1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Possible Virus/Malware

Discussion in 'Virus & Other Malware Removal' started by bkw5138, Mar 23, 2015.

Thread Status:
Not open for further replies.
Advertisement
  1. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    Hello recently a couple of days i noticed my computer was having a hard time loading videos and playing java games at a decent frame rate. I also noticed upon playing and even at sitting idle that my CPU usage was spiking between 70-80 average and about 40-50% ram was being used. I ran an avast scan and it came up with some Trojan horses, after what i thought i deleted them apparently i didn't because my computer is still having the same problems.


    Tech Support Guy System Info Utility version 1.0.0.2
    OS Version: Microsoft® Windows Vista™ Home Premium, Service Pack 2, 32 bit
    Processor: AMD Turion(tm) X2 Dual-Core Mobile RM-70, x64 Family 17 Model 3 Stepping 1
    Processor Count: 2
    RAM: 2813 Mb
    Graphics Card: ATI Radeon 3100 Graphics, 256 Mb
    Hard Drives: C: Total - 189280 MB, Free - 84769 MB;
    Motherboard: TOSHIBA, Satellite P305D
    Antivirus: avast! Antivirus, Updated and Enabled
     
  2. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Hi bkw5138,
    ----------------------------------------------
    Download and Run Temp File Cleaner (TFC.exe)
    Download Temp File Cleaner and save it to your desktop.
    You might want to Save any unsaved work. TFC will close ALL open programs... including your browser!
    Right click the TFC icon and choose Run as administrator.
    If you have a lot of junk files to remove, it could take a while, so please be patient and let it finish.
    When it's done, it will report the total size of files removed. If it asks to Reboot, choose to do so. This will remove files that could not be removed while Windows was running.
    After Restart, log back in to your usual account.
    You can keep TFC on your desktop and run it every week or two to clean out excessive temporary files. It does usually require a restart.
    -----------------------------------------------------------
    Download and Run the Farbar Scan Tool
    • Download FRST and save to your Desktop.
    • Double click Frst.exe to launch it.
    • FRST will start to run.
      • When the tool opens click Yes to disclaimer.
      • Press the Scan button.
      • When finished scanning, 2 logs will open on your Desktop, FRST.txt and Addition.txt
      • Please post them in your next reply.
    If you lose track of them, they will be saved in the same location as FRST.exe
    Feel free to use separate replies if it's more convenient.

    askey127
     
  3. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015
    Ran by Angela Marie at 2015-03-23 18:18:15
    Running from C:\Users\Angela Marie\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    AV: AVG Internet Security 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: AVG Internet Security 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
    AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
    FW: AVG Internet Security 2015 (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.3.181.26 - Adobe Systems Incorporated)
    Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated)
    Advanced SystemCare 8 (HKLM\...\Advanced SystemCare 8_is1) (Version: 8.1.0 - IObit)
    Avast Free Antivirus (HKLM\...\Avast) (Version: 10.2.2214 - AVAST Software)
    AVG (HKLM\...\AvgZen) (Version: 1.0.445 - AVG Technologies)
    AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5856 - AVG Technologies)
    AVG PC TuneUp 2015 (HKLM\...\AVG PC TuneUp) (Version: 15.0.1001.403 - AVG Technologies)
    AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 4.1.0.411 - AVG Technologies)
    BlackBerry Desktop Software 4.7 (HKLM\...\BlackBerry_{034E061B-B3A3-4123-842E-10C1B6B3C8C7}) (Version: 4.7.0.32 - Research In Motion Ltd.)
    Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.36.7.0 - Conexant)
    CyberLink PowerCinema for TOSHIBA (HKLM\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 6.0.1616 - CyberLink Corp.)
    Driver Booster 2.2 (HKLM\...\Driver Booster_is1) (Version: 2.2 - IObit)
    Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
    Google Updater (HKLM\...\Google Updater) (Version: 2.4.2432.1652 - Google Inc.)
    HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5051&SUBSYS_1179) (Version: 7.73.00 - Conexant Systems)
    HWiNFO32 Version 4.60 (HKLM\...\HWiNFO32_is1) (Version: 4.60 - Martin Malík - REALiX)
    IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 4.2.6.2 - IObit)
    Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
    Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
    Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
    Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
    Surfing Protection (HKLM\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
    TOSHIBA Extended Tiles for Windows Mobility Center (HKLM\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version: 1.01.00 - TOSHIBA Corporation)
    TOSHIBA Face Recognition (HKLM\...\InstallShield_{C730E42C-935A-45BB-A0C5-37E5234D111B}) (Version: 2.0.2.32 - TOSHIBA)
    TOSHIBA Hardware Setup (HKLM\...\InstallShield_{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}) (Version: 3.00.01.00 - TOSHIBA)
    TOSHIBA Supervisor Password (HKLM\...\InstallShield_{491DD193-1B57-4D1C-8B14-18B96992A89F}) (Version: 3.00.01.00 - TOSHIBA)
    TOSHIBA Value Added Package (HKLM\...\InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}) (Version: 1.1.19 - TOSHIBA Corporation)
    Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{05589F80-C356-11CE-BF01-00AA0055595A}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{083863F1-70DE-11D0-BD40-00A0C911CE86}\InprocServer32 -> No File Path

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{05589F80-C356-11CE-BF01-00AA0055595A}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{083863F1-70DE-11D0-BD40-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1383A31C-26AC-4d88-91F1-EEAD77D81FA6}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP3Writer.dll ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1383A31C-26AC-4d88-91F1-EEAD77D81FA6}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP3Writer.dll ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{17CCA71B-ECD7-11D0-B908-00A0C9223196}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{17CCA71B-ECD7-11D0-B908-00A0C9223196}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1A8766A0-62CE-11CF-A5D6-28DB04C10000}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1A8766A0-62CE-11CF-A5D6-28DB04C10000}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1E651CC0-B199-11D0-8212-00C04FC32C45}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1E651CC0-B199-11D0-8212-00C04FC32C45}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33156164-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33156168-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33D9A762-90C8-11D0-BD43-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33156164-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33156168-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33D9A762-90C8-11D0-BD43-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{4665E44B-8B9A-4515-A086-E94ECE374608}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{505C2E67-8615-4CA9-9B57-48CF6EE696FD}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{5BB4BE4A-09B3-4689-BB4B-6F33E1E82797}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{4665E44B-8B9A-4515-A086-E94ECE374608}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{62BE5D10-60EB-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{632B606A-BBC6-11D2-A329-006097C4E476}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{505C2E67-8615-4CA9-9B57-48CF6EE696FD}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{5BB4BE4A-09B3-4689-BB4B-6F33E1E82797}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6AC7C19E-8CA0-4E3D-9A9F-2881DE29E0AC}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{720D4AC0-7533-11D0-A5D6-28DB04C10000}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{860BB310-5D01-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{632B606A-BBC6-11D2-A329-006097C4E476}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{8D52AA2E-40BE-46D7-8F36-DB7B0F636824}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{8E849609-C7E8-4EC7-8BD3-D55E871A340D}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6AC7C19E-8CA0-4E3D-9A9F-2881DE29E0AC}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{720D4AC0-7533-11D0-A5D6-28DB04C10000}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{860BB310-5D01-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{8D52AA2E-40BE-46D7-8F36-DB7B0F636824}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{8E849609-C7E8-4EC7-8BD3-D55E871A340D}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{919AB5F1-1C34-47a2-9C02-17128222C7CF}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP3Encoder.dll ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{A5AC04E7-3E13-48CE-A43F-9FBA59DB1544}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{AB37E6C0-194D-4C33-A924-5178414DEB98}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{AB406AAC-2B2B-11D3-B36B-00C04F6108FF}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BBFC1A2A-D3A2-4610-847D-26592022F86E}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BF87B6E1-8C27-11D0-B3F0-00AA003761C5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BBFC1A2A-D3A2-4610-847D-26592022F86E}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C1AB3D89-6973-45A6-AA44-09CEBBF872E5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C3043B13-E649-436A-9CE7-8DA8CB0BF7C8}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BF87B6E1-8C27-11D0-B3F0-00AA003761C5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C1AB3D89-6973-45A6-AA44-09CEBBF872E5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C3043B13-E649-436A-9CE7-8DA8CB0BF7C8}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C6E13344-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C6E13360-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C6E13370-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{CC58E280-8AA1-11D1-B3F1-00AA003761C5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{CDA42200-BD88-11D0-BD4E-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{CC58E280-8AA1-11D1-B3F1-00AA003761C5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{CDA42200-BD88-11D0-BD4E-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E0-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E0-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E1-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E1-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E3-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E3-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E297AB5E-40B0-41BD-9E06-E4144084EE5F}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E297AB5E-40B0-41BD-9E06-E4144084EE5F}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E30629D2-27E5-11CE-875D-00608CB78066}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E436EBB3-524F-11CE-9F53-0020AF0BA770}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E30629D2-27E5-11CE-875D-00608CB78066}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E436EBB3-524F-11CE-9F53-0020AF0BA770}\InprocServer32 -> No File Path

    ==================== Restore Points =========================


    ==================== Restore Points =========================


    ==================== Hosts content: ==========================

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2006-11-02 06:23 - 2006-09-18 17:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
    2006-11-02 06:23 - 2006-09-18 17:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
    127.0.0.1 localhost
    ::1 localhost
    127.0.0.1 localhost
    ::1 localhost

    ==================== Scheduled Tasks (whitelisted) =============

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)


    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {0C232E2F-F30E-46C2-A635-3E16AD9D12E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {0C232E2F-F30E-46C2-A635-3E16AD9D12E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {18D52CC1-C6D8-4ED1-BAA8-1FAC6A82E2EA} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
    Task: {18D52CC1-C6D8-4ED1-BAA8-1FAC6A82E2EA} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {32D71AD3-F5E8-4241-9B12-399AA2979B05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {32D71AD3-F5E8-4241-9B12-399AA2979B05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {36ECCBA8-C80B-4A3C-9DC4-8C139CC37C9C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {36ECCBA8-C80B-4A3C-9DC4-8C139CC37C9C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {3F919FA1-FCD8-4CEE-9605-0217DF541D78} - System32\Tasks\{D4BD395D-3FD8-49C4-93BC-8422FF825C42} => C:\Program Files\Skype\\Phone\Skype.exe
    Task: {3F919FA1-FCD8-4CEE-9605-0217DF541D78} - System32\Tasks\{D4BD395D-3FD8-49C4-93BC-8422FF825C42} => C:\Program Files\Skype\\Phone\Skype.exe
    Task: {4D67A4D1-E01D-4ED9-8BE0-4DF2E4BFD7B0} - System32\Tasks\Desktop Tools for RIM Handhelds => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [2008-11-04] (Research In Motion Limited)
    Task: {4D67A4D1-E01D-4ED9-8BE0-4DF2E4BFD7B0} - System32\Tasks\Desktop Tools for RIM Handhelds => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [2008-11-04] (Research In Motion Limited)
    Task: {637031D4-E398-4A40-BDA4-00EE67843076} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29] (Adobe Systems Incorporated)
    Task: {637031D4-E398-4A40-BDA4-00EE67843076} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29] (Adobe Systems Incorporated)
    Task: {64B22496-0267-4F34-8AE9-36464722784A} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-30] (Google)
    Task: {64B22496-0267-4F34-8AE9-36464722784A} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-30] (Google)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {BAEE7CEB-1C5B-4632-8B15-FD9F4AE45F2A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
    Task: {BAEE7CEB-1C5B-4632-8B15-FD9F4AE45F2A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
    Task: {C2C588DB-D246-4451-A70F-A8F295CDD1B3} - System32\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1 => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.) <==== ATTENTION
    Task: {C2C588DB-D246-4451-A70F-A8F295CDD1B3} - System32\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1 => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.) <==== ATTENTION
    Task: {C918A24D-AA1C-455D-911C-1F9260044A99} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {C918A24D-AA1C-455D-911C-1F9260044A99} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {CED74CB3-BE86-4415-A98A-BB16B6EBE928} - System32\Tasks\RegCure Pro Startup => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.)
    Task: {CED74CB3-BE86-4415-A98A-BB16B6EBE928} - System32\Tasks\RegCure Pro Startup => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.)
    Task: {DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} - System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => pcalua.exe -a "C:\Users\Angela Marie\Desktop\LimeWire.exe" -d "C:\Users\Angela Marie\Desktop"
    Task: {DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} - System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => pcalua.exe -a "C:\Users\Angela Marie\Desktop\LimeWire.exe" -d "C:\Users\Angela Marie\Desktop"
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {FA15E0D1-F52F-4101-9C72-3DC1DDC86720} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-20] (Microsoft Corporation)

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    Task: {0C232E2F-F30E-46C2-A635-3E16AD9D12E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {0C232E2F-F30E-46C2-A635-3E16AD9D12E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {18D52CC1-C6D8-4ED1-BAA8-1FAC6A82E2EA} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
    Task: {18D52CC1-C6D8-4ED1-BAA8-1FAC6A82E2EA} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {32D71AD3-F5E8-4241-9B12-399AA2979B05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {32D71AD3-F5E8-4241-9B12-399AA2979B05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {36ECCBA8-C80B-4A3C-9DC4-8C139CC37C9C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {36ECCBA8-C80B-4A3C-9DC4-8C139CC37C9C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {3F919FA1-FCD8-4CEE-9605-0217DF541D78} - System32\Tasks\{D4BD395D-3FD8-49C4-93BC-8422FF825C42} => C:\Program Files\Skype\\Phone\Skype.exe
    Task: {3F919FA1-FCD8-4CEE-9605-0217DF541D78} - System32\Tasks\{D4BD395D-3FD8-49C4-93BC-8422FF825C42} => C:\Program Files\Skype\\Phone\Skype.exe
    Task: {4D67A4D1-E01D-4ED9-8BE0-4DF2E4BFD7B0} - System32\Tasks\Desktop Tools for RIM Handhelds => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [2008-11-04] (Research In Motion Limited)
    Task: {4D67A4D1-E01D-4ED9-8BE0-4DF2E4BFD7B0} - System32\Tasks\Desktop Tools for RIM Handhelds => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [2008-11-04] (Research In Motion Limited)
    Task: {637031D4-E398-4A40-BDA4-00EE67843076} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29] (Adobe Systems Incorporated)
    Task: {637031D4-E398-4A40-BDA4-00EE67843076} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29] (Adobe Systems Incorporated)
    Task: {64B22496-0267-4F34-8AE9-36464722784A} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-30] (Google)
    Task: {64B22496-0267-4F34-8AE9-36464722784A} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-30] (Google)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {BAEE7CEB-1C5B-4632-8B15-FD9F4AE45F2A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
    Task: {BAEE7CEB-1C5B-4632-8B15-FD9F4AE45F2A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
    Task: {C2C588DB-D246-4451-A70F-A8F295CDD1B3} - System32\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1 => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.) <==== ATTENTION
    Task: {C2C588DB-D246-4451-A70F-A8F295CDD1B3} - System32\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1 => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.) <==== ATTENTION
    Task: {C918A24D-AA1C-455D-911C-1F9260044A99} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {C918A24D-AA1C-455D-911C-1F9260044A99} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {CED74CB3-BE86-4415-A98A-BB16B6EBE928} - System32\Tasks\RegCure Pro Startup => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.)
    Task: {CED74CB3-BE86-4415-A98A-BB16B6EBE928} - System32\Tasks\RegCure Pro Startup => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.)
    Task: {DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} - System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => pcalua.exe -a "C:\Users\Angela Marie\Desktop\LimeWire.exe" -d "C:\Users\Angela Marie\Desktop"
    Task: {DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} - System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => pcalua.exe -a "C:\Users\Angela Marie\Desktop\LimeWire.exe" -d "C:\Users\Angela Marie\Desktop"
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {FA15E0D1-F52F-4101-9C72-3DC1DDC86720} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-20] (Microsoft Corporation)

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\ParetoLogic Registration3.job => C:\Windows\system32\rundll32.exeAC:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll
    Task: C:\Windows\Tasks\RegCure Pro Startup.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe
    ommon Files\ParetoLogic\UUS3\UUS3.dll
    Task: C:\Windows\Tasks\RegCure Pro Startup.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe
    Task: C:\Windows\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe <==== ATTENTION
    Task: C:\Windows\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe <==== ATTENTION

    ==================== Loaded Modules (whitelisted) ==============


    ==================== Loaded Modules (whitelisted) ==============

    2015-03-21 04:33 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files\IObit\Advanced SystemCare 8\sqlite3.dll
    2015-03-21 04:33 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files\IObit\Advanced SystemCare 8\sqlite3.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00620056 ____N () C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
    2015-03-21 04:33 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files\IObit\Advanced SystemCare 8\sqlite3.dll
    2015-03-21 04:33 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files\IObit\Advanced SystemCare 8\sqlite3.dll
    2008-03-06 13:14 - 2008-03-06 13:14 - 05121912 _____ () C:\Program Files\Toshiba\FlashCards\BlackPng.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00620056 ____N () C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
    2007-12-15 00:40 - 2007-12-15 00:40 - 00090112 _____ () C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
    2008-03-06 13:14 - 2008-03-06 13:14 - 05121912 _____ () C:\Program Files\Toshiba\FlashCards\BlackPng.dll
    2007-12-15 00:40 - 2007-12-15 00:40 - 00090112 _____ () C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
    2008-03-06 13:14 - 2008-03-06 13:14 - 05121912 _____ () C:\Program Files\Toshiba\FlashCards\BlackPng.dll
    2008-05-15 23:56 - 2006-10-10 14:44 - 00009728 _____ () C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
    2007-12-15 00:40 - 2007-12-15 00:40 - 00090112 _____ () C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
    2008-05-15 23:56 - 2006-10-10 14:44 - 00009728 _____ () C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
    2007-12-15 00:40 - 2007-12-15 00:40 - 00090112 _____ () C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
    2007-12-25 15:03 - 2007-12-25 15:03 - 00015184 _____ () C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll
    2008-05-15 23:56 - 2006-10-10 14:44 - 00009728 _____ () C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
    2007-12-25 15:03 - 2007-12-25 15:03 - 00015184 _____ () C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll
    2008-05-15 23:56 - 2006-10-10 14:44 - 00009728 _____ () C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
    2006-10-07 14:57 - 2006-10-07 14:57 - 00053248 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
    2007-12-25 15:03 - 2007-12-25 15:03 - 00015184 _____ () C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll
    2006-10-07 14:57 - 2006-10-07 14:57 - 00053248 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
    2007-12-25 15:03 - 2007-12-25 15:03 - 00015184 _____ () C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll
    2006-12-01 20:55 - 2006-12-01 20:55 - 00009216 _____ () C:\Program Files\Toshiba\TBS\NotifyTBS.dll
    2006-10-07 14:57 - 2006-10-07 14:57 - 00053248 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 01711128 _____ () C:\Program Files\AVG Web TuneUp\TBAPI.dll
    2006-10-07 14:57 - 2006-10-07 14:57 - 00053248 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 01711128 _____ () C:\Program Files\AVG Web TuneUp\TBAPI.dll
    2006-12-01 20:55 - 2006-12-01 20:55 - 00009216 _____ () C:\Program Files\Toshiba\TBS\NotifyTBS.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 03033112 _____ () C:\Program Files\AVG Web TuneUp\vprot.exe
    2015-03-20 22:15 - 2015-03-20 22:14 - 01711128 _____ () C:\Program Files\AVG Web TuneUp\TBAPI.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 03033112 _____ () C:\Program Files\AVG Web TuneUp\vprot.exe
    2015-03-20 22:15 - 2015-03-20 22:14 - 01711128 _____ () C:\Program Files\AVG Web TuneUp\TBAPI.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\log4cplusU.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 03033112 _____ () C:\Program Files\AVG Web TuneUp\vprot.exe
    2015-03-20 22:15 - 2015-03-20 22:14 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\log4cplusU.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 03033112 _____ () C:\Program Files\AVG Web TuneUp\vprot.exe
    2015-03-20 22:15 - 2015-03-20 22:14 - 40630296 _____ () C:\Program Files\AVG Web TuneUp\libcef.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\log4cplusU.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 40630296 _____ () C:\Program Files\AVG Web TuneUp\libcef.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\log4cplusU.dll
    2015-03-21 19:38 - 2015-03-21 19:38 - 31842816 _____ () C:\Program Files\AVG\Framework\Common\libcef.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 40630296 _____ () C:\Program Files\AVG Web TuneUp\libcef.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 40630296 _____ () C:\Program Files\AVG Web TuneUp\libcef.dll
    2015-03-21 19:38 - 2015-03-21 19:38 - 31842816 _____ () C:\Program Files\AVG\Framework\Common\libcef.dll
    2015-03-21 19:38 - 2015-03-21 19:38 - 31842816 _____ () C:\Program Files\AVG\Framework\Common\libcef.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2015-03-23 17:16 - 2015-03-23 17:16 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15032301\algo.dll
    2015-03-23 17:16 - 2015-03-23 17:16 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15032301\algo.dll
    2015-03-23 17:16 - 2015-03-23 17:16 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15032301\algo.dll
    2015-03-21 04:33 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 8\webres.dll
    2015-03-21 04:33 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 8\webres.dll
    2015-03-21 04:33 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 8\webres.dll
    2015-03-21 04:33 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 8\webres.dll
    2009-08-07 00:50 - 2006-11-27 03:51 - 00115200 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxcrui5c.dll
    2009-08-07 00:50 - 2006-11-27 03:51 - 00115200 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxcrui5c.dll
    2015-03-21 04:33 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2008-05-16 01:51 - 2008-04-22 10:05 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
    2008-05-16 01:51 - 2008-04-22 10:05 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
    2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2011-09-27 08:22 - 2011-09-27 08:22 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    2011-09-27 08:22 - 2011-09-27 08:22 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    2015-03-20 21:32 - 2015-03-14 06:12 - 09278792 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.101\pdf.dll
    2015-03-20 21:32 - 2015-03-14 06:12 - 09278792 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.101\pdf.dll
    2008-05-16 00:09 - 2007-01-25 21:47 - 00136816 _____ () C:\Toshiba\IVP\ISM\pinger.exe
    2008-05-16 00:09 - 2007-01-25 21:47 - 00136816 _____ () C:\Toshiba\IVP\ISM\pinger.exe
    2015-03-21 04:34 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl
    2008-05-16 00:09 - 2007-10-23 19:27 - 00066928 _____ () c:\Toshiba\IVP\swupdate\swupdtmr.exe
    2008-05-16 00:09 - 2007-10-23 19:27 - 00066928 _____ () c:\Toshiba\IVP\swupdate\swupdtmr.exe
    2015-02-25 09:25 - 2015-02-25 09:25 - 00604984 _____ () C:\Program Files\AVG\AVG PC TuneUp\avgreplibx.dll
    2015-02-25 09:25 - 2015-02-25 09:25 - 00604984 _____ () C:\Program Files\AVG\AVG PC TuneUp\avgreplibx.dll
    2015-02-25 09:25 - 2015-02-25 09:25 - 00604984 _____ () C:\Program Files\AVG\AVG PC TuneUp\avgreplibx.dll
    2015-02-25 09:25 - 2015-02-25 09:25 - 00604984 _____ () C:\Program Files\AVG\AVG PC TuneUp\avgreplibx.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\loggingserver.exe
    2015-03-20 22:15 - 2015-03-20 22:14 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\loggingserver.exe
    2015-02-25 09:25 - 2015-02-25 09:25 - 00728888 _____ () C:\Program Files\AVG\AVG PC TuneUp\tulngx.dll
    2015-02-25 09:25 - 2015-02-25 09:25 - 00728888 _____ () C:\Program Files\AVG\AVG PC TuneUp\tulngx.dll
    2015-02-25 09:25 - 2015-02-25 09:25 - 00728888 _____ () C:\Program Files\AVG\AVG PC TuneUp\tulngx.dll
    2015-02-25 09:25 - 2015-02-25 09:25 - 00728888 _____ () C:\Program Files\AVG\AVG PC TuneUp\tulngx.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

    AlternateDataStreams: C:\ProgramData\TEMP:390B30B4
    AlternateDataStreams: C:\ProgramData\TEMP:390B30B4

    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)



    ==================== EXE Association (whitelisted) ===============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
    DNS Servers: 192.168.2.1

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)


    ==================== Accounts: =============================


    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) ===============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
    Administrator (S-1-5-21-870383816-1840095418-3521214770-500 - Administrator - Disabled)
    Angela Marie (S-1-5-21-870383816-1840095418-3521214770-1000 - Administrator - Enabled) => C:\Users\Angela Marie
    Guest (S-1-5-21-870383816-1840095418-3521214770-501 - Limited - Disabled)

    ==================== Faulty Device Manager Devices =============

    DNS Servers: 192.168.2.1

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)


    ==================== Accounts: =============================

    Administrator (S-1-5-21-870383816-1840095418-3521214770-500 - Administrator - Disabled)
    Angela Marie (S-1-5-21-870383816-1840095418-3521214770-1000 - Administrator - Enabled) => C:\Users\Angela Marie
    Guest (S-1-5-21-870383816-1840095418-3521214770-501 - Limited - Disabled)

    ==================== Faulty Device Manager Devices =============

    Name: Microsoft ISATAP Adapter #2
    Description: Microsoft ISATAP Adapter
    Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
    Manufacturer: Microsoft
    Service: tunnel
    Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
    Resolution: Update the driver

    Name: Microsoft ISATAP Adapter #2
    Description: Microsoft ISATAP Adapter
    Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
    Manufacturer: Microsoft
    Service: tunnel
    Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
    Resolution: Update the driver


    ==================== Event log errors: =========================

    Application errors:
    ==================

    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: Volume Shadow Copy Service error: Error creating the Shadow Copy Provider COM class with CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422].


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Volume Shadow Copy Service error: The Microsoft Software Shadow Copy Provider (SWPRV) service is
    disabled. Please enable the service and try again.


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Volume Shadow Copy Service error: The Microsoft Software Shadow Copy Provider (SWPRV) service is
    disabled. Please enable the service and try again.


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: Volume Shadow Copy Service error: Error creating the Shadow Copy Provider COM class with CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422].


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Volume Shadow Copy Service error: The Microsoft Software Shadow Copy Provider (SWPRV) service is
    disabled. Please enable the service and try again.


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: Volume Shadow Copy Service error: Error creating the Shadow Copy Provider COM class with CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422].


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Volume Shadow Copy Service error: The Microsoft Software Shadow Copy Provider (SWPRV) service is
    disabled. Please enable the service and try again.


    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:09:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 06:09:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 09:14:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 09:14:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:32:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:32:07 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 07:32:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:32:07 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 07:16:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:15:10 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


    System errors:
    =============
    Error: (03/23/2015 07:16:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


    Microsoft Office Sessions:
    =========================
    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422

    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 07:15:10 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


    System errors:
    =============
    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator


    Microsoft Office Sessions:
    =========================
    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422

    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422

    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 12292) (User: )
    Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422

    Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:18:33 PM) (Source: VSS) (EventID: 40) (User: )
    Description: Operation:
    Obtain a callable interface for this provider
    List interfaces for all providers supporting this context
    Query Shadow Copies

    Context:
    Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
    Class ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
    Snapshot Context: 13
    Snapshot Context: 13
    Execution Context: Coordinator

    Error: (03/23/2015 06:09:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 06:09:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 09:14:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 09:14:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:32:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:32:07 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 07:16:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:15:10 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 07:32:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:32:07 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 07:16:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 07:15:10 AM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


    ==================== Memory info ===========================

    Processor: AMD Turion(tm) X2 Dual-Core Mobile RM-70
    Percentage of memory in use: 59%
    Total physical RAM: 2813.6 MB
    Available physical RAM: 1135.93 MB
    Total Pagefile: 5847.74 MB
    Available Pagefile: 4216.12 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1908.05 MB

    ==================== Drives ================================


    CodeIntegrity Errors:
    ===================================
    Date: 2015-03-23 18:17:32.975
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:31.573
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:30.152
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:28.670
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:27.504
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:26.251
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:25.075
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:23.732
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:22.972
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-23 18:17:21.560
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.


    ==================== Memory info ===========================

    Processor: AMD Turion(tm) X2 Dual-Core Mobile RM-70
    Percentage of memory in use: 59%
    Total physical RAM: 2813.6 MB
    Available physical RAM: 1134.89 MB
    Total Pagefile: 5847.74 MB
    Available Pagefile: 4215.68 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1923.16 MB

    ==================== Drives ================================

    Drive c: (SQ004728V05) (Fixed) (Total:184.84 GB) (Free:83.78 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: B941B941)
    Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27)
    Partition 2: (Active) - (Size=184.8 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================Drive c: (SQ004728V05) (Fixed) (Total:184.84 GB) (Free:83.78 GB) NTFS ==>[System with boot components (obtained from reading drive)]

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: B941B941)
    Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27)
    Partition 2: (Active) - (Size=184.8 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================
     
  4. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    bkw5138,
    Part of the reason is that you have more than one Antivirus.
    That can nearly paralyze a machine.
    ------------------------------------------------
    Remove Programs Using Control Panel
    From Start, Control Panel, click on Programs and Features
    Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

    Advanced SystemCare 8
    AVG PC TuneUp 2015
    AVG Web TuneUp
    Surfing Protection
    AVG 2015
    Driver Booster 2.2

    Take extra care in answering questions posed by any Uninstaller.
    -----------------------------------------------------------
    REBOOT (RESTART) Your Machine
    --------------------------------------------------------
    Run A Fix With FRST
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both the program FRST.exe and Fixlist.txt be in the same location, or the fix will not work.
    (Both on the Desktop is OK, or both in the same folder elsewhere)

    Run FRST and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
    If for some reason the tool needs a restart, please make sure you let the system restart normally.
    The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
    When finished, FRST will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.

    askey127
     

    Attached Files:

  5. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-03-2015
    Ran by Angela Marie at 2015-03-23 20:30:38 Run:1
    Running from C:\Users\Angela Marie\Desktop
    Loaded Profiles: Angela Marie (Available profiles: Angela Marie)
    Boot Mode: Normal

    ==============================================

    Content of fixlist:
    *****************
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1383A31C-26AC-4d88-91F1-EEAD77D81FA6}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP3Writer.dll ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1383A31C-26AC-4d88-91F1-EEAD77D81FA6}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP3Writer.dll ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{4665E44B-8B9A-4515-A086-E94ECE374608}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{4665E44B-8B9A-4515-A086-E94ECE374608}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6AC7C19E-8CA0-4E3D-9A9F-2881DE29E0AC}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6AC7C19E-8CA0-4E3D-9A9F-2881DE29E0AC}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{919AB5F1-1C34-47a2-9C02-17128222C7CF}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP3Encoder.dll ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BBFC1A2A-D3A2-4610-847D-26592022F86E}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BBFC1A2A-D3A2-4610-847D-26592022F86E}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\CoreAAC.ax ()
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}\InprocServer32 -> C:\Users\Angela Marie\AppData\Roaming\Smilebox\MP4Splitter.ax (Gabest)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {CED74CB3-BE86-4415-A98A-BB16B6EBE928} - System32\Tasks\RegCure Pro Startup => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.)
    Task: {CED74CB3-BE86-4415-A98A-BB16B6EBE928} - System32\Tasks\RegCure Pro Startup => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.)
    Task: {DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} - System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => pcalua.exe -a "C:\Users\Angela Marie\Desktop\LimeWire.exe" -d "C:\Users\Angela Marie\Desktop"
    Task: {DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} - System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => pcalua.exe -a "C:\Users\Angela Marie\Desktop\LimeWire.exe" -d "C:\Users\Angela Marie\Desktop"
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {210262EA-62FB-460B-8875-089708AF001D} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {6BED0B58-AF8E-4017-B66C-364665E269FD} - System32\Tasks\Uninstaller_SkipUac_Angela_Marie => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-20] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75506C85-EF94-4C77-8587-F6A1DC40DDFA} - System32\Tasks\ASC8_SkipUac_Angela Marie => C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [2015-01-27] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {75A5EB1E-18BE-4300-8896-716152BE7FB3} - System32\Tasks\Driver Booster SkipUAC (Angela Marie) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-03-09] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {A80C7AD3-06A9-4545-ADDA-2116FE9E5168} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [2015-01-23] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-13] (IObit)
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: {EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
    Task: C:\Windows\Tasks\RegCure Pro Startup.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe
    Task: C:\Windows\Tasks\RegCure Pro Startup.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe
    Task: C:\Windows\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe <==== ATTENTION
    Task: C:\Windows\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1.job => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe <==== ATTENTION
    2015-03-21 04:33 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl
    2015-03-21 04:33 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 8\webres.dll
    2015-03-21 04:34 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl
    2015-03-21 04:34 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl

    *****************

    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1383A31C-26AC-4d88-91F1-EEAD77D81FA6}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1383A31C-26AC-4d88-91F1-EEAD77D81FA6} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{4665E44B-8B9A-4515-A086-E94ECE374608}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{4665E44B-8B9A-4515-A086-E94ECE374608} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6AC7C19E-8CA0-4E3D-9A9F-2881DE29E0AC}" => Key deleted successfully.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6AC7C19E-8CA0-4E3D-9A9F-2881DE29E0AC} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{919AB5F1-1C34-47a2-9C02-17128222C7CF}" => Key deleted successfully.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BBFC1A2A-D3A2-4610-847D-26592022F86E}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BBFC1A2A-D3A2-4610-847D-26592022F86E} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{D3D9D58B-45B5-48AB-B199-B8C40560AEC7} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}" => Key deleted successfully.
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A} => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{210262EA-62FB-460B-8875-089708AF001D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Update not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{210262EA-62FB-460B-8875-089708AF001D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Update not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BED0B58-AF8E-4017-B66C-364665E269FD} => Key not found.
    C:\Windows\System32\Tasks\Uninstaller_SkipUac_Angela_Marie => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Angela_Marie" => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BED0B58-AF8E-4017-B66C-364665E269FD} => Key not found.
    C:\Windows\System32\Tasks\Uninstaller_SkipUac_Angela_Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Angela_Marie => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75506C85-EF94-4C77-8587-F6A1DC40DDFA} => Key not found.
    C:\Windows\System32\Tasks\ASC8_SkipUac_Angela Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_SkipUac_Angela Marie => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75506C85-EF94-4C77-8587-F6A1DC40DDFA} => Key not found.
    C:\Windows\System32\Tasks\ASC8_SkipUac_Angela Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_SkipUac_Angela Marie => Key not found.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75A5EB1E-18BE-4300-8896-716152BE7FB3}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75A5EB1E-18BE-4300-8896-716152BE7FB3}" => Key deleted successfully.
    C:\Windows\System32\Tasks\Driver Booster SkipUAC (Angela Marie) => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Angela Marie)" => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75A5EB1E-18BE-4300-8896-716152BE7FB3} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster SkipUAC (Angela Marie) not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Angela Marie) => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A80C7AD3-06A9-4545-ADDA-2116FE9E5168} => Key not found.
    C:\Windows\System32\Tasks\ASC8_PerformanceMonitor not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_PerformanceMonitor => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A80C7AD3-06A9-4545-ADDA-2116FE9E5168} => Key not found.
    C:\Windows\System32\Tasks\ASC8_PerformanceMonitor not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_PerformanceMonitor => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Scan not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scan => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Scan not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scan => Key not found.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CED74CB3-BE86-4415-A98A-BB16B6EBE928}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CED74CB3-BE86-4415-A98A-BB16B6EBE928}" => Key deleted successfully.
    C:\Windows\System32\Tasks\RegCure Pro Startup => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegCure Pro Startup" => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CED74CB3-BE86-4415-A98A-BB16B6EBE928} => Key not found.
    C:\Windows\System32\Tasks\RegCure Pro Startup not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegCure Pro Startup => Key not found.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4}" => Key deleted successfully.
    C:\Windows\System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939}" => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DCAF7118-5FF3-4F5B-9F55-5A0BA42958A4} => Key not found.
    C:\Windows\System32\Tasks\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A5CAF0FD-6685-4D06-AA57-9E47BC31D939} => Key not found.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56}" => Key deleted successfully.
    C:\Windows\System32\Tasks\ParetoLogic Registration3 => Moved successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Registration3" => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} => Key not found.
    C:\Windows\System32\Tasks\ParetoLogic Registration3 not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Registration3 => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{210262EA-62FB-460B-8875-089708AF001D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Update not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{210262EA-62FB-460B-8875-089708AF001D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Update not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BED0B58-AF8E-4017-B66C-364665E269FD} => Key not found.
    C:\Windows\System32\Tasks\Uninstaller_SkipUac_Angela_Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Angela_Marie => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BED0B58-AF8E-4017-B66C-364665E269FD} => Key not found.
    C:\Windows\System32\Tasks\Uninstaller_SkipUac_Angela_Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Angela_Marie => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75506C85-EF94-4C77-8587-F6A1DC40DDFA} => Key not found.
    C:\Windows\System32\Tasks\ASC8_SkipUac_Angela Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_SkipUac_Angela Marie => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75506C85-EF94-4C77-8587-F6A1DC40DDFA} => Key not found.
    C:\Windows\System32\Tasks\ASC8_SkipUac_Angela Marie not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_SkipUac_Angela Marie => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75A5EB1E-18BE-4300-8896-716152BE7FB3} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster SkipUAC (Angela Marie) not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Angela Marie) => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75A5EB1E-18BE-4300-8896-716152BE7FB3} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster SkipUAC (Angela Marie) not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Angela Marie) => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A80C7AD3-06A9-4545-ADDA-2116FE9E5168} => Key not found.
    C:\Windows\System32\Tasks\ASC8_PerformanceMonitor not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_PerformanceMonitor => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A80C7AD3-06A9-4545-ADDA-2116FE9E5168} => Key not found.
    C:\Windows\System32\Tasks\ASC8_PerformanceMonitor not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_PerformanceMonitor => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Scan not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scan => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B57ABF83-A381-40AB-A6C3-2B9AE3B8C88D} => Key not found.
    C:\Windows\System32\Tasks\Driver Booster Scan not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scan => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} => Key not found.
    C:\Windows\System32\Tasks\ParetoLogic Registration3 not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Registration3 => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB6512AB-3BA3-4AEE-8E42-64B2D8EA2C56} => Key not found.
    C:\Windows\System32\Tasks\ParetoLogic Registration3 not found.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Registration3 => Key not found.
    C:\Windows\Tasks\RegCure Pro Startup.job => Moved successfully.
    C:\Windows\Tasks\RegCure Pro Startup.job not found.
    C:\Windows\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1.job => Moved successfully.
    C:\Windows\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1.job not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl" => File/Directory not found.
    "C:\Program Files\IObit\Advanced SystemCare 8\webres.dll" => File/Directory not found.
    C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl => Moved successfully.
    "C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl" => File/Directory not found.
    C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl => Moved successfully.
    "C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl" => File/Directory not found.
    C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl => Moved successfully.
    "C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl" => File/Directory not found.

    ==== End of Fixlog 20:31:28 ====
     
  6. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    bkw5138,
    That part worked well.
    Let's run another scan and see what else we will need to do.
    -----------------------------------------------------------
    Run a New Scan With the Farbar Scan Tool
    • Double click FRST.exe on your desktop to launch it.
    • When the tool opens click Yes to disclaimer.
    • Press the Scan button.
    • When finished scanning, a new version of the log FRST.txt will be saved on your Desktop and opened in Notepad.
    • Please post the contents in your next reply.

    askey127
     
  7. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    dditional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015
    Ran by Angela Marie at 2015-03-24 16:04:22
    Running from C:\Users\Angela Marie\Desktop
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.3.181.26 - Adobe Systems Incorporated)
    Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated)
    Adobe Reader 8.3.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A83000000003}) (Version: 8.3.1 - Adobe Systems Incorporated)
    ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
    Apple Application Support (HKLM\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.)
    Apple Mobile Device Support (HKLM\...\{8153ED9A-C94A-426E-9880-5E6775C08B62}) (Version: 4.0.0.97 - Apple Inc.)
    Apple Software Update (HKLM\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
    Atheros Client Utility (HKLM\...\{16E8BF9A-B419-4A44-A020-30F8CFB84B9D}) (Version: 7.7 - Atheros)
    Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 7.7 - Atheros)
    Atheros Wi-Fi Protected Setup Library (HKLM\...\{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}) (Version: - Atheros)
    ATI Catalyst Install Manager (HKLM\...\{61D18F23-2703-7A2D-EB62-9043AEFAA955}) (Version: 3.0.664.0 - ATI Technologies, Inc.)
    Avast Free Antivirus (HKLM\...\Avast) (Version: 10.2.2214 - AVAST Software)
    BlackBerry Desktop Software 4.7 (HKLM\...\BlackBerry_{034E061B-B3A3-4123-842E-10C1B6B3C8C7}) (Version: 4.7.0.32 - Research In Motion Ltd.)
    BlackBerry Desktop Software 4.7 (Version: 4.7.0.32 - Research In Motion Ltd.) Hidden
    Camera Assistant Software for Toshiba (HKLM\...\{37C866E4-AA67-4725-9E95-A39968DD7960}) (Version: 1.7.193.0508L - Chicony Electronics Co.,Ltd.)
    Catalyst Control Center - Branding (HKLM\...\{69E5255D-9D43-4CFF-8984-843ABD7753B7}) (Version: 1.00.0000 - ATI)
    ccc-core-static (Version: 2008.0422.2139.36895 - ATI) Hidden
    CD/DVD Drive Acoustic Silencer (HKLM\...\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}) (Version: 2.02.01 - TOSHIBA)
    Check Point Deployment Shell (HKLM\...\{16c325ce-5866-47aa-9b0b-505fb9bcc85c}) (Version: 8.00.0000 - Check Point)
    Cisco EAP-FAST Module (HKLM\...\{9BFD5911-93E3-42BB-BFCD-50E4BA5B8D67}) (Version: 2.2.10 - Cisco Systems, Inc.)
    Comcast Desktop Software (v1.2.1) (HKLM\...\{118C3943-1683-42EF-824D-C22E70DB42E7}) (Version: 24 - Comcast)
    Company of Heroes (New Steam Version) (HKLM\...\Steam App 228200) (Version: - Relic)
    Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
    Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.36.7.0 - Conexant)
    CyberLink PowerCinema for TOSHIBA (HKLM\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 6.0.1616 - CyberLink Corp.)
    Download Updater (AOL LLC) (HKLM\...\SoftwareUpdUtility) (Version: - ) <==== ATTENTION
    DriverToolkit version 8.4.0.0 (HKLM\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.4.0.0 - Megaify Software)
    DVD MovieFactory for TOSHIBA (HKLM\...\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}) (Version: 5.51 - Ulead Systems, Inc.)
    Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
    Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
    Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
    Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
    Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
    Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
    Google Updater (HKLM\...\Google Updater) (Version: 2.4.2432.1652 - Google Inc.)
    HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5051&SUBSYS_1179) (Version: 7.73.00 - Conexant Systems)
    HWiNFO32 Version 4.60 (HKLM\...\HWiNFO32_is1) (Version: 4.60 - Martin Malík - REALiX)
    IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 4.2.6.2 - IObit)
    Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
    Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
    Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
    Marvell Miniport Driver (HKLM\...\{C950420B-4182-49EA-850A-A6A2ABF06C6B}) (Version: 10.57.4.3 - Marvell)
    Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
    Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
    Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
    Microsoft Office Live Add-in 1.3 (HKLM\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation)
    Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
    Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
    Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
    MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
    MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
    NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.53 - BVRP Software, Inc)
    Nokia Connectivity Cable Driver (HKLM\...\{C50EF365-2898-489A-B6C7-30DAA466E9A2}) (Version: 7.1.23.0 - Nokia)
    O2Micro Flash Memory Card Reader Driver (x86) (HKLM\...\{156E98D0-1AEC-4013-A41A-94A1A01BFD68}) (Version: 3.23 - O2Micro)
    OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
    OldSchool RuneScape Launcher 1.2.3 (HKLM\...\{CCCEAAD4-3D2F-42C1-9AAA-08D458DB3509}) (Version: 1.2.3 - Jagex Ltd)
    PC Connectivity Solution (HKLM\...\{6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}) (Version: 9.44.0.3 - Nokia)
    PC HealthBoost 3.0.5 (HKLM\...\PCHealthBoost_is1) (Version: 3.0.5 - Boost Software Inc.)
    Picasa 3 (HKLM\...\Picasa 3) (Version: 3.1 - Google, Inc.)
    QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
    Realtek WLAN Driver (HKLM\...\{0FB630AB-7BD8-40AE-B223-60397D57C3C9}) (Version: 2.00.0006 - Realtek)
    RegCure Pro (HKLM\...\{C547F361-5750-4CD1-9FB6-BC93827CB6C1}) (Version: 3.2.15.0 - ParetoLogic, Inc.) <==== ATTENTION!
    Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
    Skins (Version: 2008.0422.2139.36895 - ATI) Hidden
    Smilebox (HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\Smilebox) (Version: 1.1.1.1 - Smilebox, Inc.)
    Steam (HKLM\...\Steam) (Version: - Valve Corporation)
    SwiftKit (HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\SwiftKit) (Version: - )
    System Requirements Lab Detection (HKLM\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
    Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
    TeamSpeak 3 Client (HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
    TOSHIBA Application Disc Creator (HKLM\...\{73B52EA8-8A5C-4FF5-A9F2-1A0F3259C3D2}) (Version: 2.0.0.1b - TOSHIBA Corporation)
    TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version: 2.01.05 - TOSHIBA)
    TOSHIBA ConfigFree (HKLM\...\{0D5D0BEE-FBA9-4928-A50D-6CDFAB827755}) (Version: 7.2.13 - TOSHIBA Corporation)
    TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.0.1.3 - TOSHIBA Corporation)
    TOSHIBA DVD PLAYER (HKLM\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 1.30.12 - TOSHIBA Corporation)
    TOSHIBA Extended Tiles for Windows Mobility Center (HKLM\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version: 1.01.00 - TOSHIBA Corporation)
    TOSHIBA Face Recognition (HKLM\...\InstallShield_{C730E42C-935A-45BB-A0C5-37E5234D111B}) (Version: 2.0.2.32 - TOSHIBA)
    TOSHIBA Games (HKLM\...\WildTangent toshiba Master Uninstall) (Version: 1.0.0.50 - WildTangent)
    TOSHIBA Hardware Setup (HKLM\...\InstallShield_{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}) (Version: 3.00.01.00 - TOSHIBA)
    TOSHIBA PowerCinema Helper (HKLM\...\{FB356619-7ECE-42BC-A28A-541973E29F28}) (Version: 1.00 - TOSHIBA Corporation)
    Toshiba Registration (HKLM\...\{C53D16CC-E56F-47B8-906E-70AAF8EABB4F}) (Version: 1.00.0000 - Datalode Inc.)
    TOSHIBA SD Memory Utilities (HKLM\...\{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}) (Version: 1.8.1.2 - TOSHIBA)
    TOSHIBA Software Upgrades (HKLM\...\{425A2BC2-AA64-4107-9C29-484245BBEA05}) (Version: 4.3 - TOSHIBA)
    TOSHIBA Speech System Applications (HKLM\...\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}) (Version: - )
    TOSHIBA Speech System SR Engine(U.S.) Version1.0 (HKLM\...\{008D69EB-70FF-46AB-9C75-924620DF191A}) (Version: - )
    TOSHIBA Speech System TTS Engine(U.S.) Version1.0 (HKLM\...\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}) (Version: - )
    TOSHIBA Supervisor Password (HKLM\...\InstallShield_{491DD193-1B57-4D1C-8B14-18B96992A89F}) (Version: 3.00.01.00 - TOSHIBA)
    TOSHIBA Value Added Package (HKLM\...\InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}) (Version: 1.1.19 - TOSHIBA Corporation)
    Viewpoint Media Player (HKLM\...\ViewpointMediaPlayer) (Version: - )
    Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
    Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
    Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
    Windows Live Sign-in Assistant (HKLM\...\{9422C8EA-B0C6-4197-B8FC-DC797658CA00}) (Version: 5.000.818.6 - Microsoft Corporation)
    Windows Live Sync (HKLM\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
    Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
    Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version: - )

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{05589F80-C356-11CE-BF01-00AA0055595A}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{083863F1-70DE-11D0-BD40-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{17CCA71B-ECD7-11D0-B908-00A0C9223196}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1A8766A0-62CE-11CF-A5D6-28DB04C10000}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{1E651CC0-B199-11D0-8212-00C04FC32C45}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33156164-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33156168-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{33D9A762-90C8-11D0-BD43-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{505C2E67-8615-4CA9-9B57-48CF6EE696FD}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{5BB4BE4A-09B3-4689-BB4B-6F33E1E82797}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{62BE5D10-60EB-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{632B606A-BBC6-11D2-A329-006097C4E476}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{6A2E0670-28E4-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{720D4AC0-7533-11D0-A5D6-28DB04C10000}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{860BB310-5D01-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{8D52AA2E-40BE-46D7-8F36-DB7B0F636824}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{8E849609-C7E8-4EC7-8BD3-D55E871A340D}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{A5AC04E7-3E13-48CE-A43F-9FBA59DB1544}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{AB37E6C0-194D-4C33-A924-5178414DEB98}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{AB406AAC-2B2B-11D3-B36B-00C04F6108FF}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{BF87B6E1-8C27-11D0-B3F0-00AA003761C5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C1AB3D89-6973-45A6-AA44-09CEBBF872E5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C3043B13-E649-436A-9CE7-8DA8CB0BF7C8}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C6E13344-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C6E13360-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{C6E13370-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{CC58E280-8AA1-11D1-B3F1-00AA003761C5}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{CDA42200-BD88-11D0-BD4E-00A0C911CE86}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E0-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E1-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{DF0AD8E3-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E05592E4-C0B5-11D0-A439-00A0C9223196}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E297AB5E-40B0-41BD-9E06-E4144084EE5F}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E30629D2-27E5-11CE-875D-00608CB78066}\InprocServer32 -> No File Path
    CustomCLSID: HKU\S-1-5-21-870383816-1840095418-3521214770-1000_Classes\CLSID\{E436EBB3-524F-11CE-9F53-0020AF0BA770}\InprocServer32 -> No File Path

    ==================== Restore Points =========================

    19-03-2015 20:01:43 Windows Update
    20-03-2015 15:06:49 Windows Update
    20-03-2015 15:21:32 Windows Update
    20-03-2015 18:43:05 Removed OldSchool RuneScape Launcher 1.2.3
    20-03-2015 21:55:06 Installed AVG 2015
    20-03-2015 21:56:42 Installed AVG 2015
    21-03-2015 01:54:33 Installed AMD AHCI compatible SATA RAID Driver
    21-03-2015 03:01:29 Windows Update
    21-03-2015 05:02:56 Driver Booster : ATI I/O Communications Processor SMBus Controller
    21-03-2015 05:04:14 Device Driver Package Install: Atheros Communications Inc. Network adapters
    21-03-2015 05:08:20 Device Driver Package Install: Microsoft Mice and other pointing devices
    21-03-2015 05:09:03 Device Driver Package Install: Microsoft Human Interface Devices
    21-03-2015 05:10:31 Device Driver Package Install: Microsoft Keyboards
    21-03-2015 05:12:00 Device Driver Package Install: Microsoft Human Interface Devices
    21-03-2015 05:13:12 Device Driver Package Install: Microsoft Universal Serial Bus controllers
    21-03-2015 05:18:43 Device Driver Package Install: Advanced Micro Devices, Inc System devices
    21-03-2015 05:19:30 Device Driver Package Install: Advanced Micro Devices, Inc. Storage controllers
    21-03-2015 05:22:38 Device Driver Package Install: AMD Universal Serial Bus controllers
    21-03-2015 05:26:49 Device Driver Package Install: Marvell Network adapters
    21-03-2015 08:43:36 Installed OldSchool RuneScape Launcher 1.2.3
    21-03-2015 09:00:40 Removed Java 8 Update 40
    21-03-2015 19:44:57 Device Driver Package Install: AVG Technologies Network Service
    23-03-2015 19:50:40 Removed AVG PC TuneUp 2015
    23-03-2015 19:53:45 Removed AVG PC TuneUp 2015 (en-US)

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2006-11-02 06:23 - 2006-09-18 17:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
    127.0.0.1 localhost
    ::1 localhost

    ==================== Scheduled Tasks (whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

    Task: {0C232E2F-F30E-46C2-A635-3E16AD9D12E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {18D52CC1-C6D8-4ED1-BAA8-1FAC6A82E2EA} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
    Task: {32D71AD3-F5E8-4241-9B12-399AA2979B05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-01-25] (Google Inc.)
    Task: {36ECCBA8-C80B-4A3C-9DC4-8C139CC37C9C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {3F919FA1-FCD8-4CEE-9605-0217DF541D78} - System32\Tasks\{D4BD395D-3FD8-49C4-93BC-8422FF825C42} => C:\Program Files\Skype\\Phone\Skype.exe
    Task: {4D67A4D1-E01D-4ED9-8BE0-4DF2E4BFD7B0} - System32\Tasks\Desktop Tools for RIM Handhelds => C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe [2008-11-04] (Research In Motion Limited)
    Task: {52596B5F-BF31-4E4A-8A32-49040C3366F3} - \Uninstaller_SkipUac_Angela_Marie No Task File <==== ATTENTION
    Task: {637031D4-E398-4A40-BDA4-00EE67843076} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29] (Adobe Systems Incorporated)
    Task: {64B22496-0267-4F34-8AE9-36464722784A} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-30] (Google)
    Task: {8123637A-7716-49D2-A10F-0704B2869431} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-20] (Microsoft Corporation)
    Task: {BAEE7CEB-1C5B-4632-8B15-FD9F4AE45F2A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
    Task: {C2C588DB-D246-4451-A70F-A8F295CDD1B3} - System32\Tasks\RegCure Pro_sch_BB0268C4-D00D-11E4-8B38-001E6880F4F1 => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe [2015-01-19] (ParetoLogic, Inc.) <==== ATTENTION
    Task: {C918A24D-AA1C-455D-911C-1F9260044A99} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\ParetoLogic Registration3.job => C:\Windows\system32\rundll32.exeAC:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll

    ==================== Loaded Modules (whitelisted) ==============

    2015-03-22 23:16 - 2015-03-22 23:16 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
    2015-03-22 23:16 - 2015-03-22 23:16 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2015-03-23 17:16 - 2015-03-23 17:16 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15032301\algo.dll
    2015-03-24 15:55 - 2015-03-24 15:55 - 02923008 _____ () C:\Program Files\AVAST Software\Avast\defs\15032401\algo.dll
    2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2011-09-27 08:22 - 2011-09-27 08:22 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    2008-05-16 00:09 - 2007-01-25 21:47 - 00136816 _____ () C:\Toshiba\IVP\ISM\pinger.exe
    2008-05-16 01:51 - 2008-04-22 10:05 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
    2008-05-16 00:09 - 2007-10-23 19:27 - 00066928 _____ () c:\Toshiba\IVP\swupdate\swupdtmr.exe
    2008-03-06 13:14 - 2008-03-06 13:14 - 05121912 _____ () C:\Program Files\Toshiba\FlashCards\BlackPng.dll
    2007-12-15 00:40 - 2007-12-15 00:40 - 00090112 _____ () C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
    2008-05-15 23:56 - 2006-10-10 14:44 - 00009728 _____ () C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
    2007-12-25 15:03 - 2007-12-25 15:03 - 00015184 _____ () C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll
    2006-10-07 14:57 - 2006-10-07 14:57 - 00053248 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
    2006-12-01 20:55 - 2006-12-01 20:55 - 00009216 _____ () C:\Program Files\Toshiba\TBS\NotifyTBS.dll
    2015-03-20 22:15 - 2015-03-20 22:14 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\loggingserver.exe
    2015-03-20 22:15 - 2015-03-20 22:14 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\log4cplusU.dll
    2008-01-02 23:27 - 2008-01-02 23:27 - 00761856 _____ () C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMediaLibrary.dll
    2008-01-02 23:27 - 2008-01-02 23:27 - 00007680 _____ () C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvcPS.dll
    2008-05-15 23:48 - 2008-01-29 19:00 - 00430080 _____ () C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    2015-03-20 21:32 - 2015-03-14 06:12 - 14974280 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.101\PepperFlash\pepflashplayer.dll
    2015-03-20 21:32 - 2015-03-14 06:12 - 09278792 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.101\pdf.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

    AlternateDataStreams: C:\ProgramData\TEMP:390B30B4

    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) ===============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
    DNS Servers: 192.168.2.1

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)


    ==================== Accounts: =============================

    Administrator (S-1-5-21-870383816-1840095418-3521214770-500 - Administrator - Disabled)
    Angela Marie (S-1-5-21-870383816-1840095418-3521214770-1000 - Administrator - Enabled) => C:\Users\Angela Marie
    Guest (S-1-5-21-870383816-1840095418-3521214770-501 - Limited - Disabled)

    ==================== Faulty Device Manager Devices =============

    Name: Microsoft ISATAP Adapter #2
    Description: Microsoft ISATAP Adapter
    Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
    Manufacturer: Microsoft
    Service: tunnel
    Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
    Resolution: Update the driver


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (03/24/2015 03:55:53 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application UninstallMonitor.exe, version 1.0.4.12, time stamp 0x549bbb28, faulting module madExcept_.bpl, version 6.0.6002.18881, time stamp 0x51da3e27, exception code 0xc0000135, fault offset 0x00009f5d,
    process id 0x964, application start time 0xUninstallMonitor.exe0.

    Error: (03/24/2015 03:55:52 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application UninstallMonitor.exe, version 1.0.4.12, time stamp 0x549bbb28, faulting module madExcept_.bpl, version 6.0.6002.18881, time stamp 0x51da3e27, exception code 0xc0000135, fault offset 0x00009f5d,
    process id 0xc7c, application start time 0xUninstallMonitor.exe0.

    Error: (03/24/2015 03:54:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 10:57:15 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application UninstallMonitor.exe, version 1.0.4.12, time stamp 0x549bbb28, faulting module madExcept_.bpl, version 6.0.6002.18881, time stamp 0x51da3e27, exception code 0xc0000135, fault offset 0x00009f5d,
    process id 0xcf4, application start time 0xUninstallMonitor.exe0.

    Error: (03/23/2015 10:57:15 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application UninstallMonitor.exe, version 1.0.4.12, time stamp 0x549bbb28, faulting module madExcept_.bpl, version 6.0.6002.18881, time stamp 0x51da3e27, exception code 0xc0000135, fault offset 0x00009f5d,
    process id 0xff0, application start time 0xUninstallMonitor.exe0.

    Error: (03/23/2015 10:57:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 10:49:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 10:49:16 PM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 10:41:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program SpybotSD.exe version 1.6.2.46 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
    Process ID: b20
    Start Time: 01d065dbbc7f1d7d
    Termination Time: 125

    Error: (03/23/2015 08:19:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


    System errors:
    =============

    Microsoft Office Sessions:
    =========================
    Error: (03/24/2015 03:55:53 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: UninstallMonitor.exe1.0.4.12549bbb28madExcept_.bpl6.0.6002.1888151da3e27c000013500009f5d96401d0666c82616f0c

    Error: (03/24/2015 03:55:52 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: UninstallMonitor.exe1.0.4.12549bbb28madExcept_.bpl6.0.6002.1888151da3e27c000013500009f5dc7c01d0666c82ad9b0c

    Error: (03/24/2015 03:54:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 10:57:15 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: UninstallMonitor.exe1.0.4.12549bbb28madExcept_.bpl6.0.6002.1888151da3e27c000013500009f5dcf401d065de37c2bab6

    Error: (03/23/2015 10:57:15 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: UninstallMonitor.exe1.0.4.12549bbb28madExcept_.bpl6.0.6002.1888151da3e27c000013500009f5dff001d065de38089d56

    Error: (03/23/2015 10:57:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 10:49:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (03/23/2015 10:49:16 PM) (Source: EventSystem) (EventID: 4609) (User: )
    Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

    Error: (03/23/2015 10:41:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: SpybotSD.exe1.6.2.46b2001d065dbbc7f1d7d125

    Error: (03/23/2015 08:19:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


    CodeIntegrity Errors:
    ===================================
    Date: 2015-03-24 16:03:53.879
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:52.647
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:51.399
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:50.026
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:48.294
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:46.968
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:45.736
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:03:44.457
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:02:29.074
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

    Date: 2015-03-24 16:02:27.795
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.


    ==================== Memory info ===========================

    Processor: AMD Turion(tm) X2 Dual-Core Mobile RM-70
    Percentage of memory in use: 52%
    Total physical RAM: 2813.6 MB
    Available physical RAM: 1340.98 MB
    Total Pagefile: 5853.75 MB
    Available Pagefile: 4410.53 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1912.82 MB

    ==================== Drives ================================

    Drive c: (SQ004728V05) (Fixed) (Total:184.84 GB) (Free:87.98 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: B941B941)
    Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27)
    Partition 2: (Active) - (Size=184.8 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================
     
  8. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    Hello sorry i may have given you the wrong log as this just popped up. Sorry!

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
    Ran by Angela Marie (administrator) on ANGELA on 24-03-2015 16:02:05
    Running from C:\Users\Angela Marie\Desktop
    Loaded Profiles: Angela Marie (Available profiles: Angela Marie)
    Platform: Microsoft® Windows Vista&#8482; Home Premium Service Pack 2 (X86) OS Language: English (United States)
    Internet Explorer Version 9 (Default browser: IE)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    (ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
    (Microsoft Corporation) C:\Windows\System32\SLsvc.exe
    (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
    (TOSHIBA CORPORATION) C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
    (O2Micro International) C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
    () C:\Toshiba\IVP\ISM\pinger.exe
    (Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe
    () C:\Toshiba\IVP\swupdate\swupdtmr.exe
    (TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
    (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
    (TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    (TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
    (TOSHIBA Corporation) C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
    (Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    (TOSHIBA Corporation) C:\Program Files\Toshiba\SmoothView\SmoothView.exe
    (Viewpoint Corporation) C:\Program Files\Viewpoint\Common\ViewpointService.exe
    (TOSHIBA Corporation) C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
    (AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
    (TOSHIBA CORPORATION) C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
    () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\loggingserver.exe
    (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
    (CyberLink Corp.) C:\Program Files\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
    (CyberLink) C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
    (Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
    () C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
    (Microsoft Corporation) C:\Windows\ehome\ehtray.exe
    (Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
    (TOSHIBA CORPORATION) C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
    (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
    HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [184320 2007-12-15] (Alps Electric Co., Ltd.)
    HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [431456 2008-02-06] (TOSHIBA Corporation)
    HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [54608 2007-11-01] (TOSHIBA Corporation)
    HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [448080 2007-06-16] (TOSHIBA Corporation)
    HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [716800 2008-03-19] (TOSHIBA Corporation)
    HKLM\...\Run: [Camera Assistant Software] => C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [417792 2008-04-29] (Chicony)
    HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
    HKLM\...\Run: [NDSTray.exe] => NDSTray.exe
    HKLM\...\Run: [cfFncEnabler.exe] => cfFncEnabler.exe
    HKLM\...\Run: [PCMAgent] => C:\Program Files\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe [143360 2007-12-13] (CyberLink Corp.)
    HKLM\...\Run: [CLMLServer] => C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe [184320 2008-02-14] (CyberLink)
    HKLM\...\Run: [] => [X]
    HKLM\...\Run: [RoxWatchTray] => C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [236016 2008-09-19] (Sonic Solutions)
    HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdSync.exe [215552 2008-01-20] (Microsoft Corporation)
    HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\Run: [TOSCDSPD] => TOSCDSPD.EXE
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2008-12-21] (Google Inc.)
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [205480 2007-08-30] (Macrovision Corporation)
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [294912 2008-01-20] (Microsoft Corporation)
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (Avast Software s.r.o.)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    ProxyServer: [S-1-5-21-870383816-1840095418-3521214770-1000] => proxy.configfree.com:8080
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={5E99D22A-9F76-4F59-B73A-D074A307A564}&mid=f4c4432cc17747cdbfadd1572e641d02-994b63b5e2286a833058a82fe7254f814cb10f2b&lang=en&ds=AVG&coid=avgtbavg&cmpid=0215pi&pr=fr&d=2015-03-20 22:16:02&v=4.1.0.411&pid=wtu&sg=&sap=hp
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
    HKU\S-1-5-21-870383816-1840095418-3521214770-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
    SearchScopes: HKLM -> DefaultScope {C1C4D7C3-2ABC-4AD3-8386-A2F8C0C2D90B} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage};
    SearchScopes: HKLM -> {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
    SearchScopes: HKLM -> {C1C4D7C3-2ABC-4AD3-8386-A2F8C0C2D90B} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage};
    SearchScopes: HKU\S-1-5-21-870383816-1840095418-3521214770-1000 -> Comcast URL = http://search.xfinity.com/?cat=subweb&con=mmchrome&q={searchTerms}&cid=xfstart_tech_search
    SearchScopes: HKU\S-1-5-21-870383816-1840095418-3521214770-1000 -> {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
    SearchScopes: HKU\S-1-5-21-870383816-1840095418-3521214770-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={5E99D22A-9F76-4F59-B73A-D074A307A564}&mid=f4c4432cc17747cdbfadd1572e641d02-994b63b5e2286a833058a82fe7254f814cb10f2b&lang=en&ds=AVG&coid=avgtbavg&cmpid=0215pi&pr=fr&d=2015-03-20 22:16:02&v=4.1.0.411&pid=wtu&sg=&sap=dsp&q={searchTerms}
    BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30] (Adobe Systems Incorporated)
    BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2015-03-21] (IObit)
    BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21] (Oracle Corporation)
    BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-22] (Avast Software s.r.o.)
    BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-04] (Google Inc.)
    BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll [2015-03-04] (Google Inc.)
    BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
    BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21] (Oracle Corporation)
    Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-04] (Google Inc.)
    Toolbar: HKU\S-1-5-21-870383816-1840095418-3521214770-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-04] (Google Inc.)
    Toolbar: HKU\S-1-5-21-870383816-1840095418-3521214770-1000 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
    DPF: {00000130-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/ACELPACM.CAB
    DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
    DPF: {48DD0448-9209-4F81-9F6D-D83562940134} http://lads.myspace.com/upload/MySpaceUploader1006.cab
    DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
    DPF: {B4CB50E4-0309-4906-86EA-10B6641C8392} https://connect.dauphinc.org//SNX/CSHELL/extender.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
    Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

    FireFox:
    ========
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2010-01-26] ()
    FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.4.0\\npsitesafety.dll No File
    FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
    FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll [2008-08-20] (Google, Inc.)
    FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll [2009-05-01] (Google, Inc.)
    FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-21] (Oracle Corporation)
    FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-21] (Oracle Corporation)
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
    FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
    FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
    FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
    FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
    FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
    FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2011-09-06] (Google)
    FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
    FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-15] (Google Inc.)
    FF Plugin: @viewpoint.com/VMP -> C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll [2007-04-16] ()
    FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
    FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-23]
    FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
    FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-22]

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.xfinity.com/?cid=insDate11042011
    CHR StartupUrls: Default -> "hxxp://www.xfinity.com/?cid=insDate11042011"
    CHR DefaultSuggestURL: Default -> https://toolbar.avg.com/acp?q={searchTerms}&o=1
    CHR Profile: C:\Users\Angela Marie\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (AVG Secure Search) - C:\Users\Angela Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-03-21]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Angela Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-15]
    CHR Extension: (Google Wallet) - C:\Users\Angela Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-05]
    CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-22]

    ========================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-22] (Avast Software s.r.o.)
    R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3205216 2015-03-22] (Avast Software)
    R2 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2008-04-17] (TOSHIBA CORPORATION) [File not signed]
    S3 GameConsoleService; C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe [165416 2008-01-29] (WildTangent, Inc.)
    S2 gupdate1c99bb0a0723b40; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2015-01-25] (Google Inc.)
    S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
    S3 jswpsapi; C:\Program Files\Jumpstart\jswpsapi.exe [954368 2008-04-16] (Atheros Communications, Inc.) [File not signed]
    S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-16] (IObit)
    S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
    R2 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [File not signed]
    R2 pinger; C:\Toshiba\IVP\ISM\pinger.exe [136816 2007-01-25] ()
    S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [657408 2009-10-27] (Nokia) [File not signed]
    R2 Swupdtmr; c:\Toshiba\IVP\swupdate\swupdtmr.exe [66928 2007-10-23] ()
    R2 TOSHIBA SMART Log Service; C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [126976 2007-12-03] (TOSHIBA Corporation) [File not signed]
    R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [File not signed]
    R2 Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [24652 2007-01-04] (Viewpoint Corporation) [File not signed]
    R2 vToolbarUpdater18.4.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe [1875480 2015-03-20] (AVG Secure Search)
    R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-20] (Microsoft Corporation)
    S2 WtuSystemSupport; No ImagePath

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R0 ahcix86; C:\Windows\System32\DRIVERS\ahcix86.sys [184328 2015-03-21] (Advanced Micro Devices, Inc)
    R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-03-22] ()
    R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73440 2015-03-22] (Avast Software s.r.o.)
    R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55200 2015-03-22] (Avast Software s.r.o.)
    R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-03-22] ()
    R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788272 2015-03-22] (Avast Software s.r.o.)
    R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427480 2015-03-22] (Avast Software s.r.o.)
    R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57888 2015-03-22] (Avast Software s.r.o.)
    R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206976 2015-03-22] ()
    R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-03-21] (REALiX(tm))
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation)
    S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation)
    R3 QIOMem; C:\Windows\System32\DRIVERS\QIOMem.sys [8192 2007-04-09] (TOSHIBA)
    R3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [18432 2007-12-17] (Chicony Electronics Co., Ltd.)
    R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220240 2015-03-22] (Avast Software)
    S3 cpuz136; \??\C:\Users\ANGELA~1\AppData\Local\Temp\cpuz136\cpuz136_x32.sys [X]
    S3 cpuz137; \??\C:\Users\ANGELA~1\AppData\Local\Temp\cpuz137\cpuz137_x32.sys [X]
    S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
    S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
    S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
    S3 Tosrfcom; No ImagePath
    S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [X]

    ==================== NetSvcs (Whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-24 16:00 - 2015-03-24 16:02 - 00021112 _____ () C:\Users\Angela Marie\Desktop\FRST.txt
    2015-03-23 22:39 - 2015-03-24 15:59 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
    2015-03-23 22:39 - 2015-03-24 15:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
    2015-03-23 22:37 - 2015-03-23 22:38 - 16409960 _____ (Safer Networking Limited ) C:\Users\Angela Marie\Downloads\spybotsd162.exe
    2015-03-23 20:27 - 2015-03-23 20:27 - 01135104 _____ (Farbar) C:\Users\Angela Marie\Desktop\FRST.exe
    2015-03-23 18:18 - 2015-03-23 18:20 - 00067649 _____ () C:\Users\Angela Marie\Downloads\Addition.txt
    2015-03-23 18:12 - 2015-03-24 16:02 - 00000000 ____D () C:\FRST
    2015-03-23 18:12 - 2015-03-23 18:20 - 00000194 _____ () C:\Users\Angela Marie\Downloads\FRST.txt
    2015-03-23 18:08 - 2015-03-23 18:10 - 01135104 _____ (Farbar) C:\Users\Angela Marie\Downloads\FRST (1).exe
    2015-03-23 17:50 - 2015-03-23 17:50 - 00448512 _____ (OldTimer Tools) C:\Users\Angela Marie\Downloads\TFC.exe
    2015-03-23 17:48 - 2015-03-23 17:49 - 00084237 _____ () C:\Users\Angela Marie\Desktop\temp file cleaner.htm
    2015-03-23 17:17 - 2015-03-23 17:17 - 00509440 _____ (Tech Support Guy System) C:\Users\Angela Marie\Downloads\SysInfo.exe
    2015-03-23 07:21 - 2015-03-23 09:06 - 00006381 _____ () C:\Windows\system32\avgrep.txt
    2015-03-23 06:26 - 2015-03-23 06:26 - 04579240 _____ (AVG Technologies) C:\Users\Angela Marie\Downloads\avg_isct_stb_all_2015_5315_evol1.exe
    2015-03-23 06:05 - 2015-03-23 06:05 - 00716896 _____ (Kaspersky Lab) C:\Users\Angela Marie\Downloads\setup (1).exe
    2015-03-23 06:02 - 2015-03-23 06:03 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
    2015-03-23 06:01 - 2015-03-23 06:01 - 00716896 _____ (Kaspersky Lab) C:\Users\Angela Marie\Downloads\setup.exe
    2015-03-22 23:33 - 2015-03-22 23:35 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Dropbox
    2015-03-22 23:23 - 2015-03-22 23:23 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\AVAST Software
    2015-03-22 23:20 - 2015-03-22 23:25 - 00000000 ____D () C:\Windows\system32\vbox
    2015-03-22 23:19 - 2015-03-22 23:19 - 00001800 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
    2015-03-22 23:19 - 2015-03-22 23:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
    2015-03-22 23:17 - 2015-03-22 23:17 - 00427480 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
    2015-03-22 23:17 - 2015-03-22 23:17 - 00206976 _____ () C:\Windows\system32\Drivers\aswVmm.sys
    2015-03-22 23:17 - 2015-03-22 23:17 - 00073440 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
    2015-03-22 23:17 - 2015-03-22 23:17 - 00057888 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswTdi.sys
    2015-03-22 23:17 - 2015-03-22 23:17 - 00055200 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr.sys
    2015-03-22 23:17 - 2015-03-22 23:17 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
    2015-03-22 23:17 - 2015-03-22 23:17 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys
    2015-03-22 23:17 - 2015-03-22 23:16 - 00788272 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
    2015-03-22 23:17 - 2015-03-22 23:16 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
    2015-03-22 23:16 - 2015-03-22 23:16 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
    2015-03-22 23:13 - 2015-03-22 23:13 - 00000000 ____D () C:\Program Files\AVAST Software
    2015-03-22 23:11 - 2015-03-22 23:11 - 05475064 _____ (Avast Software s.r.o.) C:\Users\Angela Marie\Downloads\avast_free_antivirus_setup_online.exe
    2015-03-22 23:11 - 2015-03-22 23:11 - 00000000 ____D () C:\ProgramData\AVAST Software
    2015-03-22 18:23 - 2015-03-22 18:23 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
    2015-03-22 14:52 - 2015-03-22 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
    2015-03-22 14:52 - 2015-03-22 14:52 - 00000000 ____D () C:\Program Files\HWiNFO32
    2015-03-22 14:51 - 2015-03-22 14:51 - 02611248 _____ (Martin Malík - REALiX ) C:\Users\Angela Marie\Downloads\hw32_460.exe
    2015-03-22 14:41 - 2015-03-22 14:41 - 00000776 _____ () C:\Users\Angela Marie\Downloads\Add_System_cooling_policy (1).reg
    2015-03-22 14:40 - 2015-03-22 14:40 - 00000776 _____ () C:\Users\Angela Marie\Downloads\Add_System_cooling_policy.reg
    2015-03-22 04:42 - 2015-03-22 04:42 - 00000000 ____D () C:\Program Files\Windows Portable Devices
    2015-03-22 04:37 - 2015-03-22 04:37 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
    2015-03-22 04:37 - 2015-03-22 04:37 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
    2015-03-22 04:34 - 2015-03-22 04:34 - 00142608 _____ () C:\Windows\Minidump\Mini032215-01.dmp
    2015-03-22 04:33 - 2015-03-22 04:33 - 279472588 _____ () C:\Windows\MEMORY.DMP
    2015-03-22 03:03 - 2009-09-09 22:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
    2015-03-22 03:03 - 2009-09-09 22:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
    2015-03-22 03:03 - 2009-09-09 22:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
    2015-03-22 03:02 - 2009-09-30 21:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
    2015-03-22 03:02 - 2009-09-30 21:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
    2015-03-22 03:02 - 2009-09-30 21:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
    2015-03-22 03:02 - 2009-09-30 21:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
    2015-03-22 03:02 - 2009-09-30 21:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
    2015-03-22 03:02 - 2009-09-30 21:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
    2015-03-22 03:02 - 2009-09-30 21:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
    2015-03-22 03:02 - 2009-09-30 21:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
    2015-03-21 20:14 - 2015-03-23 20:17 - 00026962 _____ () C:\Windows\PFRO.log
    2015-03-21 20:10 - 2015-03-23 10:50 - 00018425 _____ () C:\Windows\setupact.log
    2015-03-21 20:10 - 2015-03-21 20:10 - 00000000 _____ () C:\Windows\setuperr.log
    2015-03-21 19:37 - 2015-03-23 19:55 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\AvgSetupLog
    2015-03-21 19:37 - 2015-03-21 19:37 - 16642472 _____ (AVG Technologies) C:\Users\Angela Marie\Downloads\avg_gsl_stb_all_ltst_144.exe
    2015-03-21 18:15 - 2015-03-21 18:15 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-03-21 18:14 - 2015-03-21 18:14 - 00000870 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
    2015-03-21 18:14 - 2015-03-21 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
    2015-03-21 18:14 - 2015-03-21 18:14 - 00000000 ____D () C:\ProgramData\Malwarebytes
    2015-03-21 18:14 - 2015-03-21 18:14 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
    2015-03-21 18:14 - 2015-03-17 06:15 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
    2015-03-21 18:14 - 2015-03-17 06:15 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
    2015-03-21 18:14 - 2015-03-17 06:15 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
    2015-03-21 18:13 - 2015-03-21 18:14 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Angela Marie\Downloads\mbam-setup-2.1.4.1018 (1).exe
    2015-03-21 17:13 - 2015-03-21 17:16 - 00000317 _____ () C:\Windows\system32\debug.log
    2015-03-21 09:56 - 2015-03-23 18:01 - 00000458 _____ () C:\Windows\Tasks\ParetoLogic Registration3.job
    2015-03-21 09:51 - 2015-03-21 09:51 - 00000842 _____ () C:\Users\Public\Desktop\PC HealthBoost.lnk
    2015-03-21 09:51 - 2015-03-21 09:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC HealthBoost
    2015-03-21 09:51 - 2015-03-21 09:51 - 00000000 ____D () C:\ProgramData\BoostSoftware
    2015-03-21 09:51 - 2015-03-21 09:51 - 00000000 ____D () C:\Program Files\PC HealthBoost
    2015-03-21 09:49 - 2015-03-21 09:49 - 02925848 _____ (BoostSoftware Inc. ) C:\Users\Angela Marie\Downloads\PCHealthBoost-Setup.exe
    2015-03-21 09:43 - 2015-03-21 09:43 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\ProgramData\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\Program Files\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\Program Files\Common Files\ParetoLogic
    2015-03-21 09:41 - 2015-03-21 09:42 - 06870552 _____ (ParetoLogic, Inc.) C:\Users\Angela Marie\Downloads\RegCureProSetup.exe
    2015-03-21 09:22 - 2015-03-21 09:22 - 52441088 _____ () C:\Windows\system32\config\software.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 40574976 _____ () C:\Windows\system32\config\components.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 00286720 _____ () C:\Windows\system32\config\default.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 00057344 _____ () C:\Windows\system32\config\sam.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 00024576 _____ () C:\Windows\system32\config\security.iobit
    2015-03-21 09:13 - 2015-03-21 09:13 - 00000000 ____D () C:\Program Files\Common Files\Java
    2015-03-21 09:13 - 2015-03-21 09:10 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
    2015-03-21 09:11 - 2015-03-21 09:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
    2015-03-21 09:08 - 2015-03-21 09:08 - 00561064 _____ (Oracle Corporation) C:\Users\Angela Marie\Downloads\chromeinstall-8u40 (4).exe
    2015-03-21 08:44 - 2015-03-21 08:44 - 00001959 _____ () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OldSchool RuneScape.lnk
    2015-03-21 08:44 - 2015-03-21 08:44 - 00001929 _____ () C:\Users\Angela Marie\Desktop\OldSchool RuneScape.lnk
    2015-03-21 08:44 - 2015-03-21 08:44 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OldSchool RuneScape
    2015-03-21 08:42 - 2015-03-21 08:42 - 23646208 _____ () C:\Users\Angela Marie\Desktop\OldSchool.msi
    2015-03-21 08:28 - 2015-03-21 08:28 - 01190415 _____ () C:\Users\Angela Marie\Desktop\ProcessExplorer.zip
    2015-03-21 08:28 - 2015-03-21 08:28 - 00000000 ____D () C:\Users\Angela Marie\Desktop\ProcessExplorer
    2015-03-21 05:26 - 2015-03-21 05:26 - 00311296 _____ (Marvell) C:\Windows\system32\Drivers\yk60x86.sys
    2015-03-21 05:26 - 2015-03-21 05:26 - 00282624 _____ (Marvell) C:\Windows\system32\ykx32mpcoinst.dll
    2015-03-21 05:18 - 2015-03-21 05:18 - 00184328 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\ahcix86.sys
    2015-03-21 05:03 - 2015-03-21 05:03 - 02205696 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys
    2015-03-21 04:55 - 2015-03-21 04:55 - 00000000 ____D () C:\dell
    2015-03-21 04:54 - 2015-03-21 04:55 - 04080192 _____ () C:\Users\Angela Marie\Downloads\R220344.exe
    2015-03-21 04:51 - 2015-03-21 04:52 - 00000000 ____D () C:\Users\Angela Marie\Downloads\vista-7.7.0.498-whql
    2015-03-21 04:51 - 2015-03-21 04:51 - 01293667 _____ () C:\Users\Angela Marie\Downloads\vista-7.7.0.498-whql.zip
    2015-03-21 04:39 - 2015-03-21 04:39 - 02448688 _____ (Megaify Software ) C:\Users\Angela Marie\Downloads\DriverToolkitInstaller (2).exe
    2015-03-21 04:36 - 2015-03-21 04:36 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\ProductData
    2015-03-21 04:34 - 2015-03-21 04:34 - 00000992 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
    2015-03-21 04:34 - 2015-03-21 04:34 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
    2015-03-21 04:34 - 2015-03-21 04:34 - 00000000 ____D () C:\Program Files\Common Files\IObit
    2015-03-21 04:31 - 2015-03-21 17:05 - 00000000 ____D () C:\ProgramData\ProductData
    2015-03-21 04:30 - 2015-03-23 20:14 - 00000000 ____D () C:\Program Files\IObit
    2015-03-21 04:30 - 2015-03-21 17:05 - 00000000 ____D () C:\ProgramData\IObit
    2015-03-21 04:30 - 2015-03-21 04:35 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\IObit
    2015-03-21 04:30 - 2015-03-21 04:30 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
    2015-03-21 04:29 - 2015-03-21 04:29 - 11845992 _____ (IObit ) C:\Users\Angela Marie\Downloads\driver_booster_setup.exe
    2015-03-21 03:57 - 2011-03-12 17:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
    2015-03-21 02:04 - 2015-03-21 08:44 - 00000000 ____D () C:\Users\Angela Marie\jagexcache
    2015-03-21 01:54 - 2015-03-21 01:54 - 00181074 _____ () C:\Users\Angela Marie\Downloads\amd_raid_x86_3.3.1540.22.zip
    2015-03-21 01:50 - 2015-03-21 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
    2015-03-21 01:50 - 2015-03-21 04:39 - 00000000 ____D () C:\Program Files\DriverToolkit
    2015-03-21 01:50 - 2015-03-21 01:50 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\DriverToolkit
    2015-03-20 22:16 - 2015-03-21 20:15 - 00000000 ____D () C:\ProgramData\AVG Security Toolbar
    2015-03-20 22:15 - 2015-03-20 22:16 - 00000000 ____D () C:\Program Files\Common Files\AVG Secure Search
    2015-03-20 22:15 - 2015-03-20 22:15 - 00000000 ____D () C:\ProgramData\AVG Secure Search
    2015-03-20 22:05 - 2015-03-20 22:05 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\AVG2015
    2015-03-20 22:03 - 2015-03-20 22:03 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\TuneUp Software
    2015-03-20 21:59 - 2015-03-23 20:17 - 00000000 ____D () C:\ProgramData\AVG2015
    2015-03-20 21:59 - 2015-03-23 19:38 - 00000000 ___HD () C:\$AVG
    2015-03-20 21:55 - 2015-03-23 19:56 - 00000000 ____D () C:\Program Files\AVG
    2015-03-20 21:50 - 2015-03-23 20:17 - 00000000 ____D () C:\ProgramData\MFAData
    2015-03-20 21:50 - 2015-03-23 19:44 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\Avg2015
    2015-03-20 21:50 - 2015-03-20 21:50 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\MFAData
    2015-03-20 21:49 - 2015-03-20 21:49 - 04816784 _____ (AVG Technologies) C:\Users\Angela Marie\Downloads\avg_free_stb_all_5856p1_177.exe
    2015-03-20 20:12 - 2015-03-20 20:12 - 00881112 _____ () C:\Users\Angela Marie\Desktop\OSBuddy.exe
    2015-03-20 20:11 - 2015-03-20 20:11 - 00009781 _____ () C:\Users\Angela Marie\Desktop\rsbuddy.htm
    2015-03-20 16:42 - 2015-01-28 21:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
    2015-03-20 16:40 - 2015-01-28 21:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
    2015-03-20 16:12 - 2014-06-26 18:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
    2015-03-20 16:12 - 2014-06-26 18:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
    2015-03-20 16:12 - 2014-06-26 18:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
    2015-03-20 16:12 - 2014-06-06 00:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
    2015-03-20 16:09 - 2015-02-25 20:18 - 02064384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-03-20 16:07 - 2014-06-15 18:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
    2015-03-20 16:07 - 2014-06-13 14:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
    2015-03-20 16:07 - 2014-06-13 14:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
    2015-03-20 16:05 - 2015-03-20 16:05 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\Angela Marie\Downloads\autodetectutility.exe
    2015-03-20 15:52 - 2014-10-09 21:01 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
    2015-03-20 15:52 - 2014-10-09 21:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-03-20 15:52 - 2014-10-09 19:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-03-20 15:51 - 2014-12-18 20:25 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
    2015-03-20 15:48 - 2014-11-03 20:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 12375040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 09747968 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
    2015-03-20 15:32 - 2015-03-20 15:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-03-20 15:32 - 2015-03-20 15:32 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 01803264 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-03-20 15:32 - 2015-03-20 15:32 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-03-20 15:32 - 2015-03-20 15:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
    2015-03-20 15:32 - 2015-03-20 15:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
    2015-03-20 15:32 - 2015-03-20 15:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
    2015-03-20 15:32 - 2015-03-20 15:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
    2015-03-20 15:24 - 2015-03-21 06:38 - 00000000 ____D () C:\Users\Angela Marie\OSBuddy
    2015-03-20 15:10 - 2015-03-20 15:10 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
    2015-03-20 15:10 - 2015-03-20 15:10 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
    2015-03-20 15:10 - 2015-03-20 15:10 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
    2015-03-20 15:10 - 2015-03-20 15:10 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
    2015-03-19 21:07 - 2015-03-19 21:07 - 00216074 _____ () C:\Users\Angela Marie\Documents\ts3_clientui-win32-1407159763-2015-03-19 21_07_05.304339.dmp
    2015-03-19 12:56 - 2013-08-26 22:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
    2015-03-19 12:56 - 2013-08-26 22:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
    2015-03-19 12:56 - 2013-08-26 22:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
    2015-03-19 12:56 - 2013-08-26 22:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
    2015-03-19 12:56 - 2013-08-26 21:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-03-19 12:56 - 2013-08-26 21:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
    2015-03-19 12:56 - 2013-08-26 21:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
    2015-03-19 12:56 - 2013-08-26 21:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-03-19 12:56 - 2013-08-26 21:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-03-19 12:33 - 2015-03-19 12:33 - 00018325 _____ () C:\Users\Angela Marie\Desktop\20150319.txt
    2015-03-19 12:26 - 2015-03-19 12:28 - 00000000 ____D () C:\Program Files\Realtek WLAN Driver
    2015-03-19 12:21 - 2015-03-19 12:21 - 00000000 ____D () C:\Program Files\Cisco
    2015-03-19 00:00 - 2015-03-19 00:00 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\Windows Live
    2015-03-18 23:16 - 2015-03-18 23:17 - 00002425 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 8.lnk
    2015-03-18 23:16 - 2015-03-18 23:17 - 00001858 _____ () C:\Users\Public\Desktop\Adobe Reader 8.lnk
    2015-03-18 23:16 - 2015-03-18 23:16 - 00000000 ____D () C:\Program Files\Common Files\Adobe
    2015-03-18 23:16 - 2015-03-18 23:16 - 00000000 ____D () C:\Program Files\Adobe
    2015-03-18 22:51 - 2015-03-21 06:38 - 00000000 ____D () C:\.jagex_cache_32
    2015-03-18 22:04 - 2015-03-18 22:04 - 00000000 ____D () C:\78e16620cee3ebb07c
    2015-03-18 21:54 - 2014-08-26 20:55 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2015-03-18 21:54 - 2014-08-26 20:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2015-03-18 21:45 - 2014-10-23 21:03 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-03-18 21:43 - 2014-10-23 21:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
    2015-03-18 21:24 - 2014-11-25 22:05 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
    2015-03-18 21:22 - 2014-08-22 21:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
    2015-03-18 21:11 - 2015-02-19 22:03 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2015-03-18 21:11 - 2015-02-19 20:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2015-03-18 20:56 - 2015-02-25 22:01 - 03604408 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
    2015-03-18 20:56 - 2015-02-25 22:01 - 03552184 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-03-18 20:56 - 2015-01-08 22:04 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-03-18 20:56 - 2015-01-08 20:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-03-18 20:55 - 2015-01-20 22:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
    2015-03-18 20:54 - 2014-08-11 22:25 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
    2015-03-18 20:52 - 2015-03-18 20:52 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
    2015-03-18 20:52 - 2015-03-18 20:52 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
    2015-03-18 20:52 - 2015-03-18 20:52 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
    2015-03-18 20:52 - 2015-03-18 20:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
    2015-03-18 20:52 - 2015-03-18 20:52 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
    2015-03-18 19:58 - 2015-03-06 00:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-03-18 19:58 - 2015-01-15 00:13 - 00440760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-03-18 19:58 - 2014-10-09 21:00 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-03-18 19:56 - 2014-10-12 21:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
    2015-03-18 19:56 - 2014-06-02 06:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
    2015-03-18 19:56 - 2014-06-02 06:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
    2015-03-18 19:56 - 2014-06-02 06:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
    2015-03-18 19:56 - 2014-06-02 04:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
    2015-03-18 19:42 - 2014-10-02 21:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
    2015-03-18 19:42 - 2014-10-02 21:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
    2015-03-18 19:42 - 2014-10-02 21:17 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
    2015-03-18 19:42 - 2014-10-02 21:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
    2015-03-18 19:28 - 2014-12-05 23:14 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
    2015-03-18 19:28 - 2014-12-05 23:14 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
    2015-03-18 19:28 - 2014-12-05 23:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
    2015-03-18 19:23 - 2015-02-17 22:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-03-18 18:48 - 2014-09-04 19:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
    2015-03-18 18:47 - 2014-12-07 21:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
    2015-03-18 18:46 - 2012-06-02 10:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
    2015-03-18 18:45 - 2012-07-25 23:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
    2015-03-18 18:45 - 2012-07-25 23:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
    2015-03-18 18:45 - 2012-07-25 23:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
    2015-03-18 18:45 - 2012-07-25 23:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
    2015-03-18 18:45 - 2012-07-25 23:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
    2015-03-18 18:45 - 2012-07-25 23:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
    2015-03-18 18:45 - 2012-07-25 22:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
    2015-03-18 18:45 - 2012-07-25 22:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
    2015-03-18 18:45 - 2012-07-25 22:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
    2015-03-18 18:45 - 2009-07-14 08:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
    2015-03-18 18:02 - 2014-12-05 23:14 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
    2015-03-17 15:48 - 2015-03-17 15:48 - 00000000 ____D () C:\Windows\pss
    2015-03-17 12:30 - 2014-04-04 22:42 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2015-03-17 12:24 - 2013-10-03 08:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
    2015-03-17 12:24 - 2013-06-28 22:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
    2015-03-17 12:24 - 2013-06-28 22:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
    2015-03-17 12:24 - 2013-06-28 22:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
    2015-03-17 12:24 - 2013-06-28 22:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
    2015-03-17 12:24 - 2013-05-02 00:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
    2015-03-17 12:24 - 2013-05-02 00:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
    2015-03-17 12:24 - 2012-08-21 07:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
    2015-03-17 12:24 - 2012-06-29 12:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
    2015-03-17 12:24 - 2011-10-14 12:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
    2015-03-17 12:24 - 2011-05-05 09:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
    2015-03-17 12:24 - 2011-05-05 09:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
    2015-03-17 12:23 - 2014-04-26 12:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
    2015-03-17 12:23 - 2014-02-05 21:56 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-03-17 12:23 - 2013-10-22 03:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
    2015-03-17 12:23 - 2013-10-10 22:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2015-03-17 12:23 - 2013-10-10 22:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
    2015-03-17 12:23 - 2013-10-10 20:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
    2015-03-17 12:23 - 2013-07-16 00:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
    2015-03-17 12:23 - 2013-06-26 19:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
    2015-03-17 12:23 - 2013-06-15 09:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
    2015-03-17 12:23 - 2013-06-15 07:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
    2015-03-17 12:23 - 2013-02-11 21:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
    2015-03-17 12:23 - 2013-02-11 21:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
    2015-03-17 12:23 - 2012-05-11 11:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
    2015-03-17 12:23 - 2012-02-29 11:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
    2015-03-17 12:23 - 2012-02-29 09:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
    2015-03-17 12:23 - 2011-10-25 11:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
    2015-03-17 12:23 - 2011-10-14 12:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
    2015-03-17 12:23 - 2011-10-14 12:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
    2015-03-17 12:23 - 2011-07-29 12:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
    2015-03-17 12:23 - 2011-07-29 12:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
    2015-03-17 12:23 - 2011-07-29 12:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
    2015-03-17 12:23 - 2011-07-29 12:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
    2015-03-17 12:22 - 2013-07-20 06:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-03-17 12:22 - 2012-09-25 12:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
    2015-03-17 12:19 - 2013-10-29 22:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
    2015-03-17 12:19 - 2013-10-29 21:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
    2015-03-17 12:19 - 2013-10-29 20:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
    2015-03-17 12:19 - 2012-11-02 06:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
    2015-03-17 12:19 - 2012-11-02 04:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
    2015-03-17 12:19 - 2012-03-20 19:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
    2015-03-17 12:18 - 2014-06-13 20:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2015-03-17 12:18 - 2014-06-13 20:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
    2015-03-17 12:18 - 2014-06-06 04:59 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
    2015-03-17 12:18 - 2013-07-10 05:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2015-03-17 12:17 - 2013-03-03 15:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2015-03-17 12:17 - 2012-11-20 00:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-03-17 12:17 - 2011-02-22 10:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
    2015-03-17 12:17 - 2011-01-20 10:28 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
    2015-03-17 12:17 - 2011-01-20 10:25 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
    2015-03-17 12:14 - 2014-05-30 02:53 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
    2015-03-17 12:14 - 2014-03-09 21:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2015-03-17 12:14 - 2011-12-14 12:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
    2015-03-17 12:13 - 2013-07-12 05:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
    2015-03-17 12:08 - 2013-10-10 22:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
    2015-03-17 12:08 - 2013-10-10 22:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
    2015-03-17 12:08 - 2013-10-10 22:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
    2015-03-17 12:08 - 2013-10-10 20:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
    2015-03-17 12:08 - 2013-10-10 20:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
    2015-03-17 12:08 - 2013-08-02 00:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
    2015-03-17 12:08 - 2013-04-24 00:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
    2015-03-17 12:08 - 2013-04-23 21:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
    2015-03-17 12:08 - 2012-11-21 23:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
    2015-03-17 12:08 - 2012-11-07 23:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
    2015-03-17 12:06 - 2013-07-09 08:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-03-17 12:06 - 2011-11-16 12:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
    2015-03-17 12:06 - 2011-08-25 12:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
    2015-03-17 12:06 - 2011-08-25 12:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
    2015-03-17 12:06 - 2011-08-25 09:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
    2015-03-17 12:05 - 2013-07-04 00:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
    2015-03-17 12:05 - 2013-07-02 22:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
    2015-03-17 12:05 - 2013-04-17 08:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
    2015-03-17 12:05 - 2013-03-07 23:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-03-17 12:05 - 2013-03-07 23:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-03-17 12:05 - 2012-05-01 10:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
    2015-03-17 12:05 - 2011-06-15 12:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
    2015-03-17 12:04 - 2011-11-16 12:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-03-17 12:04 - 2011-11-16 10:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-03-17 12:02 - 2010-05-04 15:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
    2015-03-17 11:57 - 2014-01-30 03:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
    2015-03-17 11:12 - 2013-07-08 00:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
    2015-03-17 11:12 - 2013-07-08 00:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
    2015-03-17 11:12 - 2013-07-08 00:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
    2015-03-17 10:21 - 2012-01-09 11:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
    2015-03-17 09:52 - 2012-06-02 18:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2015-03-17 09:52 - 2012-06-02 18:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2015-03-17 09:52 - 2012-06-02 18:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2015-03-17 09:52 - 2012-06-02 18:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2015-03-17 09:51 - 2012-06-02 18:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2015-03-17 09:51 - 2012-06-02 18:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2015-03-17 09:51 - 2012-06-02 18:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2015-03-17 09:51 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2015-03-17 09:51 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2015-03-16 20:01 - 2015-03-16 20:01 - 00000000 ____D () C:\Windows\system32\vi-VN
    2015-03-16 20:01 - 2015-03-16 20:01 - 00000000 ____D () C:\Windows\system32\eu-ES
    2015-03-16 20:01 - 2015-03-16 20:01 - 00000000 ____D () C:\Windows\system32\ca-ES
    2015-03-16 18:58 - 2015-03-16 18:58 - 00000000 ____D () C:\Windows\system32\EventProviders
    2015-03-15 23:58 - 2015-03-22 23:13 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\TS3Client
    2015-03-15 23:58 - 2015-03-15 23:58 - 00001046 _____ () C:\Users\Angela Marie\Desktop\TeamSpeak 3 Client.lnk
    2015-03-15 23:58 - 2015-03-15 23:58 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
    2015-03-15 23:58 - 2015-03-15 23:58 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\TeamSpeak 3 Client
    2015-03-15 23:53 - 2015-03-15 23:57 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\Angela Marie\Downloads\TeamSpeak3-Client-win32-3.0.16.exe
    2015-03-15 23:38 - 2015-03-18 22:12 - 00000024 _____ () C:\Users\Angela Marie\jagexappletviewer.preferences
    2015-03-15 22:33 - 2015-03-16 15:16 - 00000000 ____D () C:\ProgramData\SwiftKit
    2015-03-15 22:33 - 2015-03-15 22:33 - 00000775 _____ () C:\Users\Angela Marie\Desktop\SwiftKit.lnk
    2015-03-15 22:33 - 2015-03-15 22:33 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SwiftKit
    2015-03-15 22:33 - 2013-04-06 21:16 - 00203976 _____ (Microsoft Corporation) C:\Windows\system32\RICHTX32.OCX
    2015-03-15 22:33 - 2013-04-06 21:16 - 00117507 _____ (Microsoft Corporation) C:\Windows\system32\msinet.ocx
    2015-03-15 22:33 - 2013-04-06 21:16 - 00109248 _____ (Microsoft Corporation) C:\Windows\system32\MSWINSCK.OCX
    2015-03-15 22:32 - 2015-03-20 15:44 - 00000000 ____D () C:\Program Files\SwiftKit
    2015-03-15 22:31 - 2015-03-15 22:32 - 03514555 _____ () C:\Users\Angela Marie\Downloads\SwiftKit(Install).exe
    2015-03-15 22:05 - 2015-03-18 22:42 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
    2015-03-15 21:04 - 2015-03-15 21:05 - 00560552 _____ (Oracle Corporation) C:\Users\Angela Marie\Downloads\JavaSetup8u40.exe
    2015-03-15 20:38 - 2015-03-23 21:29 - 00000051 _____ () C:\Users\Angela Marie\jagex_cl_oldschool_LIVE.dat
    2015-03-15 20:38 - 2015-03-20 15:28 - 00000024 ____R () C:\Users\Angela Marie\random.dat
    2015-03-04 21:28 - 2015-03-04 21:29 - 00000000 ____D () C:\Users\Angela Marie\Desktop\College stuff
    2015-03-03 18:08 - 2015-03-03 18:08 - 00275162 _____ () C:\Users\Angela Marie\Desktop\Major Presentation.pptx
    2015-03-03 15:54 - 2015-03-03 17:57 - 00000000 ____D () C:\Users\Angela Marie\Desktop\CN Ed Powerpoint Project

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2015-03-24 15:54 - 2009-06-30 21:15 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-03-24 15:53 - 2006-11-02 09:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2015-03-24 15:53 - 2006-11-02 08:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    2015-03-24 15:53 - 2006-11-02 08:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    2015-03-24 00:19 - 2009-06-30 21:15 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-03-23 20:16 - 2006-11-02 09:01 - 00032566 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
    2015-03-23 10:50 - 2008-06-19 04:07 - 01234450 _____ () C:\Windows\WindowsUpdate.log
    2015-03-23 10:05 - 2009-03-02 23:31 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job
    2015-03-23 07:35 - 2010-02-15 23:26 - 00007620 _____ () C:\Users\Angela Marie\AppData\Local\d3d9caps.dat
    2015-03-23 05:45 - 2006-11-02 06:33 - 00703388 _____ () C:\Windows\system32\PerfStringBackup.INI
    2015-03-23 04:14 - 2010-11-23 04:32 - 00002573 _____ () C:\Users\Angela Marie\Desktop\Microsoft Word 2010.lnk
    2015-03-22 05:01 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\rescache
    2015-03-22 04:34 - 2010-07-31 18:28 - 00000000 ____D () C:\Windows\Minidump
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\zh-TW
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\zh-HK
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\zh-CN
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\uk-UA
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\tr-TR
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\th-TH
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\sv-SE
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\sl-SI
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\sk-SK
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\ru-RU
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\ro-RO
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\pt-PT
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\pt-BR
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\pl-PL
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\nl-NL
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\nb-NO
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\lv-LV
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\lt-LT
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\ko-KR
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\ja-JP
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\it-IT
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\hu-HU
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\hr-HR
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\he-IL
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\fr-FR
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\fi-FI
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\et-EE
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\el-GR
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\de-DE
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\bg-BG
    2015-03-22 03:02 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\ar-SA
    2015-03-21 20:40 - 2008-10-09 23:22 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Skype
    2015-03-21 20:39 - 2013-12-24 23:09 - 00000000 ____D () C:\Program Files\Steam
    2015-03-21 20:39 - 2008-05-16 00:15 - 00000000 ____D () C:\Windows\Panther
    2015-03-21 19:45 - 2008-08-04 17:25 - 00000000 ____D () C:\Users\Angela Marie
    2015-03-21 11:16 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\Microsoft.NET
    2015-03-21 09:09 - 2008-05-16 00:24 - 00000000 ____D () C:\Program Files\Java
    2015-03-21 06:39 - 2006-11-02 06:22 - 51904512 _____ () C:\Windows\system32\config\software_previous
    2015-03-21 06:39 - 2006-11-02 06:22 - 20447232 _____ () C:\Windows\system32\config\system_previous
    2015-03-21 06:38 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\spool
    2015-03-21 06:38 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\Msdtc
    2015-03-21 06:38 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\registration
    2015-03-21 06:32 - 2006-11-02 06:22 - 41418752 _____ () C:\Windows\system32\config\components_previous
    2015-03-21 06:32 - 2006-11-02 06:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous
    2015-03-21 04:34 - 2011-07-02 04:42 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\Apple Computer
    2015-03-21 02:54 - 2008-08-04 17:26 - 00000920 _____ () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
    2015-03-21 02:51 - 2006-11-02 08:47 - 00450496 _____ () C:\Windows\system32\FNTCACHE.DAT
    2015-03-21 02:46 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Windows Journal
    2015-03-21 02:45 - 2006-11-02 07:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
    2015-03-21 02:28 - 2006-11-02 06:22 - 00524288 _____ () C:\Windows\system32\config\default_previous
    2015-03-21 02:21 - 2006-11-02 06:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
    2015-03-21 01:52 - 2008-08-04 17:26 - 00129976 _____ () C:\Users\Angela Marie\AppData\Local\GDIPFONTCACHEV1.DAT
    2015-03-20 23:03 - 2010-04-05 17:50 - 00000000 __SHD () C:\Users\Angela Marie\.COMMgr
    2015-03-20 22:34 - 2006-11-02 07:18 - 00000000 ___RD () C:\Users\Public
    2015-03-20 15:33 - 2006-11-02 02:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
    2015-03-20 15:33 - 2006-11-02 02:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
    2015-03-19 12:30 - 2008-08-05 01:59 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\TOSHIBA
    2015-03-19 12:26 - 2008-05-15 23:48 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
    2015-03-19 12:22 - 2008-06-19 04:36 - 00000000 ____D () C:\Program Files\Atheros
    2015-03-19 12:21 - 2008-06-19 04:36 - 00000000 ____D () C:\Windows\system32\nn-NO
    2015-03-19 12:20 - 2008-12-20 09:21 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\InstallShield
    2015-03-19 12:20 - 2008-06-19 04:35 - 00000000 ____D () C:\ProgramData\Atheros
    2015-03-19 01:05 - 2008-10-22 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
    2015-03-19 01:05 - 2006-11-02 07:18 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
    2015-03-19 01:03 - 2010-09-21 08:36 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
    2015-03-19 01:03 - 2010-09-21 08:34 - 00000000 ____D () C:\Program Files\Windows Live SkyDrive
    2015-03-19 00:06 - 2008-10-22 18:48 - 00000000 ____D () C:\Program Files\Windows Live
    2015-03-18 23:16 - 2008-09-10 17:45 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\Adobe
    2015-03-18 23:16 - 2008-05-16 00:13 - 00000000 ____D () C:\ProgramData\Adobe
    2015-03-18 22:35 - 2006-11-02 08:37 - 00000000 ____D () C:\Windows\system32\XPSViewer
    2015-03-18 22:35 - 2006-11-02 07:18 - 00000000 ____D () C:\Program Files\Common Files\System
    2015-03-16 20:12 - 2008-08-04 17:26 - 00000926 _____ () C:\Users\Angela Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
    2015-03-16 20:02 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Windows Sidebar
    2015-03-16 20:02 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Windows Photo Gallery
    2015-03-16 20:02 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Windows Defender
    2015-03-16 20:02 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Windows Collaboration
    2015-03-16 20:02 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Windows Calendar
    2015-03-16 20:02 - 2006-11-02 08:37 - 00000000 ____D () C:\Program Files\Movie Maker
    2015-03-16 20:01 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\SLUI
    2015-03-16 20:01 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
    2015-03-16 20:01 - 2006-11-02 07:18 - 00000000 ____D () C:\Windows\IME
    2015-03-16 14:26 - 2008-06-19 04:16 - 00000000 ____D () C:\ProgramData\Microsoft Help
    2015-03-16 14:25 - 2006-11-02 06:23 - 00000219 _____ () C:\Windows\win.ini
    2015-03-16 14:23 - 2013-12-22 18:34 - 00000000 ____D () C:\Windows\system32\MRT
    2015-03-16 14:11 - 2006-11-02 06:24 - 119837696 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
    2015-03-15 20:28 - 2014-02-08 03:17 - 00000000 ____D () C:\ProgramData\Oracle
    2015-03-04 20:44 - 2008-08-04 17:27 - 00000000 ____D () C:\Users\Angela Marie\AppData\Local\Google
    2015-02-24 04:23 - 2009-10-04 08:02 - 00246920 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

    ==================== Files in the root of some directories =======

    2015-03-21 09:43 - 2015-03-23 20:26 - 0000115 _____ () C:\Users\Angela Marie\AppData\Roaming\LogFile.txt
    2009-09-06 22:22 - 2010-11-16 04:18 - 0024206 _____ () C:\Users\Angela Marie\AppData\Roaming\UserTile.png
    2009-11-30 14:44 - 2009-11-30 14:44 - 0000000 _____ () C:\Users\Angela Marie\AppData\Roaming\wklnhst.dat
    2009-11-16 01:08 - 2009-11-16 01:08 - 0000552 _____ () C:\Users\Angela Marie\AppData\Local\d3d8caps.dat
    2010-02-15 23:26 - 2015-03-23 07:35 - 0007620 _____ () C:\Users\Angela Marie\AppData\Local\d3d9caps.dat
    2008-09-10 09:00 - 2013-10-30 22:38 - 0023552 _____ () C:\Users\Angela Marie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2008-10-09 23:22 - 2008-10-09 23:22 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
    2008-08-08 02:38 - 2008-08-08 02:38 - 0005115 _____ () C:\ProgramData\N360BUOptions.ini

    Files to move or delete:
    ====================
    C:\Users\Angela Marie\jagex_cl_oldschool_LIVE.dat
    C:\Users\Angela Marie\JAVA2.exe
    C:\Users\Angela Marie\random.dat
    C:\Users\Angela Marie\SkypeSetup.exe
    C:\Users\Angela Marie\WLinstaller.exe


    Some content of TEMP:
    ====================
    C:\Users\Angela Marie\AppData\Local\Temp\DseShExt-x86.dll
    C:\Users\Angela Marie\AppData\Local\Temp\SDShelEx-win32.dll


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-03-24 16:02

    ==================== End Of Log ============================
     
  9. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    bkw5138,
    ------------------------------------------------
    Remove Programs Using Control Panel
    From Start, Control Panel, click on Programs and Features
    Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:

    Adobe Reader 8.3.1
    IObit Uninstaller
    RegCure Pro
    Smilebox
    Viewpoint Media Player

    Take extra care in answering questions posed by any Uninstaller.
    -----------------------------------------------------------
    REBOOT (RESTART) Your Machine
    --------------------------------------------------------
    Run A Fix With FRST
    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both the program FRST.exe and Fixlist.txt be in the same location, or the fix will not work.
    (Both on the Desktop is OK, or both in the same folder elsewhere)

    Run FRST and press the Fix button just once and wait. DO NOT PRESS THE SCAN BUTTON.
    If for some reason the tool needs a restart, please make sure you let the system restart normally.
    The tool may start automatically and complete its work after the system restart. Let the tool complete its run.
    When finished, FRST will generate a log on the Desktop (Fixlog.txt). Please post the contents in your reply.
    --------------------------------------------------------
    Download and Install the newest version of Adobe Reader for reading pdf files
    There are security vulnerabilities in earlier versions of both Reader and Acrobat Pro. All versions numbered lower than 11.0.10 are vulnerable.
    Go HERE to download the Installer AdbeRdr11010_en_US.exe .
    Save the file to your desktop and run it to install the latest version of Adobe Reader.
    Always be careful to UNCHECK any offer for toolbars, helpers or other "partner" Free programs
    After the new Reader is installed, Open Adobe Reader XI, as it is called, and OK the license.
    Click on Edit and select Preferences.
    On the Left, click on the Javascript category and Uncheck Enable Acrobat Javascript.
    Click on the Security (Enhanced) category
    Uncheck Automatically trust sites from my Win OS security zones, and under Protected View, click on Files from potentially unsafe locations.
    Click on the Trust Manager category and Uncheck Allow opening of non-PDF file attachments with external applications.
    Click the OK button
    When it asks if you are sure you want to make changes to Advanced Security Preferences, answer Yes.
    When it finishes, you can remove the Installer from your desktop.

    If you need a new media player, I will help.
    askey127
     
  10. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    Hi i didnt run the frst fix yet because i am confused? last time you provided me with a downloaded fixlist i could use in the FRST program but this time i dont see one? was just wondering maybe you forgot to attach it to your post or if i am sumhow supposed to find the new fixlist log i can use and if so where do i do that and how
     
  11. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    My fault.
    It didn't get attached properly. I should have checked.
    Here it is.
     

    Attached Files:

  12. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    No problem at all I appreciate the help, But now im running into more problems. Its not letting me run the fix and cant find the fixlist.txt file but im pretty sure all the files are in the right place. Could you please help me and thank you. Also i probably wont respond to around 6:30ish as i have school.
     
  13. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    If you download FixList.txt and Choose Save, then save it to your desktop, you should be able to see it on there.
    Once you can see the Fixlist.txt file on your desktop, run the Fix.
     
  14. bkw5138

    bkw5138 Thread Starter

    Joined:
    Mar 23, 2015
    Messages:
    12
    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-03-2015
    Ran by Angela Marie at 2015-03-25 14:18:35 Run:2
    Running from C:\Users\Angela Marie\Desktop
    Loaded Profiles: Angela Marie (Available profiles: Angela Marie)
    Boot Mode: Normal

    ==============================================

    Content of fixlist:
    *****************
    Task: {52596B5F-BF31-4E4A-8A32-49040C3366F3} - \Uninstaller_SkipUac_Angela_Marie No Task File <==== ATTENTION
    HKLM\...\Run: [] => [X]
    SearchScopes: HKLM -> {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
    SearchScopes: HKU\S-1-5-21-870383816-1840095418-3521214770-1000 -> {0B4A10D1-FBD6-451d-BFDA-F03252B05984} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&query={searchTerms}&invocationType=tb50trie7
    BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30] (Adobe Systems Incorporated)
    BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2015-03-21] (IObit)
    BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll [2015-03-04] (Google Inc.)
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2010-01-26] ()
    FF Plugin: @viewpoint.com/VMP -> C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll [2007-04-16] ()
    R2 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [File not signed]
    R2 Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [24652 2007-01-04] (Viewpoint Corporation) [File not signed]
    S3 cpuz137; \??\C:\Users\ANGELA~1\AppData\Local\Temp\cpuz137\cpuz137_x32.sys [X]
    2015-03-21 09:56 - 2015-03-23 18:01 - 00000458 _____ () C:\Windows\Tasks\ParetoLogic Registration3.job
    2015-03-21 09:43 - 2015-03-21 09:43 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\ProgramData\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\Program Files\ParetoLogic
    2015-03-21 09:42 - 2015-03-21 09:42 - 00000000 ____D () C:\Program Files\Common Files\ParetoLogic
    2015-03-21 09:41 - 2015-03-21 09:42 - 06870552 _____ (ParetoLogic, Inc.) C:\Users\Angela Marie\Downloads\RegCureProSetup.exe
    2015-03-21 09:22 - 2015-03-21 09:22 - 52441088 _____ () C:\Windows\system32\config\software.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 40574976 _____ () C:\Windows\system32\config\components.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 00286720 _____ () C:\Windows\system32\config\default.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 00057344 _____ () C:\Windows\system32\config\sam.iobit
    2015-03-21 09:22 - 2015-03-21 09:22 - 00024576 _____ () C:\Windows\system32\config\security.iobit
    2015-03-21 04:34 - 2015-03-21 04:34 - 00000992 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
    2015-03-21 04:34 - 2015-03-21 04:34 - 00000000 ____D () C:\Program Files\Common Files\IObit
    2015-03-21 04:30 - 2015-03-23 20:14 - 00000000 ____D () C:\Program Files\IObit
    2015-03-21 04:30 - 2015-03-21 17:05 - 00000000 ____D () C:\ProgramData\IObit
    2015-03-21 04:30 - 2015-03-21 04:35 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\IObit
    2015-03-21 04:29 - 2015-03-21 04:29 - 11845992 _____ (IObit ) C:\Users\Angela Marie\Downloads\driver_booster_setup.exe
    2015-03-20 22:16 - 2015-03-21 20:15 - 00000000 ____D () C:\ProgramData\AVG Security Toolbar
    2015-03-20 22:15 - 2015-03-20 22:15 - 00000000 ____D () C:\ProgramData\AVG Secure Search
    2015-03-18 23:16 - 2015-03-18 23:17 - 00002425 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 8.lnk
    2015-03-18 23:16 - 2015-03-18 23:17 - 00001858 _____ () C:\Users\Public\Desktop\Adobe Reader 8.lnk
    2015-03-23 10:05 - 2009-03-02 23:31 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job
    2015-03-19 12:20 - 2008-12-20 09:21 - 00000000 ____D () C:\Users\Angela Marie\AppData\Roaming\InstallShield

    *****************

    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52596B5F-BF31-4E4A-8A32-49040C3366F3}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52596B5F-BF31-4E4A-8A32-49040C3366F3}" => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Angela_Marie => Key not found.
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0B4A10D1-FBD6-451d-BFDA-F03252B05984}" => Key deleted successfully.
    HKCR\CLSID\{0B4A10D1-FBD6-451d-BFDA-F03252B05984} => Key not found.
    "HKU\S-1-5-21-870383816-1840095418-3521214770-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0B4A10D1-FBD6-451d-BFDA-F03252B05984}" => Key deleted successfully.
    HKCR\CLSID\{0B4A10D1-FBD6-451d-BFDA-F03252B05984} => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} => Key not found.
    HKCR\CLSID\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} => Key not found.
    "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully.
    "HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}" => Key deleted successfully.
    "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}" => Key deleted successfully.
    "HKCR\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}" => Key deleted successfully.
    HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer => Key not found.
    C:\Windows\system32\Macromed\Flash\NPSWF32.dll not found.
    HKLM\Software\MozillaPlugins\@viewpoint.com/VMP => Key not found.
    C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll not found.
    o2flash => Service stopped successfully.
    o2flash => Service deleted successfully.
    Viewpoint Manager Service => Service not found.
    cpuz137 => Service deleted successfully.
    "C:\Windows\Tasks\ParetoLogic Registration3.job" => File/Directory not found.
    C:\Users\Angela Marie\AppData\Roaming\ParetoLogic => Moved successfully.
    C:\ProgramData\ParetoLogic => Moved successfully.
    "C:\Program Files\ParetoLogic" => File/Directory not found.
    "C:\Program Files\Common Files\ParetoLogic" => File/Directory not found.
    C:\Users\Angela Marie\Downloads\RegCureProSetup.exe => Moved successfully.
    C:\Windows\system32\config\software.iobit => Moved successfully.
    C:\Windows\system32\config\components.iobit => Moved successfully.
    C:\Windows\system32\config\default.iobit => Moved successfully.
    C:\Windows\system32\config\sam.iobit => Moved successfully.
    C:\Windows\system32\config\security.iobit => Moved successfully.
    "C:\Users\Public\Desktop\IObit Uninstaller.lnk" => File/Directory not found.
    C:\Program Files\Common Files\IObit => Moved successfully.
    C:\Program Files\IObit => Moved successfully.
    C:\ProgramData\IObit => Moved successfully.
    C:\Users\Angela Marie\AppData\Roaming\IObit => Moved successfully.
    C:\Users\Angela Marie\Downloads\driver_booster_setup.exe => Moved successfully.
    C:\ProgramData\AVG Security Toolbar => Moved successfully.
    C:\ProgramData\AVG Secure Search => Moved successfully.
    "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 8.lnk" => File/Directory not found.
    "C:\Users\Public\Desktop\Adobe Reader 8.lnk" => File/Directory not found.
    C:\Windows\Tasks\Google Software Updater.job => Moved successfully.
    C:\Users\Angela Marie\AppData\Roaming\InstallShield => Moved successfully.

    ==== End of Fixlog 14:18:39 ====
     
  15. askey127

    askey127 Malware Specialist

    Joined:
    Dec 22, 2006
    Messages:
    3,721
    Good results.
    Go ahead with the Adobe Reader installation per above, and then tell me how the machine is behaving.
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1145338

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice