Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Trovi has taken over [Solved]

Have tried all remedies

  • This topic is locked This topic is locked

#1
paulsabella

paulsabella

    New Member

  • Member
  • Pip
  • 9 posts

I have a similar bit worse trovi story than a recent topic. I was unable to reply in that topic so I started anew.. I cannot find any reference to what it is dooing. I hope this forum can help.

Windows 7 operating, Chrome Brower. The wife was somehwere and Trovi attached. Can open google but whenever you attempt to go to a site "proxy server problem" comes up. The URL reflects the right page where you should be but... I did the research ran spybot as admin and in safe mode, malwarebytes as admin and in safemode as well and it looked like it was ok. no help. I changed the chrome setting according to instructions and that checks out but still Trovi rules, I reset chorme settings as well, no luck. I cannot download adw so i downloaded to my pc and ran on the wifes using a thunmbdrive. It looked like it worked, no luck.

 

I was going to delete chorme and reinstall but first thought I should actviate I explorer. First time activating and it cannot get online, Trovi and the Proxy server problem. Nothing i can find says Trovi can do this, any help or thoughts appreciated.

 

Last note: ADW does find a registry entry but cannot remove it. The entry begins and ends with #### and it is in theappdata location


  • 0

Advertisements


#2
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,962 posts

:welcome:

 

Please download Farbar Recovery Scan Tool and save it to your desktop, or wife's pendrive.
 
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt and Shortcut.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • It will also produce another two logs (Addition.txt and Shortcut.txt). Please attach these to your reply.

  • 0

#3
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

Thank you for the response. Doing now


  • 0

#4
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

As requested and thanks again
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-06-2014
Ran by Jodi Whitman-Surette (administrator) on JODIWHITMAN-SUR on 20-06-2014 09:41:30
Running from C:\Users\Jodi Whitman-Surette\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Safer Networking Limited) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_YATIJHE.EXE
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_YATIJHE.EXE
(Dell) C:\Users\Jodi Whitman-Surette\AppData\Local\Apps\2.0\9DC12G6X.C59\ZM3J5NT1.NOL\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6629480 2011-04-14] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [627360 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379552 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [4500640 2011-03-10] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163568 2010-11-11] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1436736 2011-06-15] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)
HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [885760 2011-04-29] ()
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-09-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-09-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [DellSystemDetect] => C:\Users\Jodi Whitman-Surette\AppData\Local\Apps\2.0\9DC12G6X.C59\ZM3J5NT1.NOL\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe [254976 2014-05-24] (Dell)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PastaQuotes.lnk
ShortcutTarget: PastaQuotes.lnk -> C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {1110D5FE-F2DA-4FB3-A228-9FA7CFFE3EDF} URL =
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.0.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Drive) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-09]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-24]
CHR Extension: (YouTube) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-09]
CHR Extension: (Google Search) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-09]
CHR Extension: (Google Wallet) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-09]
CHR Extension: (Gmail) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-09]

==================== Services (Whitelisted) =================

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-20] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [80032 2011-05-20] (Atheros Commnucations) [File not signed]
S2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1473792 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [12784 2011-04-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [288272 2011-04-27] (Microsoft Corporation)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S2 vToolbarUpdater3.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.0.0\ToolbarUpdater.exe [X]

==================== Drivers (Whitelisted) ====================

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236312 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [191768 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [323352 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130328 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [273176 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-04-18] (AVG Technologies)
R1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [189440 2011-04-18] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [84864 2011-04-27] (Microsoft Corporation)
S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation)
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-20 09:40 - 2014-06-20 09:41 - 00026568 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Addition.txt
2014-06-20 09:39 - 2014-06-20 09:41 - 00014443 _____ () C:\Users\Jodi Whitman-Surette\Desktop\FRST.txt
2014-06-20 09:39 - 2014-06-20 09:41 - 00000000 ____D () C:\FRST
2014-06-20 09:39 - 2014-06-20 09:35 - 02082304 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST64.exe
2014-06-20 09:33 - 2014-06-20 09:32 - 01072128 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST.exe
2014-06-19 19:57 - 2014-06-19 19:57 - 00092660 _____ () C:\Users\Jodi Whitman-Surette\Desktop\OTL.Txt
2014-06-19 19:40 - 2014-06-19 19:40 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-19 19:40 - 2014-06-19 19:40 - 00000000 ___RD () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-19 18:53 - 2014-06-19 18:53 - 00000648 _____ () C:\Users\Jodi Whitman-Surette\Desktop\JRT.txt
2014-06-19 18:35 - 2014-06-19 18:35 - 00001498 _____ () C:\Users\Jodi Whitman-Surette\Desktop\AdwCleaner[R6].txt
2014-06-19 18:18 - 2014-06-19 18:20 - 00039207 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Result.txt
2014-06-18 09:32 - 2014-06-18 09:32 - 00000000 ____D () C:\Windows\ERUNT
2014-06-17 22:48 - 2009-06-10 17:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140617-224852.backup
2014-06-17 22:32 - 2014-06-17 22:32 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File (1).exe
2014-06-17 22:29 - 2014-06-17 22:30 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File.exe
2014-06-17 19:50 - 2014-06-17 20:22 - 00007283 _____ () C:\Windows\wininit.ini
2014-06-17 18:39 - 2014-06-17 18:39 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\blood_splatter_3_sticker-217015505627604768
2014-06-17 17:58 - 2014-06-17 17:58 - 00000154 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dref=http%3A%2F%2Fwww.ebay.com%2Fsch%2FFiction-Literature-%2F377%2Fi.html%3F_nkw%26_from%3DR40%26_dcat%3D377%26rt%3Dnc%26_pppn%3Dr1%26Subject%3DDrama%257CHistorical%257CRomance
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books (1)
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books
2014-06-17 17:49 - 2014-06-17 17:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i (1).html
2014-06-17 15:27 - 2014-06-17 15:27 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis (1).aspx
2014-06-17 14:00 - 2014-06-17 14:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis.aspx
2014-06-17 13:01 - 2014-06-17 13:01 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261496259486
2014-06-17 13:00 - 2014-06-17 13:00 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\321435467741
2014-06-17 12:51 - 2014-06-17 12:51 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\141316253327
2014-06-17 12:49 - 2014-06-17 12:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\131216040312
2014-06-17 12:00 - 2014-06-17 12:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\231229948864
2014-06-17 11:57 - 2014-06-17 11:57 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\310945186531
2014-06-17 11:57 - 2014-06-17 11:57 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\171341504252
2014-06-17 11:53 - 2014-06-17 11:53 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\350565360352
2014-06-17 11:52 - 2014-06-17 11:52 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261481850564
2014-06-17 11:51 - 2014-06-17 11:51 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\50
2014-06-17 11:47 - 2014-06-17 11:47 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i.html
2014-06-17 11:43 - 2014-06-17 11:43 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\sis.html
2014-06-17 11:18 - 2014-06-17 11:19 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater (1).exe
2014-06-17 11:17 - 2014-06-17 11:17 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\OpenSoftwareUpdater
2014-06-17 11:11 - 2014-06-17 11:12 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater.exe
2014-06-14 14:28 - 2014-06-14 14:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-06-14 14:27 - 2014-06-14 14:28 - 16002688 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones_v1.5.42.0.exe
2014-06-14 14:17 - 2014-06-14 14:17 - 24178176 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\Samsung_USB_Driver_for_Mobile_Phones_v1.5.14.0.exe
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Obsidium
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\ProgramData\pastaleads
2014-06-11 17:43 - 2014-06-17 22:24 - 00000000 ____D () C:\ProgramData\AllMyBooks
2014-06-11 15:46 - 2014-06-11 15:46 - 00145408 _____ () C:\Users\Jodi Whitman-Surette\Documents\Brockmann2014.pub
2014-06-11 06:31 - 2014-05-30 06:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 06:31 - 2014-05-30 06:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 06:31 - 2014-05-30 06:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 06:31 - 2014-05-30 05:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 06:31 - 2014-05-30 05:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 06:31 - 2014-05-30 05:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 06:31 - 2014-05-30 05:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 06:31 - 2014-05-30 05:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 06:31 - 2014-05-30 05:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 06:31 - 2014-05-30 05:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 06:31 - 2014-05-30 05:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 06:31 - 2014-05-30 05:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 06:31 - 2014-05-30 05:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 06:31 - 2014-05-30 05:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 06:31 - 2014-05-30 05:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 06:31 - 2014-05-30 05:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 06:31 - 2014-05-30 05:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 06:31 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 06:31 - 2014-05-30 04:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 06:31 - 2014-05-30 04:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 06:31 - 2014-05-30 04:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 06:31 - 2014-05-30 04:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 06:31 - 2014-05-30 04:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 06:31 - 2014-05-30 04:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 06:31 - 2014-05-30 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 06:31 - 2014-05-30 04:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 06:31 - 2014-05-30 04:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 06:31 - 2014-05-30 04:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 06:31 - 2014-05-30 04:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 06:31 - 2014-05-30 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 06:31 - 2014-05-30 04:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 06:31 - 2014-05-30 04:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 06:31 - 2014-05-30 04:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 06:31 - 2014-05-30 04:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 06:31 - 2014-05-30 04:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 06:31 - 2014-05-30 04:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 06:31 - 2014-05-30 04:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 06:31 - 2014-05-30 04:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 06:31 - 2014-05-30 04:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 06:31 - 2014-05-30 04:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 06:31 - 2014-05-30 03:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 06:31 - 2014-05-30 03:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 06:31 - 2014-05-30 03:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 06:31 - 2014-05-30 03:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 06:31 - 2014-05-30 03:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 06:31 - 2014-05-30 03:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 06:31 - 2014-05-30 03:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 06:31 - 2014-05-30 03:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 06:31 - 2014-05-30 03:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 06:31 - 2014-05-30 03:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 06:31 - 2014-05-30 03:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 06:31 - 2014-05-30 03:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 06:31 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 06:31 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 06:31 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 06:31 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 06:31 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 06:31 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 06:31 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 06:31 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 06:31 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 06:31 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 06:31 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 06:31 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 06:28 - 2014-06-08 05:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-11 06:28 - 2014-06-08 05:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-30 18:49 - 2014-05-30 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-24 12:31 - 2014-05-24 12:31 - 00000000 ____D () C:\9040c29a1a8b7dea59
2014-05-24 11:45 - 2014-05-24 11:45 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-05-24 11:41 - 2014-05-24 11:42 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect (1).exe
2014-05-24 11:39 - 2014-05-24 11:39 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect.exe

==================== One Month Modified Files and Folders =======

2014-06-20 09:41 - 2014-06-20 09:40 - 00026568 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Addition.txt
2014-06-20 09:41 - 2014-06-20 09:39 - 00014443 _____ () C:\Users\Jodi Whitman-Surette\Desktop\FRST.txt
2014-06-20 09:41 - 2014-06-20 09:39 - 00000000 ____D () C:\FRST
2014-06-20 09:40 - 2009-07-14 01:13 - 00785906 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-20 09:35 - 2014-06-20 09:39 - 02082304 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST64.exe
2014-06-20 09:33 - 2014-04-09 09:11 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-20 09:32 - 2014-06-20 09:33 - 01072128 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST.exe
2014-06-20 09:32 - 2014-04-09 09:11 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-20 09:32 - 2011-10-15 23:07 - 01883458 _____ () C:\Windows\WindowsUpdate.log
2014-06-19 19:57 - 2014-06-19 19:57 - 00092660 _____ () C:\Users\Jodi Whitman-Surette\Desktop\OTL.Txt
2014-06-19 19:50 - 2014-04-10 08:47 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff
2014-06-19 19:47 - 2009-07-14 00:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-19 19:47 - 2009-07-14 00:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-19 19:40 - 2014-06-19 19:40 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-19 19:40 - 2014-06-19 19:40 - 00000000 ___RD () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-19 19:40 - 2011-10-15 21:46 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-06-19 19:40 - 2011-10-15 21:46 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-06-19 19:40 - 2011-10-15 21:38 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-06-19 19:39 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-19 19:39 - 2009-07-14 00:51 - 00043657 _____ () C:\Windows\setupact.log
2014-06-19 18:53 - 2014-06-19 18:53 - 00000648 _____ () C:\Users\Jodi Whitman-Surette\Desktop\JRT.txt
2014-06-19 18:37 - 2010-11-20 23:47 - 00206540 _____ () C:\Windows\PFRO.log
2014-06-19 18:36 - 2014-04-09 15:39 - 00000000 ____D () C:\AdwCleaner
2014-06-19 18:35 - 2014-06-19 18:35 - 00001498 _____ () C:\Users\Jodi Whitman-Surette\Desktop\AdwCleaner[R6].txt
2014-06-19 18:20 - 2014-06-19 18:18 - 00039207 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Result.txt
2014-06-19 18:06 - 2012-03-21 12:42 - 00000422 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2014-06-19 12:36 - 2014-04-09 16:23 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Local\Windows Live
2014-06-19 12:36 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-19 12:35 - 2014-04-09 18:05 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 12:34 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-06-18 09:32 - 2014-06-18 09:32 - 00000000 ____D () C:\Windows\ERUNT
2014-06-18 08:35 - 2014-04-09 15:54 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-18 07:51 - 2014-04-09 17:41 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\Outlook Files
2014-06-17 22:32 - 2014-06-17 22:32 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File (1).exe
2014-06-17 22:30 - 2014-06-17 22:29 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File.exe
2014-06-17 22:24 - 2014-06-11 17:43 - 00000000 ____D () C:\ProgramData\AllMyBooks
2014-06-17 21:18 - 2009-07-14 00:45 - 00417416 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-17 20:22 - 2014-06-17 19:50 - 00007283 _____ () C:\Windows\wininit.ini
2014-06-17 18:55 - 2014-04-08 17:50 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.old
2014-06-17 18:39 - 2014-06-17 18:39 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\blood_splatter_3_sticker-217015505627604768
2014-06-17 17:58 - 2014-06-17 17:58 - 00000154 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dref=http%3A%2F%2Fwww.ebay.com%2Fsch%2FFiction-Literature-%2F377%2Fi.html%3F_nkw%26_from%3DR40%26_dcat%3D377%26rt%3Dnc%26_pppn%3Dr1%26Subject%3DDrama%257CHistorical%257CRomance
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books (1)
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books
2014-06-17 17:49 - 2014-06-17 17:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i (1).html
2014-06-17 15:27 - 2014-06-17 15:27 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis (1).aspx
2014-06-17 14:00 - 2014-06-17 14:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis.aspx
2014-06-17 13:01 - 2014-06-17 13:01 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261496259486
2014-06-17 13:00 - 2014-06-17 13:00 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\321435467741
2014-06-17 12:51 - 2014-06-17 12:51 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\141316253327
2014-06-17 12:49 - 2014-06-17 12:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\131216040312
2014-06-17 12:00 - 2014-06-17 12:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\231229948864
2014-06-17 11:57 - 2014-06-17 11:57 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\310945186531
2014-06-17 11:57 - 2014-06-17 11:57 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\171341504252
2014-06-17 11:53 - 2014-06-17 11:53 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\350565360352
2014-06-17 11:52 - 2014-06-17 11:52 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261481850564
2014-06-17 11:51 - 2014-06-17 11:51 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\50
2014-06-17 11:47 - 2014-06-17 11:47 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i.html
2014-06-17 11:43 - 2014-06-17 11:43 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\sis.html
2014-06-17 11:19 - 2014-06-17 11:18 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater (1).exe
2014-06-17 11:17 - 2014-06-17 11:17 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\OpenSoftwareUpdater
2014-06-17 11:12 - 2014-06-17 11:11 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater.exe
2014-06-14 14:28 - 2014-06-14 14:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-06-14 14:28 - 2014-06-14 14:27 - 16002688 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones_v1.5.42.0.exe
2014-06-14 14:17 - 2014-06-14 14:17 - 24178176 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\Samsung_USB_Driver_for_Mobile_Phones_v1.5.14.0.exe
2014-06-14 07:47 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-06-14 07:47 - 2009-07-13 22:34 - 00000639 _____ () C:\Windows\win.ini
2014-06-14 03:09 - 2014-04-09 22:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-14 03:06 - 2012-03-28 11:20 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-14 03:05 - 2014-04-09 16:46 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-14 03:03 - 2014-05-07 03:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-13 03:11 - 2014-04-09 09:13 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Obsidium
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\ProgramData\pastaleads
2014-06-11 15:46 - 2014-06-11 15:46 - 00145408 _____ () C:\Users\Jodi Whitman-Surette\Documents\Brockmann2014.pub
2014-06-10 13:44 - 2014-04-15 12:49 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\JAWS Files
2014-06-09 09:44 - 2014-04-08 17:44 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\Bluetooth Folder
2014-06-08 05:13 - 2014-06-11 06:28 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 05:08 - 2014-06-11 06:28 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-06 11:46 - 2012-03-21 12:42 - 00000564 _____ () C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2014-05-30 18:49 - 2014-05-30 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-30 06:21 - 2014-06-11 06:31 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 06:02 - 2014-06-11 06:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 06:02 - 2014-06-11 06:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 05:45 - 2014-06-11 06:31 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 05:39 - 2014-06-11 06:31 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 05:39 - 2014-06-11 06:31 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 05:38 - 2014-06-11 06:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 05:28 - 2014-06-11 06:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 05:27 - 2014-06-11 06:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 05:24 - 2014-06-11 06:31 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 05:21 - 2014-06-11 06:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 05:21 - 2014-06-11 06:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 05:20 - 2014-06-11 06:31 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 05:18 - 2014-06-11 06:31 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 05:11 - 2014-06-11 06:31 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 05:08 - 2014-06-11 06:31 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 05:06 - 2014-06-11 06:31 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 05:02 - 2014-06-11 06:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 04:55 - 2014-06-11 06:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 04:49 - 2014-06-11 06:31 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 04:46 - 2014-06-11 06:31 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 04:44 - 2014-06-11 06:31 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 04:44 - 2014-06-11 06:31 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 04:43 - 2014-06-11 06:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 04:42 - 2014-06-11 06:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 04:38 - 2014-06-11 06:31 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 04:35 - 2014-06-11 06:31 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 04:34 - 2014-06-11 06:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 04:33 - 2014-06-11 06:31 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 04:30 - 2014-06-11 06:31 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 04:29 - 2014-06-11 06:31 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 04:28 - 2014-06-11 06:31 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 04:27 - 2014-06-11 06:31 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 04:24 - 2014-06-11 06:31 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 04:23 - 2014-06-11 06:31 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 04:16 - 2014-06-11 06:31 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 04:10 - 2014-06-11 06:31 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 04:06 - 2014-06-11 06:31 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 04:04 - 2014-06-11 06:31 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 04:02 - 2014-06-11 06:31 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 03:56 - 2014-06-11 06:31 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 03:56 - 2014-06-11 06:31 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 03:54 - 2014-06-11 06:31 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 03:50 - 2014-06-11 06:31 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 03:49 - 2014-06-11 06:31 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 03:43 - 2014-06-11 06:31 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 03:40 - 2014-06-11 06:31 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 03:30 - 2014-06-11 06:31 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 03:21 - 2014-06-11 06:31 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 03:15 - 2014-06-11 06:31 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 03:13 - 2014-06-11 06:31 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 03:13 - 2014-06-11 06:31 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-24 12:31 - 2014-05-24 12:31 - 00000000 ____D () C:\9040c29a1a8b7dea59
2014-05-24 12:31 - 2011-10-15 22:03 - 00002026 _____ () C:\Windows\epplauncher.mif
2014-05-24 11:53 - 2014-04-09 09:09 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Local\Deployment
2014-05-24 11:45 - 2014-05-24 11:45 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-05-24 11:42 - 2014-05-24 11:41 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect (1).exe
2014-05-24 11:39 - 2014-05-24 11:39 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect.exe

Some content of TEMP:
====================
C:\Users\Jodi Whitman-Surette\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 10:02

==================== End Of Log ============================


  • 0

#5
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

As requested and thanks again

 

unable to attach so copy pasted

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-06-2014
Ran by Jodi Whitman-Surette (administrator) on JODIWHITMAN-SUR on 20-06-2014 09:41:30
Running from C:\Users\Jodi Whitman-Surette\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Safer Networking Limited) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_YATIJHE.EXE
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_YATIJHE.EXE
(Dell) C:\Users\Jodi Whitman-Surette\AppData\Local\Apps\2.0\9DC12G6X.C59\ZM3J5NT1.NOL\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6629480 2011-04-14] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [627360 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379552 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [4500640 2011-03-10] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163568 2010-11-11] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1436736 2011-06-15] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)
HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [885760 2011-04-29] ()
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-09-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-09-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [DellSystemDetect] => C:\Users\Jodi Whitman-Surette\AppData\Local\Apps\2.0\9DC12G6X.C59\ZM3J5NT1.NOL\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe [254976 2014-05-24] (Dell)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PastaQuotes.lnk
ShortcutTarget: PastaQuotes.lnk -> C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {1110D5FE-F2DA-4FB3-A228-9FA7CFFE3EDF} URL =
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.0.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Drive) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-09]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-24]
CHR Extension: (YouTube) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-09]
CHR Extension: (Google Search) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-09]
CHR Extension: (Google Wallet) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-09]
CHR Extension: (Gmail) - C:\Users\Jodi Whitman-Surette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-09]

==================== Services (Whitelisted) =================

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-20] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [80032 2011-05-20] (Atheros Commnucations) [File not signed]
S2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1473792 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [12784 2011-04-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [288272 2011-04-27] (Microsoft Corporation)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S2 vToolbarUpdater3.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.0.0\ToolbarUpdater.exe [X]

==================== Drivers (Whitelisted) ====================

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236312 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [191768 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [323352 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130328 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [273176 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-04-18] (AVG Technologies)
R1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [189440 2011-04-18] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [84864 2011-04-27] (Microsoft Corporation)
S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation)
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-20 09:40 - 2014-06-20 09:41 - 00026568 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Addition.txt
2014-06-20 09:39 - 2014-06-20 09:41 - 00014443 _____ () C:\Users\Jodi Whitman-Surette\Desktop\FRST.txt
2014-06-20 09:39 - 2014-06-20 09:41 - 00000000 ____D () C:\FRST
2014-06-20 09:39 - 2014-06-20 09:35 - 02082304 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST64.exe
2014-06-20 09:33 - 2014-06-20 09:32 - 01072128 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST.exe
2014-06-19 19:57 - 2014-06-19 19:57 - 00092660 _____ () C:\Users\Jodi Whitman-Surette\Desktop\OTL.Txt
2014-06-19 19:40 - 2014-06-19 19:40 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-19 19:40 - 2014-06-19 19:40 - 00000000 ___RD () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-19 18:53 - 2014-06-19 18:53 - 00000648 _____ () C:\Users\Jodi Whitman-Surette\Desktop\JRT.txt
2014-06-19 18:35 - 2014-06-19 18:35 - 00001498 _____ () C:\Users\Jodi Whitman-Surette\Desktop\AdwCleaner[R6].txt
2014-06-19 18:18 - 2014-06-19 18:20 - 00039207 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Result.txt
2014-06-18 09:32 - 2014-06-18 09:32 - 00000000 ____D () C:\Windows\ERUNT
2014-06-17 22:48 - 2009-06-10 17:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140617-224852.backup
2014-06-17 22:32 - 2014-06-17 22:32 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File (1).exe
2014-06-17 22:29 - 2014-06-17 22:30 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File.exe
2014-06-17 19:50 - 2014-06-17 20:22 - 00007283 _____ () C:\Windows\wininit.ini
2014-06-17 18:39 - 2014-06-17 18:39 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\blood_splatter_3_sticker-217015505627604768
2014-06-17 17:58 - 2014-06-17 17:58 - 00000154 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dref=http%3A%2F%2Fwww.ebay.com%2Fsch%2FFiction-Literature-%2F377%2Fi.html%3F_nkw%26_from%3DR40%26_dcat%3D377%26rt%3Dnc%26_pppn%3Dr1%26Subject%3DDrama%257CHistorical%257CRomance
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books (1)
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books
2014-06-17 17:49 - 2014-06-17 17:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i (1).html
2014-06-17 15:27 - 2014-06-17 15:27 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis (1).aspx
2014-06-17 14:00 - 2014-06-17 14:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis.aspx
2014-06-17 13:01 - 2014-06-17 13:01 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261496259486
2014-06-17 13:00 - 2014-06-17 13:00 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\321435467741
2014-06-17 12:51 - 2014-06-17 12:51 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\141316253327
2014-06-17 12:49 - 2014-06-17 12:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\131216040312
2014-06-17 12:00 - 2014-06-17 12:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\231229948864
2014-06-17 11:57 - 2014-06-17 11:57 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\310945186531
2014-06-17 11:57 - 2014-06-17 11:57 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\171341504252
2014-06-17 11:53 - 2014-06-17 11:53 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\350565360352
2014-06-17 11:52 - 2014-06-17 11:52 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261481850564
2014-06-17 11:51 - 2014-06-17 11:51 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\50
2014-06-17 11:47 - 2014-06-17 11:47 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i.html
2014-06-17 11:43 - 2014-06-17 11:43 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\sis.html
2014-06-17 11:18 - 2014-06-17 11:19 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater (1).exe
2014-06-17 11:17 - 2014-06-17 11:17 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\OpenSoftwareUpdater
2014-06-17 11:11 - 2014-06-17 11:12 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater.exe
2014-06-14 14:28 - 2014-06-14 14:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-06-14 14:27 - 2014-06-14 14:28 - 16002688 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones_v1.5.42.0.exe
2014-06-14 14:17 - 2014-06-14 14:17 - 24178176 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\Samsung_USB_Driver_for_Mobile_Phones_v1.5.14.0.exe
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Obsidium
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\ProgramData\pastaleads
2014-06-11 17:43 - 2014-06-17 22:24 - 00000000 ____D () C:\ProgramData\AllMyBooks
2014-06-11 15:46 - 2014-06-11 15:46 - 00145408 _____ () C:\Users\Jodi Whitman-Surette\Documents\Brockmann2014.pub
2014-06-11 06:31 - 2014-05-30 06:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 06:31 - 2014-05-30 06:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 06:31 - 2014-05-30 06:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 06:31 - 2014-05-30 05:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 06:31 - 2014-05-30 05:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 06:31 - 2014-05-30 05:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 06:31 - 2014-05-30 05:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 06:31 - 2014-05-30 05:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 06:31 - 2014-05-30 05:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 06:31 - 2014-05-30 05:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 06:31 - 2014-05-30 05:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 06:31 - 2014-05-30 05:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 06:31 - 2014-05-30 05:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 06:31 - 2014-05-30 05:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 06:31 - 2014-05-30 05:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 06:31 - 2014-05-30 05:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 06:31 - 2014-05-30 05:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 06:31 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 06:31 - 2014-05-30 04:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 06:31 - 2014-05-30 04:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 06:31 - 2014-05-30 04:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 06:31 - 2014-05-30 04:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 06:31 - 2014-05-30 04:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 06:31 - 2014-05-30 04:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 06:31 - 2014-05-30 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 06:31 - 2014-05-30 04:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 06:31 - 2014-05-30 04:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 06:31 - 2014-05-30 04:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 06:31 - 2014-05-30 04:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 06:31 - 2014-05-30 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 06:31 - 2014-05-30 04:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 06:31 - 2014-05-30 04:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 06:31 - 2014-05-30 04:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 06:31 - 2014-05-30 04:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 06:31 - 2014-05-30 04:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 06:31 - 2014-05-30 04:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 06:31 - 2014-05-30 04:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 06:31 - 2014-05-30 04:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 06:31 - 2014-05-30 04:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 06:31 - 2014-05-30 04:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 06:31 - 2014-05-30 03:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 06:31 - 2014-05-30 03:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 06:31 - 2014-05-30 03:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 06:31 - 2014-05-30 03:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 06:31 - 2014-05-30 03:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 06:31 - 2014-05-30 03:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 06:31 - 2014-05-30 03:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 06:31 - 2014-05-30 03:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 06:31 - 2014-05-30 03:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 06:31 - 2014-05-30 03:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 06:31 - 2014-05-30 03:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 06:31 - 2014-05-30 03:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 06:31 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 06:31 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 06:31 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 06:31 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 06:31 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 06:31 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 06:31 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 06:31 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 06:31 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 06:31 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 06:31 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 06:31 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 06:28 - 2014-06-08 05:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-11 06:28 - 2014-06-08 05:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-30 18:49 - 2014-05-30 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-24 12:31 - 2014-05-24 12:31 - 00000000 ____D () C:\9040c29a1a8b7dea59
2014-05-24 11:45 - 2014-05-24 11:45 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-05-24 11:41 - 2014-05-24 11:42 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect (1).exe
2014-05-24 11:39 - 2014-05-24 11:39 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect.exe

==================== One Month Modified Files and Folders =======

2014-06-20 09:41 - 2014-06-20 09:40 - 00026568 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Addition.txt
2014-06-20 09:41 - 2014-06-20 09:39 - 00014443 _____ () C:\Users\Jodi Whitman-Surette\Desktop\FRST.txt
2014-06-20 09:41 - 2014-06-20 09:39 - 00000000 ____D () C:\FRST
2014-06-20 09:40 - 2009-07-14 01:13 - 00785906 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-20 09:35 - 2014-06-20 09:39 - 02082304 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST64.exe
2014-06-20 09:33 - 2014-04-09 09:11 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-20 09:32 - 2014-06-20 09:33 - 01072128 _____ (Farbar) C:\Users\Jodi Whitman-Surette\Desktop\FRST.exe
2014-06-20 09:32 - 2014-04-09 09:11 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-20 09:32 - 2011-10-15 23:07 - 01883458 _____ () C:\Windows\WindowsUpdate.log
2014-06-19 19:57 - 2014-06-19 19:57 - 00092660 _____ () C:\Users\Jodi Whitman-Surette\Desktop\OTL.Txt
2014-06-19 19:50 - 2014-04-10 08:47 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff
2014-06-19 19:47 - 2009-07-14 00:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-19 19:47 - 2009-07-14 00:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-19 19:40 - 2014-06-19 19:40 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-19 19:40 - 2014-06-19 19:40 - 00000000 ___RD () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-19 19:40 - 2011-10-15 21:46 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-06-19 19:40 - 2011-10-15 21:46 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-06-19 19:40 - 2011-10-15 21:38 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-06-19 19:39 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-19 19:39 - 2009-07-14 00:51 - 00043657 _____ () C:\Windows\setupact.log
2014-06-19 18:53 - 2014-06-19 18:53 - 00000648 _____ () C:\Users\Jodi Whitman-Surette\Desktop\JRT.txt
2014-06-19 18:37 - 2010-11-20 23:47 - 00206540 _____ () C:\Windows\PFRO.log
2014-06-19 18:36 - 2014-04-09 15:39 - 00000000 ____D () C:\AdwCleaner
2014-06-19 18:35 - 2014-06-19 18:35 - 00001498 _____ () C:\Users\Jodi Whitman-Surette\Desktop\AdwCleaner[R6].txt
2014-06-19 18:20 - 2014-06-19 18:18 - 00039207 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Result.txt
2014-06-19 18:06 - 2012-03-21 12:42 - 00000422 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2014-06-19 12:36 - 2014-04-09 16:23 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Local\Windows Live
2014-06-19 12:36 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-19 12:35 - 2014-04-09 18:05 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-19 12:34 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-06-18 09:32 - 2014-06-18 09:32 - 00000000 ____D () C:\Windows\ERUNT
2014-06-18 08:35 - 2014-04-09 15:54 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-18 07:51 - 2014-04-09 17:41 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\Outlook Files
2014-06-17 22:32 - 2014-06-17 22:32 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File (1).exe
2014-06-17 22:30 - 2014-06-17 22:29 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File.exe
2014-06-17 22:24 - 2014-06-11 17:43 - 00000000 ____D () C:\ProgramData\AllMyBooks
2014-06-17 21:18 - 2009-07-14 00:45 - 00417416 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-17 20:22 - 2014-06-17 19:50 - 00007283 _____ () C:\Windows\wininit.ini
2014-06-17 18:55 - 2014-04-08 17:50 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.old
2014-06-17 18:39 - 2014-06-17 18:39 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\blood_splatter_3_sticker-217015505627604768
2014-06-17 17:58 - 2014-06-17 17:58 - 00000154 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dref=http%3A%2F%2Fwww.ebay.com%2Fsch%2FFiction-Literature-%2F377%2Fi.html%3F_nkw%26_from%3DR40%26_dcat%3D377%26rt%3Dnc%26_pppn%3Dr1%26Subject%3DDrama%257CHistorical%257CRomance
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books (1)
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books
2014-06-17 17:49 - 2014-06-17 17:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i (1).html
2014-06-17 15:27 - 2014-06-17 15:27 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis (1).aspx
2014-06-17 14:00 - 2014-06-17 14:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis.aspx
2014-06-17 13:01 - 2014-06-17 13:01 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261496259486
2014-06-17 13:00 - 2014-06-17 13:00 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\321435467741
2014-06-17 12:51 - 2014-06-17 12:51 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\141316253327
2014-06-17 12:49 - 2014-06-17 12:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\131216040312
2014-06-17 12:00 - 2014-06-17 12:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\231229948864
2014-06-17 11:57 - 2014-06-17 11:57 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\310945186531
2014-06-17 11:57 - 2014-06-17 11:57 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\171341504252
2014-06-17 11:53 - 2014-06-17 11:53 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\350565360352
2014-06-17 11:52 - 2014-06-17 11:52 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261481850564
2014-06-17 11:51 - 2014-06-17 11:51 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\50
2014-06-17 11:47 - 2014-06-17 11:47 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i.html
2014-06-17 11:43 - 2014-06-17 11:43 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\sis.html
2014-06-17 11:19 - 2014-06-17 11:18 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater (1).exe
2014-06-17 11:17 - 2014-06-17 11:17 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\OpenSoftwareUpdater
2014-06-17 11:12 - 2014-06-17 11:11 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater.exe
2014-06-14 14:28 - 2014-06-14 14:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-06-14 14:28 - 2014-06-14 14:27 - 16002688 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones_v1.5.42.0.exe
2014-06-14 14:17 - 2014-06-14 14:17 - 24178176 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\Samsung_USB_Driver_for_Mobile_Phones_v1.5.14.0.exe
2014-06-14 07:47 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-06-14 07:47 - 2009-07-13 22:34 - 00000639 _____ () C:\Windows\win.ini
2014-06-14 03:09 - 2014-04-09 22:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-14 03:06 - 2012-03-28 11:20 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-14 03:05 - 2014-04-09 16:46 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-14 03:03 - 2014-05-07 03:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-13 03:11 - 2014-04-09 09:13 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Obsidium
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\ProgramData\pastaleads
2014-06-11 15:46 - 2014-06-11 15:46 - 00145408 _____ () C:\Users\Jodi Whitman-Surette\Documents\Brockmann2014.pub
2014-06-10 13:44 - 2014-04-15 12:49 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\JAWS Files
2014-06-09 09:44 - 2014-04-08 17:44 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\Bluetooth Folder
2014-06-08 05:13 - 2014-06-11 06:28 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 05:08 - 2014-06-11 06:28 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-06 11:46 - 2012-03-21 12:42 - 00000564 _____ () C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2014-05-30 18:49 - 2014-05-30 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-30 06:21 - 2014-06-11 06:31 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 06:02 - 2014-06-11 06:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 06:02 - 2014-06-11 06:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 05:45 - 2014-06-11 06:31 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 05:39 - 2014-06-11 06:31 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 05:39 - 2014-06-11 06:31 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 05:38 - 2014-06-11 06:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 05:28 - 2014-06-11 06:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 05:27 - 2014-06-11 06:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 05:24 - 2014-06-11 06:31 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 05:21 - 2014-06-11 06:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 05:21 - 2014-06-11 06:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 05:20 - 2014-06-11 06:31 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 05:18 - 2014-06-11 06:31 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 05:11 - 2014-06-11 06:31 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 05:08 - 2014-06-11 06:31 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 05:06 - 2014-06-11 06:31 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 05:02 - 2014-06-11 06:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 04:55 - 2014-06-11 06:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 04:49 - 2014-06-11 06:31 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 04:46 - 2014-06-11 06:31 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 04:44 - 2014-06-11 06:31 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 04:44 - 2014-06-11 06:31 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 04:43 - 2014-06-11 06:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 04:42 - 2014-06-11 06:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 04:38 - 2014-06-11 06:31 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 04:35 - 2014-06-11 06:31 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 04:34 - 2014-06-11 06:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 04:33 - 2014-06-11 06:31 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 04:30 - 2014-06-11 06:31 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 04:29 - 2014-06-11 06:31 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 04:28 - 2014-06-11 06:31 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 04:27 - 2014-06-11 06:31 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 04:24 - 2014-06-11 06:31 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 04:23 - 2014-06-11 06:31 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 04:16 - 2014-06-11 06:31 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 04:10 - 2014-06-11 06:31 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 04:06 - 2014-06-11 06:31 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 04:04 - 2014-06-11 06:31 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 04:02 - 2014-06-11 06:31 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 03:56 - 2014-06-11 06:31 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 03:56 - 2014-06-11 06:31 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 03:54 - 2014-06-11 06:31 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 03:50 - 2014-06-11 06:31 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 03:49 - 2014-06-11 06:31 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 03:43 - 2014-06-11 06:31 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 03:40 - 2014-06-11 06:31 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 03:30 - 2014-06-11 06:31 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 03:21 - 2014-06-11 06:31 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 03:15 - 2014-06-11 06:31 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 03:13 - 2014-06-11 06:31 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 03:13 - 2014-06-11 06:31 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-24 12:31 - 2014-05-24 12:31 - 00000000 ____D () C:\9040c29a1a8b7dea59
2014-05-24 12:31 - 2011-10-15 22:03 - 00002026 _____ () C:\Windows\epplauncher.mif
2014-05-24 11:53 - 2014-04-09 09:09 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Local\Deployment
2014-05-24 11:45 - 2014-05-24 11:45 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-05-24 11:42 - 2014-05-24 11:41 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect (1).exe
2014-05-24 11:39 - 2014-05-24 11:39 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect.exe

Some content of TEMP:
====================
C:\Users\Jodi Whitman-Surette\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 10:02

==================== End Of Log ============================

 

 

:welcome:

 

Please download Farbar Recovery Scan Tool and save it to your desktop, or wife's pendrive.
 
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt and Shortcut.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • It will also produce another two logs (Addition.txt and Shortcut.txt). Please attach these to your reply.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-06-2014
Ran by Jodi Whitman-Surette at 2014-06-20 09:41:53
Running from C:\Users\Jodi Whitman-Surette\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG Internet Security 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials (Enabled - Up to date) {108DAC43-C256-20B7-BB05-914135DA5160}
AS: Microsoft Security Essentials (Enabled - Up to date) {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2014 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2014 (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.3.183.5 - Adobe Systems Incorporated)
Adobe Reader X (10.1.10) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4592 - AVG Technologies)
AVG 2014 (Version: 14.0.3955 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4592 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 3.0.0.2 - AVG Technologies)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
Blio (HKLM-x32\...\{400182B4-CA55-46A9-9D88-F8413DCFB36D}) (Version: 2.3.7140 - K-NFB Reading Technology, Inc.)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.83 - Atheros Communications)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version:  - Microsoft)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell Inc.)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell Inc.)
Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell)
Dell Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Home Systems Service Agreement (HKLM-x32\...\{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}) (Version: 2.0.0 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)
Dell Stage (HKLM-x32\...\{E2EBA7C0-8072-447F-856D-FFEE8D15B23B}) (Version: 1.5.201.0 - Fingertapps)
Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5803.11 - Dell Inc.)
Dell Support Center (Version: 3.1.5803.11 - PC-Doctor, Inc.) Hidden
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.7.0.6 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.204 - ALPS ELECTRIC CO., LTD.)
Dell VideoStage  (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)
Dell VideoStage  (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Dell Inc.)
EPSON WF-3540 Series Printer Uninstall (HKLM\...\EPSON WF-3540 Series) (Version:  - SEIKO EPSON Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2455 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Antimalware Service Multi-Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Client MUI Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 2.1.1116.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.15 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6353 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Skype Toolbars (HKLM-x32\...\{981029E0-7FC9-4CF3-AB39-6F133621921A}) (Version: 1.0.4051 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{C09D747A-BD47-42A9-915E-CEB6B1BB7C11}) (Version: 4.2.7 - SEIKO EPSON CORPORATION)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile Device Updater Component (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Wise Registry Cleaner 8.03 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.03 - WiseCleaner.com, Inc.)
Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden
Zune (HKLM\...\Zune) (Version: 04.07.1404.01 - Microsoft Corporation)
Zune (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (DEU) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (ESP) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (FRA) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (ITA) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (NLD) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (PTB) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (PTG) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

28-05-2014 03:20:20 Windows Update
31-05-2014 14:53:35 Windows Update
04-06-2014 18:19:39 Windows Update
07-06-2014 22:00:50 Windows Update
11-06-2014 17:56:39 Windows Update
14-06-2014 07:01:20 Windows Update
17-06-2014 14:58:04 Windows Update
18-06-2014 02:28:16 Removed SavetheChildren App by We-Care.com v4.1.30.4
18-06-2014 11:49:30 Windows Update

==================== Hosts content: ==========================

2009-07-13 22:34 - 2014-06-17 22:48 - 00450712 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    10sek.com
127.0.0.1    www.10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    123fporn.info
127.0.0.1    www.123fporn.info
127.0.0.1    123haustiereundmehr.com
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {34B2D0A7-B9D2-4643-B4B9-FA226E69DB58} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-09] (Google Inc.)
Task: {4F310976-3C15-4952-B036-7EF7A5FDCD35} - System32\Tasks\Microsoft\Microsoft Antimalware\MP Scheduled Scan => c:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27] (Microsoft Corporation)
Task: {6597A987-D007-4E77-BF2D-940A65FD94A3} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell Support Center\uaclauncher.exe [2011-03-22] (PC-Doctor, Inc.)
Task: {69006110-655C-48E7-B7A9-9E8C52E696BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-09] (Google Inc.)
Task: {B7CA7674-CEC2-452F-AB25-919463E2E352} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\Dell Support Center\pcdrcui.exe [2011-03-22] (PC-Doctor, Inc.)
Task: {C05B5C26-B40C-412A-AF6E-5566684D2145} - System32\Tasks\PCDEventLauncher => C:\Program Files\Dell Support Center\sessionchecker.exe [2011-03-22] (PC-Doctor, Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\Dell Support Center\uaclauncher.exe
Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\Dell Support Center\pcdrcui.exe

==================== Loaded Modules (whitelisted) =============

2011-10-15 22:44 - 2011-07-20 09:04 - 00094208 _____ () C:\WINDOWS\System32\IccLibDll_x64.dll
2011-10-15 21:38 - 2011-08-18 11:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
2011-04-29 19:18 - 2011-04-29 19:18 - 00885760 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
2011-04-29 19:13 - 2011-04-29 19:13 - 07938048 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
2011-04-29 19:13 - 2011-04-29 19:13 - 02225664 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
2014-01-13 23:03 - 2014-01-13 23:03 - 00110088 _____ () C:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/19/2014 07:39:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/19/2014 07:41:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/19/2014 07:40:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/19/2014 07:40:27 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/19/2014 07:39:53 PM) (Source: Microsoft Antimalware) (EventID: 3002) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

    Feature: %%835

    Error Code: 0x80004005

    Error description: Unspecified error

    Reason: %%842

Error: (06/19/2014 07:39:50 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The AVGIDSAgent service terminated with service-specific error %%-536753636.

Error: (06/19/2014 07:39:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The vToolbarUpdater3.0.0 service failed to start due to the following error:
%%2

Error: (06/19/2014 06:56:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (06/19/2014 07:39:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Percentage of memory in use: 21%
Total physical RAM: 8086.17 MB
Available physical RAM: 6358.97 MB
Total Pagefile: 16170.52 MB
Available Pagefile: 14026.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:679 GB) (Free:622.67 GB) NTFS
Drive e: (USB20FD) (Removable) (Total:7.53 GB) (Free:6.51 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=101 MB) - (Type=DE)
Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=679 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 8 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=8 GB) - (Type=0C)

==================== End Of Log ============================

 

Users shortcut scan result (x64) Version: 18-06-2014
Ran by Jodi Whitman-Surette at 2014-06-20 09:42:15
Running from C:\Users\Jodi Whitman-Surette\Desktop
Boot Mode: Normal
==================== Shortcuts =============================

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk -> C:\WINDOWS\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk -> C:\Program Files (x86)\Belarc\BelarcAdvisor\BelarcAdvisor.exe (Belarc, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk -> C:\WINDOWS\ehome\ehshell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk -> C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\WINDOWS\System32\WindowsAnytimeUpgradeui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk -> C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk -> C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zune\Zune.lnk -> C:\Program Files\Zune\Zune.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner\Wise Registry Cleaner.lnk -> C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe (WiseCleaner.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Mail.lnk -> C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Mesh.lnk -> C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Messenger.lnk -> C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Writer.lnk -> C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe (Microsoft Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PastaQuotes.lnk -> C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\File Shredder.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SDShred.exe (Safer Networking Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Spybot - Search & Destroy.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe (Safer Networking Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Tutorial.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\Help\English.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Uninstall Spybot-S&D.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Update Spybot-S&D.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SDUpdate.exe (Safer Networking Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Access 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\accicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Excel 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft OneNote 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft PowerPoint 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Publisher 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pubs.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Word 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Digital Certificate for VBA Projects.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Clip Organizer.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\cagicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office 2010 Language Preferences.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office 2010 Upload Center.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\msouc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office Picture Manager.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\oisicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Office Anytime Upgrade.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Office Setup Controller\promo.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Uninstall Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\WINDOWS\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\WINDOWS\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Digital Delivery.lnk -> C:\Program Files (x86)\Dell Digital Delivery\DeliveryTray.exe (Dell Products, LP)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Help Documentation.lnk -> C:\Program Files\Dell Inc\Dell Edoc Viewer\EDocs.exe (Dell Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Service Agreements\DHS.pdf.lnk -> C:\WINDOWS\Installer\{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}\IconAB2FDE4F.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Webcam\Dell Webcam Central.lnk -> C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Stage\MusicStage.lnk -> C:\Program Files (x86)\Dell Stage\MusicStage\musicstage.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Stage\PhotoStage.lnk -> C:\Program Files (x86)\Dell\PhotoStage\PhotoStage.exe (ArcSoft, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Stage\VideoStage.lnk -> C:\Program Files (x86)\Dell\VideoStage\VideoStage.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Stage\Weather.lnk -> C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell DataSafe\Dell DataSafe Local Backup.lnk -> C:\Program Files (x86)\Dell DataSafe Local Backup\DsLauncher.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk -> C:\Program Files (x86)\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\WINDOWS\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\WINDOWS\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\WINDOWS\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\WINDOWS\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\WINDOWS\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\WINDOWS\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\WINDOWS\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Adobe Reader X.lnk -> C:\WINDOWS\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Bluetooth File Transfer Wizard.lnk -> C:\WINDOWS\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\WINDOWS\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\WINDOWS\System32\DisplaySwitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Microsoft Default Manager.lnk -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\WINDOWS\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\WINDOWS\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\WINDOWS\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\WINDOWS\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\WINDOWS\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\WINDOWS\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows DVD Maker.lnk -> C:\Program Files\DVD Maker\DVDMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\WINDOWS\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\WINDOWS\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Zinio Reader 4.lnk -> C:\Program Files (x86)\Zinio Reader 4\Zinio Reader 4.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\WINDOWS\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\WINDOWS\SysWOW64\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\WINDOWS\System32\WindowsPowerShell\v1.0\powershell_ise.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\WINDOWS\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\WINDOWS\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\WINDOWS\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\WINDOWS\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\WINDOWS\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\WINDOWS\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\WINDOWS\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\WINDOWS\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Skype\Skype.lnk -> C:\Windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\Silverlight.Configuration.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Intel\Intel Control Center.lnk -> C:\Program Files (x86)\Intel\Intel Control Center\IntelControlCenter.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Intel\Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\BT Program\Bluetooth Devices.lnk -> C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
Shortcut: C:\ProgramData\Intel\ExtremeGraphics\CUI\Resource\Intel® HD Graphics.lnk -> C:\WINDOWS\System32\GfxUI.exe (Intel Corporation)
Shortcut: C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)
Shortcut: C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Zinio Reader 4.lnk -> C:\Program Files (x86)\Zinio Reader 4\Zinio Reader 4.exe ()
Shortcut: C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Zune.lnk -> C:\Program Files\Zune\Zune.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\WINDOWS\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\WINDOWS\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\WINDOWS\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\WINDOWS\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\WINDOWS\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\Links\Desktop.lnk -> C:\Users\Jodi Whitman-Surette\Desktop ()
Shortcut: C:\Users\Jodi Whitman-Surette\Links\Downloads.lnk -> C:\Users\Jodi Whitman-Surette\Downloads ()
Shortcut: C:\Users\Jodi Whitman-Surette\Desktop\Microsoft Outlook 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\outicon.exe ()
Shortcut: C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff\AVG 2014.lnk -> C:\Program Files (x86)\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
Shortcut: C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff\Belarc Advisor.lnk -> C:\Program Files (x86)\Belarc\BelarcAdvisor\BelarcAdvisor.exe (Belarc, Inc.)
Shortcut: C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff\Spybot - Search & Destroy.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe (Safer Networking Limited)
Shortcut: C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff\Wise Registry Cleaner.lnk -> C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe (WiseCleaner.com)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\WINDOWS\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\WINDOWS\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\WINDOWS\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\WINDOWS\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\WINDOWS\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Belarc Advisor.lnk -> C:\Program Files (x86)\Belarc\BelarcAdvisor\BelarcAdvisor.exe (Belarc, Inc.)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe (Safer Networking Limited)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Calculator.lnk -> C:\WINDOWS\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Publisher 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pubs.exe ()
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Word 2010.lnk -> C:\WINDOWS\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Snipping Tool.lnk -> C:\WINDOWS\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\WINDOWS\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Mail.lnk -> C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Reader X.lnk -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\AVG 2014.lnk -> C:\Program Files (x86)\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Blio.lnk -> C:\Program Files (x86)\K-NFB Reading Technology Inc\Blio\KNFB.Reader.exe (K-NFB Reading Technology) -> -sf
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\WINDOWS\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\WINDOWS\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Restore Center.lnk -> C:\WINDOWS\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\WINDOWS\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software\EPSON Software Updater.lnk -> C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNAVI.EXE (SEIKO EPSON CORPORATION) -> /ST
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON WF-3540 Series\Buy Ink.lnk -> C:\WINDOWS\System32\spool\drivers\x64\3\E_YARNJHE.EXE (SEIKO EPSON CORPORATION) -> /T "MENU" /D "EPSON WF-3540 Series" /M "WF-3540 Series" /A
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON WF-3540 Series\EPSON Printer Software Uninstall.lnk -> C:\WINDOWS\System32\spool\drivers\x64\3\E_YINSJHE.EXE (SEIKO EPSON CORPORATION) -> /R /APD /P:"EPSON WF-3540 Series"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON WF-3540 Series\Online Support.lnk -> C:\WINDOWS\System32\rundll32.exe (Microsoft Corporation) -> C:\Windows\system32\spool\DRIVERS\x64\3\E_YGEPJHE.DLL,GE_OpenELINK "WF-3540 Series"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON WF-3540 Series\Software Update.lnk -> C:\WINDOWS\System32\spool\drivers\x64\3\E_YUBJHE.EXE (SEIKO EPSON CORPORATION) -> /RUN /D "EPSON WF-3540 Series"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Support Center\Dell Support Center.lnk -> C:\Program Files\Dell Support Center\pcdlauncher.exe (PC-Doctor, Inc.) -> -lloc dsc
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Support Center\PC Checkup.lnk -> C:\Program Files\Dell Support Center\pcdlauncher.exe (PC-Doctor, Inc.) -> -startingpage pccheckup -lloc pccheckup
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell Stage\Dell Stage.lnk -> C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe () -> "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell\Dell DataSafe Online\Dell DataSafe Online.lnk -> C:\WINDOWS\Installer\{7EC66A95-AC2D-4127-940B-0445A526AB2F}\MainIcon.ico () -> OPEN
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\WINDOWS\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\WINDOWS\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\WINDOWS\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\WINDOWS\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\WINDOWS\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\WINDOWS\System32\mblctr.exe (Microsoft Corporation) -> /open
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\WINDOWS\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\WINDOWS\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\WINDOWS\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\K-NFB Reading Technology\Blio.lnk -> C:\Program Files (x86)\K-NFB Reading Technology Inc\Blio\KNFB.Reader.exe (K-NFB Reading Technology) -> -sf
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\WINDOWS\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\ProgramData\Dell\Dell Stage\DellStage.lnk -> C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe () -> --run
ShortcutWithArgument: C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Blio.lnk -> C:\Program Files (x86)\K-NFB Reading Technology Inc\Blio\KNFB.Reader.exe (K-NFB Reading Technology) -> -sf -lt:DESKTOP
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\WINDOWS\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\WINDOWS\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) ->  -extoff
ShortcutWithArgument: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\WINDOWS\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\WINDOWS\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE (Microsoft Corporation) -> /recycle


InternetURL: C:\Users\Default\Favorites\MSN\MSN Autos.url -> hxxp://home.autos.msn.com/default.aspx
InternetURL: C:\Users\Default\Favorites\MSN\MSN Entertainment.url -> hxxp://entertainment.msn.com/
InternetURL: C:\Users\Default\Favorites\MSN\MSN Local Edition.url -> hxxp://local.msn.com/
InternetURL: C:\Users\Default\Favorites\MSN\MSN Money.url -> hxxp://money.msn.com/
InternetURL: C:\Users\Default\Favorites\MSN\MSN Sports.url -> hxxp://msn.foxsports.com/
InternetURL: C:\Users\Default\Favorites\MSN\MSN.url -> hxxp://dell.msn.com/
InternetURL: C:\Users\Default\Favorites\MSN\MSNBC.url -> hxxp://www.msnbc.msn.com/
InternetURL: C:\Users\Default\Favorites\Microsoft\Bing.url -> hxxp://www.bing.com/
InternetURL: C:\Users\Default\Favorites\Microsoft\Internet Explorer.url -> hxxp://www.microsoft.com/windows/internet-explorer/default.aspx
InternetURL: C:\Users\Default\Favorites\Microsoft\Microsoft At Home.url -> hxxp://www.microsoft.com/athome/default.aspx
InternetURL: C:\Users\Default\Favorites\Microsoft\Microsoft At Work.url -> hxxp://www.microsoft.com/atwork/default.aspx
InternetURL: C:\Users\Default\Favorites\Microsoft\Microsoft Office.url -> hxxp://office.microsoft.com/en-us/
InternetURL: C:\Users\Default\Favorites\Microsoft\Microsoft Signature.url -> hxxp://signature.microsoft.com/
InternetURL: C:\Users\Default\Favorites\Microsoft\Microsoft.url -> hxxp://www.microsoft.com/en-us/default.aspx
InternetURL: C:\Users\Default\Favorites\Microsoft\Windows Live Sign-In.url -> hxxp://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1255590591&rver=6.0.5285.0&wp=MBI&wreply=hxxp:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1033&id=64855&mkt=en-us
InternetURL: C:\Users\Default\Favorites\Links\Web\Amazon.url -> hxxp://www.amazon.com/
InternetURL: C:\Users\Default\Favorites\Links\Web\Bing Maps.url -> hxxp://www.bing.com/maps/
InternetURL: C:\Users\Default\Favorites\Links\Web\Ebay.url -> hxxp://www.ebay.com/
InternetURL: C:\Users\Default\Favorites\Links\Web\Expedia.url -> hxxp://www.expedia.com/
InternetURL: C:\Users\Default\Favorites\Links\Web\Facebook.url -> hxxp://www.facebook.com/
InternetURL: C:\Users\Default\Favorites\Links\Web\Microsoft Store.url -> hxxp://www.microsoftstore.com/store/msstore/DisplayHomePage
InternetURL: C:\Users\Default\Favorites\Links\Web\Translator.url -> hxxp://www.microsofttranslator.com/
InternetURL: C:\Users\Default\Favorites\Links\Web\Twitter.url -> hxxp://twitter.com/
InternetURL: C:\Users\Default\Favorites\Links\Web\Wikipedia.url -> hxxp://www.wikipedia.org/
InternetURL: C:\Users\Default\Favorites\Links\Web\Windows Live SkyDrive.url -> hxxp://explore.live.com/windows-live-skydrive
InternetURL: C:\Users\Default\Favorites\Links\Web\WorldWide Telescope.url -> hxxp://www.worldwidetelescope.org/Home.aspx
InternetURL: C:\Users\Default\Favorites\Links\News\CNET.url -> hxxp://www.cnet.com/
InternetURL: C:\Users\Default\Favorites\Links\News\CNN.url -> hxxp://www.cnn.com/
InternetURL: C:\Users\Default\Favorites\Links\News\ESPN.url -> hxxp://espn.go.com/
InternetURL: C:\Users\Default\Favorites\Links\News\Fox News.url -> hxxp://www.foxnews.com/
InternetURL: C:\Users\Default\Favorites\Links\News\Los Angeles Times.url -> hxxp://www.latimes.com/
InternetURL: C:\Users\Default\Favorites\Links\News\MSNBC.url -> hxxp://www.msnbc.msn.com/
InternetURL: C:\Users\Default\Favorites\Links\News\New York Times.url -> hxxp://www.nytimes.com/
InternetURL: C:\Users\Default\Favorites\Links\News\NPR.url -> hxxp://www.npr.org/
InternetURL: C:\Users\Default\Favorites\Links\News\USA Today.url -> hxxp://www.usatoday.com/
InternetURL: C:\Users\Default\Favorites\Links\News\Wall Street Journal.url -> hxxp://online.wsj.com/home-page
InternetURL: C:\Users\Default\Favorites\Links\News\Weather.url -> hxxp://www.weather.com/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Disney.url -> hxxp://disney.go.com/index
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Games.url -> hxxp://www.bing.com/games?q=bing+games&form=DTPWGX
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Hulu.url -> hxxp://www.hulu.com/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Netflix.url -> https://www.netflix.com/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Pandora.url -> hxxp://www.pandora.com/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Wonderwall.url -> hxxp://wonderwall.msn.com/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Xbox LIVE.url -> hxxp://www.xbox.com/en-US/live/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\YouTube.url -> hxxp://www.youtube.com/
InternetURL: C:\Users\Default\Favorites\Links\Entertainment\Zune Pass.url -> hxxp://www.zune.net/en-us/products/zunepass/default.htm
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSN Autos.url -> hxxp://home.autos.msn.com/default.aspx
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSN Entertainment.url -> hxxp://entertainment.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSN Local Edition.url -> hxxp://local.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSN Money.url -> hxxp://money.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSN Sports.url -> hxxp://msn.foxsports.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSN.url -> hxxp://dell.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\MSN\MSNBC.url -> hxxp://www.msnbc.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Bing.url -> hxxp://www.bing.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Internet Explorer.url -> hxxp://www.microsoft.com/windows/internet-explorer/default.aspx
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Microsoft At Home.url -> hxxp://www.microsoft.com/athome/default.aspx
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Microsoft At Work.url -> hxxp://www.microsoft.com/atwork/default.aspx
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Microsoft Office.url -> hxxp://office.microsoft.com/en-us/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Microsoft Signature.url -> hxxp://signature.microsoft.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Microsoft.url -> hxxp://www.microsoft.com/en-us/default.aspx
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Microsoft\Windows Live Sign-In.url -> hxxp://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1255590591&rver=6.0.5285.0&wp=MBI&wreply=hxxp:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1033&id=64855&mkt=en-us
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links for United States\GobiernoUSA.gov.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129792
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links for United States\USA.gov.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129791
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Suggested Sites.url -> https://ieonline.mic...ft.com/#ieslice
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web Slice Gallery.url -> hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Amazon.url -> hxxp://www.amazon.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Bing Maps.url -> hxxp://www.bing.com/maps/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Ebay.url -> hxxp://www.ebay.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Expedia.url -> hxxp://www.expedia.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Facebook.url -> hxxp://www.facebook.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Microsoft Store.url -> hxxp://www.microsoftstore.com/store/msstore/DisplayHomePage
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Translator.url -> hxxp://www.microsofttranslator.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Twitter.url -> hxxp://twitter.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Wikipedia.url -> hxxp://www.wikipedia.org/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\Windows Live SkyDrive.url -> hxxp://explore.live.com/windows-live-skydrive
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Web\WorldWide Telescope.url -> hxxp://www.worldwidetelescope.org/Home.aspx
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\CNET.url -> hxxp://www.cnet.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\CNN.url -> hxxp://www.cnn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\ESPN.url -> hxxp://espn.go.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\Fox News.url -> hxxp://www.foxnews.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\Los Angeles Times.url -> hxxp://www.latimes.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\MSNBC.url -> hxxp://www.msnbc.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\New York Times.url -> hxxp://www.nytimes.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\NPR.url -> hxxp://www.npr.org/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\USA Today.url -> hxxp://www.usatoday.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\Wall Street Journal.url -> hxxp://online.wsj.com/home-page
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\News\Weather.url -> hxxp://www.weather.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Disney.url -> hxxp://disney.go.com/index
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Games.url -> hxxp://www.bing.com/games?q=bing+games&form=DTPWGX
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Hulu.url -> hxxp://www.hulu.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Netflix.url -> https://www.netflix.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Pandora.url -> hxxp://www.pandora.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Wonderwall.url -> hxxp://wonderwall.msn.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Xbox LIVE.url -> hxxp://www.xbox.com/en-US/live/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\YouTube.url -> hxxp://www.youtube.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Links\Entertainment\Zune Pass.url -> hxxp://www.zune.net/en-us/products/zunepass/default.htm
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Dell\Dell Auction.url -> hxxp://www.dellauction.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Dell\Dell Internet Security.url -> hxxp://support.dell.com/support/topics/global.aspx/support/security/security?c=us&cs=19&l=en&s=dhs
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Dell\Dell.url -> hxxp://www.dell.com/
InternetURL: C:\Users\Jodi Whitman-Surette\Favorites\Dell\Support.Dell.Com.url -> hxxp://support.dell.com/support/index.aspx?c=us&l=en&s=gen

==================== End of log =============================
 


  • 0

#6
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,962 posts

Hi, paulsabella :)
 
Please remove Spybot Search and Destroy. This program wont protect your computer.
 
Anti-Virus programs take up an enormous amount of your computer's resources when they are actively scanning your computer. Having two anti-virus programs running at the same time can cause your computer to run very slow, become unstable and even, in rare cases, crash.
 
If you choose to install more than one Anti-Virus program on your computer, then only one of them should be active in memory at a time.
 
There are basically two types of these programs:
On-Access and On-Demand
 
On-Access Scanners
As the name implies, are scanners that run in the background all the time the PC is turned on and running.  The main function of an On-Access scanner is to monitor activity on your machine.
 
On-Demand Scanners
As the name implies, are scanners that only run when you ask them to. Such as: Online Scans and scanners that run on your machine but are not actively scanning your machine.
 
You are using two antivirus. In your position I would remove both, and install Avast instead. It will better protect your system.
 

Create a new Chrome profile:
 
Exit Google Chrome completely.

  • Enter the keyboard shortcut Windows key  +E to open Windows Explorer.
  • In the Windows Explorer window that appears enter the following in the address bar.
  • Windows XP: %USERPROFILE%\Local Settings\Application Data\Google\Chrome\User Data\
  • Windows Vista/ Windows 7/ Windows 8: %LOCALAPPDATA%\Google\Chrome\User Data\
  • Locate the folder called "Default" in the directory window that opens and rename it as "Backup default."
  • Try opening Google Chrome again. A new "Default" folder is automatically created as you start using the browser.

If you wish, you can transfer information from your old user profile to your new one. However, this action is not recommended, since a part of your old profile may be corrupt. With that in mind, to transfer your old bookmarks, copy the "Bookmarks.bak" file from the "Backup default" folder to your new "Default" folder. Once moved, rename the file from "Bookmarks.bak" to "Bookmarks" to complete the migration. All other browser data will remain in the "Backup default" folder, but you won't be able to transfer it to your new profile.

 

Download the enclosed file. Attached File  fixlist.txt   709bytes   51 downloads

 

Save it in the same location FRST is saved. Launch FRST, but this time around click on the Fix button and wait. The tool will make a log in the same location FRST is saved (Fixlog.txt), Please post it to your reply. Let me know also how is it doing?


  • 0

#7
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

Just got in, thank you for the repsonse. I will work your recommendations tongiht and reply.


  • 0

#8
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,962 posts

:thumbsup:


  • 0

#9
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

no luck. renamed old defalt and re-opened. Same "cannot connect to proxy server" message regardless of the url typed. I have not seen Trovi around anymore but no web access.


  • 0

#10
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,962 posts

Please re-scan with FRST and post its report.

 

Open an Administrator Command Prompt. (Click on Start, type CMD and press CTRL+SHIFT+ENTER). At the Administrator Command prompt type (or copy and paste) the following lines and press Enter after each:

 

 
netsh int ip reset C:\Resetlog.txt
netsh winsock reset catalog
ipconfig /flushdns (The space between g and / is needed)
Exit
 
Restart the computer and attempt to connect.

  • 0

Advertisements


#11
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,962 posts

Second request:

  • Click the Chrome menu  on the browser toolbar. (Three horizontal lines on the right upper corner)
  • Select Settings.
  • Click Show advanced settings.
  • In the "Network" section, click Change proxy settings . This will open the Internet Properties dialog (Windows) or the Network dialog (Mac) where you can adjust your network settings
  • Click on LAN Settings
  • Remove the checkmark from Use a proxy server for your LAN
  • Click OK out of the properties windows and retry.

  • 0

#12
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

Rregarding changing the lan setting. I uncheck and when i re-open the box has rechecked itself.

 

The netsh command comes back with not recognised as batch file or other command

 

reboot , test and rerun frst in progress

Thanks


  • 0

#13
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

I removed ther 127.0.0.1 and i was able to keep the box unchecked, no change, same "unable to connect to proxy server"

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-06-2014
Ran by Jodi Whitman-Surette (administrator) on JODIWHITMAN-SUR on 21-06-2014 13:57:48
Running from C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Safer Networking Limited) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_YATIJHE.EXE
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_YATIJHE.EXE
(Dell) C:\Users\Jodi Whitman-Surette\AppData\Local\Apps\2.0\9DC12G6X.C59\ZM3J5NT1.NOL\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6629480 2011-04-14] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [627360 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379552 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [4500640 2011-03-10] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163568 2010-11-11] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1436736 2011-06-15] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)
HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [885760 2011-04-29] ()
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-09-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-09-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1536832421-404542224-2990852792-1000\...\Run: [DellSystemDetect] => C:\Users\Jodi Whitman-Surette\AppData\Local\Apps\2.0\9DC12G6X.C59\ZM3J5NT1.NOL\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe [254976 2014-05-24] (Dell)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PastaQuotes.lnk
ShortcutTarget: PastaQuotes.lnk -> C:\Program Files (x86)\pastaleads\PastaLeadsWinApp.exe (No File)

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {1110D5FE-F2DA-4FB3-A228-9FA7CFFE3EDF} URL =
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.0.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-20] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [80032 2011-05-20] (Atheros Commnucations) [File not signed]
S2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1473792 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [12784 2011-04-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [288272 2011-04-27] (Microsoft Corporation)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S2 vToolbarUpdater3.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.0.0\ToolbarUpdater.exe [X]

==================== Drivers (Whitelisted) ====================

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236312 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [191768 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [323352 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130328 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [273176 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-04-18] (AVG Technologies)
R1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [189440 2011-04-18] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [84864 2011-04-27] (Microsoft Corporation)
S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation)
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-21 13:51 - 2014-06-21 13:51 - 00000000 ___RD () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-21 09:00 - 2014-06-21 09:00 - 00000000 __SHD () C:\Users\Jodi Whitman-Surette\AppData\Local\EmieUserList
2014-06-21 09:00 - 2014-06-21 09:00 - 00000000 __SHD () C:\Users\Jodi Whitman-Surette\AppData\Local\EmieSiteList
2014-06-20 09:42 - 2014-06-20 09:42 - 00043872 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Shortcut.txt
2014-06-20 09:40 - 2014-06-20 09:42 - 00026568 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Addition.txt
2014-06-20 09:39 - 2014-06-21 13:57 - 00000000 ____D () C:\FRST
2014-06-20 09:39 - 2014-06-20 09:42 - 00044110 _____ () C:\Users\Jodi Whitman-Surette\Desktop\FRST.txt
2014-06-19 19:57 - 2014-06-19 19:57 - 00092660 _____ () C:\Users\Jodi Whitman-Surette\Desktop\OTL.Txt
2014-06-19 19:40 - 2014-06-19 19:40 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-19 18:53 - 2014-06-19 18:53 - 00000648 _____ () C:\Users\Jodi Whitman-Surette\Desktop\JRT.txt
2014-06-19 18:35 - 2014-06-19 18:35 - 00001498 _____ () C:\Users\Jodi Whitman-Surette\Desktop\AdwCleaner[R6].txt
2014-06-19 18:18 - 2014-06-19 18:20 - 00039207 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Result.txt
2014-06-18 09:32 - 2014-06-18 09:32 - 00000000 ____D () C:\Windows\ERUNT
2014-06-17 22:48 - 2009-06-10 17:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140617-224852.backup
2014-06-17 22:32 - 2014-06-17 22:32 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File (1).exe
2014-06-17 22:29 - 2014-06-17 22:30 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File.exe
2014-06-17 19:50 - 2014-06-17 20:22 - 00007283 _____ () C:\Windows\wininit.ini
2014-06-17 18:39 - 2014-06-17 18:39 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\blood_splatter_3_sticker-217015505627604768
2014-06-17 17:58 - 2014-06-17 17:58 - 00000154 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dref=http%3A%2F%2Fwww.ebay.com%2Fsch%2FFiction-Literature-%2F377%2Fi.html%3F_nkw%26_from%3DR40%26_dcat%3D377%26rt%3Dnc%26_pppn%3Dr1%26Subject%3DDrama%257CHistorical%257CRomance
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books (1)
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books
2014-06-17 17:49 - 2014-06-17 17:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i (1).html
2014-06-17 15:27 - 2014-06-17 15:27 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis (1).aspx
2014-06-17 14:00 - 2014-06-17 14:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis.aspx
2014-06-17 13:01 - 2014-06-17 13:01 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261496259486
2014-06-17 13:00 - 2014-06-17 13:00 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\321435467741
2014-06-17 12:51 - 2014-06-17 12:51 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\141316253327
2014-06-17 12:49 - 2014-06-17 12:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\131216040312
2014-06-17 12:00 - 2014-06-17 12:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\231229948864
2014-06-17 11:57 - 2014-06-17 11:57 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\310945186531
2014-06-17 11:57 - 2014-06-17 11:57 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\171341504252
2014-06-17 11:53 - 2014-06-17 11:53 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\350565360352
2014-06-17 11:52 - 2014-06-17 11:52 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261481850564
2014-06-17 11:51 - 2014-06-17 11:51 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\50
2014-06-17 11:47 - 2014-06-17 11:47 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i.html
2014-06-17 11:43 - 2014-06-17 11:43 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\sis.html
2014-06-17 11:18 - 2014-06-17 11:19 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater (1).exe
2014-06-17 11:17 - 2014-06-17 11:17 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\OpenSoftwareUpdater
2014-06-17 11:11 - 2014-06-17 11:12 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater.exe
2014-06-14 14:28 - 2014-06-14 14:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-06-14 14:27 - 2014-06-14 14:28 - 16002688 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones_v1.5.42.0.exe
2014-06-14 14:17 - 2014-06-14 14:17 - 24178176 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\Samsung_USB_Driver_for_Mobile_Phones_v1.5.14.0.exe
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Obsidium
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\ProgramData\pastaleads
2014-06-11 17:43 - 2014-06-17 22:24 - 00000000 ____D () C:\ProgramData\AllMyBooks
2014-06-11 15:46 - 2014-06-11 15:46 - 00145408 _____ () C:\Users\Jodi Whitman-Surette\Documents\Brockmann2014.pub
2014-06-11 06:31 - 2014-05-30 06:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 06:31 - 2014-05-30 06:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 06:31 - 2014-05-30 06:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 06:31 - 2014-05-30 05:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 06:31 - 2014-05-30 05:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 06:31 - 2014-05-30 05:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 06:31 - 2014-05-30 05:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 06:31 - 2014-05-30 05:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 06:31 - 2014-05-30 05:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 06:31 - 2014-05-30 05:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 06:31 - 2014-05-30 05:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 06:31 - 2014-05-30 05:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 06:31 - 2014-05-30 05:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 06:31 - 2014-05-30 05:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 06:31 - 2014-05-30 05:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 06:31 - 2014-05-30 05:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 06:31 - 2014-05-30 05:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 06:31 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 06:31 - 2014-05-30 04:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 06:31 - 2014-05-30 04:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 06:31 - 2014-05-30 04:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 06:31 - 2014-05-30 04:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 06:31 - 2014-05-30 04:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 06:31 - 2014-05-30 04:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 06:31 - 2014-05-30 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 06:31 - 2014-05-30 04:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 06:31 - 2014-05-30 04:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 06:31 - 2014-05-30 04:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 06:31 - 2014-05-30 04:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 06:31 - 2014-05-30 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 06:31 - 2014-05-30 04:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 06:31 - 2014-05-30 04:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 06:31 - 2014-05-30 04:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 06:31 - 2014-05-30 04:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 06:31 - 2014-05-30 04:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 06:31 - 2014-05-30 04:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 06:31 - 2014-05-30 04:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 06:31 - 2014-05-30 04:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 06:31 - 2014-05-30 04:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 06:31 - 2014-05-30 04:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 06:31 - 2014-05-30 03:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 06:31 - 2014-05-30 03:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 06:31 - 2014-05-30 03:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 06:31 - 2014-05-30 03:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 06:31 - 2014-05-30 03:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 06:31 - 2014-05-30 03:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 06:31 - 2014-05-30 03:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 06:31 - 2014-05-30 03:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 06:31 - 2014-05-30 03:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 06:31 - 2014-05-30 03:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 06:31 - 2014-05-30 03:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 06:31 - 2014-05-30 03:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 06:31 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 06:31 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 06:31 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 06:31 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 06:31 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 06:31 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 06:31 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 06:31 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 06:31 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 06:31 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 06:31 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 06:31 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 06:28 - 2014-06-08 05:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-11 06:28 - 2014-06-08 05:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-30 18:49 - 2014-05-30 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-24 12:31 - 2014-05-24 12:31 - 00000000 ____D () C:\9040c29a1a8b7dea59
2014-05-24 11:45 - 2014-05-24 11:45 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-05-24 11:41 - 2014-05-24 11:42 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect (1).exe
2014-05-24 11:39 - 2014-05-24 11:39 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect.exe

==================== One Month Modified Files and Folders =======

2014-06-21 13:57 - 2014-06-20 09:39 - 00000000 ____D () C:\FRST
2014-06-21 13:57 - 2014-04-10 08:47 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Desktop\anti virus stuff
2014-06-21 13:57 - 2009-07-14 00:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-21 13:57 - 2009-07-14 00:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-21 13:53 - 2011-10-15 23:07 - 01942285 _____ () C:\Windows\WindowsUpdate.log
2014-06-21 13:51 - 2014-06-21 13:51 - 00000000 ___RD () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-21 13:51 - 2014-04-09 09:11 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-21 13:51 - 2011-10-15 21:46 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-06-21 13:51 - 2011-10-15 21:46 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-06-21 13:51 - 2011-10-15 21:38 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-06-21 13:49 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-21 13:49 - 2009-07-14 00:51 - 00043713 _____ () C:\Windows\setupact.log
2014-06-21 13:47 - 2009-07-14 01:13 - 00785906 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-21 13:32 - 2014-04-09 09:11 - 00000926 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-21 09:00 - 2014-06-21 09:00 - 00000000 __SHD () C:\Users\Jodi Whitman-Surette\AppData\Local\EmieUserList
2014-06-21 09:00 - 2014-06-21 09:00 - 00000000 __SHD () C:\Users\Jodi Whitman-Surette\AppData\Local\EmieSiteList
2014-06-21 08:33 - 2014-04-09 18:05 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-21 08:01 - 2012-03-21 12:42 - 00000422 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2014-06-21 08:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-06-20 09:42 - 2014-06-20 09:42 - 00043872 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Shortcut.txt
2014-06-20 09:42 - 2014-06-20 09:40 - 00026568 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Addition.txt
2014-06-20 09:42 - 2014-06-20 09:39 - 00044110 _____ () C:\Users\Jodi Whitman-Surette\Desktop\FRST.txt
2014-06-19 19:57 - 2014-06-19 19:57 - 00092660 _____ () C:\Users\Jodi Whitman-Surette\Desktop\OTL.Txt
2014-06-19 19:40 - 2014-06-19 19:40 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-19 18:53 - 2014-06-19 18:53 - 00000648 _____ () C:\Users\Jodi Whitman-Surette\Desktop\JRT.txt
2014-06-19 18:37 - 2010-11-20 23:47 - 00206540 _____ () C:\Windows\PFRO.log
2014-06-19 18:36 - 2014-04-09 15:39 - 00000000 ____D () C:\AdwCleaner
2014-06-19 18:35 - 2014-06-19 18:35 - 00001498 _____ () C:\Users\Jodi Whitman-Surette\Desktop\AdwCleaner[R6].txt
2014-06-19 18:20 - 2014-06-19 18:18 - 00039207 _____ () C:\Users\Jodi Whitman-Surette\Desktop\Result.txt
2014-06-19 12:36 - 2014-04-09 16:23 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Local\Windows Live
2014-06-19 12:36 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-18 09:32 - 2014-06-18 09:32 - 00000000 ____D () C:\Windows\ERUNT
2014-06-18 08:35 - 2014-04-09 15:54 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-18 07:51 - 2014-04-09 17:41 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\Outlook Files
2014-06-17 22:32 - 2014-06-17 22:32 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File (1).exe
2014-06-17 22:30 - 2014-06-17 22:29 - 02983936 _____ () C:\Users\Jodi Whitman-Surette\Downloads\Gorilla_Uninstaller_Download_File.exe
2014-06-17 22:24 - 2014-06-11 17:43 - 00000000 ____D () C:\ProgramData\AllMyBooks
2014-06-17 21:18 - 2009-07-14 00:45 - 00417416 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-17 20:22 - 2014-06-17 19:50 - 00007283 _____ () C:\Windows\wininit.ini
2014-06-17 18:55 - 2014-04-08 17:50 - 00109712 _____ () C:\Users\Jodi Whitman-Surette\AppData\Local\GDIPFONTCACHEV1.old
2014-06-17 18:39 - 2014-06-17 18:39 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\blood_splatter_3_sticker-217015505627604768
2014-06-17 17:58 - 2014-06-17 17:58 - 00000154 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dref=http%3A%2F%2Fwww.ebay.com%2Fsch%2FFiction-Literature-%2F377%2Fi.html%3F_nkw%26_from%3DR40%26_dcat%3D377%26rt%3Dnc%26_pppn%3Dr1%26Subject%3DDrama%257CHistorical%257CRomance
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books (1)
2014-06-17 17:50 - 2014-06-17 17:50 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\books
2014-06-17 17:49 - 2014-06-17 17:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i (1).html
2014-06-17 15:27 - 2014-06-17 15:27 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis (1).aspx
2014-06-17 14:00 - 2014-06-17 14:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\dis.aspx
2014-06-17 13:01 - 2014-06-17 13:01 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261496259486
2014-06-17 13:00 - 2014-06-17 13:00 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\321435467741
2014-06-17 12:51 - 2014-06-17 12:51 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\141316253327
2014-06-17 12:49 - 2014-06-17 12:49 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\131216040312
2014-06-17 12:00 - 2014-06-17 12:00 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\231229948864
2014-06-17 11:57 - 2014-06-17 11:57 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\310945186531
2014-06-17 11:57 - 2014-06-17 11:57 - 00000148 _____ () C:\Users\Jodi Whitman-Surette\Downloads\171341504252
2014-06-17 11:53 - 2014-06-17 11:53 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\350565360352
2014-06-17 11:52 - 2014-06-17 11:52 - 00000155 _____ () C:\Users\Jodi Whitman-Surette\Downloads\261481850564
2014-06-17 11:51 - 2014-06-17 11:51 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\50
2014-06-17 11:47 - 2014-06-17 11:47 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\i.html
2014-06-17 11:43 - 2014-06-17 11:43 - 00000157 _____ () C:\Users\Jodi Whitman-Surette\Downloads\sis.html
2014-06-17 11:19 - 2014-06-17 11:18 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater (1).exe
2014-06-17 11:17 - 2014-06-17 11:17 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\OpenSoftwareUpdater
2014-06-17 11:12 - 2014-06-17 11:11 - 00341232 _____ (Installer Technology Co) C:\Users\Jodi Whitman-Surette\Downloads\SoftwareUpdater.exe
2014-06-14 14:28 - 2014-06-14 14:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-06-14 14:28 - 2014-06-14 14:27 - 16002688 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones_v1.5.42.0.exe
2014-06-14 14:17 - 2014-06-14 14:17 - 24178176 _____ (SAMSUNG Electronics Co., Ltd.) C:\Users\Jodi Whitman-Surette\Downloads\Samsung_USB_Driver_for_Mobile_Phones_v1.5.14.0.exe
2014-06-14 07:47 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-06-14 07:47 - 2009-07-13 22:34 - 00000639 _____ () C:\Windows\win.ini
2014-06-14 03:09 - 2014-04-09 22:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-14 03:06 - 2012-03-28 11:20 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-14 03:05 - 2014-04-09 16:46 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-14 03:03 - 2014-05-07 03:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-13 03:11 - 2014-04-09 09:13 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Obsidium
2014-06-11 18:00 - 2014-06-11 18:00 - 00000000 ____D () C:\ProgramData\pastaleads
2014-06-11 15:46 - 2014-06-11 15:46 - 00145408 _____ () C:\Users\Jodi Whitman-Surette\Documents\Brockmann2014.pub
2014-06-10 13:44 - 2014-04-15 12:49 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\JAWS Files
2014-06-09 09:44 - 2014-04-08 17:44 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\Documents\Bluetooth Folder
2014-06-08 05:13 - 2014-06-11 06:28 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 05:08 - 2014-06-11 06:28 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-06 11:46 - 2012-03-21 12:42 - 00000564 _____ () C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2014-05-30 18:49 - 2014-05-30 18:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-30 06:21 - 2014-06-11 06:31 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 06:02 - 2014-06-11 06:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 06:02 - 2014-06-11 06:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 05:45 - 2014-06-11 06:31 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 05:39 - 2014-06-11 06:31 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 05:39 - 2014-06-11 06:31 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 05:38 - 2014-06-11 06:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 05:28 - 2014-06-11 06:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 05:27 - 2014-06-11 06:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 05:24 - 2014-06-11 06:31 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 05:21 - 2014-06-11 06:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 05:21 - 2014-06-11 06:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 05:20 - 2014-06-11 06:31 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 05:18 - 2014-06-11 06:31 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 05:11 - 2014-06-11 06:31 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 05:08 - 2014-06-11 06:31 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 05:06 - 2014-06-11 06:31 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 05:02 - 2014-06-11 06:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 04:55 - 2014-06-11 06:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 04:49 - 2014-06-11 06:31 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 04:46 - 2014-06-11 06:31 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 04:44 - 2014-06-11 06:31 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 04:44 - 2014-06-11 06:31 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 04:43 - 2014-06-11 06:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 04:42 - 2014-06-11 06:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 04:38 - 2014-06-11 06:31 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 04:35 - 2014-06-11 06:31 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 04:34 - 2014-06-11 06:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 04:33 - 2014-06-11 06:31 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 04:30 - 2014-06-11 06:31 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 04:29 - 2014-06-11 06:31 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 04:28 - 2014-06-11 06:31 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 04:27 - 2014-06-11 06:31 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 04:24 - 2014-06-11 06:31 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 04:23 - 2014-06-11 06:31 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 04:16 - 2014-06-11 06:31 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 04:10 - 2014-06-11 06:31 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 04:06 - 2014-06-11 06:31 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 04:04 - 2014-06-11 06:31 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 04:02 - 2014-06-11 06:31 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 03:56 - 2014-06-11 06:31 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 03:56 - 2014-06-11 06:31 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 03:54 - 2014-06-11 06:31 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 03:50 - 2014-06-11 06:31 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 03:49 - 2014-06-11 06:31 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 03:43 - 2014-06-11 06:31 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 03:40 - 2014-06-11 06:31 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 03:30 - 2014-06-11 06:31 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 03:21 - 2014-06-11 06:31 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 03:15 - 2014-06-11 06:31 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 03:13 - 2014-06-11 06:31 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 03:13 - 2014-06-11 06:31 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-24 12:31 - 2014-05-24 12:31 - 00000000 ____D () C:\9040c29a1a8b7dea59
2014-05-24 12:31 - 2011-10-15 22:03 - 00002026 _____ () C:\Windows\epplauncher.mif
2014-05-24 11:53 - 2014-04-09 09:09 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Local\Deployment
2014-05-24 11:45 - 2014-05-24 11:45 - 00000000 ____D () C:\Users\Jodi Whitman-Surette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-05-24 11:42 - 2014-05-24 11:41 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect (1).exe
2014-05-24 11:39 - 2014-05-24 11:39 - 00417872 _____ () C:\Users\Jodi Whitman-Surette\Downloads\DellSystemDetect.exe

Some content of TEMP:
====================
C:\Users\Jodi Whitman-Surette\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 10:02

==================== End Of Log ============================


  • 0

#14
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 10,962 posts

You must remove Spybot Search and Destroy. It wont allow us to make changes to the Registry.

 

Once done repeat the requests on Post 10 and 11, and  re-scan with FRST.  Post the new report.


  • 0

#15
paulsabella

paulsabella

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

RESOLVED AND THANK YOU.

A couple of future notes which explains why things took so long.

1 For whatever reason the pc did not have netsh on it so i copied from another pc. All the netsh commands did not work until then.

2 Never able to clear lan as it always came back. Did a bit of research and i had to clear lan in safe mode. Then it works.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP