01-30] (Logitech, Inc.)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [45568 2009-07-13] (Microsoft Corporation)
S4 Neat Startup Service; C:\Program Files (x86)\Neat\exec\NeatStartupService.exe [6144 2012-12-07] (The Neat Company)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.1.0.18\NIS.exe [275696 2013-10-08] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-09] (NVIDIA Corporation)
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
S4 Level Quality Watcher; C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher64.exe run options=01111100000000000000000000000000 sourceguid=C3651B70-0996-460A-9E28-F8EAEAB6950F [X]
==================== Drivers (Whitelisted) ====================
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2013-12-17] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-01-08] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-01-08] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140205.002\IDSvia64.sys [521944 2014-01-20] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140205.007\ENG64.SYS [126040 2014-01-16] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140205.007\EX64.SYS [2099288 2014-01-16] (Symantec Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [10368 2006-05-23] (Padus, Inc.)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [38536 2012-12-09] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R0 SMR410; C:\Windows\System32\drivers\SMR410.SYS [96856 2014-02-04] (Symantec Corporation)
R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1501000.012\SRTSP64.SYS [858200 2013-09-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1501000.012\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1501000.012\SYMEFA64.SYS [1147480 2013-09-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-01-08] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1501000.012\SYMNETS.SYS [590936 2013-09-25] (Symantec Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-05 17:39 - 2014-02-05 17:39 - 00019676 _____ () C:\Users\Cheryl\Desktop\FRST.txt
2014-02-05 17:39 - 2014-02-05 17:39 - 00000000 ____D () C:\FRST
2014-02-05 17:36 - 2014-02-05 17:36 - 02082304 _____ (Farbar) C:\Users\Cheryl\Desktop\FRST64.exe
2014-02-04 12:50 - 2014-02-04 12:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-04 12:17 - 2014-02-04 12:41 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\NPE
2014-02-04 12:17 - 2014-02-04 12:17 - 00096856 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SMR410.SYS
2014-02-03 12:32 - 2014-02-03 12:35 - 00000000 ____D () C:\AdwCleaner
2014-02-03 12:31 - 2014-02-03 12:31 - 01166132 _____ () C:\Users\Cheryl\Downloads\adwcleaner.exe
2014-02-03 08:03 - 2014-02-04 12:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-03 06:41 - 2014-02-03 08:27 - 49940480 _____ () C:\Program Files (x86)\GUTB5CC.tmp
2014-02-03 06:41 - 2014-02-03 06:41 - 00000000 ____D () C:\Program Files (x86)\GUMB5CB.tmp
2014-02-02 18:03 - 2014-02-02 18:04 - 03093967 _____ () C:\Users\CHRISTIAN\Downloads\Mine-imator.zip
2014-02-02 17:58 - 2014-02-02 19:33 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\Mine-imator v0.6.2
2014-02-02 12:42 - 2014-02-02 12:42 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\WinRAR
2014-02-02 11:50 - 2014-02-02 11:50 - 00000000 ____D () C:\Users\Cheryl\Desktop\Old Firefox Data
2014-02-01 15:29 - 2014-02-01 15:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-02-01 15:29 - 2014-02-01 15:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-02-01 15:29 - 2012-12-28 11:48 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-02-01 15:29 - 2012-12-13 11:43 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2014-02-01 15:29 - 2009-07-13 21:54 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-01 15:29 - 2009-07-13 21:49 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-01 11:33 - 2014-02-01 11:33 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\NVIDIA Corporation
2014-01-31 23:12 - 2012-05-31 22:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2014-01-31 23:12 - 2012-05-31 22:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2014-01-31 23:12 - 2012-05-31 22:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2014-01-31 23:12 - 2012-05-31 22:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2014-01-31 23:12 - 2012-05-31 22:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2014-01-31 23:12 - 2012-05-31 22:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2014-01-31 23:12 - 2012-05-31 21:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2014-01-31 23:12 - 2012-05-31 21:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll
2014-01-31 23:12 - 2012-05-31 21:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll
2014-01-31 23:12 - 2012-05-31 21:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll
2014-01-31 23:12 - 2012-05-31 21:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll
2014-01-31 23:12 - 2012-05-31 21:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe
2014-01-31 22:34 - 2014-01-31 22:35 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\minecraft server
2014-01-31 20:22 - 2014-01-31 20:22 - 00862632 _____ (AirInstaller ) C:\Users\CHRISTIAN\Downloads\Setup (1).exe
2014-01-31 18:49 - 2014-01-31 18:50 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\World2
2014-01-31 16:48 - 2014-01-31 16:48 - 00002116 _____ () C:\Users\CHRISTIAN\Desktop\Screencast-O-Matic.lnk
2014-01-31 16:45 - 2014-01-31 16:46 - 28609640 _____ () C:\Users\Cheryl\Downloads\InstallScreencastOMatic-v1.4.exe
2014-01-31 16:38 - 2014-01-31 16:40 - 28609640 _____ () C:\Users\CHRISTIAN\Downloads\InstallScreencastOMatic-v1.4.exe
2014-01-31 16:33 - 2014-02-02 15:15 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\Screencast-O-Matic
2014-01-31 16:33 - 2014-01-31 16:33 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screencast-O-Matic
2014-01-31 16:26 - 2014-01-31 16:27 - 28609640 _____ () C:\Users\CHRISTIAN\Desktop\InstallScreencastOMatic-v1.4.exe
2014-01-31 10:37 - 2014-01-31 10:37 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-31 10:34 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-31 10:34 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-31 10:34 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-31 10:34 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-31 10:33 - 2014-01-31 10:34 - 00005765 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-31 10:07 - 2014-02-02 09:45 - 00142829 _____ () C:\Windows\iis7.log
2014-01-31 10:06 - 2014-02-02 09:41 - 00000000 ____D () C:\inetpub
2014-01-30 19:31 - 2014-01-30 19:31 - 01061258 _____ () C:\Users\CHRISTIAN\Downloads\Custom Xrun Deathvoid 1.7.2.rar
2014-01-30 19:31 - 2014-01-30 19:31 - 01061258 _____ () C:\Users\CHRISTIAN\Desktop\Custom Xrun Deathvoid 1.7.2.rar
2014-01-30 17:45 - 2014-01-30 18:54 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\Minecraft Skin Viewer
2014-01-29 16:26 - 2014-01-29 16:26 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-01-29 16:26 - 2014-01-29 16:26 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-01-24 15:56 - 2014-01-24 15:56 - 00237368 _____ (setupprocess) C:\Users\PENNY\Downloads\Setup(2).exe
2014-01-24 15:53 - 2014-01-24 15:53 - 00237368 _____ (setupprocess) C:\Users\PENNY\Downloads\Setup.exe
2014-01-24 15:53 - 2014-01-24 15:53 - 00237368 _____ (setupprocess) C:\Users\PENNY\Downloads\Setup(1).exe
2014-01-24 15:52 - 2014-01-24 15:52 - 00000000 ____D () C:\Users\PENNY\AppData\Local\NVIDIA
2014-01-20 10:42 - 2014-01-20 10:42 - 00003106 _____ () C:\Windows\System32\Tasks\{D23C3E38-7714-4CE3-9850-713E7482A243}
2014-01-19 12:21 - 2014-01-19 12:21 - 00516715 _____ () C:\Users\CHRISTIAN\Downloads\MC 1.6.4 - Smart Moving 14.5.zip
2014-01-19 12:18 - 2014-01-19 12:18 - 00182824 _____ () C:\Users\CHRISTIAN\Downloads\ModLoader.zip
2014-01-19 12:12 - 2014-01-19 12:12 - 06185688 _____ (Apowersoft ) C:\Users\CHRISTIAN\Downloads\free-screen-recorder.exe
2014-01-19 11:44 - 2014-01-19 12:28 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\Movies
2014-01-19 11:42 - 2014-01-19 12:28 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\Screenshots
2014-01-19 11:39 - 2014-01-19 11:39 - 00001406 _____ () C:\Users\CHRISTIAN\Desktop\Fraps.lnk
2014-01-19 11:34 - 2014-01-19 11:34 - 01078464 _____ (Conduit) C:\Users\CHRISTIAN\Downloads\Fraps_TSV428M93.exe
2014-01-19 11:22 - 2014-01-19 11:23 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\SpinTires
2014-01-19 10:44 - 2014-01-19 11:07 - 152369878 _____ () C:\Users\CHRISTIAN\Downloads\STBuild120713Dev.rar
2014-01-18 15:42 - 2014-01-18 15:42 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\NVIDIA Corporation
2014-01-18 15:41 - 2014-01-18 15:41 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\NVIDIA
2014-01-18 15:39 - 2014-01-18 15:39 - 00001303 _____ () C:\Users\CHRISTIAN\Desktop\BeamNG Techdemo.lnk
2014-01-18 15:38 - 2014-01-19 10:47 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BeamNG-Techdemo-0.3
2014-01-18 15:38 - 2014-01-18 15:38 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\BeamNG
2014-01-18 15:27 - 2014-01-18 15:34 - 98903976 _____ () C:\Users\CHRISTIAN\Downloads\BeamNG-Techdemo-0.3-setup.exe
2014-01-18 10:41 - 2014-01-18 10:41 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\NVIDIA
2014-01-17 17:38 - 2014-01-17 17:38 - 01804443 _____ () C:\Users\CHRISTIAN\Downloads\Modern House 4.rar
2014-01-17 17:18 - 2014-01-17 17:18 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\WinRAR
2014-01-17 17:13 - 2014-01-17 17:13 - 01769680 _____ () C:\Users\Cheryl\Downloads\wrar501{1}.exe
2014-01-17 17:10 - 2014-01-17 17:13 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-17 17:10 - 2014-01-17 17:13 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-01-17 17:10 - 2014-01-17 17:10 - 01769680 _____ () C:\Users\Cheryl\Downloads\wrar501.exe
2014-01-17 14:34 - 2014-01-17 14:34 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\NVIDIA Corporation
2014-01-17 14:01 - 2013-12-09 19:15 - 00982232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-01-17 14:01 - 2013-12-09 19:14 - 01100248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-01-17 14:00 - 2014-01-17 14:00 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\NVIDIA
2014-01-17 14:00 - 2014-01-17 14:00 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-01-17 13:57 - 2013-12-19 13:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-17 13:57 - 2013-12-19 13:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-17 13:57 - 2013-12-19 13:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-17 13:57 - 2013-12-05 01:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-01-17 13:57 - 2013-12-05 01:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-01-17 13:57 - 2013-12-05 01:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-01-16 07:02 - 2014-01-31 10:08 - 00843100 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-15 21:01 - 2014-01-15 21:01 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\Adobe
2014-01-15 07:35 - 2013-11-26 18:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 07:35 - 2013-11-26 18:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 07:35 - 2013-11-26 18:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 07:35 - 2013-11-26 18:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 07:35 - 2013-11-26 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 07:35 - 2013-11-26 18:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 07:35 - 2013-11-26 18:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 07:35 - 2013-11-26 04:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 07:35 - 2013-11-26 03:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-10 08:38 - 2014-02-03 07:08 - 00000000 ____D () C:\Program Files (x86)\VideoPlayerV3
2014-01-09 10:02 - 2014-01-09 10:02 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-01-06 11:54 - 2014-01-06 13:21 - 01682254 _____ () C:\Users\Cheryl\Desktop\Torino Lighting Package.pptx
2014-01-06 11:02 - 2014-01-06 11:11 - 00000000 ____D () C:\Users\Cheryl\Desktop\light fixtures
==================== One Month Modified Files and Folders =======
2014-02-05 17:39 - 2014-02-05 17:39 - 00019676 _____ () C:\Users\Cheryl\Desktop\FRST.txt
2014-02-05 17:39 - 2014-02-05 17:39 - 00000000 ____D () C:\FRST
2014-02-05 17:36 - 2014-02-05 17:36 - 02082304 _____ (Farbar) C:\Users\Cheryl\Desktop\FRST64.exe
2014-02-05 17:30 - 2012-12-11 05:13 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-05 17:30 - 2012-12-11 05:13 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-05 17:30 - 2012-12-08 20:41 - 01112811 _____ () C:\Windows\WindowsUpdate.log
2014-02-05 10:45 - 2013-06-05 09:43 - 00000000 ____D () C:\Program Files (x86)\File Type Assistant
2014-02-05 09:30 - 2012-12-28 11:51 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\Adobe
2014-02-05 09:30 - 2012-12-11 05:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 09:30 - 2012-12-11 05:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-04 12:58 - 2014-02-03 08:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-04 12:50 - 2014-02-04 12:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-04 12:41 - 2014-02-04 12:17 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\NPE
2014-02-04 12:26 - 2009-07-13 21:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-04 12:26 - 2009-07-13 21:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-04 12:19 - 2012-12-09 03:23 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\Deployment
2014-02-04 12:19 - 2012-12-08 21:13 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-04 12:19 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-04 12:19 - 2009-07-13 21:51 - 00042976 _____ () C:\Windows\setupact.log
2014-02-04 12:17 - 2014-02-04 12:17 - 00096856 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SMR410.SYS
2014-02-04 12:17 - 2012-12-13 09:33 - 00000000 ____D () C:\ProgramData\Norton
2014-02-03 12:35 - 2014-02-03 12:32 - 00000000 ____D () C:\AdwCleaner
2014-02-03 12:31 - 2014-02-03 12:31 - 01166132 _____ () C:\Users\Cheryl\Downloads\adwcleaner.exe
2014-02-03 10:21 - 2013-12-19 15:56 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\BeamNG
2014-02-03 10:20 - 2013-12-19 15:57 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BeamNG-Techdemo-0.3
2014-02-03 10:17 - 2010-11-20 20:47 - 00241518 _____ () C:\Windows\PFRO.log
2014-02-03 08:28 - 2009-07-13 21:45 - 00401944 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-03 08:27 - 2014-02-03 06:41 - 49940480 _____ () C:\Program Files (x86)\GUTB5CC.tmp
2014-02-03 08:05 - 2012-12-12 07:06 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\Mozilla
2014-02-03 07:23 - 2012-12-08 20:47 - 00112632 _____ () C:\Users\Cheryl\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-03 07:18 - 2012-12-08 20:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-03 07:17 - 2013-12-19 17:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-03 07:14 - 2012-12-28 11:42 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-02-03 07:08 - 2014-01-10 08:38 - 00000000 ____D () C:\Program Files (x86)\VideoPlayerV3
2014-02-03 07:05 - 2012-12-20 11:39 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\CrashDumps
2014-02-03 06:47 - 2012-12-08 21:46 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\Google
2014-02-03 06:47 - 2012-12-08 21:46 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-03 06:41 - 2014-02-03 06:41 - 00000000 ____D () C:\Program Files (x86)\GUMB5CB.tmp
2014-02-02 19:33 - 2014-02-02 17:58 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\Mine-imator v0.6.2
2014-02-02 18:06 - 2013-07-05 17:04 - 00864840 __RSH () C:\Users\CHRISTIAN\ntuser.pol
2014-02-02 18:06 - 2013-07-05 17:04 - 00000000 ____D () C:\Users\CHRISTIAN
2014-02-02 18:06 - 2013-07-05 16:38 - 00000632 __RSH () C:\Users\Cheryl\ntuser.pol
2014-02-02 18:06 - 2012-12-08 20:41 - 00000000 ____D () C:\Users\Cheryl
2014-02-02 18:04 - 2014-02-02 18:03 - 03093967 _____ () C:\Users\CHRISTIAN\Downloads\Mine-imator.zip
2014-02-02 15:46 - 2013-07-06 17:16 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\.minecraft
2014-02-02 15:19 - 2013-09-15 18:11 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\CrashDumps
2014-02-02 15:15 - 2014-01-31 16:33 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\Screencast-O-Matic
2014-02-02 12:42 - 2014-02-02 12:42 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\WinRAR
2014-02-02 12:28 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\rescache
2014-02-02 11:50 - 2014-02-02 11:50 - 00000000 ____D () C:\Users\Cheryl\Desktop\Old Firefox Data
2014-02-02 09:45 - 2014-01-31 10:07 - 00142829 _____ () C:\Windows\iis7.log
2014-02-02 09:45 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\Registration
2014-02-02 09:44 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-02-02 09:42 - 2009-07-13 22:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-02 09:41 - 2014-01-31 10:06 - 00000000 ____D () C:\inetpub
2014-02-02 09:41 - 2010-11-21 00:16 - 00000000 ____D () C:\Windows\ShellNew
2014-02-02 09:41 - 2010-11-21 00:06 - 00000000 ____D () C:\Windows\system32\0409
2014-02-02 09:41 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv
2014-02-02 09:41 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-01 15:29 - 2014-02-01 15:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-02-01 15:29 - 2014-02-01 15:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-02-01 11:33 - 2014-02-01 11:33 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\NVIDIA Corporation
2014-02-01 11:32 - 2013-07-05 17:22 - 00000632 __RSH () C:\Users\ASPEN\ntuser.pol
2014-02-01 11:32 - 2013-07-05 17:22 - 00000000 ____D () C:\Users\ASPEN
2014-01-31 22:35 - 2014-01-31 22:34 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\minecraft server
2014-01-31 20:22 - 2014-01-31 20:22 - 00862632 _____ (AirInstaller ) C:\Users\CHRISTIAN\Downloads\Setup (1).exe
2014-01-31 18:50 - 2014-01-31 18:49 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\World2
2014-01-31 16:48 - 2014-01-31 16:48 - 00002116 _____ () C:\Users\CHRISTIAN\Desktop\Screencast-O-Matic.lnk
2014-01-31 16:46 - 2014-01-31 16:45 - 28609640 _____ () C:\Users\Cheryl\Downloads\InstallScreencastOMatic-v1.4.exe
2014-01-31 16:40 - 2014-01-31 16:38 - 28609640 _____ () C:\Users\CHRISTIAN\Downloads\InstallScreencastOMatic-v1.4.exe
2014-01-31 16:33 - 2014-01-31 16:33 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screencast-O-Matic
2014-01-31 16:27 - 2014-01-31 16:26 - 28609640 _____ () C:\Users\CHRISTIAN\Desktop\InstallScreencastOMatic-v1.4.exe
2014-01-31 10:37 - 2014-01-31 10:37 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-31 10:34 - 2014-01-31 10:33 - 00005765 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-31 10:34 - 2013-07-10 04:34 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-31 10:08 - 2014-01-16 07:02 - 00843100 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-31 10:08 - 2009-07-13 22:13 - 00886702 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-31 10:06 - 2009-07-13 20:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-01-31 09:38 - 2013-03-29 11:07 - 00000000 ____D () C:\Program Files (x86)\OpenDownloaderManager
2014-01-31 09:38 - 2012-12-13 11:06 - 00000000 ____D () C:\Program Files (x86)\HP
2014-01-31 09:38 - 2012-12-13 10:25 - 00003080 _____ () C:\ProgramData\hpzinstall.log
2014-01-31 09:35 - 2013-09-17 07:28 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\Juniper Networks
2014-01-30 19:31 - 2014-01-30 19:31 - 01061258 _____ () C:\Users\CHRISTIAN\Downloads\Custom Xrun Deathvoid 1.7.2.rar
2014-01-30 19:31 - 2014-01-30 19:31 - 01061258 _____ () C:\Users\CHRISTIAN\Desktop\Custom Xrun Deathvoid 1.7.2.rar
2014-01-30 18:54 - 2014-01-30 17:45 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\Minecraft Skin Viewer
2014-01-29 16:26 - 2014-01-29 16:26 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-01-29 16:26 - 2014-01-29 16:26 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-01-29 16:26 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-01-24 15:57 - 2013-07-25 17:28 - 00000000 ____D () C:\Users\PENNY\AppData\Roaming\Spotify
2014-01-24 15:56 - 2014-01-24 15:56 - 00237368 _____ (setupprocess) C:\Users\PENNY\Downloads\Setup(2).exe
2014-01-24 15:53 - 2014-01-24 15:53 - 00237368 _____ (setupprocess) C:\Users\PENNY\Downloads\Setup.exe
2014-01-24 15:53 - 2014-01-24 15:53 - 00237368 _____ (setupprocess) C:\Users\PENNY\Downloads\Setup(1).exe
2014-01-24 15:52 - 2014-01-24 15:52 - 00000000 ____D () C:\Users\PENNY\AppData\Local\NVIDIA
2014-01-24 15:52 - 2013-07-25 17:29 - 00000000 ____D () C:\Users\PENNY\AppData\Local\Spotify
2014-01-24 15:52 - 2013-07-05 16:52 - 00000632 __RSH () C:\Users\PENNY\ntuser.pol
2014-01-24 15:52 - 2013-07-05 16:52 - 00000000 ____D () C:\Users\PENNY
2014-01-20 10:42 - 2014-01-20 10:42 - 00003106 _____ () C:\Windows\System32\Tasks\{D23C3E38-7714-4CE3-9850-713E7482A243}
2014-01-19 16:50 - 2009-07-13 22:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-01-19 12:28 - 2014-01-19 11:44 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\Movies
2014-01-19 12:28 - 2014-01-19 11:42 - 00000000 ____D () C:\Users\CHRISTIAN\Desktop\Screenshots
2014-01-19 12:21 - 2014-01-19 12:21 - 00516715 _____ () C:\Users\CHRISTIAN\Downloads\MC 1.6.4 - Smart Moving 14.5.zip
2014-01-19 12:18 - 2014-01-19 12:18 - 00182824 _____ () C:\Users\CHRISTIAN\Downloads\ModLoader.zip
2014-01-19 12:12 - 2014-01-19 12:12 - 06185688 _____ (Apowersoft ) C:\Users\CHRISTIAN\Downloads\free-screen-recorder.exe
2014-01-19 11:39 - 2014-01-19 11:39 - 00001406 _____ () C:\Users\CHRISTIAN\Desktop\Fraps.lnk
2014-01-19 11:34 - 2014-01-19 11:34 - 01078464 _____ (Conduit) C:\Users\CHRISTIAN\Downloads\Fraps_TSV428M93.exe
2014-01-19 11:23 - 2014-01-19 11:22 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\SpinTires
2014-01-19 11:07 - 2014-01-19 10:44 - 152369878 _____ () C:\Users\CHRISTIAN\Downloads\STBuild120713Dev.rar
2014-01-19 10:47 - 2014-01-18 15:38 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BeamNG-Techdemo-0.3
2014-01-18 15:42 - 2014-01-18 15:42 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\NVIDIA Corporation
2014-01-18 15:41 - 2014-01-18 15:41 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\NVIDIA
2014-01-18 15:39 - 2014-01-18 15:39 - 00001303 _____ () C:\Users\CHRISTIAN\Desktop\BeamNG Techdemo.lnk
2014-01-18 15:38 - 2014-01-18 15:38 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\BeamNG
2014-01-18 15:34 - 2014-01-18 15:27 - 98903976 _____ () C:\Users\CHRISTIAN\Downloads\BeamNG-Techdemo-0.3-setup.exe
2014-01-18 10:41 - 2014-01-18 10:41 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\NVIDIA
2014-01-17 17:38 - 2014-01-17 17:38 - 01804443 _____ () C:\Users\CHRISTIAN\Downloads\Modern House 4.rar
2014-01-17 17:18 - 2014-01-17 17:18 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Roaming\WinRAR
2014-01-17 17:13 - 2014-01-17 17:13 - 01769680 _____ () C:\Users\Cheryl\Downloads\wrar501{1}.exe
2014-01-17 17:13 - 2014-01-17 17:10 - 00000000 ____D () C:\Users\Cheryl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-17 17:13 - 2014-01-17 17:10 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-01-17 17:10 - 2014-01-17 17:10 - 01769680 _____ () C:\Users\Cheryl\Downloads\wrar501.exe
2014-01-17 14:34 - 2014-01-17 14:34 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\NVIDIA Corporation
2014-01-17 14:34 - 2012-12-08 21:13 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-01-17 14:01 - 2012-12-08 21:13 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-01-17 14:01 - 2012-12-08 21:13 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-01-17 14:00 - 2014-01-17 14:00 - 00000000 ____D () C:\Users\Cheryl\AppData\Local\NVIDIA
2014-01-17 14:00 - 2014-01-17 14:00 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-01-16 03:03 - 2013-08-08 02:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-16 03:01 - 2012-12-08 21:10 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 21:01 - 2014-01-15 21:01 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\Adobe
2014-01-15 21:01 - 2013-07-05 17:22 - 00000000 ____D () C:\Users\ASPEN\AppData\Roaming\Adobe
2014-01-15 20:27 - 2013-07-05 17:23 - 00000000 ____D () C:\Users\ASPEN\AppData\Local\Google
2014-01-15 20:26 - 2013-07-05 17:22 - 00001413 _____ () C:\Users\ASPEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-15 20:25 - 2013-07-08 17:53 - 00000000 ____D () C:\Users\CHRISTIAN\AppData\Local\Google
2014-01-09 10:02 - 2014-01-09 10:02 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-01-09 10:01 - 2012-12-13 09:39 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-01-09 10:01 - 2012-12-13 09:38 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-01-08 15:34 - 2012-12-13 09:39 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-01-08 15:34 - 2012-12-13 09:39 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-01-08 15:33 - 2012-12-13 09:38 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-01-07 09:02 - 2012-12-13 10:06 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-06 13:21 - 2014-01-06 11:54 - 01682254 _____ () C:\Users\Cheryl\Desktop\Torino Lighting Package.pptx
2014-01-06 11:11 - 2014-01-06 11:02 - 00000000 ____D () C:\Users\Cheryl\Desktop\light fixtures
Some content of TEMP:
====================
C:\Users\Cheryl\AppData\Local\Temp\1389167153_the_wedownload_manager1.exe
C:\Users\Cheryl\AppData\Local\Temp\APNStub.exe
C:\Users\Cheryl\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Cheryl\AppData\Local\Temp\ICReinstall_DownloadManagerSetup(1).exe
C:\Users\Cheryl\AppData\Local\Temp\ICReinstall_Shop for HP SuppliesUpdateSetup.exe
C:\Users\Cheryl\AppData\Local\Temp\ICSharpCode.SharpZipLib.dll
C:\Users\Cheryl\AppData\Local\Temp\IeSearchProvider.exe
C:\Users\Cheryl\AppData\Local\Temp\IeSearchProvider3776171342420909758.exe
C:\Users\Cheryl\AppData\Local\Temp\install_helper.exe
C:\Users\Cheryl\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\Cheryl\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Cheryl\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Cheryl\AppData\Local\Temp\jreInstall.exe
C:\Users\Cheryl\AppData\Local\Temp\nsa3153.exe
C:\Users\Cheryl\AppData\Local\Temp\nsb4FDC.exe
C:\Users\Cheryl\AppData\Local\Temp\nsb6E52.exe
C:\Users\Cheryl\AppData\Local\Temp\nsc380D.exe
C:\Users\Cheryl\AppData\Local\Temp\nsc39E2.exe
C:\Users\Cheryl\AppData\Local\Temp\nsd9309.exe
C:\Users\Cheryl\AppData\Local\Temp\nsdA76.exe
C:\Users\Cheryl\AppData\Local\Temp\nseDF00.exe
C:\Users\Cheryl\AppData\Local\Temp\nsf1581.exe
C:\Users\Cheryl\AppData\Local\Temp\nsf80E9.exe
C:\Users\Cheryl\AppData\Local\Temp\nsfCB15.exe
C:\Users\Cheryl\AppData\Local\Temp\nsi86A7.exe
C:\Users\Cheryl\AppData\Local\Temp\nsjAC8B.exe
C:\Users\Cheryl\AppData\Local\Temp\nsjD868.exe
C:\Users\Cheryl\AppData\Local\Temp\nsk3C4F.exe
C:\Users\Cheryl\AppData\Local\Temp\nsk49DF.exe
C:\Users\Cheryl\AppData\Local\Temp\nsk68CE.exe
C:\Users\Cheryl\AppData\Local\Temp\nskB237.exe
C:\Users\Cheryl\AppData\Local\Temp\nskDFF.exe
C:\Users\Cheryl\AppData\Local\Temp\nso186E.exe
C:\Users\Cheryl\AppData\Local\Temp\nsp3A3B.exe
C:\Users\Cheryl\AppData\Local\Temp\nsp5067.exe
C:\Users\Cheryl\AppData\Local\Temp\nsp784E.exe
C:\Users\Cheryl\AppData\Local\Temp\nsp7D62.exe
C:\Users\Cheryl\AppData\Local\Temp\nspBC19.exe
C:\Users\Cheryl\AppData\Local\Temp\nspC721.exe
C:\Users\Cheryl\AppData\Local\Temp\nsr4B0B.exe
C:\Users\Cheryl\AppData\Local\Temp\nsr551C.exe
C:\Users\Cheryl\AppData\Local\Temp\nst6A8.exe
C:\Users\Cheryl\AppData\Local\Temp\nstBC86.exe
C:\Users\Cheryl\AppData\Local\Temp\nsu1012.exe
C:\Users\Cheryl\AppData\Local\Temp\nsu1E8B.exe
C:\Users\Cheryl\AppData\Local\Temp\nsu262C.exe
C:\Users\Cheryl\AppData\Local\Temp\nsu739.exe
C:\Users\Cheryl\AppData\Local\Temp\nsv425B.exe
C:\Users\Cheryl\AppData\Local\Temp\nsv5EAE.exe
C:\Users\Cheryl\AppData\Local\Temp\nsw527C.exe
C:\Users\Cheryl\AppData\Local\Temp\nsx3619.exe
C:\Users\Cheryl\AppData\Local\Temp\nsy9A7C.exe
C:\Users\Cheryl\AppData\Local\Temp\nsyA3C1.exe
C:\Users\Cheryl\AppData\Local\Temp\nsyC3AA.exe
C:\Users\Cheryl\AppData\Local\Temp\nsyDCC.exe
C:\Users\Cheryl\AppData\Local\Temp\nsz6EA0.exe
C:\Users\Cheryl\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Cheryl\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Cheryl\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Cheryl\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Cheryl\AppData\Local\Temp\nvStInst.exe
C:\Users\Cheryl\AppData\Local\Temp\oi_{374DDCED-375C-493B-A1CB-9369A47D78C9}.exe
C:\Users\Cheryl\AppData\Local\Temp\oi_{DEC6D6D2-7BB1-4BE2-96F3-C21421AC2296}.exe
C:\Users\Cheryl\AppData\Local\Temp\ose00000.exe
C:\Users\Cheryl\AppData\Local\Temp\ose00002.exe
C:\Users\Cheryl\AppData\Local\Temp\Quarantine.exe
C:\Users\Cheryl\AppData\Local\Temp\ScorpionSaverNew.exe
C:\Users\Cheryl\AppData\Local\Temp\SetACL.exe
C:\Users\Cheryl\AppData\Local\Temp\Setup.exe
C:\Users\Cheryl\AppData\Local\Temp\Shop for HP SuppliesUpdateSetup.exe
C:\Users\Cheryl\AppData\Local\Temp\SpeedTestSetup.exe
C:\Users\Cheryl\AppData\Local\Temp\SpOrder.dll
C:\Users\Cheryl\AppData\Local\Temp\SPStub.exe
C:\Users\Cheryl\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\Cheryl\AppData\Local\Temp\tbapp0.dll
C:\Users\Cheryl\AppData\Local\Temp\tbappb.dll
C:\Users\Cheryl\AppData\Local\Temp\tbWhit.dll
C:\Users\Cheryl\AppData\Local\Temp\ToolbarHelper.exe
C:\Users\Cheryl\AppData\Local\Temp\uninst1.exe
C:\Users\Cheryl\AppData\Local\Temp\Updater.exe
C:\Users\Cheryl\AppData\Local\Temp\updater_uninstall.exe
C:\Users\Cheryl\AppData\Local\Temp\UpdUninstall.exe
C:\Users\Cheryl\AppData\Local\Temp\wget.exe
C:\Users\Cheryl\AppData\Local\Temp\xmlUpdater.exe
C:\Users\CHRISTIAN\AppData\Local\Temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-29 11:08
==================== End Of Log ============================