Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Where to post the FRST logs?
Message
<blockquote data-quote="Jillayne" data-source="post: 303271" data-attributes="member: 31002"><p>Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-11-2014</p><p>Ran by Jill at 2014-11-21 14:56:02</p><p>Running from C:\Users\Jill\Downloads</p><p>Boot Mode: Normal</p><p>==========================================================</p><p></p><p></p><p>==================== Security Center ========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed.)</p><p></p><p>AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}</p><p>AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}</p><p>AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p></p><p>==================== Installed Programs ======================</p><p></p><p>(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)</p><p></p><p>Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)</p><p>Adobe Acrobat 5.0 (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)</p><p>Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)</p><p>Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.1.53.64 - Adobe Systems Incorporated)</p><p>Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.2.152.26 - Adobe Systems Incorporated)</p><p>Adobe Reader X (10.0.1) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA0000000001}) (Version: 10.0.1 - Adobe Systems Incorporated)</p><p>Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 11 - Adobe Systems, Inc.)</p><p>Amazon Kindle For PC v1.1 (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Amazon Kindle For PC) (Version: - )</p><p>Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)</p><p>Apple Mobile Device Support (HKLM\...\{308B6AEA-DE50-4666-996D-0FA461719D6B}) (Version: 3.3.0.69 - Apple Inc.)</p><p>Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)</p><p>Ask Toolbar (HKLM\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.15.15.0 - Ask.com) <==== ATTENTION</p><p>Ask Toolbar Updater (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.4.35882 - Ask.com) <==== ATTENTION</p><p>Bonjour (HKLM\...\{2A981294-F14C-4F0F-9627-D793270922F8}) (Version: 2.0.4.0 - Apple Inc.)</p><p>Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell)</p><p>BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden</p><p>Business Contact Manager for Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation)</p><p>Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation) Hidden</p><p>CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)</p><p>Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden</p><p>Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)</p><p>Conexant D850 PCI V.92 Modem (HKLM\...\CNXT_MODEM_PCI_HSF) (Version: 7.74.00 - Conexant)</p><p>Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated)</p><p>Cozi (HKLM\...\{9E96AC7C-F1FB-4A82-933D-ED2A367C207A}) (Version: 1.0.3805.19354 - Cozi Group, Inc.)</p><p>CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden</p><p>D1500 (Version: 100.0.206.000 - Hewlett-Packard) Hidden</p><p>D1500_Help (Version: 100.0.206.000 - Hewlett-Packard) Hidden</p><p>Dell Best of Web (HKLM\...\{C39A4E1F-9AF1-4FE1-A80E-A5B867FABB42}) (Version: 1.00.0000 - Dell)</p><p>Dell DataSafe Local Backup - Support Software (HKLM\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: - Dell)</p><p>Dell DataSafe Local Backup (HKLM\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.48 - Dell)</p><p>Dell Dock (HKLM\...\{F6CB42B9-F033-4152-8813-FF11DA8E6A78}) (Version: 1.0.0 - Dell)</p><p>Dell Getting Started Guide (HKLM\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)</p><p>Dell-eBay (HKLM\...\{B935C985-A17F-484B-8470-09E4FC27DC26}) (Version: 1.00.0000 - Dell)</p><p>DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden</p><p>DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden</p><p>Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.21 - BVRP Software, Inc)</p><p>DivX Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.3.0.20 - DivX, LLC)</p><p>DJ_SF_03_D1500_ProductContext (Version: 100.0.215.000 - Hewlett-Packard) Hidden</p><p>DJ_SF_03_D1500_Software (Version: 100.0.206.000 - Hewlett-Packard) Hidden</p><p>DJ_SF_03_D1500_Software_Min (Version: 100.0.206.000 - Hewlett-Packard) Hidden</p><p>EA Download Manager (HKLM\...\EADM) (Version: 7.2.0.32 - Electronic Arts, Inc.)</p><p>EDocs (HKLM\...\{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}) (Version: - )</p><p>eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden</p><p>Extended Update (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\UpdaterEX) (Version: - Extended Update) <==== ATTENTION</p><p>Facebook Plug-In (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Facebook Plug-In) (Version: - Facebook, Inc.)</p><p>FrostWire 4.21.3 (HKLM\...\FrostWire) (Version: 4.21.3.0 - FrostWire Team)</p><p>Game Console - WildGames (HKLM\...\Game Console - WildGames) (Version: - WildTangent)</p><p>Google Chrome (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Google Chrome) (Version: 38.0.2125.122 - Google Inc.)</p><p>Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)</p><p>Google Earth (HKLM\...\{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}) (Version: 6.0.3.2197 - Google)</p><p>Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden</p><p>Google Updater (HKLM\...\Google Updater) (Version: 2.4.1536.6592 - Google Inc.)</p><p>GoToAssist 8.0.0.514 (HKLM\...\GoToAssist) (Version: - )</p><p>GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden</p><p>GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden</p><p>HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)</p><p>HP Deskjet D1500 Printer Driver Software 10.0 Rel .3 (HKLM\...\{0CE5F45E-F6CC-4638-B0DD-BB7F6EF56713}) (Version: 10.0 - HP)</p><p>HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)</p><p>HP Photosmart Essential 2.5 (HKLM\...\HP Photosmart Essential) (Version: 2.5 - HP)</p><p>HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)</p><p>HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)</p><p>HP Update (HKLM\...\{787D1A33-A97B-4245-87C0-7174609A540C}) (Version: 5.002.005.003 - Hewlett-Packard)</p><p>HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden</p><p>HPSSupply (Version: 100.0.170.000 - Hewlett-Packard) Hidden</p><p>iTunes (HKLM\...\{FAE36873-1941-4076-A9A5-48812B5EA0B7}) (Version: 10.1.0.56 - Apple Inc.)</p><p>MarketResearch (Version: 100.0.170.000 - Hewlett-Packard) Hidden</p><p>Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )</p><p>Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )</p><p>Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - )</p><p>Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)</p><p>Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)</p><p>Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)</p><p>Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)</p><p>Microsoft Office Accounting 2008 (HKLM\...\Microsoft Office Accounting 2008) (Version: 3.0.8627.1 - Microsoft Corporation)</p><p>Microsoft Office Accounting 2008 Equifax Addin (HKLM\...\{0C2AF762-0565-4C91-9F55-B8B53BB82A38}) (Version: 3.0.8231.0 - Microsoft Corporation)</p><p>Microsoft Office Accounting 2008 Fixed Asset Manager (HKLM\...\{E3DF6916-2472-43D9-8B3C-9F2F0AAB01B5}) (Version: 3.0.8231.0 - Microsoft Corporation)</p><p>Microsoft Office Accounting 2008 PayPal Addin (HKLM\...\{B391EECE-DFEA-4FC5-9D40-47FA43E2DBE6}) (Version: 3.0.8231.0 - Microsoft Corporation)</p><p>Microsoft Office Accounting ADP Payroll Addin (HKLM\...\{5FA793A6-0071-42C1-9355-8F69A428C44F}) (Version: 0.0.0.0 - ADP)</p><p>Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)</p><p>Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)</p><p>Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)</p><p>Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)</p><p>Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)</p><p>Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation)</p><p>Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)</p><p>Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (HKLM\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)</p><p>Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)</p><p>Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)</p><p>Modem Diagnostic Tool (HKLM\...\{294EAADF-E50F-4DD8-AD8D-19587EA10512}) (Version: 1.0.24.0 - Dell)</p><p>Move Media Player (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Move Media Player) (Version: - Move Networks)</p><p>Mozilla Firefox 5.0 (x86 en-US) (HKLM\...\Mozilla Firefox 5.0 (x86 en-US)) (Version: 5.0 - Mozilla)</p><p>MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden</p><p>MSVCSetup (Version: 1.00.0000 - HP) Hidden</p><p>My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)</p><p>Nancy Drew: Last Train to Blue Moon Canyon (HKLM\...\{EB7A3B64-1373-48AC-902E-F6643F074E3C}) (Version: - )</p><p>Nancy Drew: Message in a Haunted Mansion (HKLM\...\{78B55A60-5E51-11D4-A766-00C00C02EDEF}) (Version: - )</p><p>Nancy Drew: Secret of the Old Clock (HKLM\...\{70D1416D-C0FF-461C-8AF3-71B98C7F5CA4}) (Version: - )</p><p>Nancy Drew: The Creature of Kapu Cave (HKLM\...\{F4EC2FB1-4255-4040-8DE6-5D75FA9D039F}) (Version: - )</p><p>Nancy Drew: The Haunted Carousel (HKLM\...\{750B354A-BF46-45E0-86D6-620026703B92}) (Version: - )</p><p>Nancy Drew: Treasure in the Royal Tower (HKLM\...\{92D34E42-4C6F-11D5-A76D-006008D256FF}) (Version: - )</p><p>NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.53 - BVRP Software, Inc)</p><p>NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )</p><p>NVIDIANetworkDiagnostic (HKLM\...\InstallShield_{EFAD4066-CAF3-4B27-9669-12EED352C376}) (Version: 1.00.0000 - NVIDIA Corporation)</p><p>OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden</p><p>Penguins! (HKLM\...\WT016060) (Version: WT016060 - WildTangent)</p><p>Pixillion Image Converter (HKLM\...\Pixillion) (Version: - NCH Software)</p><p>Prism Video Converter (HKLM\...\Prism) (Version: - NCH Software)</p><p>PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden</p><p>QPST (HKLM\...\{31228E31-2BFF-11D2-8866-00805F0D9D40}) (Version: - )</p><p>QuickTime (HKLM\...\{E7004147-2CCA-431C-AA05-2AB166B9785D}) (Version: 7.68.75.0 - Apple Inc.)</p><p>Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - )</p><p>Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP)</p><p>SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden</p><p>SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden</p><p>Spotify (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)</p><p>Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden</p><p>Switch Sound File Converter (HKLM\...\Switch) (Version: - NCH Software)</p><p>System Requirements Lab CYRI (HKLM\...\{6FCBE08B-EB47-448E-8566-CE38E8B8D065}) (Version: 4.4.16.0 - Husdawg, LLC)</p><p>TaxCut Premium + State + Efile 2008 (HKLM\...\{BBB33AD6-BCF7-4002-B6A0-6DC679AE5C18}) (Version: 08.07.6201 - H & R Block)</p><p>The Sims™ 3 (HKLM\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.26.89 - Electronic Arts)</p><p>Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden</p><p>TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden</p><p>UnloadSupport (Version: 10.0.0 - Hewlett-Packard) Hidden</p><p>VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden</p><p>VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden</p><p>VoiceOver Kit (HKLM\...\{FB26A501-6BA6-459B-89AA-9736730752FB}) (Version: 1.30.128.0 - Apple Inc.)</p><p>WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden</p><p>Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)</p><p>Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)</p><p>Windows Live Sync (HKLM\...\{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}) (Version: 14.0.8050.1202 - Microsoft Corporation)</p><p>Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)</p><p>Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)</p><p>Yahoo! BrowserPlus 2.9.8 (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Yahoo! BrowserPlus) (Version: - Yahoo! Inc.)</p><p></p><p>==================== Custom CLSID (selected items): ==========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)</p><p></p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{0E55CBE1-B06A-49B6-AD8D-9EFAA0160C6F}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.21.57\psuser.dll No File</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{29A96789-9595-4947-BEDB-0FCC776F7DB8}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.2.183.39\goopdate.dll No File</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Chrome\Application\38.0.2125.122\delegate_execute.exe (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{6CE4B8A6-4DB5-4F63-8013-1197503692EF}\InprocServer32 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\YBPAddon_2.9.8.dll (Yahoo! Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C98FE784-B96E-41e1-8399-1337AE3E539F}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\psuser.dll (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{DB25D157-76D4-41C1-97B5-359E4A4CECEB}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.21.65\psuser.dll No File</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{e3e02f12-2adb-478c-8742-5f0819f9f0f4}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{e473a65c-8087-49a3-affd-c5bc4a10669b}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\psuser.dll (Google Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{fc345d4c-b8f4-4674-bff7-3c37d2e535ee}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)</p><p>CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{fd6484ed-ebe3-4c3d-938a-8238003b41b7}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)</p><p></p><p>==================== Restore Points =========================</p><p></p><p>21-11-2014 00:01:21 Scheduled Checkpoint</p><p>21-11-2014 16:10:20 Removed Dell Best of Web.</p><p></p><p>==================== Hosts content: ==========================</p><p></p><p>(If needed Hosts: directive could be included in the fixlist to reset Hosts.)</p><p></p><p>2006-11-02 05:23 - 2006-09-18 16:41 - 00000736 ____A C:\Windows\system32\Drivers\etc\hosts</p><p>::1 localhost</p><p></p><p>==================== Scheduled Tasks (whitelisted) =============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)</p><p></p><p>Task: {06848250-189F-4C9F-A624-270464B7B8E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)</p><p>Task: {34E9C9FA-C4E3-455A-B44C-EB51672CEA8D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe</p><p>Task: {479A0406-4677-4F97-840E-62777EBA1988} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)</p><p>Task: {571E95F8-91ED-43FE-9D0C-85A9FCEE875B} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe [2013-01-24] () <==== ATTENTION</p><p>Task: {687B8D15-EF7F-4E76-84E4-7A69A0323287} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)</p><p>Task: {A216E71D-FD57-4FA1-B1C6-2A17E643BEA3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)</p><p>Task: {A5124499-2101-4C99-82F2-87E23B7E4552} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-10] (PC-Doctor, Inc.)</p><p>Task: {AD307C9D-E2DA-46A3-887E-DB60751E3E2D} - System32\Tasks\UpdaterEX => C:\Users\Jill\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION</p><p>Task: {C735859A-2651-4041-B044-477D3BF4FE80} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)</p><p>Task: {D061CDBB-97A8-40AA-B5CE-013E468F82CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)</p><p>Task: {D4AD428B-D17B-427C-9A6C-F0DE158D4E91} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-10] (PC-Doctor, Inc.)</p><p>Task: {EB0D106F-C6F1-40E4-A367-F26613873A2C} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24] (Google)</p><p></p><p>(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)</p><p></p><p>Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe</p><p>Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\Jill\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION</p><p></p><p>==================== Loaded Modules (whitelisted) =============</p><p></p><p>2014-11-18 19:22 - 2010-07-20 22:33 - 00058688 ____N () C:\Program Files\Dell DataSafe Local Backup\STCoreXml.dll</p><p>2014-11-18 19:21 - 2010-07-20 22:33 - 00116032 ____N () C:\Program Files\Dell DataSafe Local Backup\PSTVdsDisk.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:33 - 00128320 ____N () C:\Program Files\Dell DataSafe Local Backup\STLog.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:36 - 00783680 ____N () C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe</p><p>2014-11-18 19:21 - 2010-07-20 22:33 - 01123648 ____N () C:\Program Files\Dell DataSafe Local Backup\LibXml2.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:34 - 00079168 ____N () C:\Program Files\Dell DataSafe Local Backup\zlib1.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:33 - 00234816 ____N () C:\Program Files\Dell DataSafe Local Backup\STFiles.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:34 - 00075072 ____N () C:\Program Files\Dell DataSafe Local Backup\STRegistry.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:33 - 00111936 ____N () C:\Program Files\Dell DataSafe Local Backup\STPE.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:33 - 00121152 ____N () C:\Program Files\Dell DataSafe Local Backup\STNLS.dll</p><p>2014-11-18 19:22 - 2010-07-21 10:35 - 00161088 ____N () C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe</p><p>2014-11-18 19:22 - 2010-07-23 17:36 - 00025920 ____N () C:\Program Files\Dell DataSafe Local Backup\SftBRCCPiped.dll</p><p>2014-11-18 19:22 - 2010-07-20 22:33 - 00025920 ____N () C:\Program Files\Dell DataSafe Local Backup\STBRCCServCLR.dll</p><p>2008-11-24 07:32 - 2010-08-31 09:28 - 00034816 _____ () C:\Program Files\Google\Google Desktop Search\gzlib.dll</p><p>2009-09-04 22:15 - 2009-09-04 22:15 - 00067872 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll</p><p>2011-01-10 18:25 - 2011-01-10 18:25 - 01230704 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe</p><p>2011-01-10 18:25 - 2011-01-10 18:25 - 00096112 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll</p><p>2014-11-18 08:20 - 2014-11-18 08:20 - 00284160 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\df2a920b8e863d14ab8503f96c7b3ecd\VistaBridgeLibrary.ni.dll</p><p>2011-05-11 07:46 - 2011-07-19 07:15 - 01850328 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll</p><p>2009-07-17 22:21 - 2011-02-27 00:13 - 06053536 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32.dll</p><p>2010-05-28 13:21 - 2011-02-09 21:51 - 01709936 _____ () C:\ProgramData\DivX\Setup\Resource.dll</p><p>2011-02-09 21:58 - 2011-02-09 21:51 - 00198512 _____ () C:\ProgramData\DivX\Setup\finishPlugin.dll</p><p>2014-11-21 11:12 - 2014-11-21 11:12 - 00010752 _____ () C:\Users\Jill\AppData\Local\Temp\nswC758.tmp\System.dll</p><p></p><p>==================== Alternate Data Streams (whitelisted) =========</p><p></p><p>(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)</p><p></p><p>AlternateDataStreams: C:\ProgramData\TEMP:C980DA7D</p><p>AlternateDataStreams: C:\Users\Jill\Downloads\TaxReturn(2).pdf:FS_dl_url</p><p>AlternateDataStreams: C:\Users\Jill\Downloads\Vuze_Installer.exe:FS_dl_url</p><p></p><p>==================== Safe Mode (whitelisted) ===================</p><p></p><p>(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)</p><p></p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McciCMService => "@"="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McciCMService => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"</p><p></p><p>==================== EXE Association (whitelisted) =============</p><p></p><p>(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)</p><p></p><p></p><p>==================== MSCONFIG/TASK MANAGER disabled items =========</p><p></p><p>(Currently there is no automatic fix for this section.)</p><p></p><p></p><p>========================= Accounts: ==========================</p><p></p><p>Administrator (S-1-5-21-630457132-1081628805-2421692627-500 - Administrator - Disabled)</p><p>ASPNET (S-1-5-21-630457132-1081628805-2421692627-1005 - Limited - Enabled)</p><p>Guest (S-1-5-21-630457132-1081628805-2421692627-501 - Limited - Disabled)</p><p>Jill (S-1-5-21-630457132-1081628805-2421692627-1000 - Administrator - Enabled) => C:\Users\Jill</p><p></p><p>==================== Faulty Device Manager Devices =============</p><p></p><p></p><p>==================== Event log errors: =========================</p><p></p><p>Application errors:</p><p>==================</p><p>Error: (11/21/2014 08:54:47 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/20/2014 07:07:05 PM) (Source: Perflib) (EventID: 1008) (User: )</p><p>Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4</p><p></p><p>Error: (11/20/2014 07:07:04 PM) (Source: Perflib) (EventID: 1010) (User: )</p><p>Description: EmdCacheC:\Windows\system32\emdmgmt.dll4</p><p></p><p>Error: (11/20/2014 05:02:21 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/19/2014 08:52:12 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/19/2014 02:38:49 PM) (Source: Perflib) (EventID: 1008) (User: )</p><p>Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4</p><p></p><p>Error: (11/19/2014 02:38:47 PM) (Source: Perflib) (EventID: 1010) (User: )</p><p>Description: EmdCacheC:\Windows\system32\emdmgmt.dll4</p><p></p><p>Error: (11/19/2014 09:50:39 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )</p><p>Description: The entry <C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9> in the hash map cannot be updated.</p><p></p><p>Context: Application, SystemIndex Catalog</p><p></p><p></p><p>Details:</p><p> A device attached to the system is not functioning. (0x8007001f)</p><p></p><p>Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )</p><p>Description: The entry <C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9> in the hash map cannot be updated.</p><p></p><p>Context: Application, SystemIndex Catalog</p><p></p><p></p><p>Details:</p><p> A device attached to the system is not functioning. (0x8007001f)</p><p></p><p></p><p>System errors:</p><p>=============</p><p>Error: (11/21/2014 08:55:04 AM) (Source: Service Control Manager) (EventID: 7026) (User: )</p><p>Description: Null</p><p></p><p>Error: (11/21/2014 08:55:03 AM) (Source: Service Control Manager) (EventID: 7022) (User: )</p><p>Description: HP CUE DeviceDiscovery Service</p><p></p><p>Error: (11/21/2014 08:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )</p><p>Description: McAfee SiteAdvisor Service%%3</p><p></p><p>Error: (11/21/2014 08:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )</p><p>Description: Parallel port driver%%1058</p><p></p><p>Error: (11/20/2014 07:01:19 PM) (Source: volsnap) (EventID: 20) (User: )</p><p>Description: The shadow copies of volume C: were aborted because of a failed free space computation.</p><p></p><p>Error: (11/20/2014 05:02:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: )</p><p>Description: Null</p><p></p><p>Error: (11/20/2014 05:02:38 PM) (Source: Service Control Manager) (EventID: 7022) (User: )</p><p>Description: HP CUE DeviceDiscovery Service</p><p></p><p>Error: (11/20/2014 05:02:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )</p><p>Description: McAfee SiteAdvisor Service%%3</p><p></p><p>Error: (11/20/2014 05:02:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )</p><p>Description: Parallel port driver%%1058</p><p></p><p>Error: (11/19/2014 08:52:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: )</p><p>Description: Null</p><p></p><p></p><p>Microsoft Office Sessions:</p><p>=========================</p><p>Error: (11/21/2014 08:54:47 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/20/2014 07:07:05 PM) (Source: Perflib) (EventID: 1008) (User: )</p><p>Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4</p><p></p><p>Error: (11/20/2014 07:07:04 PM) (Source: Perflib) (EventID: 1010) (User: )</p><p>Description: EmdCacheC:\Windows\system32\emdmgmt.dll4</p><p></p><p>Error: (11/20/2014 05:02:21 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/19/2014 08:52:12 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/19/2014 02:38:49 PM) (Source: Perflib) (EventID: 1008) (User: )</p><p>Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4</p><p></p><p>Error: (11/19/2014 02:38:47 PM) (Source: Perflib) (EventID: 1010) (User: )</p><p>Description: EmdCacheC:\Windows\system32\emdmgmt.dll4</p><p></p><p>Error: (11/19/2014 09:50:39 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )</p><p>Description: Context: Application, SystemIndex Catalog</p><p></p><p></p><p>Details:</p><p> A device attached to the system is not functioning. (0x8007001f)</p><p>C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9</p><p></p><p>Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: )</p><p>Description: Context: Application, SystemIndex Catalog</p><p></p><p></p><p>Details:</p><p> A device attached to the system is not functioning. (0x8007001f)</p><p>C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9</p><p></p><p></p><p>CodeIntegrity Errors:</p><p>===================================</p><p> Date: 2011-07-18 17:42:48.923</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:42:47.587</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:42:47.186</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:42:46.778</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:41:49.618</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:41:49.287</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:41:48.969</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-18 17:41:48.650</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-11 20:42:55.332</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p> Date: 2011-07-11 20:42:55.030</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p></p><p>==================== Memory info ===========================</p><p></p><p>Processor: AMD Sempron(tm) Processor LE-1250</p><p>Percentage of memory in use: 63%</p><p>Total physical RAM: 1981.76 MB</p><p>Available physical RAM: 723.97 MB</p><p>Total Pagefile: 4208.04 MB</p><p>Available Pagefile: 2610.05 MB</p><p>Total Virtual: 2047.88 MB</p><p>Available Virtual: 1901.17 MB</p><p></p><p>==================== Drives ================================</p><p></p><p>Drive c: (OS) (Fixed) (Total:138.96 GB) (Free:51.05 GB) NTFS ==>[Drive with boot components (obtained from BCD)]</p><p>Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:4.91 GB) NTFS</p><p>Drive e: (Sims3EP05) (CDROM) (Total:5.3 GB) (Free:0 GB) UDF</p><p></p><p>==================== MBR & Partition Table ==================</p><p></p><p>========================================================</p><p>Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: 48000000)</p><p>Partition 1: (Not Active) - (Size=55 MB) - (Type=DE)</p><p>Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS)</p><p>Partition 3: (Active) - (Size=139 GB) - (Type=07 NTFS)</p><p></p><p>==================== End Of Log ============================</p><p>Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-11-2014</p><p>Ran by Jill (administrator) on SALIGA on 21-11-2014 17:04:32</p><p>Running from C:\Users\Jill\Downloads</p><p>Loaded Profile: Jill (Available profiles: Jill)</p><p>Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English (United States)</p><p>Internet Explorer Version 9</p><p>Boot Mode: Normal</p><p>Tutorial for Farbar Recovery Scan Tool: <a href="http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/" target="_blank">http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/</a></p><p></p><p>==================== Processes (Whitelisted) =================</p><p></p><p>(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)</p><p></p><p>(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe</p><p>(Microsoft Corporation) C:\Windows\System32\SLsvc.exe</p><p>(Microsoft Corporation) C:\Windows\System32\rundll32.exe</p><p>(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe</p><p>(Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe</p><p>(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe</p><p>(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe</p><p>(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe</p><p>(SoftThinks SAS) C:\Program Files\Dell DataSafe Local Backup\SftService.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe</p><p>(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE</p><p>(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe</p><p>(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE</p><p>(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe</p><p>() C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe</p><p>() C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe</p><p>(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Toaster.exe</p><p>(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe</p><p>(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe</p><p>(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe</p><p>(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe</p><p>() C:\Program Files\DivX\DivX Update\DivXUpdate.exe</p><p>(DivX, LLC) C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe</p><p>(Ask) C:\Program Files\Ask.com\Updater\Updater.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe</p><p>(Microsoft Corporation) C:\Windows\ehome\ehtray.exe</p><p>(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe</p><p>(Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe</p><p>(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe</p><p>(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe</p><p>(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe</p><p>(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe</p><p>(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe</p><p>(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe</p><p>(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe</p><p>(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe</p><p>(Microsoft Corporation) C:\Windows\System32\wuauclt.exe</p><p>(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe</p><p>(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe</p><p>(Google Inc.) C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe</p><p>(Google Inc.) C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe</p><p>(Farbar) C:\Users\Jill\Downloads\FRST(1).exe</p><p></p><p></p><p>==================== Registry (Whitelisted) ==================</p><p></p><p>(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)</p><p></p><p>HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)</p><p>HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4907008 2008-01-17] (Realtek Semiconductor)</p><p>HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)</p><p>HKLM\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter</p><p>HKLM\...\Run: [hpqSRMon] => [X]</p><p>HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2010-09-08] (Apple Inc.)</p><p>HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421160 2010-11-17] (Apple Inc.)</p><p>HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)</p><p>HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems Incorporated)</p><p>HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1230704 2011-01-10] ()</p><p>HKLM\...\Run: [DivX Download Manager] => C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [63360 2010-12-08] (DivX, LLC)</p><p>HKLM\...\Run: [] => [X]</p><p>HKLM\...\Run: [ApnUpdater] => C:\Program Files\Ask.com\Updater\Updater.exe [1646216 2013-01-24] (Ask)</p><p>HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)</p><p>HKLM\...\RunOnce: [Launcher] => C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe [165184 2010-07-20] (Softthinks)</p><p>HKLM\...\RunOnce: [DSUpdateLauncher] => C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe [18240 2010-07-21] (Dell)</p><p>HKLM\...\RunOnce: [STToasterLauncher] => C:\Program Files\Dell DataSafe Local Backup\toasterLauncher.exe [122176 2010-07-20] ()</p><p>Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.)</p><p>HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter</p><p>HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [Google Update] => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-03-10] (Google Inc.)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [86960 2006-09-11] (Macrovision Corporation)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)</p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\MountPoints2: {1167672f-b9f7-11dd-b941-806e6f6e6963} - E:\Autorun.exe</p><p>AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-08-31] (Google)</p><p>Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk</p><p>ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )</p><p>Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk</p><p>ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)</p><p>Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk</p><p>ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)</p><p>Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk</p><p>ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)</p><p>Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk</p><p>ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)</p><p>Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZooskMessenger.lnk</p><p>ShortcutTarget: ZooskMessenger.lnk -> C:\Program Files\ZooskMessenger\ZooskMessenger.exe (No File)</p><p></p><p>==================== Internet (Whitelisted) ====================</p><p></p><p>(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)</p><p></p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Page = <a href="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" target="_blank">http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch</a></p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Start Page = <a href="http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124" target="_blank">http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124</a></p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = <a href="http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124" target="_blank">http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124</a></p><p>HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = <a href="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" target="_blank">http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch</a></p><p>SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = <a href="https://www.google.com/search?q={searchTerms}" target="_blank">https://www.google.com/search?q={searchTerms}</a></p><p>SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =</p><p>SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = <a href="https://www.google.com/search?q={searchTerms}" target="_blank">https://www.google.com/search?q={searchTerms}</a></p><p>SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = <a href="http://127.0.0.1:4664/search&s=XUQOWrT62JGgtv_I_58CM-7UXPI?q={searchTerms}" target="_blank">http://127.0.0.1:4664/search&s=XUQOWrT62JGgtv_I_58CM-7UXPI?q={searchTerms}</a></p><p>BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)</p><p>BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)</p><p>BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)</p><p>BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)</p><p>BHO: DivX HiQ -> {593DDEC6-7468-4cdd-90E1-42DADAA222E9} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)</p><p>BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)</p><p>BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)</p><p>BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)</p><p>BHO: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)</p><p>BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)</p><p>Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)</p><p>Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)</p><p>Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> No Name - {D3B22A92-87A2-47B6-B3E6-A64877B5C242} - No File</p><p>DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} <a href="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab" target="_blank">http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab</a></p><p>Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)</p><p>Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)</p><p>Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)</p><p>Tcpip\Parameters: [DhcpNameServer] 192.168.1.1</p><p></p><p>FireFox:</p><p>========</p><p>FF ProfilePath: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default</p><p>FF DefaultSearchEngine: Web Search (eToolKit)</p><p>FF DefaultSearchUrl: hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=</p><p>FF SelectedSearchEngine: Web Search (eToolKit)</p><p>FF SelectedSearchEngineInDialog: Web Search (eToolKit)</p><p>FF Homepage: hxxp://<a href="http://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official" target="_blank">www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite117" alt=":eek:" title="Eek! :eek:" loading="lazy" data-shortname=":eek:" />fficial</a></p><p>FF Keyword.URL: hxxp://search.etoolkit.com/search?t=ff&&id=0267a875bcf5850734c65eeb52fd9027fd4&q=</p><p>FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()</p><p>FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)</p><p>FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()</p><p>FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)</p><p>FF Plugin: @divx.com/DivX OVS Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)</p><p>FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)</p><p>FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)</p><p>FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)</p><p>FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)</p><p>FF Plugin: @pack.google.com/Google Updater;version=13 -> C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google)</p><p>FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @facebook.com/FBPlugin,version=1.0.3 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )</p><p>FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @movenetworks.com/Quantum Media Player -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)</p><p>FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @yahoo.com/BrowserPlus,version=2.9.8 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.)</p><p>FF user.js: detected! => C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\user.js</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll (Coupons, Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll (Coupons, Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)</p><p>FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)</p><p>FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\bing-zugo.xml</p><p>FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\oneriot-search.xml</p><p>FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml</p><p>FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml</p><p>FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\googledesktop.xml</p><p>FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\toolkitsearch.xml</p><p>FF Extension: AnyColor - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\<a href="mailto:anycolor.pavlos256@gmail.com">anycolor.pavlos256@gmail.com</a> [2010-08-27]</p><p>FF Extension: Cooliris - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\<a href="mailto:piclens@cooliris.com">piclens@cooliris.com</a> [2011-06-22]</p><p>FF Extension: Search Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\<a href="mailto:searchtoolbar@zugo.com">searchtoolbar@zugo.com</a> [2011-01-13]</p><p>FF Extension: Ask Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\<a href="mailto:toolbar@ask.com">toolbar@ask.com</a> [2010-06-02]</p><p>FF Extension: ColorfulTabs - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2014-11-17]</p><p>FF Extension: Microsoft .NET Framework Assistant - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-22]</p><p>FF Extension: Yahoo! Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-11-17]</p><p>FF Extension: WOT - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-11-17]</p><p>FF Extension: FoxTab - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi [2011-05-11]</p><p>FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-05-15]</p><p>FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12]</p><p>FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2010-12-25]</p><p>FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension</p><p>FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-12]</p><p>FF HKLM\...\Firefox\Extensions: [<a href="mailto:smartwebprinting@hp.com">smartwebprinting@hp.com</a>] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3</p><p>FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-05-21]</p><p>FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video</p><p>FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-02-09]</p><p>FF HKLM\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa</p><p>FF Extension: DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-02-09]</p><p>FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [<a href="mailto:moveplayer@movenetworks.com">moveplayer@movenetworks.com</a>] - C:\Users\Jill\AppData\Roaming\Move Networks</p><p>FF Extension: Move Media Player - C:\Users\Jill\AppData\Roaming\Move Networks [2009-05-17]</p><p>FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [<a href="mailto:smartwebprinting@hp.com">smartwebprinting@hp.com</a>] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3</p><p></p><p>Chrome:</p><p>=======</p><p>CHR Profile: C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default</p><p>CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-17]</p><p>CHR Extension: (DivX HiQ) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae [2014-11-17]</p><p>CHR Extension: (Google Wallet) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-17]</p><p>CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2014-11-17]</p><p>CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [2010-12-08]</p><p>CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2010-12-08]</p><p>CHR StartMenuInternet: Google Chrome - C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe</p><p></p><p>========================== Services (Whitelisted) =================</p><p></p><p>(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation)</p><p>R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2008-09-23] (Stardock Corporation) [File not signed]</p><p>S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)</p><p>S2 gupdate1c9a1f07777696d; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.)</p><p>R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]</p><p>R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]</p><p>R2 McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [319488 2009-12-16] (Alcatel-Lucent) [File not signed]</p><p>R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)</p><p>S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)</p><p>R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)</p><p>R2 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [689472 2010-08-20] (SoftThinks SAS)</p><p>S2 McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [X]</p><p></p><p>==================== Drivers (Whitelisted) ====================</p><p></p><p>(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>R0 amacpi; C:\Windows\System32\DRIVERS\null.sys [4608 2008-01-20] (Microsoft Corporation)</p><p>S3 BVRPMPR5; C:\Windows\system32\drivers\BVRPMPR5.SYS [49904 2009-09-30] (Avanquest Software) [File not signed]</p><p>S3 motport; C:\Windows\System32\DRIVERS\motport.sys [23680 2007-06-18] (Motorola)</p><p>R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)</p><p>S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]</p><p>S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]</p><p>S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)</p><p>R0 sptd; C:\Windows\System32\Drivers\sptd.sys [722416 2009-08-09] () [File not signed]</p><p>S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-20] (Microsoft Corporation)</p><p>S3 IpInIp; system32\DRIVERS\ipinip.sys [X]</p><p>S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]</p><p>S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]</p><p></p><p>==================== NetSvcs (Whitelisted) ===================</p><p></p><p></p><p>(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)</p><p></p><p></p><p>==================== One Month Created Files and Folders ========</p><p></p><p>(If an entry is included in the fixlist, the file\folder will be moved.)</p><p></p><p>2014-11-21 17:04 - 2014-11-21 17:04 - 01108992 _____ (Farbar) C:\Users\Jill\Downloads\FRST(1).exe</p><p>2014-11-21 17:03 - 2014-11-21 17:03 - 02117632 _____ (Farbar) C:\Users\Jill\Downloads\FRST64.exe</p><p>2014-11-21 14:56 - 2014-11-21 14:56 - 00037803 _____ () C:\Users\Jill\Downloads\Addition.txt</p><p>2014-11-21 14:54 - 2014-11-21 17:05 - 00026377 _____ () C:\Users\Jill\Downloads\FRST.txt</p><p>2014-11-21 14:49 - 2014-11-21 17:04 - 00000000 ____D () C:\FRST</p><p>2014-11-21 14:49 - 2014-11-21 14:49 - 01108992 _____ (Farbar) C:\Users\Jill\Downloads\FRST.exe</p><p>2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setuperr.log</p><p>2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setupact.log</p><p>2014-11-19 20:45 - 2014-11-19 20:45 - 04977216 _____ (Piriform Ltd) C:\Users\Jill\Downloads\ccsetup419.exe</p><p>2014-11-19 16:41 - 2014-11-20 19:08 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Spotify</p><p>2014-11-19 16:41 - 2014-11-19 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Local\Spotify</p><p>2014-11-19 16:41 - 2014-11-19 16:41 - 00001708 _____ () C:\Users\Jill\Desktop\Spotify.lnk</p><p>2014-11-19 16:41 - 2014-11-19 16:41 - 00001694 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk</p><p>2014-11-19 16:40 - 2014-11-19 16:40 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup(1).exe</p><p>2014-11-19 16:39 - 2014-11-19 16:39 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup.exe</p><p>2014-11-19 09:46 - 2014-11-21 16:47 - 00000288 _____ () C:\Windows\Tasks\UpdaterEX.job</p><p>2014-11-19 09:46 - 2014-11-19 09:46 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\UpdaterEX</p><p>2014-11-19 09:46 - 2014-11-19 09:45 - 00244032 _____ () C:\Users\Jill\Downloads\Firefox_Setup_33.0.exe</p><p>2014-11-19 09:41 - 2014-11-19 09:41 - 00796616 _____ ( ) C:\Users\Jill\Downloads\Firefox_Setup.exe</p><p>2014-11-18 20:39 - 2014-11-21 15:33 - 00000067 _____ () C:\Windows\system32\ToasterLauncherLog.log</p><p>2014-11-18 20:33 - 2014-11-18 20:33 - 00001120 _____ () C:\Users\Jill\Desktop\Dell DataSafe - Shortcut.lnk</p><p>2014-11-18 20:31 - 2014-11-18 20:31 - 00000000 ____D () C:\Users\Jill\My Backup Files</p><p>2014-11-18 20:30 - 2014-11-21 15:33 - 00000000 ____D () C:\Users\Jill\AppData\Local\SoftThinks</p><p>2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks</p><p>2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks</p><p>2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PCDr</p><p>2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows</p><p>2014-11-18 20:27 - 2014-11-18 20:29 - 00000000 ____D () C:\Program Files\My Dell</p><p>2014-11-18 20:21 - 2014-11-19 14:41 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\PCDr</p><p>2014-11-18 20:16 - 2014-11-18 20:17 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher (1).exe</p><p>2014-11-18 19:54 - 2014-11-18 20:11 - 00000000 ____D () C:\Program Files\REGSERVO</p><p>2014-11-18 19:54 - 2014-11-18 19:54 - 00000000 ____D () C:\ProgramData\REGSERVO</p><p>2014-11-18 19:27 - 2014-11-18 19:27 - 00000000 __SHD () C:\System Recovery</p><p>2014-11-18 19:22 - 2014-11-19 04:17 - 00000000 ____D () C:\Temp</p><p>2014-11-18 19:22 - 2006-11-01 18:50 - 00128104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys</p><p>2014-11-18 19:21 - 2014-11-21 15:33 - 00000000 ____D () C:\Program Files\Dell DataSafe Local Backup</p><p>2014-11-18 19:21 - 2014-11-18 19:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe</p><p>2014-11-18 19:16 - 2014-11-18 19:16 - 192354232 _____ () C:\Users\Jill\Downloads\DataSafeLocalBackup_Basic.exe</p><p>2014-11-18 19:14 - 2014-11-18 19:15 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher.exe</p><p>2014-11-18 18:27 - 2014-11-18 18:27 - 00995328 _____ () C:\Users\Jill\Downloads\MicrosoftFixit50784.msi</p><p>2014-11-18 17:25 - 2014-10-23 20:03 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll</p><p>2014-11-18 15:41 - 2014-11-18 15:41 - 00000000 ____D () C:\Windows\TempE0F55605-45F2-0FE6-3DCA-F9083F929337-Signatures</p><p>2014-11-18 15:23 - 2014-11-18 15:43 - 00001945 _____ () C:\Windows\epplauncher.mif</p><p>2014-11-18 15:21 - 2014-11-18 15:42 - 00001828 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk</p><p>2014-11-18 15:21 - 2014-11-18 15:42 - 00000000 ____D () C:\Program Files\Microsoft Security Client</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 12366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 09739776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 01802752 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe</p><p>2014-11-18 09:52 - 2014-11-18 09:52 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe</p><p>2014-11-18 09:52 - 2010-04-05 15:00 - 00221568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys</p><p>2014-11-18 09:34 - 2014-11-18 09:34 - 00834440 _____ (SlimWare Utilities, Inc.) C:\Users\Jill\Downloads\DriverUpdate-setup.exe</p><p>2014-11-18 09:07 - 2014-06-26 17:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe</p><p>2014-11-18 09:07 - 2014-06-26 17:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll</p><p>2014-11-18 09:07 - 2014-06-26 17:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll</p><p>2014-11-18 09:07 - 2014-06-05 23:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe</p><p>2014-11-18 09:06 - 2014-06-15 17:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll</p><p>2014-11-18 09:06 - 2014-06-13 13:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll</p><p>2014-11-18 09:06 - 2014-06-13 13:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll</p><p>2014-11-18 00:22 - 2014-10-09 20:01 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll</p><p>2014-11-18 00:22 - 2014-10-09 20:00 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll</p><p>2014-11-18 00:22 - 2014-10-09 20:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll</p><p>2014-11-18 00:22 - 2014-10-09 18:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll</p><p>2014-11-18 00:19 - 2014-08-26 19:55 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll</p><p>2014-11-18 00:19 - 2014-08-26 19:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll</p><p>2014-11-18 00:16 - 2014-09-18 19:50 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll</p><p>2014-11-18 00:15 - 2014-10-23 20:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll</p><p>2014-11-18 00:13 - 2014-09-09 01:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll</p><p>2014-11-18 00:01 - 2014-08-22 20:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll</p><p>2014-11-17 23:52 - 2014-08-11 21:25 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL</p><p>2014-11-17 23:38 - 2014-10-02 20:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll</p><p>2014-11-17 23:38 - 2014-10-02 20:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll</p><p>2014-11-17 23:38 - 2014-10-02 20:17 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll</p><p>2014-11-17 23:38 - 2014-10-02 20:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll</p><p>2014-11-17 23:24 - 2014-10-17 20:08 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll</p><p>2014-11-17 23:17 - 2014-09-04 18:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys</p><p>2014-11-17 23:15 - 2012-07-25 22:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys</p><p>2014-11-17 23:15 - 2012-07-25 22:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe</p><p>2014-11-17 23:15 - 2012-07-25 22:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll</p><p>2014-11-17 23:15 - 2012-07-25 22:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll</p><p>2014-11-17 23:15 - 2012-07-25 22:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll</p><p>2014-11-17 23:15 - 2012-07-25 22:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll</p><p>2014-11-17 23:15 - 2012-07-25 21:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll</p><p>2014-11-17 23:15 - 2012-07-25 21:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys</p><p>2014-11-17 23:15 - 2012-07-25 21:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys</p><p>2014-11-17 23:15 - 2012-06-02 09:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf</p><p>2014-11-17 23:15 - 2009-07-14 07:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll</p><p>2014-11-17 23:00 - 2014-11-17 23:05 - 00000000 ____D () C:\Windows\system32\MRT</p><p>2014-11-17 22:56 - 2014-10-12 18:34 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys</p><p>2014-11-17 22:54 - 2014-03-25 08:26 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll</p><p>2014-11-17 22:54 - 2013-07-15 23:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll</p><p>2014-11-17 22:54 - 2013-05-01 23:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll</p><p>2014-11-17 22:54 - 2013-05-01 23:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll</p><p>2014-11-17 22:53 - 2014-06-02 05:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll</p><p>2014-11-17 22:53 - 2014-06-02 05:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll</p><p>2014-11-17 22:53 - 2014-06-02 05:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll</p><p>2014-11-17 22:53 - 2014-06-02 05:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll</p><p>2014-11-17 22:53 - 2014-06-02 03:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe</p><p>2014-11-17 22:53 - 2013-10-03 07:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll</p><p>2014-11-17 22:53 - 2013-04-23 23:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll</p><p>2014-11-17 22:53 - 2013-04-23 20:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe</p><p>2014-11-17 22:53 - 2012-11-19 23:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll</p><p>2014-11-17 22:53 - 2012-05-11 10:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll</p><p>2014-11-17 22:53 - 2012-01-09 10:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll</p><p>2014-11-17 22:53 - 2011-10-14 11:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll</p><p>2014-11-17 22:53 - 2011-10-14 11:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll</p><p>2014-11-17 22:52 - 2014-06-13 19:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys</p><p>2014-11-17 22:52 - 2014-06-13 19:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll</p><p>2014-11-17 22:52 - 2014-06-06 03:59 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll</p><p>2014-11-17 22:52 - 2014-05-30 01:53 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys</p><p>2014-11-17 22:52 - 2014-04-26 11:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll</p><p>2014-11-17 22:52 - 2014-04-04 22:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys</p><p>2014-11-17 22:52 - 2014-04-04 20:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys</p><p>2014-11-17 22:52 - 2014-03-09 20:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll</p><p>2014-11-17 22:52 - 2014-02-05 20:56 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll</p><p>2014-11-17 22:52 - 2013-10-29 21:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll</p><p>2014-11-17 22:52 - 2013-10-29 21:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll</p><p>2014-11-17 22:52 - 2013-10-29 20:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys</p><p>2014-11-17 22:52 - 2013-10-29 19:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys</p><p>2014-11-17 22:52 - 2013-10-10 21:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll</p><p>2014-11-17 22:52 - 2013-10-10 21:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx</p><p>2014-11-17 22:52 - 2013-10-10 21:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll</p><p>2014-11-17 22:52 - 2013-10-10 19:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe</p><p>2014-11-17 22:52 - 2013-10-10 19:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe</p><p>2014-11-17 22:52 - 2013-08-26 21:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll</p><p>2014-11-17 22:52 - 2013-08-26 21:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll</p><p>2014-11-17 22:52 - 2013-08-26 21:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll</p><p>2014-11-17 22:52 - 2013-08-26 21:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll</p><p>2014-11-17 22:52 - 2013-08-26 20:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll</p><p>2014-11-17 22:52 - 2013-08-26 20:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll</p><p>2014-11-17 22:52 - 2013-08-26 20:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll</p><p>2014-11-17 22:52 - 2013-08-26 20:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll</p><p>2014-11-17 22:52 - 2013-08-26 20:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll</p><p>2014-11-17 22:52 - 2013-08-01 23:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL</p><p>2014-11-17 22:52 - 2013-07-20 05:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll</p><p>2014-11-17 22:52 - 2013-07-10 04:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll</p><p>2014-11-17 22:52 - 2013-07-09 07:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll</p><p>2014-11-17 22:52 - 2013-07-07 23:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe</p><p>2014-11-17 22:52 - 2013-07-07 23:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe</p><p>2014-11-17 22:52 - 2013-06-28 21:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys</p><p>2014-11-17 22:52 - 2013-06-28 21:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys</p><p>2014-11-17 22:52 - 2013-06-28 21:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys</p><p>2014-11-17 22:52 - 2013-06-28 21:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys</p><p>2014-11-17 22:52 - 2013-06-26 18:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys</p><p>2014-11-17 22:52 - 2013-06-15 08:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll</p><p>2014-11-17 22:52 - 2013-06-15 06:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys</p><p>2014-11-17 22:52 - 2013-03-08 22:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll</p><p>2014-11-17 22:52 - 2013-03-08 20:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe</p><p>2014-11-17 22:52 - 2013-03-03 14:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys</p><p>2014-11-17 22:52 - 2012-11-21 22:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll</p><p>2014-11-17 22:52 - 2012-11-02 05:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll</p><p>2014-11-17 22:52 - 2012-11-02 03:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe</p><p>2014-11-17 22:52 - 2012-09-25 11:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll</p><p>2014-11-17 22:52 - 2012-08-21 06:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys</p><p>2014-11-17 22:52 - 2012-06-29 11:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll</p><p>2014-11-17 22:52 - 2012-03-20 18:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys</p><p>2014-11-17 22:52 - 2011-12-14 11:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll</p><p>2014-11-17 22:52 - 2011-10-25 10:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll</p><p>2014-11-17 22:52 - 2011-10-14 11:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll</p><p>2014-11-17 22:52 - 2011-08-25 11:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll</p><p>2014-11-17 22:52 - 2011-08-25 11:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll</p><p>2014-11-17 22:52 - 2011-08-25 08:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll</p><p>2014-11-17 22:52 - 2011-07-29 11:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll</p><p>2014-11-17 22:52 - 2011-07-29 11:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax</p><p>2014-11-17 22:52 - 2011-07-29 11:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax</p><p>2014-11-17 22:52 - 2011-07-29 11:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax</p><p>2014-11-17 22:52 - 2011-07-06 10:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys</p><p>2014-11-17 22:52 - 2011-05-05 08:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys</p><p>2014-11-17 22:52 - 2011-05-05 08:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys</p><p>2014-11-17 22:51 - 2014-01-30 02:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll</p><p>2014-11-17 22:51 - 2013-10-22 02:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll</p><p>2014-11-17 22:51 - 2013-10-10 21:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL</p><p>2014-11-17 22:51 - 2013-10-10 21:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL</p><p>2014-11-17 22:51 - 2013-10-10 19:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF</p><p>2014-11-17 22:51 - 2013-07-03 23:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll</p><p>2014-11-17 22:51 - 2013-07-02 21:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys</p><p>2014-11-17 22:51 - 2013-06-03 23:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll</p><p>2014-11-17 22:51 - 2013-06-03 20:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll</p><p>2014-11-17 22:51 - 2013-04-17 07:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll</p><p>2014-11-17 22:51 - 2013-03-07 22:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll</p><p>2014-11-17 22:51 - 2013-03-07 22:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll</p><p>2014-11-17 22:51 - 2013-02-11 20:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys</p><p>2014-11-17 22:51 - 2012-11-07 22:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll</p><p>2014-11-17 22:51 - 2012-06-04 10:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys</p><p>2014-11-17 22:51 - 2012-05-01 09:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys</p><p>2014-11-17 22:51 - 2012-02-29 10:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll</p><p>2014-11-17 22:51 - 2012-02-29 08:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys</p><p>2014-11-17 22:51 - 2011-11-16 11:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll</p><p>2014-11-17 22:51 - 2011-11-16 11:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll</p><p>2014-11-17 22:51 - 2011-11-16 09:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe</p><p>2014-11-17 22:51 - 2011-06-15 11:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll</p><p>2014-11-17 22:38 - 2013-07-07 23:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll</p><p>2014-11-17 22:38 - 2013-07-07 23:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll</p><p>2014-11-17 22:38 - 2013-07-07 23:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll</p><p>2014-11-17 22:29 - 2014-11-17 22:29 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (5).exe</p><p>2014-11-17 21:56 - 2014-11-17 21:56 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (4).exe</p><p>2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\MSDOS.SYS</p><p>2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\IO.SYS</p><p>2014-11-17 21:20 - 2014-11-17 21:20 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (2).exe</p><p>2014-11-17 19:02 - 2012-06-02 17:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll</p><p>2014-11-17 19:02 - 2012-06-02 17:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll</p><p>2014-11-17 19:02 - 2012-06-02 17:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe</p><p>2014-11-17 19:02 - 2012-06-02 17:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll</p><p>2014-11-17 19:02 - 2012-06-02 17:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll</p><p>2014-11-17 19:02 - 2012-06-02 17:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll</p><p>2014-11-17 19:02 - 2012-06-02 17:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll</p><p>2014-11-17 19:02 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll</p><p>2014-11-17 19:02 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe</p><p></p><p>==================== One Month Modified Files and Folders =======</p><p></p><p>(If an entry is included in the fixlist, the file\folder will be moved.)</p><p></p><p>2014-11-21 16:55 - 2009-10-15 16:53 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job</p><p>2014-11-21 16:27 - 2009-06-30 02:37 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job</p><p>2014-11-21 15:36 - 2008-11-24 02:15 - 01058518 _____ () C:\Windows\WindowsUpdate.log</p><p>2014-11-21 15:36 - 2006-11-02 05:33 - 00869052 _____ () C:\Windows\system32\PerfStringBackup.INI</p><p>2014-11-21 15:35 - 2009-03-10 21:23 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job</p><p>2014-11-21 15:32 - 2009-06-30 02:37 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job</p><p>2014-11-21 15:31 - 2006-11-02 08:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT</p><p>2014-11-21 15:31 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0</p><p>2014-11-21 15:31 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0</p><p>2014-11-21 15:30 - 2006-11-02 08:01 - 00032622 _____ () C:\Windows\Tasks\SCHEDLGU.TXT</p><p>2014-11-21 11:53 - 2008-12-25 09:24 - 00027648 _____ () C:\Users\Jill\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini</p><p>2014-11-21 11:12 - 2010-05-28 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus</p><p>2014-11-21 11:12 - 2010-05-28 13:19 - 00000000 ____D () C:\Program Files\DivX</p><p>2014-11-21 11:12 - 2010-03-27 14:10 - 00000000 ____D () C:\ProgramData\DivX</p><p>2014-11-21 08:57 - 2009-03-10 21:23 - 00000000 ____D () C:\ProgramData\Google Updater</p><p>2014-11-19 21:10 - 2008-11-24 07:25 - 00000000 ____D () C:\Program Files\Java</p><p>2014-11-19 21:03 - 2009-08-09 19:07 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Pro</p><p>2014-11-19 21:03 - 2009-08-09 18:13 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Lite</p><p>2014-11-19 21:03 - 2008-02-03 18:07 - 00000000 ____D () C:\Windows\Panther</p><p>2014-11-19 20:46 - 2010-12-26 19:13 - 00000806 _____ () C:\Users\Public\Desktop\CCleaner.lnk</p><p>2014-11-19 20:46 - 2010-12-26 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner</p><p>2014-11-19 20:46 - 2010-05-25 14:17 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner</p><p>2014-11-19 20:46 - 2010-05-25 14:16 - 00000000 ____D () C:\Program Files\CCleaner</p><p>2014-11-19 00:55 - 2009-10-15 16:53 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job</p><p>2014-11-18 22:23 - 2010-06-02 20:42 - 00000000 ____D () C:\Program Files\Ask.com</p><p>2014-11-18 20:31 - 2008-12-25 08:51 - 00000000 ____D () C:\Users\Jill</p><p>2014-11-18 20:29 - 2008-12-25 08:52 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Dell</p><p>2014-11-18 20:29 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell</p><p>2014-11-18 20:29 - 2008-11-24 07:35 - 00000000 ____D () C:\Program Files\Dell Support Center</p><p>2014-11-18 20:26 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Dell</p><p>2014-11-18 19:21 - 2008-11-24 07:27 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information</p><p>2014-11-18 19:17 - 2008-11-24 07:27 - 00000000 ____D () C:\Program Files\Common Files\InstallShield</p><p>2014-11-18 19:10 - 2006-11-02 07:37 - 00000000 ___RD () C:\Users\Public\Recorded TV</p><p>2014-11-18 18:54 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\Microsoft.NET</p><p>2014-11-18 11:44 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\rescache</p><p>2014-11-18 11:29 - 2008-12-25 08:55 - 00000951 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk</p><p>2014-11-18 11:24 - 2006-11-02 06:18 - 00000000 ___RD () C:\Windows\Offline Web Pages</p><p>2014-11-18 09:52 - 2006-11-02 01:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat</p><p>2014-11-18 09:52 - 2006-11-02 01:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat</p><p>2014-11-18 09:08 - 2006-11-02 07:37 - 00000000 ____D () C:\Program Files\Windows Journal</p><p>2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live</p><p>2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\Program Files\Windows Live</p><p>2014-11-18 08:08 - 2006-11-02 07:47 - 00381648 _____ () C:\Windows\system32\FNTCACHE.DAT</p><p>2014-11-18 08:07 - 2008-12-25 09:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight</p><p>2014-11-18 08:04 - 2006-11-02 07:37 - 00000000 ____D () C:\Windows\system32\XPSViewer</p><p>2014-11-18 08:04 - 2006-11-02 06:18 - 00000000 ____D () C:\Program Files\Common Files\System</p><p>2014-11-18 08:03 - 2008-11-24 02:14 - 00000000 ____D () C:\Windows\system32\RTCOM</p><p>2014-11-17 23:43 - 2008-11-24 07:36 - 00001018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk</p><p>2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works</p><p>2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\Program Files\Microsoft Works</p><p>2014-11-17 23:24 - 2010-06-04 02:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight</p><p>2014-11-17 22:03 - 2011-08-03 23:50 - 00000000 ____D () C:\Windows\Minidump</p><p>2014-11-17 21:44 - 2011-02-10 14:16 - 00000000 ____D () C:\Program Files\CenturyLink</p><p>2014-11-17 21:12 - 2010-03-22 21:03 - 00000000 ____D () C:\ProgramData\f-secure</p><p>2014-11-17 19:42 - 2009-10-15 16:53 - 00002039 _____ () C:\Users\Jill\Desktop\Google Chrome.lnk</p><p>2014-11-17 19:40 - 2009-10-15 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome</p><p>2014-10-31 23:25 - 2006-11-02 05:24 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe</p><p>2014-10-30 06:24 - 2009-10-02 16:15 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe</p><p></p><p>Some content of TEMP:</p><p>====================</p><p>C:\Users\Jill\AppData\Local\Temp\setup.exe</p><p></p><p></p><p>==================== Bamital & volsnap Check =================</p><p></p><p>(There is no automatic fix for files that do not pass verification.)</p><p></p><p>C:\Windows\explorer.exe => File is digitally signed</p><p>C:\Windows\system32\winlogon.exe => File is digitally signed</p><p>C:\Windows\system32\wininit.exe => File is digitally signed</p><p>C:\Windows\system32\svchost.exe => File is digitally signed</p><p>C:\Windows\system32\services.exe => File is digitally signed</p><p>C:\Windows\system32\User32.dll => File is digitally signed</p><p>C:\Windows\system32\userinit.exe => File is digitally signed</p><p>C:\Windows\system32\rpcss.dll => File is digitally signed</p><p>C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed</p><p></p><p></p><p>LastRegBack: 2014-11-21 15:38</p><p></p><p>==================== End Of Log ============================</p></blockquote><p></p>
[QUOTE="Jillayne, post: 303271, member: 31002"] Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-11-2014 Ran by Jill at 2014-11-21 14:56:02 Running from C:\Users\Jill\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1} AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated) Adobe Acrobat 5.0 (HKLM\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.) Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.1.53.64 - Adobe Systems Incorporated) Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.2.152.26 - Adobe Systems Incorporated) Adobe Reader X (10.0.1) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA0000000001}) (Version: 10.0.1 - Adobe Systems Incorporated) Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 11 - Adobe Systems, Inc.) Amazon Kindle For PC v1.1 (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Amazon Kindle For PC) (Version: - ) Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{308B6AEA-DE50-4666-996D-0FA461719D6B}) (Version: 3.3.0.69 - Apple Inc.) Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.) Ask Toolbar (HKLM\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.15.15.0 - Ask.com) <==== ATTENTION Ask Toolbar Updater (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.4.35882 - Ask.com) <==== ATTENTION Bonjour (HKLM\...\{2A981294-F14C-4F0F-9627-D793270922F8}) (Version: 2.0.4.0 - Apple Inc.) Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell) BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden Business Contact Manager for Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation) Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform) Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Conexant D850 PCI V.92 Modem (HKLM\...\CNXT_MODEM_PCI_HSF) (Version: 7.74.00 - Conexant) Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated) Cozi (HKLM\...\{9E96AC7C-F1FB-4A82-933D-ED2A367C207A}) (Version: 1.0.3805.19354 - Cozi Group, Inc.) CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden D1500 (Version: 100.0.206.000 - Hewlett-Packard) Hidden D1500_Help (Version: 100.0.206.000 - Hewlett-Packard) Hidden Dell Best of Web (HKLM\...\{C39A4E1F-9AF1-4FE1-A80E-A5B867FABB42}) (Version: 1.00.0000 - Dell) Dell DataSafe Local Backup - Support Software (HKLM\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: - Dell) Dell DataSafe Local Backup (HKLM\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.48 - Dell) Dell Dock (HKLM\...\{F6CB42B9-F033-4152-8813-FF11DA8E6A78}) (Version: 1.0.0 - Dell) Dell Getting Started Guide (HKLM\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.) Dell-eBay (HKLM\...\{B935C985-A17F-484B-8470-09E4FC27DC26}) (Version: 1.00.0000 - Dell) DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.21 - BVRP Software, Inc) DivX Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.3.0.20 - DivX, LLC) DJ_SF_03_D1500_ProductContext (Version: 100.0.215.000 - Hewlett-Packard) Hidden DJ_SF_03_D1500_Software (Version: 100.0.206.000 - Hewlett-Packard) Hidden DJ_SF_03_D1500_Software_Min (Version: 100.0.206.000 - Hewlett-Packard) Hidden EA Download Manager (HKLM\...\EADM) (Version: 7.2.0.32 - Electronic Arts, Inc.) EDocs (HKLM\...\{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}) (Version: - ) eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden Extended Update (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\UpdaterEX) (Version: - Extended Update) <==== ATTENTION Facebook Plug-In (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Facebook Plug-In) (Version: - Facebook, Inc.) FrostWire 4.21.3 (HKLM\...\FrostWire) (Version: 4.21.3.0 - FrostWire Team) Game Console - WildGames (HKLM\...\Game Console - WildGames) (Version: - WildTangent) Google Chrome (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Google Chrome) (Version: 38.0.2125.122 - Google Inc.) Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google) Google Earth (HKLM\...\{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}) (Version: 6.0.3.2197 - Google) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Updater (HKLM\...\Google Updater) (Version: 2.4.1536.6592 - Google Inc.) GoToAssist 8.0.0.514 (HKLM\...\GoToAssist) (Version: - ) GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP) HP Deskjet D1500 Printer Driver Software 10.0 Rel .3 (HKLM\...\{0CE5F45E-F6CC-4638-B0DD-BB7F6EF56713}) (Version: 10.0 - HP) HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP) HP Photosmart Essential 2.5 (HKLM\...\HP Photosmart Essential) (Version: 2.5 - HP) HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Update (HKLM\...\{787D1A33-A97B-4245-87C0-7174609A540C}) (Version: 5.002.005.003 - Hewlett-Packard) HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden HPSSupply (Version: 100.0.170.000 - Hewlett-Packard) Hidden iTunes (HKLM\...\{FAE36873-1941-4076-A9A5-48812B5EA0B7}) (Version: 10.1.0.56 - Apple Inc.) MarketResearch (Version: 100.0.170.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - ) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office Accounting 2008 (HKLM\...\Microsoft Office Accounting 2008) (Version: 3.0.8627.1 - Microsoft Corporation) Microsoft Office Accounting 2008 Equifax Addin (HKLM\...\{0C2AF762-0565-4C91-9F55-B8B53BB82A38}) (Version: 3.0.8231.0 - Microsoft Corporation) Microsoft Office Accounting 2008 Fixed Asset Manager (HKLM\...\{E3DF6916-2472-43D9-8B3C-9F2F0AAB01B5}) (Version: 3.0.8231.0 - Microsoft Corporation) Microsoft Office Accounting 2008 PayPal Addin (HKLM\...\{B391EECE-DFEA-4FC5-9D40-47FA43E2DBE6}) (Version: 3.0.8231.0 - Microsoft Corporation) Microsoft Office Accounting ADP Payroll Addin (HKLM\...\{5FA793A6-0071-42C1-9355-8F69A428C44F}) (Version: 0.0.0.0 - ADP) Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Modem Diagnostic Tool (HKLM\...\{294EAADF-E50F-4DD8-AD8D-19587EA10512}) (Version: 1.0.24.0 - Dell) Move Media Player (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Move Media Player) (Version: - Move Networks) Mozilla Firefox 5.0 (x86 en-US) (HKLM\...\Mozilla Firefox 5.0 (x86 en-US)) (Version: 5.0 - Mozilla) MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden MSVCSetup (Version: 1.00.0000 - HP) Hidden My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.) Nancy Drew: Last Train to Blue Moon Canyon (HKLM\...\{EB7A3B64-1373-48AC-902E-F6643F074E3C}) (Version: - ) Nancy Drew: Message in a Haunted Mansion (HKLM\...\{78B55A60-5E51-11D4-A766-00C00C02EDEF}) (Version: - ) Nancy Drew: Secret of the Old Clock (HKLM\...\{70D1416D-C0FF-461C-8AF3-71B98C7F5CA4}) (Version: - ) Nancy Drew: The Creature of Kapu Cave (HKLM\...\{F4EC2FB1-4255-4040-8DE6-5D75FA9D039F}) (Version: - ) Nancy Drew: The Haunted Carousel (HKLM\...\{750B354A-BF46-45E0-86D6-620026703B92}) (Version: - ) Nancy Drew: Treasure in the Royal Tower (HKLM\...\{92D34E42-4C6F-11D5-A76D-006008D256FF}) (Version: - ) NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.53 - BVRP Software, Inc) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - ) NVIDIANetworkDiagnostic (HKLM\...\InstallShield_{EFAD4066-CAF3-4B27-9669-12EED352C376}) (Version: 1.00.0000 - NVIDIA Corporation) OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden Penguins! (HKLM\...\WT016060) (Version: WT016060 - WildTangent) Pixillion Image Converter (HKLM\...\Pixillion) (Version: - NCH Software) Prism Video Converter (HKLM\...\Prism) (Version: - NCH Software) PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden QPST (HKLM\...\{31228E31-2BFF-11D2-8866-00805F0D9D40}) (Version: - ) QuickTime (HKLM\...\{E7004147-2CCA-431C-AA05-2AB166B9785D}) (Version: 7.68.75.0 - Apple Inc.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - ) Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP) SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden Spotify (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB) Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden Switch Sound File Converter (HKLM\...\Switch) (Version: - NCH Software) System Requirements Lab CYRI (HKLM\...\{6FCBE08B-EB47-448E-8566-CE38E8B8D065}) (Version: 4.4.16.0 - Husdawg, LLC) TaxCut Premium + State + Efile 2008 (HKLM\...\{BBB33AD6-BCF7-4002-B6A0-6DC679AE5C18}) (Version: 08.07.6201 - H & R Block) The Sims™ 3 (HKLM\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.26.89 - Electronic Arts) Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden UnloadSupport (Version: 10.0.0 - Hewlett-Packard) Hidden VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden VoiceOver Kit (HKLM\...\{FB26A501-6BA6-459B-89AA-9736730752FB}) (Version: 1.30.128.0 - Apple Inc.) WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation) Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation) Windows Live Sync (HKLM\...\{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}) (Version: 14.0.8050.1202 - Microsoft Corporation) Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) Yahoo! BrowserPlus 2.9.8 (HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Yahoo! BrowserPlus) (Version: - Yahoo! Inc.) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{0E55CBE1-B06A-49B6-AD8D-9EFAA0160C6F}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.21.57\psuser.dll No File CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{29A96789-9595-4947-BEDB-0FCC776F7DB8}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.2.183.39\goopdate.dll No File CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Chrome\Application\38.0.2125.122\delegate_execute.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{6CE4B8A6-4DB5-4F63-8013-1197503692EF}\InprocServer32 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\YBPAddon_2.9.8.dll (Yahoo! Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{C98FE784-B96E-41e1-8399-1337AE3E539F}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( ) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{DB25D157-76D4-41C1-97B5-359E4A4CECEB}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.21.65\psuser.dll No File CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{e3e02f12-2adb-478c-8742-5f0819f9f0f4}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{e473a65c-8087-49a3-affd-c5bc4a10669b}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{fc345d4c-b8f4-4674-bff7-3c37d2e535ee}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) CustomCLSID: HKU\S-1-5-21-630457132-1081628805-2421692627-1000_Classes\CLSID\{fd6484ed-ebe3-4c3d-938a-8238003b41b7}\InprocServer32 -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) ==================== Restore Points ========================= 21-11-2014 00:01:21 Scheduled Checkpoint 21-11-2014 16:10:20 Removed Dell Best of Web. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 05:23 - 2006-09-18 16:41 - 00000736 ____A C:\Windows\system32\Drivers\etc\hosts ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {06848250-189F-4C9F-A624-270464B7B8E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.) Task: {34E9C9FA-C4E3-455A-B44C-EB51672CEA8D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {479A0406-4677-4F97-840E-62777EBA1988} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.) Task: {571E95F8-91ED-43FE-9D0C-85A9FCEE875B} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe [2013-01-24] () <==== ATTENTION Task: {687B8D15-EF7F-4E76-84E4-7A69A0323287} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.) Task: {A216E71D-FD57-4FA1-B1C6-2A17E643BEA3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.) Task: {A5124499-2101-4C99-82F2-87E23B7E4552} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-10] (PC-Doctor, Inc.) Task: {AD307C9D-E2DA-46A3-887E-DB60751E3E2D} - System32\Tasks\UpdaterEX => C:\Users\Jill\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION Task: {C735859A-2651-4041-B044-477D3BF4FE80} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.) Task: {D061CDBB-97A8-40AA-B5CE-013E468F82CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd) Task: {D4AD428B-D17B-427C-9A6C-F0DE158D4E91} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-10] (PC-Doctor, Inc.) Task: {EB0D106F-C6F1-40E4-A367-F26613873A2C} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24] (Google) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\Jill\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2014-11-18 19:22 - 2010-07-20 22:33 - 00058688 ____N () C:\Program Files\Dell DataSafe Local Backup\STCoreXml.dll 2014-11-18 19:21 - 2010-07-20 22:33 - 00116032 ____N () C:\Program Files\Dell DataSafe Local Backup\PSTVdsDisk.dll 2014-11-18 19:22 - 2010-07-20 22:33 - 00128320 ____N () C:\Program Files\Dell DataSafe Local Backup\STLog.dll 2014-11-18 19:22 - 2010-07-20 22:36 - 00783680 ____N () C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe 2014-11-18 19:21 - 2010-07-20 22:33 - 01123648 ____N () C:\Program Files\Dell DataSafe Local Backup\LibXml2.dll 2014-11-18 19:22 - 2010-07-20 22:34 - 00079168 ____N () C:\Program Files\Dell DataSafe Local Backup\zlib1.dll 2014-11-18 19:22 - 2010-07-20 22:33 - 00234816 ____N () C:\Program Files\Dell DataSafe Local Backup\STFiles.dll 2014-11-18 19:22 - 2010-07-20 22:34 - 00075072 ____N () C:\Program Files\Dell DataSafe Local Backup\STRegistry.dll 2014-11-18 19:22 - 2010-07-20 22:33 - 00111936 ____N () C:\Program Files\Dell DataSafe Local Backup\STPE.dll 2014-11-18 19:22 - 2010-07-20 22:33 - 00121152 ____N () C:\Program Files\Dell DataSafe Local Backup\STNLS.dll 2014-11-18 19:22 - 2010-07-21 10:35 - 00161088 ____N () C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe 2014-11-18 19:22 - 2010-07-23 17:36 - 00025920 ____N () C:\Program Files\Dell DataSafe Local Backup\SftBRCCPiped.dll 2014-11-18 19:22 - 2010-07-20 22:33 - 00025920 ____N () C:\Program Files\Dell DataSafe Local Backup\STBRCCServCLR.dll 2008-11-24 07:32 - 2010-08-31 09:28 - 00034816 _____ () C:\Program Files\Google\Google Desktop Search\gzlib.dll 2009-09-04 22:15 - 2009-09-04 22:15 - 00067872 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2011-01-10 18:25 - 2011-01-10 18:25 - 01230704 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe 2011-01-10 18:25 - 2011-01-10 18:25 - 00096112 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll 2014-11-18 08:20 - 2014-11-18 08:20 - 00284160 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\df2a920b8e863d14ab8503f96c7b3ecd\VistaBridgeLibrary.ni.dll 2011-05-11 07:46 - 2011-07-19 07:15 - 01850328 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll 2009-07-17 22:21 - 2011-02-27 00:13 - 06053536 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32.dll 2010-05-28 13:21 - 2011-02-09 21:51 - 01709936 _____ () C:\ProgramData\DivX\Setup\Resource.dll 2011-02-09 21:58 - 2011-02-09 21:51 - 00198512 _____ () C:\ProgramData\DivX\Setup\finishPlugin.dll 2014-11-21 11:12 - 2014-11-21 11:12 - 00010752 _____ () C:\Users\Jill\AppData\Local\Temp\nswC758.tmp\System.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:C980DA7D AlternateDataStreams: C:\Users\Jill\Downloads\TaxReturn(2).pdf:FS_dl_url AlternateDataStreams: C:\Users\Jill\Downloads\Vuze_Installer.exe:FS_dl_url ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McciCMService => "@"="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McciCMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-630457132-1081628805-2421692627-500 - Administrator - Disabled) ASPNET (S-1-5-21-630457132-1081628805-2421692627-1005 - Limited - Enabled) Guest (S-1-5-21-630457132-1081628805-2421692627-501 - Limited - Disabled) Jill (S-1-5-21-630457132-1081628805-2421692627-1000 - Administrator - Enabled) => C:\Users\Jill ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (11/21/2014 08:54:47 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/20/2014 07:07:05 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4 Error: (11/20/2014 07:07:04 PM) (Source: Perflib) (EventID: 1010) (User: ) Description: EmdCacheC:\Windows\system32\emdmgmt.dll4 Error: (11/20/2014 05:02:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2014 08:52:12 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2014 02:38:49 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4 Error: (11/19/2014 02:38:47 PM) (Source: Perflib) (EventID: 1010) (User: ) Description: EmdCacheC:\Windows\system32\emdmgmt.dll4 Error: (11/19/2014 09:50:39 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: The entry <C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9> in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: The entry <C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9> in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) System errors: ============= Error: (11/21/2014 08:55:04 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Null Error: (11/21/2014 08:55:03 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: HP CUE DeviceDiscovery Service Error: (11/21/2014 08:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: McAfee SiteAdvisor Service%%3 Error: (11/21/2014 08:54:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Parallel port driver%%1058 Error: (11/20/2014 07:01:19 PM) (Source: volsnap) (EventID: 20) (User: ) Description: The shadow copies of volume C: were aborted because of a failed free space computation. Error: (11/20/2014 05:02:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Null Error: (11/20/2014 05:02:38 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: HP CUE DeviceDiscovery Service Error: (11/20/2014 05:02:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: McAfee SiteAdvisor Service%%3 Error: (11/20/2014 05:02:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Parallel port driver%%1058 Error: (11/19/2014 08:52:31 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Null Microsoft Office Sessions: ========================= Error: (11/21/2014 08:54:47 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/20/2014 07:07:05 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4 Error: (11/20/2014 07:07:04 PM) (Source: Perflib) (EventID: 1010) (User: ) Description: EmdCacheC:\Windows\system32\emdmgmt.dll4 Error: (11/20/2014 05:02:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2014 08:52:12 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2014 02:38:49 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4 Error: (11/19/2014 02:38:47 PM) (Source: Perflib) (EventID: 1010) (User: ) Description: EmdCacheC:\Windows\system32\emdmgmt.dll4 Error: (11/19/2014 09:50:39 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Context: Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9 Error: (11/19/2014 09:35:18 AM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Context: Application, SystemIndex Catalog Details: A device attached to the system is not functioning. (0x8007001f) C:\USERS\JILL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XY5ANUV5.DEFAULT\CACHE\9 CodeIntegrity Errors: =================================== Date: 2011-07-18 17:42:48.923 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:42:47.587 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:42:47.186 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:42:46.778 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:41:49.618 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:41:49.287 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:41:48.969 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-18 17:41:48.650 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-11 20:42:55.332 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvd3dum.dll because the set of per-page image hashes could not be found on the system. Date: 2011-07-11 20:42:55.030 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\CenturyLink Online Security\Spam Control\fsscoepl.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: AMD Sempron(tm) Processor LE-1250 Percentage of memory in use: 63% Total physical RAM: 1981.76 MB Available physical RAM: 723.97 MB Total Pagefile: 4208.04 MB Available Pagefile: 2610.05 MB Total Virtual: 2047.88 MB Available Virtual: 1901.17 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:138.96 GB) (Free:51.05 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:4.91 GB) NTFS Drive e: (Sims3EP05) (CDROM) (Total:5.3 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: 48000000) Partition 1: (Not Active) - (Size=55 MB) - (Type=DE) Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS) Partition 3: (Active) - (Size=139 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-11-2014 Ran by Jill (administrator) on SALIGA on 21-11-2014 17:04:32 Running from C:\Users\Jill\Downloads Loaded Profile: Jill (Available profiles: Jill) Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English (United States) Internet Explorer Version 9 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [url]http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/[/url] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe (Andrea Electronics Corporation) C:\Windows\System32\AERTSrv.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe (SoftThinks SAS) C:\Program Files\Dell DataSafe Local Backup\SftService.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe () C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe () C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe (SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Toaster.exe (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe () C:\Program Files\DivX\DivX Update\DivXUpdate.exe (DivX, LLC) C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe (Ask) C:\Program Files\Ask.com\Updater\Updater.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (Google Inc.) C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Jill\Downloads\FRST(1).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4907008 2008-01-17] (Realtek Semiconductor) HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google) HKLM\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter HKLM\...\Run: [hpqSRMon] => [X] HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2010-09-08] (Apple Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421160 2010-11-17] (Apple Inc.) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems Incorporated) HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1230704 2011-01-10] () HKLM\...\Run: [DivX Download Manager] => C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [63360 2010-12-08] (DivX, LLC) HKLM\...\Run: [] => [X] HKLM\...\Run: [ApnUpdater] => C:\Program Files\Ask.com\Updater\Updater.exe [1646216 2013-01-24] (Ask) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation) HKLM\...\RunOnce: [Launcher] => C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe [165184 2010-07-20] (Softthinks) HKLM\...\RunOnce: [DSUpdateLauncher] => C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe [18240 2010-07-21] (Dell) HKLM\...\RunOnce: [STToasterLauncher] => C:\Program Files\Dell DataSafe Local Backup\toasterLauncher.exe [122176 2010-07-20] () Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.) HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [DellSupportCenter] => "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [Google Update] => C:\Users\Jill\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-03-10] (Google Inc.) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [86960 2006-09-11] (Macrovision Corporation) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\MountPoints2: {1167672f-b9f7-11dd-b941-806e6f6e6963} - E:\Autorun.exe AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-08-31] (Google) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) Startup: C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZooskMessenger.lnk ShortcutTarget: ZooskMessenger.lnk -> C:\Program Files\ZooskMessenger\ZooskMessenger.exe (No File) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Page = [url]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch[/url] HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Start Page = [url]http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124[/url] HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url]http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=1081124[/url] HKU\S-1-5-21-630457132-1081628805-2421692627-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = [url]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch[/url] SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [url]https://www.google.com/search?q={searchTerms}[/url] SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [url]https://www.google.com/search?q={searchTerms}[/url] SearchScopes: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = [url]http://127.0.0.1:4664/search&s=XUQOWrT62JGgtv_I_58CM-7UXPI?q={searchTerms}[/url] BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) BHO: DivX HiQ -> {593DDEC6-7468-4cdd-90E1-42DADAA222E9} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.) BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.) BHO: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) Toolbar: HKU\S-1-5-21-630457132-1081628805-2421692627-1000 -> No Name - {D3B22A92-87A2-47B6-B3E6-A64877B5C242} - No File DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [url]http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab[/url] Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.) Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default FF DefaultSearchEngine: Web Search (eToolKit) FF DefaultSearchUrl: hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p= FF SelectedSearchEngine: Web Search (eToolKit) FF SelectedSearchEngineInDialog: Web Search (eToolKit) FF Homepage: hxxp://[url="http://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official"]www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official[/url] FF Keyword.URL: hxxp://search.etoolkit.com/search?t=ff&&id=0267a875bcf5850734c65eeb52fd9027fd4&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) FF Plugin: @divx.com/DivX OVS Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @pack.google.com/Google Updater;version=13 -> C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @facebook.com/FBPlugin,version=1.0.3 -> C:\Users\Jill\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( ) FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @movenetworks.com/Quantum Media Player -> C:\Users\Jill\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jill\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKU\S-1-5-21-630457132-1081628805-2421692627-1000: @yahoo.com/BrowserPlus,version=2.9.8 -> C:\Users\Jill\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.) FF user.js: detected! => C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\user.js FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll (Coupons, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll (Coupons, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.) FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\bing-zugo.xml FF SearchPlugin: C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\searchplugins\oneriot-search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\googledesktop.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\toolkitsearch.xml FF Extension: AnyColor - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\[email]anycolor.pavlos256@gmail.com[/email] [2010-08-27] FF Extension: Cooliris - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\[email]piclens@cooliris.com[/email] [2011-06-22] FF Extension: Search Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\[email]searchtoolbar@zugo.com[/email] [2011-01-13] FF Extension: Ask Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\[email]toolbar@ask.com[/email] [2010-06-02] FF Extension: ColorfulTabs - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2014-11-17] FF Extension: Microsoft .NET Framework Assistant - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-22] FF Extension: Yahoo! Toolbar - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-11-17] FF Extension: WOT - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-11-17] FF Extension: FoxTab - C:\Users\Jill\AppData\Roaming\Mozilla\Firefox\Profiles\xy5anuv5.default\Extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi [2011-05-11] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-05-15] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-12-12] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2010-12-25] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-12] FF HKLM\...\Firefox\Extensions: [[email]smartwebprinting@hp.com[/email]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-05-21] FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-02-09] FF HKLM\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa FF Extension: DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-02-09] FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [[email]moveplayer@movenetworks.com[/email]] - C:\Users\Jill\AppData\Roaming\Move Networks FF Extension: Move Media Player - C:\Users\Jill\AppData\Roaming\Move Networks [2009-05-17] FF HKU\S-1-5-21-630457132-1081628805-2421692627-1000\...\Firefox\Extensions: [[email]smartwebprinting@hp.com[/email]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 Chrome: ======= CHR Profile: C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-17] CHR Extension: (DivX HiQ) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae [2014-11-17] CHR Extension: (Google Wallet) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-17] CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Jill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2014-11-17] CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [2010-12-08] CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2010-12-08] CHR StartMenuInternet: Google Chrome - C:\Users\Jill\AppData\Local\Google\Chrome\Application\chrome.exe ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AERTFilters; C:\Windows\system32\AERTSrv.exe [77824 2007-12-05] (Andrea Electronics Corporation) R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2008-09-23] (Stardock Corporation) [File not signed] S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google) S2 gupdate1c9a1f07777696d; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-08-13] (Google Inc.) R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed] R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed] R2 McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [319488 2009-12-16] (Alcatel-Lucent) [File not signed] R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation) S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation) R2 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [689472 2010-08-20] (SoftThinks SAS) S2 McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 amacpi; C:\Windows\System32\DRIVERS\null.sys [4608 2008-01-20] (Microsoft Corporation) S3 BVRPMPR5; C:\Windows\system32\drivers\BVRPMPR5.SYS [49904 2009-09-30] (Avanquest Software) [File not signed] S3 motport; C:\Windows\System32\DRIVERS\motport.sys [23680 2007-06-18] (Motorola) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation) S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2009-12-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [722416 2009-08-09] () [File not signed] S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-20] (Microsoft Corporation) S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-21 17:04 - 2014-11-21 17:04 - 01108992 _____ (Farbar) C:\Users\Jill\Downloads\FRST(1).exe 2014-11-21 17:03 - 2014-11-21 17:03 - 02117632 _____ (Farbar) C:\Users\Jill\Downloads\FRST64.exe 2014-11-21 14:56 - 2014-11-21 14:56 - 00037803 _____ () C:\Users\Jill\Downloads\Addition.txt 2014-11-21 14:54 - 2014-11-21 17:05 - 00026377 _____ () C:\Users\Jill\Downloads\FRST.txt 2014-11-21 14:49 - 2014-11-21 17:04 - 00000000 ____D () C:\FRST 2014-11-21 14:49 - 2014-11-21 14:49 - 01108992 _____ (Farbar) C:\Users\Jill\Downloads\FRST.exe 2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setuperr.log 2014-11-20 19:08 - 2014-11-20 19:08 - 00000000 _____ () C:\Windows\setupact.log 2014-11-19 20:45 - 2014-11-19 20:45 - 04977216 _____ (Piriform Ltd) C:\Users\Jill\Downloads\ccsetup419.exe 2014-11-19 16:41 - 2014-11-20 19:08 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Spotify 2014-11-19 16:41 - 2014-11-19 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Local\Spotify 2014-11-19 16:41 - 2014-11-19 16:41 - 00001708 _____ () C:\Users\Jill\Desktop\Spotify.lnk 2014-11-19 16:41 - 2014-11-19 16:41 - 00001694 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2014-11-19 16:40 - 2014-11-19 16:40 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup(1).exe 2014-11-19 16:39 - 2014-11-19 16:39 - 00137888 _____ (Spotify Ltd) C:\Users\Jill\Downloads\SpotifySetup.exe 2014-11-19 09:46 - 2014-11-21 16:47 - 00000288 _____ () C:\Windows\Tasks\UpdaterEX.job 2014-11-19 09:46 - 2014-11-19 09:46 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\UpdaterEX 2014-11-19 09:46 - 2014-11-19 09:45 - 00244032 _____ () C:\Users\Jill\Downloads\Firefox_Setup_33.0.exe 2014-11-19 09:41 - 2014-11-19 09:41 - 00796616 _____ ( ) C:\Users\Jill\Downloads\Firefox_Setup.exe 2014-11-18 20:39 - 2014-11-21 15:33 - 00000067 _____ () C:\Windows\system32\ToasterLauncherLog.log 2014-11-18 20:33 - 2014-11-18 20:33 - 00001120 _____ () C:\Users\Jill\Desktop\Dell DataSafe - Shortcut.lnk 2014-11-18 20:31 - 2014-11-18 20:31 - 00000000 ____D () C:\Users\Jill\My Backup Files 2014-11-18 20:30 - 2014-11-21 15:33 - 00000000 ____D () C:\Users\Jill\AppData\Local\SoftThinks 2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks 2014-11-18 20:30 - 2014-11-18 20:30 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks 2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PCDr 2014-11-18 20:29 - 2014-11-18 20:29 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows 2014-11-18 20:27 - 2014-11-18 20:29 - 00000000 ____D () C:\Program Files\My Dell 2014-11-18 20:21 - 2014-11-19 14:41 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\PCDr 2014-11-18 20:16 - 2014-11-18 20:17 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher (1).exe 2014-11-18 19:54 - 2014-11-18 20:11 - 00000000 ____D () C:\Program Files\REGSERVO 2014-11-18 19:54 - 2014-11-18 19:54 - 00000000 ____D () C:\ProgramData\REGSERVO 2014-11-18 19:27 - 2014-11-18 19:27 - 00000000 __SHD () C:\System Recovery 2014-11-18 19:22 - 2014-11-19 04:17 - 00000000 ____D () C:\Temp 2014-11-18 19:22 - 2006-11-01 18:50 - 00128104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WimFltr.sys 2014-11-18 19:21 - 2014-11-21 15:33 - 00000000 ____D () C:\Program Files\Dell DataSafe Local Backup 2014-11-18 19:21 - 2014-11-18 19:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe 2014-11-18 19:16 - 2014-11-18 19:16 - 192354232 _____ () C:\Users\Jill\Downloads\DataSafeLocalBackup_Basic.exe 2014-11-18 19:14 - 2014-11-18 19:15 - 02087752 _____ (Dell Inc) C:\Users\Jill\Downloads\aulauncher.exe 2014-11-18 18:27 - 2014-11-18 18:27 - 00995328 _____ () C:\Users\Jill\Downloads\MicrosoftFixit50784.msi 2014-11-18 17:25 - 2014-10-23 20:03 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-11-18 15:41 - 2014-11-18 15:41 - 00000000 ____D () C:\Windows\TempE0F55605-45F2-0FE6-3DCA-F9083F929337-Signatures 2014-11-18 15:23 - 2014-11-18 15:43 - 00001945 _____ () C:\Windows\epplauncher.mif 2014-11-18 15:21 - 2014-11-18 15:42 - 00001828 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2014-11-18 15:21 - 2014-11-18 15:42 - 00000000 ____D () C:\Program Files\Microsoft Security Client 2014-11-18 09:52 - 2014-11-18 09:52 - 12366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 09739776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2014-11-18 09:52 - 2014-11-18 09:52 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-11-18 09:52 - 2014-11-18 09:52 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 01802752 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-11-18 09:52 - 2014-11-18 09:52 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2014-11-18 09:52 - 2014-11-18 09:52 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2014-11-18 09:52 - 2014-11-18 09:52 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2014-11-18 09:52 - 2014-11-18 09:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2014-11-18 09:52 - 2014-11-18 09:52 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2014-11-18 09:52 - 2010-04-05 15:00 - 00221568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-11-18 09:34 - 2014-11-18 09:34 - 00834440 _____ (SlimWare Utilities, Inc.) C:\Users\Jill\Downloads\DriverUpdate-setup.exe 2014-11-18 09:07 - 2014-06-26 17:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-11-18 09:07 - 2014-06-26 17:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-11-18 09:07 - 2014-06-26 17:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-11-18 09:07 - 2014-06-05 23:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-11-18 09:06 - 2014-06-15 17:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-11-18 09:06 - 2014-06-13 13:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2014-11-18 09:06 - 2014-06-13 13:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll 2014-11-18 00:22 - 2014-10-09 20:01 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-11-18 00:22 - 2014-10-09 20:00 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-11-18 00:22 - 2014-10-09 20:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2014-11-18 00:22 - 2014-10-09 18:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2014-11-18 00:19 - 2014-08-26 19:55 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-11-18 00:19 - 2014-08-26 19:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-11-18 00:16 - 2014-09-18 19:50 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-11-18 00:15 - 2014-10-23 20:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-11-18 00:13 - 2014-09-09 01:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-11-18 00:01 - 2014-08-22 20:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-11-17 23:52 - 2014-08-11 21:25 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL 2014-11-17 23:38 - 2014-10-02 20:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-11-17 23:38 - 2014-10-02 20:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-11-17 23:38 - 2014-10-02 20:17 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-11-17 23:38 - 2014-10-02 20:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-11-17 23:24 - 2014-10-17 20:08 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-11-17 23:17 - 2014-09-04 18:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2014-11-17 23:15 - 2012-07-25 22:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2014-11-17 23:15 - 2012-07-25 22:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2014-11-17 23:15 - 2012-07-25 22:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2014-11-17 23:15 - 2012-07-25 22:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2014-11-17 23:15 - 2012-07-25 22:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2014-11-17 23:15 - 2012-07-25 22:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2014-11-17 23:15 - 2012-07-25 21:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2014-11-17 23:15 - 2012-07-25 21:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2014-11-17 23:15 - 2012-07-25 21:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2014-11-17 23:15 - 2012-06-02 09:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2014-11-17 23:15 - 2009-07-14 07:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll 2014-11-17 23:00 - 2014-11-17 23:05 - 00000000 ____D () C:\Windows\system32\MRT 2014-11-17 22:56 - 2014-10-12 18:34 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-11-17 22:54 - 2014-03-25 08:26 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-11-17 22:54 - 2013-07-15 23:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll 2014-11-17 22:54 - 2013-05-01 23:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2014-11-17 22:54 - 2013-05-01 23:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll 2014-11-17 22:53 - 2014-06-02 05:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-11-17 22:53 - 2014-06-02 05:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-11-17 22:53 - 2014-06-02 05:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-11-17 22:53 - 2014-06-02 05:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2014-11-17 22:53 - 2014-06-02 03:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-11-17 22:53 - 2013-10-03 07:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-11-17 22:53 - 2013-04-23 23:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll 2014-11-17 22:53 - 2013-04-23 20:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe 2014-11-17 22:53 - 2012-11-19 23:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2014-11-17 22:53 - 2012-05-11 10:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-11-17 22:53 - 2012-01-09 10:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2014-11-17 22:53 - 2011-10-14 11:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll 2014-11-17 22:53 - 2011-10-14 11:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll 2014-11-17 22:52 - 2014-06-13 19:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-11-17 22:52 - 2014-06-13 19:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-11-17 22:52 - 2014-06-06 03:59 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2014-11-17 22:52 - 2014-05-30 01:53 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-11-17 22:52 - 2014-04-26 11:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-11-17 22:52 - 2014-04-04 22:23 - 00915392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-11-17 22:52 - 2014-04-04 20:49 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys 2014-11-17 22:52 - 2014-03-09 20:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-11-17 22:52 - 2014-02-05 20:56 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2014-11-17 22:52 - 2013-10-29 21:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll 2014-11-17 22:52 - 2013-10-29 21:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll 2014-11-17 22:52 - 2013-10-29 20:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys 2014-11-17 22:52 - 2013-10-29 19:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2014-11-17 22:52 - 2013-10-10 21:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll 2014-11-17 22:52 - 2013-10-10 21:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx 2014-11-17 22:52 - 2013-10-10 21:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll 2014-11-17 22:52 - 2013-10-10 19:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe 2014-11-17 22:52 - 2013-10-10 19:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe 2014-11-17 22:52 - 2013-08-26 21:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2014-11-17 22:52 - 2013-08-26 21:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2014-11-17 22:52 - 2013-08-26 21:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2014-11-17 22:52 - 2013-08-26 21:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2014-11-17 22:52 - 2013-08-26 20:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-11-17 22:52 - 2013-08-26 20:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2014-11-17 22:52 - 2013-08-26 20:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2014-11-17 22:52 - 2013-08-26 20:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2014-11-17 22:52 - 2013-08-26 20:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2014-11-17 22:52 - 2013-08-01 23:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2014-11-17 22:52 - 2013-07-20 05:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2014-11-17 22:52 - 2013-07-10 04:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-11-17 22:52 - 2013-07-09 07:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2014-11-17 22:52 - 2013-07-07 23:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2014-11-17 22:52 - 2013-07-07 23:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-11-17 22:52 - 2013-06-28 21:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-11-17 22:52 - 2013-06-28 21:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-11-17 22:52 - 2013-06-28 21:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-11-17 22:52 - 2013-06-28 21:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-11-17 22:52 - 2013-06-26 18:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2014-11-17 22:52 - 2013-06-15 08:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll 2014-11-17 22:52 - 2013-06-15 06:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2014-11-17 22:52 - 2013-03-08 22:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2014-11-17 22:52 - 2013-03-08 20:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2014-11-17 22:52 - 2013-03-03 14:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2014-11-17 22:52 - 2012-11-21 22:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll 2014-11-17 22:52 - 2012-11-02 05:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2014-11-17 22:52 - 2012-11-02 03:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2014-11-17 22:52 - 2012-09-25 11:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll 2014-11-17 22:52 - 2012-08-21 06:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-11-17 22:52 - 2012-06-29 11:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll 2014-11-17 22:52 - 2012-03-20 18:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2014-11-17 22:52 - 2011-12-14 11:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll 2014-11-17 22:52 - 2011-10-25 10:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-11-17 22:52 - 2011-10-14 11:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll 2014-11-17 22:52 - 2011-08-25 11:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2014-11-17 22:52 - 2011-08-25 11:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll 2014-11-17 22:52 - 2011-08-25 08:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll 2014-11-17 22:52 - 2011-07-29 11:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll 2014-11-17 22:52 - 2011-07-29 11:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax 2014-11-17 22:52 - 2011-07-29 11:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax 2014-11-17 22:52 - 2011-07-29 11:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax 2014-11-17 22:52 - 2011-07-06 10:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2014-11-17 22:52 - 2011-05-05 08:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-11-17 22:52 - 2011-05-05 08:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-11-17 22:51 - 2014-01-30 02:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2014-11-17 22:51 - 2013-10-22 02:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2014-11-17 22:51 - 2013-10-10 21:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2014-11-17 22:51 - 2013-10-10 21:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2014-11-17 22:51 - 2013-10-10 19:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF 2014-11-17 22:51 - 2013-07-03 23:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2014-11-17 22:51 - 2013-07-02 21:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2014-11-17 22:51 - 2013-06-03 23:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2014-11-17 22:51 - 2013-06-03 20:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2014-11-17 22:51 - 2013-04-17 07:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll 2014-11-17 22:51 - 2013-03-07 22:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2014-11-17 22:51 - 2013-03-07 22:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-11-17 22:51 - 2013-02-11 20:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2014-11-17 22:51 - 2012-11-07 22:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2014-11-17 22:51 - 2012-06-04 10:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2014-11-17 22:51 - 2012-05-01 09:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-11-17 22:51 - 2012-02-29 10:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2014-11-17 22:51 - 2012-02-29 08:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2014-11-17 22:51 - 2011-11-16 11:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2014-11-17 22:51 - 2011-11-16 11:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2014-11-17 22:51 - 2011-11-16 09:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2014-11-17 22:51 - 2011-06-15 11:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll 2014-11-17 22:38 - 2013-07-07 23:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-11-17 22:38 - 2013-07-07 23:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-11-17 22:38 - 2013-07-07 23:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2014-11-17 22:29 - 2014-11-17 22:29 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (5).exe 2014-11-17 21:56 - 2014-11-17 21:56 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (4).exe 2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\MSDOS.SYS 2014-11-17 21:42 - 2014-11-17 21:42 - 00000000 __RSH () C:\IO.SYS 2014-11-17 21:20 - 2014-11-17 21:20 - 00831632 _____ (F-Secure Corporation) C:\Users\Jill\Downloads\CharterNetworkInstaller_C-W7BGT-ZDQDF-WJD67-4W2EN_ (2).exe 2014-11-17 19:02 - 2012-06-02 17:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-11-17 19:02 - 2012-06-02 17:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-11-17 19:02 - 2012-06-02 17:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-11-17 19:02 - 2012-06-02 17:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-11-17 19:02 - 2012-06-02 17:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-11-17 19:02 - 2012-06-02 17:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-11-17 19:02 - 2012-06-02 17:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-11-17 19:02 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-11-17 19:02 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-21 16:55 - 2009-10-15 16:53 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000UA.job 2014-11-21 16:27 - 2009-06-30 02:37 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-21 15:36 - 2008-11-24 02:15 - 01058518 _____ () C:\Windows\WindowsUpdate.log 2014-11-21 15:36 - 2006-11-02 05:33 - 00869052 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-21 15:35 - 2009-03-10 21:23 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job 2014-11-21 15:32 - 2009-06-30 02:37 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-21 15:31 - 2006-11-02 08:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-21 15:31 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-21 15:31 - 2006-11-02 07:47 - 00003744 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-21 15:30 - 2006-11-02 08:01 - 00032622 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-11-21 11:53 - 2008-12-25 09:24 - 00027648 _____ () C:\Users\Jill\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-11-21 11:12 - 2010-05-28 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus 2014-11-21 11:12 - 2010-05-28 13:19 - 00000000 ____D () C:\Program Files\DivX 2014-11-21 11:12 - 2010-03-27 14:10 - 00000000 ____D () C:\ProgramData\DivX 2014-11-21 08:57 - 2009-03-10 21:23 - 00000000 ____D () C:\ProgramData\Google Updater 2014-11-19 21:10 - 2008-11-24 07:25 - 00000000 ____D () C:\Program Files\Java 2014-11-19 21:03 - 2009-08-09 19:07 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Pro 2014-11-19 21:03 - 2009-08-09 18:13 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\DAEMON Tools Lite 2014-11-19 21:03 - 2008-02-03 18:07 - 00000000 ____D () C:\Windows\Panther 2014-11-19 20:46 - 2010-12-26 19:13 - 00000806 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-11-19 20:46 - 2010-12-26 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-11-19 20:46 - 2010-05-25 14:17 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-11-19 20:46 - 2010-05-25 14:16 - 00000000 ____D () C:\Program Files\CCleaner 2014-11-19 00:55 - 2009-10-15 16:53 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-630457132-1081628805-2421692627-1000Core.job 2014-11-18 22:23 - 2010-06-02 20:42 - 00000000 ____D () C:\Program Files\Ask.com 2014-11-18 20:31 - 2008-12-25 08:51 - 00000000 ____D () C:\Users\Jill 2014-11-18 20:29 - 2008-12-25 08:52 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Dell 2014-11-18 20:29 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2014-11-18 20:29 - 2008-11-24 07:35 - 00000000 ____D () C:\Program Files\Dell Support Center 2014-11-18 20:26 - 2008-11-24 07:44 - 00000000 ____D () C:\ProgramData\Dell 2014-11-18 19:21 - 2008-11-24 07:27 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-11-18 19:17 - 2008-11-24 07:27 - 00000000 ____D () C:\Program Files\Common Files\InstallShield 2014-11-18 19:10 - 2006-11-02 07:37 - 00000000 ___RD () C:\Users\Public\Recorded TV 2014-11-18 18:54 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-11-18 11:44 - 2006-11-02 06:18 - 00000000 ____D () C:\Windows\rescache 2014-11-18 11:29 - 2008-12-25 08:55 - 00000951 _____ () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-11-18 11:24 - 2006-11-02 06:18 - 00000000 ___RD () C:\Windows\Offline Web Pages 2014-11-18 09:52 - 2006-11-02 01:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat 2014-11-18 09:52 - 2006-11-02 01:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat 2014-11-18 09:08 - 2006-11-02 07:37 - 00000000 ____D () C:\Program Files\Windows Journal 2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live 2014-11-18 09:03 - 2008-12-25 09:23 - 00000000 ____D () C:\Program Files\Windows Live 2014-11-18 08:08 - 2006-11-02 07:47 - 00381648 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-11-18 08:07 - 2008-12-25 09:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-11-18 08:04 - 2006-11-02 07:37 - 00000000 ____D () C:\Windows\system32\XPSViewer 2014-11-18 08:04 - 2006-11-02 06:18 - 00000000 ____D () C:\Program Files\Common Files\System 2014-11-18 08:03 - 2008-11-24 02:14 - 00000000 ____D () C:\Windows\system32\RTCOM 2014-11-17 23:43 - 2008-11-24 07:36 - 00001018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk 2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works 2014-11-17 23:43 - 2008-11-24 07:36 - 00000000 ____D () C:\Program Files\Microsoft Works 2014-11-17 23:24 - 2010-06-04 02:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-11-17 22:03 - 2011-08-03 23:50 - 00000000 ____D () C:\Windows\Minidump 2014-11-17 21:44 - 2011-02-10 14:16 - 00000000 ____D () C:\Program Files\CenturyLink 2014-11-17 21:12 - 2010-03-22 21:03 - 00000000 ____D () C:\ProgramData\f-secure 2014-11-17 19:42 - 2009-10-15 16:53 - 00002039 _____ () C:\Users\Jill\Desktop\Google Chrome.lnk 2014-11-17 19:40 - 2009-10-15 16:53 - 00000000 ____D () C:\Users\Jill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-10-31 23:25 - 2006-11-02 05:24 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2014-10-30 06:24 - 2009-10-02 16:15 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe Some content of TEMP: ==================== C:\Users\Jill\AppData\Local\Temp\setup.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-21 15:38 ==================== End Of Log ============================ [/QUOTE]
Insert quotes…
Verification
Post reply
Top