Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Maine Turnpike Authority Phishing Scam Virus [Closed]


  • This topic is locked This topic is locked

#61
plante

plante

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-08-2014
Ran by Isaiah (administrator) on DELLSTUDIO17 on 24-08-2014 17:36:10
Running from C:\Users\Isaiah\Desktop
Platform: Windows 7 Home Premium (X64) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgchsva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgrsa.exe
(Trusteer Ltd.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\stacsv64.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Carbonite, Inc. (www.carbonite.com)) C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Trusteer Ltd.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgam.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgnsa.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Akamai Technologies, Inc.) C:\Users\Isaiah\AppData\Local\Akamai\netsession_win.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIHVA.EXE
(Akamai Technologies, Inc.) C:\Users\Isaiah\AppData\Local\Akamai\netsession_win.exe
() C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
(Intuit Inc.) C:\Program Files (x86)\Intuit\QuickBooks 2011\QBW32.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgtray.exe
(Dropbox, Inc.) C:\Users\Isaiah\AppData\Roaming\Dropbox\bin\Dropbox.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
() C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
(Carbonite, Inc.) C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1909032 2010-01-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-01-20] (IDT, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5470208 2009-12-16] (Dell Inc.)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1807680 2010-02-09] ()
HKLM-x32\...\Run: [PDVDDXSrv] => C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-12-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [Desktop Disc Tool] => c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] ()
HKLM-x32\...\Run: [DellSupportCenter] => C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064 2009-05-21] (SupportSoft, Inc.)
HKLM-x32\...\Run: [AVG_TRAY] => C:\Program Files (x86)\AVG\AVG10\avgtray.exe [2345592 2012-08-01] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [2215768 2011-09-30] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [LTCM Client] => C:\Program Files (x86)\LTCM Client\ltcmClient.exe [1596096 2009-08-05] (Leader Technologies Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [Carbonite Backup] => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe [1056264 2013-10-10] (Carbonite, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe [560128 2010-09-26] (Dell)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-928644344-3032971394-1657302220-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Isaiah\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-928644344-3032971394-1657302220-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHVA.EXE [241280 2014-07-01] (SEIKO EPSON CORPORATION)
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2011\QBW32.EXE (Intuit Inc.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Isaiah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Isaiah\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\QBDataServiceUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: Carbonite.Green -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: Carbonite.Partial -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: Carbonite.Yellow -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll (Autodesk)
ShellIconOverlayIdentifiers-x32: Carbonite.Green -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: Carbonite.Partial -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: Carbonite.Yellow -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
BootExecute: autocheck autochk * C:\PROGRA~2\AVG\AVG10\avgchsva.exe /syncC:\PROGRA~2\AVG\AVG10\avgrsa.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgppa.dll (AVG Technologies CZ, s.r.o.)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\syswow64\urlmon.dll (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Isaiah\AppData\Roaming\Mozilla\Firefox\Profiles\pqvjg8a6.default
FF Homepage: www.yahoo.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Windows\SysWOW64\npdeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Isaiah\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Isaiah\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Extension: Garmin Communicator - C:\Users\Isaiah\AppData\Roaming\Mozilla\Firefox\Profiles\pqvjg8a6.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2013-11-20]
FF Extension: WOT - C:\Users\Isaiah\AppData\Roaming\Mozilla\Firefox\Profiles\pqvjg8a6.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-26]
FF Extension: QuickJava - C:\Users\Isaiah\AppData\Roaming\Mozilla\Firefox\Profiles\pqvjg8a6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2012-02-10]
FF Extension: JavaScript Debugger - C:\Users\Isaiah\AppData\Roaming\Mozilla\Firefox\Profiles\pqvjg8a6.default\Extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi [2012-02-10]
FF HKLM-x32\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files (x86)\AVG\AVG10\Firefox4

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Isaiah\AppData\Local\Google\Chrome\Application\36.0.1985.143\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Isaiah\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Isaiah\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll ()
CHR Plugin: (AVG Internet Security) - C:\Users\Isaiah\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java™ Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\Users\Isaiah\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-02-11]
CHR Extension: (Google Search) - C:\Users\Isaiah\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-11]
CHR Extension: (Google Wallet) - C:\Users\Isaiah\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Isaiah\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-02-11]
CHR StartMenuInternet: Google Chrome - C:\Users\Isaiah\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [7391072 2012-01-31] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe [269520 2011-02-08] (AVG Technologies CZ, s.r.o.)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2012-05-14] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2009-07-23] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2011-06-30] (Intuit Inc.) [File not signed]
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [1886488 2014-07-10] (Trusteer Ltd.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe [244736 2010-01-20] (IDT, Inc.)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [4950016 2009-12-16] (Dell Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R3 AVGIDSDriver; C:\Windows\System32\DRIVERS\AVGIDSDriver.Sys [118864 2011-05-27] (AVG Technologies CZ, s.r.o. )
R0 AVGIDSEH; C:\Windows\System32\DRIVERS\AVGIDSEH.Sys [26704 2011-02-22] (AVG Technologies CZ, s.r.o. )
R3 AVGIDSFilter; C:\Windows\System32\DRIVERS\AVGIDSFilter.Sys [29264 2011-02-10] (AVG Technologies CZ, s.r.o. )
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [312160 2012-11-12] (AVG Technologies CZ, s.r.o.)
R1 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [41552 2011-03-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [37456 2011-03-16] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [377936 2011-04-05] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-11] (AVG Technologies)
R1 RapportCerberus_69875; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_69875.sys [631128 2014-07-28] ()
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [299736 2014-07-10] (Trusteer Ltd.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [358616 2014-07-10] (Trusteer Ltd.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [414296 2014-07-10] (Trusteer Ltd.)
R3 RemotePCHelpDesk; C:\Windows\System32\DRIVERS\RemotePCHelpDesk.sys [13120 2011-06-30] (Pro Softnet Crop provider)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 12:15 - 2014-08-23 12:15 - 00000000 ____D () C:\Users\Isaiah\Desktop\FRST-OlderVersion
2014-08-22 12:21 - 2014-08-22 12:21 - 00001466 _____ () C:\Users\Isaiah\Downloads\fixlist.txt
2014-08-22 12:00 - 2014-07-11 03:03 - 00880040 _____ (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll
2014-08-22 12:00 - 2014-07-11 03:02 - 00802728 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2014-08-21 09:33 - 2014-08-21 09:33 - 00001082 _____ () C:\Users\Isaiah\Desktop\parkingpass.jpg - Shortcut.lnk
2014-08-21 08:58 - 2014-08-21 08:58 - 17025312 _____ () C:\Users\Isaiah\Downloads\epson14913.exe
2014-08-20 17:48 - 2014-08-20 17:48 - 00000000 _____ () C:\Windows\SysWOW64\sho3D56.tmp
2014-08-20 17:45 - 2014-08-20 17:45 - 07886336 _____ () C:\Users\Isaiah\Downloads\setup.msi
2014-08-20 17:12 - 2013-09-01 06:59 - 01103872 _____ () C:\Windows\SysWOW64\CBLCtlsU.ocx
2014-08-20 17:12 - 2013-07-13 06:15 - 00805376 _____ () C:\Windows\SysWOW64\EditCtlsU.ocx
2014-08-20 17:12 - 2013-07-12 16:57 - 00539648 _____ () C:\Windows\SysWOW64\LblCtlsU.ocx
2014-08-20 17:12 - 2013-04-05 07:55 - 00476160 _____ () C:\Windows\SysWOW64\TabStripCtlU.ocx
2014-08-20 17:12 - 2013-03-28 17:13 - 00645632 _____ () C:\Windows\SysWOW64\BtnCtlsU.ocx
2014-08-20 17:12 - 2013-03-03 08:37 - 01061888 _____ () C:\Windows\SysWOW64\ExLvwU.ocx
2014-08-20 17:11 - 2014-08-20 17:11 - 07011088 _____ (Bullzip ) C:\Users\Isaiah\Downloads\Setup_BullzipPDFPrinter_10_7_0_2277_FREE.exe
2014-08-20 14:06 - 2014-08-20 14:06 - 00507574 _____ () C:\Users\Isaiah\Desktop\Post.txt
2014-08-20 08:14 - 2014-08-20 08:17 - 00000000 ____D () C:\Users\Isaiah\Desktop\Tweaking.com - Windows Repair
2014-08-20 08:14 - 2014-08-20 08:13 - 07493759 _____ () C:\Users\Isaiah\Desktop\tweaking.com_windows_repair_aio.zip
2014-08-19 16:24 - 2014-08-19 16:24 - 00023539 _____ () C:\ComboFix.txt
2014-08-19 15:47 - 2014-08-19 15:47 - 00000616 _____ () C:\Users\Isaiah\Desktop\ComboFix.exe - Shortcut.lnk
2014-08-19 14:45 - 2014-08-19 14:45 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-DELLSTUDIO17-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2014-08-19 14:44 - 2014-08-19 14:44 - 00000000 ____D () C:\RegBackup
2014-08-19 14:43 - 2014-08-19 14:43 - 00002237 _____ () C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2014-08-19 14:43 - 2014-08-19 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-08-19 14:43 - 2014-08-19 14:43 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-08-19 14:42 - 2014-08-19 14:40 - 04057608 _____ () C:\Users\Isaiah\Desktop\tweaking.com_registry_backup_setup.exe
2014-08-19 12:16 - 2014-08-19 12:16 - 00000017 _____ () C:\Windows\SysWOW64\shortcut_ex.dat
2014-08-19 11:46 - 2014-08-19 11:44 - 06452588 _____ (bioPDF, Denmark ) C:\Users\Isaiah\Desktop\PDF2WordConverter.exe
2014-08-19 11:46 - 2014-08-19 11:40 - 00762280 _____ () C:\Users\Isaiah\Desktop\pdf printer setup.exe
2014-08-19 11:23 - 2014-08-19 11:23 - 00000000 ____D () C:\Users\Public\Desktop\CC Support
2014-08-19 11:22 - 2014-08-19 11:18 - 04009167 _____ () C:\Users\Isaiah\Desktop\ServicesRepair.exe
2014-08-19 10:21 - 2014-08-19 12:49 - 00003850 _____ () C:\Users\Isaiah\Desktop\FSS.txt
2014-08-19 10:20 - 2014-08-19 10:18 - 00415232 _____ (Farbar) C:\Users\Isaiah\Desktop\FSS.exe
2014-08-19 07:34 - 2014-08-20 16:50 - 00042911 _____ () C:\Users\Isaiah\Desktop\Addition.txt
2014-08-19 07:14 - 2014-08-19 07:14 - 00010773 _____ () C:\Users\Isaiah\Documents\Result.txt
2014-08-18 20:58 - 2014-08-19 12:14 - 00010744 _____ () C:\Users\Isaiah\Desktop\Result.txt
2014-08-18 20:57 - 2014-08-18 20:46 - 00401920 _____ (Farbar) C:\Users\Isaiah\Desktop\MiniToolBox.exe
2014-08-18 15:12 - 2014-08-24 17:36 - 00029082 _____ () C:\Users\Isaiah\Desktop\FRST.txt
2014-08-18 12:15 - 2014-08-23 12:15 - 02103296 _____ (Farbar) C:\Users\Isaiah\Desktop\FRST64.exe
2014-08-18 12:14 - 2014-08-18 12:14 - 00007917 _____ () C:\Users\Isaiah\Desktop\AdwCleaner[S0].txt
2014-08-18 11:37 - 2014-08-18 11:58 - 00000000 ____D () C:\AdwCleaner
2014-08-18 11:37 - 2014-08-18 11:12 - 01361671 _____ () C:\Users\Isaiah\Desktop\AdwCleaner.exe
2014-08-18 11:26 - 2014-08-18 11:26 - 00081157 _____ () C:\Users\Isaiah\Desktop\ComboFix.txt
2014-08-17 18:26 - 2014-08-17 18:26 - 00013332 _____ () C:\Users\Isaiah\Desktop\JRT.txt
2014-08-17 18:05 - 2014-08-17 18:05 - 00000000 ____D () C:\Windows\ERUNT
2014-08-17 18:04 - 2014-08-17 18:04 - 01016261 _____ (Thisisu) C:\Users\Isaiah\Downloads\JRT.exe
2014-08-17 18:02 - 2014-08-17 18:05 - 00000000 ____D () C:\Users\Isaiah\AppData\Roaming\Free Download Manager
2014-08-17 18:00 - 2014-08-17 18:00 - 00001069 _____ () C:\Users\Isaiah\Desktop\Free Download Manager.lnk
2014-08-17 18:00 - 2014-08-17 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
2014-08-17 18:00 - 2014-08-17 18:00 - 00000000 ____D () C:\Program Files (x86)\Free Download Manager
2014-08-17 16:34 - 2014-08-17 16:34 - 00013484 _____ () C:\Users\Isaiah\Desktop\combofix - Shortcut.lnk
2014-08-16 21:29 - 2011-06-26 02:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-08-16 21:29 - 2010-11-07 13:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-08-16 21:29 - 2009-04-20 00:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-08-16 21:29 - 2000-08-30 20:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-08-16 21:29 - 2000-08-30 20:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-08-16 21:29 - 2000-08-30 20:00 - 00098816 _____ () C:\Windows\sed.exe
2014-08-16 21:29 - 2000-08-30 20:00 - 00080412 _____ () C:\Windows\grep.exe
2014-08-16 21:29 - 2000-08-30 20:00 - 00068096 _____ () C:\Windows\zip.exe
2014-08-16 21:28 - 2014-08-19 16:24 - 00000000 ____D () C:\Qoobox
2014-08-16 21:28 - 2014-08-19 16:14 - 00000000 ____D () C:\Windows\erdnt
2014-08-16 21:26 - 2014-08-16 21:26 - 05571320 ____R (Swearware) C:\Users\Isaiah\Downloads\ComboFix.exe
2014-08-16 18:17 - 2014-08-16 18:17 - 00001943 _____ () C:\Users\Isaiah\Desktop\aswMBR.txt
2014-08-16 18:17 - 2014-08-16 18:17 - 00000512 _____ () C:\Users\Isaiah\Desktop\MBR.dat
2014-08-16 18:11 - 2014-08-16 18:11 - 05185536 _____ (AVAST Software) C:\Users\Isaiah\Downloads\aswMBR.exe
2014-08-16 18:07 - 2014-08-16 18:08 - 00039927 _____ () C:\Users\Isaiah\Downloads\Addition.txt
2014-08-16 18:06 - 2014-08-16 18:08 - 00055310 _____ () C:\Users\Isaiah\Downloads\FRST.txt
2014-08-16 18:05 - 2014-08-24 17:36 - 00000000 ____D () C:\FRST
2014-08-16 18:04 - 2014-08-16 18:05 - 02101760 _____ (Farbar) C:\Users\Isaiah\Downloads\FRST64.exe
2014-08-16 03:09 - 2014-08-06 21:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-16 03:09 - 2014-08-06 21:46 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-15 17:47 - 2014-08-24 12:50 - 00001344 _____ () C:\Windows\setupact.log
2014-08-15 17:47 - 2014-08-20 17:49 - 00004374 _____ () C:\Windows\PFRO.log
2014-08-15 17:47 - 2014-08-15 17:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-15 17:45 - 2014-08-15 17:45 - 00145368 _____ () C:\Users\Isaiah\Desktop\OTL.Txt
2014-08-15 17:36 - 2014-08-15 17:36 - 00099396 _____ () C:\Users\Isaiah\Downloads\Extras.Txt
2014-08-15 17:33 - 2014-08-15 17:33 - 00145368 _____ () C:\Users\Isaiah\Downloads\OTL.Txt
2014-08-15 17:18 - 2014-08-15 17:18 - 00602112 _____ (OldTimer Tools) C:\Users\Isaiah\Downloads\OTL.exe
2014-08-15 17:02 - 2014-08-15 17:02 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-08-15 17:02 - 2014-08-15 17:02 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-15 17:02 - 2014-08-15 17:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-15 17:02 - 2014-08-15 17:02 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-15 17:00 - 2014-08-15 17:00 - 04813544 _____ (Piriform Ltd) C:\Users\Isaiah\Downloads\ccsetup416.exe
2014-08-07 15:44 - 2014-08-07 15:46 - 00054932 _____ () C:\Users\Isaiah\Downloads\AMX-Battery-Driver-Update.CAB
2014-07-29 10:11 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-29 10:10 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-29 10:10 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-29 10:10 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-29 10:09 - 2014-07-29 10:10 - 00004578 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-29 10:07 - 2014-07-29 10:07 - 00918440 _____ (Oracle Corporation) C:\Users\Isaiah\Downloads\jxpiinstall.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 17:36 - 2014-08-18 15:12 - 00029082 _____ () C:\Users\Isaiah\Desktop\FRST.txt
2014-08-24 17:36 - 2014-08-16 18:05 - 00000000 ____D () C:\FRST
2014-08-24 17:36 - 2012-09-19 16:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-24 17:24 - 2010-08-15 07:27 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-24 17:00 - 2012-02-11 09:41 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-928644344-3032971394-1657302220-1001UA.job
2014-08-24 16:39 - 2009-07-14 01:13 - 00006812 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-24 16:38 - 2009-07-14 01:10 - 01195050 _____ () C:\Windows\WindowsUpdate.log
2014-08-24 12:58 - 2009-07-14 00:45 - 00019520 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-24 12:58 - 2009-07-14 00:45 - 00019520 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-24 12:56 - 2012-01-04 10:00 - 00000000 ___RD () C:\Users\Isaiah\Dropbox
2014-08-24 12:56 - 2012-01-04 09:56 - 00000000 ____D () C:\Users\Isaiah\AppData\Roaming\Dropbox
2014-08-24 12:56 - 2010-11-19 18:31 - 00000000 ____D () C:\Windows\system32\Drivers\AVG
2014-08-24 12:51 - 2010-08-15 07:27 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-24 12:50 - 2014-08-15 17:47 - 00001344 _____ () C:\Windows\setupact.log
2014-08-24 12:50 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-23 12:15 - 2014-08-23 12:15 - 00000000 ____D () C:\Users\Isaiah\Desktop\FRST-OlderVersion
2014-08-23 12:15 - 2014-08-18 12:15 - 02103296 _____ (Farbar) C:\Users\Isaiah\Desktop\FRST64.exe
2014-08-23 09:20 - 2012-02-11 09:41 - 00000860 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-928644344-3032971394-1657302220-1001Core.job
2014-08-22 12:21 - 2014-08-22 12:21 - 00001466 _____ () C:\Users\Isaiah\Downloads\fixlist.txt
2014-08-22 12:00 - 2012-09-11 14:23 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-21 09:43 - 2010-07-20 19:33 - 00000000 ____D () C:\Land Projects 2004
2014-08-21 09:33 - 2014-08-21 09:33 - 00001082 _____ () C:\Users\Isaiah\Desktop\parkingpass.jpg - Shortcut.lnk
2014-08-21 08:58 - 2014-08-21 08:58 - 17025312 _____ () C:\Users\Isaiah\Downloads\epson14913.exe
2014-08-21 07:56 - 2011-03-03 20:48 - 00019456 _____ () C:\Users\Isaiah\Documents\Moose Permits.xls
2014-08-20 17:57 - 2009-07-14 01:08 - 00032652 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-20 17:49 - 2014-08-15 17:47 - 00004374 _____ () C:\Windows\PFRO.log
2014-08-20 17:48 - 2014-08-20 17:48 - 00000000 _____ () C:\Windows\SysWOW64\sho3D56.tmp
2014-08-20 17:45 - 2014-08-20 17:45 - 07886336 _____ () C:\Users\Isaiah\Downloads\setup.msi
2014-08-20 17:12 - 2010-10-07 20:57 - 00000926 _____ () C:\Users\Isaiah\Desktop\Bullzip PDF Printer.lnk
2014-08-20 17:12 - 2010-10-07 20:57 - 00000000 ____D () C:\Program Files\Common Files\Bullzip
2014-08-20 17:11 - 2014-08-20 17:11 - 07011088 _____ (Bullzip ) C:\Users\Isaiah\Downloads\Setup_BullzipPDFPrinter_10_7_0_2277_FREE.exe
2014-08-20 17:02 - 2011-08-02 14:18 - 00049664 _____ () C:\Users\Isaiah\Desktop\Pass.xls
2014-08-20 16:50 - 2014-08-19 07:34 - 00042911 _____ () C:\Users\Isaiah\Desktop\Addition.txt
2014-08-20 14:06 - 2014-08-20 14:06 - 00507574 _____ () C:\Users\Isaiah\Desktop\Post.txt
2014-08-20 11:45 - 2010-09-27 10:14 - 00000000 _____ () C:\Users\Isaiah\AppData\Local\prvlcl.dat
2014-08-20 11:12 - 2009-07-13 22:34 - 00000535 _____ () C:\Windows\win.ini
2014-08-20 11:02 - 2010-07-20 17:31 - 00006812 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-08-20 08:17 - 2014-08-20 08:14 - 00000000 ____D () C:\Users\Isaiah\Desktop\Tweaking.com - Windows Repair
2014-08-20 08:13 - 2014-08-20 08:14 - 07493759 _____ () C:\Users\Isaiah\Desktop\tweaking.com_windows_repair_aio.zip
2014-08-19 16:24 - 2014-08-19 16:24 - 00023539 _____ () C:\ComboFix.txt
2014-08-19 16:24 - 2014-08-16 21:28 - 00000000 ____D () C:\Qoobox
2014-08-19 16:17 - 2009-07-13 22:34 - 00000215 _____ () C:\Windows\system.ini
2014-08-19 16:16 - 2009-07-13 22:34 - 00000027 _____ () C:\Windows\system32\Drivers\etc\hosts_bak_156
2014-08-19 16:14 - 2014-08-16 21:28 - 00000000 ____D () C:\Windows\erdnt
2014-08-19 15:47 - 2014-08-19 15:47 - 00000616 _____ () C:\Users\Isaiah\Desktop\ComboFix.exe - Shortcut.lnk
2014-08-19 14:45 - 2014-08-19 14:45 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-DELLSTUDIO17-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2014-08-19 14:44 - 2014-08-19 14:44 - 00000000 ____D () C:\RegBackup
2014-08-19 14:43 - 2014-08-19 14:43 - 00002237 _____ () C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2014-08-19 14:43 - 2014-08-19 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-08-19 14:43 - 2014-08-19 14:43 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-08-19 14:40 - 2014-08-19 14:42 - 04057608 _____ () C:\Users\Isaiah\Desktop\tweaking.com_registry_backup_setup.exe
2014-08-19 12:49 - 2014-08-19 10:21 - 00003850 _____ () C:\Users\Isaiah\Desktop\FSS.txt
2014-08-19 12:16 - 2014-08-19 12:16 - 00000017 _____ () C:\Windows\SysWOW64\shortcut_ex.dat
2014-08-19 12:14 - 2014-08-18 20:58 - 00010744 _____ () C:\Users\Isaiah\Desktop\Result.txt
2014-08-19 11:44 - 2014-08-19 11:46 - 06452588 _____ (bioPDF, Denmark ) C:\Users\Isaiah\Desktop\PDF2WordConverter.exe
2014-08-19 11:40 - 2014-08-19 11:46 - 00762280 _____ () C:\Users\Isaiah\Desktop\pdf printer setup.exe
2014-08-19 11:23 - 2014-08-19 11:23 - 00000000 ____D () C:\Users\Public\Desktop\CC Support
2014-08-19 11:18 - 2014-08-19 11:22 - 04009167 _____ () C:\Users\Isaiah\Desktop\ServicesRepair.exe
2014-08-19 10:18 - 2014-08-19 10:20 - 00415232 _____ (Farbar) C:\Users\Isaiah\Desktop\FSS.exe
2014-08-19 07:49 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-19 07:14 - 2014-08-19 07:14 - 00010773 _____ () C:\Users\Isaiah\Documents\Result.txt
2014-08-18 20:46 - 2014-08-18 20:57 - 00401920 _____ (Farbar) C:\Users\Isaiah\Desktop\MiniToolBox.exe
2014-08-18 12:14 - 2014-08-18 12:14 - 00007917 _____ () C:\Users\Isaiah\Desktop\AdwCleaner[S0].txt
2014-08-18 11:58 - 2014-08-18 11:37 - 00000000 ____D () C:\AdwCleaner
2014-08-18 11:26 - 2014-08-18 11:26 - 00081157 _____ () C:\Users\Isaiah\Desktop\ComboFix.txt
2014-08-18 11:12 - 2014-08-18 11:37 - 01361671 _____ () C:\Users\Isaiah\Desktop\AdwCleaner.exe
2014-08-17 19:41 - 2014-03-31 07:15 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-17 19:07 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-17 19:04 - 2010-11-19 18:31 - 00000000 ____D () C:\ProgramData\AVG10
2014-08-17 18:26 - 2014-08-17 18:26 - 00013332 _____ () C:\Users\Isaiah\Desktop\JRT.txt
2014-08-17 18:05 - 2014-08-17 18:05 - 00000000 ____D () C:\Windows\ERUNT
2014-08-17 18:05 - 2014-08-17 18:02 - 00000000 ____D () C:\Users\Isaiah\AppData\Roaming\Free Download Manager
2014-08-17 18:04 - 2014-08-17 18:04 - 01016261 _____ (Thisisu) C:\Users\Isaiah\Downloads\JRT.exe
2014-08-17 18:00 - 2014-08-17 18:00 - 00001069 _____ () C:\Users\Isaiah\Desktop\Free Download Manager.lnk
2014-08-17 18:00 - 2014-08-17 18:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
2014-08-17 18:00 - 2014-08-17 18:00 - 00000000 ____D () C:\Program Files (x86)\Free Download Manager
2014-08-17 17:20 - 2014-06-18 09:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-17 16:34 - 2014-08-17 16:34 - 00013484 _____ () C:\Users\Isaiah\Desktop\combofix - Shortcut.lnk
2014-08-17 03:02 - 2014-07-10 03:29 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-16 22:47 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default
2014-08-16 21:26 - 2014-08-16 21:26 - 05571320 ____R (Swearware) C:\Users\Isaiah\Downloads\ComboFix.exe
2014-08-16 18:17 - 2014-08-16 18:17 - 00001943 _____ () C:\Users\Isaiah\Desktop\aswMBR.txt
2014-08-16 18:17 - 2014-08-16 18:17 - 00000512 _____ () C:\Users\Isaiah\Desktop\MBR.dat
2014-08-16 18:11 - 2014-08-16 18:11 - 05185536 _____ (AVAST Software) C:\Users\Isaiah\Downloads\aswMBR.exe
2014-08-16 18:08 - 2014-08-16 18:07 - 00039927 _____ () C:\Users\Isaiah\Downloads\Addition.txt
2014-08-16 18:08 - 2014-08-16 18:06 - 00055310 _____ () C:\Users\Isaiah\Downloads\FRST.txt
2014-08-16 18:05 - 2014-08-16 18:04 - 02101760 _____ (Farbar) C:\Users\Isaiah\Downloads\FRST64.exe
2014-08-16 03:02 - 2010-10-28 10:41 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-15 17:59 - 2012-01-04 10:00 - 00001028 _____ () C:\Users\Isaiah\Desktop\Dropbox.lnk
2014-08-15 17:59 - 2012-01-04 09:57 - 00000000 ____D () C:\Users\Isaiah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-15 17:47 - 2014-08-15 17:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-15 17:45 - 2014-08-15 17:45 - 00145368 _____ () C:\Users\Isaiah\Desktop\OTL.Txt
2014-08-15 17:36 - 2014-08-15 17:36 - 00099396 _____ () C:\Users\Isaiah\Downloads\Extras.Txt
2014-08-15 17:33 - 2014-08-15 17:33 - 00145368 _____ () C:\Users\Isaiah\Downloads\OTL.Txt
2014-08-15 17:18 - 2014-08-15 17:18 - 00602112 _____ (OldTimer Tools) C:\Users\Isaiah\Downloads\OTL.exe
2014-08-15 17:15 - 2013-08-22 08:10 - 00000000 ____D () C:\Windows\Minidump
2014-08-15 17:15 - 2010-07-20 15:33 - 00000000 ___DC () C:\Users\Isaiah\AppData\Local\MigWiz
2014-08-15 17:15 - 2010-07-16 01:29 - 00000000 ____D () C:\Windows\Panther
2014-08-15 17:02 - 2014-08-15 17:02 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-08-15 17:02 - 2014-08-15 17:02 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-15 17:02 - 2014-08-15 17:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-15 17:02 - 2014-08-15 17:02 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-15 17:00 - 2014-08-15 17:00 - 04813544 _____ (Piriform Ltd) C:\Users\Isaiah\Downloads\ccsetup416.exe
2014-08-15 10:40 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-08-13 09:00 - 2012-02-11 09:41 - 00002377 _____ () C:\Users\Isaiah\Desktop\Google Chrome.lnk
2014-08-11 16:37 - 2012-11-08 13:24 - 00050976 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-08-08 12:21 - 2010-07-20 15:49 - 00000000 ____D () C:\Users\Administrator
2014-08-07 15:46 - 2014-08-07 15:44 - 00054932 _____ () C:\Users\Isaiah\Downloads\AMX-Battery-Driver-Update.CAB
2014-08-06 21:52 - 2014-08-16 03:09 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-06 21:46 - 2014-08-16 03:09 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 11:25 - 2012-04-25 06:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-01 14:28 - 2010-10-07 20:57 - 00147456 _____ (Bullzip) C:\Windows\SysWOW64\bzpdfc.dll
2014-07-29 10:11 - 2014-01-29 13:19 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-29 10:10 - 2014-07-29 10:09 - 00004578 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-29 10:07 - 2014-07-29 10:07 - 00918440 _____ (Oracle Corporation) C:\Users\Isaiah\Downloads\jxpiinstall.exe
2014-07-28 17:07 - 2013-08-22 08:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Endpoint Protection
2014-07-28 16:57 - 2013-03-14 03:06 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-28 16:57 - 2013-03-14 03:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-25 03:03 - 2013-03-14 03:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

Some content of TEMP:
====================
C:\Users\Isaiah\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpncrp3o.dll
C:\Users\Isaiah\AppData\Local\Temp\nst6057.tmp.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-17 03:33

==================== End Of Log ============================


  • 0

Advertisements


#62
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Looks good :thumbsup:


51a46ae42d560-malwarebytes_anti_malware. Scan with Malwarebytes' Anti-Malware

Please download Malwarebytes Anti-Malware and save it to your desktop.

  • Install the progam and select update.
  • Once updated, click the Settings tab, in the left panel choose Detctions & protection and tick Scan for rootkits.
  • Click the Scan tab, choose Threat Scan is checked and click Scan Now.
  • If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
  • Upon completion of the scan (or after the reboot), click the History tab.
  • Click Application Logs and double-click the Scan Log.
  • At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.



ESETOnline.png Scan with ESET Online Scanner

This step can only be done using Internet Explorer, Google Chrome or Mozilla Firefox.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
Please visit ESET Online Scanner website.
Click there Run ESET Online Scanner.

If using Internet Explorer:

  • Accept the Terms of Use and click Start.
  • Allow the running of add-on.

If using Mozilla Firefox or Google Chrome:

  • Download esetsmartinstaller_enu.exe that you'll be given link to.
  • Double click esetsmartinstaller_enu.exe.
  • Allow the Terms of Use and click Start.

To perform the scan:

  • Make sure that Enable detecion of potentially unwanted applications is checked.
  • In the Advanced Settings dropdown menu:
    • Make sure that Remove found threats is unchecked.
    • Scan archives is checked.
    • Scan for potentially unsafe applications and Enable Anti-Stealth technology are checked.
    • Use custom proxy settings is unchecked.
  • Click Start
  • The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
  • When completed, the program will begin to scan. This may take several hours. Please, be patient.
  • Do not do anything on your machine as it may interrupt the scan.
  • When the scan is done, click Finish.
  • A logfile will be created at C:\Program Files (x86)\ESET\ESET Online Scanner. Open it using Notepad.

Please include this logfile in your next reply.
Don't forget to re-enable previously switched-off protection software!



51c9d14017fa0-SecurityCheck.PNG Scan with Security Check

Please download Security Check by Screen317 and save it to your desktop.

  • Right-click on 51c9d14017fa0-SecurityCheck.PNG icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Follow onscreen instructions inside the black box. This scan won't take long.
  • Soon a notepad document called checkup.txt will open automaticaly.

Please include the content of that document.


  • 0

#63
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP