Solved Where to post the FRST logs?

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
I did perform a scan but I don't know where to post the logs. Here?
 
Last edited:

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-11-2014
Ran by Jill at 2014-11-21 14:56:02
Running from C:\Users\Jill\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe Acrobat 5.0 (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.1.53.64 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.2.152.26 - Adobe Systems Incorporated)
Adobe Reader X (10.0.1) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA0000000001}) (Version: 10.0.1 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 11 - Adobe Systems, Inc.)
Amazon Kindle For PC v1.1 (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Amazon Kindle For PC) (Version: - )
Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{308B6AEA-DE50-4666-996D-0FA461719D6B}) (Version: 3.3.0.69 - Apple Inc.)
Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
Ask Toolbar (HKLM\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.15.15.0 - Ask.com) <==== ATTENTION
Ask Toolbar Updater (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.4.35882 - Ask.com) <==== ATTENTION
Bonjour (HKLM\...\{2A981294-F14C-4F0F-9627-D793270922F8}) (Version: 2.0.4.0 - Apple Inc.)
Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell)
BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Business Contact Manager for Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant D850 PCI V.92 Modem (HKLM\...\CNXT_MODEM_PCI_HSF) (Version: 7.74.00 - Conexant)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated)
Cozi (HKLM\...\{9E96AC7C-F1FB-4A82-933D-ED2A367C207A}) (Version: 1.0.3805.19354 - Cozi Group, Inc.)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
D1500 (Version: 100.0.206.000 - Hewlett-Packard) Hidden
D1500_Help (Version: 100.0.206.000 - Hewlett-Packard) Hidden
Dell Best of Web (HKLM\...\{C39A4E1F-9AF1-4FE1-A80E-A5B867FABB42}) (Version: 1.00.0000 - Dell)
Dell DataSafe Local Backup - Support Software (HKLM\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: - Dell)
Dell DataSafe Local Backup (HKLM\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.48 - Dell)
Dell Dock (HKLM\...\{F6CB42B9-F033-4152-8813-FF11DA8E6A78}) (Version: 1.0.0 - Dell)
Dell Getting Started Guide (HKLM\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell-eBay (HKLM\...\{B935C985-A17F-484B-8470-09E4FC27DC26}) (Version: 1.00.0000 - Dell)
DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.21 - BVRP Software, Inc)
DivX Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.3.0.20 - DivX, LLC)
DJ_SF_03_D1500_ProductContext (Version: 100.0.215.000 - Hewlett-Packard) Hidden
DJ_SF_03_D1500_Software (Version: 100.0.206.000 - Hewlett-Packard) Hidden
DJ_SF_03_D1500_Software_Min (Version: 100.0.206.000 - Hewlett-Packard) Hidden
EA Download Manager (HKLM\...\EADM) (Version: 7.2.0.32 - Electronic Arts, Inc.)
EDocs (HKLM\...\{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}) (Version: - )
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Extended Update (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\UpdaterEX) (Version: - Extended Update) <==== ATTENTION
Facebook Plug-In (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Facebook Plug-In) (Version: - Facebook, Inc.)
FrostWire 4.21.3 (HKLM\...\FrostWire) (Version: 4.21.3.0 - FrostWire Team)
Game Console - WildGames (HKLM\...\Game Console - WildGames) (Version: - WildTangent)
Google Chrome (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Google Chrome) (Version: 38.0.2125.122 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Earth (HKLM\...\{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}) (Version: 6.0.3.2197 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Updater (HKLM\...\Google Updater) (Version: 2.4.1536.6592 - Google Inc.)
GoToAssist 8.0.0.514 (HKLM\...\GoToAssist) (Version: - )
GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP Deskjet D1500 Printer Driver Software 10.0 Rel .3 (HKLM\...\{0CE5F45E-F6CC-4638-B0DD-BB7F6EF56713}) (Version: 10.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Photosmart Essential 2.5 (HKLM\...\HP Photosmart Essential) (Version: 2.5 - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{787D1A33-A97B-4245-87C0-7174609A540C}) (Version: 5.002.005.003 - Hewlett-Packard)
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 100.0.170.000 - Hewlett-Packard) Hidden
iTunes (HKLM\...\{FAE36873-1941-4076-A9A5-48812B5EA0B7}) (Version: 10.1.0.56 - Apple Inc.)
MarketResearch (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - )
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Accounting 2008 (HKLM\...\Microsoft Office Accounting 2008) (Version: 3.0.8627.1 - Microsoft Corporation)
Microsoft Office Accounting 2008 Equifax Addin (HKLM\...\{0C2AF762-0565-4C91-9F55-B8B53BB82A38}) (Version: 3.0.8231.0 - Microsoft Corporation)
Microsoft Office Accounting 2008 Fixed Asset Manager (HKLM\...\{E3DF6916-2472-43D9-8B3C-9F2F0AAB01B5}) (Version: 3.0.8231.0 - Microsoft Corporation)
Microsoft Office Accounting 2008 PayPal Addin (HKLM\...\{B391EECE-DFEA-4FC5-9D40-47FA43E2DBE6}) (Version: 3.0.8231.0 - Microsoft Corporation)
Microsoft Office Accounting ADP Payroll Addin (HKLM\...\{5FA793A6-0071-42C1-9355-8F69A428C44F}) (Version: 0.0.0.0 - ADP)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Modem Diagnostic Tool (HKLM\...\{294EAADF-E50F-4DD8-AD8D-19587EA10512}) (Version: 1.0.24.0 - Dell)
Move Media Player (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Move Media Player) (Version: - Move Networks)
Mozilla Firefox 5.0 (x86 en-US) (HKLM\...\Mozilla Firefox 5.0 (x86 en-US)) (Version: 5.0 - Mozilla)
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSVCSetup (Version: 1.00.0000 - HP) Hidden
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Nancy Drew: Last Train to Blue Moon Canyon (HKLM\...\{EB7A3B64-1373-48AC-902E-F6643F074E3C}) (Version: - )
Nancy Drew: Message in a Haunted Mansion (HKLM\...\{78B55A60-5E51-11D4-A766-00C00C02EDEF}) (Version: - )
Nancy Drew: Secret of the Old Clock (HKLM\...\{70D1416D-C0FF-461C-8AF3-71B98C7F5CA4}) (Version: - )
Nancy Drew: The Creature of Kapu Cave (HKLM\...\{F4EC2FB1-4255-4040-8DE6-5D75FA9D039F}) (Version: - )
Nancy Drew: The Haunted Carousel (HKLM\...\{750B354A-BF46-45E0-86D6-620026703B92}) (Version: - )
Nancy Drew: Treasure in the Royal Tower (HKLM\...\{92D34E42-4C6F-11D5-A76D-006008D256FF}) (Version: - )
NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.53 - BVRP Software, Inc)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIANetworkDiagnostic (HKLM\...\InstallShield_{EFAD4066-CAF3-4B27-9669-12EED352C376}) (Version: 1.00.0000 - NVIDIA Corporation)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
Penguins! (HKLM\...\WT016060) (Version: WT016060 - WildTangent)
Pixillion Image Converter (HKLM\...\Pixillion) (Version: - NCH Software)
Prism Video Converter (HKLM\...\Prism) (Version: - NCH Software)
PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden
QPST (HKLM\...\{31228E31-2BFF-11D2-8866-00805F0D9D40}) (Version: - )
QuickTime (HKLM\...\{E7004147-2CCA-431C-AA05-2AB166B9785D}) (Version: 7.68.75.0 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - )
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP)
SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Switch Sound File Converter (HKLM\...\Switch) (Version: - NCH Software)
System Requirements Lab CYRI (HKLM\...\{6FCBE08B-EB47-448E-8566-CE38E8B8D065}) (Version: 4.4.16.0 - Husdawg, LLC)
TaxCut Premium + State + Efile 2008 (HKLM\...\{BBB33AD6-BCF7-4002-B6A0-6DC679AE5C18}) (Version: 08.07.6201 - H & R Block)
The Sims™ 3 (HKLM\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.26.89 - Electronic Arts)
Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 10.0.0 - Hewlett-Packard) Hidden
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden
VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden
VoiceOver Kit (HKLM\...\{FB26A501-6BA6-459B-89AA-9736730752FB}) (Version: 1.30.128.0 - Apple Inc.)
WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Yahoo! BrowserPlus 2.9.8 (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Yahoo! BrowserPlus) (Version: - Yahoo! Inc.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{0E55CBE1-B06A-49B6-AD8D-9EFAA0160C6F}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.21.57\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{29A96789-9595-4947-BEDB-0FCC776F7DB8}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.2.183.39\goopdate.dll No File
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Chrome\Application\38.0.2125.122\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{6CE4B8A6-4DB5-4F63-8013-1197503692EF}\InprocServer32 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\YBPAddon_2.9.8.dll (Yahoo! Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C98FE784-B96E-41e1-8399-1337AE3E539F}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{DB25D157-76D4-41C1-97B5-359E4A4CECEB}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.21.65\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{e3e02f12-2adb-478c-8742-5f0819f9f0f4}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{e473a65c-8087-49a3-affd-c5bc4a10669b}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{fc345d4c-b8f4-4674-bff7-3c37d2e535ee}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{fd6484ed-ebe3-4c3d-938a-8238003b41b7}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)

==================== Restore Points =========================

21-11-2014 00:01:21 Scheduled Checkpoint
21-11-2014 16:10:20 Removed Dell Best of Web.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 05:23 - 2006-09-18 16:41 - 00000736 ____A C:\Windows\system32\Drivers\etc\hosts
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {06848250-189F-4C9F-A624-270464B7B8E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {34E9C9FA-C4E3-455A-B44C-EB51672CEA8D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {479A0406-4677-4F97-840E-62777EBA1988} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)
Task: {571E95F8-91ED-43FE-9D0C-85A9FCEE875B} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe [2013-01-24] () <==== ATTENTION
Task: {687B8D15-EF7F-4E76-84E4-7A69A0323287} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)
Task: {A216E71D-FD57-4FA1-B1C6-2A17E643BEA3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)
Task: {A5124499-2101-4C99-82F2-87E23B7E4552} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {AD307C9D-E2DA-46A3-887E-DB60751E3E2D} - System32\Tasks\UpdaterEX => C:\Users\Jill\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {C735859A-2651-4041-B044-477D3BF4FE80} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)
Task: {D061CDBB-97A8-40AA-B5CE-013E468F82CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)
Task: {D4AD428B-D17B-427C-9A6C-F0DE158D4E91} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-10] (PC-Doctor, Inc.)
Task: {EB0D106F-C6F1-40E4-A367-F26613873A2C} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24] (Google)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\Jill\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-11-18 19:22 - 2010-07-20 22:33 - 00058688 ____N () C:\Program Files\Dell DataSafe Local Backup\STCoreXml.dll
2014-11-18 19:21 - 2010-07-20 22:33 - 00116032 ____N () C:\Program Files\Dell DataSafe Local Backup\PSTVdsDisk.dll
2014-11-18 19:22 - 2010-07-20 22:33 - 00128320 ____N () C:\Program Files\Dell DataSafe Local Backup\STLog.dll
2014-11-18 19:22 - 2010-07-20 22:36 - 00783680 ____N () C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
2014-11-18 19:21 - 2010-07-20 22:33 - 01123648 ____N () C:\Program Files\Dell DataSafe Local Backup\LibXml2.dll
2014-11-18 19:22 - 2010-07-20 22:34 - 00079168 ____N () C:\Program Files\Dell DataSafe Local Backup\zlib1.dll
2014-11-18 19:22 - 2010-07-20 22:33 - 00234816 ____N () C:\Program Files\Dell DataSafe Local Backup\STFiles.dll
2014-11-18 19:22 - 2010-07-20 22:34 - 00075072 ____N () C:\Program Files\Dell DataSafe Local Backup\STRegistry.dll
2014-11-18 19:22 - 2010-07-20 22:33 - 00111936 ____N () C:\Program Files\Dell DataSafe Local Backup\STPE.dll
2014-11-18 19:22 - 2010-07-20 22:33 - 00121152 ____N () C:\Program Files\Dell DataSafe Local Backup\STNLS.dll
2014-11-18 19:22 - 2010-07-21 10:35 - 00161088 ____N () C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
2014-11-18 19:22 - 2010-07-23 17:36 - 00025920 ____N () C:\Program Files\Dell DataSafe Local Backup\SftBRCCPiped.dll
2014-11-18 19:22 - 2010-07-20 22:33 - 00025920 ____N () C:\Program Files\Dell DataSafe Local Backup\STBRCCServCLR.dll
2008-11-24 07:32 - 2010-08-31 09:28 - 00034816 _____ () C:\Program Files\Google\Google Desktop Search\gzlib.dll
2009-09-04 22:15 - 2009-09-04 22:15 - 00067872 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-01-10 18:25 - 2011-01-10 18:25 - 01230704 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe
2011-01-10 18:25 - 2011-01-10 18:25 - 00096112 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2014-11-18 08:20 - 2014-11-18 08:20 - 00284160 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\df2a920b8e863d14ab8503f96c7b3ecd\VistaBridgeLibrary.ni.dll
2011-05-11 07:46 - 2011-07-19 07:15 - 01850328 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2009-07-17 22:21 - 2011-02-27 00:13 - 06053536 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32.dll
2010-05-28 13:21 - 2011-02-09 21:51 - 01709936 _____ () C:\ProgramData\DivX\Setup\Resource.dll
2011-02-09 21:58 - 2011-02-09 21:51 - 00198512 _____ () C:\ProgramData\DivX\Setup\finishPlugin.dll
2014-11-21 11:12 - 2014-11-21 11:12 - 00010752 _____ () C:\Users\Jill\AppData\Local\Temp\nswC758.tmp\System.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:C980DA7D
AlternateDataStreams: C:\Users\Jill\Downloads\TaxReturn(2).pdf:FS_dl_url
AlternateDataStreams: C:\Users\Jill\Downloads\Vuze_Installer.exe:FS_dl_url

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McciCMService => "@"="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McciCMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-630457132-1081628805-2421692627-500 - Administrator - Disabled)
ASPNET (S-1-5-21-630457132-1081628805-2421692627-1005 - Limited - Enabled)
Guest (S-1-5-21-630457132-1081628805-2421692627-501 - Limited - Disabled)
Jill (S-1-5-21-630457132-1081628805-2421692627-1000 - Administrator - Enabled) => C:\Users\Jill

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/21/2014 08:54:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/20/2014 07:07:05 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (11/20/2014 07:07:04 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (11/20/2014 05:02:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/19/2014 08:52:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/19/2014 02:38:49 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (11/19/2014 02:38:47 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (11/19/2014 09:50:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (11/21/2014 08:55:04 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Null

Error: (11/21/2014 08:55:03 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (11/21/2014 08:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: McAfee SiteAdvisor Service%%3

Error: (11/21/2014 08:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058

Error: (11/20/2014 07:01:19 PM) (Source: volsnap) (EventID: 20) (User: )
Description: The shadow copies of volume C: were aborted because of a failed free space computation.

Error: (11/20/2014 05:02:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Null

Error: (11/20/2014 05:02:38 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (11/20/2014 05:02:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: McAfee SiteAdvisor Service%%3

Error: (11/20/2014 05:02:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058

Error: (11/19/2014 08:52:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Null


Microsoft Office Sessions:
=========================
Error: (11/21/2014 08:54:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/20/2014 07:07:05 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (11/20/2014 07:07:04 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (11/20/2014 05:02:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/19/2014 08:52:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/19/2014 02:38:49 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (11/19/2014 02:38:47 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (11/19/2014 09:50:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9

Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9


CodeIntegrity Errors:
===================================
Date: 2011-07-18 17:42:48.923
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:42:47.587
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:42:47.186
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:42:46.778
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:41:49.618
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:41:49.287
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:41:48.969
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-18 17:41:48.650
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-11 20:42:55.332
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.

Date: 2011-07-11 20:42:55.030
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: AMD Sempron(tm) Processor LE-1250
Percentage of memory in use: 63%
Total physical RAM: 1981.76 MB
Available physical RAM: 723.97 MB
Total Pagefile: 4208.04 MB
Available Pagefile: 2610.05 MB
Total Virtual: 2047.88 MB
Available Virtual: 1901.17 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:138.96 GB) (Free:51.05 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:4.91 GB) NTFS
Drive e: (Sims3EP05) (CDROM) (Total:5.3 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: 48000000)
Partition 1: (Not Active) - (Size=55 MB) - (Type=DE)
Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=139 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-11-2014
Ran by Jill (administrator) on SALIGA on 21-11-2014 17:04:32
Running from C:\Users\Jill\Downloads
Loaded Profile: Jill (Available profiles: Jill)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
(SoftThinks SAS) C:\Program Files\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
() C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
() C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Toaster.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(DivX, LLC) C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
(Ask) C:\Program Files\Ask.com\Updater\Updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Google Inc.) C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Jill\Downloads\FRST(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4907008 2008-01-17] (Realtek Semiconductor)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)
HKLM\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
HKLM\...\Run: [hpqSRMon] => [X]
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2010-09-08] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421160 2010-11-17] (Apple Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems Incorporated)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1230704 2011-01-10] ()
HKLM\...\Run: [DivX Download Manager] => C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [63360 2010-12-08] (DivX, LLC)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [ApnUpdater] => C:\Program Files\Ask.com\Updater\Updater.exe [1646216 2013-01-24] (Ask)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
HKLM\...\RunOnce: [Launcher] => C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe [165184 2010-07-20] (Softthinks)
HKLM\...\RunOnce: [DSUpdateLauncher] => C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe [18240 2010-07-21] (Dell)
HKLM\...\RunOnce: [STToasterLauncher] => C:\Program Files\Dell DataSafe Local Backup\toasterLauncher.exe [122176 2010-07-20] ()
Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [Google Update] => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-03-10] (Google Inc.)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [86960 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\MountPoints2: {1167672f-b9f7-11dd-b941-806e6f6e6963} - E:\Autorun.exe
AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-08-31] (Google)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZooskMessenger.lnk
ShortcutTarget: ZooskMessenger.lnk -> C:\Program Files\ZooskMessenger\ZooskMessenger.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = http://127.0.0.1:4664/search&s=XUQOWrT62JGgtv_I_58CM-7UXPI?q={searchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
BHO: DivX HiQ -> {593DDEC6-7468-4cdd-90E1-42DADAA222E9} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
BHO: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> No Name - {D3B22A92-87A2-47B6-B3E6-A64877B5C242} - No File
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default
FF DefaultSearchEngine: Web Search (eToolKit)
FF DefaultSearchUrl: hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF SelectedSearchEngine: Web Search (eToolKit)
FF SelectedSearchEngineInDialog: Web Search (eToolKit)
FF Homepage: hxxp://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:eek:fficial
FF Keyword.URL: hxxp://search.etoolkit.com/search?t=ff&&id=0267a875bcf5850734c65eeb52fd9027fd4&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX OVS Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=13 -> C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @facebook.com/FBPlugin,version=1.0.3 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @movenetworks.com/Quantum Media Player -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @yahoo.com/BrowserPlus,version=2.9.8 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.)
FF user.js: detected! => C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\bing-zugo.xml
FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\oneriot-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\googledesktop.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\toolkitsearch.xml
FF Extension: AnyColor - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\anycolor.pavlos256@gmail.com [2010-08-27]
FF Extension: Cooliris - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\piclens@cooliris.com [2011-06-22]
FF Extension: Search Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\searchtoolbar@zugo.com [2011-01-13]
FF Extension: Ask Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\toolbar@ask.com [2010-06-02]
FF Extension: ColorfulTabs - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2014-11-17]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-22]
FF Extension: Yahoo! Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-11-17]
FF Extension: WOT - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-11-17]
FF Extension: FoxTab - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi [2011-05-11]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-05-15]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2010-12-25]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-12]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-05-21]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-02-09]
FF HKLM\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa
FF Extension: DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-02-09]
FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [moveplayer@movenetworks.com] - C:\Users\Jill\AppData\Roaming\Move Networks
FF Extension: Move Media Player - C:\Users\Jill\AppData\Roaming\Move Networks [2009-05-17]
FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR Profile: C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-17]
CHR Extension: (DivX HiQ) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae [2014-11-17]
CHR Extension: (Google Wallet) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-17]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2014-11-17]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [2010-12-08]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2010-12-08]
CHR StartMenuInternet: Google Chrome - C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2008-09-23] (Stardock Corporation) [File not signed]
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)
S2 gupdate1c9a1f07777696d; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [319488 2009-12-16] (Alcatel-Lucent) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
R2 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [689472 2010-08-20] (SoftThinks SAS)
S2 McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amacpi; C:\Windows\System32\DRIVERS\null.sys [4608 2008-01-20] (Microsoft Corporation)
S3 BVRPMPR5; C:\Windows\system32\drivers\BVRPMPR5.SYS [49904 2009-09-30] (Avanquest Software) [File not signed]
S3 motport; C:\Windows\System32\DRIVERS\motport.sys [23680 2007-06-18] (Motorola)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [722416 2009-08-09] () [File not signed]
S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-20] (Microsoft Corporation)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-21 17:04 - 2014-11-21 17:04 - 01108992 _____ (Farbar) C:\Users\Jill\Downloads\FRST(1).exe
2014-11-21 17:03 - 2014-11-21 17:03 - 02117632 _____ (Farbar) C:\Users\Jill\Downloads\FRST64.exe
2014-11-21 14:56 - 2014-11-21 14:56 - 00037803 _____ () C:\Users\Jill\Downloads\Addition.txt
2014-11-21 14:54 - 2014-11-21 17:05 - 00026377 _____ () C:\Users\Jill\Downloads\FRST.txt
2014-11-21 14:49 - 2014-11-21 17:04 - 00000000 ____D () C:\FRST
2014-11-21 14:49 - 2014-11-21 14:49 - 01108992 _____ (Farbar) C:\Users\Jill\Downloads\FRST.exe
2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setupact.log
2014-11-19 20:45 - 2014-11-19 20:45 - 04977216 _____ (Piriform Ltd) C:\Users\Jill\Downloads\ccsetup419.exe
2014-11-19 16:41 - 2014-11-20 19:08 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Spotify
2014-11-19 16:41 - 2014-11-19 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Local\Spotify
2014-11-19 16:41 - 2014-11-19 16:41 - 00001708 _____ () C:\Users\Jill\Desktop\Spotify.lnk
2014-11-19 16:41 - 2014-11-19 16:41 - 00001694 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-11-19 16:40 - 2014-11-19 16:40 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup(1).exe
2014-11-19 16:39 - 2014-11-19 16:39 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup.exe
2014-11-19 09:46 - 2014-11-21 16:47 - 00000288 _____ () C:\Windows\Tasks\UpdaterEX.job
2014-11-19 09:46 - 2014-11-19 09:46 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\UpdaterEX
2014-11-19 09:46 - 2014-11-19 09:45 - 00244032 _____ () C:\Users\Jill\Downloads\Firefox_Setup_33.0.exe
2014-11-19 09:41 - 2014-11-19 09:41 - 00796616 _____ ( ) C:\Users\Jill\Downloads\Firefox_Setup.exe
2014-11-18 20:39 - 2014-11-21 15:33 - 00000067 _____ () C:\Windows\system32\ToasterLauncherLog.log
2014-11-18 20:33 - 2014-11-18 20:33 - 00001120 _____ () C:\Users\Jill\Desktop\Dell DataSafe - Shortcut.lnk
2014-11-18 20:31 - 2014-11-18 20:31 - 00000000 ____D () C:\Users\Jill\My Backup Files
2014-11-18 20:30 - 2014-11-21 15:33 - 00000000 ____D () C:\Users\Jill\AppData\Local\SoftThinks
2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PCDr
2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-11-18 20:27 - 2014-11-18 20:29 - 00000000 ____D () C:\Program Files\My Dell
2014-11-18 20:21 - 2014-11-19 14:41 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\PCDr
2014-11-18 20:16 - 2014-11-18 20:17 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher (1).exe
2014-11-18 19:54 - 2014-11-18 20:11 - 00000000 ____D () C:\Program Files\REGSERVO
2014-11-18 19:54 - 2014-11-18 19:54 - 00000000 ____D () C:\ProgramData\REGSERVO
2014-11-18 19:27 - 2014-11-18 19:27 - 00000000 __SHD () C:\System Recovery
2014-11-18 19:22 - 2014-11-19 04:17 - 00000000 ____D () C:\Temp
2014-11-18 19:22 - 2006-11-01 18:50 - 00128104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys
2014-11-18 19:21 - 2014-11-21 15:33 - 00000000 ____D () C:\Program Files\Dell DataSafe Local Backup
2014-11-18 19:21 - 2014-11-18 19:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
2014-11-18 19:16 - 2014-11-18 19:16 - 192354232 _____ () C:\Users\Jill\Downloads\DataSafeLocalBackup_Basic.exe
2014-11-18 19:14 - 2014-11-18 19:15 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher.exe
2014-11-18 18:27 - 2014-11-18 18:27 - 00995328 _____ () C:\Users\Jill\Downloads\MicrosoftFixit50784.msi
2014-11-18 17:25 - 2014-10-23 20:03 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-18 15:41 - 2014-11-18 15:41 - 00000000 ____D () C:\Windows\TempE0F55605-45F2-0FE6-3DCA-F9083F929337-Signatures
2014-11-18 15:23 - 2014-11-18 15:43 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-11-18 15:21 - 2014-11-18 15:42 - 00001828 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-11-18 15:21 - 2014-11-18 15:42 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-11-18 09:52 - 2014-11-18 09:52 - 12366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 09739776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-11-18 09:52 - 2014-11-18 09:52 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-18 09:52 - 2014-11-18 09:52 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 01802752 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-18 09:52 - 2014-11-18 09:52 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-18 09:52 - 2014-11-18 09:52 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-18 09:52 - 2014-11-18 09:52 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-18 09:52 - 2010-04-05 15:00 - 00221568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-18 09:34 - 2014-11-18 09:34 - 00834440 _____ (SlimWare Utilities, Inc.) C:\Users\Jill\Downloads\DriverUpdate-setup.exe
2014-11-18 09:07 - 2014-06-26 17:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-11-18 09:07 - 2014-06-26 17:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-11-18 09:07 - 2014-06-26 17:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-11-18 09:07 - 2014-06-05 23:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-11-18 09:06 - 2014-06-15 17:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-11-18 09:06 - 2014-06-13 13:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-11-18 09:06 - 2014-06-13 13:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-11-18 00:22 - 2014-10-09 20:01 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-18 00:22 - 2014-10-09 20:00 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-18 00:22 - 2014-10-09 20:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-18 00:22 - 2014-10-09 18:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-18 00:19 - 2014-08-26 19:55 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-18 00:19 - 2014-08-26 19:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-18 00:16 - 2014-09-18 19:50 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-18 00:15 - 2014-10-23 20:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-18 00:13 - 2014-09-09 01:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-11-18 00:01 - 2014-08-22 20:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-11-17 23:52 - 2014-08-11 21:25 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-17 23:38 - 2014-10-02 20:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-17 23:38 - 2014-10-02 20:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-17 23:38 - 2014-10-02 20:17 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-17 23:38 - 2014-10-02 20:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-17 23:24 - 2014-10-17 20:08 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-17 23:17 - 2014-09-04 18:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-11-17 23:15 - 2012-07-25 22:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-11-17 23:15 - 2012-07-25 22:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-11-17 23:15 - 2012-07-25 22:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-11-17 23:15 - 2012-07-25 22:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-11-17 23:15 - 2012-07-25 22:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-11-17 23:15 - 2012-07-25 22:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-11-17 23:15 - 2012-07-25 21:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-11-17 23:15 - 2012-07-25 21:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-11-17 23:15 - 2012-07-25 21:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-11-17 23:15 - 2012-06-02 09:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-11-17 23:15 - 2009-07-14 07:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2014-11-17 23:00 - 2014-11-17 23:05 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-17 22:56 - 2014-10-12 18:34 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-17 22:54 - 2014-03-25 08:26 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-17 22:54 - 2013-07-15 23:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-11-17 22:54 - 2013-05-01 23:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-17 22:54 - 2013-05-01 23:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2014-11-17 22:53 - 2014-06-02 05:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-17 22:53 - 2014-06-02 05:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-17 22:53 - 2014-06-02 05:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-17 22:53 - 2014-06-02 05:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-17 22:53 - 2014-06-02 03:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-17 22:53 - 2013-10-03 07:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-11-17 22:53 - 2013-04-23 23:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-11-17 22:53 - 2013-04-23 20:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-11-17 22:53 - 2012-11-19 23:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-17 22:53 - 2012-05-11 10:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-17 22:53 - 2012-01-09 10:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-11-17 22:53 - 2011-10-14 11:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-11-17 22:53 - 2011-10-14 11:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2014-11-17 22:52 - 2014-06-13 19:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-11-17 22:52 - 2014-06-13 19:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-11-17 22:52 - 2014-06-06 03:59 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-11-17 22:52 - 2014-05-30 01:53 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-11-17 22:52 - 2014-04-26 11:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-11-17 22:52 - 2014-04-04 22:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-17 22:52 - 2014-04-04 20:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-11-17 22:52 - 2014-03-09 20:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-11-17 22:52 - 2014-02-05 20:56 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-11-17 22:52 - 2013-10-29 21:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2014-11-17 22:52 - 2013-10-29 21:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-11-17 22:52 - 2013-10-29 20:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-11-17 22:52 - 2013-10-29 19:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-11-17 22:52 - 2013-10-10 21:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-11-17 22:52 - 2013-10-10 21:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-11-17 22:52 - 2013-10-10 21:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2014-11-17 22:52 - 2013-10-10 19:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-11-17 22:52 - 2013-10-10 19:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-11-17 22:52 - 2013-08-26 21:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-11-17 22:52 - 2013-08-26 21:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-11-17 22:52 - 2013-08-26 21:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-11-17 22:52 - 2013-08-26 21:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-11-17 22:52 - 2013-08-26 20:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-17 22:52 - 2013-08-26 20:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-11-17 22:52 - 2013-08-26 20:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-11-17 22:52 - 2013-08-26 20:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-11-17 22:52 - 2013-08-26 20:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-11-17 22:52 - 2013-08-01 23:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-11-17 22:52 - 2013-07-20 05:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-11-17 22:52 - 2013-07-10 04:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-11-17 22:52 - 2013-07-09 07:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-11-17 22:52 - 2013-07-07 23:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-11-17 22:52 - 2013-07-07 23:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-17 22:52 - 2013-06-28 21:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-11-17 22:52 - 2013-06-28 21:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-11-17 22:52 - 2013-06-28 21:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-11-17 22:52 - 2013-06-28 21:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-11-17 22:52 - 2013-06-26 18:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-11-17 22:52 - 2013-06-15 08:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2014-11-17 22:52 - 2013-06-15 06:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-11-17 22:52 - 2013-03-08 22:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-11-17 22:52 - 2013-03-08 20:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-11-17 22:52 - 2013-03-03 14:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-11-17 22:52 - 2012-11-21 22:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-11-17 22:52 - 2012-11-02 05:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-11-17 22:52 - 2012-11-02 03:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-11-17 22:52 - 2012-09-25 11:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-11-17 22:52 - 2012-08-21 06:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-11-17 22:52 - 2012-06-29 11:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-11-17 22:52 - 2012-03-20 18:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-11-17 22:52 - 2011-12-14 11:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-11-17 22:52 - 2011-10-25 10:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-11-17 22:52 - 2011-10-14 11:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-11-17 22:52 - 2011-08-25 11:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-11-17 22:52 - 2011-08-25 11:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-11-17 22:52 - 2011-08-25 08:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2014-11-17 22:52 - 2011-07-29 11:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-11-17 22:52 - 2011-07-29 11:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-11-17 22:52 - 2011-07-29 11:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2014-11-17 22:52 - 2011-07-29 11:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2014-11-17 22:52 - 2011-07-06 10:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-11-17 22:52 - 2011-05-05 08:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-11-17 22:52 - 2011-05-05 08:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-11-17 22:51 - 2014-01-30 02:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-11-17 22:51 - 2013-10-22 02:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-11-17 22:51 - 2013-10-10 21:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-11-17 22:51 - 2013-10-10 21:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-11-17 22:51 - 2013-10-10 19:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
2014-11-17 22:51 - 2013-07-03 23:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-11-17 22:51 - 2013-07-02 21:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-11-17 22:51 - 2013-06-03 23:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-11-17 22:51 - 2013-06-03 20:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-11-17 22:51 - 2013-04-17 07:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-11-17 22:51 - 2013-03-07 22:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-11-17 22:51 - 2013-03-07 22:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-17 22:51 - 2013-02-11 20:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-11-17 22:51 - 2012-11-07 22:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-11-17 22:51 - 2012-06-04 10:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-11-17 22:51 - 2012-05-01 09:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-11-17 22:51 - 2012-02-29 10:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-11-17 22:51 - 2012-02-29 08:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-11-17 22:51 - 2011-11-16 11:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-11-17 22:51 - 2011-11-16 11:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-11-17 22:51 - 2011-11-16 09:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-11-17 22:51 - 2011-06-15 11:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-11-17 22:38 - 2013-07-07 23:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-11-17 22:38 - 2013-07-07 23:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-11-17 22:38 - 2013-07-07 23:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-11-17 22:29 - 2014-11-17 22:29 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (5).exe
2014-11-17 21:56 - 2014-11-17 21:56 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (4).exe
2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\MSDOS.SYS
2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\IO.SYS
2014-11-17 21:20 - 2014-11-17 21:20 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (2).exe
2014-11-17 19:02 - 2012-06-02 17:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-17 19:02 - 2012-06-02 17:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-17 19:02 - 2012-06-02 17:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-17 19:02 - 2012-06-02 17:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-17 19:02 - 2012-06-02 17:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-17 19:02 - 2012-06-02 17:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-17 19:02 - 2012-06-02 17:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-17 19:02 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-17 19:02 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-21 16:55 - 2009-10-15 16:53 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job
2014-11-21 16:27 - 2009-06-30 02:37 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 15:36 - 2008-11-24 02:15 - 01058518 _____ () C:\Windows\WindowsUpdate.log
2014-11-21 15:36 - 2006-11-02 05:33 - 00869052 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-21 15:35 - 2009-03-10 21:23 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-11-21 15:32 - 2009-06-30 02:37 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 15:31 - 2006-11-02 08:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-21 15:31 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-21 15:31 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-21 15:30 - 2006-11-02 08:01 - 00032622 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-21 11:53 - 2008-12-25 09:24 - 00027648 _____ () C:\Users\Jill\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-21 11:12 - 2010-05-28 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
2014-11-21 11:12 - 2010-05-28 13:19 - 00000000 ____D () C:\Program Files\DivX
2014-11-21 11:12 - 2010-03-27 14:10 - 00000000 ____D () C:\ProgramData\DivX
2014-11-21 08:57 - 2009-03-10 21:23 - 00000000 ____D () C:\ProgramData\Google Updater
2014-11-19 21:10 - 2008-11-24 07:25 - 00000000 ____D () C:\Program Files\Java
2014-11-19 21:03 - 2009-08-09 19:07 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Pro
2014-11-19 21:03 - 2009-08-09 18:13 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Lite
2014-11-19 21:03 - 2008-02-03 18:07 - 00000000 ____D () C:\Windows\Panther
2014-11-19 20:46 - 2010-12-26 19:13 - 00000806 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-19 20:46 - 2010-12-26 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-19 20:46 - 2010-05-25 14:17 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-19 20:46 - 2010-05-25 14:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-19 00:55 - 2009-10-15 16:53 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job
2014-11-18 22:23 - 2010-06-02 20:42 - 00000000 ____D () C:\Program Files\Ask.com
2014-11-18 20:31 - 2008-12-25 08:51 - 00000000 ____D () C:\Users\Jill
2014-11-18 20:29 - 2008-12-25 08:52 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Dell
2014-11-18 20:29 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-11-18 20:29 - 2008-11-24 07:35 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-11-18 20:26 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Dell
2014-11-18 19:21 - 2008-11-24 07:27 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-11-18 19:17 - 2008-11-24 07:27 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-11-18 19:10 - 2006-11-02 07:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-11-18 18:54 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-18 11:44 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\rescache
2014-11-18 11:29 - 2008-12-25 08:55 - 00000951 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-18 11:24 - 2006-11-02 06:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-11-18 09:52 - 2006-11-02 01:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-11-18 09:52 - 2006-11-02 01:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-11-18 09:08 - 2006-11-02 07:37 - 00000000 ____D () C:\Program Files\Windows Journal
2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\Program Files\Windows Live
2014-11-18 08:08 - 2006-11-02 07:47 - 00381648 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-18 08:07 - 2008-12-25 09:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-11-18 08:04 - 2006-11-02 07:37 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-11-18 08:04 - 2006-11-02 06:18 - 00000000 ____D () C:\Program Files\Common Files\System
2014-11-18 08:03 - 2008-11-24 02:14 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-11-17 23:43 - 2008-11-24 07:36 - 00001018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\Program Files\Microsoft Works
2014-11-17 23:24 - 2010-06-04 02:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-17 22:03 - 2011-08-03 23:50 - 00000000 ____D () C:\Windows\Minidump
2014-11-17 21:44 - 2011-02-10 14:16 - 00000000 ____D () C:\Program Files\CenturyLink
2014-11-17 21:12 - 2010-03-22 21:03 - 00000000 ____D () C:\ProgramData\f-secure
2014-11-17 19:42 - 2009-10-15 16:53 - 00002039 _____ () C:\Users\Jill\Desktop\Google Chrome.lnk
2014-11-17 19:40 - 2009-10-15 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-31 23:25 - 2006-11-02 05:24 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-10-30 06:24 - 2009-10-02 16:15 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Jill\AppData\Local\Temp\setup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-21 15:38

==================== End Of Log ============================
 

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
Here is my report from AdwCleaner:
(I didn't remove anything)

# AdwCleaner v4.101 - Report created 21/11/2014 at 17:19:19
# Updated 09/11/2014 by Xplode
# Database : 2014-11-07.1 [Local]
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Jill - SALIGA
# Running from : C:\Users\Jill\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\user.js
Folder Found : C:\Program Files\Ask.com
Folder Found : C:\Program Files\Driver Performer
Folder Found : C:\Program Files\iWin.com Games
Folder Found : C:\Program Files\NCH Software
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iWin.com Games
Folder Found : C:\ProgramData\NCH Software
Folder Found : C:\Users\Jill\AppData\Local\OpenCandy
Folder Found : C:\Users\Jill\AppData\Local\Temp\FoxTab
Folder Found : C:\Users\Jill\AppData\LocalLow\AskToolbar
Folder Found : C:\Users\Jill\AppData\LocalLow\HPAppData
Folder Found : C:\Users\Jill\AppData\Roaming\HPAppData
Folder Found : C:\Users\Jill\AppData\Roaming\iWin
Folder Found : C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Found : C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\toolbar@ask.com
Folder Found : C:\Users\Jill\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Jill\AppData\Roaming\UpdaterEX
Folder Found : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}

***** [ Scheduled Tasks ] *****

Task Found : Scheduled Update for Ask Toolbar
Task Found : UpdaterEX

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\APN
Key Found : HKCU\Software\AppDataLow\AskToolbarInfo
Key Found : HKCU\Software\AppDataLow\Software\AskToolbar
Key Found : HKCU\Software\Ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Coupon Printer for Windows5.0.0.0
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\UpdaterEX
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\UpdaterEX
Key Found : HKCU\Software\UpdaterEX
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\APN
Key Found : HKLM\SOFTWARE\AskToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{28C02550-6572-401a-A2AE-5BC703C9BBA6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A85A5E6A-DE2C-4F4E-99DC-F469DF5A0EEC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Printer for Windows5.0.0.0
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16592


-\\ Mozilla Firefox v5.0 (en-US)

[xy5anuv5.default] - Line Found : user_pref("browser.search.defaultenginename", "Web Search (eToolKit)");
[xy5anuv5.default] - Line Found : user_pref("browser.search.selectedEngine", "Web Search (eToolKit)");
[xy5anuv5.default] - Line Found : user_pref("browser.search.selectedEngineInDialog", "Web Search (eToolKit)");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.InstallDir", "C:\\Program Files\\Ask.com\\");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.abar-war-timeout", "4000");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.cbid", "O8");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.clear-searches-on-exit", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.config-updated", false);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}&qsrc={qsrc}");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.dyn-weather-do-locid-lookup-weatherWidget", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.first-restart-after-config-update", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.guid", "F54B51A0-08A4-4F17-9E10-24BCAE5811F0");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com\", \"www.facebook.com\", \"www.playsushi.com\", \"WWW.google.com\", \"hxxps://websearch.ask.com\", [...]
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.hxxp-header-whitelist-uri", "hxxp://apnstatic.ask.com/static/toolbar/config/main/asktb-url-list.json");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.if", "su");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.l", "dis");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.last-config-req", "1416361292922");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.last-search-timestamp", "1309731573659");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.last-v", "3.12.2.100006");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.locale", "en_US");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.new-tab-opt-out", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.o", "16066");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.options-lang", "en");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.options-locale", "UK");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.qsrc", "2871");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.sa", "NO");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.search-suggestions-enabled", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.silent-upgrade", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-first", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-interval", "1200000");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-max-char-ticker", "33");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-max-items", "30");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-native-on", true);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-speed", "5000");
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.socialmini-transition-first-open", false);
[xy5anuv5.default] - Line Found : user_pref("extensions.asktb.themeid", "");
[xy5anuv5.default] - Line Found : user_pref("extensions.enabledAddons", "piclens@cooliris.com:1.12.3.47088,{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20,{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21,{CAFEEFAC-0016-0000-0023-ABCDEFFEDC[...]
[xy5anuv5.default] - Line Found : user_pref("extensions.enabledItems", "anycolor.pavlos256@gmail.com:0.3.3,{0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5,piclens@cooliris.com:1.12.0.36605,{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.4.1,{20[...]

-\\ Google Chrome v

[C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [13639 octets] - [21/11/2014 17:19:19]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [13700 octets] ##########
 

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Hello,



They call me TwinHeadedEagle around here, and I'll be working with you.



Before we start please read and note the following:
  • At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
  • Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
  • Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
  • Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
  • All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
  • If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
  • I visit forum several times at day, making sure to respond to everyone's topic as fast as possible. But bear in mind that I have private life like everyone and I cannot be here 24/7. So please be patient with me. Also, some infections require less, and some more time to be removed completely, so bear this in mind and be patient.
  • Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. If you solved your problem yourself, set aside two minutes to let me know.
  • Please attach all report using
    fjqb1h.png
    button below. Doing this, you make it easier for me to analyze and fix your problem.

  • Do not ask for help for your business PC. Companies are making revenue via computers, so it is good thing to pay someone to repair it.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.




Download
51a5f31352b88-icon_MBAR.png
Malwarebytes Anti-Rootkit to your desktop.
  • Double-click the icon to start the tool.
  • It will ask you where to extract it, then it will start.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Click in the introduction screen "next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder and paste the content of the following files in your next reply:
    • "mbar-log-{date} (xx-xx-xx).txt"
    • "system-log.txt"




FRST.gif
Scan with Farbar Recovery Scan Tool

Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.
  • Right-click on
    FRST.gif
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Make sure that Addition option is checked.
  • Press Scan button and wait.
  • The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.
Please include their content into your next reply.
 
  • Like
Reactions: Jillayne

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
Thanx TwinHeadedEagle. I'm scanning with the Malwarebytes Anti-Rootkit now and will re-scan w/Farber after it's completed. I'm extremely appreciative of your help!! :D

edited.
 
Last edited by a moderator:

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-11-2014 01
Ran by Jill (administrator) on SALIGA on 22-11-2014 11:04:48
Running from c:\Users\Jill\Downloads
Loaded Profile: Jill (Available profiles: Jill)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
(SoftThinks SAS) C:\Program Files\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
() C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
() C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Toaster.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(DivX, LLC) C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
(Ask) C:\Program Files\Ask.com\Updater\Updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4907008 2008-01-17] (Realtek Semiconductor)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)
HKLM\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
HKLM\...\Run: [hpqSRMon] => [X]
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2010-09-08] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421160 2010-11-17] (Apple Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems Incorporated)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1230704 2011-01-10] ()
HKLM\...\Run: [DivX Download Manager] => C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [63360 2010-12-08] (DivX, LLC)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [ApnUpdater] => C:\Program Files\Ask.com\Updater\Updater.exe [1646216 2013-01-24] (Ask)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
HKLM\...\RunOnce: [Launcher] => C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe [165184 2010-07-20] (Softthinks)
HKLM\...\RunOnce: [DSUpdateLauncher] => C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe [18240 2010-07-21] (Dell)
HKLM\...\RunOnce: [STToasterLauncher] => C:\Program Files\Dell DataSafe Local Backup\toasterLauncher.exe [122176 2010-07-20] ()
Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [Google Update] => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-03-10] (Google Inc.)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [86960 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\MountPoints2: {1167672f-b9f7-11dd-b941-806e6f6e6963} - E:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZooskMessenger.lnk
ShortcutTarget: ZooskMessenger.lnk -> C:\Program Files\ZooskMessenger\ZooskMessenger.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124
HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = http://127.0.0.1:4664/search&s=XUQOWrT62JGgtv_I_58CM-7UXPI?q={searchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
BHO: DivX HiQ -> {593DDEC6-7468-4cdd-90E1-42DADAA222E9} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
BHO: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> No Name - {D3B22A92-87A2-47B6-B3E6-A64877B5C242} - No File
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default
FF DefaultSearchEngine: Web Search (eToolKit)
FF DefaultSearchUrl: hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF SelectedSearchEngine: Web Search (eToolKit)
FF SelectedSearchEngineInDialog: Web Search (eToolKit)
FF Homepage: hxxp://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:eek:fficial
FF Keyword.URL: hxxp://search.etoolkit.com/search?t=ff&&id=0267a875bcf5850734c65eeb52fd9027fd4&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX OVS Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=13 -> C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @facebook.com/FBPlugin,version=1.0.3 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @movenetworks.com/Quantum Media Player -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @yahoo.com/BrowserPlus,version=2.9.8 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.)
FF user.js: detected! => C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\bing-zugo.xml
FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\oneriot-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\googledesktop.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\toolkitsearch.xml
FF Extension: AnyColor - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\anycolor.pavlos256@gmail.com [2010-08-27]
FF Extension: Cooliris - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\piclens@cooliris.com [2011-06-22]
FF Extension: Search Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\searchtoolbar@zugo.com [2011-01-13]
FF Extension: Ask Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\toolbar@ask.com [2010-06-02]
FF Extension: ColorfulTabs - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2014-11-17]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-22]
FF Extension: Yahoo! Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-11-17]
FF Extension: WOT - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-11-17]
FF Extension: FoxTab - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi [2011-05-11]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-05-15]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2010-12-25]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-12]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-05-21]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-02-09]
FF HKLM\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa
FF Extension: DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-02-09]
FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [moveplayer@movenetworks.com] - C:\Users\Jill\AppData\Roaming\Move Networks
FF Extension: Move Media Player - C:\Users\Jill\AppData\Roaming\Move Networks [2009-05-17]
FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR Profile: C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-17]
CHR Extension: (DivX HiQ) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae [2014-11-17]
CHR Extension: (Google Wallet) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-17]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2014-11-17]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [2010-12-08]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2010-12-08]
CHR StartMenuInternet: Google Chrome - C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2008-09-23] (Stardock Corporation) [File not signed]
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)
S2 gupdate1c9a1f07777696d; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [319488 2009-12-16] (Alcatel-Lucent) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
R2 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [689472 2010-08-20] (SoftThinks SAS)
S2 McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amacpi; C:\Windows\System32\DRIVERS\null.sys [4608 2008-01-20] (Microsoft Corporation)
S3 BVRPMPR5; C:\Windows\system32\drivers\BVRPMPR5.SYS [49904 2009-09-30] (Avanquest Software) [File not signed]
S3 motport; C:\Windows\System32\DRIVERS\motport.sys [23680 2007-06-18] (Motorola)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
R1 MpKsl93a390b1; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AC7A56D-3031-4519-97B1-F14131C56165}\MpKsl93a390b1.sys [39464 2014-11-22] (Microsoft Corporation)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [722416 2009-08-09] () [File not signed]
S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-20] (Microsoft Corporation)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-22 11:04 - 2014-11-22 11:04 - 00000000 ____D () C:\Users\Jill\Downloads\FRST-OlderVersion
2014-11-22 10:15 - 2014-11-22 10:47 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-22 10:15 - 2014-11-22 10:15 - 00119000 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-22 10:15 - 2014-11-22 10:15 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-22 10:14 - 2014-11-22 10:14 - 00079576 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-22 10:13 - 2014-11-22 10:41 - 00000000 ____D () C:\Users\Jill\Desktop\mbar
2014-11-22 10:12 - 2014-11-22 10:12 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Jill\Downloads\mbar-1.08.2.1001.exe
2014-11-21 18:11 - 2014-11-22 10:44 - 00000682 _____ () C:\Windows\PFRO.log
2014-11-21 18:09 - 2014-11-21 18:09 - 00000000 ____D () C:\Users\Jill\AppData\Local\Macromedia
2014-11-21 17:54 - 2014-11-22 10:27 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-21 17:54 - 2014-11-21 18:27 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-11-21 17:54 - 2014-11-21 18:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-11-21 14:56 - 2014-11-21 14:56 - 00037803 _____ () C:\Users\Jill\Downloads\Addition.txt
2014-11-21 14:54 - 2014-11-22 11:05 - 00026210 _____ () C:\Users\Jill\Downloads\FRST.txt
2014-11-21 14:49 - 2014-11-22 11:04 - 01109504 _____ (Farbar) C:\Users\Jill\Downloads\FRST.exe
2014-11-21 14:49 - 2014-11-22 11:04 - 00000000 ____D () C:\FRST
2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setupact.log
2014-11-19 20:45 - 2014-11-19 20:45 - 04977216 _____ (Piriform Ltd) C:\Users\Jill\Downloads\ccsetup419.exe
2014-11-19 16:41 - 2014-11-22 10:42 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Spotify
2014-11-19 16:41 - 2014-11-19 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Local\Spotify
2014-11-19 16:41 - 2014-11-19 16:41 - 00001708 _____ () C:\Users\Jill\Desktop\Spotify.lnk
2014-11-19 16:41 - 2014-11-19 16:41 - 00001694 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-11-19 16:40 - 2014-11-19 16:40 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup(1).exe
2014-11-19 16:39 - 2014-11-19 16:39 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup.exe
2014-11-19 09:46 - 2014-11-22 10:48 - 00000288 _____ () C:\Windows\Tasks\UpdaterEX.job
2014-11-19 09:46 - 2014-11-19 09:46 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\UpdaterEX
2014-11-19 09:46 - 2014-11-19 09:45 - 00244032 _____ () C:\Users\Jill\Downloads\Firefox_Setup_33.0.exe
2014-11-19 09:41 - 2014-11-19 09:41 - 00796616 _____ ( ) C:\Users\Jill\Downloads\Firefox_Setup.exe
2014-11-18 20:39 - 2014-11-22 10:47 - 00000068 _____ () C:\Windows\system32\ToasterLauncherLog.log
2014-11-18 20:33 - 2014-11-18 20:33 - 00001120 _____ () C:\Users\Jill\Desktop\Dell DataSafe - Shortcut.lnk
2014-11-18 20:31 - 2014-11-18 20:31 - 00000000 ____D () C:\Users\Jill\My Backup Files
2014-11-18 20:30 - 2014-11-22 10:47 - 00000000 ____D () C:\Users\Jill\AppData\Local\SoftThinks
2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PCDr
2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-11-18 20:27 - 2014-11-18 20:29 - 00000000 ____D () C:\Program Files\My Dell
2014-11-18 20:21 - 2014-11-19 14:41 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\PCDr
2014-11-18 20:16 - 2014-11-18 20:17 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher (1).exe
2014-11-18 19:54 - 2014-11-18 20:11 - 00000000 ____D () C:\Program Files\REGSERVO
2014-11-18 19:54 - 2014-11-18 19:54 - 00000000 ____D () C:\ProgramData\REGSERVO
2014-11-18 19:27 - 2014-11-18 19:27 - 00000000 __SHD () C:\System Recovery
2014-11-18 19:22 - 2014-11-19 04:17 - 00000000 ____D () C:\Temp
2014-11-18 19:22 - 2006-11-01 18:50 - 00128104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys
2014-11-18 19:21 - 2014-11-22 10:47 - 00000000 ____D () C:\Program Files\Dell DataSafe Local Backup
2014-11-18 19:21 - 2014-11-18 19:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
2014-11-18 19:16 - 2014-11-18 19:16 - 192354232 _____ () C:\Users\Jill\Downloads\DataSafeLocalBackup_Basic.exe
2014-11-18 19:14 - 2014-11-18 19:15 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher.exe
2014-11-18 18:27 - 2014-11-18 18:27 - 00995328 _____ () C:\Users\Jill\Downloads\MicrosoftFixit50784.msi
2014-11-18 17:25 - 2014-10-23 20:03 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-18 15:41 - 2014-11-18 15:41 - 00000000 ____D () C:\Windows\TempE0F55605-45F2-0FE6-3DCA-F9083F929337-Signatures
2014-11-18 15:23 - 2014-11-18 15:43 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-11-18 15:21 - 2014-11-18 15:42 - 00001828 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-11-18 15:21 - 2014-11-18 15:42 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-11-18 09:52 - 2014-11-18 09:52 - 12366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 09739776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-11-18 09:52 - 2014-11-18 09:52 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-18 09:52 - 2014-11-18 09:52 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 01802752 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-18 09:52 - 2014-11-18 09:52 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-11-18 09:52 - 2014-11-18 09:52 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-18 09:52 - 2014-11-18 09:52 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-18 09:52 - 2014-11-18 09:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-18 09:52 - 2014-11-18 09:52 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-18 09:52 - 2010-04-05 15:00 - 00221568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-18 09:34 - 2014-11-18 09:34 - 00834440 _____ (SlimWare Utilities, Inc.) C:\Users\Jill\Downloads\DriverUpdate-setup.exe
2014-11-18 09:07 - 2014-06-26 17:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-11-18 09:07 - 2014-06-26 17:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-11-18 09:07 - 2014-06-26 17:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-11-18 09:07 - 2014-06-05 23:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-11-18 09:06 - 2014-06-15 17:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-11-18 09:06 - 2014-06-13 13:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-11-18 09:06 - 2014-06-13 13:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-11-18 00:22 - 2014-10-09 20:01 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-18 00:22 - 2014-10-09 20:00 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-18 00:22 - 2014-10-09 20:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-18 00:22 - 2014-10-09 18:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-18 00:19 - 2014-08-26 19:55 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-18 00:19 - 2014-08-26 19:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-18 00:16 - 2014-09-18 19:50 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-18 00:15 - 2014-10-23 20:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-18 00:13 - 2014-09-09 01:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-11-18 00:01 - 2014-08-22 20:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-11-17 23:52 - 2014-08-11 21:25 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-17 23:38 - 2014-10-02 20:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-17 23:38 - 2014-10-02 20:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-17 23:38 - 2014-10-02 20:17 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-17 23:38 - 2014-10-02 20:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-17 23:24 - 2014-10-17 20:08 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-17 23:17 - 2014-09-04 18:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-11-17 23:15 - 2012-07-25 22:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-11-17 23:15 - 2012-07-25 22:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-11-17 23:15 - 2012-07-25 22:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-11-17 23:15 - 2012-07-25 22:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-11-17 23:15 - 2012-07-25 22:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-11-17 23:15 - 2012-07-25 22:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-11-17 23:15 - 2012-07-25 21:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-11-17 23:15 - 2012-07-25 21:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-11-17 23:15 - 2012-07-25 21:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-11-17 23:15 - 2012-06-02 09:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-11-17 23:15 - 2009-07-14 07:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2014-11-17 23:00 - 2014-11-17 23:05 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-17 22:56 - 2014-10-12 18:34 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-17 22:54 - 2014-03-25 08:26 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-17 22:54 - 2013-07-15 23:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-11-17 22:54 - 2013-05-01 23:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-17 22:54 - 2013-05-01 23:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2014-11-17 22:53 - 2014-06-02 05:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-17 22:53 - 2014-06-02 05:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-17 22:53 - 2014-06-02 05:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-17 22:53 - 2014-06-02 05:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-17 22:53 - 2014-06-02 03:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-17 22:53 - 2013-10-03 07:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-11-17 22:53 - 2013-04-23 23:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-11-17 22:53 - 2013-04-23 20:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-11-17 22:53 - 2012-11-19 23:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-17 22:53 - 2012-05-11 10:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-17 22:53 - 2012-01-09 10:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-11-17 22:53 - 2011-10-14 11:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-11-17 22:53 - 2011-10-14 11:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2014-11-17 22:52 - 2014-06-13 19:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-11-17 22:52 - 2014-06-13 19:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-11-17 22:52 - 2014-06-06 03:59 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-11-17 22:52 - 2014-05-30 01:53 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-11-17 22:52 - 2014-04-26 11:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-11-17 22:52 - 2014-04-04 22:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-17 22:52 - 2014-04-04 20:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-11-17 22:52 - 2014-03-09 20:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-11-17 22:52 - 2014-02-05 20:56 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-11-17 22:52 - 2013-10-29 21:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2014-11-17 22:52 - 2013-10-29 21:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-11-17 22:52 - 2013-10-29 20:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-11-17 22:52 - 2013-10-29 19:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-11-17 22:52 - 2013-10-10 21:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-11-17 22:52 - 2013-10-10 21:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-11-17 22:52 - 2013-10-10 21:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2014-11-17 22:52 - 2013-10-10 19:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-11-17 22:52 - 2013-10-10 19:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-11-17 22:52 - 2013-08-26 21:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-11-17 22:52 - 2013-08-26 21:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-11-17 22:52 - 2013-08-26 21:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-11-17 22:52 - 2013-08-26 21:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-11-17 22:52 - 2013-08-26 20:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-17 22:52 - 2013-08-26 20:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-11-17 22:52 - 2013-08-26 20:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-11-17 22:52 - 2013-08-26 20:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-11-17 22:52 - 2013-08-26 20:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-11-17 22:52 - 2013-08-01 23:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-11-17 22:52 - 2013-07-20 05:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-11-17 22:52 - 2013-07-10 04:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-11-17 22:52 - 2013-07-09 07:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-11-17 22:52 - 2013-07-07 23:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-11-17 22:52 - 2013-07-07 23:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-17 22:52 - 2013-06-28 21:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-11-17 22:52 - 2013-06-28 21:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-11-17 22:52 - 2013-06-28 21:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-11-17 22:52 - 2013-06-28 21:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-11-17 22:52 - 2013-06-26 18:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-11-17 22:52 - 2013-06-15 08:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2014-11-17 22:52 - 2013-06-15 06:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-11-17 22:52 - 2013-03-08 22:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-11-17 22:52 - 2013-03-08 20:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-11-17 22:52 - 2013-03-03 14:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-11-17 22:52 - 2012-11-21 22:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-11-17 22:52 - 2012-11-02 05:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-11-17 22:52 - 2012-11-02 03:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-11-17 22:52 - 2012-09-25 11:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-11-17 22:52 - 2012-08-21 06:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-11-17 22:52 - 2012-06-29 11:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-11-17 22:52 - 2012-03-20 18:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-11-17 22:52 - 2011-12-14 11:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-11-17 22:52 - 2011-10-25 10:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-11-17 22:52 - 2011-10-14 11:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-11-17 22:52 - 2011-08-25 11:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-11-17 22:52 - 2011-08-25 11:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-11-17 22:52 - 2011-08-25 08:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2014-11-17 22:52 - 2011-07-29 11:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-11-17 22:52 - 2011-07-29 11:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-11-17 22:52 - 2011-07-29 11:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2014-11-17 22:52 - 2011-07-29 11:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2014-11-17 22:52 - 2011-07-06 10:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-11-17 22:52 - 2011-05-05 08:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-11-17 22:52 - 2011-05-05 08:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-11-17 22:51 - 2014-01-30 02:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-11-17 22:51 - 2013-10-22 02:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-11-17 22:51 - 2013-10-10 21:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-11-17 22:51 - 2013-10-10 21:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-11-17 22:51 - 2013-10-10 19:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
2014-11-17 22:51 - 2013-07-03 23:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-11-17 22:51 - 2013-07-02 21:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-11-17 22:51 - 2013-06-03 23:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-11-17 22:51 - 2013-06-03 20:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-11-17 22:51 - 2013-04-17 07:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-11-17 22:51 - 2013-03-07 22:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-11-17 22:51 - 2013-03-07 22:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-17 22:51 - 2013-02-11 20:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-11-17 22:51 - 2012-11-07 22:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-11-17 22:51 - 2012-06-04 10:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-11-17 22:51 - 2012-05-01 09:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-11-17 22:51 - 2012-02-29 10:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-11-17 22:51 - 2012-02-29 08:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-11-17 22:51 - 2011-11-16 11:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-11-17 22:51 - 2011-11-16 11:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-11-17 22:51 - 2011-11-16 09:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-11-17 22:51 - 2011-06-15 11:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-11-17 22:38 - 2013-07-07 23:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-11-17 22:38 - 2013-07-07 23:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-11-17 22:38 - 2013-07-07 23:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-11-17 22:29 - 2014-11-17 22:29 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (5).exe
2014-11-17 21:56 - 2014-11-17 21:56 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (4).exe
2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\MSDOS.SYS
2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\IO.SYS
2014-11-17 21:20 - 2014-11-17 21:20 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (2).exe
2014-11-17 19:02 - 2012-06-02 17:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-17 19:02 - 2012-06-02 17:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-17 19:02 - 2012-06-02 17:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-17 19:02 - 2012-06-02 17:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-17 19:02 - 2012-06-02 17:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-17 19:02 - 2012-06-02 17:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-17 19:02 - 2012-06-02 17:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-17 19:02 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-17 19:02 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-22 10:56 - 2009-10-15 16:53 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job
2014-11-22 10:51 - 2008-11-24 02:15 - 01104461 _____ () C:\Windows\WindowsUpdate.log
2014-11-22 10:49 - 2009-03-10 21:23 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-11-22 10:45 - 2009-06-30 02:37 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-22 10:44 - 2006-11-02 08:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-22 10:44 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-22 10:44 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-22 10:44 - 2006-11-02 06:18 - 00000000 __RSD () C:\Windows\Media
2014-11-22 10:43 - 2006-11-02 08:01 - 00032622 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-22 10:27 - 2009-06-30 02:37 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-22 09:58 - 2009-03-10 21:23 - 00000000 ____D () C:\ProgramData\Google Updater
2014-11-22 00:55 - 2009-10-15 16:53 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job
2014-11-21 18:07 - 2008-12-27 19:05 - 00000000 ____D () C:\Users\Jill\AppData\Local\Adobe
2014-11-21 15:36 - 2006-11-02 05:33 - 00869052 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-21 11:53 - 2008-12-25 09:24 - 00027648 _____ () C:\Users\Jill\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-21 11:12 - 2010-05-28 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
2014-11-21 11:12 - 2010-05-28 13:19 - 00000000 ____D () C:\Program Files\DivX
2014-11-21 11:12 - 2010-03-27 14:10 - 00000000 ____D () C:\ProgramData\DivX
2014-11-19 21:10 - 2008-11-24 07:25 - 00000000 ____D () C:\Program Files\Java
2014-11-19 21:03 - 2009-08-09 19:07 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Pro
2014-11-19 21:03 - 2009-08-09 18:13 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Lite
2014-11-19 21:03 - 2008-02-03 18:07 - 00000000 ____D () C:\Windows\Panther
2014-11-19 20:46 - 2010-12-26 19:13 - 00000806 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-19 20:46 - 2010-12-26 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-19 20:46 - 2010-05-25 14:17 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-19 20:46 - 2010-05-25 14:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-18 22:23 - 2010-06-02 20:42 - 00000000 ____D () C:\Program Files\Ask.com
2014-11-18 20:31 - 2008-12-25 08:51 - 00000000 ____D () C:\Users\Jill
2014-11-18 20:29 - 2008-12-25 08:52 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Dell
2014-11-18 20:29 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-11-18 20:29 - 2008-11-24 07:35 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-11-18 20:26 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Dell
2014-11-18 19:21 - 2008-11-24 07:27 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-11-18 19:17 - 2008-11-24 07:27 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-11-18 19:10 - 2006-11-02 07:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-11-18 18:54 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-18 11:44 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\rescache
2014-11-18 11:29 - 2008-12-25 08:55 - 00000951 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-18 11:24 - 2006-11-02 06:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-11-18 09:52 - 2006-11-02 01:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-11-18 09:52 - 2006-11-02 01:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-11-18 09:08 - 2006-11-02 07:37 - 00000000 ____D () C:\Program Files\Windows Journal
2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\Program Files\Windows Live
2014-11-18 08:08 - 2006-11-02 07:47 - 00381648 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-18 08:07 - 2008-12-25 09:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-11-18 08:04 - 2006-11-02 07:37 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-11-18 08:04 - 2006-11-02 06:18 - 00000000 ____D () C:\Program Files\Common Files\System
2014-11-18 08:03 - 2008-11-24 02:14 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-11-17 23:43 - 2008-11-24 07:36 - 00001018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\Program Files\Microsoft Works
2014-11-17 23:24 - 2010-06-04 02:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-17 22:03 - 2011-08-03 23:50 - 00000000 ____D () C:\Windows\Minidump
2014-11-17 21:44 - 2011-02-10 14:16 - 00000000 ____D () C:\Program Files\CenturyLink
2014-11-17 21:12 - 2010-03-22 21:03 - 00000000 ____D () C:\ProgramData\f-secure
2014-11-17 19:42 - 2009-10-15 16:53 - 00002039 _____ () C:\Users\Jill\Desktop\Google Chrome.lnk
2014-11-17 19:40 - 2009-10-15 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-31 23:25 - 2006-11-02 05:24 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-10-30 06:24 - 2009-10-02 16:15 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Jill\AppData\Local\Temp\setup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-22 10:52

==================== End Of Log ============================


Did I attach everything?
 

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
Here's another. The FRST and Addition were saved to my Notepad. Notepad won't upload.
 

Attachments

  • system-log.txt
    20.2 KB · Views: 34
Last edited:

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
This is much better now. Thanks :)

FRST.gif
Fix with Farbar Recovery Scan Tool

icon_exclaim.gif
This fix was created for this user for use on that particular machine.
icon_exclaim.gif

icon_exclaim.gif
Running it on another one may cause damage and render the system unstable.
icon_exclaim.gif

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on
    FRST.gif
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.
 

Attachments

  • fixlist.txt
    3.4 KB · Views: 46

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
I need help w/the fixlist.txt file. It's saved to Notepad. I don't know if that matters, but I'm getting nowhere. I downloaded it but there's no 'save to desktop' except for a 'shortcut' to the desktop. There's no Icon to click on. I go it! It's fixing now (I hope) :)
 
Last edited:

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
Yay! I removed all the iTunes music (don't need it)
 

Attachments

  • Fixlog.txt
    8.4 KB · Views: 43
Last edited:

Jillayne

Level 1
Thread author
Verified
Nov 21, 2014
23
After I log in to the computer, there's a blank gray screen for about a minute. I also need to get rid of Divx. It is running slow still and it freezes up.
 
Last edited:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top