Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer running slow and popups [Closed]

Started by tdjones813 , May 03 2014 07:18 AM

  • This topic is locked This topic is locked

#31
Machiavelli
Posted 07 May 2014 - 10:35 AM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts
Hey,
could you please tell me the exact model of your computer? There are many different HP pavilion computers. ;)

It downloaded. I believe it did, is there a way to find out if it did

Yes, go to your Downloads folder and check if there is a folder called JavaRa-2.6.zip, if yes , please extract the folder and follow the instructions - if not please go back to post #25 and follow step 3.
  • 0

Advertisements

#32
tdjones813
Posted 07 May 2014 - 01:56 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts

The model number is NP201AA-ABA-A6814y


  • 0

#33
Machiavelli
Posted 07 May 2014 - 03:09 PM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts
OK, you should have a HDD.

Please fragment your hard drive by following the instructions here. Tell me if your PC is running faster.
  • 0

#34
tdjones813
Posted 08 May 2014 - 05:07 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts

The disk defragmenter has been running since yesterday, is that normal.


  • 0

#35
Machiavelli
Posted 08 May 2014 - 10:59 PM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts
No, that is not normal.
  • 0

#36
tdjones813
Posted 10 May 2014 - 06:22 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts

It didn't take as long as I thought, It seems to be running a little faster


  • 0

#37
Machiavelli
Posted 11 May 2014 - 02:31 AM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts
OK, how fast is it running compared to where the computer wasn't infected and was running ok? I currently see no Malware and normally we would clean you up now. :)
  • 0

#38
tdjones813
Posted 13 May 2014 - 05:46 AM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts

I'm not sure.  It seems to be running a little faster but then my son was caught watching porn on it and now it seems to have pop ups again. 


  • 0

#39
Machiavelli
Posted 13 May 2014 - 09:11 AM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts
OK, then we have to make the same procedure again ...

Please download FRST (by Farbar) from the link below and save it to your Desktop.

Download Mirror #1

If you are unsure whether you have 32-Bit or 64-Bit Windows, see here
  • Disable all anti-virus and anti-malware software to prevent them inhibiting FRST in any way. If you are unsure how to do this, see THIS.
  • Double-click FRST.exe/FRST64.exe (depending on which version you downloaded) to run it. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • When the disclaimer appears, click Yes.
  • Click Scan to start FRST.
  • When FRST finishes scanning, two logs, FRST.txt and Addition.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of both of these logs into your next post please.

  • 0

#40
tdjones813
Posted 13 May 2014 - 08:24 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-05-2014 01
Ran by Tracy (administrator) on HOME-PC on 13-05-2014 22:17:47
Running from C:\Users\Tracy\Downloads
Platform: Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Just Develop It) C:\Program Files (x86)\MyPC Backup\BackupStack.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Coupons.com Inc.) C:\Program Files (x86)\Coupons\CouponPrinterService.exe
() C:\Windows\SysWOW64\CSHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\ccsvchst.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
() C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\ccsvchst.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Google Inc.) C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files (x86)\QuickTime\QTTask.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicatorCom.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
() C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Tracy\Downloads\FRST64 (1).exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [914224 2008-11-18] (Hewlett-Packard)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [182808 2008-11-03] (Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1612880 2010-01-27] (Logitech, Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdSync.exe [225792 2008-01-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Conime] => %windir%\system32\conime.exe
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-07-26] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-08-17] (RealNetworks, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [cdloader] => C:\Users\Tracy\AppData\Roaming\mjusbsp\cdloader2.exe [50520 2010-02-26] (magicJack L.P.)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [Google Update] => C:\Users\Tracy\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-04-30] (Google Inc.)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [HP Deskjet 3510 series (NET)] => C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564016 2013-07-26] (Samsung)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-07-26] (Samsung)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [MusicManager] => C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7631872 2014-04-23] (Google Inc.)
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [fastclean] => "C:\Program Files (x86)\FastClean PRO\fastcleanpro.exe"
HKU\S-1-5-21-1953429275-1861937841-2176962007-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Startup: C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 3510 series (Network).lnk
ShortcutTarget: Monitor Ink Alerts - HP Deskjet 3510 series (Network).lnk -> C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.default-s...&tm=344&src=hmp
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....bestbuy&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {73FE0C01-C5C3-43B5-B15B-48A5DEFFC59A} URL = http://search.live.c...ms}&FORM=HPDTDF
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = http://www.default-s...p={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = http://www.default-s...p={searchTerms}
SearchScopes: HKCU - {083368C3-5B72-4F1A-BE01-5F70570FD6E9} URL = http://www.bing.com/...ms}&form=OSDSRC
SearchScopes: HKCU - {1F9F832A-605A-41F5-86AE-6BB407025F1A} URL = http://www.bing.com/...ms}&form=OSDSRC
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = http://www.default-s...p={searchTerms}
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Tracy\AppData\Roaming\Mozilla\Firefox\Profiles\taimr24r.default
FF DefaultSearchEngine: default-search.net
FF SearchEngineOrder.1: default-search.net
FF SearchEngineOrder.3: Bing 
FF SelectedSearchEngine: default-search.net
FF Homepage: hxxp://www.default-search.net?sid=492&aid=100&itype=n&ver=12565&tm=344&src=hmp
FF Keyword.URL: hxxp://www.default-search.net/search?sid=492&aid=100&itype=n&ver=12565&tm=344&src=ds&p=
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Tracy\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Tracy\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Tracy\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Tracy\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tracy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Tracy\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Tracy\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\Tracy\AppData\Roaming\Mozilla\Firefox\Profiles\taimr24r.default\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-23]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFF [2013-10-09]
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-08-17]
FF HKCU\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-23]
 
Chrome: 
=======
CHR HomePage: hxxp://www.default-search.net?sid=492&aid=100&itype=n&ver=12565&tm=344&src=hmp
CHR StartupUrls: "startup_urls_migration_time": "13042821847507458"
   },
   "translate_accepted_count": {
      "hu": 0
   },
   "translate_blocked_languages": [ "en"
CHR DefaultSearchKeyword: bing.com
CHR DefaultSearchProvider: Bing
CHR DefaultNewTabURL: 
CHR Extension: (RealDownloader) - C:\Users\Tracy\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-08-17]
CHR Extension: (Norton Identity Safe for Google Chrome™) - C:\Users\Tracy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-05-04]
CHR Extension: (Google Wallet) - C:\Users\Tracy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-24]
CHR HKLM-x32\...\Chrome\Extension: [cnpkmcjgpcihgfnkcjapiaabbbplkcmf] - C:\Program Files (x86)\Coupons.com CouponBar\chrome\Coupons.com.crx [2014-04-24]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\Exts\Chrome.crx [2013-07-16]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
R2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36392 2014-03-14] (Just Develop It)
R2 CouponPrinterService; C:\Program Files (x86)\Coupons\CouponPrinterService.exe [177648 2014-03-28] (Coupons.com Inc.)
R2 CSHelper; C:\Windows\SysWOW64\CSHelper.exe [266240 2009-07-25] ()
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe [227232 2010-09-03] (McAfee, Inc.)
R2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [632792 2011-01-28] (PC Tools)
S4 PuranDefrag; C:\Windows\system32\PuranDefragS.exe [292736 2013-01-17] (Puran Software)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 TVCapSvc; C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320 2009-04-22] ()
R2 TVSched; C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104 2009-04-22] ()
S2 Maps4PC_0cService; C:\PROGRA~2\MAPS4P~2\bar\1.bin\0cbarsvc.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-20] (Microsoft Corporation)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-04-27] (AVG Technologies)
S1 Beep; No ImagePath
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20140409.001\BHDrvx64.sys [1525976 2014-03-18] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1404000.028\ccSetx64.sys [169048 2013-04-15] (Symantec Corporation)
S3 DCamUSBVM; C:\Windows\System32\Drivers\usbVM31b.sys [142336 2005-09-19] (Vimicro Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-20] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-04-19] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20140513.002\IDSvia64.sys [525016 2014-03-25] (Symantec Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20140513.018\ENG64.SYS [126040 2014-04-19] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20140513.018\EX64.SYS [2099288 2014-04-19] (Symantec Corporation)
S3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1404000.028\SRTSPX64.SYS [36952 2013-03-04] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-07-16] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1404000.028\Ironx64.SYS [224416 2012-07-27] (Symantec Corporation)
R1 SYMTDIv; C:\Windows\System32\Drivers\N360x64\1404000.028\SYMTDIV.SYS [457304 2013-04-24] (Symantec Corporation)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2008-11-28] (CyberLink Corp.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCD5SRVC{8AAF211B-043E02A9-05040000}; \??\C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-05-13 22:17 - 2014-05-13 22:19 - 00027353 _____ () C:\Users\Tracy\Downloads\FRST.txt
2014-05-13 22:17 - 2014-05-13 22:17 - 02066944 _____ (Farbar) C:\Users\Tracy\Downloads\FRST64 (1).exe
2014-05-13 20:27 - 2014-05-13 22:17 - 00000000 ____D () C:\FRST
2014-05-13 20:26 - 2014-05-13 20:26 - 02066944 _____ (Farbar) C:\Users\Tracy\Downloads\FRST64.exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55.exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55 (3).exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55 (2).exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55 (1).exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Oracle
2014-05-11 18:56 - 2014-05-11 18:59 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-11 18:56 - 2014-05-11 18:55 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-11 18:56 - 2014-05-11 18:55 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-11 18:56 - 2014-05-11 18:55 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-11 18:56 - 2014-05-11 18:55 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-11 18:53 - 2014-05-11 18:53 - 00921000 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u51 (1).exe
2014-05-11 08:36 - 2014-05-11 08:36 - 00000459 _____ () C:\Users\Tracy\Desktop\paystub 41814 - Shortcut.lnk
2014-05-11 03:06 - 2014-05-11 03:06 - 00000000 ____D () C:\Users\Tracy\AppData\Local\DeSmuME
2014-05-11 03:05 - 2014-05-11 03:05 - 00000000 ____D () C:\Users\Tracy\Downloads\desmume-0.9.10-win32
2014-05-11 03:01 - 2014-05-11 03:01 - 00000000 ____D () C:\Users\Tracy\AppData\Local\IsolatedStorage
2014-05-11 03:00 - 2014-05-11 08:34 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Systweak
2014-05-11 03:00 - 2014-05-11 03:00 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall TW2
2014-05-11 02:59 - 2014-05-11 08:35 - 00000000 __HDC () C:\ProgramData\~0
2014-05-11 02:59 - 2014-05-11 08:27 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-05-11 02:59 - 2014-05-11 02:59 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall W2
2014-05-11 02:59 - 2014-05-11 02:59 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall W1
2014-05-11 02:59 - 2014-05-11 02:59 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall TW1
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\StormFall
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Settings Manager
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\1H1Q
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\ProgramData\systemk
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileOpener
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Program Files (x86)\Tweaks
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-05-11 02:59 - 2014-04-25 14:49 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe
2014-05-11 02:58 - 2014-05-11 02:58 - 00796376 _____ () C:\Users\Tracy\Downloads\FileOpenerSetup (1).exe
2014-05-09 09:14 - 2014-05-09 09:14 - 02026616 _____ (Coupons.com Incorporated) C:\Users\Tracy\Downloads\CouponPrinter (23).exe
2014-05-09 09:14 - 2014-05-09 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons
2014-05-09 09:14 - 2014-05-09 09:14 - 00000000 ____D () C:\Program Files (x86)\Coupons
2014-05-09 09:13 - 2014-05-09 09:13 - 02026616 _____ (Coupons.com Incorporated) C:\Users\Tracy\Downloads\CouponPrinter (22).exe
2014-05-07 15:29 - 2014-05-07 15:29 - 00276928 _____ () C:\Windows\Minidump\Mini050714-01.dmp
2014-05-07 11:38 - 2014-05-07 11:37 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-07 11:37 - 2014-05-07 11:37 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-07 11:37 - 2014-05-07 11:37 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-07 11:37 - 2014-05-07 11:37 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-05-07 11:37 - 2014-05-07 11:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-07 11:37 - 2014-05-07 11:37 - 00000000 ____D () C:\Program Files\Java
2014-05-07 11:35 - 2014-05-07 11:35 - 30818216 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\jre-7u55-windows-x64.exe
2014-05-07 11:32 - 2014-05-07 15:57 - 00000000 ____D () C:\Users\Tracy\Desktop\JavaRa-2.6
2014-05-07 11:31 - 2014-05-07 11:31 - 00159578 _____ () C:\Users\Tracy\Desktop\JavaRa-2.6.zip
2014-05-07 11:15 - 2014-05-11 08:30 - 00003338 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1953429275-1861937841-2176962007-1000
2014-05-07 08:12 - 2014-05-07 08:12 - 00000000 ____D () C:\Users\Tracy\Desktop\New Folder
2014-05-05 21:05 - 2014-05-05 21:05 - 00855379 _____ () C:\Users\Tracy\Desktop\SecurityCheck (4).exe
2014-05-05 15:36 - 2014-05-05 15:36 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-05 15:34 - 2014-05-05 15:35 - 02347384 _____ (ESET) C:\Users\Tracy\Downloads\esetsmartinstaller_enu.exe
2014-05-05 15:30 - 2014-05-05 15:30 - 00002342 _____ () C:\maam.txt
2014-05-05 13:26 - 2014-05-12 08:13 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-05 13:26 - 2014-05-05 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-05 13:26 - 2014-05-05 13:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-05 13:26 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-05 13:26 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-05 13:24 - 2014-05-05 13:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Tracy\Desktop\mbam-setup-2.0.1.1004.exe
2014-05-04 19:46 - 2014-05-04 19:46 - 01016261 _____ (Thisisu) C:\Users\Tracy\Downloads\JRT.exe
2014-05-04 19:40 - 2014-05-04 19:40 - 00002105 _____ () C:\Users\Tracy\Desktop\JRT.txt
2014-05-04 19:31 - 2014-05-04 19:31 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 19:29 - 2014-05-04 19:29 - 01016261 _____ (Thisisu) C:\Users\Tracy\Downloads\JRT (1).exe
2014-05-04 19:29 - 2014-05-04 19:29 - 01016261 _____ (Thisisu) C:\Users\Tracy\Desktop\JRT.exe
2014-05-04 19:16 - 2014-05-04 19:20 - 00000000 ____D () C:\AdwCleaner
2014-05-04 19:16 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-04 19:14 - 2014-05-04 19:14 - 01313617 _____ () C:\Users\Tracy\Desktop\AdwCleaner (4).exe
2014-05-04 19:11 - 2014-05-11 08:30 - 00003204 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1953429275-1861937841-2176962007-1000
2014-05-04 19:03 - 2014-05-04 19:03 - 00000000 ____D () C:\_OTL
2014-05-03 11:08 - 2014-05-03 11:08 - 00102338 _____ () C:\Users\Tracy\Downloads\Extras.Txt
2014-05-03 11:06 - 2014-05-03 11:06 - 00223900 _____ () C:\Users\Tracy\Downloads\OTL.Txt
2014-05-03 10:15 - 2014-05-03 10:15 - 00602112 _____ (OldTimer Tools) C:\Users\Tracy\Desktop\OTL.exe
2014-05-03 03:20 - 2014-05-03 03:20 - 00000000 __SHD () C:\found.000
2014-05-03 03:00 - 2014-04-29 07:39 - 17849344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-03 03:00 - 2014-04-29 07:15 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-03 03:00 - 2014-04-29 06:28 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-03 03:00 - 2014-04-29 06:07 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-01 11:00 - 2014-05-01 11:00 - 11483833 _____ () C:\Users\Tracy\Downloads\attachments.zip
2014-04-30 07:02 - 2014-04-30 07:02 - 00000598 _____ () C:\Users\Tracy\Documents\Dish Washing.m3u
2014-04-30 07:00 - 2014-04-30 07:00 - 00023805 _____ () C:\Users\Tracy\Documents\Music.m3u
2014-04-30 06:54 - 2014-04-30 06:54 - 00000788 _____ () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2014-04-30 06:54 - 2014-04-30 06:54 - 00000764 _____ () C:\Users\Tracy\Desktop\BitTorrent.lnk
2014-04-30 06:42 - 2014-04-30 06:42 - 00884672 _____ (Google Inc.) C:\Users\Tracy\Downloads\musicmanagerinstaller (1).exe
2014-04-30 06:42 - 2014-04-30 06:42 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager
2014-04-30 06:41 - 2014-04-30 06:41 - 00884672 _____ (Google Inc.) C:\Users\Tracy\Downloads\musicmanagerinstaller.exe
2014-04-25 13:15 - 2014-04-25 13:15 - 00000448 _____ () C:\Users\Tracy\Downloads\tmp629.vcs
2014-04-25 08:15 - 2014-04-25 08:15 - 00000000 ____D () C:\Users\Tracy\Downloads\fontomen_walter
2014-04-25 08:08 - 2014-04-25 08:08 - 00008895 _____ () C:\Users\Tracy\Downloads\fontomen_walter.zip
2014-04-13 21:09 - 2014-04-13 21:09 - 00218460 _____ () C:\Users\Tracy\Downloads\MOZ44SnV.htm
2014-04-13 18:29 - 2014-05-07 15:29 - 821355198 _____ () C:\Windows\MEMORY.DMP
2014-04-13 18:29 - 2014-04-13 18:30 - 00277096 _____ () C:\Windows\Minidump\Mini041314-01.dmp
 
==================== One Month Modified Files and Folders =======
 
2014-05-13 22:19 - 2014-05-13 22:17 - 00027353 _____ () C:\Users\Tracy\Downloads\FRST.txt
2014-05-13 22:17 - 2014-05-13 22:17 - 02066944 _____ (Farbar) C:\Users\Tracy\Downloads\FRST64 (1).exe
2014-05-13 22:17 - 2014-05-13 20:27 - 00000000 ____D () C:\FRST
2014-05-13 22:09 - 2006-11-02 11:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-13 22:09 - 2006-11-02 11:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-13 21:59 - 2009-04-22 16:12 - 01708906 _____ () C:\Windows\WindowsUpdate.log
2014-05-13 21:09 - 2010-12-22 19:53 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\HpUpdate
2014-05-13 20:26 - 2014-05-13 20:26 - 02066944 _____ (Farbar) C:\Users\Tracy\Downloads\FRST64.exe
2014-05-13 20:26 - 2013-10-15 08:42 - 00000680 _____ () C:\Users\Tracy\AppData\Local\d3d9caps.dat
2014-05-13 19:54 - 2011-07-28 18:32 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000UA.job
2014-05-13 19:53 - 2010-12-04 04:47 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-13 19:46 - 2013-06-23 16:51 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-13 19:36 - 2011-09-13 09:16 - 00000338 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-05-13 09:54 - 2011-07-28 18:32 - 00000856 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000Core.job
2014-05-13 09:53 - 2010-12-04 04:47 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-13 03:01 - 2010-01-28 02:18 - 00781970 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-12 17:11 - 2013-10-10 03:57 - 00002096 _____ () C:\Windows\LkmdfCoInst.log
2014-05-12 17:11 - 2013-05-20 08:04 - 00014052 _____ () C:\Windows\setupact.log
2014-05-12 17:11 - 2010-06-07 14:33 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-05-12 10:54 - 2009-04-06 20:20 - 00003578 _____ () C:\Windows\System32\Tasks\HP Health Check
2014-05-12 08:13 - 2014-05-05 13:26 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-11 18:59 - 2014-05-11 18:56 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55.exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55 (3).exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55 (2).exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00921512 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u55 (1).exe
2014-05-11 18:57 - 2014-05-11 18:57 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Oracle
2014-05-11 18:55 - 2014-05-11 18:56 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-11 18:55 - 2014-05-11 18:56 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-11 18:55 - 2014-05-11 18:56 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-11 18:55 - 2014-05-11 18:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-11 18:53 - 2014-05-11 18:53 - 00921000 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\chromeinstall-7u51 (1).exe
2014-05-11 08:38 - 2013-02-19 23:07 - 00000000 ____D () C:\Users\Tracy\Desktop\Blog
2014-05-11 08:36 - 2014-05-11 08:36 - 00000459 _____ () C:\Users\Tracy\Desktop\paystub 41814 - Shortcut.lnk
2014-05-11 08:35 - 2014-05-11 02:59 - 00000000 __HDC () C:\ProgramData\~0
2014-05-11 08:34 - 2014-05-11 03:00 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Systweak
2014-05-11 08:30 - 2014-05-07 11:15 - 00003338 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1953429275-1861937841-2176962007-1000
2014-05-11 08:30 - 2014-05-04 19:11 - 00003204 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1953429275-1861937841-2176962007-1000
2014-05-11 08:27 - 2014-05-11 02:59 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-05-11 08:26 - 2006-11-02 11:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-11 08:25 - 2013-05-17 19:15 - 00004832 _____ () C:\Windows\PFRO.log
2014-05-11 08:20 - 2006-11-02 11:42 - 00032648 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-11 08:19 - 2011-05-01 19:31 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\SoftGrid Client
2014-05-11 03:06 - 2014-05-11 03:06 - 00000000 ____D () C:\Users\Tracy\AppData\Local\DeSmuME
2014-05-11 03:05 - 2014-05-11 03:05 - 00000000 ____D () C:\Users\Tracy\Downloads\desmume-0.9.10-win32
2014-05-11 03:01 - 2014-05-11 03:01 - 00000000 ____D () C:\Users\Tracy\AppData\Local\IsolatedStorage
2014-05-11 03:00 - 2014-05-11 03:00 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall TW2
2014-05-11 03:00 - 2013-08-13 19:37 - 00000000 ____D () C:\Users\Tracy\AppData\Local\CrashDumps
2014-05-11 02:59 - 2014-05-11 02:59 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall W2
2014-05-11 02:59 - 2014-05-11 02:59 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall W1
2014-05-11 02:59 - 2014-05-11 02:59 - 00003586 _____ () C:\Windows\System32\Tasks\StormFall TW1
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\StormFall
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Settings Manager
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\1H1Q
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\ProgramData\systemk
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileOpener
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Program Files (x86)\Tweaks
2014-05-11 02:59 - 2014-05-11 02:59 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-05-11 02:59 - 2009-05-26 12:10 - 00000000 ___RD () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-11 02:58 - 2014-05-11 02:58 - 00796376 _____ () C:\Users\Tracy\Downloads\FileOpenerSetup (1).exe
2014-05-11 00:20 - 2013-11-20 20:23 - 00271360 _____ () C:\Users\Tracy\Documents\Outlook.pst
2014-05-09 09:14 - 2014-05-09 09:14 - 02026616 _____ (Coupons.com Incorporated) C:\Users\Tracy\Downloads\CouponPrinter (23).exe
2014-05-09 09:14 - 2014-05-09 09:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons
2014-05-09 09:14 - 2014-05-09 09:14 - 00000000 ____D () C:\Program Files (x86)\Coupons
2014-05-09 09:13 - 2014-05-09 09:13 - 02026616 _____ (Coupons.com Incorporated) C:\Users\Tracy\Downloads\CouponPrinter (22).exe
2014-05-08 10:50 - 2009-05-28 13:01 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-05-08 09:49 - 2011-07-28 18:32 - 00003792 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000UA
2014-05-08 09:49 - 2011-07-28 18:32 - 00003396 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000Core
2014-05-08 09:48 - 2010-12-04 04:47 - 00003892 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 09:48 - 2010-12-04 04:47 - 00003640 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-07 15:57 - 2014-05-07 11:32 - 00000000 ____D () C:\Users\Tracy\Desktop\JavaRa-2.6
2014-05-07 15:29 - 2014-05-07 15:29 - 00276928 _____ () C:\Windows\Minidump\Mini050714-01.dmp
2014-05-07 15:29 - 2014-04-13 18:29 - 821355198 _____ () C:\Windows\MEMORY.DMP
2014-05-07 15:29 - 2010-02-05 07:01 - 00000000 ____D () C:\Windows\Minidump
2014-05-07 11:37 - 2014-05-07 11:38 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-05-07 11:37 - 2014-05-07 11:37 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-05-07 11:37 - 2014-05-07 11:37 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-05-07 11:37 - 2014-05-07 11:37 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-05-07 11:37 - 2014-05-07 11:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-07 11:37 - 2014-05-07 11:37 - 00000000 ____D () C:\Program Files\Java
2014-05-07 11:35 - 2014-05-07 11:35 - 30818216 _____ (Oracle Corporation) C:\Users\Tracy\Downloads\jre-7u55-windows-x64.exe
2014-05-07 11:31 - 2014-05-07 11:31 - 00159578 _____ () C:\Users\Tracy\Desktop\JavaRa-2.6.zip
2014-05-07 11:30 - 2010-07-08 17:49 - 00000000 ____D () C:\BigFishGamesCache
2014-05-07 08:12 - 2014-05-07 08:12 - 00000000 ____D () C:\Users\Tracy\Desktop\New Folder
2014-05-06 12:57 - 2006-11-02 11:07 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-05-06 11:41 - 2010-06-23 17:53 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-05-06 11:40 - 2013-11-16 10:01 - 00000000 ____D () C:\Users\Tracy\Desktop\Tracy
2014-05-05 21:05 - 2014-05-05 21:05 - 00855379 _____ () C:\Users\Tracy\Desktop\SecurityCheck (4).exe
2014-05-05 15:36 - 2014-05-05 15:36 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-05-05 15:35 - 2014-05-05 15:34 - 02347384 _____ (ESET) C:\Users\Tracy\Downloads\esetsmartinstaller_enu.exe
2014-05-05 15:30 - 2014-05-05 15:30 - 00002342 _____ () C:\maam.txt
2014-05-05 13:26 - 2014-05-05 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-05 13:26 - 2014-05-05 13:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-05 13:26 - 2013-03-18 14:07 - 00000903 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-05 13:26 - 2010-06-23 17:53 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Malwarebytes
2014-05-05 13:26 - 2010-06-23 17:53 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-05 13:24 - 2014-05-05 13:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Tracy\Desktop\mbam-setup-2.0.1.1004.exe
2014-05-04 19:46 - 2014-05-04 19:46 - 01016261 _____ (Thisisu) C:\Users\Tracy\Downloads\JRT.exe
2014-05-04 19:40 - 2014-05-04 19:40 - 00002105 _____ () C:\Users\Tracy\Desktop\JRT.txt
2014-05-04 19:31 - 2014-05-04 19:31 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 19:29 - 2014-05-04 19:29 - 01016261 _____ (Thisisu) C:\Users\Tracy\Downloads\JRT (1).exe
2014-05-04 19:29 - 2014-05-04 19:29 - 01016261 _____ (Thisisu) C:\Users\Tracy\Desktop\JRT.exe
2014-05-04 19:22 - 2013-04-11 10:18 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Catalina – Print Savings
2014-05-04 19:22 - 2009-05-26 11:57 - 00000000 ____D () C:\Users\Tracy
2014-05-04 19:20 - 2014-05-04 19:16 - 00000000 ____D () C:\AdwCleaner
2014-05-04 19:14 - 2014-05-04 19:14 - 01313617 _____ () C:\Users\Tracy\Desktop\AdwCleaner (4).exe
2014-05-04 19:03 - 2014-05-04 19:03 - 00000000 ____D () C:\_OTL
2014-05-03 11:08 - 2014-05-03 11:08 - 00102338 _____ () C:\Users\Tracy\Downloads\Extras.Txt
2014-05-03 11:06 - 2014-05-03 11:06 - 00223900 _____ () C:\Users\Tracy\Downloads\OTL.Txt
2014-05-03 10:15 - 2014-05-03 10:15 - 00602112 _____ (OldTimer Tools) C:\Users\Tracy\Desktop\OTL.exe
2014-05-03 03:20 - 2014-05-03 03:20 - 00000000 __SHD () C:\found.000
2014-05-02 20:20 - 2009-07-30 10:30 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\BitTorrent
2014-05-02 20:18 - 2006-11-02 11:21 - 05071560 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-02 09:50 - 2013-06-07 20:59 - 00000000 ____D () C:\Users\Tracy\Desktop\Invitations
2014-05-01 11:00 - 2014-05-01 11:00 - 11483833 _____ () C:\Users\Tracy\Downloads\attachments.zip
2014-04-30 20:58 - 2009-04-06 20:14 - 00000000 ____D () C:\ProgramData\Norton
2014-04-30 11:47 - 2009-09-15 00:54 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Mozilla
2014-04-30 07:02 - 2014-04-30 07:02 - 00000598 _____ () C:\Users\Tracy\Documents\Dish Washing.m3u
2014-04-30 07:00 - 2014-04-30 07:00 - 00023805 _____ () C:\Users\Tracy\Documents\Music.m3u
2014-04-30 06:54 - 2014-04-30 06:54 - 00000788 _____ () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2014-04-30 06:54 - 2014-04-30 06:54 - 00000764 _____ () C:\Users\Tracy\Desktop\BitTorrent.lnk
2014-04-30 06:42 - 2014-04-30 06:42 - 00884672 _____ (Google Inc.) C:\Users\Tracy\Downloads\musicmanagerinstaller (1).exe
2014-04-30 06:42 - 2014-04-30 06:42 - 00000000 ____D () C:\Users\Tracy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager
2014-04-30 06:42 - 2013-07-17 08:53 - 00000000 ____D () C:\Users\Tracy\AppData\Local\Google
2014-04-30 06:41 - 2014-04-30 06:41 - 00884672 _____ (Google Inc.) C:\Users\Tracy\Downloads\musicmanagerinstaller.exe
2014-04-29 07:39 - 2014-05-03 03:00 - 17849344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-29 07:15 - 2014-05-03 03:00 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-29 06:28 - 2014-05-03 03:00 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-29 06:07 - 2014-05-03 03:00 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-28 13:47 - 2013-06-23 16:51 - 00003682 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-28 13:46 - 2013-06-23 16:51 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-28 13:46 - 2013-06-23 16:51 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-27 16:56 - 2013-06-26 10:10 - 00050464 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-04-25 17:54 - 2009-05-26 12:09 - 00003188 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForTracy
2014-04-25 17:54 - 2009-05-26 12:09 - 00000334 _____ () C:\Windows\Tasks\HPCeeScheduleForTracy.job
2014-04-25 14:49 - 2014-05-11 02:59 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe
2014-04-25 14:10 - 2013-07-17 08:52 - 00127536 _____ () C:\Users\Tracy\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-25 13:15 - 2014-04-25 13:15 - 00000448 _____ () C:\Users\Tracy\Downloads\tmp629.vcs
2014-04-25 08:15 - 2014-04-25 08:15 - 00000000 ____D () C:\Users\Tracy\Downloads\fontomen_walter
2014-04-25 08:08 - 2014-04-25 08:08 - 00008895 _____ () C:\Users\Tracy\Downloads\fontomen_walter.zip
2014-04-14 10:32 - 2009-05-26 13:17 - 00000456 _____ () C:\Windows\Tasks\PCDRScheduledMaintenance.job
2014-04-13 21:09 - 2014-04-13 21:09 - 00218460 _____ () C:\Users\Tracy\Downloads\MOZ44SnV.htm
2014-04-13 18:30 - 2014-04-13 18:29 - 00277096 _____ () C:\Windows\Minidump\Mini041314-01.dmp
 
Some content of TEMP:
====================
C:\Users\Tracy\AppData\Local\Temp\BackupSetup.exe
C:\Users\Tracy\AppData\Local\Temp\installer.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-05-11 08:35
 
==================== End Of Log ============================

  • 0

Advertisements

#41
tdjones813
Posted 13 May 2014 - 08:24 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05-2014 01
Ran by Tracy at 2014-05-13 22:20:03
Running from C:\Users\Tracy\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Norton Security Suite (Disabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security Suite (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Security Suite (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
 
==================== Installed Programs ======================
 
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
64 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.0.0.0 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 2.0.0 - Adobe Systems Incorporated) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM-x32\...\Activation Assistant for the 2007 Microsoft Office suites) (Version:  - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0.1 - Microsoft Corporation) Hidden
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Reader X (10.1.4) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.5.1.601 - Adobe Systems, Inc.)
All in one Cleaner ver.1.0 (HKLM-x32\...\All in one Cleaner_is1) (Version:  - YL Computing, Inc.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtistScope Plugin IE (HKLM-x32\...\ArtistScope Plugin IE4.2.0.3) (Version: 4.2.0.3 - ArtistScope)
ASPCA Reminder by We-Care.com v4.1.22.1 (HKLM-x32\...\{DB9BF6DA-8030-4A21-9FF4-8856A7556FCF}) (Version: 4.1.22.1 - We-Care.com)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.1.30739 - BitTorrent Inc.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalina Savings Printer (HKLM-x32\...\{37331C16-3E97-4A20-80D8-BFB43AB0E2FB}) (Version: 1.0.0 - Catalina Marketing Corp) <==== ATTENTION
CCleaner (HKLM\...\CCleaner) (Version: 3.28 - Piriform)
Comcast High-Speed Internet Install Wizard (HKLM-x32\...\ComcastHSI) (Version:  - )
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.8) (Version: 5.0.0.8 - Coupons.com Incorporated)
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2326 - CyberLink Corp.)
CyberLink DVD Suite Deluxe (x32 Version: 6.0.2326 - CyberLink Corp.) Hidden
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
DivX Setup (HKLM-x32\...\DivX Setup.divx.com) (Version: 2.1.2.2 - DivX, Inc. )
Enhanced Multimedia Keyboard Solution (HKLM-x32\...\KBD) (Version: 1.0.9.2 - Hewlett-Packard)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Feedback Tool (HKLM-x32\...\{13A5E785-5197-4EAD-8EE3-D660271E49BC}) (Version: 1.2.0 - Microsoft Corporation)
File Opener Packages (HKCU\...\File Opener Packages) (Version:  - ) <==== ATTENTION
FileOpener (HKLM-x32\...\Tweaks FileOpener) (Version: 1.1.1 - Tweaks)
GEAR driver installer for x86 and x64 (x32 Version: 4.008.5 - GEAR Software) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{8E29C1CE-346A-3F59-AE22-8C5B7F230498}) (Version: 5.3.1.18536 - Google)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GSC 2.00 (HKLM-x32\...\GSC 2.00) (Version:  - ClanServers Hosting LLC.)
Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 5.1.5048.14 - PC-Doctor, Inc.)
HP Active Support Library (HKLM-x32\...\{0295F89F-F698-4101-9A7D-49F407EC2D82}) (Version: 3.1.10.1 - Hewlett-Packard)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.12286.3436 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM-x32\...\{E1591139-8B44-411B-A81B-D35F83A0565A}) (Version: 5.7.0.2875 - Hewlett-Packard)
HP Demo (HKLM-x32\...\{97ABD26A-3249-46CB-B2E2-F66E64B2E480}) (Version: 1.00.0000 - Hewlett-Packard)
HP Deskjet 1050 J410 series Basic Device Software (HKLM\...\{BB94D541-A747-4A5D-B0ED-72FA5C158EA5}) (Version: 22.0.334.0 - Hewlett-Packard Co.)
HP Deskjet 1050 J410 series Help (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard)
HP Deskjet 1050 J410 series Product Improvement Study (HKLM\...\{5848A26C-E4BC-4A13-AA8D-810BA344475A}) (Version: 22.0.334.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Basic Device Software (HKLM\...\{7F20F2D1-C425-4432-96BA-EBD0C2181493}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Help (HKLM-x32\...\{97C1C98D-6AE5-4C71-9B00-EBBD9E014450}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Product Improvement Study (HKLM\...\{791D3241-C6A4-417F-82E6-00543B6E5012}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 2.1.2717 - Hewlett-Packard)
HP MediaSmart DVD (x32 Version: 2.1.2717 - Hewlett-Packard) Hidden
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 2.0.2415 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (x32 Version: 2.0.2415 - Hewlett-Packard) Hidden
HP MediaSmart SmartMenu (HKLM\...\{F1568AA6-5982-4AFB-A871-C68E4328BC3B}) (Version: 2.1.7 - Hewlett-Packard)
HP MediaSmart TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 2.2.1622 - Hewlett-Packard)
HP MediaSmart TV (x32 Version: 2.2.1622 - Hewlett-Packard) Hidden
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9452 - HP Photo Creations Powered by RocketLife)
HP Picasso Media Center Add-In (x32 Version: 9.1.7.0 - Hewlett-Packard Development Company, L.P.) Hidden
HP Recovery Manager RSS (x32 Version: 92.0.0.9 - Hewlet Packard Company) Hidden
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Support Information (HKLM-x32\...\{1CC069FA-1A86-402E-9787-3F04E652C67A}) (Version: 10.1.0001 - Hewlett-Packard)
HP Total Care Setup (HKLM-x32\...\{95A747E0-DF19-46CB-A622-20A0107201BD}) (Version: 1.1.2413.2876 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPAsset component for HP Active Support Library (x32 Version: 3.0.2.2 - Hewlett-Packard) Hidden
InfraRecorder (HKLM-x32\...\InfraRecorder) (Version:  - )
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jihosoft Android Photo Transfer version 1.5 (HKLM-x32\...\{EEA7D922-7F21-42A1-B548-236984D36423}_is1) (Version: 1.5 - Jihosoft Studio)
Juno Preloader (HKLM-x32\...\{6423EF83-6E1D-4D22-A36F-689CD19FD4D2}) (Version: 1.0.0 - Juno, Inc.)
KhalInstallWrapper (Version: 4.00.121 - Logitech) Hidden
League of Legends (x32 Version: 1.0020 - Riot Games) Hidden
LightScribe System Software (HKLM-x32\...\{7F10292C-A190-4176-A665-A1ED3478DF86}) (Version: 1.18.3.2 - LightScribe)
Logitech SetPoint 6.0 (HKLM\...\SP6) (Version: 6.00.68 - Logitech)
Malwarebytes Anti-Malware version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 2.1.121.2 - McAfee, Inc.)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Live Search Toolbar (HKLM-x32\...\{4FAB5122-775E-4418-B8D9-E2873BC93570}) (Version: 3.0.541.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Business 2010 - English (HKLM-x32\...\{90140011-0062-0409-0000-0000000FF1CE}) (Version: 14.0.5138.5002 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 Trial (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2007 Trial (HKLM-x32\...\PROR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Small Business Connectivity Components (HKLM-x32\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Office Word 2007 Get Started Tab (HKLM-x32\...\{68B52EFD-86CC-486E-A8D0-A3A1554CB5BC}) (Version: 12.0.0 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
MobileMe Control Panel (HKLM\...\{3C5E60F1-0821-4B07-97EA-84EB5A927CF6}) (Version: 3.1.6.0 - Apple Inc.)
Mozilla Firefox 28.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSRedist (x32 Version: 9.0.30729.4148 - Symantec Corporation) Hidden
MSRedx64 (x32 Version: 9.0.30729.4148 - Symantec Corporation) Hidden
MSVCSetup (x32 Version: 1.00.0000 - HP) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music Manager (HKCU\...\MusicManager) (Version:  - Google, Inc.)
muvee Reveal (HKLM-x32\...\{D722CF4B-4B06-BF11-FDEA-BD1B319FEA57}) (Version: 7.0.35.7918 - muvee Technologies Pte Ltd)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
MyPC Backup  (HKLM\...\MyPC Backup) (Version:  - JDi Backup Ltd) <==== ATTENTION
Norton Bootable Recovery Tool Wizard (HKLM-x32\...\NBRTWizard) (Version: 5.1.0.26 - Symantec Corporation)
Norton Security Suite (HKLM-x32\...\N360) (Version: 20.4.0.40 - Symantec Corporation)
OpenOffice.org 3.4.1 (HKLM-x32\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
PDF Reader (HKCU\...\PDF Reader) (Version:  - )
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PictureMover (HKLM-x32\...\{1896E712-2B3D-45eb-BCE9-542742A51032}) (Version: 3.3.1.11 - Hewlett-Packard Company)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.2325 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.2325 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.2417 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.2417 - CyberLink Corp.) Hidden
PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
Puran Defrag 7.6 (HKLM\...\Puran Defrag_is1) (Version:  - Puran Software)
Python 2.6 pywin32-212 (HKLM-x32\...\pywin32-py2.6) (Version: 2.12 - Python Software Foundation)
Python 2.6.1 (HKLM-x32\...\{9CC89170-000B-457D-91F1-53691F85B223}) (Version: 2.6.1150 - Python Software Foundation)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RCA Updater 1.0.4.0 (HKLM-x32\...\RCA Updater_is1) (Version:  - RCA)
RealDownloader (x32 Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.2 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5789 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Registry Mechanic 10.0 (HKLM-x32\...\Registry Mechanic_is1) (Version: 10.0 - PC Tools)
Revo Uninstaller 1.94 (HKLM-x32\...\Revo Uninstaller) (Version: 1.94 - VS Revo Group)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.3.13052_10 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.3.13052_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM-x32\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_PROR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_PROR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_PROR_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_PROR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_PROR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_PROR_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition (HKLM-x32\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{9B1DEEA3-B4ED-49F0-9EF7-4A820EEEA7F1}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_PROR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_PROR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_PROR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0 - DivX, Inc) Hidden
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
 
==================== Restore Points  =========================
 
11-05-2014 14:19:38 Scheduled Checkpoint
11-05-2014 22:54:42 Installed Java 7 Update 51
12-05-2014 07:00:24 Windows Update
13-05-2014 07:00:30 Windows Update
14-05-2014 01:59:08 Scheduled Checkpoint
 
==================== Hosts content: ==========================
 
2006-11-02 08:34 - 2013-07-23 09:15 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {0085E708-E6DE-49BA-8103-52E428E5E5F7} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1953429275-1861937841-2176962007-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {0BB83556-CDC1-4E96-A1E2-5B63B94A3F36} - System32\Tasks\HP AR Program Upload - 17c829ca54e2439986255d93409c802998decf0693a744978bde2369132d1672 => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {15ED7FBF-A05D-43D1-B52E-B4DC045613E5} - System32\Tasks\PCDRScheduledMaintenance => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [2009-01-06] (PC-Doctor, Inc.)
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-20] (Microsoft Corporation)
Task: {29A3F563-D9FC-4B23-A14E-F1B9300DC534} - System32\Tasks\HP Health Check => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-12-04] (Hewlett-Packard)
Task: {30571BED-FAF4-47E4-B2A7-A34C88795C59} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {321A96C3-85F0-4A8B-8B4F-5A7A63AF7A28} - System32\Tasks\HP AR Program Upload - 2e43bcbd5ec8430ca9f9c061e036ce37b04e684c192a44c08cdcf6c9410c92be => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {371AE621-05DD-4E95-A477-70F626519660} - \DSite No Task File <==== ATTENTION
Task: {3B6D22AE-CFC0-44ED-978B-846E2B014D47} - System32\Tasks\StormFall TW2 => Chrome.exe --app=http://plarium.com/p...ublisherID=2_73 --app-window-size=1280,960
Task: {401ADB7D-6937-4751-A6AE-1911156F6EBA} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\iWin Games\iWinGames.exe <==== ATTENTION
Task: {42B949D9-9AC5-4B92-BB9E-7E6D63B99942} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {46F74E81-01A7-42D3-BF43-D0C27E4A57B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-12-04] (Google Inc.)
Task: {4E59C978-AE37-43C3-AC9A-5F1BB07F21EE} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2012-11-10] ()
Task: {601420C6-C3E7-49EA-8F42-8FD380BEA25F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000UA => C:\Users\Tracy\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-30] (Google Inc.)
Task: {6809E1EF-2496-48E8-8A60-B57C8A8DE82C} - System32\Tasks\Vista Task Low => C:\Program Files (x86)\RealArcade\RealArcade.exe
Task: {6C2D1A31-BAAC-45D8-9689-DA69482FDA3E} - System32\Tasks\StormFall W2 => Chrome.exe --app=http://plarium.com/p...ublisherID=2_73 --app-window-size=1280,960
Task: {73BFF7D7-A4A0-49CE-A912-FB152F003EFE} - System32\Tasks\RMSmartUpdate => C:\Program Files (x86)\Registry Mechanic\update.exe
Task: {746E705C-2F4D-46FD-A017-AFD2C85060A0} - System32\Tasks\HP AR Program Upload - 90976af4a1c44419bc6e2c43d2a0d433970c93cbc4424fbf9a93411b5d24bf1f => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {7A45DFCA-69A3-4174-9F52-06854042A81C} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {800B7388-FCBC-413F-9740-9B6B1BC3B3B2} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1953429275-1861937841-2176962007-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {832E0683-A5FE-45F4-A7D5-A6844EB9F422} - System32\Tasks\StormFall W1 => Chrome.exe --app=http://plarium.com/p...ublisherID=2_73 --app-window-size=1280,960
Task: {95BCB833-3ECF-4AED-AB09-F98E934D52A5} - System32\Tasks\{4B7F023C-71A3-4BCD-9E8F-2DC0ECEA773D} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {A5B454F1-C4A6-416F-ABE3-E7CDB04B596C} - System32\Tasks\HP AR Program Upload - 6445367a43404e609976ac966800d5064f7c5866932e4addb6253e6ad8ec4b41 => C:\Program Files\HP\HP Deskjet 3510 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {AB835EE2-F20B-4643-80DA-43B2011BD61E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-28] (Adobe Systems Incorporated)
Task: {AF18934A-ED38-43DB-87B2-BC1148B37988} - System32\Tasks\Divx online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2010-09-16] ()
Task: {B07A1F9F-2AE7-4ABB-B626-DA07B9066987} - System32\Tasks\Norton Security Suite\Norton Error Processor => C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\SymErr.exe [2013-06-03] (Symantec Corporation)
Task: {B555217F-D647-4EDF-9E4A-FFE3AB23EB75} - System32\Tasks\Norton Security Suite\Norton Error Analyzer => C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\SymErr.exe [2013-06-03] (Symantec Corporation)
Task: {BB3DA257-D1B7-4ED6-956F-E733A1BDA1CC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-02-25] (Piriform Ltd)
Task: {BE6BF757-E815-40DA-B788-F2E32F116958} - System32\Tasks\StormFall TW1 => Chrome.exe --app=http://plarium.com/p...ublisherID=2_73 --app-window-size=1280,960
Task: {C9592505-1129-4C55-BCAB-F56316E9AB95} - System32\Tasks\Hewlett-Packard online update program => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-12-04] (Hewlett-Packard)
Task: {CAF0E2AC-2B98-4EE2-8D2A-FEF03C30CFCB} - System32\Tasks\HPCeeScheduleForTracy => C:\Program Files (x86)\Hewlett-Packard\SDP\Ceement\HPCEE.exe [2008-12-16] (Hewlett-Packard)
Task: {CF303765-EE69-469F-B53D-ECAE98E9AD74} - \Scheduled Update for Ask Toolbar No Task File <==== ATTENTION
Task: {D866B26B-F785-49FF-8E62-F36926B1EE97} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000Core => C:\Users\Tracy\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-30] (Google Inc.)
Task: {DFDE2D9E-AE7E-4E3F-A05C-72334976F318} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27] (Adobe Systems Incorporated)
Task: {E5560BE6-D4D7-4D91-B5BF-B7E50C669B8A} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\WSCStub.exe [2013-06-04] (Symantec Corporation)
Task: {E55F6E7D-BDC6-48D2-8423-76A459C30FE8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-20] ()
Task: {E93E0174-DAAC-4711-B92B-DC30EC8289F2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-12-04] (Google Inc.)
Task: {ED0C114F-76EE-4510-95F8-3305DBB4B0B7} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [2010-06-14] (Hewlett-Packard Co.)
Task: {F431CEB0-4F33-4C7D-A832-F192C8AC0090} - System32\Tasks\Google Updater and Installer => C:\Users\Tracy\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-30] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000Core.job => C:\Users\Tracy\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1953429275-1861937841-2176962007-1000UA.job => C:\Users\Tracy\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
Task: C:\Windows\Tasks\HPCeeScheduleForTracy.job => C:\Program Files (x86)\Hewlett-Packard\SDP\Ceement\HPCEE.exe
Task: C:\Windows\Tasks\PCDRScheduledMaintenance.job => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-03-14 10:00 - 2014-03-14 10:00 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
2014-03-14 10:06 - 2014-03-14 10:06 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2009-07-25 10:07 - 2009-07-25 10:07 - 00266240 ____N () C:\Windows\SysWOW64\CSHelper.exe
2013-04-16 03:07 - 2013-04-16 03:07 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2009-04-22 22:53 - 2009-04-22 22:53 - 00296320 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
2009-04-22 22:53 - 2009-04-22 22:53 - 00116104 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
2009-04-22 22:52 - 2009-04-22 22:52 - 00074536 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\Common\MCEMediaStatus64.dll
2010-02-28 02:33 - 2010-02-28 02:33 - 00077664 _____ () C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
2013-09-13 20:51 - 2013-09-13 20:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 20:51 - 2013-09-13 20:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-04-22 22:53 - 2009-04-22 22:53 - 00267656 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapEngine.dll
2009-04-22 22:53 - 2009-04-22 22:53 - 00038184 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapSvcps.dll
2013-07-16 13:29 - 2012-05-30 10:51 - 00699280 ____R () C:\PROGRAM FILES (X86)\NORTON SECURITY SUITE\ENGINE\20.4.0.40\wincfi39.dll
2013-12-10 17:06 - 2013-12-10 17:06 - 10683392 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\QtWebKit4.dll
2013-12-10 17:06 - 2013-12-10 17:06 - 07741952 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\QtGui4.dll
2013-12-10 17:06 - 2013-12-10 17:06 - 02248192 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\QtCore4.dll
2013-12-10 17:06 - 2013-12-10 17:06 - 01681408 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\QtNetwork4.dll
2014-04-23 18:38 - 2014-04-23 18:38 - 00117248 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\libaacdec.dll
2014-04-23 18:39 - 2014-04-23 18:39 - 00231936 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\libmpgdec.dll
2014-04-23 18:40 - 2014-04-23 18:40 - 00253440 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\libid3tag.dll
2014-04-23 18:38 - 2014-04-23 18:38 - 00344064 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\libaudioenc.dll
2013-12-10 17:06 - 2013-12-10 17:06 - 00026624 _____ () C:\Users\Tracy\AppData\Local\Programs\Google\MusicManager\imageformats\qgif4.dll
2014-04-29 20:07 - 2014-04-23 20:33 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\chrome_elf.dll
2014-04-10 16:23 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Tracy\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-04-10 16:23 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Tracy\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2014-04-29 20:07 - 2014-04-23 20:33 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ffmpegsumo.dll
2014-04-29 20:07 - 2014-04-23 20:33 - 13692232 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll
2014-04-29 20:07 - 2014-04-23 20:33 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\pdf.dll
2014-04-29 20:07 - 2014-04-23 20:33 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMR311 => ""="Service"
 
==================== EXE Association (whitelisted) =============
 
 
==================== Disabled items from MSCONFIG ==============
 
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/13/2014 09:34:35 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledSPRetry 4040
 
Error: (05/13/2014 09:34:35 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledEvent 4040
 
Error: (05/13/2014 09:34:35 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (05/13/2014 09:34:34 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledSPRetry 3042
 
Error: (05/13/2014 09:34:34 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledEvent 3042
 
Error: (05/13/2014 09:34:34 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (05/13/2014 09:34:33 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledSPRetry 2043
 
Error: (05/13/2014 09:34:33 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledEvent 2043
 
Error: (05/13/2014 09:34:33 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (05/13/2014 09:34:32 PM) (Source: Bonjour Service) (User: ) (EventID: 100)
Description: Task Scheduling Error: m->NextScheduledSPRetry 1045
 
 
System errors:
=============
Error: (05/13/2014 03:02:43 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY) (EventID: 20)
Description: 0x80070643Update for Microsoft Office 2010 (KB2598285) 32-Bit Edition{0D7C6FF3-7D09-46F1-8B5F-5496D68F45E4}203
 
Error: (05/12/2014 03:02:52 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY) (EventID: 20)
Description: 0x80070643Update for Microsoft Office 2010 (KB2598285) 32-Bit Edition{0D7C6FF3-7D09-46F1-8B5F-5496D68F45E4}203
 
Error: (05/11/2014 10:19:37 AM) (Source: volsnap) (User: ) (EventID: 20)
Description: The shadow copies of volume C: were aborted because of a failed free space computation.
 
Error: (05/11/2014 09:49:07 AM) (Source: Service Control Manager) (User: ) (EventID: 7011)
Description: 30000Netman
 
Error: (05/11/2014 08:29:39 AM) (Source: DCOM) (User: NT AUTHORITY) (EventID: 10016)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (05/11/2014 08:28:06 AM) (Source: DCOM) (User: NT AUTHORITY) (EventID: 10016)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)
 
Error: (05/11/2014 08:27:41 AM) (Source: Service Control Manager) (User: ) (EventID: 7026)
Description: Beep
i8042prt
 
Error: (05/11/2014 08:27:12 AM) (Source: Service Control Manager) (User: ) (EventID: 7000)
Description: Maps4PCService%%3
 
Error: (05/11/2014 08:20:18 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY) (EventID: 20)
Description: 0x80070643Update for Microsoft Office 2010 (KB2598285) 32-Bit Edition{0D7C6FF3-7D09-46F1-8B5F-5496D68F45E4}203
 
Error: (05/11/2014 03:06:19 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY) (EventID: 20)
Description: 0x80070643Update for Microsoft Office 2010 (KB2598285) 32-Bit Edition{0D7C6FF3-7D09-46F1-8B5F-5496D68F45E4}203
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2014-05-13 22:19:50.990
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:50.281
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:49.532
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:48.712
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:47.842
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:47.106
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:46.260
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:45.518
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:23.112
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-13 22:19:22.292
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 60%
Total physical RAM: 6133.33 MB
Available physical RAM: 2445.09 MB
Total Pagefile: 12465.67 MB
Available Pagefile: 9096.99 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
 
==================== Drives ================================
 
Drive c: (HP) (Fixed) (Total:583.32 GB) (Free:440.91 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (FACTORY_IMAGE) (Fixed) (Total:12.85 GB) (Free:1.8 GB) NTFS ==>[System with boot components (obtained from reading drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 596 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=583 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=13 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

  • 0

#42
Machiavelli
Posted 14 May 2014 - 06:08 AM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts

Hey,

Step 1: Uninstalls

  • Click on the Start Start%20Orb.jpg button and select Control Panel
  • Click on Programs then click on Uninstall a program
  • You will now see a list of your installed software, double click on the following one by one to uninstall them:
    • Coupon Printer for Windows
    • MyPC Backup
       
  • Once you have done this, reboot your computer

Step 2: FRST Fix

  • Please download the attached fixlist.txt file and save it to the same location as FRST

    Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply

Step 3: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1

  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.

Note: The log can also be found in here: C:\AdwCleaner\

Step 4: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
 

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Step 5: FRST Run

 

  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

Step 6: Question

How is your PC running?

Attached Files


  • 0

#43
Machiavelli
Posted 17 May 2014 - 03:42 AM

Machiavelli

    GeekU Moderator

  • GeekU Moderator
  • 4,722 posts
Are you still with me?
  • 0

#44
tdjones813
Posted 19 May 2014 - 04:13 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts

Yes, I was away this weekend and wasn't able to do anything.


  • 0

#45
tdjones813
Posted 19 May 2014 - 04:16 PM

tdjones813

    Member

  • Topic Starter
  • Member
  • PipPip
  • 65 posts

I don't understand step 2


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP