1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

I feel like I've been hacked but scans don't show anything

Discussion in 'Virus & Other Malware Removal' started by Holly3278, Mar 18, 2015.

Thread Status:
Not open for further replies.
Advertisement
  1. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Hey everyone. I feel like my computer has been hacked but I have scanned with Super Anti-Spyware and Malware Bytes and nothing was found except for two Potentially Unwanted Programs which were found by Malware Bytes. The reason why I feel like my computer has been hacked is because sometimes when I am browsing the internet with Google Chrome, it'll suddenly started scrolling the page up and down slightly for no apparent reason. It drives me insane. I would appreciate some help in making sure I have not been hacked.
     
  2. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Tech Support Guy System Info Utility version 1.0.0.2
    OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
    Processor: AMD Athlon(tm) II X2 215 Processor, AMD64 Family 16 Model 6 Stepping 2
    Processor Count: 2
    RAM: 4863 Mb
    Graphics Card: NVIDIA GeForce 9100, 256 Mb
    Hard Drives: C: Total - 599384 MB, Free - 521407 MB; D: Total - 10992 MB, Free - 1649 MB;
    Motherboard: PEGATRON CORPORATION, VIOLET6
    Antivirus: COMODO Antivirus, Updated and Enabled
     
  3. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Here is the scan log from Malware Bytes:

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 3/14/2015
    Scan Time: 2:09:13 AM
    Logfile:
    Administrator: Yes

    Version: 2.00.4.1028
    Malware Database: v2015.03.14.01
    Rootkit Database: v2015.02.25.01
    License: Free
    Malware Protection: Disabled
    Malicious Website Protection: Disabled
    Self-protection: Disabled

    OS: Windows 7 Service Pack 1
    CPU: x64
    File System: NTFS
    User: Gloria Deo

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 586576
    Time Elapsed: 37 min, 7 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Enabled
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 0
    (No malicious items detected)

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 0
    (No malicious items detected)

    Files: 2
    PUP.Optional.MindSpark.A, C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_webfetti.dl.tb.ask.com_0.localstorage, Quarantined, [acbd4ff6147644f28de7db094db6e818],
    PUP.Optional.MindSpark.A, C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_webfetti.dl.tb.ask.com_0.localstorage-journal, Quarantined, [81e820259af0c76f116374705ca722de],

    Physical Sectors: 0
    (No malicious items detected)


    (end)
     
  4. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Hi Holly3278,
    The MBAM scan shows the ask toolbar.
    It, in turn, downloads various other things, being paid for each, of course.
    -----------------------------------------------------------
    Download and Run the Farbar Scan Tool
    • Download FRST64 and save to your Desktop.
    • Double click Frst64.exe to launch it.
    • FRST64 will start to run.
      • When the tool opens click Yes to disclaimer.
      • Press the Scan button.
      • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
      • Please post them in your next reply.
    If you lose track of them, they will be saved in the same location as FRST64.exe
    Feel free to use separate replies if it's more convenient.

    By the way, you may want to check this out:
    http://siliconangle.com/blog/2015/0...s-worse-than-superfish-breaks-https-security/
    askey127
     
  5. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
    Ran by Gloria Deo (administrator) on GLORIADEO-PC on 19-03-2015 17:28:49
    Running from C:\Users\Gloria Deo\Downloads
    Loaded Profiles: Gloria Deo (Available profiles: Gloria Deo & Ave Maria & Dee & HotDaddy & Team420 & Guest)
    Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: FF)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (Comodo) C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe
    (Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\hp\Common\HPSupportSolutionsFrameworkService.exe
    (Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
    (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
    (IObit) C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
    (Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
    (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
    (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
    (Efficient Software) C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe
    () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
    (CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
    (Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
    (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
    (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
    (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
    (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [PC-Doctor for Windows localizer] => C:\Program Files\PC-Doctor for Windows\localizer.exe [95728 2009-09-17] (PC-Doctor, Inc.)
    HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-12] (COMODO)
    HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [2045440 2010-09-02] (Eastman Kodak Company)
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-06] (Realtek Semiconductor)
    HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
    HKLM-x32\...\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-12-11] (Eastman Kodak Company)
    HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2015-02-22] (Logitech Inc.)
    HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-02-28] (IObit)
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [TWC.Win7] => C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [54608 2015-02-24] ()
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-03-06] (Glarysoft Ltd)
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-03-06] (Piriform Ltd)
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {14ca1f27-9088-11e4-bf3e-da42e5d5b0d2} - G:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {4c201752-29d2-11e4-baf2-806e6f6e6963} - E:\autorun.exe
    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-08-22] (Microsoft Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
    ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
    ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
    ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
    Startup: C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Calendar Free.lnk
    ShortcutTarget: Efficient Calendar Free.lnk -> C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe (Efficient Software)
    BootExecute: autocheck autochk *
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
    ProxyServer: [S-1-5-21-1565124662-2897034396-4106828886-1001] => http=127.0.0.1:8877;https=127.0.0.1:8877
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=iehp
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-12] (IObit)
    BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
    BHO: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
    BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
    BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-21] (Oracle Corporation)
    BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
    BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
    BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11] (Adblock)
    BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
    BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-02-12] (IObit)
    BHO-x32: Microsoft Live Search Toolbar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-21] (Oracle Corporation)
    BHO-x32: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
    Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
    Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
    Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
    Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
    Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
    Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
    Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
    Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
    Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
    Tcpip\..\Interfaces\{BDA8AB6D-8468-4D36-8430-E8219CEC309D}: [NameServer] 156.154.70.22,156.154.71.22

    FireFox:
    ========
    FF ProfilePath: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034
    FF DefaultSearchEngine: Google (SSL)
    FF DefaultSearchEngine.US: Google
    FF SelectedSearchEngine: Google (SSL)
    FF Homepage: hxxp://www.newadvent.org/
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-14] ()
    FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
    FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
    FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
    FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
    FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-21] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-21] (Oracle Corporation)
    FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.9.1\npHDPlg.dll [2009-10-27] (Hulu LLC)
    FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
    FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
    FF SearchPlugin: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\searchplugins\search.xml [2015-03-14]
    FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\google-ssl.xml [2014-08-24]
    FF Extension: Xmarks - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
    FF Extension: HTTPS-Everywhere - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
    FF Extension: LastPass - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
    FF Extension: WOT - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-03-06]
    FF Extension: InvisibleHand - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-02]
    FF Extension: Ghostery - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
    FF Extension: Webutation - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2015-03-02]
    FF Extension: NoScript - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-14]
    FF Extension: DictionarySearch - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2015-03-02]
    FF Extension: Adblock Plus - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-28]
    FF Extension: Facebook Share Button - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d4e0dc9c-c356-438e-afbe-dca439f4399d}.xpi [2015-03-02]
    FF HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
    FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

    Chrome:
    =======
    CHR Profile: C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Slides) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-18]
    CHR Extension: (Xmarks Bookmark Sync) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2015-03-18]
    CHR Extension: (Google Docs) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-18]
    CHR Extension: (Google Drive) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-18]
    CHR Extension: (YouTube) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-18]
    CHR Extension: (Adblock Plus) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-18]
    CHR Extension: (Share with Facebook, Twitter, Google+, Email) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmhnomplgoidnkjdacpmpccmaplnmk [2015-03-18]
    CHR Extension: (Google Search) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-18]
    CHR Extension: (Google Sheets) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-18]
    CHR Extension: (LastPass: Free Password Manager) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-03-18]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-18]
    CHR Extension: (Google Wallet) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-18]
    CHR Extension: (Gmail) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-18]
    CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-08-22]
    CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
    R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2015-02-12] (IObit)
    R2 ChromiumSecureUpdater; C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe [2369736 2015-03-18] (Comodo)
    S3 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-09-17] (Comodo Security Solutions, Inc.)
    R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-12] (COMODO)
    R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-12] (COMODO)
    R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
    S3 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-17] (Comodo Security Solutions, Inc.)
    S2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
    R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [78088 2014-08-26] (Hewlett-Packard Company)
    S3 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
    R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-02-28] (IObit)
    S3 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
    S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-02-12] (IObit)
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
    R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2015-01-06] (Realtek Semiconductor)
    S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2015-03-18] (Secunia)
    R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2015-03-18] (Secunia)
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
    S3 Disconnect Desktop Updater; No ImagePath
    S3 OpenVPNService; No ImagePath

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2014-06-26] (Windows (R) Win 7 DDK provider) [File not signed]
    R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
    R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
    R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
    R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-02-28] (IObit)
    R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-02-21] (Glarysoft Ltd)
    R1 HMD; C:\Windows\System32\DRIVERS\hmd.sys [14888 2014-06-26] ()
    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-06] (REALiX(tm))
    R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
    R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2015-03-18] (Secunia)
    R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-02-28] (IObit.com)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
    R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-02-28] (IObit.com)

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-19 17:28 - 2015-03-19 17:30 - 00024734 _____ () C:\Users\Gloria Deo\Downloads\FRST.txt
    2015-03-19 17:28 - 2015-03-19 17:29 - 00000000 ____D () C:\FRST
    2015-03-19 17:28 - 2015-03-19 17:28 - 02095616 _____ (Farbar) C:\Users\Gloria Deo\Downloads\FRST64.exe
    2015-03-18 07:29 - 2015-03-18 07:29 - 00001229 _____ () C:\Users\Public\Desktop\Internet (Chromium Secure).lnk
    2015-03-18 07:27 - 2015-03-18 07:28 - 50556688 _____ (Comodo) C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe
    2015-03-18 07:21 - 2015-03-18 07:21 - 00002261 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2015-03-18 07:21 - 2015-03-18 07:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
    2015-03-18 05:08 - 2015-03-18 05:08 - 00849352 _____ () C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe
    2015-03-18 05:08 - 2015-03-18 05:08 - 00002054 _____ () C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk
    2015-03-18 05:08 - 2015-03-18 05:08 - 00000000 ____D () C:\ProgramData\IsolatedStorage
    2015-03-18 04:55 - 2015-03-18 04:55 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
    2015-03-18 04:45 - 2015-03-18 04:45 - 05490752 _____ (Secunia) C:\Users\Gloria Deo\Downloads\PSISetup (1).exe
    2015-03-17 23:28 - 2015-03-17 23:30 - 35124200 _____ () C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP
    2015-03-16 12:56 - 2015-03-19 17:19 - 00000112 _____ () C:\Windows\setupact.log
    2015-03-16 12:56 - 2015-03-19 17:18 - 00005446 _____ () C:\Windows\PFRO.log
    2015-03-16 12:56 - 2015-03-16 12:56 - 00000000 _____ () C:\Windows\setuperr.log
    2015-03-16 12:55 - 2015-03-16 12:55 - 00000000 ____H () C:\asc_rdflag
    2015-03-14 22:08 - 2015-03-14 22:09 - 47391392 _____ (Disconnect) C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe
    2015-03-13 20:44 - 2015-03-13 20:44 - 00345263 _____ () C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe
    2015-03-10 16:05 - 2015-03-10 16:05 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2015-03-10 16:04 - 2015-03-10 16:04 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2015-03-10 16:04 - 2015-03-10 16:04 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2015-03-10 16:04 - 2015-03-10 16:04 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
    2015-03-10 16:04 - 2015-03-10 16:04 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2015-03-10 16:04 - 2015-03-10 16:04 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2015-03-10 16:04 - 2015-03-10 16:04 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
    2015-03-10 16:04 - 2015-03-10 16:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
    2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
    2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-03-10 16:03 - 2015-02-19 23:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-03-10 16:02 - 2015-03-10 16:02 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-03-10 16:02 - 2015-03-10 16:02 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-03-10 16:02 - 2015-03-10 16:02 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-03-10 16:02 - 2015-03-10 16:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-03-10 16:02 - 2015-03-10 16:02 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-03-10 16:02 - 2015-03-10 16:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-03-10 16:02 - 2015-02-19 22:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-03-10 16:00 - 2015-03-10 16:00 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-03-10 16:00 - 2015-03-10 16:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2015-03-08 20:02 - 2015-03-08 20:02 - 00000201 _____ () C:\Users\Gloria Deo\Documents\Kodak Digital Camera Support.txt
    2015-03-06 11:21 - 2015-03-06 11:21 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    2015-03-06 11:21 - 2015-03-06 11:21 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2015-03-06 11:08 - 2015-03-06 11:08 - 14299648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 11532704 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
    2015-03-06 11:08 - 2015-03-06 11:08 - 10387456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 07621632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 03155968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 02304000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 01705984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 01530400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvencodemft.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 01317408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00991744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00733728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00678432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00539680 _____ (NVIDIA Corporation) C:\Windows\system32\nvudisp.exe
    2015-03-06 11:08 - 2015-03-06 11:08 - 00322080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00256544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod1510.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00011168 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvBridge.kmd
    2015-03-06 11:00 - 2015-03-06 11:00 - 00001408 _____ () C:\Users\Gloria Deo\Documents\cc_20150306_100015.reg
    2015-03-06 10:57 - 2015-03-06 10:57 - 05325696 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup503.exe
    2015-03-06 10:51 - 2015-03-06 10:51 - 14980336 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe
    2015-03-06 10:46 - 2015-03-06 10:46 - 00243368 _____ () C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe
    2015-02-28 16:23 - 2015-02-28 16:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
    2015-02-28 01:04 - 2015-02-28 01:04 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Old Firefox Data
    2015-02-25 06:01 - 2015-01-08 19:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
    2015-02-25 06:01 - 2015-01-08 19:43 - 00419936 _____ () C:\Windows\system32\locale.nls
    2015-02-25 05:51 - 2015-02-25 05:51 - 00000000 ____D () C:\Users\HotDaddy\AppData\Local\Logitech® Webcam Software
    2015-02-24 04:41 - 2015-02-24 04:41 - 00002771 _____ () C:\Users\Public\Desktop\Desktop Weather.lnk
    2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Weather Channel
    2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\Program Files (x86)\The Weather Channel
    2015-02-23 06:51 - 2015-02-23 06:52 - 43736135 _____ (XXXChurch) C:\Users\Gloria Deo\Downloads\X3Watch.exe
    2015-02-23 03:17 - 2015-02-23 03:17 - 05007216 _____ (Adobe Systems Inc.) C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe
    2015-02-23 03:17 - 2015-02-23 03:17 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
    2015-02-23 03:10 - 2015-02-23 03:10 - 00000000 ____D () C:\Users\Gloria Deo\dwhelper
    2015-02-22 02:51 - 2015-02-22 02:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Logitech® Webcam Software
    2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Leadertech
    2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\ProgramData\LogiShrd
    2015-02-22 02:47 - 2015-02-22 02:48 - 00000000 ____D () C:\Program Files (x86)\Logitech
    2015-02-22 02:47 - 2015-02-22 02:47 - 00001626 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk
    2015-02-22 02:47 - 2015-02-22 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
    2015-02-22 02:22 - 2015-02-22 02:24 - 74637872 _____ (Logitech, Inc.) C:\Users\Gloria Deo\Downloads\lws251.exe
    2015-02-21 00:32 - 2015-03-19 17:20 - 00000342 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
    2015-02-21 00:32 - 2015-03-19 17:20 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
    2015-02-21 00:32 - 2015-03-06 10:52 - 00002990 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
    2015-02-21 00:32 - 2015-03-06 10:52 - 00002656 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
    2015-02-21 00:32 - 2015-03-06 10:52 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
    2015-02-21 00:32 - 2015-03-06 10:52 - 00001086 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
    2015-02-21 00:32 - 2015-02-21 00:32 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
    2015-02-21 00:32 - 2015-02-21 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
    2015-02-21 00:24 - 2015-02-21 00:25 - 14952744 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe
    2015-02-21 00:15 - 2015-02-21 00:15 - 00007464 _____ () C:\Users\Gloria Deo\Documents\cc_20150220_231535.reg
    2015-02-21 00:13 - 2015-02-21 00:13 - 05325208 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup502.exe
    2015-02-21 00:06 - 2015-02-21 00:12 - 00000000 ____D () C:\Program Files (x86)\Disconnect
    2015-02-21 00:06 - 2015-02-21 00:06 - 00003652 _____ () C:\Windows\System32\Tasks\Disconnect Desktop Updater
    2015-02-21 00:05 - 2015-02-21 00:05 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Disconnect
    2015-02-20 23:47 - 2015-02-20 23:47 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Tor Browser
    2015-02-20 23:46 - 2015-02-20 23:47 - 34324222 _____ () C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe
    2015-02-20 22:18 - 2015-02-20 22:18 - 00000000 __SHD () C:\Users\Gloria Deo\AppData\Local\EmieBrowserModeList
    2015-02-18 22:00 - 2015-02-18 22:00 - 05329480 _____ (Secunia) C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe
    2015-02-18 21:59 - 2015-02-18 22:01 - 32194960 _____ (IObit ) C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe
    2015-02-18 21:59 - 2015-02-18 22:00 - 11414784 _____ (IObit ) C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe
    2015-02-18 01:57 - 2015-02-18 01:57 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
    2015-02-18 01:44 - 2015-03-06 11:03 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
    2015-02-18 01:44 - 2015-02-18 01:44 - 00691576 _____ (Yahoo! Inc.) C:\Users\Gloria Deo\Downloads\msgr11us.exe

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-19 17:28 - 2015-01-06 12:44 - 00019296 _____ () C:\Windows\system32\Drivers\fvstore.dat
    2015-03-19 17:28 - 2014-08-22 01:41 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
    2015-03-19 17:28 - 2011-10-27 04:38 - 02070650 _____ () C:\Windows\WindowsUpdate.log
    2015-03-19 17:25 - 2009-07-14 01:13 - 00896284 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-03-19 17:21 - 2014-08-22 06:18 - 00002892 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Gloria Deo)
    2015-03-19 17:20 - 2014-08-26 14:38 - 00000000 ____D () C:\ProgramData\ProductData
    2015-03-19 17:20 - 2014-08-24 05:39 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-03-19 17:19 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-03-18 13:04 - 2014-09-03 08:07 - 00000000 ____D () C:\Users\Gloria Deo\Documents\Efficient Organizer AutoBackup
    2015-03-18 13:04 - 2014-09-01 23:16 - 01851392 _____ () C:\Users\Gloria Deo\Documents\MyCalendar.ecfx
    2015-03-18 13:03 - 2014-08-22 04:09 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\.purple
    2015-03-18 13:02 - 2014-08-24 05:39 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-03-18 12:57 - 2014-12-01 20:57 - 00002187 _____ () C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
    2015-03-18 12:42 - 2014-08-22 02:27 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2015-03-18 12:09 - 2014-10-05 13:43 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job
    2015-03-18 09:09 - 2014-10-05 13:43 - 00000876 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job
    2015-03-18 07:29 - 2014-08-22 01:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
    2015-03-18 07:29 - 2014-08-22 01:39 - 00000000 ____D () C:\Program Files (x86)\Comodo
    2015-03-18 07:21 - 2014-08-24 05:38 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Google
    2015-03-18 07:20 - 2014-08-24 05:38 - 00000000 ____D () C:\Program Files (x86)\Google
    2015-03-18 07:17 - 2014-09-27 00:23 - 00002922 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Gloria_Deo
    2015-03-18 05:42 - 2014-08-28 17:48 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-03-18 04:55 - 2014-11-28 08:02 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
    2015-03-18 04:45 - 2015-02-16 12:17 - 00000000 ____D () C:\Program Files (x86)\Secunia
    2015-03-16 13:04 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-03-16 13:04 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-03-16 12:55 - 2014-08-27 05:07 - 75374592 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
    2015-03-16 12:55 - 2014-08-27 05:07 - 00925696 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
    2015-03-16 12:55 - 2014-08-27 05:07 - 00172032 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
    2015-03-16 12:55 - 2014-08-27 05:07 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
    2015-03-15 20:43 - 2014-08-22 12:20 - 00509440 _____ (Tech Support Guy System) C:\Users\Gloria Deo\Downloads\SysInfo.exe
    2015-03-14 22:18 - 2015-01-06 13:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Adobe
    2015-03-14 22:17 - 2014-08-22 02:27 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2015-03-14 22:17 - 2014-08-22 02:27 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2015-03-14 22:17 - 2014-08-22 02:27 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2015-03-13 20:44 - 2014-08-22 04:07 - 00000000 ____D () C:\Program Files (x86)\Pidgin
    2015-03-12 16:29 - 2015-02-13 07:47 - 04575232 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
    2015-03-12 16:29 - 2014-10-05 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
    2015-03-11 09:55 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
    2015-03-11 09:07 - 2009-07-14 01:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
    2015-03-11 03:37 - 2009-07-14 00:45 - 00358648 _____ () C:\Windows\system32\FNTCACHE.DAT
    2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
    2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
    2015-03-11 03:13 - 2014-08-22 02:39 - 00000000 ____D () C:\Windows\system32\MRT
    2015-03-11 03:03 - 2014-08-22 02:39 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-03-06 11:11 - 2011-10-27 04:43 - 00000000 ____D () C:\ProgramData\NVIDIA
    2015-03-06 11:10 - 2009-07-29 11:21 - 02589728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe
    2015-03-06 11:08 - 2009-07-18 05:41 - 09480192 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
    2015-03-06 11:08 - 2009-07-18 05:41 - 04363776 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
    2015-03-06 11:08 - 2009-07-18 05:41 - 01229312 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
    2015-03-06 10:58 - 2014-09-28 04:43 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
    2015-03-06 10:58 - 2014-09-28 04:43 - 00000000 ____D () C:\Program Files\CCleaner
    2015-02-28 16:23 - 2014-12-01 19:53 - 00001179 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
    2015-02-25 06:12 - 2014-09-15 06:15 - 11159984 _____ ( ) C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe
    2015-02-25 00:45 - 2014-08-28 17:48 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
    2015-02-24 04:39 - 2014-08-22 10:18 - 04090536 _____ (The Weather Channel) C:\Users\Gloria Deo\Downloads\twcsetup.exe
    2015-02-24 04:39 - 2014-08-22 10:18 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Downloaded Installations
    2015-02-23 03:10 - 2014-08-22 01:04 - 00000000 ____D () C:\Users\Gloria Deo
    2015-02-22 02:48 - 2014-08-22 02:21 - 00012673 _____ () C:\Windows\system32\lvcoinst.log
    2015-02-22 02:48 - 2014-08-22 02:21 - 00000000 ____D () C:\Program Files\Common Files\logishrd
    2015-02-22 02:47 - 2012-09-21 15:09 - 00542568 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2.dll
    2015-02-22 02:47 - 2012-09-21 15:09 - 00538472 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2RC.dll
    2015-02-22 02:47 - 2012-09-21 15:09 - 00305000 _____ (Logitech Inc.) C:\Windows\SysWOW64\lvcodec2.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\SysWOW64\LogiDPP.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\system32\LogiDPP.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\SysWOW64\DevManagerCore.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\system32\DevManagerCore.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\SysWOW64\LogiDPPApp.exe
    2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\system32\LogiDPPApp.exe
    2015-02-22 02:47 - 2012-09-21 15:04 - 04763680 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvuvc64.sys
    2015-02-22 02:47 - 2012-09-21 15:04 - 00768288 _____ (Logitech Inc.) C:\Windows\system32\LVUI64.dll
    2015-02-22 02:47 - 2012-09-21 15:04 - 00560416 _____ (Logitech Inc.) C:\Windows\system32\LVUIRC64.dll
    2015-02-22 02:47 - 2012-09-21 15:04 - 00351520 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvrs64.sys
    2015-02-22 02:47 - 2012-09-21 15:04 - 00262432 _____ (Logitech Inc.) C:\Windows\system32\lvco1351823.dll
    2015-02-22 02:47 - 2012-09-21 15:04 - 00175392 _____ (Logitech Inc.) C:\Windows\system32\lvcod64.dll
    2015-02-21 00:38 - 2014-12-01 20:58 - 00001246 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
    2015-02-21 00:38 - 2014-12-01 19:55 - 00003250 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
    2015-02-21 00:38 - 2014-12-01 19:55 - 00003194 _____ () C:\Windows\System32\Tasks\Driver Booster Update
    2015-02-21 00:38 - 2014-12-01 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
    2015-02-21 00:35 - 2014-08-22 10:23 - 00000000 ____D () C:\ProgramData\GlarySoft
    2015-02-21 00:32 - 2014-08-22 10:21 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\GlarySoft
    2015-02-21 00:26 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\tracing
    2015-02-18 01:42 - 2015-02-16 16:19 - 00000000 ____D () C:\Program Files (x86)\Trillian

    ==================== Files in the root of some directories =======

    2014-10-21 11:17 - 2014-10-21 11:17 - 14016000 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
    2014-10-16 08:01 - 2014-10-16 08:01 - 0000236 _____ () C:\Users\Gloria Deo\AppData\Local\LaunchHomeCenter.log

    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-03-15 01:41

    ==================== End Of Log ============================
     
  6. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
    Ran by Gloria Deo at 2015-03-19 17:31:05
    Running from C:\Users\Gloria Deo\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
    AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
    FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
    Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
    Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
    Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
    Advanced SystemCare 8 (HKLM-x32\...\Advanced SystemCare 8_is1) (Version: 8.1.0 - IObit)
    aioscnnr (x32 Version: 5.8.10.0 - Your Company Name) Hidden
    aioscnnr (x32 Version: 7.6.13.10 - Your Company Name) Hidden
    CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
    CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
    center (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
    Chromium Secure (HKLM-x32\...\Chromium Secure) (Version: 36.1.1.3 - Comodo)
    Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
    Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 26.0.0.2 - COMODO)
    COMODO Internet Security Premium (HKLM\...\{2736B6BD-31EC-4FC8-A48C-F0A5C914C0B6}) (Version: 7.0.55655.4142 - COMODO Security Solutions Inc.)
    Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
    Cursed Fates - The Headless Horseman (HKLM-x32\...\Cursed Fates - The Headless Horseman) (Version: - )
    CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2115 - CyberLink Corp.)
    DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
    Driver Booster 2.2 (HKLM-x32\...\Driver Booster_is1) (Version: 2.2 - IObit)
    DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard)
    DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224 - Hewlett-Packard) Hidden
    Efficient Calendar Free 3.71 (HKLM-x32\...\Efficient Calendar Free_is1) (Version: - Efficient Software)
    Emperor: Rise of the Middle Kingdom (HKLM-x32\...\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}) (Version: - )
    erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
    essentials (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
    e-Sword (HKLM-x32\...\{463178C4-E707-41EE-BE8A-080C62BF526D}) (Version: 10.04.0000 - Rick Meyers)
    Fairy Tale Mysteries - The Beanstalk (HKLM-x32\...\Fairy Tale Mysteries - The Beanstalk) (Version: - )
    Fairy Tale Mysteries - The Puppet Thief (HKLM-x32\...\Fairy Tale Mysteries - The Puppet Thief) (Version: - )
    GeekBuddy (HKLM\...\{8EE6F031-FD37-45A2-95CE-696777FC4EC6}) (Version: 4.13.120 - Comodo Security Solutions Inc)
    Glary Utilities 5.20 (HKLM-x32\...\Glary Utilities 5) (Version: 5.20.0.35 - Glarysoft Ltd)
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.)
    Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
    Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
    Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
    Google+ Auto Backup (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
    Grim Legends - The Forsaken Bride (HKLM-x32\...\Grim Legends - The Forsaken Bride) (Version: - )
    Guifications Plugin (remove only) (HKLM-x32\...\pidgin-guifications) (Version: - )
    Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5247.34 - PC-Doctor, Inc.)
    HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
    HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
    HP MediaSmart Demo (HKLM-x32\...\{9DEF9686-CCB2-47B7-BF83-B49EA21FA016}) (Version: 1.00.0000 - Hewlett-Packard)
    HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.1.3317 - Hewlett-Packard)
    HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.1.3422 - Hewlett-Packard)
    HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.1.0.1 - Hewlett-Packard)
    HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)
    HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.11.0 - Hewlett-Packard)
    HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
    HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company)
    HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
    Hulu Desktop (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\HuluDesktop) (Version: 0.9.9 - Hulu LLC)
    IObit Malware Fighter 3 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 3.0 - IObit)
    IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.2 - IObit)
    Java 7 Update 75 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217075FF}) (Version: 7.0.750 - Oracle)
    Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
    Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
    Kodak AIO Printer (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
    KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.8.5.2 - Eastman Kodak Company)
    LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2017 - CyberLink Corp.)
    LabelPrint (x32 Version: 2.5.2017 - CyberLink Corp.) Hidden
    LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version: - LastPass)
    Legends of Lost Relics (HKLM-x32\...\{FA2CC872-7DFA-438E-9F4D-A840E1D4D8A5}) (Version: 1.0.0 - On Hand Software)
    LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe)
    Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
    LSI PCI-SV92EX Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
    Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
    McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
    Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
    Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.566.0 - Microsoft Live Search Toolbar)
    Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
    Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard)
    Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310 - Hewlett-Packard) Hidden
    Mozilla Firefox 36.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 en-US)) (Version: 36.0.1 - Mozilla)
    Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
    MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
    NET Bible for e-Sword (version 9.x) (HKLM-x32\...\NET Bible for e-Sword (version 9.x)2.0) (Version: - )
    NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
    NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
    ocr (x32 Version: 6.2.3.50 - Eastman Kodak Company) Hidden
    OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
    Pharaoh (HKLM-x32\...\Pharaoh) (Version: - )
    Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
    Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
    PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
    Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3304 - CyberLink Corp.)
    Power2Go (x32 Version: 6.0.3304 - CyberLink Corp.) Hidden
    PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3503 - CyberLink Corp.)
    PowerDirector (x32 Version: 7.0.3503 - CyberLink Corp.) Hidden
    PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
    PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
    PrivDog (HKLM-x32\...\PrivDog) (Version: 2.2.0.14 - privdog.com)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
    Recovery Manager (x32 Version: 5.5.2216 - CyberLink Corp.) Hidden
    Saints down through the ages.dctx version e-Sword (HKLM-x32\...\{D7F1A6E9-5A60-4573-AFBD-4A047A57635E}_is1) (Version: e-Sword - BibleSupport.com)
    Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
    Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.3 - IObit)
    SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1130 - SUPERAntiSpyware.com)
    Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
    swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
    The Weather Channel App (HKLM-x32\...\{167158CE-1637-4167-8A1C-C2549EEA966A}) (Version: 1.00.0000 - The Weather Channel)
    Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
    Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
    Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
    Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
    CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)

    ==================== Restore Points =========================

    25-02-2015 06:01:29 Windows Update
    05-03-2015 07:59:05 Scheduled Checkpoint
    06-03-2015 11:07:53 Driver Booster : NVIDIA GeForce 9100
    11-03-2015 03:00:42 Windows Update
    18-03-2015 08:04:56 Scheduled Checkpoint

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {0022FE9A-BB9B-4658-BAB6-584A88FEEA55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
    Task: {0EB92B2C-6550-4E96-A43E-306A347A28AA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-14] (Adobe Systems Incorporated)
    Task: {10948471-6129-4BF8-B10C-79944DCEF75B} - System32\Tasks\Uninstaller_SkipUac_Gloria_Deo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-02-12] (IObit)
    Task: {160C0C30-EB3D-4D93-A4EE-4D32314D3FC3} - System32\Tasks\Disconnect Desktop Updater => C:\Program Files (x86)\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe
    Task: {217F8EA8-8CDC-4173-89F8-F7DFC95534BE} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-06] (Glarysoft Ltd)
    Task: {29246118-0833-4280-9221-9E52438004C0} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-02-12] (COMODO)
    Task: {467532FA-56AB-4991-BA68-650EC27F8094} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
    Task: {4CD0A399-C4C5-4402-9280-641E4127A267} - System32\Tasks\Driver Booster SkipUAC (Gloria Deo) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-02-21] (IObit)
    Task: {51EC8623-DEA8-4E1A-8CBD-5AF847DD8BCC} - System32\Tasks\ASC8_SkipUac_Gloria Deo => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [2015-02-12] (IObit)
    Task: {6AB93227-F276-4945-94B6-342D58AAEF41} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-07-23] (IObit)
    Task: {6AF0530F-9504-418B-902C-B879FB66AB09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-01-12] (Adobe Systems Incorporated)
    Task: {6DF61375-742B-446C-867B-60364890FAA7} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-06] (Glarysoft Ltd)
    Task: {75BB654E-A585-4458-8642-92C917CD69CF} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-02-21] (IObit)
    Task: {773FC000-543E-4CF3-96DF-05B355609C6F} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {7A95C745-093E-495B-827F-7A49EDD588DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-06] (Piriform Ltd)
    Task: {7FCF74AC-3E6B-4890-A615-37DB3704BE1E} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {895EE11C-D2B4-4EF6-AA33-AD701989ED91} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {988458CA-A0A3-4964-A020-0AC103B1563D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
    Task: {A63D5E45-2000-4FAA-B081-3A5A4140E17E} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe [2014-11-04] (IObit)
    Task: {AA7BBA5F-3DD3-47A9-8741-04CFABF80EF7} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-02-21] (IObit)
    Task: {BEA28887-9CB0-489B-B3B3-A62A3B29FF47} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
    Task: {C3D9DECF-327D-403D-B860-B56941FAEA80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
    Task: {C675E25A-7D48-42C5-B4C8-156F3E0ACF7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
    Task: {E0E7B229-211F-4077-BE68-E8B386D8FCFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe
    Task: {E15D98A2-7DEE-4FD7-AD27-6FAEDC926EFA} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-22] (CyberLink)
    Task: {EEAFD11E-49CE-4577-80FB-E335F507A838} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [2015-02-12] (IObit)
    Task: {F12A9FC8-45D8-47BD-B837-43C1CBA670A3} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-02-12] (IObit)
    Task: {F51087E0-14CC-4B43-85B0-318AA6726492} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {F65E7AD3-F0D2-4C7A-980B-099AA05D01F6} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe

    ==================== Loaded Modules (whitelisted) ==============

    2013-04-15 18:39 - 2013-04-15 18:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
    2015-02-24 03:01 - 2015-02-24 04:41 - 00054608 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    2015-02-24 03:01 - 2015-02-24 03:01 - 01165144 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.UI.dll
    2015-02-24 03:01 - 2015-02-24 03:01 - 00266592 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Services.dll
    2015-02-24 03:01 - 2015-02-24 03:01 - 00115552 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Models.dll
    2012-09-13 01:38 - 2015-02-22 02:47 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
    2014-12-01 20:57 - 2015-02-12 10:52 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\sqlite3.dll
    2014-12-01 19:53 - 2015-02-28 16:23 - 00517408 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\sqlite3.dll
    2014-12-01 20:57 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madExcept_.bpl
    2014-12-01 20:57 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madBasic_.bpl
    2014-12-01 20:57 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2014-09-21 03:20 - 2014-06-04 16:17 - 00892288 _____ () C:\Program Files (x86)\IObit\Smart Defrag 3\webres.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
    2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
    2009-10-22 21:50 - 2009-10-22 21:50 - 00931112 _____ () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
    2015-03-02 01:39 - 2015-03-02 01:39 - 00080160 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
    2014-09-21 03:20 - 2015-02-28 16:23 - 00182048 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
    2014-09-21 03:20 - 2015-02-28 16:23 - 00145184 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
    2014-12-01 20:57 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
    2014-12-01 20:57 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
    2014-12-01 20:57 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
    2014-12-01 20:57 - 2015-02-12 10:52 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 8\webres.dll
    2015-03-14 22:14 - 2015-03-14 22:14 - 01020928 _____ () C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll
    2015-03-14 22:17 - 2015-03-14 22:17 - 16858288 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

    AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AERTAC64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\charmap.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\CX64APO.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\DevManagerCore.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LogiDPP.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LogiDPPApp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lvco1351823.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lvcod64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LVUI64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LVUIRC64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcod.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcod1510.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcplui.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvdecodemft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvudisp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RCoInstII64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RegistryDefragBootTime.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RltkAPO64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RTCOM64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RtDataProc64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RtkApi64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RtPgEx64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRAPO64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRCOM.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRCOM64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRRPTR64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\tzres.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WSManHTTPConfig.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WSManMigrationPlugin.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WsmAuto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WsmSvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WsmWmiPl.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\charmap.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\DevManagerCore.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\java.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\javaw.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\javaws.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LogiDPP.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LogiDPPApp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\lvcodec2.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LVUI2.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LVUI2RC.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvdecodemft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvencodemft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\tzres.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WSManHTTPConfig.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WSManMigrationPlugin.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WsmAuto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WsmSvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WsmWmiPl.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\lvrs64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\lvuvc64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\psi_mf_amd64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\RTKVHD64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\tdx.sys:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\advanced-systemcare-setup (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup502.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.1.0.163.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\FRST64.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_ia64.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_SDK.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_x64.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-2.10.11.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdZnID

    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

    ==================== EXE Association (whitelisted) ===============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
    DNS Servers: 156.154.70.22 - 156.154.71.22

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)

    MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
    MSCONFIG\startupreg: GUDelayStartup => "c:\program files (x86)\glary utilities 5\startupmanager.exe" -delayrun
    MSCONFIG\startupreg: tvncontrol => "c:\program files (x86)\common files\comodo\geekbuddyrsp.exe" -controlservice -slave
    MSCONFIG\startupreg: TWC.Win7 => c:\program files (x86)\the weather channel\desktop weather\twc.win7.exe

    ==================== Accounts: =============================

    Administrator (S-1-5-21-1565124662-2897034396-4106828886-500 - Administrator - Disabled)
    Ave Maria (S-1-5-21-1565124662-2897034396-4106828886-1003 - Limited - Enabled) => C:\Users\Ave Maria
    Dee (S-1-5-21-1565124662-2897034396-4106828886-1004 - Limited - Enabled) => C:\Users\Dee
    Gloria Deo (S-1-5-21-1565124662-2897034396-4106828886-1001 - Administrator - Enabled) => C:\Users\Gloria Deo
    Guest (S-1-5-21-1565124662-2897034396-4106828886-501 - Limited - Disabled) => C:\Users\Guest
    HomeGroupUser$ (S-1-5-21-1565124662-2897034396-4106828886-1002 - Limited - Enabled)
    HotDaddy (S-1-5-21-1565124662-2897034396-4106828886-1005 - Limited - Enabled) => C:\Users\HotDaddy
    Team420 (S-1-5-21-1565124662-2897034396-4106828886-1006 - Limited - Enabled) => C:\Users\Team420

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Exception code: 0xc0000005
    Fault offset: 0x00049b14
    Faulting process id: 0x83c
    Faulting application start time: 0xPSIA.exe0
    Faulting application path: PSIA.exe1
    Faulting module path: PSIA.exe2
    Report Id: PSIA.exe3

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Exception code: 0x40000015
    Fault offset: 0x00093534
    Faulting process id: 0x29cc
    Faulting application start time: 0xPSIA.exe0
    Faulting application path: PSIA.exe1
    Faulting module path: PSIA.exe2
    Report Id: PSIA.exe3

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
    Description: The index cannot be initialized.


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
    Description: The application cannot be initialized.

    Context: Windows Application


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
    Description: The gatherer object cannot be initialized.

    Context: Windows Application, SystemIndex Catalog


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
    Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

    Context: Windows Application, SystemIndex Catalog


    Details:
    Element not found. (HRESULT : 0x80070490) (0x80070490)

    Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
    Description: The plug-in in <Search.JetPropStore> cannot be initialized.

    Context: Windows Application, SystemIndex Catalog


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
    Description: The Windows Search Service cannot load the property store information.

    Context: Windows Application, SystemIndex Catalog


    Details:
    The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)


    System errors:
    =============
    Error: (03/19/2015 05:25:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

    Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The HP Support Assistant Service service failed to start due to the following error:
    %%1053

    Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Assistant Service service to connect.

    Error: (03/18/2015 05:00:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).


    Microsoft Office Sessions:
    =========================
    Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c000000500049b1483c01d0628a5bc3ae00C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe7540f530-ce7e-11e4-8ca7-e0cb4e58a427

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82400000150009353429cc01d0615943c4a5e8C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe381412c8-cd4d-11e4-bfda-e0cb4e58a427

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
    Description:
    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
    Description: Context: Windows Application


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
    Description: Context: Windows Application, SystemIndex Catalog


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
    Description: Context: Windows Application, SystemIndex Catalog


    Details:
    Element not found. (HRESULT : 0x80070490) (0x80070490)
    Search.TripoliIndexer

    Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
    Description: Context: Windows Application, SystemIndex Catalog


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
    Search.JetPropStore

    Error: (03/16/2015 00:57:34 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
    Description: Context: Windows Application, SystemIndex Catalog


    Details:
    The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)


    ==================== Memory info ===========================

    Processor: AMD Athlon(tm) II X2 215 Processor
    Percentage of memory in use: 45%
    Total physical RAM: 4863.24 MB
    Available physical RAM: 2632.44 MB
    Total Pagefile: 9724.66 MB
    Available Pagefile: 7122.02 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.83 MB

    ==================== Drives ================================

    Drive c: (HP) (Fixed) (Total:585.34 GB) (Free:511.99 GB) NTFS
    Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.74 GB) (Free:1.61 GB) NTFS ==>[System with boot components (obtained from reading drive)]
    Drive e: (Cleopatra) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (Size: 596.2 GB) (Disk ID: 2EB6E298)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=585.3 GB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=10.7 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================
     
  7. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    ------------------------------------------------
    Remove Programs Using Control Panel
    From Start, Control Panel, click on Programs and Features
    Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

    Advanced SystemCare 8
    GeekBuddy
    IObit Malware Fighter 3
    IObit Uninstaller
    Java 7 Update 75
    McAfee Security Scan Plus
    Smart Defrag 3

    Take extra care in answering questions posed by any Uninstaller.
    -----------------------------------------------------------
    REBOOT (RESTART) Your Machine
    --------------------------------------------------------
    Run A Fix With FRST
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
    (Both on the Desktop is OK, or both in the same folder elsewhere)

    Run FRST64 and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
    If for some reason the tool needs a restart, please make sure you let the system restart normally.
    The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
    When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

    askey127
     

    Attached Files:

  8. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    I am not sure where the directory is at on my computer.
     
  9. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Alright, I found the folder for the Farbar thing on the root of my hard drive but I didn't see the executable in there. I did have one in my downloads folder so I copied that over to the folder along with the other two log files. I then downloaded the file you provided to the same folder and ran it with the Fix button. It finished almost instantaneously so I'm not sure if it did anything or not. I'll post the log file in the next reply.
     
  10. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
    Ran by Gloria Deo at 2015-03-20 02:38:44 Run:1
    Running from C:\FRST
    Loaded Profiles: Gloria Deo (Available profiles: Gloria Deo & Ave Maria & Dee & HotDaddy & Team420 & Guest)
    Boot Mode: Normal
    ==============================================

    Content of fixlist:
    *****************
    HKLM\...\Run: [PC-Doctor for Windows localizer] => C:\Program Files\PC-Doctor for Windows\localizer.exe [95728 2009-09-17] (PC-Doctor, Inc.)
    HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-02-28] (IObit)
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
    BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-02-12] (IObit)
    BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
    BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11] (Adblock)
    BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-02-12] (IObit)
    BHO-x32: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia)
    Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
    FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-21] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-21] (Oracle Corporation)
    Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
    FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
    R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2015-02-12] (IObit)
    R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-02-28] (IObit)
    S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
    R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-02-28] (IObit)
    R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-02-28] (IObit.com)
    2015-02-28 16:23 - 2015-02-28 16:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
    2015-02-18 21:59 - 2015-02-18 22:01 - 32194960 _____ (IObit ) C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe
    2015-02-18 21:59 - 2015-02-18 22:00 - 11414784 _____ (IObit ) C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe
    2015-02-28 16:23 - 2014-12-01 19:53 - 00001179 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
    Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
    AlternateDataStreams: C:\Windows\system32\RtPgEx64.dll:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe:$CmdZnID


    *****************

    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\PC-Doctor for Windows localizer => value deleted successfully.
    HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\IObit Malware Fighter => Value not found.
    "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
    "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully.
    "HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully.
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key not found.
    HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key not found.
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} => Key not found.
    HKCR\Wow6432Node\CLSID\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} => Key not found.
    "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}" => Key deleted successfully.
    "HKCR\Wow6432Node\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}" => Key deleted successfully.
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key not found.
    HKCR\Wow6432Node\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key not found.
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => value deleted successfully.
    HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Key not found.
    "HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2" => Key deleted successfully.
    C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll => Moved successfully.
    "HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2" => Key deleted successfully.
    C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll => Moved successfully.
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Value not found.
    HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Key not found.
    C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => Moved successfully.
    AdvancedSystemCareService8 => Service not found.
    IMFservice => Service not found.
    McComponentHostService => Service not found.
    FileMonitor => Service not found.
    RegFilter => Service not found.
    "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter" => File/Directory not found.
    C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe => Moved successfully.
    C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.2.0.155.exe => Moved successfully.
    "C:\Users\Public\Desktop\IObit Malware Fighter.lnk" => File/Directory not found.
    Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit) => Error: No automatic fix found for this entry.
    "C:\Windows\system32\RtPgEx64.dll" => ":$CmdTcID" ADS not found.
    "C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe" => ":$CmdTcID" ADS not found.
    C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe => ":$CmdZnID" ADS removed successfully.
    "C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.2.25.exe" => ":$CmdZnID" ADS not found.

    ==== End of Fixlog 02:38:45 ====
     
  11. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Holly,
    That Fix looks good.
    Let's make things much easier going forward.
    Firefox will be your default browser going forward, at least until we are finished cleaning.
    Please read and follow these instructions carefully.
    -----------------------------------------------------------
    Change Settings to View File Extensions and Hidden Files
    Go to Start > Control Panel > Folder Options, and click on the View tab.
    Under "Files and Folders",
    • Uncheck "Hide Extensions for known File Types"
    • Check "Show Hidden Files Folders and Drives"
    Click Apply and OK.
    ---------------------------------------------------------
    Set Firefox as Default and Always Ask Where to Save Downloads
    Open Firefox, then hit the Alt key if necessary, so you can see the menu bar at the top.
    In the top menu bar, click on Tools, and select Options.
    In the new dialog window that pops up:
    Click on the General icon in the top bar, and Click the button labeled Make Firefox My Default browser
    Click the radiobutton labeled Always ask me where to save files
    Click the checkbox labeled Always check to see if Firefox is the Default browser on startup.
    Click OK.
    From now on, when you download anything, ALWAYS choose Save, (not Open) and then choose where to save it, and click OK.
    -----------------------------------------------------------
    We are going to start over with the FRST tool. Ignore the one in the C:\FRST folder.
    Download and Run the Farbar Scan Tool
    Download FRST64 and save to your Desktop.
    IF YOU CAN NOW SEE FRST64.EXE on your desktop, please proceed.
    IF YOU CANNOT SEE FRST64.EXE on your desktop, stop here and tell me.
    • Double click Frst64.exe to launch it.
    • FRST64 will start to run.
      • When the tool opens click Yes to disclaimer.
      • Press the Scan button.
      • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
      • Please post them in your next reply.
    If you lose track of them, they will be saved in the same location as FRST64.exe
    Feel free to use separate replies if it's more convenient.

    askey127
     
  12. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
    Ran by Gloria Deo (administrator) on GLORIADEO-PC on 20-03-2015 18:56:16
    Running from C:\Users\Gloria Deo\Desktop
    Loaded Profiles: Gloria Deo (Available profiles: Gloria Deo & Ave Maria & Dee & HotDaddy & Team420 & Guest)
    Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11 (Default browser: FF)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (Comodo) C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe
    (Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\hp\Common\HPSupportSolutionsFrameworkService.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
    (Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
    (Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
    (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
    (Efficient Software) C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe
    (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
    () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
    (CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
    (Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
    (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
    (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
    (The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
    () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1297624 2015-02-12] (COMODO)
    HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [2045440 2010-09-02] (Eastman Kodak Company)
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-06] (Realtek Semiconductor)
    HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
    HKLM-x32\...\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-12-11] (Eastman Kodak Company)
    HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2015-02-22] (Logitech Inc.)
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [TWC.Win7] => C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe [54608 2015-02-24] ()
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-03-06] (Glarysoft Ltd)
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-03-06] (Piriform Ltd)
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {14ca1f27-9088-11e4-bf3e-da42e5d5b0d2} - G:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\MountPoints2: {4c201752-29d2-11e4-baf2-806e6f6e6963} - E:\autorun.exe
    HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-08-22] (Microsoft Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk
    ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
    ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe ()
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
    ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
    Startup: C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Efficient Calendar Free.lnk
    ShortcutTarget: Efficient Calendar Free.lnk -> C:\Program Files (x86)\Efficient Calendar Free\EfficientCalendarFree.exe (Efficient Software)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    ProxyServer: [S-1-5-21-1565124662-2897034396-4106828886-1001] => http=127.0.0.1:8877;https=127.0.0.1:8877
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=iehp
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
    BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-21] (Oracle Corporation)
    BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
    BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
    BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
    BHO-x32: Microsoft Live Search Toolbar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-21] (Oracle Corporation)
    Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-10-21] (LastPass)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
    Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll [2009-07-16] (Microsoft Corp.)
    Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-10-21] (LastPass)
    Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
    Toolbar: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03] (Google Inc.)
    Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
    Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
    Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
    Tcpip\..\Interfaces\{BDA8AB6D-8468-4D36-8430-E8219CEC309D}: [NameServer] 156.154.70.22,156.154.71.22

    FireFox:
    ========
    FF ProfilePath: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034
    FF DefaultSearchEngine: Google (SSL)
    FF DefaultSearchEngine.US: Google
    FF SelectedSearchEngine: Google (SSL)
    FF Homepage: hxxp://www.newadvent.org/
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-14] ()
    FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
    FF Plugin: @microsoft.com/GENUINE -> disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
    FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
    FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
    FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
    FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-10-21] (LastPass)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @hulu.com/Hulu Desktop -> C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.9.1\npHDPlg.dll [2009-10-27] (Hulu LLC)
    FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
    FF Plugin HKU\S-1-5-21-1565124662-2897034396-4106828886-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-12] (Google Inc.)
    FF SearchPlugin: C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\searchplugins\search.xml [2015-03-20]
    FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\google-ssl.xml [2014-08-24]
    FF Extension: Xmarks - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
    FF Extension: LastPass - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-14]
    FF Extension: WOT - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-03-06]
    FF Extension: InvisibleHand - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\[email protected] [2015-03-02]
    FF Extension: Webutation - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2015-03-02]
    FF Extension: NoScript - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-03-14]
    FF Extension: DictionarySearch - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372}.xpi [2015-03-02]
    FF Extension: Adblock Plus - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-28]
    FF Extension: Facebook Share Button - C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\Extensions\{d4e0dc9c-c356-438e-afbe-dca439f4399d}.xpi [2015-03-02]

    Chrome:
    =======
    CHR Profile: C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Google Slides) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-18]
    CHR Extension: (Xmarks Bookmark Sync) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2015-03-18]
    CHR Extension: (Google Docs) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-18]
    CHR Extension: (Google Drive) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-18]
    CHR Extension: (YouTube) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-18]
    CHR Extension: (Adblock Plus) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-18]
    CHR Extension: (Share with Facebook, Twitter, Google+, Email) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjhmhnomplgoidnkjdacpmpccmaplnmk [2015-03-18]
    CHR Extension: (Google Search) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-18]
    CHR Extension: (Google Sheets) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-18]
    CHR Extension: (LastPass: Free Password Manager) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-03-18]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-18]
    CHR Extension: (Google Wallet) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-18]
    CHR Extension: (Gmail) - C:\Users\Gloria Deo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-18]
    CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [Not Found]
    CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - http://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
    R2 ChromiumSecureUpdater; C:\Program Files (x86)\Comodo\Chromium Secure\chromiumsecure_updater.exe [2369736 2015-03-18] (Comodo)
    R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [7618952 2015-02-12] (COMODO)
    S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265304 2015-02-12] (COMODO)
    R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2370240 2014-11-27] (Comodo Security Solutions, Inc.)
    R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
    R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [78088 2014-08-26] (Hewlett-Packard Company)
    S3 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
    S3 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
    S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-02-12] (IObit)
    R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2015-01-06] (Realtek Semiconductor)
    S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2015-03-18] (Secunia)
    R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2015-03-18] (Secunia)
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
    S3 Disconnect Desktop Updater; No ImagePath
    S3 OpenVPNService; No ImagePath

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20184 2015-01-30] (COMODO)
    R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [792648 2015-01-30] (COMODO)
    R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-01-30] (COMODO)
    R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-02-21] (Glarysoft Ltd)
    R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-06] (REALiX(tm))
    R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-01-30] (COMODO)
    R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2015-03-18] (Secunia)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-20 18:56 - 2015-03-20 18:56 - 00020344 _____ () C:\Users\Gloria Deo\Desktop\FRST.txt
    2015-03-20 18:55 - 2015-03-20 18:55 - 02095616 _____ (Farbar) C:\Users\Gloria Deo\Desktop\FRST64.exe
    2015-03-19 17:31 - 2015-03-19 17:36 - 00059549 _____ () C:\Users\Gloria Deo\Downloads\Addition.txt
    2015-03-19 17:28 - 2015-03-20 18:56 - 00000000 ____D () C:\FRST
    2015-03-19 17:28 - 2015-03-19 17:36 - 00066803 _____ () C:\Users\Gloria Deo\Downloads\FRST.txt
    2015-03-19 17:28 - 2015-03-19 17:28 - 02095616 _____ (Farbar) C:\Users\Gloria Deo\Downloads\FRST64.exe
    2015-03-18 07:29 - 2015-03-18 07:29 - 00001229 _____ () C:\Users\Public\Desktop\Internet (Chromium Secure).lnk
    2015-03-18 07:27 - 2015-03-18 07:28 - 50556688 _____ (Comodo) C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe
    2015-03-18 07:21 - 2015-03-20 14:03 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
    2015-03-18 07:21 - 2015-03-18 07:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
    2015-03-18 05:08 - 2015-03-18 05:08 - 00849352 _____ () C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe
    2015-03-18 05:08 - 2015-03-18 05:08 - 00002054 _____ () C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk
    2015-03-18 05:08 - 2015-03-18 05:08 - 00000000 ____D () C:\ProgramData\IsolatedStorage
    2015-03-18 04:55 - 2015-03-18 04:55 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
    2015-03-18 04:45 - 2015-03-18 04:45 - 05490752 _____ (Secunia) C:\Users\Gloria Deo\Downloads\PSISetup (1).exe
    2015-03-17 23:28 - 2015-03-17 23:30 - 35124200 _____ () C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP
    2015-03-16 12:56 - 2015-03-19 20:29 - 00013802 _____ () C:\Windows\PFRO.log
    2015-03-16 12:56 - 2015-03-19 20:29 - 00000168 _____ () C:\Windows\setupact.log
    2015-03-16 12:56 - 2015-03-16 12:56 - 00000000 _____ () C:\Windows\setuperr.log
    2015-03-16 12:55 - 2015-03-16 12:55 - 00000000 ____H () C:\asc_rdflag
    2015-03-14 22:08 - 2015-03-14 22:09 - 47391392 _____ (Disconnect) C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe
    2015-03-13 20:44 - 2015-03-13 20:44 - 00345263 _____ () C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe
    2015-03-10 16:05 - 2015-03-10 16:05 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2015-03-10 16:05 - 2015-03-10 16:05 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
    2015-03-10 16:04 - 2015-03-10 16:04 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
    2015-03-10 16:04 - 2015-03-10 16:04 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2015-03-10 16:04 - 2015-03-10 16:04 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
    2015-03-10 16:04 - 2015-03-10 16:04 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2015-03-10 16:04 - 2015-03-10 16:04 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2015-03-10 16:04 - 2015-03-10 16:04 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
    2015-03-10 16:04 - 2015-03-10 16:04 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
    2015-03-10 16:04 - 2015-03-10 16:04 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
    2015-03-10 16:04 - 2015-03-10 16:04 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
    2015-03-10 16:04 - 2015-03-10 16:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
    2015-03-10 16:04 - 2015-03-10 16:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-03-10 16:03 - 2015-03-10 16:03 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-03-10 16:03 - 2015-03-10 16:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-03-10 16:03 - 2015-03-10 16:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-03-10 16:03 - 2015-02-19 23:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-03-10 16:02 - 2015-03-10 16:02 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-03-10 16:02 - 2015-03-10 16:02 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-03-10 16:02 - 2015-03-10 16:02 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-03-10 16:02 - 2015-03-10 16:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-03-10 16:02 - 2015-03-10 16:02 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-03-10 16:02 - 2015-03-10 16:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-03-10 16:02 - 2015-03-10 16:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-03-10 16:02 - 2015-02-19 22:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-03-10 16:00 - 2015-03-10 16:00 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-03-10 16:00 - 2015-03-10 16:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
    2015-03-08 20:02 - 2015-03-08 20:02 - 00000201 _____ () C:\Users\Gloria Deo\Documents\Kodak Digital Camera Support.txt
    2015-03-06 11:21 - 2015-03-06 11:21 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
    2015-03-06 11:21 - 2015-03-06 11:21 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
    2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2015-03-06 11:21 - 2015-03-06 11:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2015-03-06 11:08 - 2015-03-06 11:08 - 14299648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 11532704 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
    2015-03-06 11:08 - 2015-03-06 11:08 - 10387456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 07621632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 03155968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 02304000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 01705984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 01530400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvencodemft.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 01317408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00991744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00733728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00678432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00539680 _____ (NVIDIA Corporation) C:\Windows\system32\nvudisp.exe
    2015-03-06 11:08 - 2015-03-06 11:08 - 00322080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00256544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod1510.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00170496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcod.dll
    2015-03-06 11:08 - 2015-03-06 11:08 - 00011168 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvBridge.kmd
    2015-03-06 11:00 - 2015-03-06 11:00 - 00001408 _____ () C:\Users\Gloria Deo\Documents\cc_20150306_100015.reg
    2015-03-06 10:57 - 2015-03-06 10:57 - 05325696 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup503.exe
    2015-03-06 10:51 - 2015-03-06 10:51 - 14980336 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe
    2015-03-06 10:46 - 2015-03-06 10:46 - 00243368 _____ () C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe
    2015-02-28 01:04 - 2015-02-28 01:04 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Old Firefox Data
    2015-02-25 06:01 - 2015-01-08 19:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
    2015-02-25 06:01 - 2015-01-08 19:43 - 00419936 _____ () C:\Windows\system32\locale.nls
    2015-02-25 05:51 - 2015-02-25 05:51 - 00000000 ____D () C:\Users\HotDaddy\AppData\Local\Logitech® Webcam Software
    2015-02-24 04:41 - 2015-02-24 04:41 - 00002771 _____ () C:\Users\Public\Desktop\Desktop Weather.lnk
    2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Weather Channel
    2015-02-24 04:41 - 2015-02-24 04:41 - 00000000 ____D () C:\Program Files (x86)\The Weather Channel
    2015-02-23 06:51 - 2015-02-23 06:52 - 43736135 _____ (XXXChurch) C:\Users\Gloria Deo\Downloads\X3Watch.exe
    2015-02-23 03:17 - 2015-02-23 03:17 - 05007216 _____ (Adobe Systems Inc.) C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe
    2015-02-23 03:17 - 2015-02-23 03:17 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
    2015-02-23 03:10 - 2015-02-23 03:10 - 00000000 ____D () C:\Users\Gloria Deo\dwhelper
    2015-02-22 02:51 - 2015-02-22 02:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Logitech® Webcam Software
    2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Leadertech
    2015-02-22 02:48 - 2015-02-22 02:48 - 00000000 ____D () C:\ProgramData\LogiShrd
    2015-02-22 02:47 - 2015-02-22 02:48 - 00000000 ____D () C:\Program Files (x86)\Logitech
    2015-02-22 02:47 - 2015-02-22 02:47 - 00001626 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk
    2015-02-22 02:47 - 2015-02-22 02:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
    2015-02-22 02:22 - 2015-02-22 02:24 - 74637872 _____ (Logitech, Inc.) C:\Users\Gloria Deo\Downloads\lws251.exe
    2015-02-21 00:32 - 2015-03-19 20:31 - 00000342 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
    2015-02-21 00:32 - 2015-03-19 20:31 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
    2015-02-21 00:32 - 2015-03-06 10:52 - 00002990 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
    2015-02-21 00:32 - 2015-03-06 10:52 - 00002656 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
    2015-02-21 00:32 - 2015-03-06 10:52 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
    2015-02-21 00:32 - 2015-03-06 10:52 - 00001086 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
    2015-02-21 00:32 - 2015-02-21 00:32 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
    2015-02-21 00:32 - 2015-02-21 00:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
    2015-02-21 00:24 - 2015-02-21 00:25 - 14952744 _____ () C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe
    2015-02-21 00:15 - 2015-02-21 00:15 - 00007464 _____ () C:\Users\Gloria Deo\Documents\cc_20150220_231535.reg
    2015-02-21 00:13 - 2015-02-21 00:13 - 05325208 _____ (Piriform Ltd) C:\Users\Gloria Deo\Downloads\ccsetup502.exe
    2015-02-21 00:06 - 2015-02-21 00:12 - 00000000 ____D () C:\Program Files (x86)\Disconnect
    2015-02-21 00:06 - 2015-02-21 00:06 - 00003652 _____ () C:\Windows\System32\Tasks\Disconnect Desktop Updater
    2015-02-21 00:05 - 2015-02-21 00:05 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\Disconnect
    2015-02-20 23:47 - 2015-02-20 23:47 - 00000000 ___HD () C:\Users\Gloria Deo\Desktop\Tor Browser
    2015-02-20 23:46 - 2015-02-20 23:47 - 34324222 _____ () C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe
    2015-02-20 22:18 - 2015-02-20 22:18 - 00000000 __SHD () C:\Users\Gloria Deo\AppData\Local\EmieBrowserModeList
    2015-02-18 22:00 - 2015-02-18 22:00 - 05329480 _____ (Secunia) C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe
    2015-02-18 01:57 - 2015-02-18 01:57 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
    2015-02-18 01:44 - 2015-03-06 11:03 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
    2015-02-18 01:44 - 2015-02-18 01:44 - 00691576 _____ (Yahoo! Inc.) C:\Users\Gloria Deo\Downloads\msgr11us.exe

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-20 18:57 - 2014-08-22 04:09 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\.purple
    2015-03-20 18:49 - 2014-08-22 01:41 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
    2015-03-20 18:42 - 2014-08-22 02:27 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2015-03-20 18:09 - 2014-10-05 13:43 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job
    2015-03-20 18:02 - 2014-08-24 05:39 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-03-20 12:00 - 2011-10-27 04:38 - 01052891 _____ () C:\Windows\WindowsUpdate.log
    2015-03-20 09:09 - 2014-10-05 13:43 - 00000876 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job
    2015-03-20 02:52 - 2009-07-14 01:13 - 00896284 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-03-20 02:46 - 2014-08-22 03:29 - 00000000 ____D () C:\ProgramData\Kodak
    2015-03-20 02:02 - 2014-08-24 05:39 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-03-19 20:37 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-03-19 20:37 - 2009-07-14 00:45 - 00018928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-03-19 20:31 - 2014-08-22 06:18 - 00002892 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Gloria Deo)
    2015-03-19 20:29 - 2014-08-22 06:18 - 00000000 ____D () C:\Program Files (x86)\IObit
    2015-03-19 20:29 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-03-19 20:28 - 2015-01-06 12:44 - 00019296 _____ () C:\Windows\system32\Drivers\fvstore.dat
    2015-03-19 20:28 - 2014-09-03 08:07 - 00000000 ____D () C:\Users\Gloria Deo\Documents\Efficient Organizer AutoBackup
    2015-03-19 20:28 - 2014-09-01 23:16 - 01851392 _____ () C:\Users\Gloria Deo\Documents\MyCalendar.ecfx
    2015-03-19 20:27 - 2014-08-22 02:27 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
    2015-03-19 20:26 - 2014-12-01 20:29 - 00000000 ____D () C:\Program Files (x86)\Java
    2015-03-19 20:24 - 2014-08-22 01:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
    2015-03-19 17:20 - 2014-08-26 14:38 - 00000000 ____D () C:\ProgramData\ProductData
    2015-03-18 07:29 - 2014-08-22 01:39 - 00000000 ____D () C:\Program Files (x86)\Comodo
    2015-03-18 07:21 - 2014-08-24 05:38 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Google
    2015-03-18 07:20 - 2014-08-24 05:38 - 00000000 ____D () C:\Program Files (x86)\Google
    2015-03-18 07:17 - 2014-09-27 00:23 - 00002922 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Gloria_Deo
    2015-03-18 05:42 - 2014-08-28 17:48 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-03-18 04:55 - 2014-11-28 08:02 - 00018456 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_amd64.sys
    2015-03-18 04:45 - 2015-02-16 12:17 - 00000000 ____D () C:\Program Files (x86)\Secunia
    2015-03-16 12:55 - 2014-08-27 05:07 - 75374592 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
    2015-03-16 12:55 - 2014-08-27 05:07 - 00925696 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
    2015-03-16 12:55 - 2014-08-27 05:07 - 00172032 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
    2015-03-16 12:55 - 2014-08-27 05:07 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
    2015-03-15 20:43 - 2014-08-22 12:20 - 00509440 _____ (Tech Support Guy System) C:\Users\Gloria Deo\Downloads\SysInfo.exe
    2015-03-14 22:18 - 2015-01-06 13:51 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Adobe
    2015-03-14 22:17 - 2014-08-22 02:27 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2015-03-14 22:17 - 2014-08-22 02:27 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2015-03-14 22:17 - 2014-08-22 02:27 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2015-03-13 20:44 - 2014-08-22 04:07 - 00000000 ____D () C:\Program Files (x86)\Pidgin
    2015-03-12 16:29 - 2015-02-13 07:47 - 04575232 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
    2015-03-12 16:29 - 2014-10-05 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
    2015-03-11 09:55 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
    2015-03-11 09:07 - 2009-07-14 01:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
    2015-03-11 03:37 - 2009-07-14 00:45 - 00358648 _____ () C:\Windows\system32\FNTCACHE.DAT
    2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
    2015-03-11 03:35 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
    2015-03-11 03:13 - 2014-08-22 02:39 - 00000000 ____D () C:\Windows\system32\MRT
    2015-03-11 03:03 - 2014-08-22 02:39 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-03-06 11:11 - 2011-10-27 04:43 - 00000000 ____D () C:\ProgramData\NVIDIA
    2015-03-06 11:10 - 2009-07-29 11:21 - 02589728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplui.exe
    2015-03-06 11:08 - 2009-07-18 05:41 - 09480192 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
    2015-03-06 11:08 - 2009-07-18 05:41 - 04363776 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
    2015-03-06 11:08 - 2009-07-18 05:41 - 01229312 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
    2015-03-06 10:58 - 2014-09-28 04:43 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
    2015-03-06 10:58 - 2014-09-28 04:43 - 00000000 ____D () C:\Program Files\CCleaner
    2015-02-25 06:12 - 2014-09-15 06:15 - 11159984 _____ ( ) C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe
    2015-02-25 00:45 - 2014-08-28 17:48 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
    2015-02-24 04:39 - 2014-08-22 10:18 - 04090536 _____ (The Weather Channel) C:\Users\Gloria Deo\Downloads\twcsetup.exe
    2015-02-24 04:39 - 2014-08-22 10:18 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Local\Downloaded Installations
    2015-02-23 03:10 - 2014-08-22 01:04 - 00000000 ____D () C:\Users\Gloria Deo
    2015-02-22 02:48 - 2014-08-22 02:21 - 00012673 _____ () C:\Windows\system32\lvcoinst.log
    2015-02-22 02:48 - 2014-08-22 02:21 - 00000000 ____D () C:\Program Files\Common Files\logishrd
    2015-02-22 02:47 - 2012-09-21 15:09 - 00542568 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2.dll
    2015-02-22 02:47 - 2012-09-21 15:09 - 00538472 _____ (Logitech Inc.) C:\Windows\SysWOW64\LVUI2RC.dll
    2015-02-22 02:47 - 2012-09-21 15:09 - 00305000 _____ (Logitech Inc.) C:\Windows\SysWOW64\lvcodec2.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\SysWOW64\LogiDPP.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 10919784 _____ () C:\Windows\system32\LogiDPP.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\SysWOW64\DevManagerCore.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 00338136 _____ () C:\Windows\system32\DevManagerCore.dll
    2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\SysWOW64\LogiDPPApp.exe
    2015-02-22 02:47 - 2012-09-21 15:08 - 00103272 _____ () C:\Windows\system32\LogiDPPApp.exe
    2015-02-22 02:47 - 2012-09-21 15:04 - 04763680 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvuvc64.sys
    2015-02-22 02:47 - 2012-09-21 15:04 - 00768288 _____ (Logitech Inc.) C:\Windows\system32\LVUI64.dll
    2015-02-22 02:47 - 2012-09-21 15:04 - 00560416 _____ (Logitech Inc.) C:\Windows\system32\LVUIRC64.dll
    2015-02-22 02:47 - 2012-09-21 15:04 - 00351520 _____ (Logitech Inc.) C:\Windows\system32\Drivers\lvrs64.sys
    2015-02-22 02:47 - 2012-09-21 15:04 - 00262432 _____ (Logitech Inc.) C:\Windows\system32\lvco1351823.dll
    2015-02-22 02:47 - 2012-09-21 15:04 - 00175392 _____ (Logitech Inc.) C:\Windows\system32\lvcod64.dll
    2015-02-21 00:38 - 2014-12-01 20:58 - 00001246 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk
    2015-02-21 00:38 - 2014-12-01 19:55 - 00003250 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
    2015-02-21 00:38 - 2014-12-01 19:55 - 00003194 _____ () C:\Windows\System32\Tasks\Driver Booster Update
    2015-02-21 00:38 - 2014-12-01 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
    2015-02-21 00:35 - 2014-08-22 10:23 - 00000000 ____D () C:\ProgramData\GlarySoft
    2015-02-21 00:32 - 2014-08-22 10:21 - 00000000 ____D () C:\Users\Gloria Deo\AppData\Roaming\GlarySoft
    2015-02-21 00:26 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\tracing
    2015-02-18 01:42 - 2015-02-16 16:19 - 00000000 ____D () C:\Program Files (x86)\Trillian

    ==================== Files in the root of some directories =======

    2014-10-21 11:17 - 2014-10-21 11:17 - 14016000 _____ () C:\Program Files (x86)\Common Files\lpuninstall.exe
    2014-10-16 08:01 - 2014-10-16 08:01 - 0000236 _____ () C:\Users\Gloria Deo\AppData\Local\LaunchHomeCenter.log

    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-03-15 01:41

    ==================== End Of Log ============================
     
  13. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
    Ran by Gloria Deo at 2015-03-20 18:57:47
    Running from C:\Users\Gloria Deo\Desktop
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: COMODO Antivirus (Enabled - Up to date) {F0BC89B2-8937-0933-021B-B17D981F2A71}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Comodo Defense+ (Enabled - Up to date) {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
    FW: COMODO Firewall (Enabled) {C8870897-C358-086B-2944-184866CC6D0A}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
    Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
    Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
    Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
    aioscnnr (x32 Version: 5.8.10.0 - Your Company Name) Hidden
    aioscnnr (x32 Version: 7.6.13.10 - Your Company Name) Hidden
    CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
    CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
    center (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
    Chromium Secure (HKLM-x32\...\Chromium Secure) (Version: 36.1.1.3 - Comodo)
    Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
    Comodo IceDragon (HKLM-x32\...\Comodo IceDragon) (Version: 26.0.0.2 - COMODO)
    COMODO Internet Security Premium (HKLM\...\{2736B6BD-31EC-4FC8-A48C-F0A5C914C0B6}) (Version: 7.0.55655.4142 - COMODO Security Solutions Inc.)
    Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
    Cursed Fates - The Headless Horseman (HKLM-x32\...\Cursed Fates - The Headless Horseman) (Version: - )
    CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2115 - CyberLink Corp.)
    DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
    Driver Booster 2.2 (HKLM-x32\...\Driver Booster_is1) (Version: 2.2 - IObit)
    DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard)
    DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224 - Hewlett-Packard) Hidden
    Efficient Calendar Free 3.71 (HKLM-x32\...\Efficient Calendar Free_is1) (Version: - Efficient Software)
    Emperor: Rise of the Middle Kingdom (HKLM-x32\...\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}) (Version: - )
    erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
    essentials (x32 Version: 7.8.0.0 - Eastman Kodak Company) Hidden
    e-Sword (HKLM-x32\...\{463178C4-E707-41EE-BE8A-080C62BF526D}) (Version: 10.04.0000 - Rick Meyers)
    Fairy Tale Mysteries - The Beanstalk (HKLM-x32\...\Fairy Tale Mysteries - The Beanstalk) (Version: - )
    Fairy Tale Mysteries - The Puppet Thief (HKLM-x32\...\Fairy Tale Mysteries - The Puppet Thief) (Version: - )
    Glary Utilities 5.20 (HKLM-x32\...\Glary Utilities 5) (Version: 5.20.0.35 - Glarysoft Ltd)
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
    Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
    Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
    Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
    Google+ Auto Backup (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
    Grim Legends - The Forsaken Bride (HKLM-x32\...\Grim Legends - The Forsaken Bride) (Version: - )
    Guifications Plugin (remove only) (HKLM-x32\...\pidgin-guifications) (Version: - )
    Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5247.34 - PC-Doctor, Inc.)
    HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
    HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
    HP MediaSmart Demo (HKLM-x32\...\{9DEF9686-CCB2-47B7-BF83-B49EA21FA016}) (Version: 1.00.0000 - Hewlett-Packard)
    HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.1.3317 - Hewlett-Packard)
    HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.1.3422 - Hewlett-Packard)
    HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.1.0.1 - Hewlett-Packard)
    HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{35021DFB-F9CA-402A-89A2-47F91E506465}) (Version: 1.0.2.0 - Hewlett-Packard)
    HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.11.0 - Hewlett-Packard)
    HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
    HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company)
    HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
    Hulu Desktop (HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\...\HuluDesktop) (Version: 0.9.9 - Hulu LLC)
    Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
    Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
    Kodak AIO Printer (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
    KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.8.5.2 - Eastman Kodak Company)
    LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2017 - CyberLink Corp.)
    LabelPrint (x32 Version: 2.5.2017 - CyberLink Corp.) Hidden
    LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version: - LastPass)
    Legends of Lost Relics (HKLM-x32\...\{FA2CC872-7DFA-438E-9F4D-A840E1D4D8A5}) (Version: 1.0.0 - On Hand Software)
    LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe)
    Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
    LSI PCI-SV92EX Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
    Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
    Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
    Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.566.0 - Microsoft Live Search Toolbar)
    Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
    Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard)
    Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310 - Hewlett-Packard) Hidden
    Mozilla Firefox 36.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 en-US)) (Version: 36.0.1 - Mozilla)
    Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
    MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
    NET Bible for e-Sword (version 9.x) (HKLM-x32\...\NET Bible for e-Sword (version 9.x)2.0) (Version: - )
    NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
    NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
    ocr (x32 Version: 6.2.3.50 - Eastman Kodak Company) Hidden
    OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
    Pharaoh (HKLM-x32\...\Pharaoh) (Version: - )
    Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
    Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
    PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
    Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3304 - CyberLink Corp.)
    Power2Go (x32 Version: 6.0.3304 - CyberLink Corp.) Hidden
    PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3503 - CyberLink Corp.)
    PowerDirector (x32 Version: 7.0.3503 - CyberLink Corp.) Hidden
    PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
    PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
    Recovery Manager (x32 Version: 5.5.2216 - CyberLink Corp.) Hidden
    Saints down through the ages.dctx version e-Sword (HKLM-x32\...\{D7F1A6E9-5A60-4573-AFBD-4A047A57635E}_is1) (Version: e-Sword - BibleSupport.com)
    Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
    SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1130 - SUPERAntiSpyware.com)
    Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
    swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
    The Weather Channel App (HKLM-x32\...\{167158CE-1637-4167-8A1C-C2549EEA966A}) (Version: 1.00.0000 - The Weather Channel)
    Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
    Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
    Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
    Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
    CustomCLSID: HKU\S-1-5-21-1565124662-2897034396-4106828886-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Gloria Deo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)

    ==================== Restore Points =========================

    05-03-2015 07:59:05 Scheduled Checkpoint
    06-03-2015 11:07:53 Driver Booster : NVIDIA GeForce 9100
    11-03-2015 03:00:42 Windows Update
    18-03-2015 08:04:56 Scheduled Checkpoint
    19-03-2015 20:22:48 Removed GeekBuddy.
    19-03-2015 20:25:32 Removed Java 7 Update 75

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {0022FE9A-BB9B-4658-BAB6-584A88FEEA55} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
    Task: {0EB92B2C-6550-4E96-A43E-306A347A28AA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-14] (Adobe Systems Incorporated)
    Task: {10948471-6129-4BF8-B10C-79944DCEF75B} - System32\Tasks\Uninstaller_SkipUac_Gloria_Deo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
    Task: {160C0C30-EB3D-4D93-A4EE-4D32314D3FC3} - System32\Tasks\Disconnect Desktop Updater => C:\Program Files (x86)\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe
    Task: {217F8EA8-8CDC-4173-89F8-F7DFC95534BE} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-06] (Glarysoft Ltd)
    Task: {29246118-0833-4280-9221-9E52438004C0} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-02-12] (COMODO)
    Task: {467532FA-56AB-4991-BA68-650EC27F8094} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
    Task: {4CD0A399-C4C5-4402-9280-641E4127A267} - System32\Tasks\Driver Booster SkipUAC (Gloria Deo) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-02-21] (IObit)
    Task: {6AF0530F-9504-418B-902C-B879FB66AB09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-01-12] (Adobe Systems Incorporated)
    Task: {6DF61375-742B-446C-867B-60364890FAA7} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-06] (Glarysoft Ltd)
    Task: {75BB654E-A585-4458-8642-92C917CD69CF} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-02-21] (IObit)
    Task: {773FC000-543E-4CF3-96DF-05B355609C6F} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {7A95C745-093E-495B-827F-7A49EDD588DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-06] (Piriform Ltd)
    Task: {7FCF74AC-3E6B-4890-A615-37DB3704BE1E} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {895EE11C-D2B4-4EF6-AA33-AD701989ED91} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {988458CA-A0A3-4964-A020-0AC103B1563D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
    Task: {AA7BBA5F-3DD3-47A9-8741-04CFABF80EF7} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-02-21] (IObit)
    Task: {BEA28887-9CB0-489B-B3B3-A62A3B29FF47} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-05] (Google Inc.)
    Task: {C3D9DECF-327D-403D-B860-B56941FAEA80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
    Task: {C675E25A-7D48-42C5-B4C8-156F3E0ACF7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-24] (Google Inc.)
    Task: {E0E7B229-211F-4077-BE68-E8B386D8FCFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe
    Task: {E15D98A2-7DEE-4FD7-AD27-6FAEDC926EFA} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-22] (CyberLink)
    Task: {F12A9FC8-45D8-47BD-B837-43C1CBA670A3} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
    Task: {F51087E0-14CC-4B43-85B0-318AA6726492} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-02-12] (COMODO)
    Task: {F65E7AD3-F0D2-4C7A-980B-099AA05D01F6} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001Core.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565124662-2897034396-4106828886-1001UA.job => C:\Users\Gloria Deo\AppData\Local\Google\Update\GoogleUpdate.exe

    ==================== Loaded Modules (whitelisted) ==============

    2012-09-13 01:38 - 2015-02-22 02:47 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
    2015-02-24 03:01 - 2015-02-24 04:41 - 00054608 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe
    2015-02-24 03:01 - 2015-02-24 03:01 - 01165144 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.UI.dll
    2015-02-24 03:01 - 2015-02-24 03:01 - 00266592 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Services.dll
    2015-02-24 03:01 - 2015-02-24 03:01 - 00115552 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Models.dll
    2013-04-15 18:39 - 2013-04-15 18:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
    2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
    2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
    2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
    2009-10-22 21:50 - 2009-10-22 21:50 - 00931112 _____ () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
    2015-03-02 01:39 - 2015-03-02 01:39 - 00080160 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00100352 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 01274655 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
    2007-12-16 22:15 - 2007-12-16 22:15 - 00651785 _____ () C:\Program Files (x86)\Pidgin\plugins\guifications.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00328186 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00107365 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 00190464 _____ () C:\Program Files (x86)\Pidgin\libsasl.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 02097721 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00818985 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00417758 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00029225 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 00102400 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 00115712 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 00140288 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll
    2014-11-23 13:33 - 2014-11-23 13:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
    2015-02-18 01:57 - 2015-02-18 01:57 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00509014 _____ () C:\Program Files (x86)\Pidgin\spellcheck\lib\enchant\libenchant_ispell.dll
    2014-11-23 13:34 - 2014-11-23 13:34 - 00999501 _____ () C:\Program Files (x86)\Pidgin\spellcheck\lib\enchant\libenchant_myspell.dll
    2015-03-14 22:14 - 2015-03-14 22:14 - 01020928 _____ () C:\Users\Gloria Deo\AppData\Roaming\Mozilla\Firefox\Profiles\l0xi5x53.default-1425099895034\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

    AlternateDataStreams: C:\Windows\system32\adtschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aepdu.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AERTAC64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\aitstatic.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\apisetschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidcertstorecheck.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidpolicyconverter.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appidsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\auditpol.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\charmap.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\credssp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\crypt32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptnet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\csrsrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\CX64APO.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\DevManagerCore.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dxtmsft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\dxtrans.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ie4uinit.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieapfltr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iedkcs32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieetwcollector.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieetwcollectorres.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieetwproxystub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieframe.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iernonce.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iertutil.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\iesetup.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\inetcpl.cpl:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\JavaScriptCollectionAgent.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\jscript9.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\jscript9diag.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\jsproxy.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\kerberos.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LogiDPP.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LogiDPPApp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lsasrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lsass.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lvco1351823.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\lvcod64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LVUI64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\LVUIRC64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msaudite.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msfeeds.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mshtml.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\MshtmlDac.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mshtmled.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\mshtmlmedia.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msobjs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msrating.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\MsSpellCheckingFacility.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\msv1_0.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ncrypt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvapi64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcod.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcod1510.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcplui.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcuda.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvcuvid.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvd3dumx.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvdecodemft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvoglv64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvudisp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\nvwgf2umx.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\oleaut32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RCoInstII64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rdpcorets.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RdpGroupPolicyExtension.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rdpudd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RegistryDefragBootTime.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RltkAPO64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RTCOM64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RtDataProc64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RtkApi64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\RtPgEx64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\scesrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\schannel.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\secur32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\setbcdlocale.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\smss.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRAPO64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRCOM.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRCOM64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\SRRPTR64.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\sspicli.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\sspisrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\TSpkg.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\tzres.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\ubpm.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\urlmon.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\vbscript.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wdigest.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\win32k.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wininet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\winload.efi:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\winload.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\winresume.efi:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wintrust.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WMPhoto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WSManHTTPConfig.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WSManMigrationPlugin.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WsmAuto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WsmSvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\WsmWmiPl.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\adtschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\apisetschema.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\appidapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\atmfd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\atmlib.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\AudioEng.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\AUDIOKSE.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\AudioSes.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\auditpol.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\blackbox.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\charmap.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\credssp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\crypt32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptnet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptsp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptsvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\cryptui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dciman32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\DevManagerCore.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\drmmgrtn.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\drmv2clt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dxmasf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dxtmsft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\dxtrans.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\evr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\fontsub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\GPhotos.scr:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieapfltr.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iedkcs32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieetwproxystub.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieframe.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iernonce.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iertutil.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\iesetup.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieui.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\inetcpl.cpl:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\java.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\javaw.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\javaws.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\jscript9.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\jscript9diag.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\jsproxy.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\kerberos.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LogiDPP.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LogiDPPApp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\lpk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\lvcodec2.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LVUI2.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\LVUI2RC.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mferror.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mfplat.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mfpmp.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mfps.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msaudite.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msctf.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msdxm.ocx:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msfeeds.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mshtml.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\MshtmlDac.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mshtmled.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\mshtmlmedia.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msnetobj.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msobjs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msrating.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msscp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\msv1_0.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ncrypt.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvapi.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvcuda.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvcuvenc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvcuvid.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvd3dum.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvdecodemft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvencodemft.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvoglv32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\nvwgf2um.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\oleaut32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\qdvd.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\quartz.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\rrinstaller.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\scesrv.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\schannel.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\secur32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\shell32.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\spwmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\sspicli.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\TSpkg.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\tzres.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\ubpm.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\urlmon.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\vbscript.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wdigest.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WindowsCodecs.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wininet.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wintrust.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wmdrmsdk.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wmp.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WMPhoto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\wmploc.DLL:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WSManHTTPConfig.exe:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WSManMigrationPlugin.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WsmAuto.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WsmSvc.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\SysWOW64\WsmWmiPl.dll:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\appid.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\cng.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\ksecdd.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\ksecpkg.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\lvrs64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\lvuvc64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\nvlddmkm.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\psi_mf_amd64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\RTKVHD64.sys:$CmdTcID
    AlternateDataStreams: C:\Windows\system32\Drivers\tdx.sys:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Desktop\FRST64.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Desktop\FRST64.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Adobe_Flash_Player_(IE)_v16.0.0.235.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\advanced-systemcare-setup (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\AppManagerSetup_1.47.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\CCleaner_v5.00.5050.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup502.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\ccsetup503.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\chromiumsecuresetup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Disconnect+Desktop.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Driver_Booster_v2.1.0.163.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\EfficientCalendarFree-Setup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Firefox Setup Stub 36.0.1.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\FRST64.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.16.0.29.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.17.0.30.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.18.0.31.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.19.0.32.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Glary_Utilities_v5.20.0.35.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\IObit_Malware_Fighter_v3.0.1.19.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\lws251.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Malwarebytes_Anti_Malware_v2.0.4.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msgr11us.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_ia64.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_SDK.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\msxml6_x64.msi:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PaladinDoodler_8457637c.ZIP:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-2.10.11.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\pidgin-guifications-2.16 (2).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup (1).exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\PSISetup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Secunia_PSI_v3.0.0.9016.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\Shockwave_Installer_Slim.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\SysInfo.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\torbrowser-install-4.0.3_en-US.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\trillian-v5.5.0.19.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\twcsetup.exe:$CmdZnID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdTcID
    AlternateDataStreams: C:\Users\Gloria Deo\Downloads\X3Watch.exe:$CmdZnID

    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) ===============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-1565124662-2897034396-4106828886-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gloria Deo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
    DNS Servers: 156.154.70.22 - 156.154.71.22

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)

    MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
    MSCONFIG\startupreg: GUDelayStartup => "c:\program files (x86)\glary utilities 5\startupmanager.exe" -delayrun
    MSCONFIG\startupreg: tvncontrol => "c:\program files (x86)\common files\comodo\geekbuddyrsp.exe" -controlservice -slave
    MSCONFIG\startupreg: TWC.Win7 => c:\program files (x86)\the weather channel\desktop weather\twc.win7.exe

    ==================== Accounts: =============================

    Administrator (S-1-5-21-1565124662-2897034396-4106828886-500 - Administrator - Disabled)
    Ave Maria (S-1-5-21-1565124662-2897034396-4106828886-1003 - Limited - Enabled) => C:\Users\Ave Maria
    Dee (S-1-5-21-1565124662-2897034396-4106828886-1004 - Limited - Enabled) => C:\Users\Dee
    Gloria Deo (S-1-5-21-1565124662-2897034396-4106828886-1001 - Administrator - Enabled) => C:\Users\Gloria Deo
    Guest (S-1-5-21-1565124662-2897034396-4106828886-501 - Limited - Disabled) => C:\Users\Guest
    HomeGroupUser$ (S-1-5-21-1565124662-2897034396-4106828886-1002 - Limited - Enabled)
    HotDaddy (S-1-5-21-1565124662-2897034396-4106828886-1005 - Limited - Enabled) => C:\Users\HotDaddy
    Team420 (S-1-5-21-1565124662-2897034396-4106828886-1006 - Limited - Enabled) => C:\Users\Team420

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (03/19/2015 08:35:07 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Exception code: 0x40000015
    Fault offset: 0x00093534
    Faulting process id: 0x98c
    Faulting application start time: 0xPSIA.exe0
    Faulting application path: PSIA.exe1
    Faulting module path: PSIA.exe2
    Report Id: PSIA.exe3

    Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
    Description: Value cannot be null.
    Parameter name: key

    Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
    Description: Value cannot be null.
    Parameter name: key

    Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
    Description: Object reference not set to an instance of an object.

    Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Exception code: 0xc0000005
    Fault offset: 0x00049b14
    Faulting process id: 0x83c
    Faulting application start time: 0xPSIA.exe0
    Faulting application path: PSIA.exe1
    Faulting module path: PSIA.exe2
    Report Id: PSIA.exe3

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
    Exception code: 0x40000015
    Fault offset: 0x00093534
    Faulting process id: 0x29cc
    Faulting application start time: 0xPSIA.exe0
    Faulting application path: PSIA.exe1
    Faulting module path: PSIA.exe2
    Report Id: PSIA.exe3

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
    Description: The index cannot be initialized.


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
    Description: The application cannot be initialized.

    Context: Windows Application


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


    System errors:
    =============
    Error: (03/19/2015 08:35:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

    Error: (03/19/2015 08:22:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The Advanced SystemCare Service 8 service terminated unexpectedly. It has done this 1 time(s).

    Error: (03/19/2015 05:25:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

    Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The HP Support Assistant Service service failed to start due to the following error:
    %%1053

    Error: (03/19/2015 05:21:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Assistant Service service to connect.

    Error: (03/18/2015 05:00:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).


    Microsoft Office Sessions:
    =========================
    Error: (03/19/2015 08:35:07 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82400000150009353498c01d062a50016aba0C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exef4b59810-ce98-11e4-a55d-e0cb4e58a427

    Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
    Description: Value cannot be null.
    Parameter name: key

    Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
    Description: Value cannot be null.
    Parameter name: key

    Error: (03/19/2015 08:31:23 PM) (Source: Application) (EventID: 0) (User: )
    Description: Object reference not set to an instance of an object.

    Error: (03/19/2015 05:25:26 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c000000500049b1483c01d0628a5bc3ae00C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe7540f530-ce7e-11e4-8ca7-e0cb4e58a427

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 01:04:56 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
    Description: The handle is invalid

    Error: (03/18/2015 05:00:27 AM) (Source: Application Error) (EventID: 1000) (User: )
    Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82400000150009353429cc01d0615943c4a5e8C:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe381412c8-cd4d-11e4-bfda-e0cb4e58a427

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
    Description:
    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (03/16/2015 00:57:39 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
    Description: Context: Windows Application


    Details:
    The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)


    ==================== Memory info ===========================

    Processor: AMD Athlon(tm) II X2 215 Processor
    Percentage of memory in use: 38%
    Total physical RAM: 4863.24 MB
    Available physical RAM: 3006.85 MB
    Total Pagefile: 9724.66 MB
    Available Pagefile: 7309.72 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.85 MB

    ==================== Drives ================================

    Drive c: (HP) (Fixed) (Total:585.34 GB) (Free:512.83 GB) NTFS
    Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.74 GB) (Free:1.61 GB) NTFS ==>[System with boot components (obtained from reading drive)]
    Drive e: (Cleopatra) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (Size: 596.2 GB) (Disk ID: 2EB6E298)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=585.3 GB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=10.7 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================
     
  14. Holly3278

    Holly3278 Thread Starter

    Joined:
    Jan 28, 2003
    Messages:
    1,399
    Also, I followed your instructions you gave me. Thank you so much for helping me.
     
  15. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Holly,
    --------------------------------------------------------
    Run A Fix With FRST
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both the program FRST64.exe and Fixlist.txt be in the same location, or the fix will not work.
    (Both on the Desktop is OK, or both in the same folder elsewhere)

    Run FRST64 and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
    If for some reason the tool needs a restart, please make sure you let the system restart normally.
    The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
    When finished, FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

    askey127
     

    Attached Files:

  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1144966

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice