Resolved Having problems with corrupted Internet Explorer 11

Hi Evan,

Here is the MTB test. There was no option to run it as administrator, so I just ran it anyway.

MiniToolBox by Farbar Version: 07-02-2016 01
Ran by Bert Bell (administrator) on 22-02-2016 at 18:31:15
Running from "C:\Users\Bert Bell\Desktop "
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings ": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings ": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
========================= IP Configuration: ================================

Intel(R) 82579V Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : BertBell-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Intel(R) 82579V Gigabit Network Connection
Physical Address. . . . . . . . . : 30-85-A9-3C-A0-ED
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a475:a379:cc0c:c453%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.99(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, February 22, 2016 5:15:49 PM
Lease Expires . . . . . . . . . . : Thursday, February 25, 2016 6:15:51 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 238060969
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-28-FC-BE-30-85-A9-3C-A0-ED
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: mynetwork
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:4009:808::200e
184.150.153.187
184.150.153.172
184.150.153.158
184.150.153.163
184.150.153.178
184.150.153.152
184.150.153.157
184.150.153.148
184.150.153.162
184.150.153.182
184.150.153.177
184.150.153.173
184.150.153.183
184.150.153.168
184.150.153.153
184.150.153.167


Pinging google.com [184.150.153.167] with 32 bytes of data:
Reply from 184.150.153.167: bytes=32 time=5ms TTL=56
Reply from 184.150.153.167: bytes=32 time=5ms TTL=56

Ping statistics for 184.150.153.167:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 5ms, Maximum = 5ms, Average = 5ms
Server: mynetwork
Address: 192.168.2.1

Name: yahoo.com
Addresses: 2001:4998:58:c02::a9
2001:4998:44:204::a7
2001:4998:c:a06::2:4008
98.138.253.109
206.190.36.45
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=36ms TTL=48
Reply from 98.139.183.24: bytes=32 time=36ms TTL=48

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 36ms, Maximum = 36ms, Average = 36ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...30 85 a9 3c a0 ed ......Intel(R) 82579V Gigabit Network Connection
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.99 10
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.99 266
192.168.2.99 255.255.255.255 On-link 192.168.2.99 266
192.168.2.255 255.255.255.255 On-link 192.168.2.99 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.99 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.99 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 266 fe80::/64 On-link
11 266 fe80::a475:a379:cc0c:c453/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/18/2016 05:11:58 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17514, time stamp: 0x4ce7a144
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000000007fe
Faulting process id: 0xfcc
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog


Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.


Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))


System errors:
=============
Error: (02/19/2016 08:02:27 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/19/2016 05:16:15 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/19/2016 01:12:11 AM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/18/2016 08:12:25 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/18/2016 05:24:29 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/18/2016 05:14:44 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/18/2016 05:12:46 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/18/2016 04:28:43 PM) (Source: DCOM) (User: )
Description: {4DD7500D-4ACC-4833-AB1D-887C59199DC5}

Error: (02/18/2016 04:26:28 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1053

Error: (02/18/2016 04:26:28 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.


Microsoft Office Sessions:
=========================
Error: (02/18/2016 05:11:58 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175144ce7a144unknown0.0.0.000000000c000000500000000000007fefcc01d16a8b4b86c324C:\Windows\Explorer.EXEunknown3e43e2b2-d684-11e5-bf9d-3085a93ca0ed

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (02/18/2016 04:26:25 PM) (Source: Windows Search Service)(User: )
Description:
Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))


CodeIntegrity Errors:
===================================
Date: 2015-07-28 01:38:00.777
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-07-10 16:30:15.815
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-10 16:30:15.815
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-10 16:30:15.799
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-10 16:30:15.784
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:51:26.830
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-07-09 21:51:26.798
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-07-09 21:51:26.783
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-07-09 21:45:05.889
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\winsxs\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_b5f89713e1e7495f\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-07-09 21:45:05.873
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\winsxs\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_b5f89713e1e7495f\appidapi.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

3D Live Snooker (HKLM-x32\...\3D Live Snooker_is1) (Version: - Etiumsoft, Inc.)
Acronis True Image 2015 (HKLM-x32\...\{35CFA5F4-EE2D-4B13-AAED-BC643B6874B5}) (Version: 18.0.6613 - Acronis) Hidden
Acronis True Image 2015 (HKLM-x32\...\{35CFA5F4-EE2D-4B13-AAED-BC643B6874B5}Visible) (Version: 18.0.6613 - Acronis)
Acronis Universal Boot Media Builder (HKLM-x32\...\{8FAB072E-6028-4BCD-A6CD-D179E4860073}) (Version: 11.5.38938 - Acronis)
Acronis Universal Restore Bootable Media Builder (HKLM-x32\...\{9BC95F3D-3247-4738-A0B6-F949B409E073}) (Version: 11.5.39003 - Acronis)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.14 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.2.0.129 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Photoshop CS5.1 (HKLM-x32\...\{9158FF30-78D7-40EF-B83E-451AC5334640}) (Version: 12.1 - Adobe Systems Incorporated)
Advanced Fix 2015 version 2.1.6.80 (HKLM-x32\...\{0094D07C-1FFB-4450-8D10-AD7E05A318DF}_is1) (Version: 2.1.6.80 - Advanced Fix, Inc.)
AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.3.0 - Asmedia Technology)
AVG (HKLM\...\{433577CF-7900-4559-9693-FA52A8487DBE}) (Version: 16.41.7442 - AVG Technologies) Hidden
AVG 2016 (HKLM\...\{D181BF91-057A-4889-BF0B-812D1BC2410C}) (Version: 16.0.4537 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.41.7442 - AVG Technologies)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
CyberLink DVD Menu Template Pack (HKLM-x32\...\{0C8EBB00-4909-459C-8347-B2068B7F0319}) (Version: 2.0 - CyberLink Corp.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2330 - CyberLink Corp.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.1126 - CyberLink Corp.)
CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
CyberLink PowerDVD Copy (HKLM-x32\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1120a - CyberLink Corp.)
CyberLink WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1126 - CyberLink Corp.)
FMW 1 (HKLM\...\{1F610B48-81E7-4A33-AFC9-1D7602C80732}) (Version: 1.52.1 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.12.256 - SurfRight B.V.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Network Connections 17.0.200.2 (HKLM\...\PROSetDX) (Version: 17.0.200.2 - Intel)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 en-US)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6699 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
Sound Blaster Audigy Fx (HKLM-x32\...\{77CE1865-F3B9-4B6D-A558-28674AE7787E}) (Version: 1.00.06 - Creative Technology Limited)
Sound Blaster Audigy Fx Extras (HKLM-x32\...\{52272D09-08E0-4A57-BC14-BC09F5D7AE26}) (Version: 1.0 - Creative Technology Limited)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1194 - SUPERAntiSpyware.com)
TreeSize Free V3.4.5 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.4.5 - JAM Software)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VueScan x64 (HKLM\...\VueScan x64) (Version: - )
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies)
Wireless AC1200 Dual Band USB Adapter (HKLM-x32\...\{5F1C0C6E-0E47-4D60-8971-6EF9FC439B8B}) (Version: 1 - D-Link)
WOT for Internet Explorer (HKLM\...\{373B90E1-A28C-434C-92B6-7281AFA6115A}) (Version: 15.6.9.0 - WOT Services Oy)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 16%
Total physical RAM: 16333.55 MB
Available physical RAM: 13707.32 MB
Total Virtual: 32664.76 MB
Available Virtual: 29791.49 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:223.47 GB) (Free:163.24 GB) NTFS
4 Drive g: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
5 Drive h: () (Fixed) (Total:931.41 GB) (Free:814.55 GB) NTFS
6 Drive i: (My Passport) (Fixed) (Total:1862.98 GB) (Free:1322.67 GB) NTFS

========================= Users: ========================================

User accounts for \\BERTBELL-PC

Administrator Bert Bell Guest


**** End of log ****

 

Hi Evan,

AdwCleaner found no malicious programs on my computer.

 

Hi again, EVan:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.3 (02.09.2016)
Operating System: Windows 7 Home Premium x64
Ran by Bert Bell (Administrator) on Mon 02/22/2016 at 18:41:19.10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 32

Failed to delete: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D04C2GAM (Temporary Internet Files Folder)
Failed to delete: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TLKCVYJD (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3E2YUJU0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3HBGP37D (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4TI1QKUL (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5FBVBYRR (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6G64PCRH (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8LQHUDCF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E41KG5OO (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JEIB89HA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6DV5YI3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LQK9ZF6J (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MFXHPD3V (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MUKAYMNR (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T7NVIQHP (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPBN0F1L (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3E2YUJU0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3HBGP37D (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4TI1QKUL (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5FBVBYRR (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6G64PCRH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8LQHUDCF (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D04C2GAM (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E41KG5OO (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JEIB89HA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6DV5YI3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LQK9ZF6J (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MFXHPD3V (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MUKAYMNR (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T7NVIQHP (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TLKCVYJD (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TPBN0F1L (Temporary Internet Files Folder)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 02/22/2016 at 18:42:51.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

I'm having trouble opening Adware Removal Tool. When I click on it in My Downloads, a message opens that says-

Choose the program you want to use to open this file. I tried Word Pad and Note Pad, but the results were a garble of corrupted file information.

I'll wait until I hear from you.

 

I just tried again with Adware Removal Tool and noticed in My Downloads that it says, This file could not be downloaded.

 

I rebooted and was able to download Adware Removal Tool.

Results:
Deleted ->> File ->> C:\Users\Bert Bell\Desktop\Desktop Icons5\WebsSearches.com Browser Hijacker Removal Guide.URL
Deleted ->> Folder ->> C:\Program files (x86)\NCH Software
Deleted ->> Folder ->> C:\Programdata\NCH Software
Deleted ->> Folder ->> C:\Users\All Users\NCH Software
Deleted ->> Folder ->> C:\Users\Bert Bell\AppData\Roaming\NCH Software
Deleted ->> Registry Key ->> HKEY_CURRENT_USER\SOFTWARE\NCH Software
Deleted ->> Registry Key ->> HKEY_LOCAL_MACHINE\SOFTWARE\NCH Software

 

I have completed the Adware Removal Tool process by resetting Internet Explorer.

I'll continue the process after dinner.

 

~ ZHPCleaner v2016.2.22.34 by Nicolas Coolman (2016/02/22)
~ Run by Bert Bell (Administrator) (22/02/2016 19:54:23)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Bert Bell\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Bert Bell\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)


---\\ Services (0)
~ No malicious or unnecessary items found.


---\\ Browser internet (0)
~ No malicious or unnecessary items found.


---\\ Hosts file (1)
~ The hosts file is legitimate (7)


---\\ Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\ Explorer ( File, Folder) (0)
~ No malicious or unnecessary items found.


---\\ Registry ( Key, Value, Data) (4)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\CTRice.CADITHXDialogueAdvantage [CADITHXDialogueAdvantage Class] =>PUP.Optional.MediaAdVantage
DELETED key*: [X64] HKLM\SOFTWARE\Classes\CTRice.CADITHXDialogueAdvantage.1 [CADITHXDialogueAdvantage Class] =>PUP.Optional.MediaAdVantage
DELETED key*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 [] =>.Superfluous.ByteTechnologies
DELETED key*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS [] =>.Superfluous.ByteTechnologies


---\\ Summary of the elements found (2)
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.MediaAdVantage
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.ByteTechnologies


---\\ Other deletions. (17)
~ Registry Keys Tracing deleted (17)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)


---\\ Statistics
~ Items scanned : 1274
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 4


~ End of clean in 00h00mn16s
===================
ZHPCleaner-[R]-22022016-19_54_39.txt
ZHPCleaner--22022016-19_52_14.txt

 

HitmanPro found no threats.

 

Zoek Part 1.

Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Bert Bell on Mon 02/22/2016 at 20:03:35.75.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Bert Bell\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2/22/2016 8:09:47 PM Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Shareaza deleted successfully
C:\PROGRA~2\Sophos deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\CyberLink deleted successfully
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\Users\Bert Bell\AppData\Roaming\AVG8 deleted successfully
C:\Users\Bert Bell\AppData\Roaming\CyberLink deleted successfully
C:\Users\Bert Bell\AppData\Local\Cyberlink deleted successfully
C:\Users\Bert Bell\AppData\Local\Power2Go deleted successfully
C:\Users\Bert Bell\AppData\Local\Secunia PSI deleted successfully
C:\Users\Bert Bell\AppData\Local\Shareaza deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Installed Programs ======================

3D Live Snooker
Acronis True Image 2015
Acronis Universal Boot Media Builder
Acronis Universal Restore Bootable Media Builder
Adobe Acrobat XI Pro
Adobe AIR
Adobe Community Help
Adobe Creative Cloud
Adobe Flash Player 20 ActiveX
Adobe Photoshop CS5.1
Adobe Refresh Manager
Advanced Fix 2015 version 2.1.6.80
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Media Foundation Decoders
Apple Application Support (32-bit)
Apple Application Support (64-bit)
Apple Mobile Device Support
Apple Software Update
Asmedia ASM104x USB 3.0 Host Controller Driver
AVG
AVG 2016
AVG Protection
Bonjour
Catalyst Control Center - Branding
Catalyst Control Center
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Creative System Information
CyberLink DVD Menu Template Pack
CyberLink LabelPrint
CyberLink Media Suite
CyberLink PhotoNow
CyberLink PowerDVD Copy
CyberLink WaveEditor
FMW 1
Google Chrome
Google Update Helper
HitmanPro 3.7
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Network Connections 17.0.200.2
Intel(R) Rapid Storage Technology
Intel(R) USB 3.0 eXtensible Host Controller Driver
Intelr Trusted Connect Service Client
iTunes
Java 8 Update 74 (64-bit)
Java Auto Updater
Malwarebytes Anti-Malware version 2.2.0.1024

 

Zoek Part 2.
Microsoft Office File Validation Add-In
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Microsoft_VC80_ATL_x86
Microsoft_VC80_ATL_x86_x64
Microsoft_VC80_CRT_x86
Microsoft_VC80_CRT_x86_x64
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFC_x86_x64
Microsoft_VC80_MFCLOC_x86
Microsoft_VC80_MFCLOC_x86_x64
Microsoft_VC90_ATL_x86
Microsoft_VC90_ATL_x86_x64
Microsoft_VC90_CRT_x86
Microsoft_VC90_CRT_x86_x64
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFC_x86_x64
Microsoft_VC90_MFCLOC_x86
Microsoft_VC90_MFCLOC_x86_x64
Mozilla Firefox 44.0.2 (x86 en-US)
Mozilla Maintenance Service
PDF Settings CS5
Qualcomm Atheros WiFi Driver Installation
QuickTime 7
Realtek High Definition Audio Driver
Renesas Electronics USB 3.0 Host Controller Driver
Revo Uninstaller 1.95
Secunia PSI (3.0.0.10004)
SES Driver
Sound Blaster Audigy Fx
Sound Blaster Audigy Fx Extras
SUPERAntiSpyware
TreeSize Free V3.4.5
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
VLC media player
VueScan x64
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0)
Wireless AC1200 Dual Band USB Adapter
WOT for Internet Explorer

==== Running Processes ======================

C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files (x86)\AVG\Av\avgfws.exe
C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Windows\runSW.exe
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Program Files (x86)\D-Link\DWA-182\WlanWpsSvc.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\D-Link\DWA-182\wirelesscm.exe
C:\Program Files (x86)\AVG\Av\avgui.exe
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SwUSB.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Secunia\PSI\sua.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Users\Bert Bell\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\BERTBE~1\AppData\Roaming\Mozilla\Firefox\Profiles\ppo6sy58.default

user.js not found
---- Lines yahoo removed from prefs.js ----
user_pref( "browser.search.defaultenginename ", "Search Provided by Yahoo ");
user_pref( "browser.search.selectedEngine ", "Search Provided by Yahoo ");
---- FireFox user.js and prefs.js backups ----

prefs_20160222_0817_.backup

==== Batch Command(s) Run By Tool======================

Reseting Global, OK!
Reseting Interface, OK!
Restart the computer to complete this action.


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Shareaza not found
C:\Users\Bert Bell\AppData\Local\Shareaza not found
C:\PROGRA~2\Sophos not found
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) not found
C:\PROGRA~3\Package Cache deleted
C:\Users\Bert Bell\AppData\Local\{6F7B5927-4BD3-359F-264B-10770223ECEF} deleted
C:\Users\BERTBE~1\AppData\Roaming\Mozilla\Firefox\Profiles\ppo6sy58.default\Yahoo Inc deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 16334 MB
CPU Info: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
CPU Speed: 3472.2 MHz
Sound Card: Speakers (Sound Blaster Audigy |
Realtek Digital Output (Realtek |
Realtek Digital Output(Optical) |
Display Adapters: ATI Radeon HD 4770 | ATI Radeon HD 4770 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Intel(R) 82579V Gigabit Network Connection
CD / DVD Drives: 2x (D: | E: | ) D: ATAPI iHAS124 C | E: HL-DT-STBD-RE WH14NS40
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C: 223.5GB | G: 100.0MB | H: 931.4GB | I: 1863.0GB
Hard Disks - Free: C: 163.0GB | G: 61.8MB | H: 814.2GB | I: 1322.7GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 06/05/12 | ALASKA - 1072009
Time Zone: SA Western Standard Time
Motherboard *: ASUSTeK COMPUTER INC. P8Z77-V PRO
Country: United States
Language: ENU

==== System Specs (Software) ======================

AV: AVG Internet Security *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security *Enabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368}
Default Browser: Firefox 44.0.2
Internet Explorer Version: 11.0.9600.18204
Mozilla Firefox version: 44.0.2 (x86 en-US)
Google Chrome version: 48.0.2564.116
Sun Java version: 1.8.0_74 (32-bit)
Sun Java version: 1.8.0_74 (64-bit)

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\BERTBE~1\AppData\Local\Temp ====
2016-02-22 22:39:31 E0DC8C6BBC787B972A9A468648DBFD85 1008128 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\libiconv2.dll
2016-02-22 22:39:31 D202BAA425176287017FFE1FB5D1B77C 103424 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\libintl3.dll
2016-02-22 22:39:31 BD59D8A4565D1D1AB3C7CF81948C8DBE 86840 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\CreateRestorePoint.exe
2016-02-22 22:39:31 57CAC848FA14AE38F14F9441F8933282 140288 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\pcre3.dll
2016-02-22 22:39:31 547C43567AB8C08EB30F6C6BACB479A3 79360 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\regex2.dll
2016-02-18 22:19:04 F76D4ECF94DC677C13061EAEE9D6745A 312832 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\IntlProvider.dll
2016-02-18 22:19:04 F2B0771A7CD27F20689E0AB787B7EB7C 289792 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\DismCore.dll
2016-02-18 22:19:04 EC664AAB47C27667256DDFBD13986239 127488 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\OSProvider.dll
2016-02-18 22:19:04 CD564F5637BBBEB6E5F3464EDD573C80 438272 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\DmiProvider.dll
2016-02-18 22:19:04 C9D74156913061BE6C51D8FC3ACF8E93 53760 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\FolderProvider.dll
2016-02-18 22:19:04 A77A8EB5E9BA6D63A121811F0830F565 302080 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\UnattendProvider.dll
2016-02-18 22:19:04 9A821D8D62F4C60232B856E98CBA7E4F 96768 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\DismHost.exe
2016-02-18 22:19:04 8DF4C8E300C8D32468F6141D22BBAF24 271360 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\SmiProvider.dll
2016-02-18 22:19:04 8CA117CB9338C0351236939717CB7084 186368 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\DismProv.dll
2016-02-18 22:19:04 7B38D7916A7CD058C16A0A6CA5077901 271360 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\wdscore.dll
2016-02-18 22:19:04 739968678548BA15F6B9372E8760C012 444416 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\TransmogProvider.dll
2016-02-18 22:19:04 62DE64DC805FD98AF3ADA9D93209F6A9 107008 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\LogProvider.dll
2016-02-18 22:19:04 5488E381238FF19687FDD7AB2F44CFCC 111616 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\DismCorePS.dll
2016-02-18 22:19:04 45FF4FA5CA5432BFCCDED4433FE2A85B 216576 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\MsiProvider.dll
2016-02-18 22:19:04 3A9C49943047DE6C6F8DC68CB986A0EC 183296 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\CompatProvider.dll
2016-02-18 22:19:04 2961AB067AE61440ADF11C4BFE085151 1672192 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\CbsProvider.dll
2016-02-18 22:19:04 26981358EA5F82938387F6998F861978 471040 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\WimProvider.dll
2016-02-18 21:54:06 F76D4ECF94DC677C13061EAEE9D6745A 312832 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\IntlProvider.dll
2016-02-18 21:54:06 F2B0771A7CD27F20689E0AB787B7EB7C 289792 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\DismCore.dll
2016-02-18 21:54:06 EC664AAB47C27667256DDFBD13986239 127488 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\OSProvider.dll
2016-02-18 21:54:06 CD564F5637BBBEB6E5F3464EDD573C80 438272 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\DmiProvider.dll
2016-02-18 21:54:06 C9D74156913061BE6C51D8FC3ACF8E93 53760 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\FolderProvider.dll
2016-02-18 21:54:06 A77A8EB5E9BA6D63A121811F0830F565 302080 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\UnattendProvider.dll
2016-02-18 21:54:06 9A821D8D62F4C60232B856E98CBA7E4F 96768 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\DismHost.exe
2016-02-18 21:54:06 8DF4C8E300C8D32468F6141D22BBAF24 271360 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\SmiProvider.dll
2016-02-18 21:54:06 8CA117CB9338C0351236939717CB7084 186368 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\DismProv.dll
2016-02-18 21:54:06 7B38D7916A7CD058C16A0A6CA5077901 271360 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\wdscore.dll
2016-02-18 21:54:06 739968678548BA15F6B9372E8760C012 444416 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\TransmogProvider.dll
2016-02-18 21:54:06 62DE64DC805FD98AF3ADA9D93209F6A9 107008 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\LogProvider.dll
2016-02-18 21:54:06 5488E381238FF19687FDD7AB2F44CFCC 111616 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\DismCorePS.dll
2016-02-18 21:54:06 45FF4FA5CA5432BFCCDED4433FE2A85B 216576 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\MsiProvider.dll
2016-02-18 21:54:06 3A9C49943047DE6C6F8DC68CB986A0EC 183296 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\CompatProvider.dll
2016-02-18 21:54:06 2961AB067AE61440ADF11C4BFE085151 1672192 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\CbsProvider.dll
2016-02-18 21:54:06 26981358EA5F82938387F6998F861978 471040 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\WimProvider.dll
2016-02-18 00:53:23 2F9C7FDA92C346CB5AA32091536AE0CB 43520 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\nfo\nircmdc.exe

 

Zoek Part 3.
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2016-02-22 23:30:54 53CDBB093B0AEE9FD6CF1CBD25A95077 290304 -c--a-w- C:\Windows\SysWOW64\subinacl.exe
2016-02-11 03:24:07 F681617A48EC4FA8E560D4F8F98DD94F 216064 ----a-w- C:\Windows\SysWOW64\InkEd.dll
2016-02-11 03:24:06 E0F8B86E21CE366C41FD641A5904B399 2280448 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2016-02-11 03:24:06 C65C32F73DB0FF40CD0B07A378ED7E31 12857856 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2016-02-11 03:24:06 A80DB9FC25D728E990E4F183BBFB0B46 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll
2016-02-11 03:24:06 5AA6B93A3561DD11BE89A0E994C78B9E 20366848 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2016-02-11 03:24:06 31129AB73DE8B2C7AA60B04EE2931717 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2016-02-11 03:24:06 05DC4CD07D10626D4EF38AB7A9F45771 1312256 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2016-02-11 03:24:05 C2974E63D8C9B6A2914EF4F8BF986A0D 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2016-02-11 03:23:58 FA063E55773A925EA50BB6C32BDA6A4D 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-02-11 03:23:58 BE97A22AA001C112729BC6C20710EB95 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
2016-02-11 03:23:58 AEC354F085817A1EDF09354F187F04F7 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2016-02-11 03:23:58 9A974C50E003639FED1F4540D606277E 496640 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2016-02-11 03:23:58 83C2C80E6F582B2B3B657DB7AD3D8025 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2016-02-11 03:23:58 79875578EBB8F8ACAF339301A0F0B663 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2016-02-11 03:23:58 72E9450D57439BFB285333C216D4D689 341200 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2016-02-11 03:23:58 6F24910AC7C489AEBC9B07B1C7B95055 687104 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2016-02-11 03:23:58 57499EAC0ECCB7537D15011FECCCAE98 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2016-02-11 03:23:58 2D1D550594CDDC6F384AFCF702F333BB 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
2016-02-11 03:23:57 A5E6C79B466BBEB5795F59E1B1DE634C 663552 ----a-w- C:\Windows\SysWOW64\jscript.dll
2016-02-11 03:23:57 A34630CC8CE946941F7145AA7EE358B4 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2016-02-11 03:23:57 8C4AF7FA8E097BEE33AD430D335F942A 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2016-02-11 03:23:57 711E2340B245214EC8EE7028646AE69B 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2016-02-11 03:23:57 6483EA614DA752566A20EC8CB20E7B3F 2050560 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2016-02-11 03:23:57 27BDBE4BC3AE6011480E0B3ACD20C527 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2016-02-11 03:23:56 9D3DF899B79050492962D0B9256DCB57 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2016-02-11 03:23:55 CB4959DB1E0D9D60FB271474DFDE303C 4611072 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2016-02-11 03:23:55 C7CC591E41287CEB01FDBC425DAEF043 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2016-02-11 03:23:55 5FEA0799C84EDA2A4B1EBE5C3D2D0730 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2016-02-11 03:23:55 5CB71C6DB91BAC78E1F0E9953CAB8969 2120704 ----a-w- C:\Windows\SysWOW64\wininet.dll
2016-02-11 03:23:55 381FCCE72078D0FD6CDE012F7383825A 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2016-02-11 03:23:55 11733FDE983323DD1F7493B5576FC84F 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2016-02-11 03:23:55 0C8336742D48676B47B9A94B6AF5673F 341504 ----a-w- C:\Windows\SysWOW64\html.iec
2016-02-11 03:23:29 E00604CE082BA387AC1D354C45F7EDEC 1413632 ----a-w- C:\Windows\SysWOW64\ole32.dll
2016-02-11 03:23:25 6AF4B613D9EAC33034D2B5776B89394D 535040 ----a-w- C:\Windows\SysWOW64\EncDec.dll
2016-02-11 03:23:25 3F37385824263575518137EB6D60C90B 642048 ----a-w- C:\Windows\SysWOW64\CPFilters.dll
2016-02-11 03:23:24 FE2F52304F3B5BD8281350DC69E13063 171520 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2016-02-11 03:23:24 D2CB5AE05C05A22428D0D241B1B93615 251392 ----a-w- C:\Windows\SysWOW64\schannel.dll
2016-02-11 03:23:24 D12750DF9F955B9C8FB18C9B26BC8FA8 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2016-02-11 03:23:24 C8D06454D122EE572A117CB2BD198E2E 114176 ----a-w- C:\Windows\SysWOW64\mtxoci.dll
2016-02-11 03:23:24 B1D78C40DFB3D3AB0B24F4C452AF2D32 665088 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2016-02-11 03:23:24 B01C6902EBFDC171D4AC3B55B695F017 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2016-02-11 03:23:24 AF9A6DDDAF80F06854774B97A5CABACD 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2016-02-11 03:23:24 A9AE21C45FBF6CE1E6B5C5FEBB38004C 3938752 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2016-02-11 03:23:24 986235D261FEADC0825CC4287CA2FD61 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2016-02-11 03:23:24 973475BA1F197D8AA7B9DC10046C80BA 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2016-02-11 03:23:24 8E906BEE0415C2D4689305B8406B5E07 642560 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2016-02-11 03:23:24 8D8374FD723FEB2800305A8A66CD1ABA 3993536 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2016-02-11 03:23:24 8A4577DE02C55182ED46202BA2E06DA5 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
2016-02-11 03:23:24 67BCCAF06AD5F12DC7599AC02A2C40E7 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
2016-02-11 03:23:24 65FAD1A0049B6101F37BBFE7682DFE4C 1314328 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2016-02-11 03:23:24 3ECF55A5D03F20BAF2189DE7C334E7F9 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
2016-02-11 03:23:24 375BC0AA1E753C96D97D20444017F083 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2016-02-11 03:23:24 2A7DDF3441564E2615A88A840ECC19ED 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
2016-02-11 03:23:24 2A49D72DC3627DA7E90FD6673549E5F4 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2016-02-11 03:23:24 1682569FCB2BD576B7F8BCC5506BAF24 176128 ----a-w- C:\Windows\SysWOW64\msorcl32.dll
2016-02-11 03:23:24 024D25AC7C7A17868A85786D54FADA1F 553472 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2016-02-11 03:23:23 E88699C4C98E249DD2F13B315F6A199B 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
2016-02-11 03:23:23 D860E93BA9E5B4332C87159D7EA46343 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2016-02-11 03:23:23 BD8774545A855B6559FD70E609830685 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
2016-02-11 03:23:23 B76BE60C53603EBBF65957CB95B3EF7A 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2016-02-11 03:23:23 B6ACF0FA1236D1F89205DB4AFF1F6BB4 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2016-02-11 03:23:23 95CDF95F17CBC4038235DA5525DE8A39 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2016-02-11 03:23:23 5BF47EDE7A7D9143E5CB299FEB0173A2 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2016-02-11 03:23:23 5595E457CCB6FAEBC0244F1C20E8761F 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2016-02-11 03:23:23 35CAEF79BE44688A750CFDA3FAE7AC45 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2016-02-15 18:45:30 26A6E8DC5E5E4F504E0084C5AE63D1B4 110176 -c--a-w- C:\Windows\Sysnative\WindowsAccessBridge-64.dll
2016-02-11 03:24:07 799E20ADF08BB7EB5D0FF784C311F4B3 275456 ----a-w- C:\Windows\Sysnative\InkEd.dll
2016-02-11 03:24:07 313E9727FD22B721E356B3E75D3B7FDD 24576 ----a-w- C:\Windows\Sysnative\jnwmon.dll
2016-02-11 03:24:06 FFF68D1EA1C9B09091D91D4D493F00CD 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2016-02-11 03:24:06 7B755E401A318D3136948C72CD8AAB32 2887680 ----a-w- C:\Windows\Sysnative\iertutil.dll
2016-02-11 03:24:05 D7733D44A51BD06CD3D4E8EFFA00F1DB 1547264 ----a-w- C:\Windows\Sysnative\urlmon.dll
2016-02-11 03:24:05 748391D06E84EA371ADE4B10E38D54E9 25839104 ----a-w- C:\Windows\Sysnative\mshtml.dll
2016-02-11 03:24:05 1F386DDDF890891B4FA29D1EE066A4C7 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
2016-02-11 03:24:05 1E6D1853706F8DE25F07823A97E714EB 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2016-02-11 03:24:05 1162B324D878C71ADFB97392888266E7 14458368 ----a-w- C:\Windows\Sysnative\ieframe.dll
2016-02-11 03:23:58 F53C5CD60B0C574F420AC23D04629CD4 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2016-02-11 03:23:58 B96B87565BAFE37CB4ADC2B3DB4E4918 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2016-02-11 03:23:58 6D87E73C26D1A17C077EE52C9F17F600 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2016-02-11 03:23:58 4730E75B886E79785D98F3B52F70E857 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2016-02-11 03:23:58 28BB2A430DF3FBEF849DA23DCE091E0C 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
2016-02-11 03:23:58 0FDC94FE7AF583F1F251DB2F8AA775FB 718336 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2016-02-11 03:23:57 FC9C018B47585694C1FDEE9315A00811 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2016-02-11 03:23:57 EF331A0C738A3DB59910426166F7AA6F 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2016-02-11 03:23:57 9C790C93BDCEC5357763A0D76769A532 152064 ----a-w- C:\Windows\Sysnative\occache.dll
2016-02-11 03:23:57 2204FE30C9DB8CE0C9D2766E7B36C3FB 387784 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2016-02-11 03:23:56 933A0F38EA8562C6FBFBCC7DB8403E49 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2016-02-11 03:23:56 855087A6E66B7F26DDB4DD0AAC8F2002 798208 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2016-02-11 03:23:56 66E9C715417016B5E8844BAD52ECEC1F 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2016-02-11 03:23:56 31BFBD55D80391FE1F57C5F08520AB19 2123264 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2016-02-11 03:23:56 2E147B50D120FFAA29B8AEF4AA251DD6 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2016-02-11 03:23:55 4F6A864F5AEEC16B871275FBD2ED9507 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2016-02-11 03:23:55 31D8B409C26258A622886818B8446319 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2016-02-11 03:23:55 167C24BD00918779F6FB2A143EB881C9 571904 ----a-w- C:\Windows\Sysnative\vbscript.dll
2016-02-11 03:23:54 D5D3113FE5FEC7E17AF441116DFD0AA5 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2016-02-11 03:23:54 CB10939701B2B334E5AC019823FD43EF 2597376 ----a-w- C:\Windows\Sysnative\wininet.dll
2016-02-11 03:23:54 A53BA92BB2AD12CD588D608653D837FA 817664 ----a-w- C:\Windows\Sysnative\jscript.dll
2016-02-11 03:23:54 8781623BFFDB7373B6BE21D6BB0CF091 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2016-02-11 03:23:54 30F1422DE58ECA22EFF68E32EE230FB3 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
2016-02-11 03:23:54 2C76A9F160B31AD4B6BEB0E6AEDF0051 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2016-02-11 03:23:54 2465699318A732E42243FDA8B9E53EBD 6052352 ----a-w- C:\Windows\Sysnative\jscript9.dll
2016-02-11 03:23:54 01F62BB0005ECEFC807CCAE071568DC7 417792 ----a-w- C:\Windows\Sysnative\html.iec
2016-02-11 03:23:53 F1B946B1C712A670705A4FEFFD7B20E9 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2016-02-11 03:23:53 7B83F058C60F64D992D664C09AC97D68 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2016-02-11 03:23:31 A99A8E3835606F731DB54826D7836F88 3211776 ----a-w- C:\Windows\Sysnative\win32k.sys
2016-02-11 03:23:30 E8089A2512554E3C97423D89F3253CD0 2085888 ----a-w- C:\Windows\Sysnative\ole32.dll
2016-02-11 03:23:25 EDD3A375BAEC5B67227EF91E767D1383 1733592 ----a-w- C:\Windows\Sysnative\ntdll.dll
2016-02-11 03:23:25 EC51D04CF0ED31C8B0FDEB00A7155596 723968 ----a-w- C:\Windows\Sysnative\EncDec.dll
2016-02-11 03:23:25 DDC8747E8EA0D44C1DCB14B872F07AD8 5573056 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2016-02-11 03:23:25 3D0AB0FA5B425420B6F6AD261874200D 961024 ----a-w- C:\Windows\Sysnative\CPFilters.dll
2016-02-11 03:23:24 EF831C8EA02FCD61982C1ADCD7771003 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2016-02-11 03:23:24 EB4B3461CCF52627D0DDF6C5EA6706D1 1461248 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2016-02-11 03:23:24 DFC485D181251BBD363A01C7FB26BC31 315392 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2016-02-11 03:23:24 D37FFF32F1F5CE52B0C5C527E8E7F213 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll
2016-02-11 03:23:24 C96D13751309F1099FF89347F0289789 1214464 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2016-02-11 03:23:24 C66C5B5793F458807AE043E73440EB47 159744 ----a-w- C:\Windows\Sysnative\mtxoci.dll
2016-02-11 03:23:24 BDABFB9F7588C20ECA9CB7848000F471 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
2016-02-11 03:23:24 BB3249DA371BC3D18F71684E4274B853 730112 ----a-w- C:\Windows\Sysnative\kerberos.dll
2016-02-11 03:23:24 B9721CADDD9B4D06913F9954A0BF9143 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll
2016-02-11 03:23:24 B7657890A3CC88B07034BABEB9CA70D4 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2016-02-11 03:23:24 B62C3D440D413A31F55D6E917C45C520 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2016-02-11 03:23:24 B19AF473CF32091B62C5B0260A0F059F 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2016-02-11 03:23:24 AF4737408711F28233FDA52000AF463D 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2016-02-11 03:23:24 AC90998CB8B16566102AA50E64A595E5 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2016-02-11 03:23:24 96AEEE466EA56AF34AE4AD5E55DAD164 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll
2016-02-11 03:23:24 8B240443503DC920964A9AD0216DA10F 344064 ----a-w- C:\Windows\Sysnative\schannel.dll
2016-02-11 03:23:24 83A5E8CC7663573BFFF420CE8E3C2A68 50176 ----a-w- C:\Windows\Sysnative\srclient.dll
2016-02-11 03:23:24 789035A84618AC25CEDC91606029A4A2 112640 ----a-w- C:\Windows\Sysnative\smss.exe
2016-02-11 03:23:24 748F82A2222C49C3FED6D1695083716A 880128 ----a-w- C:\Windows\Sysnative\advapi32.dll
2016-02-11 03:23:24 6B7C61834990694B9A0E1620ABDFCCAC 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll
2016-02-11 03:23:24 613E5CBB94EF8F2EB15812EB003BC667 422400 ----a-w- C:\Windows\Sysnative\KernelBase.dll
2016-02-11 03:23:24 5A71F01035A69E3C00B5D7CA99410A0F 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
2016-02-11 03:23:24 5673794F254FE312AF62D9DA32805A2F 30720 ----a-w- C:\Windows\Sysnative\lsass.exe
2016-02-11 03:23:24 54ADDA9F5DA7E7470B11066AD9F4AED8 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe
2016-02-11 03:23:24 51F4A1B05E04EEAB0856A2C97958656C 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll
2016-02-11 03:23:24 41BF4D76AF0228B658DF37DE900B56E0 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
2016-02-11 03:23:24 0BC3CBABA9A24F52176929563A4B6829 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll
2016-02-11 03:23:24 0547E50F916294862FDAF11A4D701547 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
2016-02-11 03:23:24 0164AB7D14560DCE1B879E4F7CDB2FAF 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
2016-02-11 03:23:23 D2F5A80E0EF6B319FD8795914A0AAB70 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
2016-02-11 03:23:23 C16168C644D59D08556286A46637253D 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll
2016-02-11 03:23:23 AB2716613CE2FCE51E91A9CA0F019B2F 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
2016-02-11 03:23:23 805F5BF7343F4FED5AEBF458BCF04AC8 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
2016-02-11 03:23:23 171925BA54D712707770738C71287F88 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
====== C:\Windows\Sysnative\drivers =====
2016-02-11 03:23:32 D7ADC2B83CA0B0381F75A98351F72CEE 141312 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys
2016-02-11 03:23:24 BA500732D160C61E889E8180EE53C86F 154560 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2016-02-11 03:23:24 A16FC9323A85CAEA5804D04646A91CF9 290816 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2016-02-11 03:23:24 7BDDD24C5A148534D3737DBFA96B3E69 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2016-02-11 03:23:24 355DF71D1DD1999E8AEDF986534B233C 159232 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
2016-02-11 03:23:24 2539BE615440BA1EA4CF84A66B6C0AF9 129024 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-02-16 18:30:55 -------- dc----w- C:\Program Files\Adobe
2016-02-15 18:45:20 -------- dc----w- C:\Program Files\Java
======= C:\PROGRA~2 =====
2016-02-22 23:30:54 -------- dc----w- C:\PROGRA~2\Adware Removal Tool by TSA
2016-02-18 20:45:29 -------- dc----w- C:\PROGRA~2\JAM Software
2016-02-17 02:16:25 -------- dc----w- C:\PROGRA~2\Advanced Fix
2016-02-15 18:45:44 -------- dc----w- C:\PROGRA~2\COMMON~1\Java
======= C: =====
====== C:\Users\Bert Bell\AppData\Roaming ======
2016-02-22 23:48:24 -------- dc----w- C:\Users\Bert Bell\AppData\Roaming\ZHP
2016-02-18 21:10:10 407AAB8C27CF7081EECE071C90A65B83 17 -c--a-w- C:\Users\Bert Bell\AppData\Local\resmon.resmoncfg
2016-02-18 20:45:30 -------- dc----w- C:\Users\Bert Bell\AppData\Roaming\JAM Software
2016-02-17 23:01:10 -------- dc----w- C:\Users\Bert Bell\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2016-02-17 23:01:10 -------- dc----w- C:\Users\Bert Bell\AppData\Roaming\Adobe Mini Bridge CS5.1
====== C:\Users\Bert Bell ======
2016-02-22 22:26:02 F794E988B53804105BF915ABDAFAFCD7 891392 -c--a-w- C:\Users\Bert Bell\Desktop\MiniToolBox.exe
2016-02-22 21:23:40 F794E988B53804105BF915ABDAFAFCD7 891392 -c--a-w- C:\Users\Bert Bell\Downloads\MiniToolBox.exe
2016-02-19 22:55:05 1077BAFB2679B8CD00B03FAD10010C97 295841480 -c--a-w- C:\Users\Bert Bell\Downloads\AcronisTrueImage2015_en-US.exe
2016-02-18 20:45:29 -------- dc----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2016-02-17 02:16:26 -------- dc----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Fix
2016-02-15 18:45:30 -------- dc----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

 

Zoek Part 4.
====== C: exe-files ==
2016-02-22 23:48:24 F4A8242A33377B5FDD273A264D4B149C 2064896 -c--a-w- C:\Users\Bert Bell\AppData\Roaming\ZHP\ZHPCleaner.exe
2016-02-22 23:48:07 F4A8242A33377B5FDD273A264D4B149C 2064896 -c--a-w- C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6DV5YI3\ZHPCleaner.exe
2016-02-22 23:31:38 4BABA237C439E9D19D1F9C119FB1BD9B 700584 -c--a-w- C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MFXHPD3V\Adware_Removal_Tool_by_TSA.exe
2016-02-22 23:30:54 53CDBB093B0AEE9FD6CF1CBD25A95077 290304 -c--a-w- C:\Windows\SysWOW64\subinacl.exe
2016-02-22 23:28:50 B2249D823B48531AE452B58A294A0D7E 4002104 -c--a-w- C:\Program Files (x86)\Secunia\PSI\SUA\7a6b18f2599b22530bbb77ea127e4ef288ffb292\PSISetup.exe
2016-02-22 23:28:47 824ECAF3C94F28D474C5782DE205BC6D 30692352 -c--a-w- C:\Program Files (x86)\Secunia\PSI\SUA\f42485579077e9b44b2c5dbf7194df075b271db3\VLC_2.2.2_32-bit_SPS.exe
2016-02-22 22:39:31 BD59D8A4565D1D1AB3C7CF81948C8DBE 86840 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\CreateRestorePoint.exe
2016-02-22 22:26:02 F794E988B53804105BF915ABDAFAFCD7 891392 -c--a-w- C:\Users\Bert Bell\Desktop\MiniToolBox.exe
2016-02-22 21:23:40 F794E988B53804105BF915ABDAFAFCD7 891392 -c--a-w- C:\Users\Bert Bell\Downloads\MiniToolBox.exe
2016-02-22 21:14:51 DAE984CA715CE58F6A02A9E3209DCF89 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-3055711104-2501369095-467223224-1000\$I7H8HSF.exe
2016-02-19 23:36:06 45AB0193BCF8693503AF810B1E60D7FE 879512 -c--a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\48.0.2564.116\48.0.2564.116_48.0.2564.109_chrome_updater.exe
2016-02-19 22:55:05 1077BAFB2679B8CD00B03FAD10010C97 295841480 -c--a-w- C:\Users\Bert Bell\Downloads\AcronisTrueImage2015_en-US.exe
2016-02-18 22:19:04 9A821D8D62F4C60232B856E98CBA7E4F 96768 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\30C3D059-240C-4ECF-AA96-B476D6BFB2FD\DismHost.exe
2016-02-18 21:54:06 9A821D8D62F4C60232B856E98CBA7E4F 96768 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\D69E3DCC-B06A-4331-B74A-106656556AA7\DismHost.exe
2016-02-18 20:45:29 390C9EE248E21F4FEDB4DE4534EE3495 1264832 -c--a-w- C:\Program Files (x86)\JAM Software\TreeSize Free\unins000.exe
2016-02-18 20:45:29 2AAC225BCFA12435EA5840D87101BFDD 4030144 -c--a-w- C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe
2016-02-18 00:53:23 2F9C7FDA92C346CB5AA32091536AE0CB 43520 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2016-02-17 02:16:25 C70FC0B4A4BF347FAA3D66918E313036 1185984 -c--a-w- C:\Program Files (x86)\Advanced Fix\unins000.exe
2016-02-17 02:16:25 3BF6F84BD4E2B74E30A4066E766562BF 5429384 -c--a-w- C:\Program Files (x86)\Advanced Fix\AdvancedFix.exe
2016-02-16 18:28:33 F145DD3E89B426B1C19E513246A8BFAD 142336 -c--a-w- C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe
2016-02-16 18:27:21 8A70019A3CFB3A36D87F1A3831BC41CD 169120 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\customhook\AdobeIPCBrokerCustomHook.exe
2016-02-16 18:27:21 240AF8882E2C0D1280572DFAB3C31D93 1011872 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
2016-02-16 18:27:19 1B16227FAAE7348D03496D9E5898DFDB 350888 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\AASIapp.exe
2016-02-16 18:27:19 06A296ADA4A8AC80D23E36D0367AC29F 2471568 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_licutil.exe
2016-02-16 18:27:18 F87478991F6D8F1B180075A034469EB1 271528 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\D6\TokenGenerator64.exe
2016-02-16 18:27:18 A41A32230D854C114E2CE852D63DFE0A 350376 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\AAM Registration Notifier.exe
2016-02-16 18:27:18 91631B3688BA2C3AE2E13CFA0FEC45C4 355992 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE5\resources\libraries\CustomHook_Helperx64.exe
2016-02-16 18:27:18 84AB620F19770A7186CF58CE34F05959 80536 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE5\resources\libraries\TokenResolverx64.exe
2016-02-16 18:27:18 7F975CA0181113A0E95D1CBAFAA75316 156312 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\D6\Setup.exe
2016-02-16 18:27:17 D056AE2C08EFE0DD0D09793512C2F832 1803416 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE6\resources\libraries\Adobe_Helperx32.exe
2016-02-16 18:27:17 9B30D9ADE32E7A91A4A611144E54D503 374936 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE6\resources\libraries\CustomHook_Helperx64.exe
2016-02-16 18:27:17 6EAFA76D2C2D655977D5EC29E0528E1F 2050712 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE5\resources\libraries\Adobe_Helperx32.exe
2016-02-16 18:27:17 5302EE6B911DB4719F6A41B0C7F9FC25 123544 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE6\resources\libraries\TokenResolverx64.exe
2016-02-16 18:27:17 1B5BFB7081C562304AA457839CBDC6A8 2513560 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE6\resources\libraries\Adobe_Helperx64.exe
2016-02-16 18:27:17 17DDD6077F6AF58B285A4EEECE917A2C 2591896 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\DE5\resources\libraries\Adobe_Helperx64.exe
2016-02-16 18:27:16 BED52923BBA6D3D13974F339AA2394DA 29336 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\PlatformUtil.exe
2016-02-16 18:27:16 B2754A8E54A5A88FA8EDB1432C7F7EAA 689304 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DECore\Setup.exe
2016-02-16 18:27:14 A8D246A787498A7E92489FE3ADA24EA3 1749136 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P6\adobe_licutil.exe
2016-02-16 18:27:14 528A2D2922A5B146DD5BDE0F2E93DD14 297128 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P6\AAM Registration Notifier.exe
2016-02-16 18:27:12 81BFE542A8A2762229FBC08CACCF6391 357520 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\LWA\adobe_licutil.exe
2016-02-16 18:27:12 716633BFB1E36D136865CC9CF2F71577 119464 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DWA\TokenGenerator64.exe
2016-02-16 18:27:12 4C2E4B210A8DE1999922C1D2D0BEB93A 404120 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\DWA\Setup.exe
2016-02-16 18:27:12 28F9D71A30C9F9B9965F7EEE064EAC07 268456 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\LWA\AAM Registration Notifier.exe
2016-02-16 18:27:11 D0D92419019BCB32C2590A272D807E25 274632 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updatercorehelper.exe
2016-02-16 18:27:11 7486DEF5CC9334F58871D6D18B73C562 500936 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
2016-02-16 18:27:10 924BF04FACF850551B5DAD2CC4C042BB 1006760 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
2016-02-16 18:27:10 901B81C0F055D4ED5DF9967EFC82262E 522952 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\LogTransport2.exe
2016-02-16 18:27:10 348104622096D7BD88657298DCF72BFE 2774216 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\Adobe Application Manager (Updater).exe
2016-02-16 18:27:10 33591D8C3B1366D65EA2A6412A025C69 446152 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAMLauncher.exe
2016-02-16 18:27:09 611A6318E200B7D9AF5C6B9DCBDAE8E1 254120 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\AAMCustomHook.exe
2016-02-16 18:27:09 5E900A314A76500C4F8FE60B5F73C177 316072 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\AAMLauncherUtil.exe
2016-02-16 18:27:09 1DAD686A509CC43DD0E86C0BE87954FA 2401960 -c----w- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe
=== C: other files ==
2016-02-22 22:39:31 D7B94E9872BC71D0B874D0F44A6F5606 126300 -c--a-w- C:\Users\Bert Bell\AppData\Local\Temp\jrt\get.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-3055711104-2501369095-467223224-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware "= "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe "
"CCleaner Monitoring "= "C:\Program Files\CCleaner\CCleaner64.exe /MONITOR "
"Adobe Acrobat Synchronizer "= "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\AdobeCollabSync.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS5.5ServiceManager "= "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe -launchedbylogin "
"StartCCC "= "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun "
"AVG_UI "= "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe C:\Program Files (x86)\AVG\Av\avgui.exe "
"Acrobat Assistant 8.0 "= "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe "
"AvgUi "= "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe /lps=fmw "
"Adobe ARM "= "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
"SunJavaUpdateSched "= "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe "
"SwitchBoard "= "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware "= "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe "
"CCleaner Monitoring "= "C:\Program Files\CCleaner\CCleaner64.exe /MONITOR "
"Adobe Acrobat Synchronizer "= "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\AdobeCollabSync.exe "

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0 "= "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe "
"Acronis Scheduler2 Service "= "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe "
"iTunesHelper "= "C:\Program Files\iTunes\iTunesHelper.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "Acrobat Assistant 8.0 "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\Adobe\\Acrobat 11.0\\Acrobat\\Acrotray.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AcronisTibMounterMonitor]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "AcronisTibMounterMonitor "
"hkey "= "HKLM "
"command "= "C:\\Program Files (x86)\\Common Files\\Acronis\\TibMounter\\TibMounterMonitor.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AMD AVT]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "AMD AVT "
"hkey "= "HKLM "
"command "= "Cmd.exe /c start \ "AMD Accelerated Video Transcoding device initialization\" /min \ "C:\\Program Files (x86)\\AMD AVT\\bin\\kdbsync.exe\" aml "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "APSDaemon "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BDRegion]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "BDRegion "
"hkey "= "HKLM "
"command "= "C:\\Program Files (x86)\\Cyberlink\\Shared files\\brs.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BingSvc]
"key "= "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "BingSvc "
"hkey "= "HKCU "
"command "= "C:\\Users\\Bert Bell\\AppData\\Local\\Microsoft\\BingSvc\\BingSvc.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "CLMLServer "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IAStorIcon]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "IAStorIcon "
"hkey "= "HKLM "
"command "= "C:\\Program Files (x86)\\Intel\\Intel(R) Rapid Storage Technology\\IAStorIconLaunch.exe \ "C:\\Program Files (x86)\\Intel\\Intel(R) Rapid Storage Technology\\IAStorIcon.exe\" 60 "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NUSB3MON]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "NUSB3MON "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\Renesas Electronics\\USB 3.0 Host Controller Driver\\Application\\nusb3mon.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PDVD9LanguageShortcut]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "PDVD9LanguageShortcut "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\CyberLink\\PowerDVD9\\Language\\Language.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "QuickTime Task "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RemoteControl9]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "RemoteControl9 "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\CyberLink\\PowerDVD9\\PDVD9Serv.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVBg_DTS]
"key "= "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "RtHDVBg_DTS "
"hkey "= "HKLM "
"command "= "C:\\Program Files\\Realtek\\Audio\\HDA\\RAVBg64.exe /DTSU2P "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDVCPL]
"key "= "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "RTHDVCPL "
"hkey "= "HKLM "
"command "= "C:\\Program Files\\Realtek\\Audio\\HDA\\RtkNGUI64.exe -s "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sound Blaster Audigy Fx Control Panel]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "Sound Blaster Audigy Fx Control Panel "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\Creative\\Sound Blaster Audigy Fx\\Sound Blaster Audigy Fx Control Panel\\SBAdgyFx.exe\" /r "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "SwitchBoard "
"hkey "= "HKLM "
"command "= "C:\\Program Files (x86)\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TrueImageMonitor.exe]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "TrueImageMonitor.exe "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\Acronis\\TrueImageHome\\TrueImageMonitor.exe\" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdReg]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "UpdReg "
"hkey "= "HKLM "
"command "= "C:\\Windows\\UpdReg.EXE "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\USB3MON]
"key "= "SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run "
"item "= "USB3MON "
"hkey "= "HKLM "
"command "= "\ "C:\\Program Files (x86)\\Intel\\Intel(R) USB 3.0 eXtensible Host Controller Driver\\Application\\iusb3mon.exe\" "

 

Zoek Part 5.
==== Startup Folders ======================

2015-07-12 00:37:55 1094 -c--a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
2015-09-30 01:07:25 906 -c--a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a--c--- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [02/09/2016 02:26 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a--c--- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12/20/2015 03:41 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a--c--- [Undetermined Task]


==== EOF on Mon 02/22/2016 at 21:05:58.82 ======================

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-BertBell-PC-Bert Bell" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" [ "C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\{A04C6C8C-B3BB-4D3B-9DE7-6CBE7482973D}" [C:\Program Files (x86)\3D Live Snooker\3D Live Snooker.exe]
"C:\Windows\SysNative\tasks\{C3639B5C-D8CC-4C92-8276-1C65A02C55D2}" [C:\Program Files (x86)\3D Live Snooker\3D Live Snooker.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\BERTBE~1\AppData\Roaming\Mozilla\Firefox\Profiles\ppo6sy58.default
user_pref( "browser.startup.homepage ", "about:home ");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom "= "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [02/16/2016 02:19 PM]

==== Firefox Extensions ======================

ProfilePath: C:\Users\BERTBE~1\AppData\Roaming\Mozilla\Firefox\Profiles\ppo6sy58.default
- Undetermined - %ProfilePath%\extensions\jid1-o2qEVrZ4t5FJWu@jetpack.xpi
- Tab Mix Plus - %ProfilePath%\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 44.0.2403.89

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[12/17/2015 06:27 PM]

Adobe Acrobat - Bert Bell\AppData\Local\Chromium\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
Chrome Web Store Payments - Bert Bell\AppData\Local\Chromium\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Google Slides - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Adobe Acrobat - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
Google Sheets - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Chrome Web Store Payments - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page "= "http://www.google.com "

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope "= "{0633EE93-D776-472f-A0FF-E1416B8B2E3A} "
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\Wow6432Node\SearchScopes "DefaultScope "= "{0633EE93-D776-472f-A0FF-E1416B8B2E3A} "
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope "= "{0633EE93-D776-472f-A0FF-E1416B8B2E3A} "
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyOverride "= "*.local "
"ProxyEnable "=dword:00000000

Value(s) after fix:
"ProxyEnable "=dword:00000000

==== Uninstall List x64 ======================

3D Live Snooker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\3D Live Snooker_is1]
Acronis True Image 2015 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{35CFA5F4-EE2D-4B13-AAED-BC643B6874B5}]
Acronis True Image 2015 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{35CFA5F4-EE2D-4B13-AAED-BC643B6874B5}Visible]
Acronis Universal Boot Media Builder [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8FAB072E-6028-4BCD-A6CD-D179E4860073}]
Acronis Universal Restore Bootable Media Builder [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9BC95F3D-3247-4738-A0B6-F949B409E073}]
Adobe Acrobat XI Pro [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-1033-FFFF-7760-000000000006}]
Adobe AIR [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{31B9D218-FED2-4C6C-B19F-7294FFC130B0}]
Adobe AIR [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe AIR]
Adobe Community Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3521BDBD-D453-5D9F-AA55-44B75D214629}]
Adobe Community Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1]
Adobe Creative Cloud [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Creative Cloud]
Adobe Flash Player 20 ActiveX [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX]
Adobe Photoshop CS5.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9158FF30-78D7-40EF-B83E-451AC5334640}]
Adobe Refresh Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-0804-1033-1959-001824166751}]
Advanced Fix 2015 version 2.1.6.80 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0094D07C-1FFB-4450-8D10-AD7E05A318DF}_is1]
AMD Accelerated Video Transcoding [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{034B6AC8-DCF6-585B-2AFD-3FF0D4A559BB}]
AMD APP SDK Runtime [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{503F672D-6C84-448A-8F8F-4BC35AC83441}]
AMD Catalyst Install Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{37FCE154-7F59-74F0-3A35-BF503CEB230B}]
AMD Drag and Drop Transcoding [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{999DB5B3-EE44-8837-2B51-4AF44CD1FD22}]
AMD Media Foundation Decoders [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{30921AC4-6875-F7DF-B48B-2BB68C000BB6}]
Apple Application Support (32-bit) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C5815ACF-FD34-4553-8A22-C7411B7E662B}]
Apple Application Support (64-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}]
Apple Mobile Device Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3540181E-340A-4E7A-B409-31663472B2F7}]
Apple Software Update [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}]
Asmedia ASM104x USB 3.0 Host Controller Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}]
AVG [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{433577CF-7900-4559-9693-FA52A8487DBE}]
AVG 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D181BF91-057A-4889-BF0B-812D1BC2410C}]
AVG Protection [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG]
Bonjour [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}]
Catalyst Control Center - Branding [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{88B2ABCF-9C00-47C1-8FC4-369B98845DD7}]
Catalyst Control Center [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EBBD4FE6-91DA-C397-6D56-FE85DBF24FCF}]
Catalyst Control Center Graphics Previews Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D4236B82-213F-679E-09A2-9AEB5EF4CADC}]
Catalyst Control Center InstallProxy [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{28164BD8-81EA-639A-85E9-E659E3EE6DA7}]
Catalyst Control Center Localization All [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BD96ABD3-D1D4-5513-6C60-11476D6DCFC5}]
ccc-utility64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6C676266-91E4-DC71-E661-13494AC29A3E}]
CCC Help Chinese Standard [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4745F6F8-09DA-CC39-EC19-0E8D764CF2B7}]
CCC Help Chinese Traditional [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{25A7270E-1B63-DFD1-ACBC-88852A305398}]
CCC Help Czech [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15A05AAA-37E7-D516-5BE9-C960C2170403}]
CCC Help Danish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2E69E784-F84A-9A18-7D8E-4EB8504EEE1E}]
CCC Help Dutch [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{58771CF6-F212-CC4D-61B1-45CC70B6375C}]
CCC Help English [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{00F14E5B-E07A-2A1E-6788-580773CE1486}]
CCC Help Finnish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B09567CC-E43F-10F1-752D-549AC7FB0C43}]
CCC Help French [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C39C7876-4D21-8A38-0A42-B5C8858EC6C7}]
CCC Help German [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A7F1628-2126-34A5-852D-2B93328BCF3F}]
CCC Help Greek [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{911904DE-EBB6-BC8E-D5BD-762B7DB42C46}]
CCC Help Hungarian [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4FA31DE2-B613-24BB-1738-B655C00B1C9D}]
CCC Help Italian [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6D5CE5F1-CBB0-9ED4-1A1E-91DDCD6225FD}]
CCC Help Japanese [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{362614E4-9ABB-E7A7-CDDC-239AB168060A}]
CCC Help Korean [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{812B956B-37AB-24B9-4527-78A6D3ECE7F8}]
CCC Help Norwegian [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B170B91D-E8E3-A6A3-D129-D8E36FEA8A0B}]
CCC Help Polish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{83293709-B863-0EF6-00DA-B026D486E8B5}]
CCC Help Portuguese [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9903011B-5F1D-A2A1-8078-EE62B3324CCE}]
CCC Help Russian [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AE6C422B-DADB-D547-411C-E9E56DF03D16}]
CCC Help Spanish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{707210B0-29F1-C550-BA96-6ECDA245CF24}]
CCC Help Swedish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FCEFDA6B-63CD-BB17-B845-478A42E24D39}]
CCC Help Thai [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{21E9850E-58C2-FA88-D5AD-B64D253B8F82}]
CCC Help Turkish [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0A036215-0A8D-6FBE-7EA3-7AED4F9E162A}]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
Creative System Information [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SysInfo]
CyberLink DVD Menu Template Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0C8EBB00-4909-459C-8347-B2068B7F0319}]
CyberLink LabelPrint [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C59C179C-668D-49A9-B6EA-0121CCFC1243}]
CyberLink LabelPrint [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}]
CyberLink Media Suite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}]
CyberLink Media Suite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}]
CyberLink PhotoNow [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D36DD326-7280-11D8-97C8-000129760CBE}]
CyberLink PhotoNow [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}]
CyberLink PowerDVD Copy [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E3D04529-6EDB-11D8-A372-0050BAE317E1}]
CyberLink PowerDVD Copy [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}]
CyberLink WaveEditor [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}]
CyberLink WaveEditor [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}]
FMW 1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1F610B48-81E7-4A33-AFC9-1D7602C80732}]
Google Chrome [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}]
HitmanPro 3.7 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HitmanPro37]
Intel(R) Control Center [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}]
Intel(R) Management Engine Components [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}]
Intel(R) Network Connections 17.0.200.2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E76A136D-3A4F-40AA-BBDA-D682FCC8C90D}]
Intel(R) Network Connections 17.0.200.2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PROSetDX]
Intel(R) Rapid Storage Technology [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}]
Intel(R) USB 3.0 eXtensible Host Controller Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}]
Intelr Trusted Connect Service Client [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}]
iTunes [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}]
Java 8 Update 74 (64-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F86418074F0}]
Malwarebytes Anti-Malware version 2.2.0.1024 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1]
Microsoft Office Professional Edition 2003 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{90110409-6000-11D3-8CFE-0150048383C9}]
Microsoft Silverlight [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{071c9b48-7c32-4621-a0ac-3f809523288f}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A25302D-30C0-39D9-BD6F-21E6EC160475}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9BE518E6-ECC6-35A9-88E4-87755C07200F}]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}]
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}]
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{37B8F9C7-03FB-3253-8781-2517C99D7C00}]
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}]
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B175520C-86A2-35A7-8619-86DC379688B9}]
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}]
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{050d4fc8-5d48-4b8f-8972-47c82c46020f}]
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{f65db027-aff3-4070-886a-0d87064aabb1}]
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{929FBD26-9020-399B-9A7A-751D61F0B942}]
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}]
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}]
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}]
Microsoft_VC80_ATL_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}]
Microsoft_VC80_ATL_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{925D058B-564A-443A-B4B2-7E90C6432E55}]
Microsoft_VC80_CRT_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}]
Microsoft_VC80_CRT_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}]
Microsoft_VC80_MFC_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D1A19B02-817E-4296-A45B-07853FD74D57}]
Microsoft_VC80_MFC_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}]
Microsoft_VC80_MFCLOC_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}]
Microsoft_VC80_MFCLOC_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}]
Microsoft_VC90_ATL_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}]
Microsoft_VC90_ATL_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8557397C-A42D-486F-97B3-A2CBC2372593}]
Microsoft_VC90_CRT_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{08D2E121-7F6A-43EB-97FD-629B44903403}]
Microsoft_VC90_CRT_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}]
Microsoft_VC90_MFC_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}]
Microsoft_VC90_MFC_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}]
Microsoft_VC90_MFCLOC_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B6D38690-755E-4F40-A35A-23F8BC2B86AC}]
Microsoft_VC90_MFCLOC_x86_x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{90BF0360-A1DB-4599-A643-95AB90A52C1E}]
Mozilla Firefox 44.0.2 (x86 en-US) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mozilla Firefox 44.0.2 (x86 en-US)]
Mozilla Maintenance Service [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService]
PDF Settings CS5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}]
Qualcomm Atheros WiFi Driver Installation [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7D916FA5-DAE9-4A25-B089-655C70EAF607}]
QuickTime 7 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}]
Realtek High Definition Audio Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}]
Renesas Electronics USB 3.0 Host Controller Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5442DAB8-7177-49E1-8B22-09A049EA5996}]
Renesas Electronics USB 3.0 Host Controller Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}]
Revo Uninstaller 1.95 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Revo Uninstaller]
Secunia PSI (3.0.0.10004) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Secunia PSI]
SES Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D8CC254C-C671-4664-9A38-FA368D1E2C97}]
Sound Blaster Audigy Fx [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{77CE1865-F3B9-4B6D-A558-28674AE7787E}]
Sound Blaster Audigy Fx Extras [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{52272D09-08E0-4A57-BC14-BC09F5D7AE26}]
SUPERAntiSpyware [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}]
TreeSize Free V3.4.5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\TreeSize Free_is1]
Visual Studio 2012 x64 Redistributables [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}]
Visual Studio 2012 x86 Redistributables [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}]
VLC media player [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VLC media player]
VueScan x64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VueScan x64]
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20]
Wireless AC1200 Dual Band USB Adapter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5F1C0C6E-0E47-4D60-8971-6EF9FC439B8B}]
WOT for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{373B90E1-A28C-434C-92B6-7281AFA6115A}]

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9 deleted successfully

==== HijackThis Entries ======================

O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe "
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe "
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\AdobeCollabSync.exe "
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O4 - Global Startup: Wireless Connection Manager.lnk = ?
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RunSwUSB - Unknown owner - C:\Windows\runSW.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WlanWpsSvc - Unknown owner - C:\Program Files (x86)\D-Link\DWA-182\WlanWpsSvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6DV5YI3 will be deleted at reboot
C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MFXHPD3V will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Bert Bell\AppData\Local\Chromium\User Data\Default\Cache emptied successfully
C:\Users\Bert Bell\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=45 folders=32 29322346 bytes)

==== Empty Temp Folders ======================

C:\Users\Bert Bell\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\BERTBE~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6DV5YI3" deleted
"C:\Users\Bert Bell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MFXHPD3V" deleted


==== EOF on Mon 02/22/2016 at 21:05:58.82 ======================

 

Malwarebytes found and deleted 2 PUPs.

 

Here is autoruns screen shot. Hope I did it right.

 

TCP Optimizer done. It seemed to go well.

 

Results of screen317's Security Check version 1.014 --- 12/23/15
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG Internet Security
Antivirus out of date!
`````````Anti-malware/Other Utilities Check:`````````
Secunia PSI (3.0.0.10004)
Java version 32-bit out of Date!
Mozilla Firefox (44.0.2)
Google Chrome (48.0.2564.109)
Google Chrome (48.0.2564.116)
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 29% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````

 

Hi Evan,

Do you mind if I use Revo Uninstaller to uninstall those programs? I use it because it cleans out all traces of the programs.

Also, will I be able to reinstall some of those programs? I use some of them often.

Internet Explorer has been working well all evening.

Thank you.