Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Tons of Pop Ups and Extremely Slow (think its infected)

Started by Lexy610 , Nov 03 2013 04:36 PM

  • Please log in to reply

#1
Lexy610
Posted 03 November 2013 - 04:36 PM

Lexy610

    Member

  • Member
  • PipPipPip
  • 743 posts
Hello everyone ...

My son has a HP Computer which he uss and needs alot for school ... It is a Windows Vista Home Premium, Service Pack 2, Processor: AMD Phenom ™ 9150e Quad-Core Processor 1.80 GHZ. Memory 4.00 GB System Type: 64 bit Operating System.

He gets a lot of pop up like one that constantly comes up called "uniblue Speedup My PC 2013". and two other annoying ones. No matter how many times I try to xit out of it .. it just pops up again. It is also extremely slow and takes long just to transition from one thing to another. Also when I log on and takes long to go to a site. It took me a while to go online and click on the geeks to go link ....

Any help is very much appreciated.

Edited by Lexy610, 03 November 2013 - 05:00 PM.

  • 0

Advertisements

#2
RKinner
Posted 03 November 2013 - 06:01 PM

RKinner

    Malware Expert

  • Expert
  • 24,623 posts
  • MVP
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  • 0

#3
Lexy610
Posted 03 November 2013 - 07:56 PM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by [bleep] (administrator) on [bleep]-PC on 03-11-2013 20:51:58
Running from C:\Users\[bleep]\Downloads
Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(AOL LLC) C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(WebEx Communications, Inc.) C:\Windows\SysWOW64\atashost.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe
(COMPANYVERS_NAME) C:\PROGRA~2\TOTALR~2\bar\1.bin\14barsvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
() C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe
(Hewlett-Packard) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [138240 2008-01-20] (Microsoft Corporation)
MountPoints2: {1ca3a839-c432-11df-9630-00038a000015} - L:\LaunchU3.exe -a
MountPoints2: {af77258c-66aa-11de-9f2d-00038a000015} - L:\LaunchU3.exe -a
HKLM-x32\...\Run: [TotalRecipeSearch Search Scope Monitor] - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14SrchMn.exe [42536 2013-03-17] (MindSpark)
HKU\Chezy\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Chezy\...\Run: [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Chezy\...\Run: [msnmsgr] - "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
HKU\Chezy\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [138240 2008-01-20] (Microsoft Corporation)
HKU\Chezy\...\Run: [ares] - "C:\Program Files (x86)\Ares\Ares.exe" -h
HKU\Chezy\...\Run: [WMPNSCFG] - C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Guest\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Guest\...\Run: [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Guest\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.exe -update activex
AppInit_DLLs-x32: c:\progra~2\bcool\sprote~1.dll [1030144 2013-01-15] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?l=dis&o=15866
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...bestbuy&pf=cndt
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://inboxtoolbars...tb_id&%language
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.optimum.net/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,SearchAssistant = http://inboxtoolbars...d=80094&tmpl=10
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,CustomizeSearch = http://inboxtoolbars...aspx?tbid=80094
URLSearchHook: HKLM-x32 - WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
URLSearchHook: HKCU - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
URLSearchHook: HKCU - WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
URLSearchHook: HKCU - (No Name) - {8a7d2060-824d-4b17-b00a-759b1b5f30d9} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14SrcAs.dll (MindSpark)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {1F88DD1E-E4ED-4156-9210-1BBDF7963D57} URL = http://search.live.c...ms}&FORM=HPDTDF
SearchScopes: HKLM - {BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} URL = http://www.ask.com/w...}&l=dis&o=ushpd
SearchScopes: HKLM-x32 - {09971cee-01b8-42bc-9d91-456b1faad6be} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKLM-x32 - {1F88DD1E-E4ED-4156-9210-1BBDF7963D57} URL = http://search.live.c...ms}&FORM=HPDTDF
SearchScopes: HKLM-x32 - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://search.aol.co...ionType=tb50ie7
SearchScopes: HKLM-x32 - {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...&ctid=CT1572363
SearchScopes: HKLM-x32 - {BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} URL = http://www.ask.com/w...}&l=dis&o=ushpd
SearchScopes: HKCU - DefaultScope {7D23411B-6EAE-481F-9E50-4C22F36B2528} URL = http://search.condui...502729571302232
SearchScopes: HKCU - {09971cee-01b8-42bc-9d91-456b1faad6be} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylo...00000225f8304a0
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://asksearch.ask...={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://www.mystart.c...q={searchTerms}
SearchScopes: HKCU - {409DD3B4-D1F8-EC6E-EDBD-2367FDA78762} URL = http://www.bing.com/...015&form=ZGAIDF
SearchScopes: HKCU - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://search.aol.co...ionType=tb50ie7
SearchScopes: HKCU - {4D9A2001-C963-48A9-B60D-FB0DC7AC449C} URL = http://search.yahoo....36,19890,0,18,0
SearchScopes: HKCU - {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKCU - {5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} URL = http://search.alot.c...rsion=2.5.6.471
SearchScopes: HKCU - {7D23411B-6EAE-481F-9E50-4C22F36B2528} URL = http://search.condui...502729571302232
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.se...e=en_US&tpr=111
SearchScopes: HKCU - {BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} URL = http://www.ask.com/w...}&l=dis&o=ushpd
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://www2.inbox.co...&iwk=255&lng=en
SearchScopes: HKCU - {CF739809-1C6C-47C0-85B9-569DBB141420} URL = http://toolbar.ask.c...m=1&toolbar=FXT
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.11.10\bh\BabylonToolbar.dll (Babylon BHO)
BHO-x32: FaceSmooch Toolbar - {3c490bf5-4244-4310-b4a7-3361f288dac5} - No File
BHO-x32: Updater For FaceSmooch Toolbar - {41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} - No File
BHO-x32: WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
BHO-x32: Bcool - {86652DB0-9C33-66EC-78A1-A93F43C41A24} - No File
BHO-x32: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
BHO-x32: Toolbar BHO - {ab56dfde-0c14-45b3-9df6-7b0eba617870} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14bar.dll (MindSpark)
BHO-x32: hpBHO Class - {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: TheSea.TheSeaPlugin - {C585D593-E7F3-4852-A200-561686EE02E4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Search Assistant BHO - {df22384f-cf68-4d19-969f-10423715528b} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14SrcAs.dll (MindSpark)
BHO-x32: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files (x86)\kikin\ie_kikin.dll (kikin)
BHO-x32: Yontoo Layers (Drop Down Deals) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo Layers Runtime (Drop Down Deals)\YontooIEClient.dll (Yontoo LLC)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - FaceSmooch Toolbar - {3c490bf5-4244-4310-b4a7-3361f288dac5} - No File
Toolbar: HKLM-x32 - WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.11.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM-x32 - TotalRecipeSearch - {a0154e07-2b48-475c-a82a-80efd84ea33e} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14bar.dll (MindSpark)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
Toolbar: HKCU - No Name - {98279C38-DE4B-4BCF-93C9-8EC26069D6F4} - No File
Toolbar: HKCU - No Name - {37153479-1976-43C3-A1EE-557513977B64} - No File
Toolbar: HKCU - No Name - {E5A1E26F-0D1D-4307-868F-FBD9A374AB54} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {72A0F495-BA60-4524-827B-B36B8C18587A} - No File
DPF: HKLM-x32 {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab
DPF: HKLM-x32 {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfar...etup1.0.1.1.cab
DPF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab
DPF: HKLM-x32 {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinn...ed/wwlaunch.cab
DPF: HKLM-x32 {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab
DPF: HKLM-x32 {9C23D886-43CB-43DE-B2DB-112A68D7E10A} http://lads.myspace....ceUploader2.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll (Cisco Systems, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "urls_to_restore_on_startup": [
CHR Extension: (Bcool) - C:\Users\[bleep]\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpbkhdecldpgchmgkignlpcdnpmccoki\1
CHR Extension: (PlayFizz Platinum Content Add-on) - C:\Users\[bleep]\AppData\Local\Google\Chrome\User Data\Default\Extensions\knbjpbhhfkoodogjcbjemoaidadolapp\1.0.0_0
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx

==================== Services (Whitelisted) =================

R2 atashost; C:\Windows\SysWOW64\atashost.exe [20376 2009-03-06] (WebEx Communications, Inc.)
R2 IHA_MessageCenter; C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [118784 2011-03-24] ()
R2 sprtsvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe [206120 2010-09-29] (SupportSoft, Inc.)
R2 tgsrvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe [185640 2010-09-29] (SupportSoft, Inc.)
R2 TotalRecipeSearch_14Service; C:\PROGRA~2\TOTALR~2\bar\1.bin\14barsvc.exe [42504 2013-03-17] (COMPANYVERS_NAME)

==================== Drivers (Whitelisted) ====================

S3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-09-02] (Brother Industries Ltd.)
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
S3 MREMP50; C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS [21248 2010-03-17] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS [20096 2010-03-17] (Printing Communications Assoc., Inc. (PCAUSA))
S4 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [166944 2008-07-21] (NVIDIA Corporation)
R3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2009-06-05] ()
S3 zghsmdm; C:\Windows\System32\DRIVERS\zghsmdm.sys [129304 2011-03-07] (ZTE Incorporated)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [27632 2008-09-26] (Cyberlink Corp.)
U2 ccEvtMgr;
U2 ccSetMgr;
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [x]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [x]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [x]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [x]
U3 navapsvc;
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 PCD5SRVC{8AAF211B-043E02A9-05040000}; \??\C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms [x]
U3 SAVRT;
U1 SAVRTPEL;
U3 TlntSvr;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-03 19:53 - 2013-11-03 19:53 - 00000000 ____D C:\FRST
2013-11-03 19:52 - 2013-11-03 19:53 - 01957098 _____ (Farbar) C:\Users\[bleep]\Downloads\FRST64.exe
2013-11-03 18:12 - 2013-11-03 18:12 - 00000000 ____D C:\Users\[bleep]\AppData\Local\TotalRecipeSearch_14
2013-11-03 18:12 - 2013-11-03 18:12 - 00000000 ____D C:\Users\[bleep]\AppData\Local\IAC
2013-11-03 18:11 - 2010-06-05 00:36 - 00759288 _____ (MyWebSearch.com) C:\Program Files (x86)\Uninstall Fun Web Products.dll
2013-11-03 17:46 - 2013-11-03 17:46 - 00000000 _____ C:\install.rdf
2013-10-13 02:00 - 2013-10-13 02:00 - 00000000 ____D C:\Windows\CheckSur
2013-10-12 02:09 - 2013-09-22 10:43 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-12 02:09 - 2013-09-22 10:01 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-12 02:09 - 2013-09-22 09:42 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-12 02:09 - 2013-09-22 09:36 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-12 02:09 - 2013-09-22 09:33 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-12 02:09 - 2013-09-22 09:33 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-12 02:09 - 2013-09-22 09:30 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-12 02:09 - 2013-09-22 09:27 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-12 02:09 - 2013-09-22 09:23 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-12 02:09 - 2013-09-22 09:22 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-12 02:09 - 2013-09-22 09:21 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-12 02:09 - 2013-09-22 09:19 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-12 02:09 - 2013-09-22 09:19 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-12 02:09 - 2013-09-22 09:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-12 02:09 - 2013-09-22 09:15 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-12 02:09 - 2013-09-22 09:07 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-12 02:09 - 2013-09-22 05:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-12 02:09 - 2013-09-22 05:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-12 02:09 - 2013-09-22 05:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-12 02:09 - 2013-09-22 05:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-12 02:09 - 2013-09-22 05:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-12 02:09 - 2013-09-22 05:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-12 02:09 - 2013-09-22 05:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-12 02:09 - 2013-09-22 05:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-12 02:09 - 2013-09-22 05:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-12 02:09 - 2013-09-22 05:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-12 02:09 - 2013-09-22 05:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-12 02:09 - 2013-09-22 05:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-12 02:09 - 2013-09-22 05:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-12 02:09 - 2013-09-22 05:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-12 02:09 - 2013-09-22 05:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-12 02:09 - 2013-09-22 04:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 05:35 - 2013-08-29 02:48 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 05:35 - 2013-08-26 22:39 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-10 05:35 - 2013-08-26 22:39 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-10 05:35 - 2013-08-26 22:39 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-10 05:35 - 2013-08-26 22:39 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-10 05:35 - 2013-08-26 21:32 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-10 05:35 - 2013-08-26 21:30 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-10 05:35 - 2013-08-26 21:06 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-10 05:35 - 2013-08-26 21:00 - 01556480 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-10 05:35 - 2013-08-26 21:00 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-10 05:35 - 2013-08-26 20:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-10 05:35 - 2013-08-26 20:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-10 05:35 - 2013-08-26 20:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-10 05:35 - 2013-08-26 20:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-10 05:35 - 2013-07-31 23:10 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 05:35 - 2013-07-31 22:37 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-10 05:35 - 2013-07-20 05:45 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 05:35 - 2013-07-20 05:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 05:35 - 2013-07-12 04:19 - 00099200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 05:35 - 2013-07-03 23:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 05:35 - 2013-07-03 23:13 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 05:35 - 2013-07-02 21:55 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-10 05:35 - 2013-07-02 21:22 - 00031616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00007552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-10 05:35 - 2013-06-26 18:00 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 05:35 - 2013-06-03 23:16 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 05:35 - 2013-06-03 23:16 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 05:35 - 2013-06-03 21:01 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 05:35 - 2013-06-03 20:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 05:35 - 2011-05-05 09:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-10 05:35 - 2011-05-05 09:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

==================== One Month Modified Files and Folders =======

2013-11-03 20:51 - 2013-01-19 00:11 - 00000356 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-11-03 20:17 - 2009-05-05 15:10 - 01693846 _____ C:\Windows\WindowsUpdate.log
2013-11-03 20:06 - 2012-12-25 17:23 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-03 20:01 - 2010-07-09 02:32 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-03 19:56 - 2006-11-02 07:46 - 00005534 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-03 19:53 - 2013-11-03 19:53 - 00000000 ____D C:\FRST
2013-11-03 19:53 - 2013-11-03 19:52 - 01957098 _____ (Farbar) C:\Users\[bleep]\Downloads\FRST64.exe
2013-11-03 19:49 - 2013-01-19 00:09 - 00000392 ____H C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job
2013-11-03 19:49 - 2010-07-09 02:32 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-03 19:49 - 2009-08-16 00:14 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-11-03 19:49 - 2006-11-02 10:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-03 19:49 - 2006-11-02 10:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-03 19:48 - 2009-08-27 13:23 - 00000000 ____D C:\Program Files\Google
2013-11-03 19:48 - 2009-05-18 15:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-03 19:48 - 2008-01-20 22:26 - 01048030 _____ C:\Windows\PFRO.log
2013-11-03 19:48 - 2006-11-02 10:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-03 19:41 - 2006-11-02 10:42 - 00032574 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-03 18:12 - 2013-11-03 18:12 - 00000000 ____D C:\Users\[bleep]\AppData\Local\TotalRecipeSearch_14
2013-11-03 18:12 - 2013-11-03 18:12 - 00000000 ____D C:\Users\[bleep]\AppData\Local\IAC
2013-11-03 18:11 - 2009-05-18 15:27 - 00000000 ____D C:\Program Files (x86)\ooVoo
2013-11-03 18:10 - 2011-02-04 16:02 - 00000000 ____D C:\Users\[bleep]\AppData\Roaming\MP3Rocket
2013-11-03 18:09 - 2010-03-18 14:43 - 00000000 ____D C:\Program Files (x86)\Ask.com
2013-11-03 18:06 - 2009-05-18 15:30 - 00000000 ____D C:\Users\[bleep]\AppData\Local\Google
2013-11-03 18:06 - 2009-05-18 15:29 - 00000000 ____D C:\ProgramData\Google
2013-11-03 17:53 - 2008-11-07 00:54 - 00000000 ____D C:\ProgramData\Norton
2013-11-03 17:46 - 2013-11-03 17:46 - 00000000 _____ C:\install.rdf
2013-11-03 17:45 - 2009-05-18 20:03 - 00000000 ____D C:\Users\[bleep]\AppData\Local\AOL
2013-11-03 17:45 - 2009-05-18 20:01 - 00000000 ____D C:\ProgramData\AOL
2013-11-03 17:16 - 2009-05-18 15:29 - 00000000 ____D C:\Users\[bleep]\AppData\Roaming\Skype
2013-11-03 17:14 - 2013-02-27 23:40 - 00000000 ____D C:\ProgramData\Babylon
2013-11-03 16:56 - 2006-11-02 08:34 - 00000000 ____D C:\Windows\tracing
2013-10-15 01:16 - 2011-06-20 14:06 - 00000000 ____D C:\Users\[bleep]\Incomplete
2013-10-14 02:57 - 2013-09-13 01:05 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-13 02:00 - 2013-10-13 02:00 - 00000000 ____D C:\Windows\CheckSur
2013-10-12 02:56 - 2006-11-02 10:21 - 00400368 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-12 02:55 - 2008-11-07 00:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-12 02:36 - 2009-09-15 15:40 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-12 02:16 - 2013-08-15 02:06 - 00000000 ____D C:\Windows\system32\MRT
2013-10-12 02:12 - 2006-11-02 07:35 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-11 09:36 - 2012-10-11 23:48 - 00000000 ____D C:\Users\[bleep]\AppData\Local\CrashDumps
2013-10-11 07:56 - 2010-07-09 02:32 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-11 07:56 - 2010-07-09 02:32 - 00003640 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-09 18:30 - 2010-09-26 11:56 - 00002651 _____ C:\Users\[bleep]\Desktop\Microsoft Office Word 2007.lnk
2013-10-09 17:25 - 2009-06-10 17:46 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-10-09 00:29 - 2012-12-25 17:23 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 00:29 - 2012-12-25 17:23 - 00003682 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 00:29 - 2011-08-27 18:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-07 18:46 - 2009-05-18 15:39 - 00000456 _____ C:\Windows\Tasks\PCDRScheduledMaintenance.job

Files to move or delete:
====================
C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job


Some content of TEMP:
====================
C:\Users\[bleep]\AppData\Local\Temp\-p020ms_.dll
C:\Users\[bleep]\AppData\Local\Temp\.exe
C:\Users\[bleep]\AppData\Local\Temp\2476.exe
C:\Users\[bleep]\AppData\Local\Temp\3123.exe
C:\Users\[bleep]\AppData\Local\Temp\4BCF.exe
C:\Users\[bleep]\AppData\Local\Temp\5121.exe
C:\Users\[bleep]\AppData\Local\Temp\AcsInstall.dll
C:\Users\[bleep]\AppData\Local\Temp\APNSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\ApnStub.exe
C:\Users\[bleep]\AppData\Local\Temp\atstpip.exe
C:\Users\[bleep]\AppData\Local\Temp\B04A.exe
C:\Users\[bleep]\AppData\Local\Temp\Coupons.com.exe
C:\Users\[bleep]\AppData\Local\Temp\deerdrive-111448437-setup.s111448437.c110268333.len.u.dl.exe
C:\Users\[bleep]\AppData\Local\Temp\default.exe
C:\Users\[bleep]\AppData\Local\Temp\DivXInstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\DropDownDealsSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\E16D.exe
C:\Users\[bleep]\AppData\Local\Temp\FAD7.exe
C:\Users\[bleep]\AppData\Local\Temp\ffunzip.exe
C:\Users\[bleep]\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe
C:\Users\[bleep]\AppData\Local\Temp\GLF86D5.tmp.ConduitEngineSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\[bleep]\AppData\Local\Temp\GUninstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\homepage-protection4EA1..exe
C:\Users\[bleep]\AppData\Local\Temp\jna58769.dll
C:\Users\[bleep]\AppData\Local\Temp\MP3 Rocket FileBulldog.exe
C:\Users\[bleep]\AppData\Local\Temp\nsisdt.dll
C:\Users\[bleep]\AppData\Local\Temp\ooVooTBC.exe
C:\Users\[bleep]\AppData\Local\Temp\ooVooTBing.exe
C:\Users\[bleep]\AppData\Local\Temp\prxGLF86D5.tmp.tbooVo.dll
C:\Users\[bleep]\AppData\Local\Temp\RegAsm.exe
C:\Users\[bleep]\AppData\Local\Temp\SearchWithGoogleUpdate.exe
C:\Users\[bleep]\AppData\Local\Temp\setup.exe
C:\Users\[bleep]\AppData\Local\Temp\SHFOLDER.DLL
C:\Users\[bleep]\AppData\Local\Temp\tbCoup.dll
C:\Users\[bleep]\AppData\Local\Temp\tbooVo.dll
C:\Users\[bleep]\AppData\Local\Temp\TB_89F6.exe
C:\Users\[bleep]\AppData\Local\Temp\temp0NikeConnectconnect5pcupdate.exe
C:\Users\[bleep]\AppData\Local\Temp\The_Weather_Channel_Application.exe
C:\Users\[bleep]\AppData\Local\Temp\uninst1.exe
C:\Users\[bleep]\AppData\Local\Temp\uninstalloption.exe
C:\Users\[bleep]\AppData\Local\Temp\uninstbb.exe
C:\Users\[bleep]\AppData\Local\Temp\Updater.exe
C:\Users\[bleep]\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\[bleep]\AppData\Local\Temp\wcdsetup.exe
C:\Users\[bleep]\AppData\Local\Temp\_is2A01.exe
C:\Users\[bleep]\AppData\Local\Temp\_unps.exe
C:\Users\Chezy\AppData\Local\Temp\360D.exe
C:\Users\Chezy\AppData\Local\Temp\BB72.exe
C:\Users\Chezy\AppData\Local\Temp\F2A8.exe
C:\Users\Chezy\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Chezy\AppData\Local\Temp\jna22893.dll
C:\Users\Chezy\AppData\Local\Temp\jna50604.dll
C:\Users\Chezy\AppData\Local\Temp\SearchWithGoogleUpdate.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-03 19:57

==================== End Of Log ============================
  • 0

#4
Lexy610
Posted 03 November 2013 - 07:58 PM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by [bleep] at 2013-11-03 20:53:29
Running from C:\Users\[bleep]\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (x32)
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.1)
Adobe AIR (x32 Version: 3.1.0.4880)
Adobe Flash Player 10 Plugin (x32 Version: 10.0.42.34)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Reader X (10.1.7) (x32 Version: 10.1.7)
AOL Mail and AIM Gadget (x32 Version: 1.0.0)
AOL Uninstaller (Choose which Products to Remove) (x32)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
Babylon (x32)
Babylon toolbar (x32 Version: 1.8.11.10)
Bcool (x32 Version: )
BCool 1.66 (x32)
Bonjour (Version: 3.0.0.10)
Cisco Network Magic (x32 Version: 5.5.09195.0)
ClipConverter (x32 Version: 1.4)
Deer Drive (x32)
DivX Web Player (x32 Version: 1.5.0)
Download Updater (AOL LLC) (x32)
Enhanced Multimedia Keyboard Solution (x32 Version: 1.0.9.2)
Google Update Helper (x32 Version: 1.3.21.165)
Hardware Diagnostic Tools (Version: 5.1.4976.17)
Homepage Protection (x32 Version: )
HP Active Support Library (x32 Version: 3.1.9.1)
HP Customer Experience Enhancements (x32 Version: 5.7.0.2784)
HP Demo (x32 Version: 1.00.0000)
HP Games (x32 Version: 1.0.0.71)
HP MediaSmart DVD (x32 Version: 2.0.2213)
HP MediaSmart Music/Photo/Video (x32 Version: 2.0.2217)
HP MediaSmart SmartMenu (Version: 2.0.8)
HP Picasso Media Center Add-In (x32 Version: 9.1.7.0)
HP Recovery Manager RSS (x32 Version: 91.0.0.10)
HP Total Care Advisor (x32 Version: 2.4.5106.2815)
HP Total Care Setup (x32 Version: 1.1.1983.2818)
HP Update (x32 Version: 4.000.012.001)
HPAsset component for HP Active Support Library (x32 Version: 3.0.2.2)
iCloud (Version: 2.1.2.8)
IHA_MessageCenter (x32 Version: 1.1.0)
Itibiti RTC (x32 Version: 0.0.1)
iTunes (Version: 11.1.0.126)
Java Auto Updater (x32 Version: 2.0.2.4)
Java™ 6 Update 21 (x32 Version: 6.0.210)
Java™ 6 Update 7 (x32 Version: 1.6.0.70)
Juno Preloader (x32 Version: 1.0.0)
kikin plugin 2.4 (x32 Version: 2.4)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Corporation (Version: 9.0.0.0)
Microsoft Corporation (x32 Version: 9.0.0.0)
Microsoft LifeCam (Version: 2.91.143.0)
Microsoft Live Search Toolbar (x32 Version: 3.0.541.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (x32 Version: 5.1.20913.0)
Microsoft SQL Server Compact 3.5 SP1 English (x32 Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 x64 English (Version: 3.5.5692.0)
Microsoft VC9 runtime libraries (x32 Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Works (x32 Version: 9.7.0621)
MobileMe Control Panel (Version: 3.1.8.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
muvee Reveal (x32 Version: 7.0.35.7315)
Network Magic (x32 Version: 5.5.9195.0)
NetZero Preloader (x32 Version: 1.0.0)
Nike+ Connect (x32 Version: 5.3.8)
NVIDIA Drivers
Optimizer Pro v3.0 (x32 Version: 3.0)
OptimizerPro (Version: 1.0)
PHOTOfunSTUDIO 5.0 (x32 Version: 5.00.012)
PictureMover (x32 Version: 3.3.1.7)
Power2Go (x32 Version: 6.0.2112)
PowerDirector (x32 Version: 7.0.2202)
Pure Networks Platform (x32 Version: 11.2.09195.1)
Python 2.5.2 (x32 Version: 2.5.2150)
QuickTime (x32 Version: 7.73.80.64)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5708)
RTC Client API v1.2 (x32 Version: 1.2.0000)
Skype Click to Call (x32 Version: 6.13.13771)
Skype™ 6.7 (x32 Version: 6.7.102)
Software Version Updater (x32 Version: 1.1.3.6)
The Sea App (Internet Explorer) (x32)
The Weather Channel App (x32)
TotalRecipeSearch Toolbar (x32)
Uninstall AOL Emergency Connect Utility 1.0 (x32)
Uninstall Helper (x32 Version: 2.0.1.0)
Unity Web Player (HKCU Version: )
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Access 2007 Help (KB963663) (x32)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32)
Update for Microsoft Office Infopath 2007 Help (KB963662) (x32)
Update for Microsoft Office OneNote 2007 Help (KB963670) (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2827325) 32-Bit Edition (x32)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32)
Update for Microsoft Office Script Editor Help (KB963671) (x32)
Update for Microsoft Office Word 2007 Help (KB963665) (x32)
VC80CRTRedist - 8.0.50727.762 (x32 Version: 1.0.0)
Verizon Download Manager (x32 Version: 9)
Viewpoint Media Player (x32)
VoiceOver Kit (x32 Version: 1.42.128.0)
Vz In Home Agent (x32 Version: 8.01.17)
WebEx Support Manager for Internet Explorer (x32 Version: 6.5.4917)
WhiteSmoke US New E1 Toolbar (x32 Version: 6.10.3.8)
ZTE Handset USB Driver 5.2066.1.8B02 (Version: 5.2066.1.8B02)

==================== Restore Points =========================

11-10-2013 08:17:43 Scheduled Checkpoint
12-10-2013 07:00:25 Windows Update
13-10-2013 04:00:00 Scheduled Checkpoint
13-10-2013 07:00:12 Windows Update
14-10-2013 04:00:01 Scheduled Checkpoint
03-11-2013 22:43:14 Removed Ask Toolbar
03-11-2013 23:09:12 Removed MP3 Rocket Toolbar.
03-11-2013 23:11:25 Removed ooVoo
03-11-2013 23:16:07 Windows Update

==================== Hosts content: ==========================

2006-11-02 07:34 - 2006-09-18 16:37 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {18DF8084-2E5E-467C-84AB-A3DDAC7814E0} - System32\Tasks\PCDRScheduledMaintenance => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [2008-09-10] (PC-Doctor, Inc.)
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {1BDE1194-D4A8-4910-BB35-00CCCCEEB39D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-07-09] (Google Inc.)
Task: {21D8FAD1-E79A-45A8-AEC7-644A05867A5A} - System32\Tasks\AmiUpdXp => C:\Users\[bleep]\AppData\Local\SwvUpdater\Updater.exe [2013-07-21] (Amonetize ltd.)
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-20] (Microsoft Corporation)
Task: {35EA5A4D-E484-4B60-9E48-647476648C24} - System32\Tasks\IHUninstallTrackingTASK => C:\Windows\System32\CMD
Task: {36ECED4D-FDBE-4264-9BC9-88CA2CB1E26B} - System32\Tasks\HP Health Check => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard)
Task: {3F4937B3-5F2A-4ACB-8560-FA5A72EE1B88} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5A78E856-F9FF-49D2-8AF7-710EA9EB286B} - System32\Tasks\{13338AC8-47C5-4952-BFE0-F1211A2B8299} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-07-25] (Skype Technologies S.A.)
Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {7F75A111-C533-45C7-A02C-83D50A74A6AA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {854FFF36-82EE-46D5-8418-82C6C6E641A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-07-09] (Google Inc.)
Task: {B59EB0D4-382B-4C08-9184-C8476201C287} - System32\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3} => C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe [2013-01-17] ()
Task: {C2E0E97F-6C53-4029-A788-9711936B99DB} - System32\Tasks\4703 => C:\Users\[bleep]\AppData\Local\Temp\launchie.vbsC:\Users\[bleep]\AppData\Local\Temp\launchie.vbs //B
Task: {D7C69F2D-291E-4BD8-A8F5-1A956E329C65} - System32\Tasks\RecoveryCD => C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe [2008-10-20] ()
Task: {E31D2C19-04E0-436D-BABC-F8620ABA6F21} - System32\Tasks\0 => Iexplore.exe
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\System32\gatherWirelessInfo.vbs [2008-01-20] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\[bleep]\AppData\Local\SwvUpdater\Updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PCDRScheduledMaintenance.job => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe
Task: C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job => C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe

==================== Loaded Modules (whitelisted) =============

2011-09-27 06:23 - 2011-09-27 06:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 06:22 - 2011-09-27 06:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-01-15 11:47 - 2013-01-15 11:47 - 01030144 _____ () C:\Program Files (x86)\BCool\sprotector.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:2BDCFAD6
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:F2721624

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/03/2013 07:56:18 PM) (Source: LoadPerf) (User: )
Description: WmiApRplWmiApRpl8

Error: (11/03/2013 07:56:18 PM) (Source: LoadPerf) (User: )
Description: Performance16

Error: (11/03/2013 07:50:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2013 07:32:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3363787

Error: (11/03/2013 07:32:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3363787

Error: (11/03/2013 07:32:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/03/2013 07:32:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3362789

Error: (11/03/2013 07:32:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3362789

Error: (11/03/2013 07:32:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/03/2013 06:14:43 PM) (Source: Windows Search Service) (User: )
Description: The update cannot be started because the content sources cannot be accessed. Fix the errors and try the update again.

Context: Application, SystemIndex Catalog


System errors:
=============
Error: (11/03/2013 07:50:28 PM) (Source: Service Control Manager) (User: )
Description: StarOpen

Error: (11/03/2013 07:48:41 PM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\StarOpen.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (11/03/2013 05:57:31 PM) (Source: DCOM) (User: )
Description: {0002DF01-0000-0000-C000-000000000046}

Error: (11/03/2013 05:55:26 PM) (Source: Service Control Manager) (User: )
Description: StarOpen

Error: (11/03/2013 05:53:39 PM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\StarOpen.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (11/03/2013 05:50:47 PM) (Source: PlugPlayManager) (User: )
Description: The device Root\LEGACY_SYMEVENT\0000 disappeared from the system without first being prepared for removal.

Error: (11/03/2013 04:56:42 PM) (Source: Service Control Manager) (User: )
Description: StarOpen

Error: (11/03/2013 04:56:12 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:26:10 PM on 10/15/2013 was unexpected.

Error: (11/03/2013 04:55:18 PM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\StarOpen.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (10/15/2013 11:49:25 AM) (Source: DCOM) (User: )
Description: {0002DF01-0000-0000-C000-000000000046}


Microsoft Office Sessions:
=========================
Error: (09/23/2013 00:41:41 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6683.5001, Microsoft Office Version: 12.0.6612.1000. This session lasted 5351 seconds with 2940 seconds of active time. This session ended with a crash.

Error: (07/17/2013 00:05:35 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 308 seconds with 180 seconds of active time. This session ended with a crash.

Error: (02/27/2013 07:01:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 578 seconds with 540 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2013-10-12 03:39:08.294
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:05.729
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:05.092
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:04.939
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:04.080
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:03.410
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:02.705
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:01.991
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:01.304
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-12 03:39:00.562
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130924.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 50%
Total physical RAM: 3965.45 MB
Available physical RAM: 1976.13 MB
Total Pagefile: 8149.43 MB
Available Pagefile: 6335.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (HP) (Fixed) (Total:452.6 GB) (Free:343.94 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (FACTORY_IMAGE) (Fixed) (Total:13.16 GB) (Free:1.8 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=453 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=13 GB) - (Type=07 NTFS)

==================== End Of Log ============================
  • 0

#5
RKinner
Posted 03 November 2013 - 09:30 PM

RKinner

    Malware Expert

  • Expert
  • 24,623 posts
  • MVP
Uninstall any of these you can find:

Babylon
Babylon toolbar (
Bcool
BCool 1.66
Homepage Protection
Optimizer Pro v3.0
OptimizerPro
Skype Click to Call
Viewpoint Media Player
WhiteSmoke US New E1 Toolbar



Download the attached fixlist.txt to the same location as FRST
Run FRST and press Fix
A fix log will be generated please post that


Download : ADWCleaner to your desktop. Make sure you get the correct Download button. Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @BleepingComputer

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

Posted Image

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.



Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop. Make sure you get the correct Download button. Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @Author's site
  • Pause your anti-virus. Close all browsers.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


Run FRST again as before (right click and Run As Admin) and hit Scan. Post the log.


Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc  /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

How is it running now?



Ron
  • 0

#6
Lexy610
Posted 03 November 2013 - 10:47 PM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
I dont think you attached the file
  • 0

#7
RKinner
Posted 04 November 2013 - 12:58 AM

RKinner

    Malware Expert

  • Expert
  • 24,623 posts
  • MVP
Try this one
  • 0

#8
Lexy610
Posted 04 November 2013 - 06:07 AM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 31-10-2013
Ran by [bleep] at 2013-11-04 07:06:35 Run:1
Running from C:\Users\[bleep]\Desktop\FRST64
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?l=dis&o=15866
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...bestbuy&pf=cndt
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://inboxtoolbars...tb_id&%language
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.optimum.net/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,SearchAssistant = http://inboxtoolbars...d=80094&tmpl=10
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,CustomizeSearch = http://inboxtoolbars...aspx?tbid=80094
URLSearchHook: HKLM-x32 - WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
URLSearchHook: HKCU - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
URLSearchHook: HKCU - WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
URLSearchHook: HKCU - (No Name) - {8a7d2060-824d-4b17-b00a-759b1b5f30d9} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14SrcAs.dll (MindSpark)
SearchScopes: HKLM - {1F88DD1E-E4ED-4156-9210-1BBDF7963D57} URL = http://search.live.c...ms}&FORM=HPDTDF
SearchScopes: HKLM - {BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} URL = http://www.ask.com/w...}&l=dis&o=ushpd
SearchScopes: HKLM-x32 - {09971cee-01b8-42bc-9d91-456b1faad6be} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKLM-x32 - {1F88DD1E-E4ED-4156-9210-1BBDF7963D57} URL = http://search.live.c...ms}&FORM=HPDTDF
SearchScopes: HKLM-x32 - {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...&ctid=CT1572363
SearchScopes: HKLM-x32 - {BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} URL = http://www.ask.com/w...}&l=dis&o=ushpd
SearchScopes: HKCU - DefaultScope {7D23411B-6EAE-481F-9E50-4C22F36B2528} URL = http://search.condui...502729571302232
SearchScopes: HKCU - {09971cee-01b8-42bc-9d91-456b1faad6be} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylo...00000225f8304a0
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://asksearch.ask...={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://www.mystart.c...q={searchTerms}
SearchScopes: HKCU - {4D9A2001-C963-48A9-B60D-FB0DC7AC449C} URL = http://search.yahoo....36,19890,0,18,0
SearchScopes: HKCU - {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKCU - {5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} URL = http://search.alot.c...rsion=2.5.6.471
SearchScopes: HKCU - {7D23411B-6EAE-481F-9E50-4C22F36B2528} URL = http://search.condui...502729571302232
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.se...e=en_US&tpr=111
SearchScopes: HKCU - {BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} URL = http://www.ask.com/w...}&l=dis&o=ushpd
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://www2.inbox.co...&iwk=255&lng=en
SearchScopes: HKCU - {CF739809-1C6C-47C0-85B9-569DBB141420} URL = http://toolbar.ask.c...m=1&toolbar=FXT
BHO-x32: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.11.10\bh\BabylonToolbar.dll (Babylon BHO)
BHO-x32: FaceSmooch Toolbar - {3c490bf5-4244-4310-b4a7-3361f288dac5} - No File
BHO-x32: Updater For FaceSmooch Toolbar - {41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} - No File
BHO-x32: WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
BHO-x32: Bcool - {86652DB0-9C33-66EC-78A1-A93F43C41A24} - No File
BHO-x32: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
BHO-x32: Toolbar BHO - {ab56dfde-0c14-45b3-9df6-7b0eba617870} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14bar.dll (MindSpark)
BHO-x32: hpBHO Class - {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
BHO-x32: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Search Assistant BHO - {df22384f-cf68-4d19-969f-10423715528b} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14SrcAs.dll (MindSpark)
Toolbar: HKLM-x32 - FaceSmooch Toolbar - {3c490bf5-4244-4310-b4a7-3361f288dac5} - No File
Toolbar: HKLM-x32 - WhiteSmoke US New E1 Toolbar - {72a0f495-ba60-4524-827b-b36b8c18587a} - C:\Program Files (x86)\WhiteSmoke_US_New_E1\prxtbWhit.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.11.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM-x32 - TotalRecipeSearch - {a0154e07-2b48-475c-a82a-80efd84ea33e} - C:\Program Files (x86)\TotalRecipeSearch_14\bar\1.bin\14bar.dll (MindSpark)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
Toolbar: HKCU - No Name - {98279C38-DE4B-4BCF-93C9-8EC26069D6F4} - No File
Toolbar: HKCU - No Name - {37153479-1976-43C3-A1EE-557513977B64} - No File
Toolbar: HKCU - No Name - {E5A1E26F-0D1D-4307-868F-FBD9A374AB54} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {72A0F495-BA60-4524-827B-B36B8C18587A} - No File
C:\Program Files (x86)\Babylon\
R2 TotalRecipeSearch_14Service; C:\PROGRA~2\TOTALR~2\bar\1.bin\14barsvc.exe [42504 2013-03-17] (COMPANYVERS_NAME)
U2 ccEvtMgr;
U2 ccSetMgr;
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [x]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [x]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [x]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [x]
U3 navapsvc;
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 PCD5SRVC{8AAF211B-043E02A9-05040000}; \??\C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms [x]
U3 SAVRT;
U1 SAVRTPEL;
U3 TlntSvr;
C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job
C:\Users\[bleep]\AppData\Local\Temp\-p020ms_.dll
C:\Users\[bleep]\AppData\Local\Temp\.exe
C:\Users\[bleep]\AppData\Local\Temp\2476.exe
C:\Users\[bleep]\AppData\Local\Temp\3123.exe
C:\Users\[bleep]\AppData\Local\Temp\4BCF.exe
C:\Users\[bleep]\AppData\Local\Temp\5121.exe
C:\Users\[bleep]\AppData\Local\Temp\AcsInstall.dll
C:\Users\[bleep]\AppData\Local\Temp\APNSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\ApnStub.exe
C:\Users\[bleep]\AppData\Local\Temp\atstpip.exe
C:\Users\[bleep]\AppData\Local\Temp\B04A.exe
C:\Users\[bleep]\AppData\Local\Temp\Coupons.com.exe
C:\Users\[bleep]\AppData\Local\Temp\deerdrive-111448437-setup.s111448437.c110268333.len.u.dl.exe
C:\Users\[bleep]\AppData\Local\Temp\default.exe
C:\Users\[bleep]\AppData\Local\Temp\DivXInstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\DropDownDealsSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\E16D.exe
C:\Users\[bleep]\AppData\Local\Temp\FAD7.exe
C:\Users\[bleep]\AppData\Local\Temp\ffunzip.exe
C:\Users\[bleep]\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe
C:\Users\[bleep]\AppData\Local\Temp\GLF86D5.tmp.ConduitEngineSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\[bleep]\AppData\Local\Temp\GUninstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\homepage-protection4EA1..exe
C:\Users\[bleep]\AppData\Local\Temp\jna58769.dll
C:\Users\[bleep]\AppData\Local\Temp\MP3 Rocket FileBulldog.exe
C:\Users\[bleep]\AppData\Local\Temp\nsisdt.dll
C:\Users\[bleep]\AppData\Local\Temp\ooVooTBC.exe
C:\Users\[bleep]\AppData\Local\Temp\ooVooTBing.exe
C:\Users\[bleep]\AppData\Local\Temp\prxGLF86D5.tmp.tbooVo.dll
C:\Users\[bleep]\AppData\Local\Temp\RegAsm.exe
C:\Users\[bleep]\AppData\Local\Temp\SearchWithGoogleUpdate.exe
C:\Users\[bleep]\AppData\Local\Temp\setup.exe
C:\Users\[bleep]\AppData\Local\Temp\SHFOLDER.DLL
C:\Users\[bleep]\AppData\Local\Temp\tbCoup.dll
C:\Users\[bleep]\AppData\Local\Temp\tbooVo.dll
C:\Users\[bleep]\AppData\Local\Temp\TB_89F6.exe
C:\Users\[bleep]\AppData\Local\Temp\temp0NikeConnectconnect5pcupdate.exe
C:\Users\[bleep]\AppData\Local\Temp\The_Weather_Channel_Application.exe
C:\Users\[bleep]\AppData\Local\Temp\uninst1.exe
C:\Users\[bleep]\AppData\Local\Temp\uninstalloption.exe
C:\Users\[bleep]\AppData\Local\Temp\uninstbb.exe
C:\Users\[bleep]\AppData\Local\Temp\Updater.exe
C:\Users\[bleep]\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\[bleep]\AppData\Local\Temp\wcdsetup.exe
C:\Users\[bleep]\AppData\Local\Temp\_is2A01.exe
C:\Users\[bleep]\AppData\Local\Temp\_unps.exe
C:\Users\Chezy\AppData\Local\Temp\360D.exe
C:\Users\Chezy\AppData\Local\Temp\BB72.exe
C:\Users\Chezy\AppData\Local\Temp\F2A8.exe
C:\Users\Chezy\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Chezy\AppData\Local\Temp\jna22893.dll
C:\Users\Chezy\AppData\Local\Temp\jna50604.dll
C:\Users\Chezy\AppData\Local\Temp\SearchWithGoogleUpdate.exe
C:\Program Files\PC-Doctor for Windows
C:\ProgramData\BetterSoft
C:\Program Files (x86)\BCool\sprotector.dll
Task: {18DF8084-2E5E-467C-84AB-A3DDAC7814E0} - System32\Tasks\PCDRScheduledMaintenance => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [2008-09-10] (PC-Doctor, Inc.)
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {21D8FAD1-E79A-45A8-AEC7-644A05867A5A} - System32\Tasks\AmiUpdXp => C:\Users\[bleep]\AppData\Local\SwvUpdater\Updater.exe [2013-07-21] (Amonetize ltd.)
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\System32\RacAgent.exe [2008-01-20] (Microsoft Corporation)
Task: {35EA5A4D-E484-4B60-9E48-647476648C24} - System32\Tasks\IHUninstallTrackingTASK => C:\Windows\System32\CMD
Task: {B59EB0D4-382B-4C08-9184-C8476201C287} - System32\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3} => C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe [2013-01-17] ()
Task: {C2E0E97F-6C53-4029-A788-9711936B99DB} - System32\Tasks\4703 => C:\Users\[bleep]\AppData\Local\Temp\launchie.vbsC:\Users\[bleep]\AppData\Local\Temp\launchie.vbs //B
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\[bleep]\AppData\Local\SwvUpdater\Updater.exe
Task: C:\Windows\Tasks\PCDRScheduledMaintenance.job => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe
Task: C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job => C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe
AlternateDataStreams: C:\ProgramData\Temp:2BDCFAD6
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:F2721624



*****************

HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Restore => Value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\SearchAssistant => Value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\CustomizeSearch => Value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\{72a0f495-ba60-4524-827b-b36b8c18587a} => Value not found.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{D8278076-BC68-4484-9233-6E7F1628B56C} => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{72a0f495-ba60-4524-827b-b36b8c18587a} => Value not found.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{8a7d2060-824d-4b17-b00a-759b1b5f30d9} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{8a7d2060-824d-4b17-b00a-759b1b5f30d9} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1F88DD1E-E4ED-4156-9210-1BBDF7963D57} => Key deleted successfully.
HKCR\CLSID\{1F88DD1E-E4ED-4156-9210-1BBDF7963D57} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} => Key deleted successfully.
HKCR\CLSID\{BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{09971cee-01b8-42bc-9d91-456b1faad6be} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{09971cee-01b8-42bc-9d91-456b1faad6be} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{1F88DD1E-E4ED-4156-9210-1BBDF7963D57} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{1F88DD1E-E4ED-4156-9210-1BBDF7963D57} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{56256A51-B582-467e-B8D4-7786EDA79AE0} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{09971cee-01b8-42bc-9d91-456b1faad6be} => Key deleted successfully.
HKCR\CLSID\{09971cee-01b8-42bc-9d91-456b1faad6be} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key deleted successfully.
HKCR\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} => Key deleted successfully.
HKCR\CLSID\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4D9A2001-C963-48A9-B60D-FB0DC7AC449C} => Key deleted successfully.
HKCR\CLSID\{4D9A2001-C963-48A9-B60D-FB0DC7AC449C} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} => Key deleted successfully.
HKCR\CLSID\{56256A51-B582-467e-B8D4-7786EDA79AE0} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} => Key deleted successfully.
HKCR\CLSID\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7D23411B-6EAE-481F-9E50-4C22F36B2528} => Key deleted successfully.
HKCR\CLSID\{7D23411B-6EAE-481F-9E50-4C22F36B2528} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} => Key deleted successfully.
HKCR\CLSID\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} => Key deleted successfully.
HKCR\CLSID\{BDAD8FCA-DC44-4E02-9ACA-468C60B8DF3E} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6} => Key deleted successfully.
HKCR\CLSID\{C04B7D22-5AEC-4561-8F49-27F6269208F6} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420} => Key deleted successfully.
HKCR\CLSID\{CF739809-1C6C-47C0-85B9-569DBB141420} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B} => Key not found.
HKCR\Wow6432Node\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3c490bf5-4244-4310-b4a7-3361f288dac5} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{3c490bf5-4244-4310-b4a7-3361f288dac5} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72a0f495-ba60-4524-827b-b36b8c18587a} => Key not found.
HKCR\Wow6432Node\CLSID\{72a0f495-ba60-4524-827b-b36b8c18587a} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{86652DB0-9C33-66EC-78A1-A93F43C41A24} => Key not found.
HKCR\Wow6432Node\CLSID\{86652DB0-9C33-66EC-78A1-A93F43C41A24} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ab56dfde-0c14-45b3-9df6-7b0eba617870} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{ab56dfde-0c14-45b3-9df6-7b0eba617870} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ABD3B5E1-B268-407B-A150-2641DAB8D898} => Key not found.
HKCR\Wow6432Node\CLSID\{ABD3B5E1-B268-407B-A150-2641DAB8D898} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{df22384f-cf68-4d19-969f-10423715528b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{df22384f-cf68-4d19-969f-10423715528b} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{3c490bf5-4244-4310-b4a7-3361f288dac5} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{3c490bf5-4244-4310-b4a7-3361f288dac5} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{72a0f495-ba60-4524-827b-b36b8c18587a} => Value not found.
HKCR\Wow6432Node\CLSID\{72a0f495-ba60-4524-827b-b36b8c18587a} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} => Value not found.
HKCR\Wow6432Node\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{a0154e07-2b48-475c-a82a-80efd84ea33e} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{a0154e07-2b48-475c-a82a-80efd84ea33e} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Value deleted successfully.
HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} => Value deleted successfully.
HKCR\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4} => Value deleted successfully.
HKCR\CLSID\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{37153479-1976-43C3-A1EE-557513977B64} => Value deleted successfully.
HKCR\CLSID\{37153479-1976-43C3-A1EE-557513977B64} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54} => Value deleted successfully.
HKCR\CLSID\{E5A1E26F-0D1D-4307-868F-FBD9A374AB54} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{72A0F495-BA60-4524-827B-B36B8C18587A} => Value not found.
HKCR\CLSID\{72A0F495-BA60-4524-827B-B36B8C18587A} => Key not found.
C:\Program Files (x86)\Babylon\ => Moved successfully.
TotalRecipeSearch_14Service => Service deleted successfully.
ccEvtMgr => Service deleted successfully.
ccSetMgr => Service deleted successfully.
IpInIp => Service deleted successfully.
MREMP50a64 => Service deleted successfully.
MREMPR5 => Service deleted successfully.
MRENDIS5 => Service deleted successfully.
MRESP50a64 => Service deleted successfully.
navapsvc => Service deleted successfully.
NwlnkFlt => Service deleted successfully.
NwlnkFwd => Service deleted successfully.
PCD5SRVC{8AAF211B-043E02A9-05040000} => Service deleted successfully.
SAVRT => Service deleted successfully.
SAVRTPEL => Service deleted successfully.
TlntSvr => Service deleted successfully.
"C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\-p020ms_.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\2476.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\3123.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\4BCF.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\5121.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\AcsInstall.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\APNSetup.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\ApnStub.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\atstpip.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\B04A.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\Coupons.com.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\deerdrive-111448437-setup.s111448437.c110268333.len.u.dl.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\default.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\DivXInstaller.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\DropDownDealsSetup.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\E16D.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\FAD7.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\ffunzip.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\GLF86D5.tmp.ConduitEngineSetup.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\GUninstaller.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\homepage-protection4EA1..exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\jna58769.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\MP3 Rocket FileBulldog.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\nsisdt.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\ooVooTBC.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\ooVooTBing.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\prxGLF86D5.tmp.tbooVo.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\RegAsm.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\SearchWithGoogleUpdate.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\setup.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\SHFOLDER.DLL" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\tbCoup.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\tbooVo.dll" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\TB_89F6.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\temp0NikeConnectconnect5pcupdate.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\The_Weather_Channel_Application.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\uninst1.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\uninstalloption.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\uninstbb.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\Updater.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\UpdaterCopy.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\wcdsetup.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\_is2A01.exe" => File/Directory not found.
"C:\Users\[bleep]\AppData\Local\Temp\_unps.exe" => File/Directory not found.
C:\Users\Chezy\AppData\Local\Temp\360D.exe => Moved successfully.
C:\Users\Chezy\AppData\Local\Temp\BB72.exe => Moved successfully.
C:\Users\Chezy\AppData\Local\Temp\F2A8.exe => Moved successfully.
C:\Users\Chezy\AppData\Local\Temp\FlashPlayerUpdate.exe => Moved successfully.
C:\Users\Chezy\AppData\Local\Temp\jna22893.dll => Moved successfully.
C:\Users\Chezy\AppData\Local\Temp\jna50604.dll => Moved successfully.
C:\Users\Chezy\AppData\Local\Temp\SearchWithGoogleUpdate.exe => Moved successfully.
C:\Program Files\PC-Doctor for Windows => Moved successfully.
"C:\ProgramData\BetterSoft" => File/Directory not found.
"C:\Program Files (x86)\BCool\sprotector.dll" => File/Directory not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{18DF8084-2E5E-467C-84AB-A3DDAC7814E0} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18DF8084-2E5E-467C-84AB-A3DDAC7814E0} => Key deleted successfully.
C:\Windows\System32\Tasks\PCDRScheduledMaintenance => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDRScheduledMaintenance => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{192DDA2D-5815-47B8-983F-65744FEEC03A} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{192DDA2D-5815-47B8-983F-65744FEEC03A} => Key deleted successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\CrawlStartPages => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{21D8FAD1-E79A-45A8-AEC7-644A05867A5A} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21D8FAD1-E79A-45A8-AEC7-644A05867A5A} => Key deleted successfully.
C:\Windows\System32\Tasks\AmiUpdXp => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{254095AE-FB97-48EA-94A5-D8BF2AB79714} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{254095AE-FB97-48EA-94A5-D8BF2AB79714} => Key deleted successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\RAC\RACAgent => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\RAC\RACAgent => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35EA5A4D-E484-4B60-9E48-647476648C24} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35EA5A4D-E484-4B60-9E48-647476648C24} => Key deleted successfully.
C:\Windows\System32\Tasks\IHUninstallTrackingTASK => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IHUninstallTrackingTASK => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B59EB0D4-382B-4C08-9184-C8476201C287} => Key not found.
C:\Windows\System32\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3} not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2798D3CA-52B3-4015-B1DD-AA17E72877C3} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C2E0E97F-6C53-4029-A788-9711936B99DB} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2E0E97F-6C53-4029-A788-9711936B99DB} => Key deleted successfully.
C:\Windows\System32\Tasks\4703 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\4703 => Key deleted successfully.
C:\Windows\Tasks\AmiUpdXp.job => Moved successfully.
C:\Windows\Tasks\PCDRScheduledMaintenance.job => Moved successfully.
C:\Windows\Tasks\{2798D3CA-52B3-4015-B1DD-AA17E72877C3}.job not found.
C:\ProgramData\Temp => ":2BDCFAD6" ADS removed successfully.
C:\ProgramData\Temp => ":373E1720" ADS removed successfully.
C:\ProgramData\Temp => ":F2721624" ADS removed successfully.


The system needs a manual reboot.

==== End of Fixlog ====
  • 0

#9
Lexy610
Posted 04 November 2013 - 07:10 AM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
# AdwCleaner v3.011 - Report created 04/11/2013 at 07:22:51
# Updated 03/11/2013 by Xplode
# Operating System : Windows ™ Vista Home Premium Service Pack 2 (64 bits)
# Username : [bleep] - [bleep]-PC
# Running from : C:\Users\[bleep]\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[!] Folder Deleted : C:\ProgramData\apn
[!] Folder Deleted : C:\ProgramData\Ask
[!] Folder Deleted : C:\ProgramData\Babylon
[!] Folder Deleted : C:\ProgramData\clsoft ltd
[!] Folder Deleted : C:\ProgramData\Trymedia
[!] Folder Deleted : C:\ProgramData\Bcool
[!] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon
[!] Folder Deleted : C:\Program Files (x86)\Ask.com
[!] Folder Deleted : C:\Program Files (x86)\Conduit
[!] Folder Deleted : C:\Program Files (x86)\kikin
[!] Folder Deleted : C:\Program Files (x86)\Bcool
[!] Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
[!] Folder Deleted : C:\Program Files\Babylon
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\Babylon
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\Conduit
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\iac
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\OpenCandy
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\SwvUpdater
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\Temp\apn
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\Temp\AskSearch
[!] Folder Deleted : C:\Users\[bleep]\AppData\LocalLow\Conduit
[!] Folder Deleted : C:\Users\[bleep]\AppData\LocalLow\CouponAlert_2p
[!] Folder Deleted : C:\Users\[bleep]\AppData\LocalLow\PriceGong
[!] Folder Deleted : C:\Users\[bleep]\AppData\LocalLow\Bcool
[!] Folder Deleted : C:\Users\[bleep]\AppData\Roaming\Babylon
[!] Folder Deleted : C:\Users\[bleep]\AppData\Roaming\kikin
[!] Folder Deleted : C:\Users\[bleep]\Documents\optimizer pro
[!] Folder Deleted : C:\Users\Chezy\AppData\Local\Temp\AskBarDis
[!] Folder Deleted : C:\Users\Chezy\AppData\LocalLow\Inbox Toolbar
[!] Folder Deleted : C:\Users\Chezy\AppData\LocalLow\MyWebSearch
[!] Folder Deleted : C:\Users\Chezy\AppData\LocalLow\oovootoolbar
[!] Folder Deleted : C:\Users\[bleep]\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpbkhdecldpgchmgkignlpcdnpmccoki
File Deleted : C:\END
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Deleted : C:\Program Files (x86)\Mozilla Firefox\Components\AskSearch.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Key Deleted : HKCU\Software\Microsoft\Office\Powerpoint\Addins\babylonofficeaddin.officeaddin
Key Deleted : HKCU\Software\Microsoft\Office\Word\Addins\babylonofficeaddin.officeaddin
Key Deleted : HKLM\SOFTWARE\Classes\.bdc
Key Deleted : HKLM\SOFTWARE\Classes\.bgl
Key Deleted : HKLM\SOFTWARE\Classes\.bof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\BabyDict
Key Deleted : HKLM\SOFTWARE\Classes\BabyGloss
Key Deleted : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Key Deleted : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Key Deleted : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Key Deleted : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Key Deleted : HKLM\SOFTWARE\Classes\BabyOptFile
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\IMsiDe1egate.Application.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3272810
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [TotalRecipeSearch Search Scope Monitor]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{23B0AE65-17D2-4491-98E5-B1AA6228DDA2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64B00DAC-870D-4E6A-8D34-3A6E3E427A30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44CF-8957-5838F569A31D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{23B38049-323F-443D-9732-F454E5B15B72}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3C490BF5-4244-4310-B4A7-3361F288DAC5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{41069220-F72A-40EA-A8F3-BCD5E1FBC8F0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7B9F8C21-46EC-4C0B-8683-E755EF84577A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD79F359-E577-46DB-AA74-D6E6B8B45BA8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1E0DE227-5CE4-4EA3-AB0C-8B03E1AA76BC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8867AC9B-4426-44A2-A693-C95850D3405C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FD79F359-E577-46DB-AA74-D6E6B8B45BA8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{16FE2505-F2A0-4782-B035-AF0E5188C02C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{56965DCF-718F-4148-BECF-5A2B466F4556}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{443789B7-F39C-4B5C-9287-DA72D38F4FE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{443789B7-F39C-4B5C-9287-DA72D38F4FE6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{64B00DAC-870D-4E6A-8D34-3A6E3E427A30}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Babylon
Key Deleted : HKCU\Software\pc optimizer pro
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\iWon
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\InstallIQ
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Uniblue\DriverScanner
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Babylon
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdUtility
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16514

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]

-\\ Google Chrome v

[ File : C:\Users\[bleep]\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Chezy\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [19824 octets] - [04/11/2013 07:09:39]
AdwCleaner[S0].txt - [17660 octets] - [04/11/2013 07:22:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17721 octets] ##########
  • 0

#10
Lexy610
Posted 04 November 2013 - 09:14 AM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows ™ Vista Home Premium x64
Ran by [bleep] on Mon 11/04/2013 at 9:39:19.71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{03F3147C-CEA6-4AAE-B0AE-8D8ABE7A8080}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{2502086B-5A46-4D05-8D5B-A1E77AB8BB32}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{396A4E14-83E7-4941-B0D9-B598E1B97197}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{76F3207C-3A0A-461B-B958-5653C5718243}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{895F3DBD-2484-4A14-A0EA-C3252EBB0FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{8C4B563E-52A1-4A10-B700-F8BF1CD7B726}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{96B8A0EF-0D9D-4A92-B548-376DB4BBB58B}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{9E5C950C-93F2-46B4-A47E-8450FFF4D841}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A4503EC3-1111-4B62-8F46-0D88508F8A7B}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A9C524BF-4044-402A-AA00-8C3B3DA86125}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B38FBAED-DED1-4BA6-BA2E-F2515FD49442}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B5EDE79D-B004-47DD-93F9-152B0D145914}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{D0690E53-168C-4632-99B2-5700228F760F}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\theseaapp
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\totalrecipesearch_14
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4623A8C4-150D-4983-8982-68C01E7D6541}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C585D593-E7F3-4852-A200-561686EE02E4}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{16C8C46E-C811-4977-BF0A-B5CC1FA78D95}



~~~ Files

Successfully deleted: [File] "C:\Program Files (x86)\adobe\reader 10.0\reader\plug_ins\babylon\babylonrpi.api"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\w3i"
Successfully deleted: [Folder] "C:\Users\[bleep]\appdata\local\totalrecipesearch_14"
Successfully deleted: [Folder] "C:\Users\[bleep]\appdata\locallow\couponalert_2pei"
Successfully deleted: [Folder] "C:\Program Files (x86)\couponalert_2pei"
Successfully deleted: [Folder] "C:\Program Files (x86)\totalrecipesearch_14"
Successfully deleted: [Folder] "C:\Program Files (x86)\w3i"
Successfully deleted: [Folder] "C:\Program Files (x86)\yontoo layers runtime (drop down deals)"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 11/04/2013 at 9:47:21.52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

Advertisements

#11
Lexy610
Posted 04 November 2013 - 09:23 AM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by [bleep] (administrator) on [bleep]-PC on 04-11-2013 10:14:58
Running from C:\Users\[bleep]\Desktop\FRST64
Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(AOL LLC) C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(WebEx Communications, Inc.) C:\Windows\SysWOW64\atashost.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
(Hewlett-Packard) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [138240 2008-01-20] (Microsoft Corporation)
MountPoints2: {1ca3a839-c432-11df-9630-00038a000015} - L:\LaunchU3.exe -a
MountPoints2: {af77258c-66aa-11de-9f2d-00038a000015} - L:\LaunchU3.exe -a
HKU\Chezy\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Chezy\...\Run: [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Chezy\...\Run: [msnmsgr] - "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
HKU\Chezy\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [138240 2008-01-20] (Microsoft Corporation)
HKU\Chezy\...\Run: [ares] - "C:\Program Files (x86)\Ares\Ares.exe" -h
HKU\Chezy\...\Run: [WMPNSCFG] - C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Guest\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-10-17] (Hewlett-Packard)
HKU\Guest\...\Run: [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Guest\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.exe -update activex
AppInit_DLLs-x32: [ ] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x809852275FD9CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {409DD3B4-D1F8-EC6E-EDBD-2367FDA78762} URL = http://www.bing.com/...015&form=ZGAIDF
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
DPF: HKLM-x32 {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab
DPF: HKLM-x32 {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfar...etup1.0.1.1.cab
DPF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab
DPF: HKLM-x32 {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinn...ed/wwlaunch.cab
DPF: HKLM-x32 {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab
DPF: HKLM-x32 {9C23D886-43CB-43DE-B2DB-112A68D7E10A} http://lads.myspace....ceUploader2.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll (Cisco Systems, Inc.)
Handler-x32: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "urls_to_restore_on_startup": [
CHR Extension: (PlayFizz Platinum Content Add-on) - C:\Users\[bleep]\AppData\Local\Google\Chrome\User Data\Default\Extensions\knbjpbhhfkoodogjcbjemoaidadolapp\1.0.0_0

==================== Services (Whitelisted) =================

R2 atashost; C:\Windows\SysWOW64\atashost.exe [20376 2009-03-06] (WebEx Communications, Inc.)
R2 IHA_MessageCenter; C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [118784 2011-03-24] ()
R2 sprtsvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe [206120 2010-09-29] (SupportSoft, Inc.)
R2 tgsrvc_verizondm; C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe [185640 2010-09-29] (SupportSoft, Inc.)

==================== Drivers (Whitelisted) ====================

S3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-09-02] (Brother Industries Ltd.)
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
S3 MREMP50; C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS [21248 2010-03-17] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS [20096 2010-03-17] (Printing Communications Assoc., Inc. (PCAUSA))
S4 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [166944 2008-07-21] (NVIDIA Corporation)
R3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2009-06-05] ()
S3 zghsmdm; C:\Windows\System32\DRIVERS\zghsmdm.sys [129304 2011-03-07] (ZTE Incorporated)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [27632 2008-09-26] (Cyberlink Corp.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-04 09:47 - 2013-11-04 09:47 - 00003258 _____ C:\Users\[bleep]\Desktop\JRT.txt
2013-11-04 09:39 - 2013-11-04 09:39 - 00000000 ____D C:\Windows\ERUNT
2013-11-04 09:35 - 2013-11-04 09:35 - 01033335 _____ (Thisisu) C:\Users\[bleep]\Desktop\JRT.exe
2013-11-04 07:08 - 2013-11-04 07:23 - 00000000 ____D C:\AdwCleaner
2013-11-04 00:30 - 2013-11-04 00:30 - 01073258 _____ C:\Users\[bleep]\Downloads\AdwCleaner (1).exe
2013-11-04 00:00 - 2013-11-04 00:00 - 01073258 _____ C:\Users\[bleep]\Downloads\AdwCleaner.exe
2013-11-03 23:40 - 2013-11-04 10:14 - 00000000 ____D C:\Users\[bleep]\Desktop\FRST64
2013-11-03 23:16 - 2013-11-04 10:13 - 00000850 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 23:16 - 2013-11-04 10:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 23:16 - 2013-11-03 23:16 - 00000000 ____D C:\ProgramData\Mozilla
2013-11-03 19:53 - 2013-11-04 07:06 - 00000000 ____D C:\FRST
2013-11-03 17:46 - 2013-11-03 17:46 - 00000000 _____ C:\install.rdf
2013-10-13 02:00 - 2013-10-13 02:00 - 00000000 ____D C:\Windows\CheckSur
2013-10-12 02:09 - 2013-09-22 10:43 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-12 02:09 - 2013-09-22 10:01 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-12 02:09 - 2013-09-22 09:42 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-12 02:09 - 2013-09-22 09:36 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-12 02:09 - 2013-09-22 09:33 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-12 02:09 - 2013-09-22 09:33 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-12 02:09 - 2013-09-22 09:30 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-12 02:09 - 2013-09-22 09:27 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-12 02:09 - 2013-09-22 09:23 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-12 02:09 - 2013-09-22 09:22 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-12 02:09 - 2013-09-22 09:21 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-12 02:09 - 2013-09-22 09:19 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-12 02:09 - 2013-09-22 09:19 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-12 02:09 - 2013-09-22 09:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-12 02:09 - 2013-09-22 09:15 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-12 02:09 - 2013-09-22 09:07 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-12 02:09 - 2013-09-22 05:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-12 02:09 - 2013-09-22 05:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-12 02:09 - 2013-09-22 05:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-12 02:09 - 2013-09-22 05:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-12 02:09 - 2013-09-22 05:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-12 02:09 - 2013-09-22 05:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-12 02:09 - 2013-09-22 05:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-12 02:09 - 2013-09-22 05:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-12 02:09 - 2013-09-22 05:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-12 02:09 - 2013-09-22 05:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-12 02:09 - 2013-09-22 05:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-12 02:09 - 2013-09-22 05:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-12 02:09 - 2013-09-22 05:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-12 02:09 - 2013-09-22 05:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-12 02:09 - 2013-09-22 05:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-12 02:09 - 2013-09-22 04:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 05:35 - 2013-08-29 02:48 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 05:35 - 2013-08-26 22:39 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-10 05:35 - 2013-08-26 22:39 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-10 05:35 - 2013-08-26 22:39 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-10 05:35 - 2013-08-26 22:39 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-10 05:35 - 2013-08-26 21:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-10 05:35 - 2013-08-26 21:32 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-10 05:35 - 2013-08-26 21:30 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-10 05:35 - 2013-08-26 21:06 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-10 05:35 - 2013-08-26 21:00 - 01556480 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-10 05:35 - 2013-08-26 21:00 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-10 05:35 - 2013-08-26 20:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-10 05:35 - 2013-08-26 20:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-10 05:35 - 2013-08-26 20:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-10 05:35 - 2013-08-26 20:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-10 05:35 - 2013-07-31 23:10 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 05:35 - 2013-07-31 22:37 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-10 05:35 - 2013-07-20 05:45 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 05:35 - 2013-07-20 05:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 05:35 - 2013-07-12 04:19 - 00099200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 05:35 - 2013-07-03 23:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 05:35 - 2013-07-03 23:13 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 05:35 - 2013-07-02 21:55 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-10 05:35 - 2013-07-02 21:22 - 00031616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-10 05:35 - 2013-06-28 21:25 - 00007552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-10 05:35 - 2013-06-26 18:00 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 05:35 - 2013-06-03 23:16 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 05:35 - 2013-06-03 23:16 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 05:35 - 2013-06-03 21:01 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 05:35 - 2013-06-03 20:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 05:35 - 2011-05-05 09:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-10 05:35 - 2011-05-05 09:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

==================== One Month Modified Files and Folders =======

2013-11-04 10:14 - 2013-11-03 23:40 - 00000000 ____D C:\Users\[bleep]\Desktop\FRST64
2013-11-04 10:13 - 2013-11-03 23:16 - 00000850 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-04 10:13 - 2013-11-03 23:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-04 10:13 - 2009-07-06 18:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-04 10:06 - 2012-12-25 17:23 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-04 10:01 - 2010-07-09 02:32 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-04 09:47 - 2013-11-04 09:47 - 00003258 _____ C:\Users\[bleep]\Desktop\JRT.txt
2013-11-04 09:39 - 2013-11-04 09:39 - 00000000 ____D C:\Windows\ERUNT
2013-11-04 09:35 - 2013-11-04 09:35 - 01033335 _____ (Thisisu) C:\Users\[bleep]\Desktop\JRT.exe
2013-11-04 09:35 - 2010-07-09 02:32 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-04 09:35 - 2009-05-05 15:10 - 01741141 _____ C:\Windows\WindowsUpdate.log
2013-11-04 07:32 - 2006-11-02 07:46 - 00005534 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-04 07:25 - 2009-08-16 00:14 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-11-04 07:25 - 2006-11-02 10:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-04 07:25 - 2006-11-02 10:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-04 07:25 - 2006-11-02 10:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-04 07:23 - 2013-11-04 07:08 - 00000000 ____D C:\AdwCleaner
2013-11-04 07:23 - 2006-11-02 10:42 - 00032574 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-04 07:06 - 2013-11-03 19:53 - 00000000 ____D C:\FRST
2013-11-04 01:12 - 2006-11-02 08:34 - 00000000 ____D C:\Windows\tracing
2013-11-04 00:30 - 2013-11-04 00:30 - 01073258 _____ C:\Users\[bleep]\Downloads\AdwCleaner (1).exe
2013-11-04 00:24 - 2012-10-11 23:48 - 00000000 ____D C:\Users\[bleep]\AppData\Local\CrashDumps
2013-11-04 00:00 - 2013-11-04 00:00 - 01073258 _____ C:\Users\[bleep]\Downloads\AdwCleaner.exe
2013-11-03 23:16 - 2013-11-03 23:16 - 00000000 ____D C:\ProgramData\Mozilla
2013-11-03 23:11 - 2008-01-20 22:26 - 01052904 _____ C:\Windows\PFRO.log
2013-11-03 22:58 - 2009-05-18 15:28 - 00000000 ____D C:\ProgramData\Skype
2013-11-03 22:55 - 2013-01-19 00:09 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-03 19:48 - 2009-08-27 13:23 - 00000000 ____D C:\Program Files\Google
2013-11-03 19:48 - 2009-05-18 15:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-03 18:11 - 2009-05-18 15:27 - 00000000 ____D C:\Program Files (x86)\ooVoo
2013-11-03 18:10 - 2011-02-04 16:02 - 00000000 ____D C:\Users\[bleep]\AppData\Roaming\MP3Rocket
2013-11-03 18:06 - 2009-05-18 15:30 - 00000000 ____D C:\Users\[bleep]\AppData\Local\Google
2013-11-03 18:06 - 2009-05-18 15:29 - 00000000 ____D C:\ProgramData\Google
2013-11-03 17:53 - 2008-11-07 00:54 - 00000000 ____D C:\ProgramData\Norton
2013-11-03 17:46 - 2013-11-03 17:46 - 00000000 _____ C:\install.rdf
2013-11-03 17:45 - 2009-05-18 20:03 - 00000000 ____D C:\Users\[bleep]\AppData\Local\AOL
2013-11-03 17:45 - 2009-05-18 20:01 - 00000000 ____D C:\ProgramData\AOL
2013-11-03 17:16 - 2009-05-18 15:29 - 00000000 ____D C:\Users\[bleep]\AppData\Roaming\Skype
2013-10-15 01:16 - 2011-06-20 14:06 - 00000000 ____D C:\Users\[bleep]\Incomplete
2013-10-13 02:00 - 2013-10-13 02:00 - 00000000 ____D C:\Windows\CheckSur
2013-10-12 02:56 - 2006-11-02 10:21 - 00400368 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-12 02:55 - 2008-11-07 00:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-12 02:36 - 2009-09-15 15:40 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-12 02:16 - 2013-08-15 02:06 - 00000000 ____D C:\Windows\system32\MRT
2013-10-12 02:12 - 2006-11-02 07:35 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-11 07:56 - 2010-07-09 02:32 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-11 07:56 - 2010-07-09 02:32 - 00003640 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-09 18:30 - 2010-09-26 11:56 - 00002651 _____ C:\Users\[bleep]\Desktop\Microsoft Office Word 2007.lnk
2013-10-09 17:25 - 2009-06-10 17:46 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-10-09 00:29 - 2012-12-25 17:23 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 00:29 - 2012-12-25 17:23 - 00003682 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 00:29 - 2011-08-27 18:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

Some content of TEMP:
====================
C:\Users\[bleep]\AppData\Local\Temp\-p020ms_.dll
C:\Users\[bleep]\AppData\Local\Temp\.exe
C:\Users\[bleep]\AppData\Local\Temp\2476.exe
C:\Users\[bleep]\AppData\Local\Temp\3123.exe
C:\Users\[bleep]\AppData\Local\Temp\4BCF.exe
C:\Users\[bleep]\AppData\Local\Temp\5121.exe
C:\Users\[bleep]\AppData\Local\Temp\AcsInstall.dll
C:\Users\[bleep]\AppData\Local\Temp\APNSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\ApnStub.exe
C:\Users\[bleep]\AppData\Local\Temp\atstpip.exe
C:\Users\[bleep]\AppData\Local\Temp\B04A.exe
C:\Users\[bleep]\AppData\Local\Temp\Coupons.com.exe
C:\Users\[bleep]\AppData\Local\Temp\deerdrive-111448437-setup.s111448437.c110268333.len.u.dl.exe
C:\Users\[bleep]\AppData\Local\Temp\default.exe
C:\Users\[bleep]\AppData\Local\Temp\DivXInstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\DropDownDealsSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\E16D.exe
C:\Users\[bleep]\AppData\Local\Temp\FAD7.exe
C:\Users\[bleep]\AppData\Local\Temp\ffunzip.exe
C:\Users\[bleep]\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe
C:\Users\[bleep]\AppData\Local\Temp\GLF86D5.tmp.ConduitEngineSetup.exe
C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\[bleep]\AppData\Local\Temp\GUninstaller.exe
C:\Users\[bleep]\AppData\Local\Temp\homepage-protection4EA1..exe
C:\Users\[bleep]\AppData\Local\Temp\jna58769.dll
C:\Users\[bleep]\AppData\Local\Temp\MP3 Rocket FileBulldog.exe
C:\Users\[bleep]\AppData\Local\Temp\nsisdt.dll
C:\Users\[bleep]\AppData\Local\Temp\ooVooTBC.exe
C:\Users\[bleep]\AppData\Local\Temp\ooVooTBing.exe
C:\Users\[bleep]\AppData\Local\Temp\prxGLF86D5.tmp.tbooVo.dll
C:\Users\[bleep]\AppData\Local\Temp\Quarantine.exe
C:\Users\[bleep]\AppData\Local\Temp\RegAsm.exe
C:\Users\[bleep]\AppData\Local\Temp\SearchWithGoogleUpdate.exe
C:\Users\[bleep]\AppData\Local\Temp\setup.exe
C:\Users\[bleep]\AppData\Local\Temp\SHFOLDER.DLL
C:\Users\[bleep]\AppData\Local\Temp\tbCoup.dll
C:\Users\[bleep]\AppData\Local\Temp\tbooVo.dll
C:\Users\[bleep]\AppData\Local\Temp\tbWhi0.dll
C:\Users\[bleep]\AppData\Local\Temp\TB_89F6.exe
C:\Users\[bleep]\AppData\Local\Temp\temp0NikeConnectconnect5pcupdate.exe
C:\Users\[bleep]\AppData\Local\Temp\The_Weather_Channel_Application.exe
C:\Users\[bleep]\AppData\Local\Temp\uninst1.exe
C:\Users\[bleep]\AppData\Local\Temp\uninstalloption.exe
C:\Users\[bleep]\AppData\Local\Temp\uninstbb.exe
C:\Users\[bleep]\AppData\Local\Temp\Updater.exe
C:\Users\[bleep]\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\[bleep]\AppData\Local\Temp\vmpremov.exe
C:\Users\[bleep]\AppData\Local\Temp\wcdsetup.exe
C:\Users\[bleep]\AppData\Local\Temp\_is2A01.exe
C:\Users\[bleep]\AppData\Local\Temp\_unps.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-04 07:40

==================== End Of Log ============================
  • 0

#12
Lexy610
Posted 04 November 2013 - 09:56 AM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
2013-11-04 10:38:33, Info CSI 00000006 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:33, Info CSI 00000007 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:35, Info CSI 00000009 [SR] Verify complete
2013-11-04 10:38:35, Info CSI 0000000a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:35, Info CSI 0000000b [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:37, Info CSI 0000000d [SR] Verify complete
2013-11-04 10:38:37, Info CSI 0000000e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:37, Info CSI 0000000f [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:38, Info CSI 00000011 [SR] Verify complete
2013-11-04 10:38:38, Info CSI 00000012 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:38, Info CSI 00000013 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:40, Info CSI 00000015 [SR] Verify complete
2013-11-04 10:38:40, Info CSI 00000016 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:40, Info CSI 00000017 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:42, Info CSI 00000019 [SR] Verify complete
2013-11-04 10:38:42, Info CSI 0000001a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:42, Info CSI 0000001b [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:44, Info CSI 0000001d [SR] Verify complete
2013-11-04 10:38:44, Info CSI 0000001e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:44, Info CSI 0000001f [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:45, Info CSI 00000021 [SR] Verify complete
2013-11-04 10:38:46, Info CSI 00000022 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:46, Info CSI 00000023 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:47, Info CSI 00000025 [SR] Verify complete
2013-11-04 10:38:47, Info CSI 00000026 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:47, Info CSI 00000027 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:49, Info CSI 00000029 [SR] Verify complete
2013-11-04 10:38:49, Info CSI 0000002a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:49, Info CSI 0000002b [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:50, Info CSI 0000002d [SR] Verify complete
2013-11-04 10:38:50, Info CSI 0000002e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:50, Info CSI 0000002f [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:52, Info CSI 00000031 [SR] Verify complete
2013-11-04 10:38:52, Info CSI 00000032 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:52, Info CSI 00000033 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:53, Info CSI 00000035 [SR] Verify complete
2013-11-04 10:38:54, Info CSI 00000036 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:54, Info CSI 00000037 [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:55, Info CSI 00000039 [SR] Verify complete
2013-11-04 10:38:55, Info CSI 0000003a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:55, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:57, Info CSI 0000003d [SR] Verify complete
2013-11-04 10:38:57, Info CSI 0000003e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:57, Info CSI 0000003f [SR] Beginning Verify and Repair transaction
2013-11-04 10:38:58, Info CSI 00000041 [SR] Verify complete
2013-11-04 10:38:58, Info CSI 00000042 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:38:58, Info CSI 00000043 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:00, Info CSI 00000045 [SR] Verify complete
2013-11-04 10:39:00, Info CSI 00000046 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:00, Info CSI 00000047 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:01, Info CSI 00000049 [SR] Verify complete
2013-11-04 10:39:01, Info CSI 0000004a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:01, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:03, Info CSI 0000004d [SR] Verify complete
2013-11-04 10:39:04, Info CSI 0000004e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:04, Info CSI 0000004f [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:05, Info CSI 00000051 [SR] Verify complete
2013-11-04 10:39:05, Info CSI 00000052 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:05, Info CSI 00000053 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:06, Info CSI 00000055 [SR] Verify complete
2013-11-04 10:39:07, Info CSI 00000056 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:07, Info CSI 00000057 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:08, Info CSI 00000059 [SR] Verify complete
2013-11-04 10:39:08, Info CSI 0000005a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:08, Info CSI 0000005b [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:10, Info CSI 0000005d [SR] Verify complete
2013-11-04 10:39:10, Info CSI 0000005e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:10, Info CSI 0000005f [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:12, Info CSI 00000061 [SR] Verify complete
2013-11-04 10:39:12, Info CSI 00000062 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:12, Info CSI 00000063 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:14, Info CSI 00000065 [SR] Verify complete
2013-11-04 10:39:14, Info CSI 00000066 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:14, Info CSI 00000067 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:17, Info CSI 00000069 [SR] Verify complete
2013-11-04 10:39:17, Info CSI 0000006a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:17, Info CSI 0000006b [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:19, Info CSI 0000006d [SR] Verify complete
2013-11-04 10:39:19, Info CSI 0000006e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:19, Info CSI 0000006f [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:21, Info CSI 00000071 [SR] Verify complete
2013-11-04 10:39:21, Info CSI 00000072 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:21, Info CSI 00000073 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:22, Info CSI 00000075 [SR] Verify complete
2013-11-04 10:39:22, Info CSI 00000076 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:22, Info CSI 00000077 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:24, Info CSI 00000079 [SR] Verify complete
2013-11-04 10:39:24, Info CSI 0000007a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:24, Info CSI 0000007b [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:26, Info CSI 0000007d [SR] Verify complete
2013-11-04 10:39:26, Info CSI 0000007e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:26, Info CSI 0000007f [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:28, Info CSI 00000081 [SR] Verify complete
2013-11-04 10:39:28, Info CSI 00000082 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:28, Info CSI 00000083 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:30, Info CSI 00000085 [SR] Verify complete
2013-11-04 10:39:30, Info CSI 00000086 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:30, Info CSI 00000087 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:32, Info CSI 00000089 [SR] Verify complete
2013-11-04 10:39:32, Info CSI 0000008a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:32, Info CSI 0000008b [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:33, Info CSI 0000008d [SR] Verify complete
2013-11-04 10:39:34, Info CSI 0000008e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:34, Info CSI 0000008f [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:35, Info CSI 00000091 [SR] Verify complete
2013-11-04 10:39:35, Info CSI 00000092 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:35, Info CSI 00000093 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:37, Info CSI 00000095 [SR] Verify complete
2013-11-04 10:39:37, Info CSI 00000096 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:37, Info CSI 00000097 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:41, Info CSI 00000099 [SR] Verify complete
2013-11-04 10:39:41, Info CSI 0000009a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:41, Info CSI 0000009b [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:44, Info CSI 0000009e [SR] Verify complete
2013-11-04 10:39:44, Info CSI 0000009f [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:44, Info CSI 000000a0 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:50, Info CSI 000000a4 [SR] Verify complete
2013-11-04 10:39:50, Info CSI 000000a5 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:50, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2013-11-04 10:39:55, Info CSI 000000a8 [SR] Verify complete
2013-11-04 10:39:55, Info CSI 000000a9 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:39:55, Info CSI 000000aa [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:00, Info CSI 000000ae [SR] Verify complete
2013-11-04 10:40:00, Info CSI 000000af [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:00, Info CSI 000000b0 [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:06, Info CSI 000000b4 [SR] Verify complete
2013-11-04 10:40:06, Info CSI 000000b5 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:06, Info CSI 000000b6 [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:16, Info CSI 000000d9 [SR] Verify complete
2013-11-04 10:40:17, Info CSI 000000da [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:17, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:22, Info CSI 000000dd [SR] Verify complete
2013-11-04 10:40:23, Info CSI 000000de [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:23, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:27, Info CSI 000000e1 [SR] Verify complete
2013-11-04 10:40:28, Info CSI 000000e2 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:28, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:33, Info CSI 000000e5 [SR] Verify complete
2013-11-04 10:40:33, Info CSI 000000e6 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:33, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:42, Info CSI 000000e9 [SR] Verify complete
2013-11-04 10:40:43, Info CSI 000000ea [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:43, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2013-11-04 10:40:53, Info CSI 00000103 [SR] Verify complete
2013-11-04 10:40:53, Info CSI 00000104 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:40:53, Info CSI 00000105 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:06, Info CSI 00000107 [SR] Verify complete
2013-11-04 10:41:06, Info CSI 00000108 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:06, Info CSI 00000109 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:16, Info CSI 0000010b [SR] Verify complete
2013-11-04 10:41:16, Info CSI 0000010c [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:16, Info CSI 0000010d [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:19, Info CSI 0000010f [SR] Verify complete
2013-11-04 10:41:20, Info CSI 00000110 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:20, Info CSI 00000111 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:22, Info CSI 00000113 [SR] Verify complete
2013-11-04 10:41:22, Info CSI 00000114 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:22, Info CSI 00000115 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:25, Info CSI 00000117 [SR] Verify complete
2013-11-04 10:41:25, Info CSI 00000118 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:25, Info CSI 00000119 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:38, Info CSI 0000012c [SR] Verify complete
2013-11-04 10:41:38, Info CSI 0000012d [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:38, Info CSI 0000012e [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:40, Info CSI 00000130 [SR] Verify complete
2013-11-04 10:41:40, Info CSI 00000131 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:40, Info CSI 00000132 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:42, Info CSI 00000134 [SR] Verify complete
2013-11-04 10:41:43, Info CSI 00000135 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:43, Info CSI 00000136 [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:46, Info CSI 00000138 [SR] Verify complete
2013-11-04 10:41:46, Info CSI 00000139 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:46, Info CSI 0000013a [SR] Beginning Verify and Repair transaction
2013-11-04 10:41:53, Info CSI 0000013c [SR] Verify complete
2013-11-04 10:41:54, Info CSI 0000013d [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:41:54, Info CSI 0000013e [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:03, Info CSI 00000140 [SR] Repairing corrupted file [ml:520{260},l:64{32}]"\??\C:\Windows\PolicyDefinitions"\[l:24{12}]"inetres.admx" from store
2013-11-04 10:42:03, Info CSI 00000143 [SR] Repairing corrupted file [ml:520{260},l:76{38}]"\??\C:\Windows\PolicyDefinitions\en-US"\[l:24{12}]"InetRes.adml" from store
2013-11-04 10:42:04, Info CSI 00000147 [SR] Verify complete
2013-11-04 10:42:05, Info CSI 00000148 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:05, Info CSI 00000149 [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:07, Info CSI 0000014b [SR] Verify complete
2013-11-04 10:42:08, Info CSI 0000014c [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:08, Info CSI 0000014d [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:13, Info CSI 0000014f [SR] Verify complete
2013-11-04 10:42:13, Info CSI 00000150 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:13, Info CSI 00000151 [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:17, Info CSI 00000153 [SR] Verify complete
2013-11-04 10:42:18, Info CSI 00000154 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:18, Info CSI 00000155 [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:24, Info CSI 00000157 [SR] Verify complete
2013-11-04 10:42:25, Info CSI 00000158 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:25, Info CSI 00000159 [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:36, Info CSI 00000171 [SR] Verify complete
2013-11-04 10:42:37, Info CSI 00000172 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:37, Info CSI 00000173 [SR] Beginning Verify and Repair transaction
2013-11-04 10:42:48, Info CSI 00000175 [SR] Verify complete
2013-11-04 10:42:48, Info CSI 00000176 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:42:48, Info CSI 00000177 [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:06, Info CSI 00000179 [SR] Verify complete
2013-11-04 10:43:06, Info CSI 0000017a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:43:06, Info CSI 0000017b [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:17, Info CSI 0000017d [SR] Verify complete
2013-11-04 10:43:18, Info CSI 0000017e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:43:18, Info CSI 0000017f [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:27, Info CSI 00000181 [SR] Verify complete
2013-11-04 10:43:27, Info CSI 00000182 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:43:27, Info CSI 00000183 [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:33, Info CSI 00000185 [SR] Verify complete
2013-11-04 10:43:33, Info CSI 00000186 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:43:33, Info CSI 00000187 [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:39, Info CSI 00000189 [SR] Verify complete
2013-11-04 10:43:39, Info CSI 0000018a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:43:39, Info CSI 0000018b [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:44, Info CSI 0000018f [SR] Verify complete
2013-11-04 10:43:45, Info CSI 00000190 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:43:45, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2013-11-04 10:43:59, Info CSI 00000193 [SR] Verify complete
2013-11-04 10:44:00, Info CSI 00000194 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:00, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2013-11-04 10:44:08, Info CSI 00000197 [SR] Verify complete
2013-11-04 10:44:09, Info CSI 00000198 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:09, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2013-11-04 10:44:15, Info CSI 0000019b [SR] Verify complete
2013-11-04 10:44:15, Info CSI 0000019c [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:15, Info CSI 0000019d [SR] Beginning Verify and Repair transaction
2013-11-04 10:44:22, Info CSI 0000019f [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:44:26, Info CSI 000001a1 [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:44:26, Info CSI 000001a2 [SR] This component was referenced by [l:162{81}]"Package_17_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.948465-60_neutral_GDR"
2013-11-04 10:44:27, Info CSI 000001a4 [SR] Verify complete
2013-11-04 10:44:27, Info CSI 000001a5 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:27, Info CSI 000001a6 [SR] Beginning Verify and Repair transaction
2013-11-04 10:44:35, Info CSI 000001a8 [SR] Verify complete
2013-11-04 10:44:35, Info CSI 000001a9 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:35, Info CSI 000001aa [SR] Beginning Verify and Repair transaction
2013-11-04 10:44:43, Info CSI 000001ac [SR] Verify complete
2013-11-04 10:44:44, Info CSI 000001ad [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:44, Info CSI 000001ae [SR] Beginning Verify and Repair transaction
2013-11-04 10:44:55, Info CSI 000001b1 [SR] Verify complete
2013-11-04 10:44:55, Info CSI 000001b2 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:44:55, Info CSI 000001b3 [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:03, Info CSI 000001b5 [SR] Verify complete
2013-11-04 10:45:04, Info CSI 000001b6 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:04, Info CSI 000001b7 [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:09, Info CSI 000001b9 [SR] Verify complete
2013-11-04 10:45:09, Info CSI 000001ba [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:09, Info CSI 000001bb [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:17, Info CSI 000001be [SR] Verify complete
2013-11-04 10:45:18, Info CSI 000001bf [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:18, Info CSI 000001c0 [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:25, Info CSI 000001c6 [SR] Verify complete
2013-11-04 10:45:25, Info CSI 000001c7 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:25, Info CSI 000001c8 [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:31, Info CSI 000001c9 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:42{21}]"Wdf01000Uninstall.mof" from store
2013-11-04 10:45:31, Info CSI 000001ca [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:24{12}]"Wdf01000.mof" from store
2013-11-04 10:45:34, Info CSI 000001cc [SR] Verify complete
2013-11-04 10:45:34, Info CSI 000001cd [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:34, Info CSI 000001ce [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:44, Info CSI 000001d0 [SR] Verify complete
2013-11-04 10:45:45, Info CSI 000001d1 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:45, Info CSI 000001d2 [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:50, Info CSI 000001d4 [SR] Verify complete
2013-11-04 10:45:51, Info CSI 000001d5 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:51, Info CSI 000001d6 [SR] Beginning Verify and Repair transaction
2013-11-04 10:45:53, Info CSI 000001d8 [SR] Verify complete
2013-11-04 10:45:54, Info CSI 000001d9 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:45:54, Info CSI 000001da [SR] Beginning Verify and Repair transaction
2013-11-04 10:46:03, Info CSI 000001dc [SR] Verify complete
2013-11-04 10:46:04, Info CSI 000001dd [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:46:04, Info CSI 000001de [SR] Beginning Verify and Repair transaction
2013-11-04 10:46:14, Info CSI 000001e0 [SR] Verify complete
2013-11-04 10:46:14, Info CSI 000001e1 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:46:14, Info CSI 000001e2 [SR] Beginning Verify and Repair transaction
2013-11-04 10:46:22, Info CSI 000001e4 [SR] Verify complete
2013-11-04 10:46:23, Info CSI 000001e5 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:46:23, Info CSI 000001e6 [SR] Beginning Verify and Repair transaction
2013-11-04 10:46:39, Info CSI 000001e8 [SR] Verify complete
2013-11-04 10:46:39, Info CSI 000001e9 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:46:39, Info CSI 000001ea [SR] Beginning Verify and Repair transaction
2013-11-04 10:46:43, Info CSI 000001ec [SR] Verify complete
2013-11-04 10:46:44, Info CSI 000001ed [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:46:44, Info CSI 000001ee [SR] Beginning Verify and Repair transaction
2013-11-04 10:46:49, Info CSI 000001f0 [SR] Verify complete
2013-11-04 10:46:50, Info CSI 000001f1 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:46:50, Info CSI 000001f2 [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:00, Info CSI 000001fd [SR] Verify complete
2013-11-04 10:47:01, Info CSI 000001fe [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:01, Info CSI 000001ff [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:06, Info CSI 00000201 [SR] Verify complete
2013-11-04 10:47:07, Info CSI 00000202 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:07, Info CSI 00000203 [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:13, Info CSI 00000205 [SR] Verify complete
2013-11-04 10:47:14, Info CSI 00000206 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:14, Info CSI 00000207 [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:23, Info CSI 00000209 [SR] Verify complete
2013-11-04 10:47:24, Info CSI 0000020a [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:24, Info CSI 0000020b [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:30, Info CSI 0000020d [SR] Verify complete
2013-11-04 10:47:30, Info CSI 0000020e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:30, Info CSI 0000020f [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:32, Info CSI 00000211 [SR] Verify complete
2013-11-04 10:47:32, Info CSI 00000212 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:32, Info CSI 00000213 [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:39, Info CSI 00000217 [SR] Verify complete
2013-11-04 10:47:40, Info CSI 00000218 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:40, Info CSI 00000219 [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:46, Info CSI 0000021e [SR] Verify complete
2013-11-04 10:47:47, Info CSI 0000021f [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:47:47, Info CSI 00000220 [SR] Beginning Verify and Repair transaction
2013-11-04 10:47:48, Info CSI 00000222 [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_IA32_ON_WIN64 (10), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:47:59, Info CSI 00000227 [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_IA32_ON_WIN64 (10), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:47:59, Info CSI 00000228 [SR] This component was referenced by [l:162{81}]"Package_17_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.948465-60_neutral_GDR"
2013-11-04 10:48:04, Info CSI 0000022f [SR] Verify complete
2013-11-04 10:48:05, Info CSI 00000230 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:05, Info CSI 00000231 [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:13, Info CSI 0000023d [SR] Verify complete
2013-11-04 10:48:14, Info CSI 0000023e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:14, Info CSI 0000023f [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:19, Info CSI 00000241 [SR] Verify complete
2013-11-04 10:48:19, Info CSI 00000242 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:19, Info CSI 00000243 [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:24, Info CSI 00000248 [SR] Verify complete
2013-11-04 10:48:24, Info CSI 00000249 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:24, Info CSI 0000024a [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:29, Info CSI 0000024c [SR] Verify complete
2013-11-04 10:48:29, Info CSI 0000024d [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:29, Info CSI 0000024e [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:39, Info CSI 00000273 [SR] Verify complete
2013-11-04 10:48:39, Info CSI 00000274 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:39, Info CSI 00000275 [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:44, Info CSI 00000277 [SR] Verify complete
2013-11-04 10:48:44, Info CSI 00000278 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:44, Info CSI 00000279 [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:49, Info CSI 0000027b [SR] Verify complete
2013-11-04 10:48:49, Info CSI 0000027c [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:49, Info CSI 0000027d [SR] Beginning Verify and Repair transaction
2013-11-04 10:48:55, Info CSI 0000027f [SR] Verify complete
2013-11-04 10:48:55, Info CSI 00000280 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:48:55, Info CSI 00000281 [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:02, Info CSI 00000292 [SR] Verify complete
2013-11-04 10:49:03, Info CSI 00000293 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:03, Info CSI 00000294 [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:14, Info CSI 0000029d [SR] Verify complete
2013-11-04 10:49:15, Info CSI 0000029e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:15, Info CSI 0000029f [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:22, Info CSI 000002a6 [SR] Verify complete
2013-11-04 10:49:22, Info CSI 000002a7 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:22, Info CSI 000002a8 [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:25, Info CSI 000002aa [SR] Verify complete
2013-11-04 10:49:25, Info CSI 000002ab [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:25, Info CSI 000002ac [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:37, Info CSI 000002b0 [SR] Verify complete
2013-11-04 10:49:38, Info CSI 000002b1 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:38, Info CSI 000002b2 [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:42, Info CSI 000002b4 [SR] Verify complete
2013-11-04 10:49:42, Info CSI 000002b5 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:42, Info CSI 000002b6 [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:48, Info CSI 000002b8 [SR] Verify complete
2013-11-04 10:49:49, Info CSI 000002b9 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:49, Info CSI 000002ba [SR] Beginning Verify and Repair transaction
2013-11-04 10:49:53, Info CSI 000002bc [SR] Verify complete
2013-11-04 10:49:54, Info CSI 000002bd [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:49:54, Info CSI 000002be [SR] Beginning Verify and Repair transaction
2013-11-04 10:50:00, Info CSI 000002c2 [SR] Verify complete
2013-11-04 10:50:01, Info CSI 000002c3 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:50:01, Info CSI 000002c4 [SR] Beginning Verify and Repair transaction
2013-11-04 10:50:12, Info CSI 000002de [SR] Verify complete
2013-11-04 10:50:12, Info CSI 000002df [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:50:12, Info CSI 000002e0 [SR] Beginning Verify and Repair transaction
2013-11-04 10:50:36, Info CSI 000002e2 [SR] Verify complete
2013-11-04 10:50:37, Info CSI 000002e3 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:50:37, Info CSI 000002e4 [SR] Beginning Verify and Repair transaction
2013-11-04 10:50:43, Info CSI 000002e6 [SR] Verify complete
2013-11-04 10:50:43, Info CSI 000002e7 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:50:43, Info CSI 000002e8 [SR] Beginning Verify and Repair transaction
2013-11-04 10:50:51, Info CSI 000002ea [SR] Verify complete
2013-11-04 10:50:52, Info CSI 000002eb [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:50:52, Info CSI 000002ec [SR] Beginning Verify and Repair transaction
2013-11-04 10:50:58, Info CSI 000002ee [SR] Verify complete
2013-11-04 10:50:58, Info CSI 000002ef [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:50:58, Info CSI 000002f0 [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:12, Info CSI 000002f3 [SR] Verify complete
2013-11-04 10:51:12, Info CSI 000002f4 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:12, Info CSI 000002f5 [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:18, Info CSI 000002f7 [SR] Verify complete
2013-11-04 10:51:18, Info CSI 000002f8 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:18, Info CSI 000002f9 [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:25, Info CSI 000002fb [SR] Verify complete
2013-11-04 10:51:25, Info CSI 000002fc [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:25, Info CSI 000002fd [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:31, Info CSI 000002ff [SR] Verify complete
2013-11-04 10:51:31, Info CSI 00000300 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:31, Info CSI 00000301 [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:37, Info CSI 00000304 [SR] Verify complete
2013-11-04 10:51:38, Info CSI 00000305 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:38, Info CSI 00000306 [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:42, Info CSI 00000308 [SR] Verify complete
2013-11-04 10:51:42, Info CSI 00000309 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:42, Info CSI 0000030a [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:50, Info CSI 0000030d [SR] Verify complete
2013-11-04 10:51:50, Info CSI 0000030e [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:50, Info CSI 0000030f [SR] Beginning Verify and Repair transaction
2013-11-04 10:51:56, Info CSI 00000313 [SR] Verify complete
2013-11-04 10:51:57, Info CSI 00000314 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:51:57, Info CSI 00000315 [SR] Beginning Verify and Repair transaction
2013-11-04 10:52:07, Info CSI 00000318 [SR] Verify complete
2013-11-04 10:52:08, Info CSI 00000319 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:52:08, Info CSI 0000031a [SR] Beginning Verify and Repair transaction
2013-11-04 10:52:13, Info CSI 0000031c [SR] Verify complete
2013-11-04 10:52:14, Info CSI 0000031d [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:52:14, Info CSI 0000031e [SR] Beginning Verify and Repair transaction
2013-11-04 10:52:20, Info CSI 00000320 [SR] Verify complete
2013-11-04 10:52:21, Info CSI 00000321 [SR] Verifying 100 (0x0000000000000064) components
2013-11-04 10:52:21, Info CSI 00000322 [SR] Beginning Verify and Repair transaction
2013-11-04 10:52:29, Info CSI 00000324 [SR] Verify complete
2013-11-04 10:52:30, Info CSI 00000325 [SR] Verifying 76 (0x000000000000004c) components
2013-11-04 10:52:30, Info CSI 00000326 [SR] Beginning Verify and Repair transaction
2013-11-04 10:52:35, Info CSI 00000328 [SR] Verify complete
2013-11-04 10:52:35, Info CSI 00000329 [SR] Repairing 5 components
2013-11-04 10:52:35, Info CSI 0000032a [SR] Beginning Verify and Repair transaction
2013-11-04 10:52:35, Info CSI 0000032c [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:52:35, Info CSI 0000032e [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_IA32_ON_WIN64 (10), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:52:35, Info CSI 00000330 [SR] Repairing corrupted file [ml:520{260},l:64{32}]"\??\C:\Windows\PolicyDefinitions"\[l:24{12}]"inetres.admx" from store
2013-11-04 10:52:35, Info CSI 00000333 [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:52:35, Info CSI 00000334 [SR] This component was referenced by [l:162{81}]"Package_17_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.948465-60_neutral_GDR"
2013-11-04 10:52:35, Info CSI 00000335 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:42{21}]"Wdf01000Uninstall.mof" from store
2013-11-04 10:52:35, Info CSI 00000336 [SR] Repairing corrupted file [ml:58{29},l:56{28}]"\??\C:\Windows\system32\wbem"\[l:24{12}]"Wdf01000.mof" from store
2013-11-04 10:52:36, Info CSI 00000338 [SR] Cannot repair member file [l:24{12}]"settings.ini" of Microsoft-Windows-Sidebar, Version = 6.0.6002.18005, pA = PROCESSOR_ARCHITECTURE_IA32_ON_WIN64 (10), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2013-11-04 10:52:36, Info CSI 00000339 [SR] This component was referenced by [l:162{81}]"Package_17_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.948465-60_neutral_GDR"
2013-11-04 10:52:36, Info CSI 0000033b [SR] Repairing corrupted file [ml:520{260},l:76{38}]"\??\C:\Windows\PolicyDefinitions\en-US"\[l:24{12}]"InetRes.adml" from store
2013-11-04 10:52:36, Info CSI 0000033e [SR] Repair complete
2013-11-04 10:52:36, Info CSI 0000033f [SR] Committing transaction
2013-11-04 10:52:36, Info CSI 00000343 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired
  • 0

#13
RKinner
Posted 04 November 2013 - 10:00 AM

RKinner

    Malware Expert

  • Expert
  • 24,623 posts
  • MVP
Download OTL from
http://www.geekstogo...timers-list-it/
and Save it to your desktop.


Copy the text in the code box:


netsvcs
drivers32
%SYSTEMDRIVE%\*.*
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\Fonts\*.ini
%systemroot%\Fonts\*.ini2
%systemroot%\Fonts\*.exe
%systemroot%\system32\spool\prtprocs\w32x86\*.*
%systemroot%\REPAIR\*.bak1
%systemroot%\REPAIR\*.ini
%systemroot%\system32\*.jpg 
%systemroot%\*.jpg 
%systemroot%\*.png 
%systemroot%\*.scr
%systemroot%\*._sy
%APPDATA%\Adobe\Update\*.*
%ALLUSERSPROFILE%\Favorites\*.*
%APPDATA%\Microsoft\*.*
%PROGRAMFILES%\*.*
%APPDATA%\Update\*.*
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\System32\config\*.sav 
%PROGRAMFILES%\bak. /s
%systemroot%\system32\bak. /s
%ALLUSERSPROFILE%\Start Menu\*.lnk /x 
%systemroot%\system32\config\systemprofile\*.dat /x
%systemroot%\*.config
%systemroot%\system32\*.db
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
/md5start
DMIcall.sys
beep.sys
Netshell.dll
netcfgx.dll
Netman.dll
connect.dll
mswsock.dll
mmswsock.dll 
/md5stop

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes

Select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.

Is it running any better?
  • 0

#14
Lexy610
Posted 04 November 2013 - 10:04 AM

Lexy610

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 743 posts
When I do the "vew" the last thing you told me to do .. I get a pop up window from "vewvo1c" saying "runtime error 75 .... path/file access error"

For both system & application
  • 0

#15
RKinner
Posted 04 November 2013 - 10:09 AM

RKinner

    Malware Expert

  • Expert
  • 24,623 posts
  • MVP
You have to right click on vew.exe and Run As Admin.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP