Hello there, ,
I'm running windows xp and have a resident shield alert pop up virus that I can't seem to get rid of. I've been running malwarebytes, iobit, and other malware but can't seem to shake it. The popups seem to occur when I run any web browser, and since they started I haven't been able to run firefox at all. It just keeps crashing. I'd love some help if you can.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Bacon (administrator) on BACON-PC on 22-03-2015 19:31:05
Running from C:\Users\Bacon\Downloads
Loaded Profiles: Bacon (Available profiles: Bacon)
Platform: Windows Vista Home Premium Service Pack 2 (X64) OS Language: English (United States)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgchsva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgcsrva.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe
(IOBit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCAvSvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Windows\System32\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Windows\System32\BCMWLTRY.EXE
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Windows\System32\WLTRAY.EXE
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(BitTorrent Inc.) C:\Users\Bacon\AppData\Roaming\uTorrent\uTorrent.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe
(Dropbox, Inc.) C:\Users\Bacon\AppData\Roaming\Dropbox\bin\Dropbox.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgtray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgfws9.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgnsa.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\loggingserver.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgemc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [305664 2009-04-07] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Windows\system32\WLTRAY.exe [4119552 2008-12-22] (Dell Inc.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3215440 2009-03-23] (Dell Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [462848 2009-04-07] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG9_TRAY] => C:\Program Files (x86)\AVG\AVG9\avgtray.exe [2077536 2012-01-26] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [273544 2011-03-18] (RealNetworks, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Secure Search\vprot.exe [2503704 2015-03-07] ()
HKLM-x32\...\Run: [ROC_roc_dec12] => C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe [928096 2012-01-23] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2012-02-03] (PC Tools)
HKLM-x32\...\Run: [RMAlert] => C:\Program Files (x86)\PC Tools Registry Mechanic\Alert.exe [1018328 2012-02-03] (PC Tools)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-09-10] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-01-29] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-12] ()
HKLM-x32\...\Run: [OtShot] => "C:\Program Files (x86)\OtShot\otshot.exe" -minimize
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2010-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [821144 2010-10-25] (Adobe Systems Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-03-03] (IObit)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1949592 2015-02-14] (APN)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [CrossRiderPlugin] => C:\Program Files (x86)\CrossriderWebApps\Crossrider.exe
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [MobileDocuments] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [uTorrent] => C:\Users\Bacon\AppData\Roaming\uTorrent\uTorrent.exe [1740880 2015-03-04] (BitTorrent Inc.)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe [2596128 2015-01-19] (IObit)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\MountPoints2: {414bf130-197c-11e1-98cf-00256445da3e} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\MountPoints2: {69678e33-39e9-11e3-9061-00256445da3e} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
AppInit_DLLs: avgrssta.dll => C:\Windows\system32\avgrssta.dll [13048 2010-11-05] (AVG Technologies CZ, s.r.o.)
Startup: C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Bacon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.dell.com
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\Software\Microsoft\Internet Explorer\Main,Start Page Restore =
http://www.dell.com
URLSearchHook: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 - (No Name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No File
SearchScopes: HKLM-x32 -> DefaultScope {2DEA28A1-1C4F-43C5-BB01-4488C8B53684} URL =
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
http://isearch.avg.c...pa&d=2011-12-1213:10:58&v=14.2.0.1&pid=avg&sg=0&sap=dsp&q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-03-11] (IObit)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssiea.dll [2010-11-25] (AVG Technologies CZ, s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-10-25] (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-02-07] (DivX, LLC)
BHO-x32: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssie.dll [2010-11-25] (AVG Technologies CZ, s.r.o.)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Secure Search\18.3.0.885\AVG Secure Search_toolbar.dll [2015-03-07] (AVG Secure Search)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2014-10-17] (IObit)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.3.0.885\AVG Secure Search_toolbar.dll [2015-03-07] (AVG Secure Search)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll [2010-11-05] (AVG Technologies CZ, s.r.o.)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll [2010-11-05] (AVG Technologies CZ, s.r.o.)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.3.0\ViProtocol.dll [2015-03-07] (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: DuckDuckGo
FF SearchEngineOrder.1:
FF SearchEngineOrder.1,S:
FF SelectedSearchEngine,S:
FF Homepage: hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN11408&pf=V7&trgb=FF&p2=%5EBBG%5EOSJ000%5EYY%5EUS&gct=hp&apn_ptnrs=BBG&apn_dtid=%5EOSJ000%5EYY%5EUS&apn_dbr=ff_36.0.4.5557&apn_uid=779BC23A-B7E2-4E5A-AE04-69884457D476&itbv=12.24.1.51&doi=2015-03-22&psv=&pt=tb
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-06] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-08-08] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.3.0\\npsitesafety.dll No File
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2013-02-07] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-06-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=12.0.1.633 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=12.0.1.633 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=12.0.1.633 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=12.0.1.633 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\user.js [2015-03-22]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPMyrMus.dll [2013-03-05] (Myriad Software.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2010-10-25] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\ask-search.xml [2015-03-22]
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\duckduckgo.xml [2014-10-31]
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\firefox-add-ons.xml [2014-10-31]
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\google-default.xml [2014-10-31]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml [2015-03-07]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\
[email protected] [2015-03-11]
FF Extension: Ghostery - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\
[email protected] [2014-10-31]
FF Extension: Search App by Ask - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\
[email protected] [2015-02-14]
FF Extension: Adblock Plus - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-03-31]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-24]
FF HKLM-x32\...\Firefox\Extensions: [{3f963a5b-e555-4543-90e2-c3908898db71}] - C:\Program Files (x86)\AVG\AVG9\Firefox
FF Extension: AVG Safe Search - C:\Program Files (x86)\AVG\AVG9\Firefox [2010-05-12]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-03-18]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.3.0.885
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\18.3.0.885 [2015-03-07]
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2013-05-28]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-03-19]
FF HKLM-x32\...\Firefox\Extensions: [
[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-10-29]
Chrome:
=======
CHR Profile: C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2013-08-21]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (AVG Security Toolbar) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-08-21]
CHR Extension: (Google Wallet) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-08-21]
CHR HKLM-x32\...\Chrome\Extension: [${CHROME_KEY}] - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.3.27\incredibar.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [fekoicefnpiplpdpholnkekijeaodnjm] - C:\ProgramData\Vaudix\fekoicefnpiplpdpholnkekijeaodnjm.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2011-03-18]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\18.1.0.443\avg.crx [2014-05-04]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-02-07]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe [911648 2014-11-22] (IObit)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [177560 2015-01-30] (APN LLC.)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe [658720 2014-12-29] (IOBit)
S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG9\Toolbar\ToolbarBroker.exe [167264 2011-11-10] ()
R2 avg9emc; C:\Program Files (x86)\AVG\AVG9\avgemc.exe [921952 2010-11-05] (AVG Technologies CZ, s.r.o.)
R2 avg9wd; C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe [308136 2010-11-05] (AVG Technologies CZ, s.r.o.)
R2 avgfws9; C:\Program Files (x86)\AVG\AVG9\avgfws9.exe [2331544 2010-11-25] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [5897808 2010-11-05] (AVG Technologies CZ, s.r.o.)
R2 hasplms; C:\Windows\system32\hasplms.exe [4889032 2011-12-30] (SafeNet Inc.)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-01-27] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-16] (IObit)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2012-02-03] (PC Tools)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 vToolbarUpdater18.3.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe [1802776 2015-03-07] (AVG Secure Search)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-20] (Microsoft Corporation)
R2 wltrysvc; C:\Windows\System32\bcmwltry.exe [3051520 2008-12-22] (Dell Inc.) [File not signed]
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [29976 2010-05-12] (AVG Technologies CZ, s.r.o.)
R3 AVGIDSDrivervta; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista64\AVGIDSDriver.sys [132688 2010-11-05] (AVG Technologies CZ, s.r.o. )
R0 AVGIDSErHrvta; C:\Windows\System32\Drivers\AVGIDSva.sys [27216 2010-11-05] (AVG Technologies CZ, s.r.o. )
R3 AVGIDSFiltervta; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista64\AVGIDSFilter.sys [35920 2010-11-05] (AVG Technologies CZ, s.r.o. )
R1 AvgLdx64; C:\Windows\System32\Drivers\avgldx64.sys [269904 2010-11-05] (AVG Technologies CZ, s.r.o.)
R1 AvgMfx64; C:\Windows\System32\Drivers\avgmfx64.sys [35664 2011-09-13] (AVG Technologies CZ, s.r.o.)
R0 AvgRkx64; C:\Windows\System32\Drivers\avgrkx64.sys [56008 2010-11-05] (AVG Technologies CZ, s.r.o.)
R1 AvgTdiA; C:\Windows\System32\Drivers\avgtdia.sys [317520 2011-05-05] (AVG Technologies CZ, s.r.o.)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_amd64\FileMonitor.sys [23048 2014-11-10] (IObit)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [321536 2011-09-28] (SafeNet Inc.)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\wlh_amd64\regfilter.sys [34848 2014-11-10] (IObit.com)
S3 RRNetCap; C:\Windows\System32\DRIVERS\rrnetcap.sys [37480 2011-09-09] (RapidSolution Software AG)
R3 RRNetCapMP; C:\Windows\System32\DRIVERS\rrnetcap.sys [37480 2011-09-09] (RapidSolution Software AG)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2015-03-22] ()
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\wlh_amd64\UrlFilter.sys [23016 2014-11-10] (IObit.com)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-22 19:31 - 2015-03-22 19:31 - 00034428 _____ () C:\Users\Bacon\Downloads\FRST.txt
2015-03-22 19:29 - 2015-03-22 19:29 - 02095616 _____ (Farbar) C:\Users\Bacon\Desktop\FRST64 (1).exe
2015-03-22 19:18 - 2015-03-22 19:18 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\Bacon\Downloads\tdsskiller (1).exe
2015-03-22 18:44 - 2015-03-22 18:58 - 00000000 ____D () C:\Users\Bacon\AppData\Local\CrashDumps
2015-03-22 18:40 - 2015-03-22 18:40 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-03-22 18:40 - 2015-03-22 18:40 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-03-22 18:39 - 2015-03-22 18:39 - 00000798 _____ () C:\Users\Public\Desktop\RogueKiller.lnk
2015-03-22 18:39 - 2015-03-22 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2015-03-22 18:39 - 2015-03-22 18:39 - 00000000 ____D () C:\Program Files\RogueKiller
2015-03-22 18:38 - 2015-03-22 18:39 - 18477496 _____ (Adlice Software ) C:\Users\Bacon\Downloads\setup.exe
2015-03-22 18:29 - 2015-03-22 18:29 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4 (3).exe
2015-03-22 17:38 - 2015-03-22 17:38 - 00000000 ____D () C:\Users\Bacon\AppData\Local\AskPartnerNetwork
2015-03-22 17:38 - 2015-03-22 17:38 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2015-03-22 17:38 - 2015-03-22 17:38 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2015-03-22 17:37 - 2015-03-22 17:37 - 00000000 ____D () C:\ProgramData\APN
2015-03-22 17:37 - 2015-03-22 17:34 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-03-22 17:37 - 2013-06-22 10:46 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2015-03-22 17:37 - 2013-06-22 10:46 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2015-03-22 17:34 - 2015-03-22 17:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-22 17:33 - 2015-03-22 17:33 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-22 17:32 - 2015-03-22 17:32 - 00561064 _____ (Oracle Corporation) C:\Users\Bacon\Downloads\chromeinstall-8u40.exe
2015-03-22 17:31 - 2015-03-22 18:31 - 00000890 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-22 17:30 - 2015-03-22 18:31 - 00000902 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-22 17:27 - 2015-03-22 17:28 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4 (2).exe
2015-03-22 17:27 - 2015-03-22 17:28 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4 (1).exe
2015-03-22 16:24 - 2015-03-22 16:25 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4.exe
2015-03-22 15:52 - 2015-03-22 15:52 - 00002868 _____ () C:\Windows\System32\Tasks\ASCU8_SkipUac_Bacon
2015-03-14 16:37 - 2015-03-14 16:37 - 00000000 _____ () C:\autoexec.bat
2015-03-14 16:25 - 2015-03-14 16:26 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Bacon\Downloads\SpyHunter-Installer.exe
2015-03-14 16:07 - 2015-03-14 16:07 - 00002886 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Bacon
2015-03-14 16:03 - 2015-03-22 19:31 - 00000000 ____D () C:\FRST
2015-03-14 15:57 - 2015-03-14 15:57 - 02095616 _____ (Farbar) C:\Users\Bacon\Downloads\FRST64.exe
2015-03-13 03:28 - 2015-02-19 22:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-13 03:28 - 2015-02-19 21:44 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-13 03:28 - 2015-02-19 20:39 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-13 03:28 - 2015-02-19 20:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-13 03:25 - 2015-01-28 21:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-13 03:25 - 2015-01-28 21:33 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-13 03:25 - 2014-10-12 21:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-03-13 03:25 - 2014-10-12 20:56 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-13 03:24 - 2015-01-20 22:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-13 03:24 - 2015-01-20 21:42 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-13 03:23 - 2015-02-25 20:31 - 02792960 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-13 03:23 - 2015-02-17 22:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-13 03:23 - 2015-02-17 21:42 - 12899840 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-13 03:05 - 2015-01-28 21:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-13 03:05 - 2015-01-28 21:33 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-13 03:04 - 2015-02-25 21:40 - 04692408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-13 03:04 - 2015-01-08 21:41 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-13 03:04 - 2015-01-08 20:29 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-13 03:03 - 2015-03-06 00:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-13 03:03 - 2015-03-05 23:35 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-12 16:31 - 2015-02-21 15:17 - 17882624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-12 16:31 - 2015-02-21 15:07 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-12 16:31 - 2015-02-21 15:02 - 10931200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-12 16:31 - 2015-02-21 15:00 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-12 16:31 - 2015-02-21 14:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-12 16:31 - 2015-02-21 14:54 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-12 16:31 - 2015-02-21 14:53 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-12 16:31 - 2015-02-21 14:52 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-12 16:31 - 2015-02-21 14:52 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-12 16:31 - 2015-02-21 14:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-12 16:31 - 2015-02-21 14:50 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-12 16:31 - 2015-02-21 14:50 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-12 16:31 - 2015-02-21 14:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-12 16:31 - 2015-02-21 14:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-12 16:31 - 2015-02-21 13:37 - 12375040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-12 16:31 - 2015-02-21 13:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-03-12 16:31 - 2015-02-21 13:29 - 09747968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-12 16:31 - 2015-02-21 13:28 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-12 16:31 - 2015-02-21 13:22 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-12 16:31 - 2015-02-21 13:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-12 16:31 - 2015-02-21 13:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-12 16:31 - 2015-02-21 13:20 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-03-12 16:31 - 2015-02-21 13:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 01803264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-12 16:31 - 2015-02-21 13:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-12 16:31 - 2015-02-21 13:18 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-03-12 16:31 - 2015-02-21 13:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-03-12 16:31 - 2015-02-21 13:17 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-12 12:20 - 2015-03-22 17:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-12 12:19 - 2015-03-12 12:19 - 00243368 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.1.exe
2015-03-12 11:14 - 2015-03-12 11:14 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\ProductData
2015-03-12 11:12 - 2015-03-12 11:12 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2015-03-11 20:48 - 2015-03-22 15:46 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-11 20:48 - 2015-03-11 20:48 - 00001065 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-03-11 20:48 - 2015-03-11 20:48 - 00000000 ____D () C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2015-03-11 20:48 - 2015-03-11 20:48 - 00000000 ____D () C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2015-03-11 20:47 - 2015-03-22 15:58 - 00002099 _____ () C:\Users\Public\Desktop\Advanced SystemCare Ultimate 8.lnk
2015-03-11 20:47 - 2015-03-11 20:47 - 00001028 _____ () C:\Users\Bacon\Desktop\IObit Malware Fighter.lnk
2015-03-11 20:47 - 2015-03-11 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 8
2015-03-11 20:46 - 2015-03-14 16:07 - 00000000 ____D () C:\ProgramData\IObit
2015-03-11 20:46 - 2015-03-14 15:50 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\IObit
2015-03-11 20:46 - 2015-03-11 20:48 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-03-11 20:46 - 2015-03-11 20:46 - 00001010 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-03-11 20:46 - 2015-03-11 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-03-11 20:44 - 2015-03-11 20:45 - 32405776 _____ (IObit ) C:\Users\Bacon\Downloads\IObit-Malware-Fighter-Setup.exe
2015-03-11 19:25 - 2015-03-11 19:25 - 00000507 _____ () C:\Windows\wininit.ini
2015-03-08 20:11 - 2015-03-22 18:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-03 18:48 - 2015-03-03 18:48 - 03090942 _____ () C:\Users\Bacon\Desktop\action council.odp
2015-02-22 04:01 - 2014-12-07 21:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-22 04:01 - 2014-12-07 21:37 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-22 19:28 - 2006-11-02 11:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-22 19:28 - 2006-11-02 11:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-22 19:27 - 2011-08-13 00:01 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\uTorrent
2015-03-22 18:57 - 2014-06-12 14:05 - 00000000 ___RD () C:\Users\Bacon\Dropbox
2015-03-22 18:57 - 2014-06-12 14:02 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Dropbox
2015-03-22 18:56 - 2013-10-28 14:28 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2015-03-22 18:56 - 2011-03-02 22:30 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-22 18:54 - 2010-06-06 23:10 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-22 18:54 - 2008-01-20 23:26 - 00895098 _____ () C:\Windows\PFRO.log
2015-03-22 18:54 - 2006-11-02 11:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-22 18:53 - 2006-11-02 11:42 - 00032540 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-22 18:42 - 2012-08-18 11:55 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-22 18:11 - 2006-11-02 08:46 - 00759582 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-22 17:36 - 2010-05-19 18:48 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-22 16:49 - 2014-07-28 01:06 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-22 16:25 - 2010-05-11 11:06 - 01863378 _____ () C:\Windows\WindowsUpdate.log
2015-03-22 15:45 - 2010-05-11 19:02 - 00000000 ____D () C:\Users\Bacon
2015-03-15 00:01 - 2011-01-02 18:38 - 00000000 ____D () C:\ProgramData\TEMP
2015-03-14 16:16 - 2012-11-27 23:39 - 00000000 ____D () C:\ProgramData\Vaudix
2015-03-13 03:49 - 2006-11-02 11:21 - 04841104 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-13 03:23 - 2013-07-19 15:48 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-13 03:05 - 2006-11-02 08:35 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-03-12 16:56 - 2012-01-26 20:03 - 00002027 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-12 15:43 - 2014-10-22 10:54 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Search Protection
2015-03-12 11:21 - 2014-06-12 14:05 - 00000921 _____ () C:\Users\Bacon\Desktop\Dropbox.lnk
2015-03-12 11:21 - 2014-06-12 14:04 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-11 20:48 - 2011-10-29 13:29 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Apple Computer
2015-03-11 20:35 - 2010-05-31 14:51 - 00024576 _____ () C:\Users\Bacon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-11 19:25 - 2013-07-07 17:09 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2015-03-11 18:02 - 2013-10-28 14:27 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-03-08 19:19 - 2010-11-16 18:29 - 00000498 ____H () C:\Windows\Tasks\Norton Security Scan for Bacon.job
2015-03-08 04:56 - 2010-05-13 19:01 - 00000346 _____ () C:\Windows\Tasks\File Helper.job
2015-03-07 00:18 - 2011-12-12 15:11 - 00000000 ____D () C:\Program Files (x86)\AVG Secure Search
2015-03-04 23:16 - 2014-10-22 10:53 - 00000759 _____ () C:\Users\Bacon\Desktop\µTorrent.lnk
2015-03-04 23:16 - 2014-10-22 10:53 - 00000739 _____ () C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-03-03 19:53 - 2006-11-02 11:27 - 00302951 _____ () C:\Windows\setupact.log
2015-03-02 22:49 - 2013-02-04 19:30 - 00000000 ____D () C:\Users\Bacon\Desktop\Rising Tide
2015-03-01 01:30 - 2013-10-28 14:28 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2015-03-01 00:58 - 2014-10-29 18:48 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
==================== Files in the root of some directories =======
2013-06-25 20:30 - 2014-06-23 22:11 - 0003728 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2013-12-19 19:36 - 2013-12-19 19:43 - 0566646 _____ () C:\Users\Bacon\AppData\Roaming\Scorch_Install.log
2012-04-14 00:59 - 2012-04-14 00:59 - 0024226 _____ () C:\Users\Bacon\AppData\Roaming\UserTile.png
2015-02-11 17:30 - 2015-02-11 17:30 - 0000000 ____H () C:\Users\Bacon\AppData\Local\BIT372A.tmp
2012-12-24 18:15 - 2012-12-24 18:15 - 0000680 _____ () C:\Users\Bacon\AppData\Local\d3d9caps.dat
2010-10-12 21:38 - 2010-10-14 21:48 - 0000732 _____ () C:\Users\Bacon\AppData\Local\d3d9caps64.dat
2010-05-31 14:51 - 2015-03-11 20:35 - 0024576 _____ () C:\Users\Bacon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-19 19:36 - 2013-12-19 19:36 - 0421004 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI3FC1.txt
2012-11-04 20:29 - 2012-11-04 20:29 - 0403666 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI4602.txt
2010-05-19 18:49 - 2010-05-19 18:50 - 0402140 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI496A.txt
2011-01-02 18:40 - 2011-01-02 18:40 - 0001848 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI5931.txt
2011-01-31 22:38 - 2011-01-31 22:38 - 0436214 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI693E.txt
2014-04-20 16:48 - 2014-04-20 16:48 - 0405658 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI7B72.txt
2013-12-19 19:36 - 2013-12-19 19:36 - 0011478 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI3FC1.txt
2012-11-04 20:29 - 2012-11-04 20:29 - 0011156 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI4602.txt
2010-05-19 18:49 - 2010-05-19 18:50 - 0011450 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI496A.txt
2011-01-02 18:40 - 2011-01-02 18:40 - 0011484 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI5931.txt
2011-01-02 18:40 - 2011-01-02 18:40 - 0010650 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI5934.txt
2011-01-31 22:38 - 2011-01-31 22:38 - 0011396 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI693E.txt
2014-04-20 16:48 - 2014-04-20 16:48 - 0011188 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI7B72.txt
2010-05-31 21:08 - 2012-12-20 23:07 - 0000000 _____ () C:\Users\Bacon\AppData\Local\prvlcl.dat
2011-10-19 07:49 - 2011-10-19 07:49 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{40FC284D-EF6A-4F61-B635-699B5AD18A8E}
2011-09-26 01:27 - 2011-09-26 01:27 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{590A6992-EE7C-4B48-B52B-74FE2A030FD0}
2011-08-24 08:53 - 2011-08-24 08:53 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{6F9A8ADE-A8B9-4F8A-BD2A-E88477C3F3D8}
2011-11-01 17:07 - 2011-11-01 17:07 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{91D2D89D-0286-42B5-9441-9625C46F0DFB}
2015-02-10 23:29 - 2015-02-10 23:29 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{923188D1-8195-4F17-99CE-013234F81B02}
2011-05-28 13:11 - 2011-05-28 13:11 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{CEA2D52C-5FA7-4DD3-86B8-C3E096455894}
2014-09-18 21:45 - 2014-09-18 21:45 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{E32EEF0B-40E8-42D3-AEF4-0AE62135D9B9}
2011-08-28 06:09 - 2011-08-28 06:09 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{FA1C38C7-E098-4CB4-8F74-81DABD4F9D1C}
Some content of TEMP:
====================
C:\Users\Bacon\AppData\Local\Temp\APNSetup.exe
C:\Users\Bacon\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Bacon\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplzysdm.dll
C:\Users\Bacon\AppData\Local\Temp\MSN789E.exe
C:\Users\Bacon\AppData\Local\Temp\SearchProtectionSetup.exe
C:\Users\Bacon\AppData\Local\Temp\uttBCCC.tmp.exe
C:\Users\Bacon\AppData\Local\Temp\VOPackage.exe
C:\Users\Bacon\AppData\Local\Temp\wrapper_vuupc.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-22 19:02
==================== End Of Log ============================
Edited by nicklepickle, 22 March 2015 - 05:36 PM.