CreateRestorePoint:
() C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
() C:\Program Files\Inbox Toolbar\Inbox.exe
() C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1758280 2016-06-17] ()
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: G - G:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {31e525d3-a0d2-11dd-8f4d-806e6f6e6963} - E:\Start.exe
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {35faa898-a1a4-11e5-ab85-00219bf0cada} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {4a920133-ddf2-11de-b145-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {7308fdf3-d671-11dd-b150-00234d946a18} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {7308fdf8-d671-11dd-b150-00234d946a18} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {7308fe04-d671-11dd-b150-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {7308fe05-d671-11dd-b150-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {7308ff5f-d671-11dd-b150-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {9ba9d963-3899-11de-994d-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {9ba9d987-3899-11de-994d-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {9ba9d989-3899-11de-994d-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {9ba9d9a1-3899-11de-994d-00219bf0cada} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1504278732-3331403366-2529910698-1000\...\MountPoints2: {f35d9154-5e5a-11de-b773-f28d9f3d3f08} - F:\setup_vmc_lite.exe /checkApplicationPresence
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-03-26]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={AFD04AD7-DB03-45B0-B241-7FB2BF381CCB}&mid=b41d0199dff947d1bc92d168dd142329-931055154b6ad30b546f145fab542c6fe4be2d7b&lang=en&ds=AVG&pr=pr&d=2011-09-28 16:56:46&v=10.0.0.7&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> {5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} URL = hxxp://search.alot.com/web?q={searchTerms}&pr=prov&client_id=D8FE563001CC333265556490&install_time=2011-06-25T12:24:35Z&src_id=12287&camp_id=2586&tb_version=2.5.20000.3
SearchScopes: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=VWuL-VYZgp5nZ1OUaEHblndigxs?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={AFD04AD7-DB03-45B0-B241-7FB2BF381CCB}&mid=b41d0199dff947d1bc92d168dd142329-931055154b6ad30b546f145fab542c6fe4be2d7b&lang=en&ds=AVG&pr=pr&d=2011-09-28 16:56:46&v=10.0.0.7&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll [2014-01-16] (McAfee, Inc.)
BHO: ALOT Toolbar Helper -> {14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} -> C:\Program Files\alot\bin\BHO\alotBHO.dll [2011-04-20] (Vertro)
BHO: No Name -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> No File
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKLM - ALOT Toolbar - {5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files\alot\bin\alot.dll [2011-04-20] (Vertro)
Toolbar: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> No Name - {A057A204-BACC-4D26-9990-79A187E2698E} -  No File
Toolbar: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Handler: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} -  No File
FF NewTab: Mozilla\Firefox\Profiles\hbyc7tgm.default -> hxxp://search.myemailxp.com?uid=undefined&uc=undefined&source=pd_gs_email_hotmail_p&page=newtab&implementation_id=Email_xp_0.0.2
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\hbyc7tgm.default -> Yahoo!
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\hbyc7tgm.default -> Ask.com
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\hbyc7tgm.default -> Yahoo!
FF Homepage: Mozilla\Firefox\Profiles\hbyc7tgm.default -> hxxps://www.malwarebytes.org/restorebrowser/yhp-ff
hxxp://search.myemailxp.com?uid=undefined&uc=undefined&source=pd_gs_email_hotmail_p&page=homepage&implementation_id=Email_xp_0.0.2
FF NetworkProxy: Mozilla\Firefox\Profiles\hbyc7tgm.default -> type", 2
FF Extension: (No Name) - C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\Extensions\inboxcomtoolbar@inbox.com [2016-10-08] [not signed]
FF Extension: (My Email XP) - C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\Extensions\jiii-dlXC77evfJ57CC@jetpack.xpi [2015-07-09] [not signed]
FF Extension: (ALOT Toolbar) - C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\Extensions\toolbar@alot.com [2012-04-25] [not signed]
FF Extension: (No Name) - C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\Extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6} [2016-10-08] [not signed]
FF Extension: (No Name) - C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829} [2016-10-08] [not signed]
FF SearchPlugin: C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\searchplugins\ask-search.xml [2014-04-05]
FF SearchPlugin: C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\searchplugins\inbox-search.xml [2015-07-09]
FF SearchPlugin: C:\Users\Deana\AppData\Roaming\Mozilla\Firefox\Profiles\hbyc7tgm.default\searchplugins\search.xml [2015-07-09]
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll [2014-01-16] (McAfee, Inc.)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [198216 2016-06-17] () [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [235696 2014-01-16] (McAfee, Inc.)
CustomCLSID: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\Deana\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-1504278732-3331403366-2529910698-1000_Classes\CLSID\{D166BD15-03AF-413A-BEFD-0679FF410B49}\InprocServer32 -> C:\Users\Deana\AppData\Local\Dropbox\Update\1.3.27.29\psuser.dll => No File
Task: {1A62DE1A-5A22-42BD-8269-929DA77A2AE8} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-11-06] (Google) <==== ATTENTION
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:90D89144 [129]
AlternateDataStreams: C:\ProgramData\TEMP:DFC5A2B2 [210]
C:\Program Files\AskPartnerNetwork
C:\Program Files\Inbox Toolbar
C:\Users\Deana\AppData\LocalLow\Inbox Toolbar
C:\Users\Deana\install_flash_player.exe
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
Hosts:
EmptyTemp:
C:\Program Files\McAfee Security Scan
C:\Program Files\alot