I belive I followed the above instructions correctly. Combofix appears to "install" even in this case above where I'm dropping the CFScript.txt onto it but I did do that and it produced the following log:
ComboFix 12-08-16.01 - Kelly 08/16/2012 12:15:34.2.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.16361.10028 [GMT -7:00]
Running from: I:\setup\System Utilities\Virus Removal and Protection\ComboFix.exe
Command switches used :: I:\setup\System Utilities\Virus Removal and Protection\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
FILE ::
"c:\windows\system32\drivers\hwqkueee.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\0.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\1.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\10.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\11.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\2.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\3.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\4.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\5.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\6.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\7.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\8.mdd
c:\users\Kelly\AppData\Local\Temp\wrdd000c.~lk\9.mdd
.
.
((((((((((((((((((((((((( Files Created from 2012-07-16 to 2012-08-16 )))))))))))))))))))))))))))))))
.
.
2012-08-16 19:27 . 2012-08-16 19:27 69000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{988F9609-4DA4-4419-A0E9-A534B2F4E04F}\offreg.dll
2012-08-16 19:25 . 2012-08-16 19:28 -------- d-----w- c:\users\admin\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\MSSQL$SQLEXPRESS\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\Mcx1-QUARK\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\Janet\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\CURRENT_USER\AppData\Local\temp
2012-08-16 19:25 . 2012-08-16 19:25 -------- d-----w- c:\users\Classic .NET AppPool\AppData\Local\temp
2012-08-14 08:22 . 2012-08-14 08:22 -------- d-----w- c:\users\Kelly\AppData\Roaming\Malwarebytes
2012-08-14 08:22 . 2012-08-14 08:22 -------- d-----w- c:\programdata\Malwarebytes
2012-08-14 08:22 . 2012-08-14 08:22 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-08-14 08:22 . 2012-07-03 20:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-13 08:43 . 2012-08-13 08:43 -------- d-----w- C:\FRST
2012-08-13 06:47 . 2012-08-13 06:47 328704 ----a-w- c:\windows\system32\services.exe.FB430B8E38272D1C
2012-08-11 18:50 . 2012-08-11 18:50 50392 ----a-w- c:\windows\system32\drivers\hwqkueee.sys
2012-08-11 18:50 . 2012-08-11 18:50 328704 ----a-w- c:\windows\system32\services.exe.49F02CD4A4A3F8A3
2012-08-11 18:40 . 2012-08-11 18:40 328704 ----a-w- c:\windows\system32\services.exe.ACD069D63157E141
2012-08-11 18:31 . 2012-08-11 18:31 328704 ----a-w- c:\windows\system32\services.exe.C58270A7DD10266D
2012-08-11 18:25 . 2012-08-11 18:25 328704 ----a-w- c:\windows\system32\services.exe.A698C307BA7E8BEF
2012-08-11 18:17 . 2012-08-11 18:17 328704 ----a-w- c:\windows\system32\services.exe.10423E639EC94F6A
2012-08-11 18:13 . 2012-02-09 21:17 927800 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DEED19B4-8DBB-48DC-93F4-DF9414CDF31B}\gapaengine.dll
2012-08-11 18:12 . 2012-07-16 09:40 9133488 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{988F9609-4DA4-4419-A0E9-A534B2F4E04F}\mpengine.dll
2012-08-11 18:11 . 2012-08-11 18:11 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2012-08-11 18:11 . 2012-08-11 18:11 -------- d-----w- c:\program files\Microsoft Security Client
2012-08-11 17:31 . 2012-08-11 17:31 328704 ----a-w- c:\windows\system32\services.exe.1EFED7D41A29C5C8
2012-08-11 17:14 . 2012-08-11 17:14 328704 ----a-w- c:\windows\system32\services.exe.A244CD8FECB1FC0A
2012-08-11 11:06 . 2012-08-11 11:06 -------- d-sh--w- c:\windows\system32\%APPDATA%
2012-08-11 09:51 . 2012-08-11 09:51 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-08-11 09:51 . 2012-08-11 09:51 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
2012-08-01 23:45 . 2012-08-01 23:45 -------- d-s---w- c:\users\Kelly\SharePoint Sites
2012-08-01 05:56 . 2012-08-01 05:56 -------- d-----w- c:\users\Kelly\AppData\Local\dftmp
2012-07-31 19:27 . 2012-07-31 19:27 -------- d-----w- c:\users\Kelly\AppData\Roaming\TeamViewer
2012-07-31 07:41 . 2012-07-31 07:41 -------- d-----w- c:\users\Kelly\AppData\Roaming\WatchGuard
2012-07-31 07:41 . 2012-07-31 07:41 -------- d-----w- c:\program files (x86)\WatchGuard
2012-07-31 07:41 . 2012-06-13 08:42 31232 ----a-w- c:\windows\system32\drivers\tap0901.sys
2012-07-30 18:25 . 2012-07-30 18:25 -------- d-----w- c:\windows\Sun
2012-07-27 00:21 . 2012-07-27 00:21 -------- d-----w- c:\program files (x86)\Windows Azure Tools
2012-07-27 00:20 . 2012-08-01 05:56 -------- d-----w- c:\users\Kelly\AppData\Local\DevelopmentStorage
2012-07-27 00:18 . 2012-07-27 00:19 -------- d-----w- c:\program files (x86)\Microsoft Web Tooling Extensions
2012-07-26 22:55 . 2012-07-26 22:55 -------- d-----w- c:\users\orchard
2012-07-26 16:49 . 2012-07-26 17:11 -------- d-----w- c:\users\Kelly\AppData\Roaming\Download Manager
2012-07-26 16:47 . 2012-07-26 16:47 -------- d-----w- c:\program files\Microsoft
2012-07-22 08:08 . 2012-07-22 08:08 -------- d-----w- c:\windows\SysWow64\VirtualMIDISynth
2012-07-22 08:08 . 2012-07-22 08:08 -------- d-----w- c:\windows\system32\VirtualMIDISynth
2012-07-22 04:55 . 2012-07-22 04:55 -------- d-----w- c:\users\Kelly\AppData\Local\Cakewalk
2012-07-22 04:54 . 2012-07-22 04:54 -------- dc-h--w- c:\programdata\{E0C041D8-7EFB-4E8C-A20F-651F5AD0B7C1}
2012-07-22 04:54 . 2012-07-22 04:54 -------- d-----w- c:\program files (x86)\Common Files\Digidesign
2012-07-22 04:54 . 2012-07-22 04:54 -------- dc-h--w- c:\programdata\{902029B2-957E-4066-85FA-30DA31731718}
2012-07-22 04:54 . 2012-07-22 04:54 -------- d-----w- c:\program files (x86)\Native Instruments
2012-07-22 04:54 . 2012-07-22 04:54 -------- d-----w- c:\program files (x86)\Common Files\Native Instruments
2012-07-22 04:48 . 2012-07-22 04:48 -------- d-----w- c:\users\Kelly\TruePianos Settings
2012-07-22 04:47 . 2012-07-22 04:54 -------- d-----w- c:\users\Kelly\AppData\Roaming\Cakewalk
2012-07-22 04:44 . 2012-07-22 08:33 -------- d-----w- C:\Cakewalk Projects
2012-07-22 04:44 . 2012-07-22 04:52 -------- d-----w- c:\programdata\Cakewalk
2012-07-22 04:44 . 2012-07-22 04:50 -------- d-----w- c:\program files\Cakewalk
2012-07-22 04:42 . 2012-07-22 04:42 -------- d-----w- c:\programdata\Ableton
2012-07-22 04:41 . 2012-07-22 04:41 -------- d-----w- c:\users\Kelly\AppData\Roaming\Ableton
2012-07-22 04:41 . 2011-12-02 18:01 368640 ----a-w- c:\windows\SysWow64\ReWire.dll
2012-07-22 04:41 . 2011-12-02 18:01 233472 ----a-w- c:\windows\SysWow64\REX Shared Library.dll
2012-07-22 04:40 . 2012-07-22 04:40 -------- d-----w- c:\program files (x86)\Ableton
2012-07-19 14:41 . 2012-07-19 14:41 -------- d-----w- c:\program files (x86)\Android
2012-07-19 06:33 . 2012-07-19 06:33 -------- d-----w- c:\programdata\backup
2012-07-19 06:33 . 2012-07-19 06:33 -------- d-----w- c:\programdata\explauncher
2012-07-19 06:33 . 2012-07-19 06:33 -------- d-----w- c:\programdata\launcher
2012-07-19 06:33 . 2012-07-19 06:33 -------- d-----w- c:\program files (x86)\Paragon Software
2012-07-18 19:40 . 2012-07-18 19:40 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-07-18 19:40 . 2012-07-18 19:40 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2012-07-18 19:12 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-04 02:21 . 2011-01-21 02:48 1002728 ----a-w- c:\windows\system32\WinUSBCoInstaller2.dll
2012-08-03 07:01 . 2012-05-08 04:54 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-03 07:01 . 2011-05-24 02:32 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-27 00:22 . 2012-03-16 21:16 2563232 ----a-w- c:\programdata\Microsoft\VisualStudio\11.0\1033\ResourceCache.dll
2012-07-18 20:01 . 2012-05-05 07:23 381608 ------w- c:\windows\SysWow64\MC17.exe
2012-07-18 20:01 . 2012-05-05 07:23 381608 ------w- c:\windows\system32\MC17.exe
2012-07-18 19:08 . 2011-04-16 00:16 59701280 ----a-w- c:\windows\system32\MRT.exe
2012-07-07 07:54 . 2011-04-16 06:03 2087296 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1033\ResourceCache.dll
2012-07-07 07:25 . 2012-07-07 07:25 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-06-25 23:04 . 2012-06-25 23:04 1394248 ----a-w- c:\windows\SysWow64\msxml4.dll
2012-06-19 00:40 . 2012-06-19 00:40 145256 ----a-r- c:\users\Kelly\AppData\Roaming\Microsoft\Installer\{BA7E4D7B-24E6-46D0-809E-E77E92FC757F}\ARPPRODUCTICON.exe
2012-06-09 05:43 . 2012-07-10 23:53 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-06-06 06:06 . 2012-07-10 23:53 2004480 ----a-w- c:\windows\system32\msxml6.dll
2012-06-06 06:06 . 2012-07-10 23:53 1881600 ----a-w- c:\windows\system32\msxml3.dll
2012-06-06 06:02 . 2012-07-10 23:53 1133568 ----a-w- c:\windows\system32\cdosys.dll
2012-06-06 05:05 . 2012-07-10 23:53 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
2012-06-06 05:05 . 2012-07-10 23:53 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2012-06-06 05:03 . 2012-07-10 23:53 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
2012-06-04 19:56 . 2012-06-04 19:56 90960 ----a-w- c:\windows\system32\drivers\uimx64.sys
2012-06-04 19:56 . 2012-06-04 19:56 472144 ----a-w- c:\windows\system32\drivers\UimFIO.sys
2012-06-04 19:56 . 2012-06-04 19:56 251728 ----a-w- c:\windows\SysWow64\prgiso.dll
2012-06-04 19:56 . 2012-06-04 19:56 633296 ----a-w- c:\windows\system32\drivers\Uim_IMx64.sys
2012-06-04 19:56 . 2012-06-04 19:56 389968 ----a-w- c:\windows\system32\drivers\uim_vimx64.sys
2012-06-02 22:19 . 2012-06-18 22:49 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-18 22:49 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-18 22:49 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-18 22:49 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-18 22:49 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 22:19 . 2012-06-18 22:49 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-18 22:49 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-18 22:49 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 22:15 . 2012-06-18 22:49 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 05:50 . 2012-07-10 23:52 458704 ----a-w- c:\windows\system32\drivers\cng.sys
2012-06-02 05:48 . 2012-07-10 23:52 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-06-02 05:48 . 2012-07-10 23:52 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-06-02 05:45 . 2012-07-10 23:52 340992 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 05:44 . 2012-07-10 23:52 307200 ----a-w- c:\windows\system32\ncrypt.dll
2012-06-02 04:40 . 2012-07-10 23:52 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2012-06-02 04:40 . 2012-07-10 23:52 225280 ----a-w- c:\windows\SysWow64\schannel.dll
2012-06-02 04:39 . 2012-07-10 23:52 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll
2012-06-02 04:34 . 2012-07-10 23:52 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2012-06-01 02:21 . 2012-06-01 02:21 9888360 ----a-w- c:\windows\SysWow64\RtsUStoricon.dll
2012-06-01 02:21 . 2012-06-01 02:21 250984 ----a-w- c:\windows\system32\drivers\RtsUStor.sys
2012-06-01 02:21 . 2012-06-01 02:21 422504 ----a-w- c:\windows\system32\RtsUStor.dll
2012-05-22 04:17 . 2012-05-22 04:17 864120 ----a-w- c:\windows\SysWow64\msvcr110.dll
2012-05-22 04:17 . 2012-05-22 04:17 84344 ----a-w- c:\windows\SysWow64\mfcm110u.dll
2012-05-22 04:17 . 2012-05-22 04:17 84344 ----a-w- c:\windows\SysWow64\mfcm110.dll
2012-05-22 04:17 . 2012-05-22 04:17 8355192 ----a-w- c:\windows\SysWow64\mfc110ud.dll
2012-05-22 04:17 . 2012-05-22 04:17 8284024 ----a-w- c:\windows\SysWow64\mfc110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 806784 ----a-w- c:\windows\SysWow64\vcamp110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 797560 ----a-w- c:\windows\SysWow64\msvcp110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 74112 ----a-w- c:\windows\SysWow64\mfc110deu.dll
2012-05-22 04:17 . 2012-05-22 04:17 74104 ----a-w- c:\windows\SysWow64\mfc110fra.dll
2012-05-22 04:17 . 2012-05-22 04:17 73088 ----a-w- c:\windows\SysWow64\mfc110esn.dll
2012-05-22 04:17 . 2012-05-22 04:17 72064 ----a-w- c:\windows\SysWow64\mfc110ita.dll
2012-05-22 04:17 . 2012-05-22 04:17 70016 ----a-w- c:\windows\SysWow64\mfc110rus.dll
2012-05-22 04:17 . 2012-05-22 04:17 689040 ----a-w- c:\windows\SysWow64\vccorlib110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 64384 ----a-w- c:\windows\SysWow64\mfc110enu.dll
2012-05-22 04:17 . 2012-05-22 04:17 53120 ----a-w- c:\windows\SysWow64\mfc110jpn.dll
2012-05-22 04:17 . 2012-05-22 04:17 52608 ----a-w- c:\windows\SysWow64\mfc110kor.dll
2012-05-22 04:17 . 2012-05-22 04:17 500600 ----a-w- c:\windows\SysWow64\msvcp110.dll
2012-05-22 04:17 . 2012-05-22 04:17 45440 ----a-w- c:\windows\SysWow64\mfc110cht.dll
2012-05-22 04:17 . 2012-05-22 04:17 45440 ----a-w- c:\windows\SysWow64\mfc110chs.dll
2012-05-22 04:17 . 2012-05-22 04:17 4495728 ----a-w- c:\windows\SysWow64\mfc110.dll
2012-05-22 04:17 . 2012-05-22 04:17 4445560 ----a-w- c:\windows\SysWow64\mfc110u.dll
2012-05-22 04:17 . 2012-05-22 04:17 319872 ----a-w- c:\windows\SysWow64\vcamp110.dll
2012-05-22 04:17 . 2012-05-22 04:17 240008 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2012-05-22 04:17 . 2012-05-22 04:17 219008 ----a-w- c:\windows\SysWow64\VSPerf110.dll
2012-05-22 04:17 . 2012-05-22 04:17 174976 ----a-w- c:\windows\SysWow64\VSCover110.dll
2012-05-22 04:17 . 2012-05-22 04:17 1691520 ----a-w- c:\windows\SysWow64\msvcr110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 156024 ----a-w- c:\windows\SysWow64\atl110.dll
2012-05-22 04:17 . 2012-05-22 04:17 145792 ----a-w- c:\windows\SysWow64\vcomp110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 116608 ----a-w- c:\windows\SysWow64\vcomp110.dll
2012-05-22 04:17 . 2012-05-22 04:17 113016 ----a-w- c:\windows\SysWow64\mfcm110d.dll
2012-05-22 04:17 . 2012-05-22 04:17 112512 ----a-w- c:\windows\SysWow64\mfcm110ud.dll
2012-05-22 04:17 . 2012-05-22 04:17 656272 ----a-w- c:\windows\SysWow64\vsjitdebugger.exe
2012-05-22 04:17 . 2012-05-22 04:17 1995168 ----a-w- c:\windows\SysWow64\VsGraphicsHelper.dll
2012-05-22 01:14 . 2012-05-22 01:14 685968 ----a-w- c:\windows\system32\vsjitdebugger.exe
2012-05-22 01:14 . 2012-05-22 01:14 933256 ----a-w- c:\windows\system32\vccorlib110d.dll
2012-05-22 01:14 . 2012-05-22 01:14 92032 ----a-w- c:\windows\system32\mfcm110u.dll
2012-05-22 01:14 . 2012-05-22 01:14 92024 ----a-w- c:\windows\system32\mfcm110.dll
2012-05-22 01:14 . 2012-05-22 01:14 852856 ----a-w- c:\windows\system32\msvcr110.dll
2012-05-22 01:14 . 2012-05-22 01:14 74112 ----a-w- c:\windows\system32\mfc110fra.dll
2012-05-22 01:14 . 2012-05-22 01:14 74112 ----a-w- c:\windows\system32\mfc110deu.dll
2012-05-22 01:14 . 2012-05-22 01:14 73088 ----a-w- c:\windows\system32\mfc110esn.dll
2012-05-22 01:14 . 2012-05-22 01:14 72064 ----a-w- c:\windows\system32\mfc110ita.dll
2012-05-22 01:14 . 2012-05-22 01:14 70016 ----a-w- c:\windows\system32\mfc110rus.dll
2012-05-22 01:14 . 2012-05-22 01:14 64384 ----a-w- c:\windows\system32\mfc110enu.dll
2012-05-22 01:14 . 2012-05-22 01:14 612728 ----a-w- c:\windows\system32\msvcp110.dll
2012-05-22 01:14 . 2012-05-22 01:14 5705080 ----a-w- c:\windows\system32\mfc110u.dll
2012-05-22 01:14 . 2012-05-22 01:14 5677424 ----a-w- c:\windows\system32\mfc110.dll
2012-05-22 01:14 . 2012-05-22 01:14 53120 ----a-w- c:\windows\system32\mfc110jpn.dll
2012-05-22 01:14 . 2012-05-22 01:14 52608 ----a-w- c:\windows\system32\mfc110kor.dll
2012-05-22 01:14 . 2012-05-22 01:14 45440 ----a-w- c:\windows\system32\mfc110cht.dll
2012-05-22 01:14 . 2012-05-22 01:14 45440 ----a-w- c:\windows\system32\mfc110chs.dll
2012-05-22 01:14 . 2012-05-22 01:14 380792 ----a-w- c:\windows\system32\vcamp110.dll
2012-05-22 01:14 . 2012-05-22 01:14 322440 ----a-w- c:\windows\system32\vccorlib110.dll
2012-05-22 01:14 . 2012-05-22 01:14 251776 ----a-w- c:\windows\system32\VSPerf110.dll
2012-05-22 01:14 . 2012-05-22 01:14 1957248 ----a-w- c:\windows\system32\msvcr110d.dll
2012-05-22 01:14 . 2012-05-22 01:14 189824 ----a-w- c:\windows\system32\VSCover110.dll
.
.
(((((((((((((((((((((((((((((
SnapShot@2012-08-15_19.32.50 )))))))))))))))))))))))))))))))))))))))))
.
- 2011-04-15 23:44 . 2012-08-01 05:26 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-04-15 23:44 . 2012-08-16 19:28 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-04-15 23:44 . 2012-08-01 05:26 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-04-15 23:44 . 2012-08-16 19:28 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-04-15 23:44 . 2012-08-01 05:26 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-04-15 23:44 . 2012-08-16 19:28 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-08-16 19:07 . 2012-08-16 19:07 9560 c:\windows\system32\NetworkList\Icons\{666D526B-BF90-4426-B013-992FEDF3AE92}_48.bin
+ 2012-08-16 19:07 . 2012-08-16 19:07 4280 c:\windows\system32\NetworkList\Icons\{666D526B-BF90-4426-B013-992FEDF3AE92}_32.bin
+ 2012-08-16 19:07 . 2012-08-16 19:07 2456 c:\windows\system32\NetworkList\Icons\{666D526B-BF90-4426-B013-992FEDF3AE92}_24.bin
- 2011-04-15 23:54 . 2012-08-15 19:16 1887 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-04-15 23:54 . 2012-08-16 19:25 1887 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
- 2012-08-15 19:18 . 2012-08-15 19:18 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-08-16 19:27 . 2012-08-16 19:27 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-08-15 19:18 . 2012-08-15 19:18 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-08-16 19:27 . 2012-08-16 19:27 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-14 05:01 . 2012-08-16 19:25 757492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-08-15 19:16 757492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2011-04-16 02:39 . 2012-08-15 19:16 61121492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-389776879-4036487157-181669944-1000-12288.dat
+ 2011-04-16 02:39 . 2012-08-16 19:25 61121492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-389776879-4036487157-181669944-1000-12288.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{876d9f09-c6d6-4324-a2cc-04dd9a4de12f}]
2012-05-22 04:17 75320 ----a-w- c:\program files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2010-05-21 324976]
"RoboForm"="c:\program files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2011-12-06 107000]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"PowerMate"="c:\program files (x86)\Griffin Technology\PowerMate\PowerMate.exe" [2007-12-07 385024]
"PlantSmart"="c:\program files (x86)\PlantSmart\PlantSmart.exe" [2011-03-21 1765392]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-08-10 1353080]
"Synergy Server"="c:\program files\Synergy\synergys.exe" [2011-06-18 982528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-19 113288]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-01-19 43632]
"ASUS Ai Charger"="c:\program files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe" [2010-10-19 465536]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2011-11-11 205336]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"BrStsMon00"="c:\program files (x86)\Browny02\Brother\BrStMonW.exe" [2010-06-10 2621440]
"PaperPort PTD"="c:\program files (x86)\Nuance\PaperPort\pptd40nt.exe" [2011-08-13 30568]
"IndexSearch"="c:\program files (x86)\Nuance\PaperPort\IndexSearch.exe" [2011-08-13 46952]
"PPort14reminder"="c:\program files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" [2011-05-16 333088]
"PDFCreHook"="c:\program files (x86)\Nuance\PDFCreate\pdfcreate7hook.exe" [2011-06-28 605032]
"PDF7 Registry Controller"="c:\program files (x86)\Nuance\PDFCreate\RegistryController.exe" [2011-06-28 140136]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"vmware-tray"="c:\program files (x86)\VMware\VMware Workstation\vmware-tray.exe" [2011-08-23 103536]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-04-30 284440]
"AirPort Base Station Agent"="c:\program files (x86)\AirPort\APAgent.exe" [2009-11-12 771360]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-03-07 421736]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"OfficeSubscriptionAgent"="c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\osaui.exe" [2011-11-16 932160]
.
c:\users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Asset UPnP uMediaLibrary.lnk - c:\program files (x86)\Illustrate\dBpoweramp\uMediaLibrary.exe [2011-6-16 1063936]
Asset UPnP.lnk - c:\program files (x86)\Illustrate\dBpoweramp\Asset-uPNP.exe [2011-6-16 1600000]
Dropbox.lnk - c:\users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe [N/A]
TwonkyManager.lnk - c:\program files (x86)\TwonkyMedia\MediaManager\TwonkyMediaManager.exe [2011-9-21 8208935]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
SolidWorks Background Downloader.lnk - c:\program files (x86)\Common Files\SolidWorks Installation Manager\BackgroundDownloading\sldBgDwld.exe [2011-11-6 1826600]
Spyder3Utility.lnk - c:\program files (x86)\Datacolor\Spyder3Elite\Utility\Spyder3Utility.exe [2010-6-4 7667970]
WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2011-3-9 4236288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi1"=VirtualMIDISynth\VirtualMIDISynth.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp msoidssp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 BULKUSB;MF Digital Robots;c:\windows\system32\Drivers\BREADUSB64.sys [2011-06-17 30288]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-05-01 123816]
R2 Dyn Updater;Dyn Updater;c:\program files (x86)\DynDNS Updater\DynUpSvc.exe [2011-11-15 95608]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-06-08 160944]
R2 VMwareHostd;VMware Workstation Server;c:\program files (x86)\VMware\VMware Workstation\vmware-hostd.exe [2011-08-22 11837440]
R3 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2011-04-23 285280]
R3 AssetUPnP;AssetUPnP;c:\program files (x86)\Illustrate\dBpoweramp\Asset-UPnPService.exe [2011-06-16 77824]
R3 ATHDFU;Atheros Valkyrie USB BootROM;c:\windows\system32\Drivers\AthDfu.sys [2010-10-27 55336]
R3 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R3 bmdrvr;Modified Clusters Tracking Driver;SysWOW64\drivers\bmdrvr.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2010-10-27 301680]
R3 CLDTVHNService;CLDTVHNService;c:\program files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe [2009-09-18 75048]
R3 CoordinatorServiceHost;SW Distributed TS Coordinator Service;c:\program files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [2010-10-05 87336]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-04-22 1431888]
R3 fussvc;Windows App Certification Kit Fast User Switching Utility Service;c:\program files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-05-19 139776]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-03 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [2011-08-26 13672]
R3 Media Center 17 Service;Media Center 17 Service;c:\program files (x86)\J River\Media Center 17\JRService.exe [2012-07-18 394920]
R3 mi-raysat_3dsmax2011_64;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit;c:\program files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe [2010-03-09 86016]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-11 113120]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-21 98688]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-27 291696]
R3 Qsonix Audio Playback Service;Qsonix Audio Playback Service;d:\qsonix\Qsonix.Audio.Player.WindowsService.exe [2011-09-05 7168]
R3 Qsonix Central Service;Qsonix Central Service;c:\projects\Qsonix\QsonixWorkspace.root\QsonixCentral.WindowsService\bin\Debug\qsonixcentral.windowsservice.exe [2011-09-29 8704]
R3 Qsonix Diagnostics Service;Qsonix Diagnostics Service;d:\qsonix\Qsonix.Diagnostics.WindowsService.exe [2011-09-05 6656]
R3 Qsonix Logging Service;Qsonix Logging Service;d:\qsonix\Qsonix.Logging.WindowsService.exe [2011-09-05 7168]
R3 Qsonix Update Service;Qsonix Update Service;d:\qsonix\Qsonix.Update.WindowsService.exe [2011-09-05 7168]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\program files\SiSoftware\SiSoftware Sandra Professional Business 2011c\RpcAgentSrv.exe [2009-08-11 93848]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Test Authentication Service;Test Authentication Service;c:\projects\test\AuthenticationService.root\AuthenticationService\bin\Debug\AuthenticationService.exe [2011-08-30 6656]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 TwonkyMedia;TwonkyMedia;c:\program files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe [2011-09-21 509704]
R3 TwonkyWebDav;TwonkyWebDav;c:\program files (x86)\TwonkyMedia\twonkywebdav.exe [2011-09-21 245760]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736]
R3 Viewpoint Service;Viewpoint Service;c:\program files (x86)\Viewpoint\Common\ViewpointService.exe [2008-04-04 30152]
R3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2011-01-19 68440]
R3 VSPerfDrv110;Performance Tools Driver 11.0;c:\program files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [2012-04-02 71960]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-16 1255736]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2011-02-17 14464]
R3 WMZuneComm;Zune Windows Mobile Connectivity Service;c:\program files\Zune\WMZuneComm.exe [2011-08-05 306400]
R4 AcronisAgent;Acronis Remote Agent Service;c:\program files (x86)\Common Files\Acronis\Agent\agent.exe [2010-10-23 1906576]
R4 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-04-23 3246040]
R4 DMS;Acronis Disk Management Service;c:\program files (x86)\Acronis\DiskDirectorAdvanced\mms.exe [2010-10-23 4632864]
R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-10 61976]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]
R4 RsFx0200;RsFx0200 Driver;c:\windows\system32\DRIVERS\RsFx0200.sys [2012-02-11 334936]
R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 597080]
S0 AiCharger;ASUS Charger Driver;c:\windows\system32\DRIVERS\AiCharger.sys [2010-10-21 14592]
S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys [2010-08-27 297000]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2011-04-23 1263200]
S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [2011-08-08 116336]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-07-18 283200]
S1 Uim_VIM;UIM Virtual Image Plugin;c:\windows\system32\Drivers\uim_vimx64.sys [2012-06-04 389968]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2010-10-27 52896]
S2 File Backup;File Backup Service;c:\program files (x86)\Workspace\offSyncService.exe [2012-07-18 1174824]
S2 HTCMonitorService;HTCMonitorService;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2012-06-09 87368]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [2010-08-12 133800]
S2 MsDepSvc;Web Deployment Agent Service;c:\program files\IIS\Microsoft Web Deploy\MsDepSvc.exe [2011-04-02 67400]
S2 msoidsvc;Microsoft Online Services Sign-in Assistant;c:\program files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE [2012-05-18 2079520]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\nlssrv32.exe [2010-12-07 66560]
S2 ntk_dtv;ntk_dtv;c:\program files (x86)\DirecTV\DirecTV\Kernel\DMP\ntk_dtv_64.sys [2009-09-18 82416]
S2 osubsvc;Microsoft Office 2010 Subscription Agent;c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\osa.exe [2011-11-16 493384]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-04-13 88576]
S2 PDFProFiltSrvPP;PDFProFiltSrvPP;c:\program files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [2011-08-13 138600]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 Te.Service;Te.Service;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-05-19 127488]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2011-08-22 846448]
S2 vmware-converter-agent;VMware vCenter Converter Standalone Agent;c:\program files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [2011-08-20 423536]
S2 vmware-converter-server;VMware vCenter Converter Standalone Server;c:\program files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2011-08-20 423536]
S2 vmware-converter-worker;VMware vCenter Converter Standalone Worker;c:\program files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2011-08-20 423536]
S2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared);SysWOW64\drivers\vstor2-mntapi10-shared.sys [x]
S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768]
S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896]
S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920]
S2 wgsslvpnsrc;WatchGuard SSLVPN Service;c:\program files (x86)\WatchGuard\WatchGuard Mobile VPN with SSL\wgsslvpnsrc.exe [2012-06-13 101376]
S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2010-10-27 38248]
S3 BrYNSvc;BrYNSvc;c:\program files (x86)\Browny02\BrYNSvc.exe [2010-01-25 245760]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2010-10-27 31080]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2010-10-27 203624]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2010-10-27 58992]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2010-10-27 156520]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2010-10-27 279152]
S3 cmudaxp;ASUS Xonar Essence STX Audio Interface;c:\windows\system32\drivers\cmudaxp.sys [2011-03-10 2725376]
S3 dc3d;MS Hardware Device Detection Driver;c:\windows\system32\DRIVERS\dc3d.sys [2011-05-18 47616]
S3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2012-01-18 351136]
S3 LVUVC64;QuickCam Orbit/Sphere AF(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2012-01-18 4865568]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2011-09-19 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2011-09-19 181248]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
S3 RAMDiskVE;RAMDiskVE;c:\windows\system32\Drivers\RAMDiskVE.sys [2012-04-29 73000]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2012-06-01 250984]
S3 Spyder3;Datacolor Spyder3;c:\windows\system32\DRIVERS\Spyder3.sys [2010-03-31 15360]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - NAL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
\shell\AutoRun\command - H:\Installer.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8af4ec1-c4e4-11e1-a22f-00268314d449}]
\shell\AutoRun\command - O:\HTC_Sync_Manager_PC.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8af4edc-c4e4-11e1-a22f-00268314d449}]
\shell\AutoRun\command - O:\HTC_Sync_Manager_PC.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ea6c1b2a-02b9-11e1-b5fd-00268314d449}]
\shell\AutoRun\command - H:\setup.exe
.
Contents of the 'Scheduled Tasks' folder
.
2012-08-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-389776879-4036487157-181669944-1000Core.job
- c:\users\Kelly\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-18 20:56]
.
2012-08-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-389776879-4036487157-181669944-1000UA.job
- c:\users\Kelly\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-18 20:56]
.
2012-08-16 c:\windows\Tasks\SyncBack Backup.job
- c:\program files (x86)\2BrightSparks\SyncBack\SyncBack.exe [2012-05-10 22:42]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 15:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\off0]
@="{8E33AEC3-C5F2-43C4-B048-9E3EB19B1DD5}"
[HKEY_CLASSES_ROOT\CLSID\{8E33AEC3-C5F2-43C4-B048-9E3EB19B1DD5}]
2012-07-03 22:20 1308432 ----a-w- c:\program files (x86)\Workspace\offsyncext64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\off1]
@="{8E33AEC4-C5F2-43C4-B048-9E3EB19B1DD5}"
[HKEY_CLASSES_ROOT\CLSID\{8E33AEC4-C5F2-43C4-B048-9E3EB19B1DD5}]
2012-07-03 22:20 1308432 ----a-w- c:\program files (x86)\Workspace\offsyncext64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\TfsOverlayAdd]
@="{D4DD7FC6-066F-442a-A200-DD21649CF378}"
[HKEY_CLASSES_ROOT\CLSID\{D4DD7FC6-066F-442a-A200-DD21649CF378}]
2011-03-01 19:02 293184 ----a-w- c:\program files (x86)\Microsoft Team Foundation Server 2010 Power Tools\TfsShellExt.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\TfsOverlayControlled]
@="{EFF5DF4C-7662-4ed7-B533-837D3319D311}"
[HKEY_CLASSES_ROOT\CLSID\{EFF5DF4C-7662-4ed7-B533-837D3319D311}]
2011-03-01 19:02 293184 ----a-w- c:\program files (x86)\Microsoft Team Foundation Server 2010 Power Tools\TfsShellExt.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\TfsOverlayEdit]
@="{FF529703-3398-4c98-B88D-13F784CB10A2}"
[HKEY_CLASSES_ROOT\CLSID\{FF529703-3398-4c98-B88D-13F784CB10A2}]
2011-03-01 19:02 293184 ----a-w- c:\program files (x86)\Microsoft Team Foundation Server 2010 Power Tools\TfsShellExt.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\TfsOverlayLock]
@="{EAB6FC01-3462-4dc9-8C94-75582E3DC3CA}"
[HKEY_CLASSES_ROOT\CLSID\{EAB6FC01-3462-4dc9-8C94-75582E3DC3CA}]
2011-03-01 19:02 293184 ----a-w- c:\program files (x86)\Microsoft Team Foundation Server 2010 Power Tools\TfsShellExt.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\TfsOverlayRename]
@="{F15E94B9-9522-42bd-8A73-569BCBE5A5EA}"
[HKEY_CLASSES_ROOT\CLSID\{F15E94B9-9522-42bd-8A73-569BCBE5A5EA}]
2011-03-01 19:02 293184 ----a-w- c:\program files (x86)\Microsoft Team Foundation Server 2010 Power Tools\TfsShellExt.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2010-10-27 613536]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2010-10-27 379040]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-01 1873288]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
"Zune Launcher"="c:\program files\Zune\ZuneLauncher.exe" [2011-08-05 163552]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-30 11545192]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-27 1271168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\Drivers32]
"midi1"=VirtualMIDISynth\VirtualMIDISynth.dll