I feel like I've been hacked but scans don't show anything

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Hey everyone. I feel like my computer has been hacked but I have scanned with Super Anti-Spyware and Malware Bytes and nothing was found except for two Potentially Unwanted Programs which were found by Malware Bytes. The reason why I feel like my computer has been hacked is because sometimes when I am browsing the internet with Google Chrome, it'll suddenly started scrolling the page up and down slightly for no apparent reason. It drives me insane. I would appreciate some help in making sure I have not been hacked.
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: AMD Athlon(tm) II X2 215 Processor, AMD64 Family 16 Model 6 Stepping 2
Processor Count: 2
RAM: 4863 Mb
Graphics Card: NVIDIA GeForce 9100, 256 Mb
Hard Drives: C: Total - 599384 MB, Free - 521407 MB; D: Total - 10992 MB, Free - 1649 MB;
Motherboard: PEGATRON CORPORATION, VIOLET6
Antivirus: COMODO Antivirus, Updated and Enabled
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Here is the scan log from Malware Bytes:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 3/14/2015
Scan Time: 2:09:13 AM
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.03.14.01
Rootkit Database: v2015.02.25.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Gloria Deo

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 586576
Time Elapsed: 37 min, 7 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.MindSpark.A, C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_webfetti.dl.tb.ask.com_0.localstorage, Quarantined, [acbd4ff6147644f28de7db094db6e818],
PUP.Optional.MindSpark.A, C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_webfetti.dl.tb.ask.com_0.localstorage-journal, Quarantined, [81e820259af0c76f116374705ca722de],

Physical Sectors: 0
(No malicious items detected)


(end)
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
Hi Holly3278,
The MBAM scan shows the ask toolbar.
It, in turn, downloads various other things, being paid for each, of course.
-----------------------------------------------------------
Download and Run the Farbar Scan Tool
  • Download FRST64 and save to your Desktop.
  • Double click Frst64.exe to launch it.
  • FRST64 will start to run.
    • When the tool opens click Yes to disclaimer.
    • Press the Scan button.
    • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
    • Please post them in your next reply.
If you lose track of them, they will be saved in the same location as FRST64.exe
Feel free to use separate replies if it's more convenient.

By the way, you may want to check this out:
http://siliconangle.com/blog/2015/0...s-worse-than-superfish-breaks-https-security/
askey127
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Gloria Deo (administrator) on GLORIADEO-PC on 19-03-2015 17:28:49
Running from C:\Users\Gloria Deo\Downloads
Loaded Profiles: Gloria Deo (Available profiles: Gloria Deo & Ave Maria & Dee & HotDaddy & Team420 & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Comodo) C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\hp\Common\HPSupportSolutionsFrameworkService.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Efficient Software) C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PC-Doctor for Windows localizer] => C:\Program Files\PC-Doctor for Windows\localizer.exe [95728 2009-09-17] (PC-Doctor, Inc.)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-12] (COMODO)
HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [2045440 2010-09-02] (Eastman Kodak Company)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-06] (Realtek Semiconductor)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-12-11] (Eastman Kodak Company)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2015-02-22] (Logitech Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-02-28] (IObit)
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [TWC.Win7] => C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [54608 2015-02-24] ()
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-03-06] (Glarysoft Ltd)
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-03-06] (Piriform Ltd)
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {14ca1f27-9088-11e4-bf3e-da42e5d5b0d2} - G:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {4c201752-29d2-11e4-baf2-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-08-22] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Calendar Free.lnk
ShortcutTarget: Efficient Calendar Free.lnk -> C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe (Efficient Software)
BootExecute: autocheck autochk *
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-1565124662-2897034396-4106828886-1001] => http=127.0.0.1:8877;https=127.0.0.1:8877
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-12] (IObit)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
BHO: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-21] (Oracle Corporation)
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11] (Adblock)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-02-12] (IObit)
BHO-x32: Microsoft Live Search Toolbar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-21] (Oracle Corporation)
BHO-x32: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{BDA8AB6D-8468-4D36-8430-E8219CEC309D}: [NameServer] 156.154.70.22,156.154.71.22

FireFox:
========
FF ProfilePath: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034
FF DefaultSearchEngine: Google (SSL)
FF DefaultSearchEngine.US: Google
FF SelectedSearchEngine: Google (SSL)
FF Homepage: hxxp://www.newadvent.org/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-14] ()
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-21] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.9.1\npHDPlg.dll [2009-10-27] (Hulu LLC)
FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
FF SearchPlugin: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\searchplugins\search.xml [2015-03-14]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\google-ssl.xml [2014-08-24]
FF Extension: Xmarks - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
FF Extension: HTTPS-Everywhere - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
FF Extension: LastPass - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
FF Extension: WOT - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-03-06]
FF Extension: InvisibleHand - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-02]
FF Extension: Ghostery - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
FF Extension: Webutation - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2015-03-02]
FF Extension: NoScript - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-14]
FF Extension: DictionarySearch - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2015-03-02]
FF Extension: Adblock Plus - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-28]
FF Extension: Facebook Share Button - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d4e0dc9c-c356-438e-afbe-dca439f4399d}.xpi [2015-03-02]
FF HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR Profile: C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-18]
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2015-03-18]
CHR Extension: (Google Docs) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-18]
CHR Extension: (Google Drive) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-18]
CHR Extension: (YouTube) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-18]
CHR Extension: (Adblock Plus) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-18]
CHR Extension: (Share with Facebook, Twitter, Google+, Email) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmhnomplgoidnkjdacpmpccmaplnmk [2015-03-18]
CHR Extension: (Google Search) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-18]
CHR Extension: (Google Sheets) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-18]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-03-18]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-18]
CHR Extension: (Google Wallet) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-18]
CHR Extension: (Gmail) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-18]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-08-22]
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2015-02-12] (IObit)
R2 ChromiumSecureUpdater; C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe [2369736 2015-03-18] (Comodo)
S3 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-09-17] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-12] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-12] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
S3 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-17] (Comodo Security Solutions, Inc.)
S2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [78088 2014-08-26] (Hewlett-Packard Company)
S3 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-02-28] (IObit)
S3 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-02-12] (IObit)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2015-01-06] (Realtek Semiconductor)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2015-03-18] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2015-03-18] (Secunia)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 Disconnect Desktop Updater; No ImagePath
S3 OpenVPNService; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2014-06-26] (Windows (R) Win 7 DDK provider) [File not signed]
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-02-28] (IObit)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-02-21] (Glarysoft Ltd)
R1 HMD; C:\Windows\System32\DRIVERS\hmd.sys [14888 2014-06-26] ()
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-06] (REALiX(tm))
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2015-03-18] (Secunia)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-02-28] (IObit.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-02-28] (IObit.com)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-19 17:28 - 2015-03-19 17:30 - 00024734 _____ () C:\Users\Gloria Deo\Downloads\FRST.txt
2015-03-19 17:28 - 2015-03-19 17:29 - 00000000 ____D () C:\FRST
2015-03-19 17:28 - 2015-03-19 17:28 - 02095616 _____ (Farbar) C:\Users\Gloria Deo\Downloads\FRST64.exe
2015-03-18 07:29 - 2015-03-18 07:29 - 00001229 _____ () C:\Users\Public\Desktop\Internet (Chromium Secure).lnk
2015-03-18 07:27 - 2015-03-18 07:28 - 50556688 _____ (Comodo) C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe
2015-03-18 07:21 - 2015-03-18 07:21 - 00002261 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-18 07:21 - 2015-03-18 07:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-18 05:08 - 2015-03-18 05:08 - 00849352 _____ () C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe
2015-03-18 05:08 - 2015-03-18 05:08 - 00002054 _____ () C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk
2015-03-18 05:08 - 2015-03-18 05:08 - 00000000 ____D () C:\ProgramData\IsolatedStorage
2015-03-18 04:55 - 2015-03-18 04:55 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2015-03-18 04:45 - 2015-03-18 04:45 - 05490752 _____ (Secunia) C:\Users\Gloria Deo\Downloads\PSISetup (1).exe
2015-03-17 23:28 - 2015-03-17 23:30 - 35124200 _____ () C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP
2015-03-16 12:56 - 2015-03-19 17:19 - 00000112 _____ () C:\Windows\setupact.log
2015-03-16 12:56 - 2015-03-19 17:18 - 00005446 _____ () C:\Windows\PFRO.log
2015-03-16 12:56 - 2015-03-16 12:56 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-16 12:55 - 2015-03-16 12:55 - 00000000 ____H () C:\asc_rdflag
2015-03-14 22:08 - 2015-03-14 22:09 - 47391392 _____ (Disconnect) C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe
2015-03-13 20:44 - 2015-03-13 20:44 - 00345263 _____ () C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe
2015-03-10 16:05 - 2015-03-10 16:05 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-10 16:04 - 2015-03-10 16:04 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-10 16:04 - 2015-03-10 16:04 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-10 16:04 - 2015-03-10 16:04 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-10 16:04 - 2015-03-10 16:04 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-10 16:04 - 2015-03-10 16:04 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-10 16:04 - 2015-03-10 16:04 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-10 16:04 - 2015-03-10 16:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-10 16:03 - 2015-02-19 23:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-10 16:02 - 2015-03-10 16:02 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-10 16:02 - 2015-03-10 16:02 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-10 16:02 - 2015-03-10 16:02 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-10 16:02 - 2015-03-10 16:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-10 16:02 - 2015-03-10 16:02 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-10 16:02 - 2015-03-10 16:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-10 16:02 - 2015-02-19 22:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-10 16:00 - 2015-03-10 16:00 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-10 16:00 - 2015-03-10 16:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-08 20:02 - 2015-03-08 20:02 - 00000201 _____ () C:\Users\Gloria Deo\Documents\Kodak Digital Camera Support.txt
2015-03-06 11:21 - 2015-03-06 11:21 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-06 11:21 - 2015-03-06 11:21 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-06 11:08 - 2015-03-06 11:08 - 14299648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 11532704 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-06 11:08 - 2015-03-06 11:08 - 10387456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 07621632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 03155968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 02304000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 01705984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 01530400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvencodemft.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 01317408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00991744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00733728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00678432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00539680 _____ (NVIDIA Corporation) C:\Windows\system32\nvudisp.exe
2015-03-06 11:08 - 2015-03-06 11:08 - 00322080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00256544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod1510.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00011168 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvBridge.kmd
2015-03-06 11:00 - 2015-03-06 11:00 - 00001408 _____ () C:\Users\Gloria Deo\Documents\cc_20150306_100015.reg
2015-03-06 10:57 - 2015-03-06 10:57 - 05325696 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup503.exe
2015-03-06 10:51 - 2015-03-06 10:51 - 14980336 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe
2015-03-06 10:46 - 2015-03-06 10:46 - 00243368 _____ () C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe
2015-02-28 16:23 - 2015-02-28 16:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-02-28 01:04 - 2015-02-28 01:04 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Old Firefox Data
2015-02-25 06:01 - 2015-01-08 19:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 06:01 - 2015-01-08 19:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 05:51 - 2015-02-25 05:51 - 00000000 ____D () C:\Users\HotDaddy\AppData\Local\Logitech® Webcam Software
2015-02-24 04:41 - 2015-02-24 04:41 - 00002771 _____ () C:\Users\Public\Desktop\Desktop Weather.lnk
2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Weather Channel
2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\Program Files (x86)\The Weather Channel
2015-02-23 06:51 - 2015-02-23 06:52 - 43736135 _____ (XXXChurch) C:\Users\Gloria Deo\Downloads\X3Watch.exe
2015-02-23 03:17 - 2015-02-23 03:17 - 05007216 _____ (Adobe Systems Inc.) C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe
2015-02-23 03:17 - 2015-02-23 03:17 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2015-02-23 03:10 - 2015-02-23 03:10 - 00000000 ____D () C:\Users\Gloria Deo\dwhelper
2015-02-22 02:51 - 2015-02-22 02:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Logitech® Webcam Software
2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Leadertech
2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\ProgramData\LogiShrd
2015-02-22 02:47 - 2015-02-22 02:48 - 00000000 ____D () C:\Program Files (x86)\Logitech
2015-02-22 02:47 - 2015-02-22 02:47 - 00001626 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk
2015-02-22 02:47 - 2015-02-22 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-02-22 02:22 - 2015-02-22 02:24 - 74637872 _____ (Logitech, Inc.) C:\Users\Gloria Deo\Downloads\lws251.exe
2015-02-21 00:32 - 2015-03-19 17:20 - 00000342 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2015-02-21 00:32 - 2015-03-19 17:20 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2015-02-21 00:32 - 2015-03-06 10:52 - 00002990 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
2015-02-21 00:32 - 2015-03-06 10:52 - 00002656 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2015-02-21 00:32 - 2015-03-06 10:52 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-02-21 00:32 - 2015-03-06 10:52 - 00001086 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-02-21 00:32 - 2015-02-21 00:32 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-02-21 00:32 - 2015-02-21 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-02-21 00:24 - 2015-02-21 00:25 - 14952744 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe
2015-02-21 00:15 - 2015-02-21 00:15 - 00007464 _____ () C:\Users\Gloria Deo\Documents\cc_20150220_231535.reg
2015-02-21 00:13 - 2015-02-21 00:13 - 05325208 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup502.exe
2015-02-21 00:06 - 2015-02-21 00:12 - 00000000 ____D () C:\Program Files (x86)\Disconnect
2015-02-21 00:06 - 2015-02-21 00:06 - 00003652 _____ () C:\Windows\System32\Tasks\Disconnect Desktop Updater
2015-02-21 00:05 - 2015-02-21 00:05 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Disconnect
2015-02-20 23:47 - 2015-02-20 23:47 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Tor Browser
2015-02-20 23:46 - 2015-02-20 23:47 - 34324222 _____ () C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe
2015-02-20 22:18 - 2015-02-20 22:18 - 00000000 __SHD () C:\Users\Gloria Deo\AppData\Local\EmieBrowserModeList
2015-02-18 22:00 - 2015-02-18 22:00 - 05329480 _____ (Secunia) C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe
2015-02-18 21:59 - 2015-02-18 22:01 - 32194960 _____ (IObit ) C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe
2015-02-18 21:59 - 2015-02-18 22:00 - 11414784 _____ (IObit ) C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe
2015-02-18 01:57 - 2015-02-18 01:57 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
2015-02-18 01:44 - 2015-03-06 11:03 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
2015-02-18 01:44 - 2015-02-18 01:44 - 00691576 _____ (Yahoo! Inc.) C:\Users\Gloria Deo\Downloads\msgr11us.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-19 17:28 - 2015-01-06 12:44 - 00019296 _____ () C:\Windows\system32\Drivers\fvstore.dat
2015-03-19 17:28 - 2014-08-22 01:41 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2015-03-19 17:28 - 2011-10-27 04:38 - 02070650 _____ () C:\Windows\WindowsUpdate.log
2015-03-19 17:25 - 2009-07-14 01:13 - 00896284 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-19 17:21 - 2014-08-22 06:18 - 00002892 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Gloria Deo)
2015-03-19 17:20 - 2014-08-26 14:38 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-19 17:20 - 2014-08-24 05:39 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-19 17:19 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-18 13:04 - 2014-09-03 08:07 - 00000000 ____D () C:\Users\Gloria Deo\Documents\Efficient Organizer AutoBackup
2015-03-18 13:04 - 2014-09-01 23:16 - 01851392 _____ () C:\Users\Gloria Deo\Documents\MyCalendar.ecfx
2015-03-18 13:03 - 2014-08-22 04:09 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\.purple
2015-03-18 13:02 - 2014-08-24 05:39 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-18 12:57 - 2014-12-01 20:57 - 00002187 _____ () C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-03-18 12:42 - 2014-08-22 02:27 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-18 12:09 - 2014-10-05 13:43 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job
2015-03-18 09:09 - 2014-10-05 13:43 - 00000876 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job
2015-03-18 07:29 - 2014-08-22 01:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-03-18 07:29 - 2014-08-22 01:39 - 00000000 ____D () C:\Program Files (x86)\Comodo
2015-03-18 07:21 - 2014-08-24 05:38 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Google
2015-03-18 07:20 - 2014-08-24 05:38 - 00000000 ____D () C:\Program Files (x86)\Google
2015-03-18 07:17 - 2014-09-27 00:23 - 00002922 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Gloria_Deo
2015-03-18 05:42 - 2014-08-28 17:48 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-18 04:55 - 2014-11-28 08:02 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
2015-03-18 04:45 - 2015-02-16 12:17 - 00000000 ____D () C:\Program Files (x86)\Secunia
2015-03-16 13:04 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-16 13:04 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-16 12:55 - 2014-08-27 05:07 - 75374592 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-03-16 12:55 - 2014-08-27 05:07 - 00925696 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-03-16 12:55 - 2014-08-27 05:07 - 00172032 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2015-03-16 12:55 - 2014-08-27 05:07 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-03-15 20:43 - 2014-08-22 12:20 - 00509440 _____ (Tech Support Guy System) C:\Users\Gloria Deo\Downloads\SysInfo.exe
2015-03-14 22:18 - 2015-01-06 13:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Adobe
2015-03-14 22:17 - 2014-08-22 02:27 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-14 22:17 - 2014-08-22 02:27 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-14 22:17 - 2014-08-22 02:27 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-13 20:44 - 2014-08-22 04:07 - 00000000 ____D () C:\Program Files (x86)\Pidgin
2015-03-12 16:29 - 2015-02-13 07:47 - 04575232 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2015-03-12 16:29 - 2014-10-05 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-03-11 09:55 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2015-03-11 09:07 - 2009-07-14 01:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-11 03:37 - 2009-07-14 00:45 - 00358648 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 03:13 - 2014-08-22 02:39 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 03:03 - 2014-08-22 02:39 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-06 11:11 - 2011-10-27 04:43 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-06 11:10 - 2009-07-29 11:21 - 02589728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe
2015-03-06 11:08 - 2009-07-18 05:41 - 09480192 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-06 11:08 - 2009-07-18 05:41 - 04363776 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-03-06 11:08 - 2009-07-18 05:41 - 01229312 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-03-06 10:58 - 2014-09-28 04:43 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-03-06 10:58 - 2014-09-28 04:43 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-28 16:23 - 2014-12-01 19:53 - 00001179 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-02-25 06:12 - 2014-09-15 06:15 - 11159984 _____ ( ) C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe
2015-02-25 00:45 - 2014-08-28 17:48 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2015-02-24 04:39 - 2014-08-22 10:18 - 04090536 _____ (The Weather Channel) C:\Users\Gloria Deo\Downloads\twcsetup.exe
2015-02-24 04:39 - 2014-08-22 10:18 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Downloaded Installations
2015-02-23 03:10 - 2014-08-22 01:04 - 00000000 ____D () C:\Users\Gloria Deo
2015-02-22 02:48 - 2014-08-22 02:21 - 00012673 _____ () C:\Windows\system32\lvcoinst.log
2015-02-22 02:48 - 2014-08-22 02:21 - 00000000 ____D () C:\Program Files\Common Files\logishrd
2015-02-22 02:47 - 2012-09-21 15:09 - 00542568 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2.dll
2015-02-22 02:47 - 2012-09-21 15:09 - 00538472 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2RC.dll
2015-02-22 02:47 - 2012-09-21 15:09 - 00305000 _____ (Logitech Inc.) C:\Windows\SysWOW64\lvcodec2.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\SysWOW64\LogiDPP.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\system32\LogiDPP.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\SysWOW64\DevManagerCore.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\system32\DevManagerCore.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\SysWOW64\LogiDPPApp.exe
2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\system32\LogiDPPApp.exe
2015-02-22 02:47 - 2012-09-21 15:04 - 04763680 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvuvc64.sys
2015-02-22 02:47 - 2012-09-21 15:04 - 00768288 _____ (Logitech Inc.) C:\Windows\system32\LVUI64.dll
2015-02-22 02:47 - 2012-09-21 15:04 - 00560416 _____ (Logitech Inc.) C:\Windows\system32\LVUIRC64.dll
2015-02-22 02:47 - 2012-09-21 15:04 - 00351520 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvrs64.sys
2015-02-22 02:47 - 2012-09-21 15:04 - 00262432 _____ (Logitech Inc.) C:\Windows\system32\lvco1351823.dll
2015-02-22 02:47 - 2012-09-21 15:04 - 00175392 _____ (Logitech Inc.) C:\Windows\system32\lvcod64.dll
2015-02-21 00:38 - 2014-12-01 20:58 - 00001246 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
2015-02-21 00:38 - 2014-12-01 19:55 - 00003250 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
2015-02-21 00:38 - 2014-12-01 19:55 - 00003194 _____ () C:\Windows\System32\Tasks\Driver Booster Update
2015-02-21 00:38 - 2014-12-01 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-02-21 00:35 - 2014-08-22 10:23 - 00000000 ____D () C:\ProgramData\GlarySoft
2015-02-21 00:32 - 2014-08-22 10:21 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\GlarySoft
2015-02-21 00:26 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\tracing
2015-02-18 01:42 - 2015-02-16 16:19 - 00000000 ____D () C:\Program Files (x86)\Trillian

==================== Files in the root of some directories =======

2014-10-21 11:17 - 2014-10-21 11:17 - 14016000 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-10-16 08:01 - 2014-10-16 08:01 - 0000236 _____ () C:\Users\Gloria Deo\AppData\Local\LaunchHomeCenter.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-15 01:41

==================== End Of Log ============================
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Gloria Deo at 2015-03-19 17:31:05
Running from C:\Users\Gloria Deo\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.1.0 - IObit)
aioscnnr (x32 Version: 5.8.10.0 - Your Company Name) Hidden
aioscnnr (x32 Version: 7.6.13.10 - Your Company Name) Hidden
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
center (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
Chromium Secure (HKLM-x32\...\Chromium Secure) (Version: 36.1.1.3 - Comodo)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 26.0.0.2 - COMODO)
COMODO Internet Security Premium (HKLM\...\{2736B6BD-31EC-4FC8-A48C-F0A5C914C0B6}) (Version: 7.0.55655.4142 - COMODO Security Solutions Inc.)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Cursed Fates - The Headless Horseman (HKLM-x32\...\Cursed Fates - The Headless Horseman) (Version: - )
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2115 - CyberLink Corp.)
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
Driver Booster 2.2 (HKLM-x32\...\Driver Booster_is1) (Version: 2.2 - IObit)
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard)
DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224 - Hewlett-Packard) Hidden
Efficient Calendar Free 3.71 (HKLM-x32\...\Efficient Calendar Free_is1) (Version: - Efficient Software)
Emperor: Rise of the Middle Kingdom (HKLM-x32\...\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}) (Version: - )
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
essentials (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
e-Sword (HKLM-x32\...\{463178C4-E707-41EE-BE8A-080C62BF526D}) (Version: 10.04.0000 - Rick Meyers)
Fairy Tale Mysteries - The Beanstalk (HKLM-x32\...\Fairy Tale Mysteries - The Beanstalk) (Version: - )
Fairy Tale Mysteries - The Puppet Thief (HKLM-x32\...\Fairy Tale Mysteries - The Puppet Thief) (Version: - )
GeekBuddy (HKLM\...\{8EE6F031-FD37-45A2-95CE-696777FC4EC6}) (Version: 4.13.120 - Comodo Security Solutions Inc)
Glary Utilities 5.20 (HKLM-x32\...\Glary Utilities 5) (Version: 5.20.0.35 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
Grim Legends - The Forsaken Bride (HKLM-x32\...\Grim Legends - The Forsaken Bride) (Version: - )
Guifications Plugin (remove only) (HKLM-x32\...\pidgin-guifications) (Version: - )
Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5247.34 - PC-Doctor, Inc.)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP MediaSmart Demo (HKLM-x32\...\{9DEF9686-CCB2-47B7-BF83-B49EA21FA016}) (Version: 1.00.0000 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.1.3317 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.1.3422 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.1.0.1 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)
HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.11.0 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Hulu Desktop (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\HuluDesktop) (Version: 0.9.9 - Hulu LLC)
IObit Malware Fighter 3 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 3.0 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.2 - IObit)
Java 7 Update 75 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217075FF}) (Version: 7.0.750 - Oracle)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Kodak AIO Printer (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.8.5.2 - Eastman Kodak Company)
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2017 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.2017 - CyberLink Corp.) Hidden
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version: - LastPass)
Legends of Lost Relics (HKLM-x32\...\{FA2CC872-7DFA-438E-9F4D-A840E1D4D8A5}) (Version: 1.0.0 - On Hand Software)
LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LSI PCI-SV92EX Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.566.0 - Microsoft Live Search Toolbar)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard)
Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310 - Hewlett-Packard) Hidden
Mozilla Firefox 36.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 en-US)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NET Bible for e-Sword (version 9.x) (HKLM-x32\...\NET Bible for e-Sword (version 9.x)2.0) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ocr (x32 Version: 6.2.3.50 - Eastman Kodak Company) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
Pharaoh (HKLM-x32\...\Pharaoh) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3304 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3304 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3503 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3503 - CyberLink Corp.) Hidden
PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
PrivDog (HKLM-x32\...\PrivDog) (Version: 2.2.0.14 - privdog.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.2216 - CyberLink Corp.) Hidden
Saints down through the ages.dctx version e-Sword (HKLM-x32\...\{D7F1A6E9-5A60-4573-AFBD-4A047A57635E}_is1) (Version: e-Sword - BibleSupport.com)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.3 - IObit)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1130 - SUPERAntiSpyware.com)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Weather Channel App (HKLM-x32\...\{167158CE-1637-4167-8A1C-C2549EEA966A}) (Version: 1.00.0000 - The Weather Channel)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)

==================== Restore Points =========================

25-02-2015 06:01:29 Windows Update
05-03-2015 07:59:05 Scheduled Checkpoint
06-03-2015 11:07:53 Driver Booster : NVIDIA GeForce 9100
11-03-2015 03:00:42 Windows Update
18-03-2015 08:04:56 Scheduled Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0022FE9A-BB9B-4658-BAB6-584A88FEEA55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
Task: {0EB92B2C-6550-4E96-A43E-306A347A28AA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-14] (Adobe Systems Incorporated)
Task: {10948471-6129-4BF8-B10C-79944DCEF75B} - System32\Tasks\Uninstaller_SkipUac_Gloria_Deo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-02-12] (IObit)
Task: {160C0C30-EB3D-4D93-A4EE-4D32314D3FC3} - System32\Tasks\Disconnect Desktop Updater => C:\Program Files (x86)\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe
Task: {217F8EA8-8CDC-4173-89F8-F7DFC95534BE} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-06] (Glarysoft Ltd)
Task: {29246118-0833-4280-9221-9E52438004C0} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-02-12] (COMODO)
Task: {467532FA-56AB-4991-BA68-650EC27F8094} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
Task: {4CD0A399-C4C5-4402-9280-641E4127A267} - System32\Tasks\Driver Booster SkipUAC (Gloria Deo) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-02-21] (IObit)
Task: {51EC8623-DEA8-4E1A-8CBD-5AF847DD8BCC} - System32\Tasks\ASC8_SkipUac_Gloria Deo => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-02-12] (IObit)
Task: {6AB93227-F276-4945-94B6-342D58AAEF41} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-07-23] (IObit)
Task: {6AF0530F-9504-418B-902C-B879FB66AB09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-01-12] (Adobe Systems Incorporated)
Task: {6DF61375-742B-446C-867B-60364890FAA7} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-06] (Glarysoft Ltd)
Task: {75BB654E-A585-4458-8642-92C917CD69CF} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-02-21] (IObit)
Task: {773FC000-543E-4CF3-96DF-05B355609C6F} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {7A95C745-093E-495B-827F-7A49EDD588DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-06] (Piriform Ltd)
Task: {7FCF74AC-3E6B-4890-A615-37DB3704BE1E} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {895EE11C-D2B4-4EF6-AA33-AD701989ED91} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {988458CA-A0A3-4964-A020-0AC103B1563D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
Task: {A63D5E45-2000-4FAA-B081-3A5A4140E17E} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe [2014-11-04] (IObit)
Task: {AA7BBA5F-3DD3-47A9-8741-04CFABF80EF7} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-02-21] (IObit)
Task: {BEA28887-9CB0-489B-B3B3-A62A3B29FF47} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
Task: {C3D9DECF-327D-403D-B860-B56941FAEA80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
Task: {C675E25A-7D48-42C5-B4C8-156F3E0ACF7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
Task: {E0E7B229-211F-4077-BE68-E8B386D8FCFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe
Task: {E15D98A2-7DEE-4FD7-AD27-6FAEDC926EFA} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-22] (CyberLink)
Task: {EEAFD11E-49CE-4577-80FB-E335F507A838} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-02-12] (IObit)
Task: {F12A9FC8-45D8-47BD-B837-43C1CBA670A3} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-02-12] (IObit)
Task: {F51087E0-14CC-4B43-85B0-318AA6726492} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {F65E7AD3-F0D2-4C7A-980B-099AA05D01F6} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2013-04-15 18:39 - 2013-04-15 18:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2015-02-24 03:01 - 2015-02-24 04:41 - 00054608 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
2015-02-24 03:01 - 2015-02-24 03:01 - 01165144 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.UI.dll
2015-02-24 03:01 - 2015-02-24 03:01 - 00266592 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Services.dll
2015-02-24 03:01 - 2015-02-24 03:01 - 00115552 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Models.dll
2012-09-13 01:38 - 2015-02-22 02:47 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2014-12-01 20:57 - 2015-02-12 10:52 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\sqlite3.dll
2014-12-01 19:53 - 2015-02-28 16:23 - 00517408 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\sqlite3.dll
2014-12-01 20:57 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madExcept_.bpl
2014-12-01 20:57 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madBasic_.bpl
2014-12-01 20:57 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madDisAsm_.bpl
2014-09-21 03:20 - 2014-06-04 16:17 - 00892288 _____ () C:\Program Files (x86)\IObit\Smart Defrag 3\webres.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2009-10-22 21:50 - 2009-10-22 21:50 - 00931112 _____ () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
2015-03-02 01:39 - 2015-03-02 01:39 - 00080160 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
2014-09-21 03:20 - 2015-02-28 16:23 - 00182048 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2014-09-21 03:20 - 2015-02-28 16:23 - 00145184 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2014-12-01 20:57 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2014-12-01 20:57 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2014-12-01 20:57 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2014-12-01 20:57 - 2015-02-12 10:52 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
2015-03-14 22:14 - 2015-03-14 22:14 - 01020928 _____ () C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll
2015-03-14 22:17 - 2015-03-14 22:17 - 16858288 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AERTAC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\charmap.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CX64APO.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DevManagerCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LogiDPP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LogiDPPApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lvco1351823.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lvcod64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LVUI64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LVUIRC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcod.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcod1510.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcplui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdecodemft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvudisp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RCoInstII64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RegistryDefragBootTime.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RltkAPO64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RTCOM64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtDataProc64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtkApi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtPgEx64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRAPO64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRCOM.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRCOM64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRRPTR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tzres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WSManHTTPConfig.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WSManMigrationPlugin.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WsmAuto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WsmSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WsmWmiPl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\charmap.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\DevManagerCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\java.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\javaw.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\javaws.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LogiDPP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LogiDPPApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\lvcodec2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LVUI2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LVUI2RC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvdecodemft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvencodemft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\tzres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WSManHTTPConfig.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WSManMigrationPlugin.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WsmAuto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WsmSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WsmWmiPl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\lvrs64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\lvuvc64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\psi_mf_amd64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\RTKVHD64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\tdx.sys:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\advanced-systemcare-setup (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup502.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.1.0.163.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_ia64.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_SDK.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_x64.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-2.10.11.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdZnID

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 156.154.70.22 - 156.154.71.22

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GUDelayStartup => "c:\program files (x86)\glary utilities 5\startupmanager.exe" -delayrun
MSCONFIG\startupreg: tvncontrol => "c:\program files (x86)\common files\comodo\geekbuddyrsp.exe" -controlservice -slave
MSCONFIG\startupreg: TWC.Win7 => c:\program files (x86)\the weather channel\desktop weather\twc.win7.exe

==================== Accounts: =============================

Administrator (S-1-5-21-1565124662-2897034396-4106828886-500 - Administrator - Disabled)
Ave Maria (S-1-5-21-1565124662-2897034396-4106828886-1003 - Limited - Enabled) => C:\Users\Ave Maria
Dee (S-1-5-21-1565124662-2897034396-4106828886-1004 - Limited - Enabled) => C:\Users\Dee
Gloria Deo (S-1-5-21-1565124662-2897034396-4106828886-1001 - Administrator - Enabled) => C:\Users\Gloria Deo
Guest (S-1-5-21-1565124662-2897034396-4106828886-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-1565124662-2897034396-4106828886-1002 - Limited - Enabled)
HotDaddy (S-1-5-21-1565124662-2897034396-4106828886-1005 - Limited - Enabled) => C:\Users\HotDaddy
Team420 (S-1-5-21-1565124662-2897034396-4106828886-1006 - Limited - Enabled) => C:\Users\Team420

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0xc0000005
Fault offset: 0x00049b14
Faulting process id: 0x83c
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0x40000015
Fault offset: 0x00093534
Faulting process id: 0x29cc
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog


Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)


System errors:
=============
Error: (03/19/2015 05:25:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP Support Assistant Service service failed to start due to the following error:
%%1053

Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Assistant Service service to connect.

Error: (03/18/2015 05:00:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c000000500049b1483c01d0628a5bc3ae00C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe7540f530-ce7e-11e4-8ca7-e0cb4e58a427

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82400000150009353429cc01d0615943c4a5e8C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe381412c8-cd4d-11e4-bfda-e0cb4e58a427

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)


==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 215 Processor
Percentage of memory in use: 45%
Total physical RAM: 4863.24 MB
Available physical RAM: 2632.44 MB
Total Pagefile: 9724.66 MB
Available Pagefile: 7122.02 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (HP) (Fixed) (Total:585.34 GB) (Free:511.99 GB) NTFS
Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.74 GB) (Free:1.61 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Cleopatra) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 2EB6E298)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=585.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10.7 GB) - (Type=07 NTFS)

==================== End Of Log ============================
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
------------------------------------------------
Remove Programs Using Control Panel
From Start, Control Panel, click on Programs and Features
Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

Advanced SystemCare 8
GeekBuddy
IObit Malware Fighter 3
IObit Uninstaller
Java 7 Update 75
McAfee Security Scan Plus
Smart Defrag 3

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine
--------------------------------------------------------
Run A Fix With FRST
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
(Both on the Desktop is OK, or both in the same folder elsewhere)

Run FRST64 and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
If for some reason the tool needs a restart, please make sure you let the system restart normally.
The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

askey127
 

Attachments

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
------------------------------------------------
Remove Programs Using Control Panel
From Start, Control Panel, click on Programs and Features
Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

Advanced SystemCare 8
GeekBuddy
IObit Malware Fighter 3
IObit Uninstaller
Java 7 Update 75
McAfee Security Scan Plus
Smart Defrag 3

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine
--------------------------------------------------------
Run A Fix With FRST
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
(Both on the Desktop is OK, or both in the same folder elsewhere)

Run FRST64 and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
If for some reason the tool needs a restart, please make sure you let the system restart normally.
The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

askey127
I am not sure where the directory is at on my computer.
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Alright, I found the folder for the Farbar thing on the root of my hard drive but I didn't see the executable in there. I did have one in my downloads folder so I copied that over to the folder along with the other two log files. I then downloaded the file you provided to the same folder and ran it with the Fix button. It finished almost instantaneously so I'm not sure if it did anything or not. I'll post the log file in the next reply.
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by Gloria Deo at 2015-03-20 02:38:44 Run:1
Running from C:\FRST
Loaded Profiles: Gloria Deo (Available profiles: Gloria Deo & Ave Maria & Dee & HotDaddy & Team420 & Guest)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM\...\Run: [PC-Doctor for Windows localizer] => C:\Program Files\PC-Doctor for Windows\localizer.exe [95728 2009-09-17] (PC-Doctor, Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-02-28] (IObit)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-12] (IObit)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11] (Adblock)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-02-12] (IObit)
BHO-x32: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-21] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2015-02-12] (IObit)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-02-28] (IObit)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-02-28] (IObit)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-02-28] (IObit.com)
2015-02-28 16:23 - 2015-02-28 16:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-02-18 21:59 - 2015-02-18 22:01 - 32194960 _____ (IObit ) C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe
2015-02-18 21:59 - 2015-02-18 22:00 - 11414784 _____ (IObit ) C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe
2015-02-28 16:23 - 2014-12-01 19:53 - 00001179 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
AlternateDataStreams: C:\Windows\system32\RtPgEx64.dll:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe:$CmdZnID


*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\PC-Doctor for Windows localizer => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\IObit Malware Fighter => Value not found.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully.
"HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key not found.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} => Key not found.
HKCR\Wow6432Node\CLSID\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key not found.
HKCR\Wow6432Node\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key not found.
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => value deleted successfully.
HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2" => Key deleted successfully.
C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2" => Key deleted successfully.
C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll => Moved successfully.
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Value not found.
HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Key not found.
C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => Moved successfully.
AdvancedSystemCareService8 => Service not found.
IMFservice => Service not found.
McComponentHostService => Service not found.
FileMonitor => Service not found.
RegFilter => Service not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter" => File/Directory not found.
C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe => Moved successfully.
C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe => Moved successfully.
"C:\Users\Public\Desktop\IObit Malware Fighter.lnk" => File/Directory not found.
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit) => Error: No automatic fix found for this entry.
"C:\Windows\system32\RtPgEx64.dll" => ":$CmdTcID" ADS not found.
"C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe" => ":$CmdTcID" ADS not found.
C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe => ":$CmdZnID" ADS removed successfully.
"C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe" => ":$CmdZnID" ADS not found.

==== End of Fixlog 02:38:45 ====
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
Holly,
That Fix looks good.
Let's make things much easier going forward.
Firefox will be your default browser going forward, at least until we are finished cleaning.
Please read and follow these instructions carefully.
-----------------------------------------------------------
Change Settings to View File Extensions and Hidden Files
Go to Start > Control Panel > Folder Options, and click on the View tab.
Under "Files and Folders",
  • Uncheck "Hide Extensions for known File Types"
  • Check "Show Hidden Files Folders and Drives"
Click Apply and OK.
---------------------------------------------------------
Set Firefox as Default and Always Ask Where to Save Downloads
Open Firefox, then hit the Alt key if necessary, so you can see the menu bar at the top.
In the top menu bar, click on Tools, and select Options.
In the new dialog window that pops up:
Click on the General icon in the top bar, and Click the button labeled Make Firefox My Default browser
Click the radiobutton labeled Always ask me where to save files
Click the checkbox labeled Always check to see if Firefox is the Default browser on startup.
Click OK.
From now on, when you download anything, ALWAYS choose Save, (not Open) and then choose where to save it, and click OK.
-----------------------------------------------------------
We are going to start over with the FRST tool. Ignore the one in the C:\FRST folder.
Download and Run the Farbar Scan Tool
Download FRST64 and save to your Desktop.
IF YOU CAN NOW SEE FRST64.EXE on your desktop, please proceed.
IF YOU CANNOT SEE FRST64.EXE on your desktop, stop here and tell me.
  • Double click Frst64.exe to launch it.
  • FRST64 will start to run.
    • When the tool opens click Yes to disclaimer.
    • Press the Scan button.
    • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
    • Please post them in your next reply.
If you lose track of them, they will be saved in the same location as FRST64.exe
Feel free to use separate replies if it's more convenient.

askey127
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Gloria Deo (administrator) on GLORIADEO-PC on 20-03-2015 18:56:16
Running from C:\Users\Gloria Deo\Desktop
Loaded Profiles: Gloria Deo (Available profiles: Gloria Deo & Ave Maria & Dee & HotDaddy & Team420 & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Comodo) C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\hp\Common\HPSupportSolutionsFrameworkService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Efficient Software) C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
() C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-12] (COMODO)
HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [2045440 2010-09-02] (Eastman Kodak Company)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-06] (Realtek Semiconductor)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-12-11] (Eastman Kodak Company)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2015-02-22] (Logitech Inc.)
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [TWC.Win7] => C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [54608 2015-02-24] ()
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-03-06] (Glarysoft Ltd)
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-03-06] (Piriform Ltd)
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {14ca1f27-9088-11e4-bf3e-da42e5d5b0d2} - G:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {4c201752-29d2-11e4-baf2-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-08-22] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Calendar Free.lnk
ShortcutTarget: Efficient Calendar Free.lnk -> C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe (Efficient Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1565124662-2897034396-4106828886-1001] => http=127.0.0.1:8877;https=127.0.0.1:8877
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-21] (Oracle Corporation)
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO-x32: Microsoft Live Search Toolbar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-21] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
Tcpip\..\Interfaces\{BDA8AB6D-8468-4D36-8430-E8219CEC309D}: [NameServer] 156.154.70.22,156.154.71.22

FireFox:
========
FF ProfilePath: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034
FF DefaultSearchEngine: Google (SSL)
FF DefaultSearchEngine.US: Google
FF SelectedSearchEngine: Google (SSL)
FF Homepage: hxxp://www.newadvent.org/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-14] ()
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.9.1\npHDPlg.dll [2009-10-27] (Hulu LLC)
FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
FF SearchPlugin: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\searchplugins\search.xml [2015-03-20]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\google-ssl.xml [2014-08-24]
FF Extension: Xmarks - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
FF Extension: LastPass - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
FF Extension: WOT - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-03-06]
FF Extension: InvisibleHand - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-02]
FF Extension: Webutation - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2015-03-02]
FF Extension: NoScript - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-14]
FF Extension: DictionarySearch - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2015-03-02]
FF Extension: Adblock Plus - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-28]
FF Extension: Facebook Share Button - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d4e0dc9c-c356-438e-afbe-dca439f4399d}.xpi [2015-03-02]

Chrome:
=======
CHR Profile: C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-18]
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2015-03-18]
CHR Extension: (Google Docs) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-18]
CHR Extension: (Google Drive) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-18]
CHR Extension: (YouTube) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-18]
CHR Extension: (Adblock Plus) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-18]
CHR Extension: (Share with Facebook, Twitter, Google+, Email) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmhnomplgoidnkjdacpmpccmaplnmk [2015-03-18]
CHR Extension: (Google Search) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-18]
CHR Extension: (Google Sheets) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-18]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-03-18]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-18]
CHR Extension: (Google Wallet) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-18]
CHR Extension: (Gmail) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-18]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 ChromiumSecureUpdater; C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe [2369736 2015-03-18] (Comodo)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-12] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-12] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [78088 2014-08-26] (Hewlett-Packard Company)
S3 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
S3 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-02-12] (IObit)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2015-01-06] (Realtek Semiconductor)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2015-03-18] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2015-03-18] (Secunia)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 Disconnect Desktop Updater; No ImagePath
S3 OpenVPNService; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-02-21] (Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-06] (REALiX(tm))
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2015-03-18] (Secunia)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-20 18:56 - 2015-03-20 18:56 - 00020344 _____ () C:\Users\Gloria Deo\Desktop\FRST.txt
2015-03-20 18:55 - 2015-03-20 18:55 - 02095616 _____ (Farbar) C:\Users\Gloria Deo\Desktop\FRST64.exe
2015-03-19 17:31 - 2015-03-19 17:36 - 00059549 _____ () C:\Users\Gloria Deo\Downloads\Addition.txt
2015-03-19 17:28 - 2015-03-20 18:56 - 00000000 ____D () C:\FRST
2015-03-19 17:28 - 2015-03-19 17:36 - 00066803 _____ () C:\Users\Gloria Deo\Downloads\FRST.txt
2015-03-19 17:28 - 2015-03-19 17:28 - 02095616 _____ (Farbar) C:\Users\Gloria Deo\Downloads\FRST64.exe
2015-03-18 07:29 - 2015-03-18 07:29 - 00001229 _____ () C:\Users\Public\Desktop\Internet (Chromium Secure).lnk
2015-03-18 07:27 - 2015-03-18 07:28 - 50556688 _____ (Comodo) C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe
2015-03-18 07:21 - 2015-03-20 14:03 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-18 07:21 - 2015-03-18 07:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-18 05:08 - 2015-03-18 05:08 - 00849352 _____ () C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe
2015-03-18 05:08 - 2015-03-18 05:08 - 00002054 _____ () C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk
2015-03-18 05:08 - 2015-03-18 05:08 - 00000000 ____D () C:\ProgramData\IsolatedStorage
2015-03-18 04:55 - 2015-03-18 04:55 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2015-03-18 04:45 - 2015-03-18 04:45 - 05490752 _____ (Secunia) C:\Users\Gloria Deo\Downloads\PSISetup (1).exe
2015-03-17 23:28 - 2015-03-17 23:30 - 35124200 _____ () C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP
2015-03-16 12:56 - 2015-03-19 20:29 - 00013802 _____ () C:\Windows\PFRO.log
2015-03-16 12:56 - 2015-03-19 20:29 - 00000168 _____ () C:\Windows\setupact.log
2015-03-16 12:56 - 2015-03-16 12:56 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-16 12:55 - 2015-03-16 12:55 - 00000000 ____H () C:\asc_rdflag
2015-03-14 22:08 - 2015-03-14 22:09 - 47391392 _____ (Disconnect) C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe
2015-03-13 20:44 - 2015-03-13 20:44 - 00345263 _____ () C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe
2015-03-10 16:05 - 2015-03-10 16:05 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-10 16:05 - 2015-03-10 16:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-10 16:04 - 2015-03-10 16:04 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-10 16:04 - 2015-03-10 16:04 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-10 16:04 - 2015-03-10 16:04 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-10 16:04 - 2015-03-10 16:04 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-10 16:04 - 2015-03-10 16:04 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-10 16:04 - 2015-03-10 16:04 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-10 16:04 - 2015-03-10 16:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-10 16:04 - 2015-03-10 16:04 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-10 16:03 - 2015-03-10 16:03 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-10 16:03 - 2015-03-10 16:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-10 16:03 - 2015-03-10 16:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-10 16:03 - 2015-02-19 23:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-10 16:02 - 2015-03-10 16:02 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-10 16:02 - 2015-03-10 16:02 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-10 16:02 - 2015-03-10 16:02 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-10 16:02 - 2015-03-10 16:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-10 16:02 - 2015-03-10 16:02 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-10 16:02 - 2015-03-10 16:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-10 16:02 - 2015-03-10 16:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-10 16:02 - 2015-02-19 22:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-10 16:00 - 2015-03-10 16:00 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-10 16:00 - 2015-03-10 16:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-08 20:02 - 2015-03-08 20:02 - 00000201 _____ () C:\Users\Gloria Deo\Documents\Kodak Digital Camera Support.txt
2015-03-06 11:21 - 2015-03-06 11:21 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-06 11:21 - 2015-03-06 11:21 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-06 11:08 - 2015-03-06 11:08 - 14299648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 11532704 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-06 11:08 - 2015-03-06 11:08 - 10387456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 07621632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 03155968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 02304000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 01705984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 01530400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvencodemft.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 01317408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00991744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00733728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00678432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00539680 _____ (NVIDIA Corporation) C:\Windows\system32\nvudisp.exe
2015-03-06 11:08 - 2015-03-06 11:08 - 00322080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00256544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod1510.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod.dll
2015-03-06 11:08 - 2015-03-06 11:08 - 00011168 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvBridge.kmd
2015-03-06 11:00 - 2015-03-06 11:00 - 00001408 _____ () C:\Users\Gloria Deo\Documents\cc_20150306_100015.reg
2015-03-06 10:57 - 2015-03-06 10:57 - 05325696 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup503.exe
2015-03-06 10:51 - 2015-03-06 10:51 - 14980336 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe
2015-03-06 10:46 - 2015-03-06 10:46 - 00243368 _____ () C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe
2015-02-28 01:04 - 2015-02-28 01:04 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Old Firefox Data
2015-02-25 06:01 - 2015-01-08 19:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 06:01 - 2015-01-08 19:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 05:51 - 2015-02-25 05:51 - 00000000 ____D () C:\Users\HotDaddy\AppData\Local\Logitech® Webcam Software
2015-02-24 04:41 - 2015-02-24 04:41 - 00002771 _____ () C:\Users\Public\Desktop\Desktop Weather.lnk
2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Weather Channel
2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\Program Files (x86)\The Weather Channel
2015-02-23 06:51 - 2015-02-23 06:52 - 43736135 _____ (XXXChurch) C:\Users\Gloria Deo\Downloads\X3Watch.exe
2015-02-23 03:17 - 2015-02-23 03:17 - 05007216 _____ (Adobe Systems Inc.) C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe
2015-02-23 03:17 - 2015-02-23 03:17 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2015-02-23 03:10 - 2015-02-23 03:10 - 00000000 ____D () C:\Users\Gloria Deo\dwhelper
2015-02-22 02:51 - 2015-02-22 02:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Logitech® Webcam Software
2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Leadertech
2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\ProgramData\LogiShrd
2015-02-22 02:47 - 2015-02-22 02:48 - 00000000 ____D () C:\Program Files (x86)\Logitech
2015-02-22 02:47 - 2015-02-22 02:47 - 00001626 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk
2015-02-22 02:47 - 2015-02-22 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-02-22 02:22 - 2015-02-22 02:24 - 74637872 _____ (Logitech, Inc.) C:\Users\Gloria Deo\Downloads\lws251.exe
2015-02-21 00:32 - 2015-03-19 20:31 - 00000342 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2015-02-21 00:32 - 2015-03-19 20:31 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2015-02-21 00:32 - 2015-03-06 10:52 - 00002990 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
2015-02-21 00:32 - 2015-03-06 10:52 - 00002656 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2015-02-21 00:32 - 2015-03-06 10:52 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-02-21 00:32 - 2015-03-06 10:52 - 00001086 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-02-21 00:32 - 2015-02-21 00:32 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-02-21 00:32 - 2015-02-21 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-02-21 00:24 - 2015-02-21 00:25 - 14952744 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe
2015-02-21 00:15 - 2015-02-21 00:15 - 00007464 _____ () C:\Users\Gloria Deo\Documents\cc_20150220_231535.reg
2015-02-21 00:13 - 2015-02-21 00:13 - 05325208 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup502.exe
2015-02-21 00:06 - 2015-02-21 00:12 - 00000000 ____D () C:\Program Files (x86)\Disconnect
2015-02-21 00:06 - 2015-02-21 00:06 - 00003652 _____ () C:\Windows\System32\Tasks\Disconnect Desktop Updater
2015-02-21 00:05 - 2015-02-21 00:05 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Disconnect
2015-02-20 23:47 - 2015-02-20 23:47 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Tor Browser
2015-02-20 23:46 - 2015-02-20 23:47 - 34324222 _____ () C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe
2015-02-20 22:18 - 2015-02-20 22:18 - 00000000 __SHD () C:\Users\Gloria Deo\AppData\Local\EmieBrowserModeList
2015-02-18 22:00 - 2015-02-18 22:00 - 05329480 _____ (Secunia) C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe
2015-02-18 01:57 - 2015-02-18 01:57 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
2015-02-18 01:44 - 2015-03-06 11:03 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
2015-02-18 01:44 - 2015-02-18 01:44 - 00691576 _____ (Yahoo! Inc.) C:\Users\Gloria Deo\Downloads\msgr11us.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-20 18:57 - 2014-08-22 04:09 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\.purple
2015-03-20 18:49 - 2014-08-22 01:41 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2015-03-20 18:42 - 2014-08-22 02:27 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-20 18:09 - 2014-10-05 13:43 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job
2015-03-20 18:02 - 2014-08-24 05:39 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-20 12:00 - 2011-10-27 04:38 - 01052891 _____ () C:\Windows\WindowsUpdate.log
2015-03-20 09:09 - 2014-10-05 13:43 - 00000876 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job
2015-03-20 02:52 - 2009-07-14 01:13 - 00896284 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-20 02:46 - 2014-08-22 03:29 - 00000000 ____D () C:\ProgramData\Kodak
2015-03-20 02:02 - 2014-08-24 05:39 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-19 20:37 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-19 20:37 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-19 20:31 - 2014-08-22 06:18 - 00002892 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Gloria Deo)
2015-03-19 20:29 - 2014-08-22 06:18 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-03-19 20:29 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-19 20:28 - 2015-01-06 12:44 - 00019296 _____ () C:\Windows\system32\Drivers\fvstore.dat
2015-03-19 20:28 - 2014-09-03 08:07 - 00000000 ____D () C:\Users\Gloria Deo\Documents\Efficient Organizer AutoBackup
2015-03-19 20:28 - 2014-09-01 23:16 - 01851392 _____ () C:\Users\Gloria Deo\Documents\MyCalendar.ecfx
2015-03-19 20:27 - 2014-08-22 02:27 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2015-03-19 20:26 - 2014-12-01 20:29 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-19 20:24 - 2014-08-22 01:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-03-19 17:20 - 2014-08-26 14:38 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-18 07:29 - 2014-08-22 01:39 - 00000000 ____D () C:\Program Files (x86)\Comodo
2015-03-18 07:21 - 2014-08-24 05:38 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Google
2015-03-18 07:20 - 2014-08-24 05:38 - 00000000 ____D () C:\Program Files (x86)\Google
2015-03-18 07:17 - 2014-09-27 00:23 - 00002922 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Gloria_Deo
2015-03-18 05:42 - 2014-08-28 17:48 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-18 04:55 - 2014-11-28 08:02 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
2015-03-18 04:45 - 2015-02-16 12:17 - 00000000 ____D () C:\Program Files (x86)\Secunia
2015-03-16 12:55 - 2014-08-27 05:07 - 75374592 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-03-16 12:55 - 2014-08-27 05:07 - 00925696 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-03-16 12:55 - 2014-08-27 05:07 - 00172032 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2015-03-16 12:55 - 2014-08-27 05:07 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-03-15 20:43 - 2014-08-22 12:20 - 00509440 _____ (Tech Support Guy System) C:\Users\Gloria Deo\Downloads\SysInfo.exe
2015-03-14 22:18 - 2015-01-06 13:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Adobe
2015-03-14 22:17 - 2014-08-22 02:27 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-14 22:17 - 2014-08-22 02:27 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-14 22:17 - 2014-08-22 02:27 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-03-13 20:44 - 2014-08-22 04:07 - 00000000 ____D () C:\Program Files (x86)\Pidgin
2015-03-12 16:29 - 2015-02-13 07:47 - 04575232 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2015-03-12 16:29 - 2014-10-05 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-03-11 09:55 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2015-03-11 09:07 - 2009-07-14 01:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-11 03:37 - 2009-07-14 00:45 - 00358648 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 03:13 - 2014-08-22 02:39 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 03:03 - 2014-08-22 02:39 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-06 11:11 - 2011-10-27 04:43 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-06 11:10 - 2009-07-29 11:21 - 02589728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe
2015-03-06 11:08 - 2009-07-18 05:41 - 09480192 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-06 11:08 - 2009-07-18 05:41 - 04363776 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-03-06 11:08 - 2009-07-18 05:41 - 01229312 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-03-06 10:58 - 2014-09-28 04:43 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-03-06 10:58 - 2014-09-28 04:43 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-25 06:12 - 2014-09-15 06:15 - 11159984 _____ ( ) C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe
2015-02-25 00:45 - 2014-08-28 17:48 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2015-02-24 04:39 - 2014-08-22 10:18 - 04090536 _____ (The Weather Channel) C:\Users\Gloria Deo\Downloads\twcsetup.exe
2015-02-24 04:39 - 2014-08-22 10:18 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Downloaded Installations
2015-02-23 03:10 - 2014-08-22 01:04 - 00000000 ____D () C:\Users\Gloria Deo
2015-02-22 02:48 - 2014-08-22 02:21 - 00012673 _____ () C:\Windows\system32\lvcoinst.log
2015-02-22 02:48 - 2014-08-22 02:21 - 00000000 ____D () C:\Program Files\Common Files\logishrd
2015-02-22 02:47 - 2012-09-21 15:09 - 00542568 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2.dll
2015-02-22 02:47 - 2012-09-21 15:09 - 00538472 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2RC.dll
2015-02-22 02:47 - 2012-09-21 15:09 - 00305000 _____ (Logitech Inc.) C:\Windows\SysWOW64\lvcodec2.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\SysWOW64\LogiDPP.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\system32\LogiDPP.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\SysWOW64\DevManagerCore.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\system32\DevManagerCore.dll
2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\SysWOW64\LogiDPPApp.exe
2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\system32\LogiDPPApp.exe
2015-02-22 02:47 - 2012-09-21 15:04 - 04763680 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvuvc64.sys
2015-02-22 02:47 - 2012-09-21 15:04 - 00768288 _____ (Logitech Inc.) C:\Windows\system32\LVUI64.dll
2015-02-22 02:47 - 2012-09-21 15:04 - 00560416 _____ (Logitech Inc.) C:\Windows\system32\LVUIRC64.dll
2015-02-22 02:47 - 2012-09-21 15:04 - 00351520 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvrs64.sys
2015-02-22 02:47 - 2012-09-21 15:04 - 00262432 _____ (Logitech Inc.) C:\Windows\system32\lvco1351823.dll
2015-02-22 02:47 - 2012-09-21 15:04 - 00175392 _____ (Logitech Inc.) C:\Windows\system32\lvcod64.dll
2015-02-21 00:38 - 2014-12-01 20:58 - 00001246 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
2015-02-21 00:38 - 2014-12-01 19:55 - 00003250 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
2015-02-21 00:38 - 2014-12-01 19:55 - 00003194 _____ () C:\Windows\System32\Tasks\Driver Booster Update
2015-02-21 00:38 - 2014-12-01 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-02-21 00:35 - 2014-08-22 10:23 - 00000000 ____D () C:\ProgramData\GlarySoft
2015-02-21 00:32 - 2014-08-22 10:21 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\GlarySoft
2015-02-21 00:26 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\tracing
2015-02-18 01:42 - 2015-02-16 16:19 - 00000000 ____D () C:\Program Files (x86)\Trillian

==================== Files in the root of some directories =======

2014-10-21 11:17 - 2014-10-21 11:17 - 14016000 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-10-16 08:01 - 2014-10-16 08:01 - 0000236 _____ () C:\Users\Gloria Deo\AppData\Local\LaunchHomeCenter.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-15 01:41

==================== End Of Log ============================
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Gloria Deo at 2015-03-20 18:57:47
Running from C:\Users\Gloria Deo\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
aioscnnr (x32 Version: 5.8.10.0 - Your Company Name) Hidden
aioscnnr (x32 Version: 7.6.13.10 - Your Company Name) Hidden
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
center (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
Chromium Secure (HKLM-x32\...\Chromium Secure) (Version: 36.1.1.3 - Comodo)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 26.0.0.2 - COMODO)
COMODO Internet Security Premium (HKLM\...\{2736B6BD-31EC-4FC8-A48C-F0A5C914C0B6}) (Version: 7.0.55655.4142 - COMODO Security Solutions Inc.)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Cursed Fates - The Headless Horseman (HKLM-x32\...\Cursed Fates - The Headless Horseman) (Version: - )
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2115 - CyberLink Corp.)
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
Driver Booster 2.2 (HKLM-x32\...\Driver Booster_is1) (Version: 2.2 - IObit)
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard)
DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224 - Hewlett-Packard) Hidden
Efficient Calendar Free 3.71 (HKLM-x32\...\Efficient Calendar Free_is1) (Version: - Efficient Software)
Emperor: Rise of the Middle Kingdom (HKLM-x32\...\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}) (Version: - )
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
essentials (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
e-Sword (HKLM-x32\...\{463178C4-E707-41EE-BE8A-080C62BF526D}) (Version: 10.04.0000 - Rick Meyers)
Fairy Tale Mysteries - The Beanstalk (HKLM-x32\...\Fairy Tale Mysteries - The Beanstalk) (Version: - )
Fairy Tale Mysteries - The Puppet Thief (HKLM-x32\...\Fairy Tale Mysteries - The Puppet Thief) (Version: - )
Glary Utilities 5.20 (HKLM-x32\...\Glary Utilities 5) (Version: 5.20.0.35 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
Grim Legends - The Forsaken Bride (HKLM-x32\...\Grim Legends - The Forsaken Bride) (Version: - )
Guifications Plugin (remove only) (HKLM-x32\...\pidgin-guifications) (Version: - )
Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5247.34 - PC-Doctor, Inc.)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP MediaSmart Demo (HKLM-x32\...\{9DEF9686-CCB2-47B7-BF83-B49EA21FA016}) (Version: 1.00.0000 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.1.3317 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.1.3422 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.1.0.1 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)
HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.11.0 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Hulu Desktop (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\HuluDesktop) (Version: 0.9.9 - Hulu LLC)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Kodak AIO Printer (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.8.5.2 - Eastman Kodak Company)
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2017 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.2017 - CyberLink Corp.) Hidden
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version: - LastPass)
Legends of Lost Relics (HKLM-x32\...\{FA2CC872-7DFA-438E-9F4D-A840E1D4D8A5}) (Version: 1.0.0 - On Hand Software)
LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LSI PCI-SV92EX Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.566.0 - Microsoft Live Search Toolbar)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard)
Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310 - Hewlett-Packard) Hidden
Mozilla Firefox 36.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 en-US)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NET Bible for e-Sword (version 9.x) (HKLM-x32\...\NET Bible for e-Sword (version 9.x)2.0) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ocr (x32 Version: 6.2.3.50 - Eastman Kodak Company) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
Pharaoh (HKLM-x32\...\Pharaoh) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3304 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3304 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3503 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3503 - CyberLink Corp.) Hidden
PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.2216 - CyberLink Corp.) Hidden
Saints down through the ages.dctx version e-Sword (HKLM-x32\...\{D7F1A6E9-5A60-4573-AFBD-4A047A57635E}_is1) (Version: e-Sword - BibleSupport.com)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1130 - SUPERAntiSpyware.com)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Weather Channel App (HKLM-x32\...\{167158CE-1637-4167-8A1C-C2549EEA966A}) (Version: 1.00.0000 - The Weather Channel)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)

==================== Restore Points =========================

05-03-2015 07:59:05 Scheduled Checkpoint
06-03-2015 11:07:53 Driver Booster : NVIDIA GeForce 9100
11-03-2015 03:00:42 Windows Update
18-03-2015 08:04:56 Scheduled Checkpoint
19-03-2015 20:22:48 Removed GeekBuddy.
19-03-2015 20:25:32 Removed Java 7 Update 75

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0022FE9A-BB9B-4658-BAB6-584A88FEEA55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
Task: {0EB92B2C-6550-4E96-A43E-306A347A28AA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-14] (Adobe Systems Incorporated)
Task: {10948471-6129-4BF8-B10C-79944DCEF75B} - System32\Tasks\Uninstaller_SkipUac_Gloria_Deo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {160C0C30-EB3D-4D93-A4EE-4D32314D3FC3} - System32\Tasks\Disconnect Desktop Updater => C:\Program Files (x86)\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe
Task: {217F8EA8-8CDC-4173-89F8-F7DFC95534BE} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-06] (Glarysoft Ltd)
Task: {29246118-0833-4280-9221-9E52438004C0} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-02-12] (COMODO)
Task: {467532FA-56AB-4991-BA68-650EC27F8094} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
Task: {4CD0A399-C4C5-4402-9280-641E4127A267} - System32\Tasks\Driver Booster SkipUAC (Gloria Deo) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-02-21] (IObit)
Task: {6AF0530F-9504-418B-902C-B879FB66AB09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-01-12] (Adobe Systems Incorporated)
Task: {6DF61375-742B-446C-867B-60364890FAA7} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-06] (Glarysoft Ltd)
Task: {75BB654E-A585-4458-8642-92C917CD69CF} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-02-21] (IObit)
Task: {773FC000-543E-4CF3-96DF-05B355609C6F} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {7A95C745-093E-495B-827F-7A49EDD588DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-06] (Piriform Ltd)
Task: {7FCF74AC-3E6B-4890-A615-37DB3704BE1E} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {895EE11C-D2B4-4EF6-AA33-AD701989ED91} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {988458CA-A0A3-4964-A020-0AC103B1563D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
Task: {AA7BBA5F-3DD3-47A9-8741-04CFABF80EF7} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-02-21] (IObit)
Task: {BEA28887-9CB0-489B-B3B3-A62A3B29FF47} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
Task: {C3D9DECF-327D-403D-B860-B56941FAEA80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
Task: {C675E25A-7D48-42C5-B4C8-156F3E0ACF7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
Task: {E0E7B229-211F-4077-BE68-E8B386D8FCFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe
Task: {E15D98A2-7DEE-4FD7-AD27-6FAEDC926EFA} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-22] (CyberLink)
Task: {F12A9FC8-45D8-47BD-B837-43C1CBA670A3} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {F51087E0-14CC-4B43-85B0-318AA6726492} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
Task: {F65E7AD3-F0D2-4C7A-980B-099AA05D01F6} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2012-09-13 01:38 - 2015-02-22 02:47 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2015-02-24 03:01 - 2015-02-24 04:41 - 00054608 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
2015-02-24 03:01 - 2015-02-24 03:01 - 01165144 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.UI.dll
2015-02-24 03:01 - 2015-02-24 03:01 - 00266592 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Services.dll
2015-02-24 03:01 - 2015-02-24 03:01 - 00115552 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Models.dll
2013-04-15 18:39 - 2013-04-15 18:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2009-10-22 21:50 - 2009-10-22 21:50 - 00931112 _____ () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
2015-03-02 01:39 - 2015-03-02 01:39 - 00080160 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00100352 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 01274655 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2007-12-16 22:15 - 2007-12-16 22:15 - 00651785 _____ () C:\Program Files (x86)\Pidgin\plugins\guifications.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00328186 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00107365 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00190464 _____ () C:\Program Files (x86)\Pidgin\libsasl.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 02097721 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00818985 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00417758 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00029225 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00102400 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00115712 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00140288 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll
2014-11-23 13:33 - 2014-11-23 13:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2015-02-18 01:57 - 2015-02-18 01:57 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00509014 _____ () C:\Program Files (x86)\Pidgin\spellcheck\lib\enchant\libenchant_ispell.dll
2014-11-23 13:34 - 2014-11-23 13:34 - 00999501 _____ () C:\Program Files (x86)\Pidgin\spellcheck\lib\enchant\libenchant_myspell.dll
2015-03-14 22:14 - 2015-03-14 22:14 - 01020928 _____ () C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AERTAC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\charmap.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\CX64APO.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\DevManagerCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LogiDPP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LogiDPPApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lvco1351823.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\lvcod64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LVUI64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\LVUIRC64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcod.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcod1510.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcplui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvdecodemft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvudisp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RCoInstII64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RegistryDefragBootTime.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RltkAPO64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RTCOM64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtDataProc64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtkApi64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\RtPgEx64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRAPO64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRCOM.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRCOM64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\SRRPTR64.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\tzres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WSManHTTPConfig.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WSManMigrationPlugin.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WsmAuto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WsmSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WsmWmiPl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\charmap.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\DevManagerCore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\java.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\javaw.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\javaws.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LogiDPP.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LogiDPPApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\lvcodec2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LVUI2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\LVUI2RC.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvdecodemft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvencodemft.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\tzres.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WSManHTTPConfig.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WSManMigrationPlugin.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WsmAuto.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WsmSvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WsmWmiPl.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\lvrs64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\lvuvc64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\psi_mf_amd64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\RTKVHD64.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\tdx.sys:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Desktop\FRST64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Desktop\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\advanced-systemcare-setup (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup502.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.1.0.163.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_ia64.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_SDK.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_x64.msi:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-2.10.11.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdTcID
AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdZnID

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 156.154.70.22 - 156.154.71.22

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GUDelayStartup => "c:\program files (x86)\glary utilities 5\startupmanager.exe" -delayrun
MSCONFIG\startupreg: tvncontrol => "c:\program files (x86)\common files\comodo\geekbuddyrsp.exe" -controlservice -slave
MSCONFIG\startupreg: TWC.Win7 => c:\program files (x86)\the weather channel\desktop weather\twc.win7.exe

==================== Accounts: =============================

Administrator (S-1-5-21-1565124662-2897034396-4106828886-500 - Administrator - Disabled)
Ave Maria (S-1-5-21-1565124662-2897034396-4106828886-1003 - Limited - Enabled) => C:\Users\Ave Maria
Dee (S-1-5-21-1565124662-2897034396-4106828886-1004 - Limited - Enabled) => C:\Users\Dee
Gloria Deo (S-1-5-21-1565124662-2897034396-4106828886-1001 - Administrator - Enabled) => C:\Users\Gloria Deo
Guest (S-1-5-21-1565124662-2897034396-4106828886-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-1565124662-2897034396-4106828886-1002 - Limited - Enabled)
HotDaddy (S-1-5-21-1565124662-2897034396-4106828886-1005 - Limited - Enabled) => C:\Users\HotDaddy
Team420 (S-1-5-21-1565124662-2897034396-4106828886-1006 - Limited - Enabled) => C:\Users\Team420

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/19/2015 08:35:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0x40000015
Fault offset: 0x00093534
Faulting process id: 0x98c
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
Description: Value cannot be null.
Parameter name: key

Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
Description: Value cannot be null.
Parameter name: key

Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
Description: Object reference not set to an instance of an object.

Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0xc0000005
Fault offset: 0x00049b14
Faulting process id: 0x83c
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0x40000015
Fault offset: 0x00093534
Faulting process id: 0x29cc
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (03/19/2015 08:35:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (03/19/2015 08:22:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Advanced SystemCare Service 8 service terminated unexpectedly. It has done this 1 time(s).

Error: (03/19/2015 05:25:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP Support Assistant Service service failed to start due to the following error:
%%1053

Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Assistant Service service to connect.

Error: (03/18/2015 05:00:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (03/19/2015 08:35:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82400000150009353498c01d062a50016aba0C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exef4b59810-ce98-11e4-a55d-e0cb4e58a427

Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
Description: Value cannot be null.
Parameter name: key

Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
Description: Value cannot be null.
Parameter name: key

Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
Description: Object reference not set to an instance of an object.

Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c000000500049b1483c01d0628a5bc3ae00C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe7540f530-ce7e-11e4-8ca7-e0cb4e58a427

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: The handle is invalid

Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82400000150009353429cc01d0615943c4a5e8C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe381412c8-cd4d-11e4-bfda-e0cb4e58a427

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 215 Processor
Percentage of memory in use: 38%
Total physical RAM: 4863.24 MB
Available physical RAM: 3006.85 MB
Total Pagefile: 9724.66 MB
Available Pagefile: 7309.72 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (HP) (Fixed) (Total:585.34 GB) (Free:512.83 GB) NTFS
Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.74 GB) (Free:1.61 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Cleopatra) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 2EB6E298)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=585.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10.7 GB) - (Type=07 NTFS)

==================== End Of Log ============================
 

Holly3278

Thread Starter
Joined
Jan 28, 2003
Messages
1,419
Also, I followed your instructions you gave me. Thank you so much for helping me.
 

askey127

Malware Specialist
Joined
Dec 22, 2006
Messages
3,722
Holly,
--------------------------------------------------------
Run A Fix With FRST
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
(Both on the Desktop is OK, or both in the same folder elsewhere)

Run FRST64 and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
If for some reason the tool needs a restart, please make sure you let the system restart normally.
The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

askey127
 

Attachments

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Top