Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

anyone heard of trojanware.win32.kryptik.blxe or how to kill [Closed]


  • This topic is locked This topic is locked

#1
ramsxx

ramsxx

    New Member

  • Member
  • Pip
  • 5 posts
its nov 26th n yes i have caught this trojanware.win32.kryptik.blxe i have ran commodo,but it cant kill it,just the temp files it ctreates,,ive tryed superantispyware,,,no luck,,hitmanpro,,no luck..stinger,,no luck...malwarebytes..no luk just finds temp files..anyone know anything..oh and bitdefender=no luck..smilz nov 26th//605am myrtle beach,sc,usa time.

Edited by ramsxx, 26 November 2013 - 05:09 AM.

  • 0

Advertisements


#2
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello ramsxx,

Welcome to Geekstogo.

Before you run this one you will have to disable Comodo if you still have it on your machine.

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called (FRST.txt) in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run, it makes also another log (Addition.txt). Please also paste that into your reply.

  • 0

#3
ramsxx

ramsxx

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-11-2013
Ran by Chris (administrator) on JOANN-HP on 30-11-2013 03:56:23
Running from C:\Users\Chris\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\GeekBuddy\unit_manager.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\GeekBuddy\unit.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1612504 2013-11-11] (COMODO)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [HPWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-06-18] (Hewlett-Packard Company)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2283296 2013-10-28] (IObit)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-09-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [tvncontrol] - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-11-28] (Comodo Security Solutions, Inc.)
HKU\Default\...\Run: [HPAdvisorDock] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [1712184 2010-02-09] ()
AppInit_DLLs: [ ] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://aol.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearc...=2020105961&ir=
URLSearchHook: HKLM-x32 - AOL Toolbar Search Class - {f0e98552-8e47-4c6c-9b3a-11ab0549f94d} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL Inc.)
URLSearchHook: HKLM-x32 - AOL Toolbar Search Class - {f0e98552-8e47-4c6c-9b3a-11ab0549f94d} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
URLSearchHook: HKCU - AOL Toolbar Search Class - {f0e98552-8e47-4c6c-9b3a-11ab0549f94d} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL Inc.)
URLSearchHook: HKCU - AOL Toolbar Search Class - {f0e98552-8e47-4c6c-9b3a-11ab0549f94d} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
SearchScopes: HKLM - {019410F7-9A90-428A-958E-CBE679C46482} URL = http://search.yahoo....psg&type=HPNTDF
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {526BAE6C-F460-4767-9AFD-DDA45493F517} URL = http://en.wikipedia....h={searchTerms}
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearc...=2020105961&ir=
SearchScopes: HKLM - {F91BE38A-B8F9-4DD0-803D-439FC4D27AE5} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKLM-x32 - {019410F7-9A90-428A-958E-CBE679C46482} URL = http://search.yahoo....psg&type=HPNTDF
SearchScopes: HKLM-x32 - {3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab} URL = http://search.mywebs...r={searchTerms}
SearchScopes: HKLM-x32 - {526BAE6C-F460-4767-9AFD-DDA45493F517} URL = http://en.wikipedia....h={searchTerms}
SearchScopes: HKLM-x32 - {F91BE38A-B8F9-4DD0-803D-439FC4D27AE5} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKCU - {019410F7-9A90-428A-958E-CBE679C46482} URL = http://search.yahoo....p={searchTerms}
SearchScopes: HKCU - {3CD30D30-81DF-47D4-BB76-06035B0825C9} URL = http://www.mysearchr...q={searchTerms}
SearchScopes: HKCU - {526BAE6C-F460-4767-9AFD-DDA45493F517} URL = http://en.wikipedia....h={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearc...=2020105961&ir=
SearchScopes: HKCU - {F91BE38A-B8F9-4DD0-803D-439FC4D27AE5} URL = http://www.ask.com/w...}&l=dis&o=ushpl
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: AOL Toolbar Loader - {3ef64538-8b54-4573-b48f-4d34b0238ab2} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL Inc.)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: AOL Toolbar Loader - {3ef64538-8b54-4573-b48f-4d34b0238ab2} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - No File
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - AOL Toolbar - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL Inc.)
Toolbar: HKLM-x32 - AOL Toolbar - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
Toolbar: HKCU - AOL Toolbar - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL Inc.)
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.h...pdetect1263.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - No File
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File
Tcpip\Parameters: [DhcpNameServer] 209.18.47.61 209.18.47.62 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700
FF user.js: detected! => C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\user.js
FF DefaultSearchEngine: AOL Search
FF SelectedSearchEngine: AOL Search
FF Homepage: hxxp://www.aol.com/?mtmhp=txtlnkusaolp00000051
FF Keyword.URL: user_pref("keyword.URL", "");
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @mcafee.com/MVT - C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\5\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\searchplugins\Mysearchdial.xml
FF Extension: AOL Toolbar - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\Extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
FF Extension: HP Detect - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\Extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
FF Extension: Bitdefender QuickScan - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
FF Extension: homepage.extension - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\Extensions\homepage.extension@aol.com.xpi
FF Extension: jsonview - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\lae9ncfm.default-1362926609700\Extensions\jsonview@brh.numbera.com.xpi

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (AccelerateTab) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\glmfgahfleepmdfffonfckpmkondpdkg\1.2.8_0
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\Chris\AppData\Local\mysearchdial-speeddial.crx
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2012-07-11] (SUPERAntiSpyware.com)
S2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70352 2013-11-28] (Comodo Security Solutions, Inc.)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6254152 2013-10-19] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [164056 2013-09-24] (COMODO)
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-11-28] (Comodo Security Solutions, Inc.)
S4 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [109352 2013-10-31] (SurfRight B.V.)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-10-25] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 MSSQL$ACCUCHEK360; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S2 pdserv; C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe [1445424 2013-11-11] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-10-14] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-10-14] (Secunia)
S4 SecureUpdateSvc; C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [2298704 2013-08-15] ()

==================== Drivers (Whitelisted) ====================

S1 CFRMD; C:\Windows\SysWow64\DRIVERS\CFRMD.sys [37976 2012-09-03] (Windows ® Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2013-09-24] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [709144 2013-11-14] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48872 2013-09-24] (COMODO)
S3 ddbimCT; C:\Windows\System32\drivers\ddbimct.sys [16536 2013-11-26] (McAfee, Inc.)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2013-11-29] ()
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [96800 2013-09-24] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S0 mtqjxm; No ImagePath
S0 nmfmfx; No ImagePath
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-10-14] (Secunia)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2013-05-22] ()
S0 tcoifh; No ImagePath
S1 A2DDA; \??\C:\Users\Chris\Documents\EmsisoftEmergencyKit\Run\a2ddax64.sys [x]
S3 CpqDfw; system32\drivers\CpqDfw.sys [x]
S3 cpuz135; \??\C:\Users\Chris\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [x]
S3 MFE_RR; \??\C:\Users\Chris\AppData\Local\Temp\mfe_rr.sys [x]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-30 03:56 - 2013-11-30 03:56 - 00020211 _____ C:\Users\Chris\Downloads\FRST.txt
2013-11-30 03:55 - 2013-11-30 03:55 - 01959024 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2013-11-30 03:55 - 2013-11-30 03:55 - 00000000 ____D C:\FRST
2013-11-29 23:50 - 2013-11-29 23:50 - 00032512 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2013-11-28 12:55 - 2013-11-28 12:55 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-11-28 12:54 - 2013-11-28 12:54 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-11-28 12:53 - 2013-11-28 12:55 - 00001931 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-11-27 05:46 - 2013-11-27 05:46 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(4).exe
2013-11-27 05:46 - 2013-11-27 05:46 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(3).exe
2013-11-27 05:32 - 2013-11-27 06:09 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-27 05:32 - 2013-11-27 05:48 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-27 05:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-27 05:30 - 2013-11-27 05:30 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(2).exe
2013-11-26 23:59 - 2013-11-26 23:59 - 00253825 _____ C:\ProgramData\1385527051.bdinstall.bin
2013-11-26 06:40 - 2013-11-26 06:40 - 00085966 _____ C:\Users\Chris\Downloads\Extras.Txt
2013-11-26 06:35 - 2013-11-26 06:35 - 00159392 _____ C:\Users\Chris\Downloads\OTL.Txt
2013-11-26 06:16 - 2013-11-26 06:16 - 00602112 _____ (OldTimer Tools) C:\Users\Chris\Downloads\OTL.exe
2013-11-26 06:15 - 2013-11-26 06:15 - 04725328 _____ (MyTurboPC.com) C:\Users\Chris\Downloads\myturbopc.exe
2013-11-26 05:43 - 2013-11-26 05:44 - 00016536 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\ddbimct.sys
2013-11-26 05:41 - 2013-11-26 05:41 - 00000000 ____D C:\Users\Chris\Documents\DDAgent
2013-11-26 04:14 - 2013-11-26 04:15 - 00000310 _____ C:\Users\Chris\Downloads\RootkitRemover_20131126_041453.log
2013-11-26 04:13 - 2013-11-26 04:14 - 00000310 _____ C:\Users\Chris\Downloads\RootkitRemover_20131126_041349.log
2013-11-26 04:13 - 2013-11-26 04:13 - 00782640 _____ (McAfee, Inc.) C:\Users\Chris\Downloads\rootkitremover(4).exe
2013-11-26 04:09 - 2013-11-26 04:09 - 03703065 _____ C:\Users\Chris\Downloads\gsusp_298D81DF662F_112613_040938.zip
2013-11-26 04:07 - 2013-11-26 04:09 - 00001182 _____ C:\Users\Chris\Downloads\GetSusp.xml
2013-11-26 04:07 - 2013-11-26 04:07 - 01579552 _____ (McAfee Inc.) C:\Users\Chris\Downloads\getsusp(4).exe
2013-11-26 04:03 - 2013-11-26 04:41 - 00022437 _____ C:\Users\Chris\Downloads\Stinger_26112013_040311.html
2013-11-26 04:02 - 2013-11-26 04:02 - 11303968 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(6).exe
2013-11-26 03:36 - 2013-11-26 03:36 - 00351124 _____ C:\Users\Chris\AppData\Local\mysearchdial-speeddial.crx
2013-11-26 03:21 - 2013-11-26 03:21 - 00001575 _____ C:\Users\Chris\Desktop\RKreport[0]_S_11262013_032127.txt
2013-11-26 03:18 - 2013-11-26 03:18 - 00002215 _____ C:\Users\Chris\Desktop\RKreport[0]_D_11262013_031852.txt
2013-11-26 03:17 - 2013-11-26 03:17 - 00002067 _____ C:\Users\Chris\Desktop\RKreport[0]_S_11262013_031748.txt
2013-11-26 03:12 - 2013-11-26 03:22 - 00000000 ____D C:\Users\Chris\Desktop\RK_Quarantine
2013-11-26 03:12 - 2013-11-26 03:12 - 04172288 _____ C:\Users\Chris\Downloads\RogueKillerX64.exe
2013-11-26 02:43 - 2013-11-26 02:49 - 00000000 ____D C:\AdwCleaner
2013-11-26 02:42 - 2013-11-26 02:42 - 01091882 _____ C:\Users\Chris\Downloads\adwcleaner.exe
2013-11-24 02:37 - 2013-11-24 02:37 - 00011436 _____ C:\ProgramData\1385278606.5900.bin
2013-11-24 02:36 - 2013-11-24 02:37 - 00014814 _____ C:\ProgramData\1385278606.3292.bin
2013-11-24 02:06 - 2013-11-24 02:06 - 00054085 _____ C:\ProgramData\1385276779.bdinstall.bin
2013-11-24 01:35 - 2013-11-24 01:35 - 00054085 _____ C:\ProgramData\1385274918.bdinstall.bin
2013-11-24 01:05 - 2013-11-24 01:05 - 00054242 _____ C:\ProgramData\1385273026.bdinstall.bin
2013-11-24 00:13 - 2013-11-24 00:13 - 00054085 _____ C:\ProgramData\1385269868.bdinstall.bin
2013-11-23 23:40 - 2013-11-23 23:40 - 00054085 _____ C:\ProgramData\1385267917.bdinstall.bin
2013-11-23 23:08 - 2013-11-23 23:08 - 00054085 _____ C:\ProgramData\1385266000.bdinstall.bin
2013-11-23 22:36 - 2013-11-23 22:36 - 00054084 _____ C:\ProgramData\1385264082.bdinstall.bin
2013-11-23 22:04 - 2013-11-23 22:04 - 00054084 _____ C:\ProgramData\1385262168.bdinstall.bin
2013-11-23 21:32 - 2013-11-23 21:32 - 00054084 _____ C:\ProgramData\1385260241.bdinstall.bin
2013-11-23 21:00 - 2013-11-23 21:00 - 00054085 _____ C:\ProgramData\1385258278.bdinstall.bin
2013-11-23 20:28 - 2013-11-23 20:28 - 00054266 _____ C:\ProgramData\1385256412.bdinstall.bin
2013-11-23 19:57 - 2013-11-23 19:57 - 00054242 _____ C:\ProgramData\1385254551.bdinstall.bin
2013-11-23 05:21 - 2013-11-23 05:21 - 00054085 _____ C:\ProgramData\1385202002.bdinstall.bin
2013-11-23 04:50 - 2013-11-23 04:50 - 00054085 _____ C:\ProgramData\1385200160.bdinstall.bin
2013-11-23 04:19 - 2013-11-23 04:19 - 00054085 _____ C:\ProgramData\1385198256.bdinstall.bin
2013-11-23 03:47 - 2013-11-23 03:47 - 00054085 _____ C:\ProgramData\1385196350.bdinstall.bin
2013-11-23 03:16 - 2013-11-23 03:16 - 00054085 _____ C:\ProgramData\1385194511.bdinstall.bin
2013-11-23 02:44 - 2013-11-23 02:44 - 00054085 _____ C:\ProgramData\1385192642.bdinstall.bin
2013-11-23 02:14 - 2013-11-23 02:14 - 00054085 _____ C:\ProgramData\1385190808.bdinstall.bin
2013-11-23 01:43 - 2013-11-23 01:43 - 00054242 _____ C:\ProgramData\1385188980.bdinstall.bin
2013-11-22 23:45 - 2013-11-22 23:45 - 00054084 _____ C:\ProgramData\1385181776.bdinstall.bin
2013-11-22 23:12 - 2013-11-22 23:12 - 00054085 _____ C:\ProgramData\1385179810.bdinstall.bin
2013-11-22 22:39 - 2013-11-22 22:39 - 00054085 _____ C:\ProgramData\1385177833.bdinstall.bin
2013-11-22 22:07 - 2013-11-22 22:07 - 00054085 _____ C:\ProgramData\1385175891.bdinstall.bin
2013-11-22 21:34 - 2013-11-22 21:34 - 00054085 _____ C:\ProgramData\1385173968.bdinstall.bin
2013-11-22 21:02 - 2013-11-22 21:02 - 00054085 _____ C:\ProgramData\1385172020.bdinstall.bin
2013-11-22 20:29 - 2013-11-22 20:29 - 00054085 _____ C:\ProgramData\1385169982.bdinstall.bin
2013-11-22 19:56 - 2013-11-22 19:56 - 00054084 _____ C:\ProgramData\1385167981.bdinstall.bin
2013-11-22 19:23 - 2013-11-22 19:23 - 00054085 _____ C:\ProgramData\1385166064.bdinstall.bin
2013-11-22 18:50 - 2013-11-22 18:50 - 00054085 _____ C:\ProgramData\1385164031.bdinstall.bin
2013-11-22 18:15 - 2013-11-22 18:15 - 00054085 _____ C:\ProgramData\1385161501.bdinstall.bin
2013-11-22 17:34 - 2013-11-22 17:34 - 00054085 _____ C:\ProgramData\1385159589.bdinstall.bin
2013-11-22 17:03 - 2013-11-22 17:03 - 00054085 _____ C:\ProgramData\1385157723.bdinstall.bin
2013-11-22 16:30 - 2013-11-22 16:30 - 00054085 _____ C:\ProgramData\1385155604.bdinstall.bin
2013-11-22 15:55 - 2013-11-22 15:55 - 00054085 _____ C:\ProgramData\1385153341.bdinstall.bin
2013-11-22 15:18 - 2013-11-22 15:18 - 00054242 _____ C:\ProgramData\1385151404.bdinstall.bin
2013-11-22 05:40 - 2013-11-22 05:40 - 00054085 _____ C:\ProgramData\1385116775.bdinstall.bin
2013-11-22 05:09 - 2013-11-22 05:09 - 00054084 _____ C:\ProgramData\1385114938.bdinstall.bin
2013-11-22 04:38 - 2013-11-22 04:38 - 00054085 _____ C:\ProgramData\1385113067.bdinstall.bin
2013-11-22 04:07 - 2013-11-22 04:07 - 00054085 _____ C:\ProgramData\1385111210.bdinstall.bin
2013-11-22 03:36 - 2013-11-22 03:36 - 00054085 _____ C:\ProgramData\1385109375.bdinstall.bin
2013-11-22 03:05 - 2013-11-22 03:05 - 00054085 _____ C:\ProgramData\1385107510.bdinstall.bin
2013-11-22 02:34 - 2013-11-22 02:34 - 00054241 _____ C:\ProgramData\1385105646.bdinstall.bin
2013-11-21 22:24 - 2013-11-21 22:24 - 00054084 _____ C:\ProgramData\1385090605.bdinstall.bin
2013-11-21 21:53 - 2013-11-21 21:53 - 00054084 _____ C:\ProgramData\1385088681.bdinstall.bin
2013-11-21 21:21 - 2013-11-21 21:21 - 00054242 _____ C:\ProgramData\1385086852.bdinstall.bin
2013-11-21 20:44 - 2013-11-21 20:44 - 00053928 _____ C:\ProgramData\1385084478.bdinstall.bin
2013-11-21 20:11 - 2013-11-21 20:11 - 00053928 _____ C:\ProgramData\1385082461.bdinstall.bin
2013-11-21 19:38 - 2013-11-21 19:38 - 00053927 _____ C:\ProgramData\1385080480.bdinstall.bin
2013-11-21 19:04 - 2013-11-21 19:04 - 00053928 _____ C:\ProgramData\1385078534.bdinstall.bin
2013-11-21 18:32 - 2013-11-21 18:32 - 00053927 _____ C:\ProgramData\1385076563.bdinstall.bin
2013-11-21 18:00 - 2013-11-21 18:00 - 00053928 _____ C:\ProgramData\1385074590.bdinstall.bin
2013-11-21 17:26 - 2013-11-21 17:26 - 00053928 _____ C:\ProgramData\1385072648.bdinstall.bin
2013-11-21 16:54 - 2013-11-21 16:54 - 00053928 _____ C:\ProgramData\1385070690.bdinstall.bin
2013-11-21 16:20 - 2013-11-21 16:20 - 00053928 _____ C:\ProgramData\1385068708.bdinstall.bin
2013-11-21 15:48 - 2013-11-21 15:48 - 00053928 _____ C:\ProgramData\1385066775.bdinstall.bin
2013-11-21 15:16 - 2013-11-21 15:16 - 00053928 _____ C:\ProgramData\1385064814.bdinstall.bin
2013-11-21 14:43 - 2013-11-21 14:43 - 00053928 _____ C:\ProgramData\1385062801.bdinstall.bin
2013-11-21 14:10 - 2013-11-21 14:10 - 00053928 _____ C:\ProgramData\1385060419.bdinstall.bin
2013-11-21 13:30 - 2013-11-21 13:30 - 00053928 _____ C:\ProgramData\1385058400.bdinstall.bin
2013-11-21 12:56 - 2013-11-21 12:56 - 00053928 _____ C:\ProgramData\1385056453.bdinstall.bin
2013-11-21 12:24 - 2013-11-21 12:24 - 00053928 _____ C:\ProgramData\1385054497.bdinstall.bin
2013-11-21 11:51 - 2013-11-21 11:51 - 00053928 _____ C:\ProgramData\1385052451.bdinstall.bin
2013-11-21 11:16 - 2013-11-21 11:16 - 00053928 _____ C:\ProgramData\1385050427.bdinstall.bin
2013-11-21 10:43 - 2013-11-21 10:43 - 00053927 _____ C:\ProgramData\1385048351.bdinstall.bin
2013-11-21 10:09 - 2013-11-21 10:09 - 00053928 _____ C:\ProgramData\1385046380.bdinstall.bin
2013-11-21 09:35 - 2013-11-21 09:35 - 00053928 _____ C:\ProgramData\1385044394.bdinstall.bin
2013-11-21 09:02 - 2013-11-21 09:02 - 00053928 _____ C:\ProgramData\1385042364.bdinstall.bin
2013-11-21 08:28 - 2013-11-21 08:28 - 00053928 _____ C:\ProgramData\1385039880.bdinstall.bin
2013-11-21 07:48 - 2013-11-21 07:48 - 00053928 _____ C:\ProgramData\1385038008.bdinstall.bin
2013-11-21 07:16 - 2013-11-21 07:16 - 00053928 _____ C:\ProgramData\1385036154.bdinstall.bin
2013-11-21 06:45 - 2013-11-21 06:45 - 00053928 _____ C:\ProgramData\1385034227.bdinstall.bin
2013-11-21 06:14 - 2013-11-21 06:14 - 00053928 _____ C:\ProgramData\1385032374.bdinstall.bin
2013-11-21 05:42 - 2013-11-21 05:42 - 00053928 _____ C:\ProgramData\1385030438.bdinstall.bin
2013-11-21 05:10 - 2013-11-21 05:11 - 00053928 _____ C:\ProgramData\1385028597.bdinstall.bin
2013-11-21 04:40 - 2013-11-21 04:40 - 00053928 _____ C:\ProgramData\1385026756.bdinstall.bin
2013-11-21 04:09 - 2013-11-21 04:09 - 00053928 _____ C:\ProgramData\1385024914.bdinstall.bin
2013-11-21 03:39 - 2013-11-21 03:39 - 00053927 _____ C:\ProgramData\1385023033.bdinstall.bin
2013-11-21 03:06 - 2013-11-21 03:06 - 00053928 _____ C:\ProgramData\1385021129.bdinstall.bin
2013-11-21 02:35 - 2013-11-21 02:35 - 00053928 _____ C:\ProgramData\1385019214.bdinstall.bin
2013-11-21 02:03 - 2013-11-21 02:03 - 00053928 _____ C:\ProgramData\1385017374.bdinstall.bin
2013-11-21 01:33 - 2013-11-21 01:33 - 00053928 _____ C:\ProgramData\1385015467.bdinstall.bin
2013-11-21 01:01 - 2013-11-21 01:01 - 00053928 _____ C:\ProgramData\1385013619.bdinstall.bin
2013-11-21 00:31 - 2013-11-21 00:31 - 00053927 _____ C:\ProgramData\1385011774.bdinstall.bin
2013-11-20 23:59 - 2013-11-20 23:59 - 00053927 _____ C:\ProgramData\1385009919.bdinstall.bin
2013-11-20 23:28 - 2013-11-20 23:28 - 00053928 _____ C:\ProgramData\1385008069.bdinstall.bin
2013-11-20 22:57 - 2013-11-20 22:57 - 00054085 _____ C:\ProgramData\1385006224.bdinstall.bin
2013-11-20 22:27 - 2013-11-20 22:27 - 00054085 _____ C:\ProgramData\1385004317.bdinstall.bin
2013-11-20 21:55 - 2013-11-20 21:55 - 00054085 _____ C:\ProgramData\1385002419.bdinstall.bin
2013-11-20 21:23 - 2013-11-20 21:23 - 00054085 _____ C:\ProgramData\1385000580.bdinstall.bin
2013-11-20 20:52 - 2013-11-20 20:52 - 00054085 _____ C:\ProgramData\1384998682.bdinstall.bin
2013-11-20 20:21 - 2013-11-20 20:21 - 00054085 _____ C:\ProgramData\1384996838.bdinstall.bin
2013-11-20 19:50 - 2013-11-20 19:50 - 00054085 _____ C:\ProgramData\1384995003.bdinstall.bin
2013-11-20 19:18 - 2013-11-20 19:18 - 00054085 _____ C:\ProgramData\1384993043.bdinstall.bin
2013-11-20 18:46 - 2013-11-20 18:46 - 00054085 _____ C:\ProgramData\1384991139.bdinstall.bin
2013-11-20 18:15 - 2013-11-20 18:15 - 00054085 _____ C:\ProgramData\1384989273.bdinstall.bin
2013-11-20 17:44 - 2013-11-20 17:44 - 00054085 _____ C:\ProgramData\1384987355.bdinstall.bin
2013-11-20 17:12 - 2013-11-20 17:12 - 00054085 _____ C:\ProgramData\1384985429.bdinstall.bin
2013-11-20 16:40 - 2013-11-20 16:40 - 00054242 _____ C:\ProgramData\1384983600.bdinstall.bin
2013-11-16 20:28 - 2013-11-16 20:28 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_16112013_202849.html
2013-11-16 00:47 - 2013-11-16 00:47 - 00000005 _____ C:\Windows\system32\wslib2.response.000000000803637800000000082DFA70
2013-11-14 14:30 - 2013-11-28 19:04 - 00002043 _____ C:\Users\Public\Desktop\GeekBuddy.lnk
2013-11-14 08:46 - 2013-11-14 08:46 - 01940509 _____ C:\Users\Chris\Documents\CisReport_v6.3.300670.2970_20131114-084300.zip
2013-11-14 08:17 - 2013-11-14 08:17 - 00000000 ____D C:\IObit
2013-11-14 02:52 - 2013-11-14 03:00 - 01440846 _____ C:\Users\Chris\Downloads\mbam-chameleon-1.62.1.1000.zip
2013-11-13 23:49 - 2013-11-13 23:49 - 00000000 _____ C:\autoexec.bat
2013-11-13 23:48 - 2013-11-13 23:48 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-13 23:45 - 2013-11-15 00:02 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-13 23:43 - 2013-11-13 23:43 - 00003282 _____ C:\Windows\System32\Tasks\{DC2729CC-6D40-4B22-8449-D71D477169FD}
2013-11-13 08:11 - 2013-11-13 07:13 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2013-11-13 08:06 - 2013-11-13 08:06 - 00000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2013-11-13 07:59 - 2013-11-13 07:59 - 00000005 _____ C:\Windows\system32\wslib2.response.00000000080EF388000000000835FA70
2013-11-13 07:15 - 2013-11-13 07:15 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2013-11-13 07:14 - 2013-11-13 07:14 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll
2013-11-13 07:13 - 2013-11-13 07:13 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2013-11-13 03:55 - 2013-11-13 03:55 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_13112013_035506.html
2013-11-13 03:54 - 2013-11-13 03:54 - 11268640 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(5).exe
2013-11-13 03:53 - 2013-11-13 03:53 - 00782640 _____ (McAfee, Inc.) C:\Users\Chris\Downloads\rootkitremover(3).exe
2013-11-13 03:52 - 2013-11-13 03:52 - 01579552 _____ (McAfee Inc.) C:\Users\Chris\Downloads\getsusp(6).exe
2013-11-13 03:45 - 2013-11-13 03:45 - 10186272 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger32.exe
2013-11-13 02:17 - 2013-10-12 03:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-13 02:17 - 2013-10-12 03:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-13 02:17 - 2013-10-12 03:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-13 02:17 - 2013-10-12 03:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-13 02:17 - 2013-10-12 03:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-13 02:17 - 2013-10-12 03:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-13 02:17 - 2013-10-12 02:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-13 02:17 - 2013-10-12 02:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-13 02:17 - 2013-10-12 02:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-13 02:17 - 2013-10-12 02:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-13 02:17 - 2013-10-12 02:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-13 02:17 - 2013-10-12 01:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-13 02:17 - 2013-10-12 01:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-13 02:17 - 2013-10-12 00:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-13 02:17 - 2013-10-12 00:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-13 02:16 - 2013-10-12 03:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-13 02:16 - 2013-10-12 03:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-13 02:16 - 2013-10-12 03:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-13 02:16 - 2013-10-12 03:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-13 02:16 - 2013-10-12 03:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-13 02:16 - 2013-10-12 03:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-13 02:16 - 2013-10-12 03:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-13 02:16 - 2013-10-12 03:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-13 02:16 - 2013-10-12 02:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-13 02:16 - 2013-10-12 02:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-13 02:16 - 2013-10-12 02:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-13 02:16 - 2013-10-12 02:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-13 02:16 - 2013-10-12 02:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-13 02:16 - 2013-10-12 02:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-13 02:16 - 2013-10-12 02:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-13 02:16 - 2013-10-12 02:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-13 00:18 - 2013-11-13 00:18 - 00003094 _____ C:\Windows\System32\Tasks\ASC7_PerformanceMonitor
2013-11-13 00:11 - 2013-11-29 16:23 - 00000000 ____D C:\ProgramData\ProductData
2013-11-13 00:11 - 2013-11-13 00:11 - 00001237 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-11-13 00:11 - 2013-11-13 00:11 - 00001213 _____ C:\Users\Public\Desktop\Uninstaller.lnk
2013-11-13 00:10 - 2013-11-13 01:03 - 00002205 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2013-11-13 00:10 - 2013-11-13 00:10 - 00002850 _____ C:\Windows\System32\Tasks\ASC7_SkipUac_Chris
2013-11-13 00:10 - 2013-11-13 00:10 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-11-13 00:07 - 2013-11-13 00:08 - 33589176 _____ (IObit ) C:\Users\Chris\Downloads\asc7-setup.exe
2013-11-12 23:50 - 2013-11-12 23:50 - 76820480 _____ C:\Windows\system32\config\software.iobit
2013-11-12 23:50 - 2013-11-12 23:50 - 01396736 _____ C:\Windows\system32\config\default.iobit
2013-11-12 23:50 - 2013-11-12 23:50 - 00057344 _____ C:\Windows\system32\config\sam.iobit
2013-11-12 23:50 - 2013-11-12 23:50 - 00024576 _____ C:\Windows\system32\config\security.iobit
2013-11-12 23:13 - 2013-11-12 23:13 - 00000000 ____D C:\Program Files\AdTrustMedia
2013-11-12 23:12 - 2013-11-12 23:12 - 00000000 ____D C:\ProgramData\Adtrustmedia
2013-11-12 21:06 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-12 21:06 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-12 21:06 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-12 21:06 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-12 21:06 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-12 21:06 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-12 21:06 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-12 21:06 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-12 21:06 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-12 21:06 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-12 21:06 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-12 21:06 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-12 21:06 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-12 21:06 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-12 21:06 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-12 21:06 - 2013-09-27 20:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-12 21:06 - 2013-09-24 21:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-12 21:06 - 2013-09-24 21:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-12 21:06 - 2013-09-24 21:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-12 21:06 - 2013-09-24 21:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-12 21:06 - 2013-09-24 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-12 21:06 - 2013-09-24 21:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-12 21:06 - 2013-09-24 21:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-12 21:06 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-12 21:06 - 2013-09-24 20:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-12 21:06 - 2013-09-24 20:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-12 21:06 - 2013-09-24 20:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-12 21:06 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-12 21:06 - 2013-09-24 20:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-12 21:06 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-09 05:16 - 2013-11-09 05:43 - 00000639 _____ C:\Users\Chris\Downloads\Stinger_09112013_051606.html
2013-11-06 13:58 - 2013-11-13 19:11 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-06 13:57 - 2013-11-13 18:54 - 00000000 ____D C:\Users\Chris\Desktop\mbar
2013-11-05 15:07 - 2013-11-05 18:20 - 00000636 _____ C:\Users\Chris\Downloads\Stinger_05112013_150745.html
2013-11-05 15:06 - 2013-11-05 15:07 - 11215392 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(4).exe
2013-11-05 10:33 - 2013-11-05 10:33 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-11-05 10:26 - 2013-11-05 10:26 - 00000000 _____ C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-02 22:37 - 2013-11-02 22:37 - 00000005 _____ C:\Windows\system32\wslib2.response.0000000007E4FF5800000000080DFA70
2013-11-01 12:58 - 2013-11-01 12:58 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_01112013_135819.html
2013-11-01 03:21 - 2013-11-01 03:22 - 10264904 _____ (SurfRight B.V.) C:\Users\Chris\Downloads\hitmanpro_x64(2).exe
2013-11-01 03:16 - 2013-11-01 03:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\TeamViewer
2013-11-01 03:15 - 2013-11-01 03:15 - 03047256 _____ (TeamViewer) C:\Users\Chris\Downloads\QuickSupport.exe
2013-11-01 02:56 - 2013-11-01 02:57 - 00000599 _____ C:\Users\Chris\Downloads\Stinger_01112013_035626.html
2013-10-31 20:03 - 2013-10-31 20:03 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_31102013_210305.html
2013-10-31 19:57 - 2013-10-31 19:57 - 11210784 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(3).exe
2013-10-31 19:16 - 2013-10-31 19:16 - 01864957 _____ C:\Users\Chris\Documents\CisReport_v6.3.297838.2953_20131031-201637.zip
2013-10-31 14:10 - 2013-10-31 14:11 - 00000000 ____D C:\Users\Chris\Documents\stinger64-epo
2013-10-31 13:12 - 2013-10-31 13:12 - 04897880 _____ (Adobe Systems Inc.) C:\Users\Chris\Downloads\Shockwave_Installer_Slim(7).exe
2013-10-31 06:54 - 2013-10-31 06:54 - 00000000 ____D C:\Program Files\AOL Toolbar
2013-10-31 06:54 - 2013-10-31 06:54 - 00000000 ____D C:\Program Files (x86)\AOL Toolbar

==================== One Month Modified Files and Folders =======

2013-11-30 03:56 - 2013-11-30 03:56 - 00020211 _____ C:\Users\Chris\Downloads\FRST.txt
2013-11-30 03:55 - 2013-11-30 03:55 - 01959024 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2013-11-30 03:55 - 2013-11-30 03:55 - 00000000 ____D C:\FRST
2013-11-30 03:46 - 2012-10-28 02:45 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-30 03:41 - 2013-06-16 15:09 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-30 03:33 - 2012-10-11 12:30 - 00000000 ____D C:\Users\Chris
2013-11-30 03:30 - 2013-02-26 04:58 - 01100240 _____ C:\Windows\WindowsUpdate.log
2013-11-30 03:30 - 2013-02-04 22:31 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2013-11-30 03:18 - 2009-07-13 23:45 - 00026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-30 03:18 - 2009-07-13 23:45 - 00026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-30 03:10 - 2013-06-16 15:09 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-30 03:10 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-30 02:30 - 2013-01-14 20:29 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc3f1342-54b8-4674-8893-dea95460f755.job
2013-11-29 23:50 - 2013-11-29 23:50 - 00032512 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2013-11-29 23:48 - 2013-01-21 01:51 - 00001796 _____ C:\Windows\system32\.crusader
2013-11-29 23:40 - 2009-07-14 00:13 - 00006414 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-29 19:35 - 2013-05-07 18:09 - 00003186 _____ C:\Windows\System32\Tasks\HPCeeScheduleForChris
2013-11-29 19:35 - 2013-05-07 18:09 - 00000332 _____ C:\Windows\Tasks\HPCeeScheduleForChris.job
2013-11-29 18:00 - 2013-04-10 23:42 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c794df7a-a14f-4fc5-9f2b-4234a3b63090.job
2013-11-29 16:23 - 2013-11-13 00:11 - 00000000 ____D C:\ProgramData\ProductData
2013-11-29 15:00 - 2013-01-25 00:38 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ba7ce35a-3670-46c7-b91d-35b5047df3f7.job
2013-11-29 10:30 - 2013-01-14 20:29 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 52039095-fc50-4f35-92fa-90b2d48fef48.job
2013-11-29 09:01 - 2013-04-10 23:40 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 93693c8f-b5e0-4acd-bb5e-798ab3797dab.job
2013-11-28 19:04 - 2013-11-14 14:30 - 00002043 _____ C:\Users\Public\Desktop\GeekBuddy.lnk
2013-11-28 13:00 - 2013-02-04 22:31 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2013-11-28 12:55 - 2013-11-28 12:55 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-11-28 12:55 - 2013-11-28 12:53 - 00001931 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-11-28 12:54 - 2013-11-28 12:54 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-11-28 12:54 - 2012-10-19 00:48 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2013-11-28 12:53 - 2012-10-28 02:45 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-28 12:53 - 2012-10-28 02:45 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-28 12:53 - 2012-10-28 02:45 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-27 06:09 - 2013-11-27 05:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-27 06:09 - 2013-10-22 20:54 - 00000000 ____D C:\Program Files\Bitdefender
2013-11-27 05:48 - 2013-11-27 05:32 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-27 05:46 - 2013-11-27 05:46 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(4).exe
2013-11-27 05:46 - 2013-11-27 05:46 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(3).exe
2013-11-27 05:30 - 2013-11-27 05:30 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(2).exe
2013-11-27 01:26 - 2012-10-21 04:49 - 00000000 ____D C:\Users\Chris\AppData\Local\CrashDumps
2013-11-26 23:59 - 2013-11-26 23:59 - 00253825 _____ C:\ProgramData\1385527051.bdinstall.bin
2013-11-26 23:39 - 2013-10-26 20:15 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2013-11-26 23:39 - 2013-10-22 20:55 - 00000000 ____D C:\ProgramData\Bitdefender
2013-11-26 06:40 - 2013-11-26 06:40 - 00085966 _____ C:\Users\Chris\Downloads\Extras.Txt
2013-11-26 06:35 - 2013-11-26 06:35 - 00159392 _____ C:\Users\Chris\Downloads\OTL.Txt
2013-11-26 06:16 - 2013-11-26 06:16 - 00602112 _____ (OldTimer Tools) C:\Users\Chris\Downloads\OTL.exe
2013-11-26 06:15 - 2013-11-26 06:15 - 04725328 _____ (MyTurboPC.com) C:\Users\Chris\Downloads\myturbopc.exe
2013-11-26 05:46 - 2013-10-22 20:25 - 00000114 ___RH C:\Users\Chris\Downloads\Stinger.opt
2013-11-26 05:46 - 2013-04-13 20:27 - 00000000 ____D C:\Program Files\stinger
2013-11-26 05:44 - 2013-11-26 05:43 - 00016536 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\ddbimct.sys
2013-11-26 05:41 - 2013-11-26 05:41 - 00000000 ____D C:\Users\Chris\Documents\DDAgent
2013-11-26 04:41 - 2013-11-26 04:03 - 00022437 _____ C:\Users\Chris\Downloads\Stinger_26112013_040311.html
2013-11-26 04:15 - 2013-11-26 04:14 - 00000310 _____ C:\Users\Chris\Downloads\RootkitRemover_20131126_041453.log
2013-11-26 04:14 - 2013-11-26 04:13 - 00000310 _____ C:\Users\Chris\Downloads\RootkitRemover_20131126_041349.log
2013-11-26 04:13 - 2013-11-26 04:13 - 00782640 _____ (McAfee, Inc.) C:\Users\Chris\Downloads\rootkitremover(4).exe
2013-11-26 04:13 - 2013-10-22 20:59 - 00000066 ___RH C:\Users\Chris\Downloads\GetSusp.opt
2013-11-26 04:09 - 2013-11-26 04:09 - 03703065 _____ C:\Users\Chris\Downloads\gsusp_298D81DF662F_112613_040938.zip
2013-11-26 04:09 - 2013-11-26 04:07 - 00001182 _____ C:\Users\Chris\Downloads\GetSusp.xml
2013-11-26 04:07 - 2013-11-26 04:07 - 01579552 _____ (McAfee Inc.) C:\Users\Chris\Downloads\getsusp(4).exe
2013-11-26 04:02 - 2013-11-26 04:02 - 11303968 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(6).exe
2013-11-26 03:36 - 2013-11-26 03:36 - 00351124 _____ C:\Users\Chris\AppData\Local\mysearchdial-speeddial.crx
2013-11-26 03:22 - 2013-11-26 03:12 - 00000000 ____D C:\Users\Chris\Desktop\RK_Quarantine
2013-11-26 03:21 - 2013-11-26 03:21 - 00001575 _____ C:\Users\Chris\Desktop\RKreport[0]_S_11262013_032127.txt
2013-11-26 03:18 - 2013-11-26 03:18 - 00002215 _____ C:\Users\Chris\Desktop\RKreport[0]_D_11262013_031852.txt
2013-11-26 03:17 - 2013-11-26 03:17 - 00002067 _____ C:\Users\Chris\Desktop\RKreport[0]_S_11262013_031748.txt
2013-11-26 03:12 - 2013-11-26 03:12 - 04172288 _____ C:\Users\Chris\Downloads\RogueKillerX64.exe
2013-11-26 02:49 - 2013-11-26 02:43 - 00000000 ____D C:\AdwCleaner
2013-11-26 02:42 - 2013-11-26 02:42 - 01091882 _____ C:\Users\Chris\Downloads\adwcleaner.exe
2013-11-24 02:37 - 2013-11-24 02:37 - 00011436 _____ C:\ProgramData\1385278606.5900.bin
2013-11-24 02:37 - 2013-11-24 02:36 - 00014814 _____ C:\ProgramData\1385278606.3292.bin
2013-11-24 02:06 - 2013-11-24 02:06 - 00054085 _____ C:\ProgramData\1385276779.bdinstall.bin
2013-11-24 01:35 - 2013-11-24 01:35 - 00054085 _____ C:\ProgramData\1385274918.bdinstall.bin
2013-11-24 01:05 - 2013-11-24 01:05 - 00054242 _____ C:\ProgramData\1385273026.bdinstall.bin
2013-11-24 00:13 - 2013-11-24 00:13 - 00054085 _____ C:\ProgramData\1385269868.bdinstall.bin
2013-11-23 23:40 - 2013-11-23 23:40 - 00054085 _____ C:\ProgramData\1385267917.bdinstall.bin
2013-11-23 23:08 - 2013-11-23 23:08 - 00054085 _____ C:\ProgramData\1385266000.bdinstall.bin
2013-11-23 22:36 - 2013-11-23 22:36 - 00054084 _____ C:\ProgramData\1385264082.bdinstall.bin
2013-11-23 22:27 - 2012-10-14 05:35 - 00000000 ____D C:\Users\Chris\AppData\Local\Windows Live
2013-11-23 22:04 - 2013-11-23 22:04 - 00054084 _____ C:\ProgramData\1385262168.bdinstall.bin
2013-11-23 21:32 - 2013-11-23 21:32 - 00054084 _____ C:\ProgramData\1385260241.bdinstall.bin
2013-11-23 21:00 - 2013-11-23 21:00 - 00054085 _____ C:\ProgramData\1385258278.bdinstall.bin
2013-11-23 20:28 - 2013-11-23 20:28 - 00054266 _____ C:\ProgramData\1385256412.bdinstall.bin
2013-11-23 19:57 - 2013-11-23 19:57 - 00054242 _____ C:\ProgramData\1385254551.bdinstall.bin
2013-11-23 05:21 - 2013-11-23 05:21 - 00054085 _____ C:\ProgramData\1385202002.bdinstall.bin
2013-11-23 04:50 - 2013-11-23 04:50 - 00054085 _____ C:\ProgramData\1385200160.bdinstall.bin
2013-11-23 04:19 - 2013-11-23 04:19 - 00054085 _____ C:\ProgramData\1385198256.bdinstall.bin
2013-11-23 03:47 - 2013-11-23 03:47 - 00054085 _____ C:\ProgramData\1385196350.bdinstall.bin
2013-11-23 03:16 - 2013-11-23 03:16 - 00054085 _____ C:\ProgramData\1385194511.bdinstall.bin
2013-11-23 02:44 - 2013-11-23 02:44 - 00054085 _____ C:\ProgramData\1385192642.bdinstall.bin
2013-11-23 02:14 - 2013-11-23 02:14 - 00054085 _____ C:\ProgramData\1385190808.bdinstall.bin
2013-11-23 01:43 - 2013-11-23 01:43 - 00054242 _____ C:\ProgramData\1385188980.bdinstall.bin
2013-11-22 23:45 - 2013-11-22 23:45 - 00054084 _____ C:\ProgramData\1385181776.bdinstall.bin
2013-11-22 23:12 - 2013-11-22 23:12 - 00054085 _____ C:\ProgramData\1385179810.bdinstall.bin
2013-11-22 22:39 - 2013-11-22 22:39 - 00054085 _____ C:\ProgramData\1385177833.bdinstall.bin
2013-11-22 22:07 - 2013-11-22 22:07 - 00054085 _____ C:\ProgramData\1385175891.bdinstall.bin
2013-11-22 21:34 - 2013-11-22 21:34 - 00054085 _____ C:\ProgramData\1385173968.bdinstall.bin
2013-11-22 21:02 - 2013-11-22 21:02 - 00054085 _____ C:\ProgramData\1385172020.bdinstall.bin
2013-11-22 20:29 - 2013-11-22 20:29 - 00054085 _____ C:\ProgramData\1385169982.bdinstall.bin
2013-11-22 19:56 - 2013-11-22 19:56 - 00054084 _____ C:\ProgramData\1385167981.bdinstall.bin
2013-11-22 19:23 - 2013-11-22 19:23 - 00054085 _____ C:\ProgramData\1385166064.bdinstall.bin
2013-11-22 18:50 - 2013-11-22 18:50 - 00054085 _____ C:\ProgramData\1385164031.bdinstall.bin
2013-11-22 18:15 - 2013-11-22 18:15 - 00054085 _____ C:\ProgramData\1385161501.bdinstall.bin
2013-11-22 17:34 - 2013-11-22 17:34 - 00054085 _____ C:\ProgramData\1385159589.bdinstall.bin
2013-11-22 17:03 - 2013-11-22 17:03 - 00054085 _____ C:\ProgramData\1385157723.bdinstall.bin
2013-11-22 16:30 - 2013-11-22 16:30 - 00054085 _____ C:\ProgramData\1385155604.bdinstall.bin
2013-11-22 15:55 - 2013-11-22 15:55 - 00054085 _____ C:\ProgramData\1385153341.bdinstall.bin
2013-11-22 15:18 - 2013-11-22 15:18 - 00054242 _____ C:\ProgramData\1385151404.bdinstall.bin
2013-11-22 05:40 - 2013-11-22 05:40 - 00054085 _____ C:\ProgramData\1385116775.bdinstall.bin
2013-11-22 05:09 - 2013-11-22 05:09 - 00054084 _____ C:\ProgramData\1385114938.bdinstall.bin
2013-11-22 04:38 - 2013-11-22 04:38 - 00054085 _____ C:\ProgramData\1385113067.bdinstall.bin
2013-11-22 04:07 - 2013-11-22 04:07 - 00054085 _____ C:\ProgramData\1385111210.bdinstall.bin
2013-11-22 03:36 - 2013-11-22 03:36 - 00054085 _____ C:\ProgramData\1385109375.bdinstall.bin
2013-11-22 03:05 - 2013-11-22 03:05 - 00054085 _____ C:\ProgramData\1385107510.bdinstall.bin
2013-11-22 02:34 - 2013-11-22 02:34 - 00054241 _____ C:\ProgramData\1385105646.bdinstall.bin
2013-11-21 22:24 - 2013-11-21 22:24 - 00054084 _____ C:\ProgramData\1385090605.bdinstall.bin
2013-11-21 21:53 - 2013-11-21 21:53 - 00054084 _____ C:\ProgramData\1385088681.bdinstall.bin
2013-11-21 21:21 - 2013-11-21 21:21 - 00054242 _____ C:\ProgramData\1385086852.bdinstall.bin
2013-11-21 20:44 - 2013-11-21 20:44 - 00053928 _____ C:\ProgramData\1385084478.bdinstall.bin
2013-11-21 20:11 - 2013-11-21 20:11 - 00053928 _____ C:\ProgramData\1385082461.bdinstall.bin
2013-11-21 19:38 - 2013-11-21 19:38 - 00053927 _____ C:\ProgramData\1385080480.bdinstall.bin
2013-11-21 19:04 - 2013-11-21 19:04 - 00053928 _____ C:\ProgramData\1385078534.bdinstall.bin
2013-11-21 18:32 - 2013-11-21 18:32 - 00053927 _____ C:\ProgramData\1385076563.bdinstall.bin
2013-11-21 18:00 - 2013-11-21 18:00 - 00053928 _____ C:\ProgramData\1385074590.bdinstall.bin
2013-11-21 17:26 - 2013-11-21 17:26 - 00053928 _____ C:\ProgramData\1385072648.bdinstall.bin
2013-11-21 16:54 - 2013-11-21 16:54 - 00053928 _____ C:\ProgramData\1385070690.bdinstall.bin
2013-11-21 16:20 - 2013-11-21 16:20 - 00053928 _____ C:\ProgramData\1385068708.bdinstall.bin
2013-11-21 15:48 - 2013-11-21 15:48 - 00053928 _____ C:\ProgramData\1385066775.bdinstall.bin
2013-11-21 15:16 - 2013-11-21 15:16 - 00053928 _____ C:\ProgramData\1385064814.bdinstall.bin
2013-11-21 14:43 - 2013-11-21 14:43 - 00053928 _____ C:\ProgramData\1385062801.bdinstall.bin
2013-11-21 14:10 - 2013-11-21 14:10 - 00053928 _____ C:\ProgramData\1385060419.bdinstall.bin
2013-11-21 13:30 - 2013-11-21 13:30 - 00053928 _____ C:\ProgramData\1385058400.bdinstall.bin
2013-11-21 12:56 - 2013-11-21 12:56 - 00053928 _____ C:\ProgramData\1385056453.bdinstall.bin
2013-11-21 12:24 - 2013-11-21 12:24 - 00053928 _____ C:\ProgramData\1385054497.bdinstall.bin
2013-11-21 11:51 - 2013-11-21 11:51 - 00053928 _____ C:\ProgramData\1385052451.bdinstall.bin
2013-11-21 11:16 - 2013-11-21 11:16 - 00053928 _____ C:\ProgramData\1385050427.bdinstall.bin
2013-11-21 10:43 - 2013-11-21 10:43 - 00053927 _____ C:\ProgramData\1385048351.bdinstall.bin
2013-11-21 10:09 - 2013-11-21 10:09 - 00053928 _____ C:\ProgramData\1385046380.bdinstall.bin
2013-11-21 09:35 - 2013-11-21 09:35 - 00053928 _____ C:\ProgramData\1385044394.bdinstall.bin
2013-11-21 09:02 - 2013-11-21 09:02 - 00053928 _____ C:\ProgramData\1385042364.bdinstall.bin
2013-11-21 08:28 - 2013-11-21 08:28 - 00053928 _____ C:\ProgramData\1385039880.bdinstall.bin
2013-11-21 07:48 - 2013-11-21 07:48 - 00053928 _____ C:\ProgramData\1385038008.bdinstall.bin
2013-11-21 07:16 - 2013-11-21 07:16 - 00053928 _____ C:\ProgramData\1385036154.bdinstall.bin
2013-11-21 06:45 - 2013-11-21 06:45 - 00053928 _____ C:\ProgramData\1385034227.bdinstall.bin
2013-11-21 06:14 - 2013-11-21 06:14 - 00053928 _____ C:\ProgramData\1385032374.bdinstall.bin
2013-11-21 05:42 - 2013-11-21 05:42 - 00053928 _____ C:\ProgramData\1385030438.bdinstall.bin
2013-11-21 05:11 - 2013-11-21 05:10 - 00053928 _____ C:\ProgramData\1385028597.bdinstall.bin
2013-11-21 04:40 - 2013-11-21 04:40 - 00053928 _____ C:\ProgramData\1385026756.bdinstall.bin
2013-11-21 04:09 - 2013-11-21 04:09 - 00053928 _____ C:\ProgramData\1385024914.bdinstall.bin
2013-11-21 03:39 - 2013-11-21 03:39 - 00053927 _____ C:\ProgramData\1385023033.bdinstall.bin
2013-11-21 03:06 - 2013-11-21 03:06 - 00053928 _____ C:\ProgramData\1385021129.bdinstall.bin
2013-11-21 02:35 - 2013-11-21 02:35 - 00053928 _____ C:\ProgramData\1385019214.bdinstall.bin
2013-11-21 02:03 - 2013-11-21 02:03 - 00053928 _____ C:\ProgramData\1385017374.bdinstall.bin
2013-11-21 01:33 - 2013-11-21 01:33 - 00053928 _____ C:\ProgramData\1385015467.bdinstall.bin
2013-11-21 01:01 - 2013-11-21 01:01 - 00053928 _____ C:\ProgramData\1385013619.bdinstall.bin
2013-11-21 00:31 - 2013-11-21 00:31 - 00053927 _____ C:\ProgramData\1385011774.bdinstall.bin
2013-11-20 23:59 - 2013-11-20 23:59 - 00053927 _____ C:\ProgramData\1385009919.bdinstall.bin
2013-11-20 23:28 - 2013-11-20 23:28 - 00053928 _____ C:\ProgramData\1385008069.bdinstall.bin
2013-11-20 22:57 - 2013-11-20 22:57 - 00054085 _____ C:\ProgramData\1385006224.bdinstall.bin
2013-11-20 22:27 - 2013-11-20 22:27 - 00054085 _____ C:\ProgramData\1385004317.bdinstall.bin
2013-11-20 21:55 - 2013-11-20 21:55 - 00054085 _____ C:\ProgramData\1385002419.bdinstall.bin
2013-11-20 21:23 - 2013-11-20 21:23 - 00054085 _____ C:\ProgramData\1385000580.bdinstall.bin
2013-11-20 20:52 - 2013-11-20 20:52 - 00054085 _____ C:\ProgramData\1384998682.bdinstall.bin
2013-11-20 20:21 - 2013-11-20 20:21 - 00054085 _____ C:\ProgramData\1384996838.bdinstall.bin
2013-11-20 19:50 - 2013-11-20 19:50 - 00054085 _____ C:\ProgramData\1384995003.bdinstall.bin
2013-11-20 19:18 - 2013-11-20 19:18 - 00054085 _____ C:\ProgramData\1384993043.bdinstall.bin
2013-11-20 18:46 - 2013-11-20 18:46 - 00054085 _____ C:\ProgramData\1384991139.bdinstall.bin
2013-11-20 18:15 - 2013-11-20 18:15 - 00054085 _____ C:\ProgramData\1384989273.bdinstall.bin
2013-11-20 17:44 - 2013-11-20 17:44 - 00054085 _____ C:\ProgramData\1384987355.bdinstall.bin
2013-11-20 17:12 - 2013-11-20 17:12 - 00054085 _____ C:\ProgramData\1384985429.bdinstall.bin
2013-11-20 16:40 - 2013-11-20 16:40 - 00054242 _____ C:\ProgramData\1384983600.bdinstall.bin
2013-11-17 23:27 - 2010-07-10 23:50 - 00000000 ____D C:\Program Files (x86)\CyberLink
2013-11-16 20:28 - 2013-11-16 20:28 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_16112013_202849.html
2013-11-16 20:19 - 2012-10-28 02:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-16 14:55 - 2013-02-20 03:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 00:47 - 2013-11-16 00:47 - 00000005 _____ C:\Windows\system32\wslib2.response.000000000803637800000000082DFA70
2013-11-15 08:31 - 2013-01-14 20:26 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-11-15 02:21 - 2010-09-26 03:52 - 00000000 ____D C:\ProgramData\WildTangent
2013-11-15 02:21 - 2010-09-26 03:52 - 00000000 ____D C:\Program Files (x86)\HP Games
2013-11-15 00:39 - 2012-11-21 03:03 - 00000000 ____D C:\Program Files (x86)\Canon
2013-11-15 00:14 - 2010-07-10 22:10 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-15 00:02 - 2013-11-13 23:45 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-14 23:44 - 2012-10-15 14:25 - 00000000 ____D C:\Users\Chris\AppData\Roaming\IObit
2013-11-14 23:44 - 2012-10-15 14:25 - 00000000 ____D C:\Program Files (x86)\IObit
2013-11-14 23:27 - 2010-07-10 23:50 - 00000000 ____D C:\ProgramData\CyberLink
2013-11-14 19:02 - 2013-10-30 21:46 - 00000000 ____D C:\Windows\Minidump
2013-11-14 08:46 - 2013-11-14 08:46 - 01940509 _____ C:\Users\Chris\Documents\CisReport_v6.3.300670.2970_20131114-084300.zip
2013-11-14 08:17 - 2013-11-14 08:17 - 00000000 ____D C:\IObit
2013-11-14 08:17 - 2009-07-14 00:08 - 00032550 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-14 06:38 - 2013-01-24 22:43 - 00043216 _____ (COMODO) C:\Windows\system32\cmdcsr.dll
2013-11-14 06:38 - 2013-01-16 19:51 - 00709144 _____ (COMODO) C:\Windows\system32\Drivers\cmdguard.sys
2013-11-14 03:00 - 2013-11-14 02:52 - 01440846 _____ C:\Users\Chris\Downloads\mbam-chameleon-1.62.1.1000.zip
2013-11-13 23:49 - 2013-11-13 23:49 - 00000000 _____ C:\autoexec.bat
2013-11-13 23:48 - 2013-11-13 23:48 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-13 23:43 - 2013-11-13 23:43 - 00003282 _____ C:\Windows\System32\Tasks\{DC2729CC-6D40-4B22-8449-D71D477169FD}
2013-11-13 19:11 - 2013-11-06 13:58 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-13 18:54 - 2013-11-06 13:57 - 00000000 ____D C:\Users\Chris\Desktop\mbar
2013-11-13 15:28 - 2013-10-22 21:14 - 00000000 ____D C:\Users\Chris\AppData\Roaming\QuickScan
2013-11-13 12:14 - 2009-09-06 20:57 - 00000000 ____D C:\Windows\Panther
2013-11-13 12:06 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2013-11-13 08:06 - 2013-11-13 08:06 - 00000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2013-11-13 07:59 - 2013-11-13 07:59 - 00000005 _____ C:\Windows\system32\wslib2.response.00000000080EF388000000000835FA70
2013-11-13 07:15 - 2013-11-13 07:15 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2013-11-13 07:14 - 2013-11-13 07:14 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll
2013-11-13 07:13 - 2013-11-13 08:11 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2013-11-13 07:13 - 2013-11-13 07:13 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2013-11-13 03:55 - 2013-11-13 03:55 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_13112013_035506.html
2013-11-13 03:54 - 2013-11-13 03:54 - 11268640 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(5).exe
2013-11-13 03:53 - 2013-11-13 03:53 - 00782640 _____ (McAfee, Inc.) C:\Users\Chris\Downloads\rootkitremover(3).exe
2013-11-13 03:52 - 2013-11-13 03:52 - 01579552 _____ (McAfee Inc.) C:\Users\Chris\Downloads\getsusp(6).exe
2013-11-13 03:45 - 2013-11-13 03:45 - 10186272 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger32.exe
2013-11-13 02:11 - 2013-07-18 01:11 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 02:02 - 2012-10-14 19:08 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 01:03 - 2013-11-13 00:10 - 00002205 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2013-11-13 00:18 - 2013-11-13 00:18 - 00003094 _____ C:\Windows\System32\Tasks\ASC7_PerformanceMonitor
2013-11-13 00:11 - 2013-11-13 00:11 - 00001237 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-11-13 00:11 - 2013-11-13 00:11 - 00001213 _____ C:\Users\Public\Desktop\Uninstaller.lnk
2013-11-13 00:10 - 2013-11-13 00:10 - 00002850 _____ C:\Windows\System32\Tasks\ASC7_SkipUac_Chris
2013-11-13 00:10 - 2013-11-13 00:10 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-11-13 00:10 - 2012-10-15 14:26 - 00000000 ____D C:\ProgramData\IObit
2013-11-13 00:08 - 2013-11-13 00:07 - 33589176 _____ (IObit ) C:\Users\Chris\Downloads\asc7-setup.exe
2013-11-12 23:50 - 2013-11-12 23:50 - 76820480 _____ C:\Windows\system32\config\software.iobit
2013-11-12 23:50 - 2013-11-12 23:50 - 01396736 _____ C:\Windows\system32\config\default.iobit
2013-11-12 23:50 - 2013-11-12 23:50 - 00057344 _____ C:\Windows\system32\config\sam.iobit
2013-11-12 23:50 - 2013-11-12 23:50 - 00024576 _____ C:\Windows\system32\config\security.iobit
2013-11-12 23:13 - 2013-11-12 23:13 - 00000000 ____D C:\Program Files\AdTrustMedia
2013-11-12 23:12 - 2013-11-12 23:12 - 00000000 ____D C:\ProgramData\Adtrustmedia
2013-11-12 23:07 - 2013-02-04 22:31 - 00001838 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2013-11-11 05:50 - 2012-10-14 04:41 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-09 05:43 - 2013-11-09 05:16 - 00000639 _____ C:\Users\Chris\Downloads\Stinger_09112013_051606.html
2013-11-05 18:20 - 2013-11-05 15:07 - 00000636 _____ C:\Users\Chris\Downloads\Stinger_05112013_150745.html
2013-11-05 15:07 - 2013-11-05 15:06 - 11215392 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(4).exe
2013-11-05 12:32 - 2012-10-16 18:51 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-11-05 12:31 - 2012-12-11 15:48 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-11-05 10:33 - 2013-11-05 10:33 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-11-05 10:26 - 2013-11-05 10:26 - 00000000 _____ C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-02 22:37 - 2013-11-02 22:37 - 00000005 _____ C:\Windows\system32\wslib2.response.0000000007E4FF5800000000080DFA70
2013-11-01 12:58 - 2013-11-01 12:58 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_01112013_135819.html
2013-11-01 03:22 - 2013-11-01 03:21 - 10264904 _____ (SurfRight B.V.) C:\Users\Chris\Downloads\hitmanpro_x64(2).exe
2013-11-01 03:19 - 2012-11-02 05:32 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Windows Live Writer
2013-11-01 03:16 - 2013-11-01 03:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\TeamViewer
2013-11-01 03:15 - 2013-11-01 03:15 - 03047256 _____ (TeamViewer) C:\Users\Chris\Downloads\QuickSupport.exe
2013-11-01 02:57 - 2013-11-01 02:56 - 00000599 _____ C:\Users\Chris\Downloads\Stinger_01112013_035626.html
2013-11-01 02:30 - 2012-10-14 05:21 - 00000975 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-31 20:03 - 2013-10-31 20:03 - 00000000 _____ C:\Users\Chris\Downloads\Stinger_31102013_210305.html
2013-10-31 19:57 - 2013-10-31 19:57 - 11210784 _____ (McAfee Inc) C:\Users\Chris\Downloads\stinger64(3).exe
2013-10-31 19:17 - 2012-10-23 22:50 - 00000000 ____D C:\Users\Chris\AppData\Local\Cyberlink
2013-10-31 19:16 - 2013-10-31 19:16 - 01864957 _____ C:\Users\Chris\Documents\CisReport_v6.3.297838.2953_20131031-201637.zip
2013-10-31 17:17 - 2013-08-28 02:36 - 00000000 ____D C:\Program Files (x86)\Secure Speed Dial
2013-10-31 14:11 - 2013-10-31 14:10 - 00000000 ____D C:\Users\Chris\Documents\stinger64-epo
2013-10-31 13:12 - 2013-10-31 13:12 - 04897880 _____ (Adobe Systems Inc.) C:\Users\Chris\Downloads\Shockwave_Installer_Slim(7).exe
2013-10-31 06:54 - 2013-10-31 06:54 - 00000000 ____D C:\Program Files\AOL Toolbar
2013-10-31 06:54 - 2013-10-31 06:54 - 00000000 ____D C:\Program Files (x86)\AOL Toolbar
2013-10-31 06:54 - 2012-10-16 21:42 - 00000000 ____D C:\Users\Chris\AppData\Local\AOL Toolbar

Files to move or delete:
====================
C:\ProgramData\uninstaller.exe


Some content of TEMP:
====================
C:\Users\Chris\AppData\Local\Temp\HitmanPro.exe
C:\Users\Chris\AppData\Local\Temp\Kickstarter.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 00:16

==================== End Of Log ============================
  • 0

#4
ramsxx

ramsxx

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-11-2013
Ran by Chris at 2013-11-30 03:57:05
Running from C:\Users\Chris\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: COMODO Antivirus (Disabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Disabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

==================== Installed Programs ======================

ACCU-CHEK 360° (x32 Version: 1.0.35)
Acrobat.com (x32 Version: 1.6.65)
Adobe AIR (x32 Version: 3.8.0.1430)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader XI (11.0.05) (x32 Version: 11.0.05)
Adobe Shockwave Player 11.5 (x32 Version: 11.5.7.609)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.5.146)
Advanced SystemCare 7 (x32 Version: 7.0.5)
AOL Toolbar (x32)
Atheros Driver Installation Program (x32 Version: 9.0)
ATI Catalyst Install Manager (Version: 3.0.790.0)
Belarc Advisor 8.3 (x32 Version: 8.3.2.0)
Bitdefender 60-Second Virus Scanner (Version: 1.0.3.76)
Borland Data Engine (x32 Version: 5.2.0)
Canon MP Navigator EX 1.0 (x32)
Canon MP970 series
Canon My Printer
Canon Utilities Easy-PhotoPrint EX (x32)
Canon Utilities Solution Menu (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0929.2212.37971)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0929.2212.37971)
Catalyst Control Center InstallProxy (x32 Version: 2010.0617.855.14122)
Catalyst Control Center InstallProxy (x32 Version: 2010.0929.2212.37971)
Catalyst Control Center Localization All (x32 Version: 2010.0929.2212.37971)
CCC Help Chinese Standard (x32 Version: 2010.0929.2211.37971)
CCC Help Chinese Traditional (x32 Version: 2010.0929.2211.37971)
CCC Help Czech (x32 Version: 2010.0929.2211.37971)
CCC Help Danish (x32 Version: 2010.0929.2211.37971)
CCC Help Dutch (x32 Version: 2010.0929.2211.37971)
CCC Help English (x32 Version: 2010.0929.2211.37971)
CCC Help Finnish (x32 Version: 2010.0929.2211.37971)
CCC Help French (x32 Version: 2010.0929.2211.37971)
CCC Help German (x32 Version: 2010.0929.2211.37971)
CCC Help Greek (x32 Version: 2010.0929.2211.37971)
CCC Help Hungarian (x32 Version: 2010.0929.2211.37971)
CCC Help Italian (x32 Version: 2010.0929.2211.37971)
CCC Help Japanese (x32 Version: 2010.0929.2211.37971)
CCC Help Korean (x32 Version: 2010.0929.2211.37971)
CCC Help Norwegian (x32 Version: 2010.0929.2211.37971)
CCC Help Polish (x32 Version: 2010.0929.2211.37971)
CCC Help Portuguese (x32 Version: 2010.0929.2211.37971)
CCC Help Russian (x32 Version: 2010.0929.2211.37971)
CCC Help Spanish (x32 Version: 2010.0929.2211.37971)
CCC Help Swedish (x32 Version: 2010.0929.2211.37971)
CCC Help Thai (x32 Version: 2010.0929.2211.37971)
CCC Help Turkish (x32 Version: 2010.0929.2211.37971)
ccc-core-static (x32 Version: 2010.0929.2212.37971)
ccc-utility64 (Version: 2010.0929.2212.37971)
CCleaner (Version: 4.07)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
COMODO Internet Security (Version: 6.0.2566.2708)
CyberLink YouCam (x32 Version: 3.0.2511)
D3DX10 (x32 Version: 15.4.2368.0902)
Energy Star Digital Logo (x32 Version: 1.0.1)
ESU for Microsoft Windows 7 (x32 Version: 1.0.0)
GeekBuddy (x32 Version: 4.10.75)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)
HitmanPro 3.7 (Version: 3.7.8.208)
HP Advisor (x32 Version: 3.4.10262.3295)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7)
HP Documentation (x32 Version: 1.1.1.0)
HP Games (x32 Version: 1.0.1.3)
HP MediaSmart CinemaNow 2.0 (x32 Version: 2.0)
HP Power Manager (x32 Version: 1.0.3)
HP Product Detection (x32 Version: 11.15.0009)
HP Quick Launch (x32 Version: 2.3.6)
HP Setup (x32 Version: 8.1.4186.3400)
HP Software Framework (x32 Version: 4.0.108.1)
HP Support Assistant (x32 Version: 7.0.39.15)
HP Wireless Assistant (Version: 4.0.9.0)
Internet Explorer (Enable DEP)
IObit Uninstaller (x32 Version: 3.0.3.1064)
Java 7 Update 45 (64-bit) (Version: 7.0.450)
Java 7 Update 45 (x32 Version: 7.0.450)
Java SE Development Kit 7 Update 45 (64-bit) (Version: 1.7.0.450)
Junk Mail filter update (x32 Version: 16.4.3505.0912)
Kodak Share for Media Center (x32 Version: 1.0.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
McAfee Security Scan Plus (Version: 3.8.130.10)
McAfee Virtual Technician (x32 Version: 7.1.0.2483)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Camera Codec Pack (Version: 16.4.1970.0624)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910)
Microsoft SQL Server 2005 (x32)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (ACCUCHEK360) (x32 Version: 9.4.5000.00)
Microsoft SQL Server 2005 Tools Express Edition (x32 Version: 9.4.5000.00)
Microsoft SQL Server Management Objects Collection (Version: 9.00.1399.06)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (x32 Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft VC9 runtime libraries (x32 Version: 2.0.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 25.0.1 (x86 en-US) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Photo Gallery (x32 Version: 16.4.3505.0912)
PhotoNow! (x32 Version: 1.1.6904)
Picasa 3 (x32 Version: 3.9)
Power2Go (x32 Version: 6.1.4204)
PowerDirector (x32 Version: 8.0.3003)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.18.322.2010)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30120)
Recovery Manager (x32 Version: 5.5.3023)
Roxio CinemaNow 2.0 (x32 Version: 1.0.278)
RtVOsd (Version: 1.0.6)
ScanSoft OmniPage SE 4 (x32 Version: 15.2.0020)
Secunia PSI (3.0.0.8013) (x32 Version: 3.0.0.8013)
Smart Defrag 2 (x32 Version: 2.9)
Speccy (Version: 1.23)
SUPERAntiSpyware (Version: 5.6.1014)
swMSM (x32 Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
TechPowerUp GPU-Z (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Zip Extractor (HKCU)
Update Installer for WildTangent Games App (x32)
Video Card Stability Test (x32 Version: v.1.0.0.3)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95)
WildTangent Games App (HP Games) (x32 Version: 4.0.10.5)
Windows 7 Upgrade Advisor (x32 Version: 2.0.5000.0)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Family Safety (Version: 16.4.3505.0912)
Windows Live Family Safety (x32 Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Mail (x32 Version: 16.4.3505.0912)
Windows Live Messenger (x32 Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live Sync (x32 Version: 14.0.8117.416)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
Windows Live Writer (x32 Version: 16.4.3505.0912)
Windows Live Writer Resources (x32 Version: 16.4.3505.0912)
Zip Extractor Packages (HKCU)

==================== Restore Points =========================

30-11-2013 06:05:45 Scheduled Checkpoint

==================== Hosts content: ==========================

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0DCF8C77-7AAF-4070-9FBD-C0AB926D7760} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {12053422-6BF6-45A7-ADF5-CF2402AD3558} - System32\Tasks\SUPERAntiSpyware Scheduled Task 52039095-fc50-4f35-92fa-90b2d48fef48 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2011-05-04] (SUPERAdBlocker.com)
Task: {1E11A7DB-6912-4D0A-82F2-9979CA1AAB40} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [2013-10-25] (IObit)
Task: {2ADF7E9A-DB39-4F31-B6AC-AB5A0717B0C2} - System32\Tasks\SUPERAntiSpyware Scheduled Task dc3f1342-54b8-4674-8893-dea95460f755 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2011-05-04] (SUPERAdBlocker.com)
Task: {2D369C35-299A-4519-8EFF-E119424BF7CF} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {35DFB984-16B6-4A8B-868B-8CD69929D7F3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-04-01] (Hewlett-Packard Company)
Task: {38676B1E-D7D3-41EF-8DCD-2197904BC41F} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-12] (COMODO)
Task: {3D5E964D-3AB4-4785-B937-6605482D3171} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {40A71A83-5AE0-4C27-8240-EFE07CCCA051} - System32\Tasks\SUPERAntiSpyware Scheduled Task ba7ce35a-3670-46c7-b91d-35b5047df3f7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2011-05-04] (SUPERAdBlocker.com)
Task: {45E69183-41F3-46DD-BE3E-5C2A33ED2487} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {52DEACBA-F9BC-4612-98FB-8A668D82C5FF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-16] (Google Inc.)
Task: {56ECB138-30BA-4304-B5D9-E7A9FEF6A35E} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-12] (COMODO)
Task: {64B7CBAC-1011-4123-AEF4-A58E8FDE9D31} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-16] (Google Inc.)
Task: {6F855D0C-04C8-49F1-90AF-656668FA4937} - System32\Tasks\HPCeeScheduleForChris => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {721A3BE2-D12A-4738-9EBC-E5748C87ADFD} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-12] (COMODO)
Task: {7383ADD1-49EE-4431-AFFA-C5B94BEFBA41} - System32\Tasks\ASC7_SkipUac_Chris => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2013-10-28] (IObit)
Task: {79E3B658-A0DF-4D00-916A-CAED796BCBB0} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-11-20] (COMODO)
Task: {888F7FF7-D4DC-431E-8896-B582FA9E0C6B} - System32\Tasks\SUPERAntiSpyware Scheduled Task c794df7a-a14f-4fc5-9f2b-4234a3b63090 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2011-05-04] (SUPERAdBlocker.com)
Task: {ADB7FFC8-589E-484E-87AC-C58914C49D84} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-21] (Piriform Ltd)
Task: {AE3EF3E8-B0F9-403A-BF62-1EE989C86AD6} - System32\Tasks\COMODO\COMODO Scan {E3D1F4AC-4715-4625-A376-8E836FFB2CDB} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-12] (COMODO)
Task: {AE741266-2C05-405A-9701-34E8B1FEDEF8} - \DigitalSite No Task File
Task: {B4396194-0888-47DF-A2FB-21888BF6C390} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-28] (Adobe Systems Incorporated)
Task: {B4510E76-F30A-46DA-AC48-D7E328CF2AB5} - System32\Tasks\SmartDefragUpdate => C:\Program Files (x86)\IObit\Smart Defrag 2\AutoUpdate.exe [2013-05-22] (IObit)
Task: {B6B766E8-681B-4CC5-BD3D-00471EB3B1A0} - System32\Tasks\SUPERAntiSpyware Scheduled Task 93693c8f-b5e0-4acd-bb5e-798ab3797dab => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2011-05-04] (SUPERAdBlocker.com)
Task: {B6FF6D6F-448D-42C9-BAE3-F4712B07026D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2013-10-22] (Microsoft)
Task: {BB8980C7-922E-4F79-963B-E051541CAE5D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {E254D7BA-C97F-49B0-9D23-29E32E3129F7} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-12] (COMODO)
Task: {E4119EF8-A309-4AAD-9BF2-91E46702643D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-10-15] (Hewlett-Packard)
Task: {EA28F3A8-6A24-4D1E-A599-D84936FB9853} - System32\Tasks\SmartDefrag_Schedule => C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe [2013-09-13] (IObit)
Task: {F3FC771E-226D-4394-8263-680716648D49} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {F7E5D578-1C08-47B5-AE55-81E20ECF7878} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForChris.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 52039095-fc50-4f35-92fa-90b2d48fef48.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 93693c8f-b5e0-4acd-bb5e-798ab3797dab.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ba7ce35a-3670-46c7-b91d-35b5047df3f7.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c794df7a-a14f-4fc5-9f2b-4234a3b63090.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc3f1342-54b8-4674-8893-dea95460f755.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (whitelisted) =============

2010-08-26 15:51 - 2010-08-26 15:51 - 00016384 ____R () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-09-29 21:11 - 2010-09-29 21:11 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2010-06-18 18:26 - 2010-06-18 18:26 - 00030264 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_LogicLayer.dll
2010-06-18 18:26 - 2010-06-18 18:26 - 00052280 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HardwareAccess.dll
2010-06-18 18:26 - 2010-06-18 18:26 - 00267832 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPCommon.XmlSerializers.dll
2013-11-13 00:10 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl
2013-11-13 00:10 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl
2013-11-13 00:10 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl
2013-11-13 00:10 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll
2013-11-28 11:17 - 2013-11-28 11:17 - 00976080 _____ () C:\Program Files (x86)\Comodo\GeekBuddy\QtNetwork4.dll
2013-11-28 11:17 - 2013-11-28 11:17 - 02254544 _____ () C:\Program Files (x86)\Comodo\GeekBuddy\QtCore4.dll
2013-11-28 11:17 - 2013-11-28 11:17 - 08024784 _____ () C:\Program Files (x86)\Comodo\GeekBuddy\QtGui4.dll
2013-11-28 11:17 - 2013-11-28 11:17 - 00032976 _____ () C:\Program Files (x86)\Comodo\GeekBuddy\imageformats\qgif4.dll
2013-11-28 11:17 - 2013-11-28 11:17 - 01299664 _____ () C:\Program Files (x86)\Comodo\GeekBuddy\QtScript4.dll
2013-11-13 00:10 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\sqlite3.dll
2013-11-13 00:10 - 2013-10-25 12:07 - 01233696 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\Scan.dll
2013-02-20 03:24 - 2013-11-16 14:54 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Chris\Downloads\7244xdat.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\adwcleaner.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\asc7-setup.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\bitdefender_tsecurity.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\ccsetup407(1).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\ccsetup407.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\getsusp(3).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\getsusp(4).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\getsusp(6).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\hitmanpro_x64(2).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300(1).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\MVTInstaller(1).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\MVTInstaller.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\myturbopc.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\OTL.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\QuickSupport.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\ReimageRepairNU(1).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\ReimageRepairNU.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\RogueKillerX64.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\rootkitremover(1).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\rootkitremover(2).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\rootkitremover(3).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\rootkitremover(4).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\Shockwave_Installer_Slim(7).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\stinger32.exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\stinger64(2).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\stinger64(3).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\stinger64(4).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\stinger64(5).exe:BDU
AlternateDataStreams: C:\Users\Chris\Downloads\stinger64(6).exe:BDU

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"

==================== Faulty Device Manager Devices =============

Name: Canon MP970 ser Network
Description: Canon MP970 ser Network
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Canon
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: A2 Direct Disk Access Support Driver
Description: A2 Direct Disk Access Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: A2DDA
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/30/2013 03:10:52 AM) (Source: MSSQL$ACCUCHEK360) (User: )
Description: Performance counter shared memory setup failed with error -1. Reinstall sqlctr.ini for this instance, and ensure that the instance login account has correct registry permissions.

Error: (11/30/2013 03:10:52 AM) (Source: MSSQL$ACCUCHEK360) (User: )
Description: Error in mapping SQL Server performance object/counter indexes to object/counter names. SQL Server performance counters are disabled.

Error: (11/29/2013 11:51:36 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: The Cryptographic Services service failed to initialize the Catalog Database. The ESENT error was: -550.

Error: (11/29/2013 11:50:30 PM) (Source: MSSQL$ACCUCHEK360) (User: )
Description: Performance counter shared memory setup failed with error -1. Reinstall sqlctr.ini for this instance, and ensure that the instance login account has correct registry permissions.

Error: (11/29/2013 11:50:30 PM) (Source: MSSQL$ACCUCHEK360) (User: )
Description: Error in mapping SQL Server performance object/counter indexes to object/counter names. SQL Server performance counters are disabled.

Error: (11/29/2013 11:48:20 PM) (Source: Wininit) (User: )
Description: A critical system process, C:\Windows\system32\lsass.exe, failed with status code ffffffff. The machine must now be restarted.

Error: (11/29/2013 11:40:34 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (11/29/2013 11:40:34 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/29/2013 04:22:22 PM) (Source: MSSQL$ACCUCHEK360) (User: )
Description: Performance counter shared memory setup failed with error -1. Reinstall sqlctr.ini for this instance, and ensure that the instance login account has correct registry permissions.

Error: (11/29/2013 04:22:22 PM) (Source: MSSQL$ACCUCHEK360) (User: )
Description: Error in mapping SQL Server performance object/counter indexes to object/counter names. SQL Server performance counters are disabled.


System errors:
=============
Error: (11/30/2013 03:10:54 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
CFRMD
mtqjxm
nmfmfx
tcoifh

Error: (11/30/2013 03:10:52 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender 60-Second Virus Scanner Service service failed to start due to the following error:
%%216

Error: (11/30/2013 03:10:47 AM) (Source: Service Control Manager) (User: )
Description: The Advanced SystemCare Service 7 service failed to start due to the following error:
%%1053

Error: (11/30/2013 03:10:47 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Advanced SystemCare Service 7 service to connect.

Error: (11/30/2013 00:41:10 AM) (Source: Service Control Manager) (User: )
Description: The Andrea RT Filters Service service terminated unexpectedly. It has done this 1 time(s).

Error: (11/30/2013 00:41:01 AM) (Source: Service Control Manager) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (11/30/2013 00:40:52 AM) (Source: Service Control Manager) (User: )
Description: The Secunia Update Agent service terminated unexpectedly. It has done this 1 time(s).

Error: (11/29/2013 11:50:32 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
CFRMD
mtqjxm
nmfmfx
tcoifh

Error: (11/29/2013 11:50:29 PM) (Source: Service Control Manager) (User: )
Description: The HitmanPro 3.7 Crusader (Boot) service terminated with service-specific error %%0.

Error: (11/29/2013 11:50:29 PM) (Source: Service Control Manager) (User: )
Description: The Bitdefender 60-Second Virus Scanner Service service failed to start due to the following error:
%%216


Microsoft Office Sessions:
=========================
Error: (11/30/2013 03:10:52 AM) (Source: MSSQL$ACCUCHEK360)(User: )
Description: -1

Error: (11/30/2013 03:10:52 AM) (Source: MSSQL$ACCUCHEK360)(User: )
Description:

Error: (11/29/2013 11:51:36 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: -550

Error: (11/29/2013 11:50:30 PM) (Source: MSSQL$ACCUCHEK360)(User: )
Description: -1

Error: (11/29/2013 11:50:30 PM) (Source: MSSQL$ACCUCHEK360)(User: )
Description:

Error: (11/29/2013 11:48:20 PM) (Source: Wininit)(User: )
Description: C:\Windows\system32\lsass.exeffffffff

Error: (11/29/2013 11:40:34 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (11/29/2013 11:40:34 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (11/29/2013 04:22:22 PM) (Source: MSSQL$ACCUCHEK360)(User: )
Description: -1

Error: (11/29/2013 04:22:22 PM) (Source: MSSQL$ACCUCHEK360)(User: )
Description:


CodeIntegrity Errors:
===================================
Date: 2013-10-06 06:48:51.674
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-06 06:43:20.370
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-05 21:25:48.804
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-05 06:46:31.051
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-05 06:13:46.913
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-05 04:53:54.468
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-05 04:41:33.425
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-03 23:32:56.519
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-03 22:58:45.888
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-10-03 13:48:24.090
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 24%
Total physical RAM: 7930.9 MB
Available physical RAM: 6009.95 MB
Total Pagefile: 32944.08 MB
Available Pagefile: 30440.84 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:281.49 GB) (Free:164.74 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:16.31 GB) (Free:2.34 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 82337274)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=281 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== End Of Log ============================
  • 0

#5
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello ramsxx,

I wonder if there is some conflict going on there.

Try uninstalling the following:

McAfee Security Scan Plus (Version: 3.8.130.10)
McAfee Virtual Technician (x32 Version: 7.1.0.2483)


and either of

IObit
or
Comodo

Next

Looks like some corruption in your Google Chrome. Try uninstalling and reinstalling that too.

After that

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right click JRT.exe and "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

  • 0

#6
ramsxx

ramsxx

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
hello,its dec 1st,,630 a.m Sunday here in myrtle beach,,well i have deleted advanced system care(a general computer aid in various ways),and deleted McAfee virtual technician..but also to inform you i do not run/use Google chrome,its not on my computer,as i have internet explorer,but i use Mozilla Firefox,and keep windows updates,,also update my paid comodo antivirus suite,that lets me know i have a problem but can delete it it seems..sooo any clue,,i downloaded several of those antimalware programs they showed nothing ...thanks for your help..hows new zealand treating ya,,smilz from myrtle beach..surprised there no um "cure" for this krytpik blxe Trojan..ken n myrtle beach sc,usa
  • 0

#7
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts

surprised there no um "cure" for this krytpik blxe Trojan


I have seen that infection reported as a result of conflict before, not to say that it isn't bad or can't be cured. Just that it was a false positive in those situations. Some av companies have generic names for a particular suspicious activity in a machine. Anti virus products these days have heuristic scanning included in their programs. Heuristic scanning looks for suspicious activity. Doesn't always mean that it is bad especially if one av sees something happening that another av is doing and thinks it is bad i.e. conflict.

In your case, because of the security programs you have I wanted to make sure the report you are getting isn't a case of a false positive.

Having said that, it still could be a genuine infection and we do need to complete the cleaning progress to make sure we have covered that possibility.

i use Mozilla Firefox,


I do too, I personally don't like Chrome but then I don't like IE either. Up to the individual I say.

its not on my computer


Hmm... it shows in your logs here:

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (AccelerateTab) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\glmfgahfleepmdfffonfckpmkondpdkg\1.2.8_0
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\Chris\AppData\Local\mysearchdial-speeddial.crx
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

It's definitely there. Often it can be put there as foistware that is brought by another program.

I can remove it but the best way to make sure it is fully gone is to actually download and install it and then uninstall it. That way it will remove all its bits and pieces.

If you want to do that here is the link:

Go here to download Chrome.

Have you run the Junkware Removal Tool? If so please copy and paste the log back here so that I can see where we are with cleaning your computer.
  • 0

#8
ramsxx

ramsxx

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
hi there i did the junkware thingy n no response that i recall...unless i sent to u a;ready..on chrome issue nope i never downloaded but ur saying to dl it then remove it..hmm,,ok,,i do remember seeong that spigot thingy...ive defragged comp and run ccleaner.. also unistalled iobit advanced sts cleaner..and stoped commodo while doing all this stuff..any ideas,ken at 545am//dec 2nd,wow..smilz from myrtle beachmsc
  • 0

#9
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Sometimes Comodo will stop our tools even when disabled. This may be the case with the Junkware Removal Tool.

Try this one instead.

Download : ADWCleaner to your desktop.

NOTE: If using Internet Explorer and get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs and click on the AdwCleaner icon.

Posted Image

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy and paste back here. If a report doesn't appear, press the report button and Copy & Paste the contents on your next reply.

A copy of the report is also saved in the C:\AdwCleaner folder.
  • 0

#10
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP