Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Another resident shield alert pop-up virus [Closed]

Started by nicklepickle , Mar 22 2015 05:07 PM
resident shield alers

  • This topic is locked This topic is locked

#1
nicklepickle
Posted 22 March 2015 - 05:07 PM

nicklepickle

    New Member

  • Member
  • Pip
  • 1 posts

Hello there, ,

 

I'm running windows xp and have a resident shield alert pop up virus that I can't seem to get rid of. I've been running malwarebytes, iobit, and other malware but can't seem to shake it. The popups seem to occur when I run any web browser, and since they started I haven't been able to run firefox at all. It just keeps crashing. I'd love some help if you can. 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Bacon (administrator) on BACON-PC on 22-03-2015 19:31:05
Running from C:\Users\Bacon\Downloads
Loaded Profiles: Bacon (Available profiles: Bacon)
Platform: Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English (United States)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgchsva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgcsrva.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe
(IOBit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCAvSvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Windows\System32\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Windows\System32\BCMWLTRY.EXE
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Windows\System32\WLTRAY.EXE
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(BitTorrent Inc.) C:\Users\Bacon\AppData\Roaming\uTorrent\uTorrent.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe
(Dropbox, Inc.) C:\Users\Bacon\AppData\Roaming\Dropbox\bin\Dropbox.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgtray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgfws9.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgnsa.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\loggingserver.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgemc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [305664 2009-04-07] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Windows\system32\WLTRAY.exe [4119552 2008-12-22] (Dell Inc.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3215440 2009-03-23] (Dell Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [462848 2009-04-07] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG9_TRAY] => C:\Program Files (x86)\AVG\AVG9\avgtray.exe [2077536 2012-01-26] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [273544 2011-03-18] (RealNetworks, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Secure Search\vprot.exe [2503704 2015-03-07] ()
HKLM-x32\...\Run: [ROC_roc_dec12] => C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe [928096 2012-01-23] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2012-02-03] (PC Tools)
HKLM-x32\...\Run: [RMAlert] => C:\Program Files (x86)\PC Tools Registry Mechanic\Alert.exe [1018328 2012-02-03] (PC Tools)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-09-10] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-01-29] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-12] ()
HKLM-x32\...\Run: [OtShot] => "C:\Program Files (x86)\OtShot\otshot.exe" -minimize
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2010-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [821144 2010-10-25] (Adobe Systems Inc.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992 2015-03-03] (IObit)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1949592 2015-02-14] (APN)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-20] (Microsoft Corporation)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [CrossRiderPlugin] => C:\Program Files (x86)\CrossriderWebApps\Crossrider.exe
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [MobileDocuments] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [uTorrent] => C:\Users\Bacon\AppData\Roaming\uTorrent\uTorrent.exe [1740880 2015-03-04] (BitTorrent Inc.)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe [2596128 2015-01-19] (IObit)
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\MountPoints2: {414bf130-197c-11e1-98cf-00256445da3e} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\...\MountPoints2: {69678e33-39e9-11e3-9061-00256445da3e} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
AppInit_DLLs: avgrssta.dll => C:\Windows\system32\avgrssta.dll [13048 2010-11-05] (AVG Technologies CZ, s.r.o.)
Startup: C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Bacon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Bacon\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
HKU\S-1-5-21-2161908713-1495559121-432498985-1000\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.dell.com
URLSearchHook: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 - (No Name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No File
SearchScopes: HKLM-x32 -> DefaultScope {2DEA28A1-1C4F-43C5-BB01-4488C8B53684} URL = 
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...&ctid=CT2786678
SearchScopes: HKLM-x32 -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search...p={searchTerms}
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> DefaultScope {E23352D4-63F8-452B-9A98-85714E08C656} URL = http://www.google.co...age={startPage}
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> {2DEA28A1-1C4F-43C5-BB01-4488C8B53684} URL = http://search.condui...7524674965&UM=2
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> {5FD9C0D8-ECBA-4BA6-AF01-447D3DD26D05} URL = https://search.yahoo...p={searchTerms}
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> {7ABD5EFD-88A6-E9CE-80AE-DBCA8C52F41C} URL = http://www.bing.com/...eferrer:source}
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.c...pa&d=2011-12-1213:10:58&v=14.2.0.1&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> {E23352D4-63F8-452B-9A98-85714E08C656} URL = http://www.google.co...age={startPage}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-03-11] (IObit)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssiea.dll [2010-11-25] (AVG Technologies CZ, s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-10-25] (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-02-07] (DivX, LLC)
BHO-x32: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssie.dll [2010-11-25] (AVG Technologies CZ, s.r.o.)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Secure Search\18.3.0.885\AVG Secure Search_toolbar.dll [2015-03-07] (AVG Secure Search)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2014-10-17] (IObit)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.3.0.885\AVG Secure Search_toolbar.dll [2015-03-07] (AVG Secure Search)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKU\S-1-5-21-2161908713-1495559121-432498985-1000 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll [2010-11-05] (AVG Technologies CZ, s.r.o.)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll [2010-11-05] (AVG Technologies CZ, s.r.o.)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.3.0\ViProtocol.dll [2015-03-07] (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: DuckDuckGo
FF SearchEngineOrder.1: 
FF SearchEngineOrder.1,S: 
FF SelectedSearchEngine,S: 
FF Homepage: hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN11408&pf=V7&trgb=FF&p2=%5EBBG%5EOSJ000%5EYY%5EUS&gct=hp&apn_ptnrs=BBG&apn_dtid=%5EOSJ000%5EYY%5EUS&apn_dbr=ff_36.0.4.5557&apn_uid=779BC23A-B7E2-4E5A-AE04-69884457D476&itbv=12.24.1.51&doi=2015-03-22&psv=&pt=tb
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-06] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-08-08] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.3.0\\npsitesafety.dll No File
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2013-02-07] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-06-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=12.0.1.633 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=12.0.1.633 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=12.0.1.633 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=12.0.1.633 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\user.js [2015-03-22]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPMyrMus.dll [2013-03-05] (Myriad Software.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2010-10-25] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2012-11-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpjplug.dll [2011-03-18] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\ask-search.xml [2015-03-22]
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\duckduckgo.xml [2014-10-31]
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\firefox-add-ons.xml [2014-10-31]
FF SearchPlugin: C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\searchplugins\google-default.xml [2014-10-31]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml [2015-03-07]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\[email protected] [2015-03-11]
FF Extension: Ghostery - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\[email protected] [2014-10-31]
FF Extension: Search App by Ask - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\[email protected] [2015-02-14]
FF Extension: Adblock Plus - C:\Users\Bacon\AppData\Roaming\Mozilla\Firefox\Profiles\im210i5h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-03-31]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-24]
FF HKLM-x32\...\Firefox\Extensions: [{3f963a5b-e555-4543-90e2-c3908898db71}] - C:\Program Files (x86)\AVG\AVG9\Firefox
FF Extension: AVG Safe Search - C:\Program Files (x86)\AVG\AVG9\Firefox [2010-05-12]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-03-18]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.3.0.885
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\18.3.0.885 [2015-03-07]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2013-05-28]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-03-19]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-10-29]
 
Chrome: 
=======
CHR Profile: C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2013-08-21]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (AVG Security Toolbar) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-08-21]
CHR Extension: (Google Wallet) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Bacon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-08-21]
CHR HKLM-x32\...\Chrome\Extension: [${CHROME_KEY}] - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.3.27\incredibar.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [fekoicefnpiplpdpholnkekijeaodnjm] - C:\ProgramData\Vaudix\fekoicefnpiplpdpholnkekijeaodnjm.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2011-03-18]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\18.1.0.443\avg.crx [2014-05-04]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-02-07]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe [911648 2014-11-22] (IObit)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [177560 2015-01-30] (APN LLC.)
R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe [658720 2014-12-29] (IOBit)
S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG9\Toolbar\ToolbarBroker.exe [167264 2011-11-10] ()
R2 avg9emc; C:\Program Files (x86)\AVG\AVG9\avgemc.exe [921952 2010-11-05] (AVG Technologies CZ, s.r.o.)
R2 avg9wd; C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe [308136 2010-11-05] (AVG Technologies CZ, s.r.o.)
R2 avgfws9; C:\Program Files (x86)\AVG\AVG9\avgfws9.exe [2331544 2010-11-25] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [5897808 2010-11-05] (AVG Technologies CZ, s.r.o.)
R2 hasplms; C:\Windows\system32\hasplms.exe [4889032 2011-12-30] (SafeNet Inc.)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864 2015-01-27] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-16] (IObit)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2012-02-03] (PC Tools)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 vToolbarUpdater18.3.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe [1802776 2015-03-07] (AVG Secure Search)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-20] (Microsoft Corporation)
R2 wltrysvc; C:\Windows\System32\bcmwltry.exe [3051520 2008-12-22] (Dell Inc.) [File not signed]
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [29976 2010-05-12] (AVG Technologies CZ, s.r.o.)
R3 AVGIDSDrivervta; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista64\AVGIDSDriver.sys [132688 2010-11-05] (AVG Technologies CZ, s.r.o. )
R0 AVGIDSErHrvta; C:\Windows\System32\Drivers\AVGIDSva.sys [27216 2010-11-05] (AVG Technologies CZ, s.r.o. )
R3 AVGIDSFiltervta; C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista64\AVGIDSFilter.sys [35920 2010-11-05] (AVG Technologies CZ, s.r.o. )
R1 AvgLdx64; C:\Windows\System32\Drivers\avgldx64.sys [269904 2010-11-05] (AVG Technologies CZ, s.r.o.)
R1 AvgMfx64; C:\Windows\System32\Drivers\avgmfx64.sys [35664 2011-09-13] (AVG Technologies CZ, s.r.o.)
R0 AvgRkx64; C:\Windows\System32\Drivers\avgrkx64.sys [56008 2010-11-05] (AVG Technologies CZ, s.r.o.)
R1 AvgTdiA; C:\Windows\System32\Drivers\avgtdia.sys [317520 2011-05-05] (AVG Technologies CZ, s.r.o.)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_amd64\FileMonitor.sys [23048 2014-11-10] (IObit)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [321536 2011-09-28] (SafeNet Inc.)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\wlh_amd64\regfilter.sys [34848 2014-11-10] (IObit.com)
S3 RRNetCap; C:\Windows\System32\DRIVERS\rrnetcap.sys [37480 2011-09-09] (RapidSolution Software AG)
R3 RRNetCapMP; C:\Windows\System32\DRIVERS\rrnetcap.sys [37480 2011-09-09] (RapidSolution Software AG)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2015-03-22] ()
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\wlh_amd64\UrlFilter.sys [23016 2014-11-10] (IObit.com)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-22 19:31 - 2015-03-22 19:31 - 00034428 _____ () C:\Users\Bacon\Downloads\FRST.txt
2015-03-22 19:29 - 2015-03-22 19:29 - 02095616 _____ (Farbar) C:\Users\Bacon\Desktop\FRST64 (1).exe
2015-03-22 19:18 - 2015-03-22 19:18 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\Bacon\Downloads\tdsskiller (1).exe
2015-03-22 18:44 - 2015-03-22 18:58 - 00000000 ____D () C:\Users\Bacon\AppData\Local\CrashDumps
2015-03-22 18:40 - 2015-03-22 18:40 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-03-22 18:40 - 2015-03-22 18:40 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-03-22 18:39 - 2015-03-22 18:39 - 00000798 _____ () C:\Users\Public\Desktop\RogueKiller.lnk
2015-03-22 18:39 - 2015-03-22 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2015-03-22 18:39 - 2015-03-22 18:39 - 00000000 ____D () C:\Program Files\RogueKiller
2015-03-22 18:38 - 2015-03-22 18:39 - 18477496 _____ (Adlice Software ) C:\Users\Bacon\Downloads\setup.exe
2015-03-22 18:29 - 2015-03-22 18:29 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4 (3).exe
2015-03-22 17:38 - 2015-03-22 17:38 - 00000000 ____D () C:\Users\Bacon\AppData\Local\AskPartnerNetwork
2015-03-22 17:38 - 2015-03-22 17:38 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2015-03-22 17:38 - 2015-03-22 17:38 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2015-03-22 17:37 - 2015-03-22 17:37 - 00000000 ____D () C:\ProgramData\APN
2015-03-22 17:37 - 2015-03-22 17:34 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-03-22 17:37 - 2013-06-22 10:46 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2015-03-22 17:37 - 2013-06-22 10:46 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2015-03-22 17:34 - 2015-03-22 17:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-22 17:33 - 2015-03-22 17:33 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-22 17:32 - 2015-03-22 17:32 - 00561064 _____ (Oracle Corporation) C:\Users\Bacon\Downloads\chromeinstall-8u40.exe
2015-03-22 17:31 - 2015-03-22 18:31 - 00000890 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-22 17:30 - 2015-03-22 18:31 - 00000902 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-22 17:27 - 2015-03-22 17:28 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4 (2).exe
2015-03-22 17:27 - 2015-03-22 17:28 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4 (1).exe
2015-03-22 16:24 - 2015-03-22 16:25 - 00243448 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.4.exe
2015-03-22 15:52 - 2015-03-22 15:52 - 00002868 _____ () C:\Windows\System32\Tasks\ASCU8_SkipUac_Bacon
2015-03-14 16:37 - 2015-03-14 16:37 - 00000000 _____ () C:\autoexec.bat
2015-03-14 16:25 - 2015-03-14 16:26 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Bacon\Downloads\SpyHunter-Installer.exe
2015-03-14 16:07 - 2015-03-14 16:07 - 00002886 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Bacon
2015-03-14 16:03 - 2015-03-22 19:31 - 00000000 ____D () C:\FRST
2015-03-14 15:57 - 2015-03-14 15:57 - 02095616 _____ (Farbar) C:\Users\Bacon\Downloads\FRST64.exe
2015-03-13 03:28 - 2015-02-19 22:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-13 03:28 - 2015-02-19 21:44 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-13 03:28 - 2015-02-19 20:39 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-13 03:28 - 2015-02-19 20:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-13 03:25 - 2015-01-28 21:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-13 03:25 - 2015-01-28 21:33 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-13 03:25 - 2014-10-12 21:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-03-13 03:25 - 2014-10-12 20:56 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-13 03:24 - 2015-01-20 22:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-13 03:24 - 2015-01-20 21:42 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-13 03:23 - 2015-02-25 20:31 - 02792960 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-13 03:23 - 2015-02-17 22:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-13 03:23 - 2015-02-17 21:42 - 12899840 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-13 03:05 - 2015-01-28 21:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-13 03:05 - 2015-01-28 21:33 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-13 03:04 - 2015-02-25 21:40 - 04692408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-13 03:04 - 2015-01-08 21:41 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-13 03:04 - 2015-01-08 20:29 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-13 03:03 - 2015-03-06 00:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-13 03:03 - 2015-03-05 23:35 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-12 16:31 - 2015-02-21 15:17 - 17882624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-12 16:31 - 2015-02-21 15:07 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-12 16:31 - 2015-02-21 15:02 - 10931200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-12 16:31 - 2015-02-21 15:00 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-12 16:31 - 2015-02-21 14:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-12 16:31 - 2015-02-21 14:54 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-12 16:31 - 2015-02-21 14:53 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-12 16:31 - 2015-02-21 14:52 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-12 16:31 - 2015-02-21 14:52 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-12 16:31 - 2015-02-21 14:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-12 16:31 - 2015-02-21 14:51 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-12 16:31 - 2015-02-21 14:50 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-12 16:31 - 2015-02-21 14:50 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-12 16:31 - 2015-02-21 14:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-12 16:31 - 2015-02-21 14:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-12 16:31 - 2015-02-21 13:37 - 12375040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-12 16:31 - 2015-02-21 13:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-03-12 16:31 - 2015-02-21 13:29 - 09747968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-12 16:31 - 2015-02-21 13:28 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-12 16:31 - 2015-02-21 13:22 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-12 16:31 - 2015-02-21 13:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-12 16:31 - 2015-02-21 13:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-12 16:31 - 2015-02-21 13:20 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-03-12 16:31 - 2015-02-21 13:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 01803264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-12 16:31 - 2015-02-21 13:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-12 16:31 - 2015-02-21 13:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-12 16:31 - 2015-02-21 13:18 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-03-12 16:31 - 2015-02-21 13:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-03-12 16:31 - 2015-02-21 13:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-03-12 16:31 - 2015-02-21 13:17 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-12 12:20 - 2015-03-22 17:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-12 12:19 - 2015-03-12 12:19 - 00243368 _____ () C:\Users\Bacon\Downloads\Firefox Setup Stub 36.0.1.exe
2015-03-12 11:14 - 2015-03-12 11:14 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\ProductData
2015-03-12 11:12 - 2015-03-12 11:12 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2015-03-11 20:48 - 2015-03-22 15:46 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-11 20:48 - 2015-03-11 20:48 - 00001065 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-03-11 20:48 - 2015-03-11 20:48 - 00000000 ____D () C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2015-03-11 20:48 - 2015-03-11 20:48 - 00000000 ____D () C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2015-03-11 20:47 - 2015-03-22 15:58 - 00002099 _____ () C:\Users\Public\Desktop\Advanced SystemCare Ultimate 8.lnk
2015-03-11 20:47 - 2015-03-11 20:47 - 00001028 _____ () C:\Users\Bacon\Desktop\IObit Malware Fighter.lnk
2015-03-11 20:47 - 2015-03-11 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 8
2015-03-11 20:46 - 2015-03-14 16:07 - 00000000 ____D () C:\ProgramData\IObit
2015-03-11 20:46 - 2015-03-14 15:50 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\IObit
2015-03-11 20:46 - 2015-03-11 20:48 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-03-11 20:46 - 2015-03-11 20:46 - 00001010 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-03-11 20:46 - 2015-03-11 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-03-11 20:44 - 2015-03-11 20:45 - 32405776 _____ (IObit ) C:\Users\Bacon\Downloads\IObit-Malware-Fighter-Setup.exe
2015-03-11 19:25 - 2015-03-11 19:25 - 00000507 _____ () C:\Windows\wininit.ini
2015-03-08 20:11 - 2015-03-22 18:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-03 18:48 - 2015-03-03 18:48 - 03090942 _____ () C:\Users\Bacon\Desktop\action council.odp
2015-02-22 04:01 - 2014-12-07 21:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-22 04:01 - 2014-12-07 21:37 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-22 19:28 - 2006-11-02 11:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-22 19:28 - 2006-11-02 11:22 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-22 19:27 - 2011-08-13 00:01 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\uTorrent
2015-03-22 18:57 - 2014-06-12 14:05 - 00000000 ___RD () C:\Users\Bacon\Dropbox
2015-03-22 18:57 - 2014-06-12 14:02 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Dropbox
2015-03-22 18:56 - 2013-10-28 14:28 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2015-03-22 18:56 - 2011-03-02 22:30 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-22 18:54 - 2010-06-06 23:10 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-22 18:54 - 2008-01-20 23:26 - 00895098 _____ () C:\Windows\PFRO.log
2015-03-22 18:54 - 2006-11-02 11:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-22 18:53 - 2006-11-02 11:42 - 00032540 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-22 18:42 - 2012-08-18 11:55 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-22 18:11 - 2006-11-02 08:46 - 00759582 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-22 17:36 - 2010-05-19 18:48 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-22 16:49 - 2014-07-28 01:06 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-22 16:25 - 2010-05-11 11:06 - 01863378 _____ () C:\Windows\WindowsUpdate.log
2015-03-22 15:45 - 2010-05-11 19:02 - 00000000 ____D () C:\Users\Bacon
2015-03-15 00:01 - 2011-01-02 18:38 - 00000000 ____D () C:\ProgramData\TEMP
2015-03-14 16:16 - 2012-11-27 23:39 - 00000000 ____D () C:\ProgramData\Vaudix
2015-03-13 03:49 - 2006-11-02 11:21 - 04841104 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-13 03:23 - 2013-07-19 15:48 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-13 03:05 - 2006-11-02 08:35 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-03-12 16:56 - 2012-01-26 20:03 - 00002027 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-12 15:43 - 2014-10-22 10:54 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Search Protection
2015-03-12 11:21 - 2014-06-12 14:05 - 00000921 _____ () C:\Users\Bacon\Desktop\Dropbox.lnk
2015-03-12 11:21 - 2014-06-12 14:04 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-11 20:48 - 2011-10-29 13:29 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\Apple Computer
2015-03-11 20:35 - 2010-05-31 14:51 - 00024576 _____ () C:\Users\Bacon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-11 19:25 - 2013-07-07 17:09 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2015-03-11 18:02 - 2013-10-28 14:27 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-03-08 19:19 - 2010-11-16 18:29 - 00000498 ____H () C:\Windows\Tasks\Norton Security Scan for Bacon.job
2015-03-08 04:56 - 2010-05-13 19:01 - 00000346 _____ () C:\Windows\Tasks\File Helper.job
2015-03-07 00:18 - 2011-12-12 15:11 - 00000000 ____D () C:\Program Files (x86)\AVG Secure Search
2015-03-04 23:16 - 2014-10-22 10:53 - 00000759 _____ () C:\Users\Bacon\Desktop\µTorrent.lnk
2015-03-04 23:16 - 2014-10-22 10:53 - 00000739 _____ () C:\Users\Bacon\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-03-03 19:53 - 2006-11-02 11:27 - 00302951 _____ () C:\Windows\setupact.log
2015-03-02 22:49 - 2013-02-04 19:30 - 00000000 ____D () C:\Users\Bacon\Desktop\Rising Tide
2015-03-01 01:30 - 2013-10-28 14:28 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2015-03-01 00:58 - 2014-10-29 18:48 - 00000000 ____D () C:\Users\Bacon\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
 
==================== Files in the root of some directories =======
 
2013-06-25 20:30 - 2014-06-23 22:11 - 0003728 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2013-12-19 19:36 - 2013-12-19 19:43 - 0566646 _____ () C:\Users\Bacon\AppData\Roaming\Scorch_Install.log
2012-04-14 00:59 - 2012-04-14 00:59 - 0024226 _____ () C:\Users\Bacon\AppData\Roaming\UserTile.png
2015-02-11 17:30 - 2015-02-11 17:30 - 0000000 ____H () C:\Users\Bacon\AppData\Local\BIT372A.tmp
2012-12-24 18:15 - 2012-12-24 18:15 - 0000680 _____ () C:\Users\Bacon\AppData\Local\d3d9caps.dat
2010-10-12 21:38 - 2010-10-14 21:48 - 0000732 _____ () C:\Users\Bacon\AppData\Local\d3d9caps64.dat
2010-05-31 14:51 - 2015-03-11 20:35 - 0024576 _____ () C:\Users\Bacon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-19 19:36 - 2013-12-19 19:36 - 0421004 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI3FC1.txt
2012-11-04 20:29 - 2012-11-04 20:29 - 0403666 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI4602.txt
2010-05-19 18:49 - 2010-05-19 18:50 - 0402140 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI496A.txt
2011-01-02 18:40 - 2011-01-02 18:40 - 0001848 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI5931.txt
2011-01-31 22:38 - 2011-01-31 22:38 - 0436214 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI693E.txt
2014-04-20 16:48 - 2014-04-20 16:48 - 0405658 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistMSI7B72.txt
2013-12-19 19:36 - 2013-12-19 19:36 - 0011478 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI3FC1.txt
2012-11-04 20:29 - 2012-11-04 20:29 - 0011156 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI4602.txt
2010-05-19 18:49 - 2010-05-19 18:50 - 0011450 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI496A.txt
2011-01-02 18:40 - 2011-01-02 18:40 - 0011484 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI5931.txt
2011-01-02 18:40 - 2011-01-02 18:40 - 0010650 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI5934.txt
2011-01-31 22:38 - 2011-01-31 22:38 - 0011396 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI693E.txt
2014-04-20 16:48 - 2014-04-20 16:48 - 0011188 _____ () C:\Users\Bacon\AppData\Local\dd_vcredistUI7B72.txt
2010-05-31 21:08 - 2012-12-20 23:07 - 0000000 _____ () C:\Users\Bacon\AppData\Local\prvlcl.dat
2011-10-19 07:49 - 2011-10-19 07:49 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{40FC284D-EF6A-4F61-B635-699B5AD18A8E}
2011-09-26 01:27 - 2011-09-26 01:27 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{590A6992-EE7C-4B48-B52B-74FE2A030FD0}
2011-08-24 08:53 - 2011-08-24 08:53 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{6F9A8ADE-A8B9-4F8A-BD2A-E88477C3F3D8}
2011-11-01 17:07 - 2011-11-01 17:07 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{91D2D89D-0286-42B5-9441-9625C46F0DFB}
2015-02-10 23:29 - 2015-02-10 23:29 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{923188D1-8195-4F17-99CE-013234F81B02}
2011-05-28 13:11 - 2011-05-28 13:11 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{CEA2D52C-5FA7-4DD3-86B8-C3E096455894}
2014-09-18 21:45 - 2014-09-18 21:45 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{E32EEF0B-40E8-42D3-AEF4-0AE62135D9B9}
2011-08-28 06:09 - 2011-08-28 06:09 - 0000000 _____ () C:\Users\Bacon\AppData\Local\{FA1C38C7-E098-4CB4-8F74-81DABD4F9D1C}
 
Some content of TEMP:
====================
C:\Users\Bacon\AppData\Local\Temp\APNSetup.exe
C:\Users\Bacon\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Bacon\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplzysdm.dll
C:\Users\Bacon\AppData\Local\Temp\MSN789E.exe
C:\Users\Bacon\AppData\Local\Temp\SearchProtectionSetup.exe
C:\Users\Bacon\AppData\Local\Temp\uttBCCC.tmp.exe
C:\Users\Bacon\AppData\Local\Temp\VOPackage.exe
C:\Users\Bacon\AppData\Local\Temp\wrapper_vuupc.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-03-22 19:02
 
==================== End Of Log ============================

Edited by nicklepickle, 22 March 2015 - 05:36 PM.

  • 0

Advertisements

#2
BrianDrab
Posted 26 March 2015 - 05:13 PM

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,591 posts

Hi and welcome to G2G. Sorry for the delay. If you are still in need of assistance please let me know.


  • 0

#3
BrianDrab
Posted 31 March 2015 - 04:51 PM

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,591 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP