Jump to content

sio2ga

Members
 View Profile  See their activity

  • Posts

    10

  • Joined

  • Last visited

 Content Type 

Everything posted by sio2ga

  1. sio2ga
    Hey, this seems to straighten out all my problems! Thanks much for your help! I sent you a small tip via paypal the other day and I hope everyone that you help does the same. Thanks again! Rodney
  2. sio2ga
    Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:41:02 AM, on 8/11/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16611) Boot mode: Normal Running processes: C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe C:\Users\Rodney\Desktop\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" O8 - Extra context menu item: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm O8 - Extra context menu item: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB O17 - HKLM\System\CCS\Services\Tcpip\..\{C52A2B3B-3BEE-4A3A-BCCB-59A52CA01F26}: NameServer = 208.67.222.222,208.67.220.220 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: CyberLink Product - 2011/07/20 15:22:39 (CLKMSVC10_38F51D56) - CyberLink - c:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\mcafee\msc\mcawfwk.exe O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: Tether - Unknown owner - C:\Program Files (x86)\Tether\TBService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- End of file - 12696 bytes
  3. sio2ga
    I ran cc cleaner and then mbam . I will run hijack this next. for now, here is the mbam log Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Database version: v2013.08.11.01 Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16618Rodney :: H81050 [administrator] 8/11/2013 12:06:44 AMmbam-log-2013-08-11 (00-06-44).txt Scan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 220426Time elapsed: 7 minute(s), 27 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) (end)
  4. sio2ga
    Slight problem that i noticed, outlook email has a send recieve error and i keep getting a password prompt to click okay . This problem has come and gone before but i havent noticed it for months but its back and every 5 minutes even though i check the box to save the password, which is already prefilled and hasnt recently changed. Pretty annoying as I run a business and use outlook for my email. This prob may or may not be coming from all the changes that have been made using the tools. As always, thanks for your help ran that as suggested , report : ComboFix 13-08-04.01 - Rodney 08/10/2013 21:32:12.2.8 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.10220.7456 [GMT -4:00]Running from: c:\users\Rodney\Downloads\ComboFix.exeCommand switches used :: c:\users\Rodney\Desktop\CFScript.txtAV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..((((((((((((((((((((((((( Files Created from 2013-07-11 to 2013-08-11 )))))))))))))))))))))))))))))))..2013-08-11 01:40 . 2013-08-11 01:40 -------- d-----w- c:\users\Default\AppData\Local\temp2013-08-09 08:57 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{61076263-C788-4EA0-8253-C4F0AD54C336}\mpengine.dll2013-08-05 07:03 . 2012-05-28 14:28 197264 ----a-w- c:\windows\system32\drivers\HipShieldK.sys2013-08-04 04:11 . 2013-08-04 04:11 -------- d-----w- c:\windows\ERUNT2013-07-29 04:31 . 2013-07-29 04:31 -------- d-----w- c:\users\Rodney\AppData\Roaming\DigitalSite2013-07-29 04:31 . 2013-07-29 04:31 -------- d-----w- c:\program files (x86)\OpenIt2013-07-12 23:21 . 2013-07-12 23:21 -------- d-----w- c:\program files (x86)\DeLorme...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2013-07-12 22:45 . 2012-04-08 02:01 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2013-07-12 22:45 . 2011-10-26 11:18 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-06-28 14:48 . 2013-06-28 14:49 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll2013-06-28 14:48 . 2012-09-05 14:58 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll2013-06-28 14:48 . 2011-10-19 13:24 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll2013-06-08 14:08 . 2013-06-20 22:16 1365504 ----a-w- c:\windows\system32\urlmon.dll2013-06-08 14:07 . 2013-06-20 22:16 19233792 ----a-w- c:\windows\system32\mshtml.dll2013-06-08 14:06 . 2013-06-20 22:16 2648064 ----a-w- c:\windows\system32\iertutil.dll2013-06-08 14:06 . 2013-06-20 22:16 526336 ----a-w- c:\windows\system32\ieui.dll2013-06-08 14:06 . 2013-06-20 22:16 15404544 ----a-w- c:\windows\system32\ieframe.dll2013-06-08 12:28 . 2013-06-20 22:16 2706432 ----a-w- c:\windows\system32\mshtml.tlb2013-06-08 11:13 . 2013-06-20 22:16 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb2013-06-02 21:11 . 2011-10-19 00:34 75825640 ----a-w- c:\windows\system32\MRT.exe2013-05-19 01:50 . 2011-11-03 03:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll2013-05-17 01:25 . 2013-06-20 22:17 1767936 ----a-w- c:\windows\SysWow64\wininet.dll2013-05-17 01:25 . 2013-06-20 22:17 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll2013-05-17 01:25 . 2013-06-20 22:17 61440 ----a-w- c:\windows\SysWow64\iesetup.dll2013-05-17 01:25 . 2013-06-20 22:17 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll2013-05-17 00:59 . 2013-06-20 22:17 51712 ----a-w- c:\windows\system32\ie4uinit.exe2013-05-17 00:59 . 2013-06-20 22:17 2241024 ----a-w- c:\windows\system32\wininet.dll2013-05-17 00:58 . 2013-06-20 22:17 603136 ----a-w- c:\windows\system32\msfeeds.dll2013-05-17 00:58 . 2013-06-20 22:17 855552 ----a-w- c:\windows\system32\jscript.dll2013-05-17 00:58 . 2013-06-20 22:17 3958784 ----a-w- c:\windows\system32\jscript9.dll2013-05-17 00:58 . 2013-06-20 22:17 53248 ----a-w- c:\windows\system32\jsproxy.dll2013-05-17 00:58 . 2013-06-20 22:17 67072 ----a-w- c:\windows\system32\iesetup.dll2013-05-17 00:58 . 2013-06-20 22:17 39936 ----a-w- c:\windows\system32\iernonce.dll2013-05-17 00:58 . 2013-06-20 22:17 136704 ----a-w- c:\windows\system32\iesysprep.dll2013-05-14 12:23 . 2013-06-20 22:17 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe2013-05-14 08:40 . 2013-06-20 22:17 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe2013-05-13 05:51 . 2013-06-20 22:11 184320 ----a-w- c:\windows\system32\cryptsvc.dll2013-05-13 05:51 . 2013-06-20 22:11 1464320 ----a-w- c:\windows\system32\crypt32.dll2013-05-13 05:51 . 2013-06-20 22:11 139776 ----a-w- c:\windows\system32\cryptnet.dll2013-05-13 05:50 . 2013-06-20 22:11 52224 ----a-w- c:\windows\system32\certenc.dll2013-05-13 04:45 . 2013-06-20 22:11 1160192 ----a-w- c:\windows\SysWow64\crypt32.dll2013-05-13 04:45 . 2013-06-20 22:11 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll2013-05-13 04:45 . 2013-06-20 22:11 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll2013-05-13 03:43 . 2013-06-20 22:11 1192448 ----a-w- c:\windows\system32\certutil.exe2013-05-13 03:08 . 2013-06-20 22:11 903168 ----a-w- c:\windows\SysWow64\certutil.exe2013-05-13 03:08 . 2013-06-20 22:11 43008 ----a-w- c:\windows\SysWow64\certenc.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2010-12-09 393216].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2013-05-08 44128]"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2013-05-08 642664]"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-05-08 536488]"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-05-08 536488]"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-12-19 642808]"LaunchHPOSIAPP"="c:\program files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe" [2009-04-04 385024]"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2013-06-19 5524336]"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0).[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]@="".[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]@="".R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys;c:\windows\SYSNATIVE\drivers\SBREdrv.sys [x]R2 CLKMSVC10_38F51D56;CyberLink Product - 2011/07/20 15:22;c:\program files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe;c:\program files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R2 Tether;Tether;c:\program files (x86)\Tether\TBService.exe;c:\program files (x86)\Tether\TBService.exe [x]R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x]R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe;c:\progra~1\mcafee\msc\mcawfwk.exe [x]R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys;c:\windows\SYSNATIVE\DRIVERS\mfencrk.sys [x]R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]R3 qrkis;Tether Miniport;c:\windows\system32\DRIVERS\qrkis.sys;c:\windows\SYSNATIVE\DRIVERS\qrkis.sys [x]R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]S2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;c:\program files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [x]S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x]S2 McAPExe;McAfee AP Service;c:\program files\McAfee\MSC\McAPExe.exe;c:\program files\McAfee\MSC\McAPExe.exe [x]S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x]S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [x]S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [x]S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]S3 HCW723x;Hauppauge WinTV 723x PCIe Card;c:\windows\system32\DRIVERS\HCW723x.sys;c:\windows\SYSNATIVE\DRIVERS\HCW723x.sys [x]S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys;c:\windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x]S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys;c:\windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x]S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys;c:\windows\SYSNATIVE\DRIVERS\mfencbdc.sys [x]S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]S3 tihub3;TI USB3 Hub Service;c:\windows\system32\DRIVERS\tihub3.sys;c:\windows\SYSNATIVE\DRIVERS\tihub3.sys [x]S3 tixhci;TI XHCI Service;c:\windows\system32\DRIVERS\tixhci.sys;c:\windows\SYSNATIVE\DRIVERS\tixhci.sys [x]S3 WsAudio_Device;WsAudio_Device;c:\windows\system32\drivers\VirtualAudio.sys;c:\windows\SYSNATIVE\drivers\VirtualAudio.sys [x]..--- Other Services/Drivers In Memory ---.*Deregistered* - CLKMDRV10_38F51D56.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2013-07-31 20:17 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe.Contents of the 'Scheduled Tasks' folder.2013-08-10 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 22:45].2013-08-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-01 02:35].2013-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-01 02:35].2013-07-12 c:\windows\Tasks\HPCeeScheduleForRodney.job- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2010-10-21 37888]"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768]"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-06-16 499608]"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-04-25 1425408].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmIE: Open Client to monitor &1 - c:\windows\web\AOpenClient.htmIE: Open Client to monitor &2 - c:\windows\web\AOpenClient.htmTrusted Zone: pb.com\ibdswebp11-extTCP: DhcpNameServer = 192.168.0.1TCP: Interfaces\{C52A2B3B-3BEE-4A3A-BCCB-59A52CA01F26}: NameServer = 208.67.222.222,208.67.220.220FF - ProfilePath - c:\users\Rodney\AppData\Roaming\Mozilla\Firefox\Profiles\0fqg6qkd.default\FF - prefs.js: browser.startup.homepage - FF - prefs.js: network.proxy.type - 0FF - ExtSQL: !HIDDEN! 2012-09-07 21:43; {8D150B8F-EFE8-45a3-A4A3-053020F48FAC}; c:\program files (x86)\Wondershare\Video Converter Ultimate\SVRFirefoxExt.- - - - ORPHANS REMOVED - - - -.Wow6432Node-HKLM-Run-<NO NAME> - (no file)ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)AddRemove-Wondershare Video Converter Ultimate_is1 - c:\program files (x86)\Wondershare\Video Converter Ultimate\unins000.exeAddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe...--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe".[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="IFlashBroker5".[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.11".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="IFlashBroker5".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\software\McAfee]"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\.[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]@Denied: (A) (Everyone)"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}".[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]@Denied: (A) (Everyone).[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]"Key"="ActionsPane3""Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd".[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).Completion time: 2013-08-10 21:42:32ComboFix-quarantined-files.txt 2013-08-11 01:42ComboFix2.txt 2013-08-04 12:38.Pre-Run: 1,206,525,644,800 bytes freePost-Run: 1,206,436,814,848 bytes free.- - End Of File - - 8CCE1748F73138C13F36DA83EA3BB30ED41D8CD98F00B204E9800998ECF8427E
  5. sio2ga
    hey, that straightened out the favorites/bookmarks so they work now. no pop-ups from sponsorship the whole day either (-: THANKS
  6. sio2ga
    Note about above post: It seems like I have a slight problem: none of my book marks for Internet explore work now. Also, IE is acting erratic. Please advise what I should do to get my bookmarks to work again. Google Chrome works fine. I use IE a lot because I sell on ebay and a lot of the listing tools and image hosting tools and web editors do not work with GC so I have to use internet explorer. Thanks~
  7. sio2ga
    Hi There Gringo, I ran combofix with no problems. So far the computer continues to run okay but as mentioned previously, it may be a day or so before I can say that the sponsorship pop-ups are gone. Thanks for your help!! Here is the combofix logs. ComboFix 13-08-04.01 - Rodney 08/04/2013 8:31.1.8 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.10220.7407 [GMT -4:00] Running from: c:\users\Rodney\Downloads\ComboFix.exe AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892} FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9} SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Created a new restore point . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\Install.exe . . ((((((((((((((((((((((((( Files Created from 2013-07-04 to 2013-08-04 ))))))))))))))))))))))))))))))) . . 2013-08-04 12:36 . 2013-08-04 12:36 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-08-04 04:14 . 2013-08-04 04:14 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{90C5B00D-5C65-4D71-8D07-3BEED14B177F}\offreg.dll 2013-08-04 04:11 . 2013-08-04 04:11 -------- d-----w- c:\windows\ERUNT 2013-08-02 06:13 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{90C5B00D-5C65-4D71-8D07-3BEED14B177F}\mpengine.dll 2013-07-29 04:31 . 2013-07-29 04:31 -------- d-----w- c:\users\Rodney\AppData\Roaming\DigitalSite 2013-07-29 04:31 . 2013-07-29 04:31 -------- d-----w- c:\program files (x86)\OpenIt 2013-07-12 23:21 . 2013-07-12 23:21 -------- d-----w- c:\program files (x86)\DeLorme . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-07-12 22:45 . 2012-04-08 02:01 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-07-12 22:45 . 2011-10-26 11:18 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-06-28 14:48 . 2013-06-28 14:49 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-06-28 14:48 . 2012-09-05 14:58 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-06-28 14:48 . 2011-10-19 13:24 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-06-08 14:08 . 2013-06-20 22:16 1365504 ----a-w- c:\windows\system32\urlmon.dll 2013-06-08 14:07 . 2013-06-20 22:16 19233792 ----a-w- c:\windows\system32\mshtml.dll 2013-06-08 14:06 . 2013-06-20 22:16 2648064 ----a-w- c:\windows\system32\iertutil.dll 2013-06-08 14:06 . 2013-06-20 22:16 526336 ----a-w- c:\windows\system32\ieui.dll 2013-06-08 14:06 . 2013-06-20 22:16 15404544 ----a-w- c:\windows\system32\ieframe.dll 2013-06-08 12:28 . 2013-06-20 22:16 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-06-08 11:13 . 2013-06-20 22:16 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-06-02 21:11 . 2011-10-19 00:34 75825640 ----a-w- c:\windows\system32\MRT.exe 2013-05-19 01:50 . 2011-11-03 03:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-05-17 01:25 . 2013-06-20 22:17 1767936 ----a-w- c:\windows\SysWow64\wininet.dll 2013-05-17 01:25 . 2013-06-20 22:17 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll 2013-05-17 01:25 . 2013-06-20 22:17 61440 ----a-w- c:\windows\SysWow64\iesetup.dll 2013-05-17 01:25 . 2013-06-20 22:17 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll 2013-05-17 00:59 . 2013-06-20 22:17 51712 ----a-w- c:\windows\system32\ie4uinit.exe 2013-05-17 00:59 . 2013-06-20 22:17 2241024 ----a-w- c:\windows\system32\wininet.dll 2013-05-17 00:58 . 2013-06-20 22:17 603136 ----a-w- c:\windows\system32\msfeeds.dll 2013-05-17 00:58 . 2013-06-20 22:17 855552 ----a-w- c:\windows\system32\jscript.dll 2013-05-17 00:58 . 2013-06-20 22:17 3958784 ----a-w- c:\windows\system32\jscript9.dll 2013-05-17 00:58 . 2013-06-20 22:17 53248 ----a-w- c:\windows\system32\jsproxy.dll 2013-05-17 00:58 . 2013-06-20 22:17 67072 ----a-w- c:\windows\system32\iesetup.dll 2013-05-17 00:58 . 2013-06-20 22:17 39936 ----a-w- c:\windows\system32\iernonce.dll 2013-05-17 00:58 . 2013-06-20 22:17 136704 ----a-w- c:\windows\system32\iesysprep.dll 2013-05-14 12:23 . 2013-06-20 22:17 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2013-05-14 08:40 . 2013-06-20 22:17 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2013-05-13 05:51 . 2013-06-20 22:11 184320 ----a-w- c:\windows\system32\cryptsvc.dll 2013-05-13 05:51 . 2013-06-20 22:11 1464320 ----a-w- c:\windows\system32\crypt32.dll 2013-05-13 05:51 . 2013-06-20 22:11 139776 ----a-w- c:\windows\system32\cryptnet.dll 2013-05-13 05:50 . 2013-06-20 22:11 52224 ----a-w- c:\windows\system32\certenc.dll 2013-05-13 04:45 . 2013-06-20 22:11 1160192 ----a-w- c:\windows\SysWow64\crypt32.dll 2013-05-13 04:45 . 2013-06-20 22:11 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll 2013-05-13 04:45 . 2013-06-20 22:11 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll 2013-05-13 03:43 . 2013-06-20 22:11 1192448 ----a-w- c:\windows\system32\certutil.exe 2013-05-13 03:08 . 2013-06-20 22:11 903168 ----a-w- c:\windows\SysWow64\certutil.exe 2013-05-13 03:08 . 2013-06-20 22:11 43008 ----a-w- c:\windows\SysWow64\certenc.dll 2013-05-10 05:49 . 2013-06-20 22:12 30720 ----a-w- c:\windows\system32\cryptdlg.dll 2013-05-10 03:20 . 2013-06-20 22:12 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll 2013-05-08 06:39 . 2013-06-20 22:13 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2010-12-09 393216] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2013-05-08 44128] "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2013-05-08 642664] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-02-28 454600] "mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-02-28 454600] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-12-19 642808] "LaunchHPOSIAPP"="c:\program files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe" [2009-04-04 385024] "WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2013-06-19 5524336] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] @="" . R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys;c:\windows\SYSNATIVE\drivers\SBREdrv.sys [x] R2 CLKMSVC10_38F51D56;CyberLink Product - 2011/07/20 15:22;c:\program files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe;c:\program files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R2 Tether;Tether;c:\program files (x86)\Tether\TBService.exe;c:\program files (x86)\Tether\TBService.exe [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x] R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys;c:\windows\SYSNATIVE\drivers\HipShieldK.sys [x] R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe;c:\progra~1\mcafee\msc\mcawfwk.exe [x] R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys;c:\windows\SYSNATIVE\DRIVERS\mfencrk.sys [x] R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x] R3 qrkis;Tether Miniport;c:\windows\system32\DRIVERS\qrkis.sys;c:\windows\SYSNATIVE\DRIVERS\qrkis.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x] R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x] S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x] S2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;c:\program files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [x] S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x] S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x] S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x] S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x] S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x] S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x] S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [x] S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [x] S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x] S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x] S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x] S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x] S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [x] S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x] S3 HCW723x;Hauppauge WinTV 723x PCIe Card;c:\windows\system32\DRIVERS\HCW723x.sys;c:\windows\SYSNATIVE\DRIVERS\HCW723x.sys [x] S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys;c:\windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x] S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys;c:\windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x] S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x] S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys;c:\windows\SYSNATIVE\DRIVERS\mfencbdc.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x] S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x] S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x] S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x] S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x] S3 tihub3;TI USB3 Hub Service;c:\windows\system32\DRIVERS\tihub3.sys;c:\windows\SYSNATIVE\DRIVERS\tihub3.sys [x] S3 tixhci;TI XHCI Service;c:\windows\system32\DRIVERS\tixhci.sys;c:\windows\SYSNATIVE\DRIVERS\tixhci.sys [x] S3 WsAudio_Device;WsAudio_Device;c:\windows\system32\drivers\VirtualAudio.sys;c:\windows\SYSNATIVE\drivers\VirtualAudio.sys [x] . . --- Other Services/Drivers In Memory --- . *Deregistered* - CLKMDRV10_38F51D56 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-07-31 20:17 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe . Contents of the 'Scheduled Tasks' folder . 2013-08-04 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 22:45] . 2013-08-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-01 02:35] . 2013-08-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-01 02:35] . 2013-07-12 c:\windows\Tasks\HPCeeScheduleForRodney.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2010-10-21 37888] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768] "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-06-16 499608] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-04-25 1425408] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Append to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert Link Target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Open Client to monitor &1 - c:\windows\web\AOpenClient.htm IE: Open Client to monitor &2 - c:\windows\web\AOpenClient.htm IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 Trusted Zone: pb.com\ibdswebp11-ext TCP: DhcpNameServer = 192.168.0.1 TCP: Interfaces\{C52A2B3B-3BEE-4A3A-BCCB-59A52CA01F26}: NameServer = 208.67.222.222,208.67.220.220 FF - ProfilePath - c:\users\Rodney\AppData\Roaming\Mozilla\Firefox\Profiles\0fqg6qkd.default\ FF - prefs.js: browser.startup.homepage - FF - prefs.js: network.proxy.type - 0 FF - ExtSQL: !HIDDEN! 2012-09-07 21:43; {8D150B8F-EFE8-45a3-A4A3-053020F48FAC}; c:\program files (x86)\Wondershare\Video Converter Ultimate\SVRFirefoxExt . - - - - ORPHANS REMOVED - - - - . Wow6432Node-HKLM-Run-<NO NAME> - (no file) HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file) ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file) ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file) ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file) AddRemove-Wondershare Video Converter Ultimate_is1 - c:\program files (x86)\Wondershare\Video Converter Ultimate\unins000.exe AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2013-08-04 08:38:28 ComboFix-quarantined-files.txt 2013-08-04 12:38 . Pre-Run: 1,222,175,174,656 bytes free Post-Run: 1,222,185,312,256 bytes free . - - End Of File - - 04C3D98B70FFF60206DF1D1193EF18A9 D41D8CD98F00B204E9800998ECF8427E
  8. sio2ga
    I just ran the junkware removal tool. so far the computer is running normally, but that doesn't mean it is fixed because I would only get the sponsorship pop-up once a day so it is too early to say it is gone. I can report back in a day or two to let you know If the issue appears to be resolved. Looking at the two reports it seems that JZIP is the culprit - is that correct? It also looks like there may be other things as well - what do you think? It removed some ebay stuff that I need and can replace and it removed some wondershare stuff that I need and can also easily replace. - thanks for your help as it is appreciated! report form JRT: Junkware Removal Tool (JRT) by Thisisu Version: 5.3.1 (08.02.2013:3) OS: Windows 7 Home Premium x64 Ran by Rodney on Sun 08/04/2013 at 0:11:18.76 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin.1 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{FCBCD63C-6AAF-4027-A6E5-849D6BDFDB58} ~~~ Files Successfully deleted: [File] C:\eula.1028.txt Successfully deleted: [File] C:\eula.1031.txt Successfully deleted: [File] C:\eula.1033.txt Successfully deleted: [File] C:\eula.1036.txt Successfully deleted: [File] C:\eula.1040.txt Successfully deleted: [File] C:\eula.1041.txt Successfully deleted: [File] C:\eula.1042.txt Successfully deleted: [File] C:\eula.2052.txt Successfully deleted: [File] C:\install.res.1028.dll Successfully deleted: [File] C:\install.res.1031.dll Successfully deleted: [File] C:\install.res.1033.dll Successfully deleted: [File] C:\install.res.1036.dll Successfully deleted: [File] C:\install.res.1040.dll Successfully deleted: [File] C:\install.res.1041.dll Successfully deleted: [File] C:\install.res.1042.dll Successfully deleted: [File] C:\install.res.2052.dll Successfully deleted: [File] C:\install.res.3082.dll Successfully deleted: [File] C:\Windows\syswow64\shoCABB.tmp Successfully deleted: [File] C:\Windows\syswow64\shoD564.tmp ~~~ Folders Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{019042F2-38BA-48CA-82D9-B0ED4B47ED2B} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{01A4FCD8-B7D8-490F-B50E-D66A09B5C4C2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{01F696C8-084E-421B-93B0-721F6C94E831} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0204A255-74D1-4241-BFCF-5748CB1481D4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{049291BB-5957-4987-9F12-04C5B6FA681A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{05601CC8-52D6-4EE8-8D3D-CB0E8D06C75D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{057B8E55-0C66-467D-A8FC-74EAE668B9C6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{05CC9727-0A6C-44F3-B47A-F3CDFA0CADE9} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{07D1972F-E851-4E36-9784-36250B297FA8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{080AEDCA-08B5-44B5-844C-741463E7F608} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{08C38D30-59A7-413A-99E2-F70ABA777493} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{08ED43D9-4039-4640-AF30-596C35ED3EC6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0C05C6C4-CDA7-4684-885A-31061AAB0A9C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0C6364A3-513D-4C06-A662-FC28F09CD919} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0C9E3067-59C7-46B8-9461-02E531C414CF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0D3C8817-BD87-43CB-8CD0-5F986992688E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0DC63A81-8369-44FB-B842-2E1DB921DBF3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0E674A6B-4730-43C3-A1F9-90CD135CFA27} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0F3D2AFC-E75B-4953-98F4-9C3C90FAA74C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{0F8DF3CC-2D74-4777-88B1-2863185930F1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{109E6FD0-26C3-4CCC-8599-47D30F25454F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{11275F9C-B0C9-4EF3-8D20-88C62FDAEEDD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{12E805FF-00F2-408D-9812-A5C4733DFE89} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{131F525A-C5D3-48D8-8983-69B58D28964F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1395ECA0-9D14-4365-82FE-3D13FA3955AB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{13BD6BDC-4BE5-494C-9AD5-496A3D955C69} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{14EBDED7-05F8-40CF-ABED-4C4637F4DE61} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{16C22C67-F768-44D2-9FD5-7A4F3EE68A37} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{17E56AE7-3A11-428F-9CA6-BB430101D546} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{187C493E-E403-4432-B6E1-E3E9F20AC67F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{192A0158-EC28-4C0E-861C-EC3643E577C6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1A79A0FE-3992-4384-A77D-528BC535CC11} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1A9DD40E-9532-4CCD-8742-8CD18C553E41} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1BEAC2B4-4DE6-429B-927E-1AD32AD2AFD8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1CA0CD5D-F4D1-46E8-A35D-66DE75ECB976} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1DAE4790-0744-44CB-BB02-630D7BD7C9E0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1E320870-EE83-49C3-B9D4-398282505A08} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1E7566A1-9F44-4C82-941E-5A05930C1C9B} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1F581A0E-8DE7-4143-B819-05AB78388D08} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1FAE53D7-374B-4E73-9890-867891ED4383} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{1FD2F6B9-6F9E-4F62-B906-DBC181CDA5D0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{20172916-FED2-4AE5-A82F-E95B81E0A793} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{20E3C479-2D90-4802-9F01-302850A45942} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{21AB8A34-0A49-4350-89E0-D75277085F51} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2239BD7A-140A-4326-A82F-0DE67E816426} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{22F8BF1C-D3D1-46AD-BA84-8805D4DBEBF4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{231638EE-C9FB-409A-B208-BC879D6C7C5D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{24E1FB18-EA7B-4068-99BD-026B5AB99E2A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{24F1D762-73F7-44AB-AEAF-4E01FBCDE469} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{24F8E0E4-EAFB-455B-BA35-63BF04054C27} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{25CE3B50-77DC-464A-821E-FA57C39C033B} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{263C79BD-F60F-4A79-B677-640DD42681DE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{26B12E6D-5413-47F9-B039-447FAF3FB180} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{277B1860-2571-44BD-B3D6-1FE885110B17} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{27804260-CD26-4A8D-B760-C5A69B9BBBEC} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{27C9832F-36A0-4F2D-8967-93A22940200C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{283209B5-365E-4B51-B9C0-C742E2D3F04F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2A72217D-B991-44C6-8887-8F89050CE978} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2AD0F81C-DEA1-4598-BFA0-6F3C5C1ED929} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2B33CE08-DF41-4887-BAC9-03D9AFD3E72F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2B7B39EA-7B82-44BD-BAED-D15CA095FB10} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2C288ED9-AB93-4388-8159-88778D4B926E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2CA2AF29-2705-4423-87D9-6E954FC571A1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2CB95755-5D27-43D5-BFED-D2AF7E9A1CE7} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2DA757F0-B850-4041-832A-1A7837495857} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2DC0F6E7-EDF9-43BF-9222-D6F513C46799} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2F62BB41-E1A9-4A35-93BE-51576147FE79} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{2FA0B457-AF73-4CED-9D49-3400903AB28D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3118AF38-B2C7-4610-82BC-49A718EE17B5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3231AEC0-E84E-4759-A0A7-0256E94617A5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{34D89894-8483-45D8-91ED-BAAD5023ED17} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{35F5FA27-6C50-42D1-96B5-44969F848167} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{369420E0-D31F-4D82-BA4D-3DC064899420} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{36B08F63-92E2-4432-95CB-C5FCE2CF9F4D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{37BEECCF-8DBD-40CC-AF9D-02E9888902CC} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3A0B28E9-9104-4BB0-8994-072812BF5CDC} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3A4DC53F-3FA1-4E28-B2DC-F273D8E5BEF6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3A9C29B1-8482-4760-B775-0AEE63913B94} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3BB2DED5-FB0A-4FD1-BA56-50A56BE9E55E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3C00204A-EB42-4C11-B409-D6A5A0EDE592} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3CA575D8-D491-4982-8605-F8100B43400A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3CAF2E81-41C1-4CCC-B653-23BD978940C2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3DB4AE31-E388-45E0-B623-C4A766DF9E8E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3DBAA0F1-C40B-4B88-82E7-B8F7A7A960D4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3E386BCD-B56A-4A18-AE89-C35B8A2895E5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3E80550B-FD7F-4237-9E4B-203ABDA676E5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{3F5ED97D-5571-45E5-83D6-715694796A68} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{415BDC84-DA07-45CB-9C37-A2E0B4E0506E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{415BF72F-5AFF-4FE7-BA20-9FF6E30A97B1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{41864671-341C-498C-A5FD-EF6CD4D03714} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{432CF9A8-0437-4C5A-85E1-79F4C6F07E14} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{433F7AF2-E5DC-4A5C-8BC1-D093D6640819} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4472B5F5-1E23-444A-B631-4BD5B063BFDD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{449D0ED8-0D10-4BE0-8040-459012A1D221} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{467CF0F1-7C8F-442D-86C6-8254E6153D5F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4873E47C-ECDE-4E05-B3CB-04F6F044C668} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4A0BEEC5-7A0D-4347-B7C9-C01232C5A4CF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4A835F73-A64A-42E2-BF11-17693B328E20} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4AAA8120-0B40-4A61-B098-F349FA1AD06A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4B2D97C6-B2CA-4527-90D2-41994268C2B4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4BE44F97-B38B-48F3-ACDB-BB1E53AA4935} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4BE45BCD-04CF-49E8-AF1F-3E901DCBC707} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4BE79FF2-C4C0-4CFE-9A49-70A781709DC2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4CB1C0F1-D58A-482C-99F2-88ACF52FFFF2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4DC7A0F2-97FD-4040-A7D9-E7EAAEB1E446} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4DF4F9C2-D9B4-4105-8431-5CE2FB847306} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4E4FC6B5-0BC1-4D2E-8383-F43B4BD0882E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4F17554D-BD83-4389-A375-D359723400BC} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4F67D358-9B19-4C77-8C48-320BC44624C0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4FBBB2E2-41F1-49CF-8845-4EE646BDAC36} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{4FD9FF8D-FE1E-4703-A669-B38F5A7DFD69} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{514A0597-3B40-458D-9F35-9D57A9F922B2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5370B8CE-34AE-4EB4-ACAA-5E246835E26E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{54E56BFC-B605-453B-90DD-357870D423CD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{55B8839F-1783-4E9B-BF27-FEBA703AB094} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{55D32305-1F77-4EFB-886E-1D1935008489} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{563485A7-C36E-4BA2-86B9-08E564B23B60} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5643A0E4-C99D-4061-85C2-C43E41EF2254} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{56A3530D-7D45-4B40-989F-FB7CF3630809} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{56A6B4C6-9DB5-403B-BB36-48ECC9E00430} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5711242D-1B4D-4371-9E9D-F9691367E762} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5823025D-65E7-4890-BE4D-EAD2E19A1B7A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5918E335-A356-4EBD-B1B8-A705B924FFC8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5A9292A6-A490-459F-96AE-755531F45899} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5ABA670F-D732-49E4-BB38-6A2F5C41C416} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5B08F371-FC2D-4746-9179-68E9F67A45CE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5C565399-CCA0-4E20-A064-C25BA1D311F3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5CFA8AED-CD4E-4528-978C-82D1D87EA414} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5D7A9C9E-C4EB-4D06-886A-9D6476690848} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5EF4BC6C-A0AA-49CB-8200-B3B9018690F2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5F4AE278-BC1B-46E7-881D-354991DD0A8A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5F7509DE-9892-4D62-85D4-50ECDA2E640F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5FE1133C-E7BC-435E-9274-F288354918AB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{5FFCA679-FFAA-4A20-A61C-9E0AC73EC8EB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{60F23565-68F3-4C11-9791-FD4220795C4D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{614B1C10-FB2A-419A-B5A2-2CB2EC10D8E8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{61AA7777-14DE-434F-9B10-C1F68714112E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{61D600CC-A287-4DBD-A16D-CA4AD827C704} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{62FC7945-D0A0-4B7F-A011-6C58876B0BA3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{641798C4-B21A-4A41-AE9E-82A7488E6240} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{681BC236-FA30-415E-8B7F-5FFF395FE567} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{6BDD0019-2527-4457-8BD2-F6E3A3303CBF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{6DDCC0CC-A6CD-4646-B821-CF399165C535} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{6E3C2606-5EF7-4155-B11D-2F3B3772808E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{6EFB7F01-5D67-46BB-849D-DC075642817A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{7084CDD8-37F9-4FC5-B878-3558820C1CE7} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{72B02648-AF69-4432-8753-119717051D0E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{73038BB2-0EF0-4715-B4A5-94114953FBD4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{734F0E7D-2CF5-4367-8065-C87F1EBA54B6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{7607CF16-3B2C-4C18-901E-77C95FFA8113} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{77328E9B-11BF-483B-991B-4EFF566E577E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{7810B72C-4914-44FB-92BE-4DBF4E8CCF3A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{798E6F9F-8455-4B02-BF51-FFCE5EA2EF97} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{7BCE355E-1537-43E3-AF59-23760A88AF16} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{7C2836B5-BCB1-446D-A5A6-1DB60FD375B1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{81E8F646-4EF8-4BDC-822F-CFC79B7AF462} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{82B322DD-067F-4F65-807D-8A4D95EFA700} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{82EF3FB0-415D-4C60-A9F8-7905809A0292} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{845FECEF-4828-4DA5-8A61-6BF85B204E57} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{84B1720D-1801-4EB3-8A87-DC0277D9AA7F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{850C50CB-9A11-4AD4-B2A6-EDFA53A4BCEE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{855869C2-5080-4BEB-BB57-83B8DB5255C4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{85A2D915-2EAE-4652-A046-68AAFD10B079} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{85D4A56C-7AF1-4C90-A270-267CE9B54A61} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{85FBC040-A7E7-4000-91E8-FAC82C16CB5E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8798E3C7-4361-4100-B6C1-DC12C9D193B8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{87FFF33A-DBC5-44CA-9875-937678B7B231} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8B3B4B34-F51E-4070-96CF-E97048D894BC} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8B4663A7-CC33-4E57-AF12-9204D4CA4F02} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8B7C69E7-274B-4039-B0DC-0D28F7C2312F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8C8702D7-B39B-435A-9EC5-B7AAA2CF4235} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8CA17C04-235E-45A5-B451-B3A2C83F12A6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8E7E7FEF-A41F-4910-AD34-A9ED709AD11A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8E8718C2-6C64-4DBC-A76C-D4B47B536294} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8EF6CD35-BEEF-4D6F-B288-EF068FBEFEA9} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8F57854C-4597-464A-8F78-26B462167D38} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8FE35C3C-8069-4CFE-840F-02CE9C40A530} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{8FE65CED-3124-4BAE-BDC8-18CC22E116CE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{90783630-176D-4E6A-84CF-BAD06E3CB612} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{909B273B-9996-441D-8647-CCB4C93E4135} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{92E6ADF5-7BEF-4967-B6D2-372C8E79D064} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{948D6C09-3EED-4187-A332-08E7B29600E0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{94949289-B747-4110-8185-8724755E5ACF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{94A5668E-2737-48A0-80B2-CBED42381503} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{94B18C78-B4F7-440F-9FAC-65A82FEDB296} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{94B5BBA6-8B28-4D49-A1A2-82FED8447E72} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{96159419-D6A8-45F3-88D0-769438E5B24A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9622DADD-4705-4FE9-B17A-44572472B8DB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9623C5FF-C9A0-45EB-99B6-8CEC7EAC44F0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{97188C7B-B9AF-4F7D-BB80-024FCF7B34DD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{985137DC-636D-4105-8011-E16878F66E33} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9AE6B6B7-BBD6-4D32-8EE6-3ABADE392853} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9B17A7B2-8DED-48C2-A3A0-0EDC8830F1CA} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9B4B7B27-6E36-48A9-BB24-B26F4636A884} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9B863629-ECD1-42E1-85A6-05BC4AD496E1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9BC12618-4345-444B-8B65-57B288D81D87} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9C2F82A5-4C4B-4728-BD82-B4DB84EF7C36} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9D42A7A0-4D89-427C-BA23-6AEC779631D2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9DA6C6F8-1C3F-4354-96CE-DDC5E70AF23B} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9EE38F71-7AA2-49E3-A56B-7CE2CBC3DEBE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9F11C5B1-45F2-4ECC-9AB2-5F527E4810F5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9F2C5062-D7ED-4154-8B69-BABF4CFD5FEF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9F5B68C3-AC82-41B1-81D5-F9470B3C8B9F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9F731ACA-3016-4663-92B7-21B7926BB43C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{9FED7E20-4991-4DBE-BE75-E44E14AC23E5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A12941C9-4BB5-4A74-941D-F7C14EE1310D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A13C6791-F6F4-49A4-BF02-BB4CB7D05483} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A14AA95F-0E50-4396-A09D-9263DCA567FF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A1CA87FE-B572-41A1-AAB4-EC1C6DE5CF50} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A1EF3DA4-B2E7-4963-94ED-D1586BB8E9A6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A267932A-D6F9-4CEC-8C41-39A11004252C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A4B9F5F9-B02A-4BC9-8E56-6F22BD0AA596} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A4E80EEF-E7CE-4351-BC9D-0C6C211B5B27} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A54805FB-4647-4C4D-B749-1C4BA8F6542C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A5504E71-259B-4F36-B9A4-1807DDBF6252} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A6C3F979-CEE5-45F8-841C-1A16F9B5807F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A8432259-FB8A-450D-8D64-485F00CF3367} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A88BB3DF-E0F7-46C5-AD37-F75640E5CC69} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A8C14671-5002-461B-89F3-207ABE9FA6C3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{A9A7D88E-808C-4B68-A4B1-209AE04F2CC2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AA6A8291-697C-42A4-B017-BE19E7E122CF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AAD9E22D-CED7-4802-A57A-6AE943227F8A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AB03EA1A-7922-40AA-81B7-BE1A937F4E11} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AB87C5EA-1662-4D16-8338-913C1D20A117} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{ABB61B17-0D88-4AD1-97FE-B6DC27B0A3B6} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AE8953A5-72AA-4F8A-828F-F3AD36E84FC3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AEBA7F43-8AE8-4AE1-B480-2BC51B0937CD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{AF078FAA-1C5D-4535-A6CD-7B39AD337430} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B1B783ED-6DE8-490A-A9E2-44A998F8893D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B1E8D434-7D2A-4BB9-80AE-58483C8DA798} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B35E5360-1280-4D1C-9835-CCFD5DEFBC16} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B42EB91A-70BE-4747-8E41-7940246EBC41} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B60114E9-53C8-4F16-AEF3-4D0E44F8D47D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B6934D97-7C5B-4AD1-B611-CE1C4C5AAB28} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B6ED353F-9AF2-494B-8165-7E5605608EE9} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B777DF5B-38EE-42B7-A424-A623A30801AB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B8BD3961-739A-4B52-8CE1-28C930CBAD7D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B8D4FBA9-1112-4969-9D01-E37994FF6ABD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{B9E47492-F590-4197-86D4-AA45CF83E00F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BACC0F9A-5CF5-4032-AD93-F8C6C5949242} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BAE7A2E9-26AA-462B-8B97-BD176A1ED669} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BB95D7C1-F828-4596-AA12-D5DA306BA77B} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BEB8B743-53EC-4DF2-84C1-498D0A72EA9C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BF049471-E13F-4599-B778-08C8DB598D71} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BF54D66F-BC2B-439D-AD55-2464EBD9253D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{BFB2D5C5-35C8-4578-9422-C7E252AB0E44} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C2CFA6C8-5A66-404D-A522-47E5DB96FBF2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C2D179E0-68DB-4FEE-8E36-73157A1A2545} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C2EC57BD-90B2-4AA8-9DAB-9876C74F5950} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C3C51368-BFA0-4C31-B8A6-B8F4FA4EF895} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C3E55424-CB13-43CE-BC65-2C9D8BE5C095} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C4894058-7296-4700-815D-5590D8FCEF31} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C48D2280-DF98-42A0-ABA0-B65F371673F8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C5D0E940-6A92-4DF0-882B-F926F7E8FED1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C76805C9-BB7F-4B37-B62B-AEEF959C7C53} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C8095475-0BAB-4C1B-9287-8C09C976C3A8} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{C9E8D7A8-75B5-45D1-8939-DD1692BD5D0D} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{CA40BFF4-B46C-4424-8D4B-32F7D6EFBB80} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{CAADB24D-EB0B-40DF-B6B5-5B4C1B1E5D74} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{CBD84BFF-6860-49EF-9534-C0C6D0DB7813} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{CC113EAB-FAE3-4833-B1A6-225F84F96AD3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{CDB4E92F-C16E-4D32-82FB-71BEA8DF6654} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D09D3D7B-937F-425D-BB66-398E2D456E93} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D0DC6E5E-B17F-41EE-8270-ABAF5DC32A58} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D0E8274C-C71F-4B44-8AED-628B399DBCFC} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D3799163-A7B8-4811-AF15-C0389E83C756} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D448EB30-2B28-4B3B-94CA-AF6584DF3ED4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D56F4922-6D24-4A73-A372-F3ABA2F91ADF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D5730B28-592D-4E8B-98A1-5174C7ABCCE2} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D77995AC-2712-4844-939B-93680A8A031E} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D8315644-E3B5-41BF-94C8-10CC07B21931} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{D9332FB5-2795-410C-8979-413659F1BD52} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{DB2B3950-6230-489E-A818-FA769F5EED27} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{DB393DD2-9A15-4C3C-8B6C-D65BFCA7A280} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{DBBCF819-8735-4A7F-91E0-5B2E5627355F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{DBCFEE80-8568-4FCC-87E8-EA28C172EC31} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{DE4C863B-3B2E-4D72-ADC3-5966E49E8DAE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{DE51FC44-5205-4FAF-AE10-205EEA4FE5E0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E01B3DE5-6EC6-4697-802A-38B853738EF1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E0B2831C-F8E6-406F-A4FA-29E52A878177} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E18B4DF3-D5CB-480A-88B6-BC9281374C79} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E2570A77-2B27-41BD-AEE8-5435D438FECF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E29A6228-E669-41BD-B333-8B73A8414644} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E3909638-F41E-49E3-97F2-79C61E54B2DD} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E416E35F-2B12-45C0-B625-FD4DAB9DCBAE} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E4EB8EF5-0632-4520-A9C6-9B5744D71EBA} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E5307208-79CF-4273-81E4-294F58058788} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E798F1CC-B956-4344-BEB2-C883F98C43B9} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E8942C55-A441-4B78-A699-E88C248DB240} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E936C227-C0AA-4ED1-878E-A35EB8FDAE53} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E9844A17-A6B7-437A-A3FD-D4913865DA10} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E9923747-3EC2-4821-88E8-6BF737541D4C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{E9D7276E-56C2-4C16-AC08-5CEF74F51CBB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EAC2F395-6388-4D2F-A36F-1E30E4DFB332} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{ED3BCBEC-2FF1-49D1-9895-EC5AACFDD840} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EDAF2048-6308-483F-9614-46B83D1C8154} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EE213BAF-8A01-49B8-8C3C-1AFD61D83B59} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EE40AC5F-B4D2-412F-94F0-7C5521AEB5E1} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EE57DFB0-67E9-4C38-9E54-3940FD025587} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EFBFBAC6-4267-437F-BC11-FB6E8D705BB0} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{EFC14BF3-D406-49C9-A0BC-539972A212D9} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F00D872C-924B-43AF-BD84-5987E6A01AEF} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F0F4584D-734A-409A-B57A-CD7B0B42A131} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F2F674D3-A2B7-4C24-A134-596F61F99930} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F321BFFB-F381-4E3C-9069-DB0BBF6A3EBB} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F4DF5CAD-AB4C-48B0-BCD8-D8E13DA44520} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F5838CBA-4682-4447-A168-E9BFC209F9E7} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F5FD244C-B7AC-4BC5-A7C0-65D3D28CEDD5} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F70A5214-415D-4AFA-9480-2A2A0CDB42D4} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F747D79A-967C-44DB-ABFB-5265DD7DCD84} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{F9021454-6F1E-4F43-A54F-26BC1C43A44F} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FA11A842-DA4B-4F72-ABC0-7B30E5AAD610} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FA3DE0E9-5B85-4DCE-B9D7-8C4F84F65017} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FA4C0C72-57E0-4375-BDF7-1A452D63CF3C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FAD90D3C-153C-4737-AEE9-29604E1DAA0A} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FB976B2D-894D-43E5-9D3B-CC9AF69E3A6C} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FB97A0B9-5656-4B41-9A5D-8852FA50F5E3} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FC7DB739-A76B-4E2B-BF1D-D97B92B21939} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FD67FF25-EB0F-4859-8E51-BA947F2B1B7B} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FE0BD1DA-4543-407D-9500-25BCE4980C28} Successfully deleted: [Empty Folder] C:\Users\Rodney\appdata\local\{FE1760E4-889A-4484-B28B-A50FF057CD83} ~~~ FireFox Emptied folder: C:\Users\Rodney\AppData\Roaming\mozilla\firefox\profiles\0fqg6qkd.default\minidumps [1 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Sun 08/04/2013 at 0:15:49.12 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  9. sio2ga
    i just ran the adwcleaner and will run the other tool next. so far the computer is running normally, but that doesn't mean it is fixed because I would only get the sponsorship pop-up once a day so it is too early to say it is gone. the following is the results from the first tool - thanks for your help # AdwCleaner v2.306 - Logfile created 08/03/2013 at 23:58:57 # Updated 19/07/2013 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits) # User : Rodney - H81050 # Boot Mode : Normal # Running from : C:\Users\Rodney\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JKLFIB3D\AdwCleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** File Deleted : C:\Users\Public\Desktop\eBay.lnk File Deleted : C:\Users\Rodney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jZip.lnk File Deleted : C:\Users\Rodney\Desktop\jZip.lnk Folder Deleted : C:\Program Files (x86)\jZip Folder Deleted : C:\Program Files (x86)\Wondershare Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare Folder Deleted : C:\Users\Rodney\AppData\Local\jZip Folder Deleted : C:\Users\Rodney\AppData\Local\Wondershare ***** [Registry] ***** Key Deleted : HKCU\Software\InstallCore Key Deleted : HKCU\Software\jZip Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\jZip Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\Software\jZip Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3} Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}] ***** [internet Browsers] ***** -\\ Internet Explorer v10.0.9200.16611 [OK] Registry is clean. -\\ Mozilla Firefox v19.0.2 (en-US) File : C:\Users\Rodney\AppData\Roaming\Mozilla\Firefox\Profiles\0fqg6qkd.default\prefs.js C:\Users\Rodney\AppData\Roaming\Mozilla\Firefox\Profiles\0fqg6qkd.default\user.js ... Deleted ! [OK] File is clean. -\\ Google Chrome v28.0.1500.95 File : C:\Users\Rodney\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [4903 octets] - [03/08/2013 23:57:41] AdwCleaner[R2].txt - [4963 octets] - [03/08/2013 23:58:26] AdwCleaner[s1].txt - [4630 octets] - [03/08/2013 23:58:57] ########## EOF - C:\AdwCleaner[s1].txt - [4690 octets] ##########
  10. sio2ga
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1Install Date: 10/18/2011 6:33:27 PMSystem Uptime: 8/3/2013 8:39:11 PM (2 hours ago).Motherboard: PEGATRON CORPORATION | | 2AB5Processor: Intel® Core i7-2600 CPU @ 3.40GHz | CPU 1 | 3401/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 1386 GiB total, 1139.881 GiB free.D: is FIXED (NTFS) - 11 GiB total, 1.401 GiB free.E: is CDROM ()F: is RemovableG: is RemovableH: is RemovableI: is Removable.==== Disabled Device Manager Items =============.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: SBREDevice ID: ROOT\LEGACY_SBRE\0000Manufacturer: Name: SBREPNP Device ID: ROOT\LEGACY_SBRE\0000Service: SBRE.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Tether Ethernet AdapterDevice ID: ROOT\ROOT&QRKIS\0000Manufacturer: TetherName: Tether Ethernet AdapterPNP Device ID: ROOT\ROOT&QRKIS\0000Service: qrkis.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: 802.11n Wireless LAN CardDevice ID: PCI\VEN_1814&DEV_5390&SUBSYS_F0511814&REV_00\4&1EB59C78&0&00E3Manufacturer: Ralink Technology, Corp.Name: 802.11n Wireless LAN CardPNP Device ID: PCI\VEN_1814&DEV_5390&SUBSYS_F0511814&REV_00\4&1EB59C78&0&00E3Service: netr28x.==== System Restore Points ===================.RP288: 7/26/2013 5:26:21 AM - Windows UpdateRP289: 7/30/2013 5:21:53 AM - Windows Update.==== Installed Programs ======================.Adobe Acrobat 9 ProAdobe Acrobat 9.5.5 - CPSID_83708Adobe AIRAdobe Community HelpAdobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Photoshop Elements 10Adobe Photoshop Lightroom 4.3 64-bitAdobe Photoshop.com Inspiration BrowserAmazon MP3 Downloader 1.0.17AMD Accelerated Video TranscodingAMD APP SDK RuntimeAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD Media Foundation DecodersAuslogics BoostSpeedAuslogics Disk DefragAutodesk MapGuide® Viewer ActiveX Control Release 6.5BlackBerry Desktop Software 6.1BlackBerry Device Software UpdaterBrother P-touch Address Book 1.1Brother P-touch Editor 5.0Brother P-touch Editor Label Collection - Birthday Banners [ENU]Brother P-touch Editor Label Collection - Building-Facility [ENU]Brother P-touch Editor Label Collection - Celebration Banners [ENU]Brother P-touch Editor Label Collection - Event Planning [ENU]Brother P-touch Editor Label Collection - Package Shipping [ENU]Brother P-touch Editor Label Collection - Retail Store [ENU]Brother P-touch Editor Label Collection - Warning [ENU]Brother P-touch Update SoftwareBrother QL-Series Software User's GuideCANON iMAGE GATEWAY MyCamera Download PluginCANON iMAGE GATEWAY Task for ZoomBrowser EXCanon MOV DecoderCanon MOV EncoderCanon MovieEdit Task for ZoomBrowser EXCanon Utilities Digital Photo Professional 3.10Canon Utilities EOS Sample MusicCanon Utilities EOS UtilityCanon Utilities EOS Video Snapshot Task for ZoomBrowser EXCanon Utilities Movie Uploader for YouTubeCanon Utilities PhotoStitchCanon Utilities Picture Style EditorCanon Utilities ZoomBrowser EXCanon ZoomBrowser EX Memory Card UtilityCatalyst Control CenterCatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyCatalyst Control Center Localization Allccc-utility64CCC Help Chinese StandardCCC Help Chinese TraditionalCCC Help CzechCCC Help DanishCCC Help DutchCCC Help EnglishCCC Help FinnishCCC Help FrenchCCC Help GermanCCC Help GreekCCC Help HungarianCCC Help ItalianCCC Help JapaneseCCC Help KoreanCCC Help NorwegianCCC Help PolishCCC Help PortugueseCCC Help RussianCCC Help SpanishCCC Help SwedishCCC Help ThaiCCC Help TurkishCCleanerCyberduck 4.3.1 (11008)CyberLink PowerDVD 10D3DX10Definition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionDefragglerDeLorme Topo North America 9.0Elements 10 OrganizereRegFlickr Uploadr 3.2.1Garmin Communicator PluginGarmin Communicator Plugin x64Google ChromeGoogle EarthGoogle Update HelperHewlett-Packard ACLM.NET v1.2.1.1HP AutoHP Client ServicesHP Customer Experience EnhancementsHP Deskjet 2050 J510 series Basic Device SoftwareHP Deskjet 2050 J510 series HelpHP Deskjet 2050 J510 series Product Improvement StudyHP KeyboardHP LinkUpHP OdometerHP Photo CreationsHP Remote SolutionHP SetupHP Setup ManagerHP Support AssistantHP Support InformationHP UpdateHP Vision Hardware DiagnosticsHydraVisionIDT AudioIntel® Management Engine ComponentsJava 7 Update 25Java Auto UpdaterJunk Mail filter updatejZipLabelPrintLogitech SetPoint 6.32Malwarebytes Anti-Malware version 1.75.0.1300McAfee AntiVirus PlusMesh RuntimeMicrosoft .NET Framework 4 Client ProfileMicrosoft .NET Framework 4 ExtendedMicrosoft Application Error ReportingMicrosoft Office 2010 Service Pack 1 (SP1)Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Click-to-Run 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Home and Business 2010Microsoft Office Office 64-bit Components 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared 64-bit MUI (English) 2010Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Single Image 2010Microsoft Office Word MUI (English) 2010Microsoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319Microsoft WSE 3.0 RuntimeMozilla Firefox 19.0.2 (x86 en-US)Mozilla Maintenance ServiceMSVCRTMSVCRT_amd64MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)Open It!PlayReady PC Runtime amd64PlayReady PC Runtime x86Power2GoPrintMaster 2.0 GoldPSE10 STI InstallerRecovery ManagerRemote Graphics ReceiverSAMSUNG USB Driver for Mobile PhonesSanDiskSecureAccess_Manager.exeSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2478663)Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Extended (KB2416472)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2656351)Security Update for Microsoft .NET Framework 4 Extended (KB2736428)Security Update for Microsoft .NET Framework 4 Extended (KB2742595)Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit EditionSecurity Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit EditionSecurity Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553091)Security Update for Microsoft Office 2010 (KB2553096)Security Update for Microsoft Office 2010 (KB2553371) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553447) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2589320) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2598243) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687501) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2687510) 32-Bit EditionSecurity Update for Microsoft OneNote 2010 (KB2760600) 32-Bit EditionSecurity Update for Microsoft Publisher 2010 (KB2553147) 32-Bit EditionSecurity Update for Microsoft Visio 2010 (KB2810068) 32-Bit EditionSecurity Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit EditionSecurity Update for Microsoft Word 2010 (KB2760410) 32-Bit EditionShared C Run-time for x64Skype™ 6.3Spybot - Search & DestroySystem Requirements Lab for IntelTether 1.4.3.7Update for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2473228)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Extended (KB2468871)Update for Microsoft .NET Framework 4 Extended (KB2533523)Update for Microsoft .NET Framework 4 Extended (KB2600217)Update for Microsoft Office 2010 (KB2494150)Update for Microsoft Office 2010 (KB2553065)Update for Microsoft Office 2010 (KB2553181) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553267) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553310) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553378) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2566458)Update for Microsoft Office 2010 (KB2596964) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2598242) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687503) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2687509) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2760631) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2767886) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2553290) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2597090) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2687623) 32-Bit EditionUpdate for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit EditionUpdate for Microsoft PowerPoint 2010 (KB2598240) 32-Bit EditionUpdate for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit EditionUpdate for Zip OpenerVendio XPress Image PublisherVerizon Wireless Software Upgrade Assistant - Samsung(ar)Verizon Wireless Software Utility Application for Android - SamsungWD Quick ViewWD SmartWareWD SmartWare InstallerWindows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MailWindows Live MeshWindows Live Mesh ActiveX Control for Remote ConnectionsWindows Live MessengerWindows Live MIME IFilterWindows Live Movie MakerWindows Live Photo CommonWindows Live Photo GalleryWindows Live PIMT PlatformWindows Live Remote ClientWindows Live Remote Client ResourcesWindows Live Remote ServiceWindows Live Remote Service ResourcesWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWindows Live WriterWindows Live Writer ResourcesWondershare Video Converter Ultimate(Build 6.0.3.2)Yahoo! MessengerYahoo! SiteBuilderYahoo! Software UpdateYahoo! Toolbar.==== Event Viewer Messages From Past Week ========.8/3/2013 8:39:49 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SBRE8/3/2013 8:39:40 PM, Error: Microsoft-Windows-Kernel-General [5] - {Registry Hive Recovered} Registry hive (file): '\??\C:\Users\Rodney\AppData\Local\Microsoft\Windows\UsrClass.dat' was corrupted and it has been recovered. Some data might have been lost.8/1/2013 7:30:37 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D3DCB472-7261-43CE-924B-0704BD730D5F} and APPID {D3DCB472-7261-43CE-924B-0704BD730D5F} to the user h81050\Rodney SID (S-1-5-21-203374124-555481709-2284268658-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.8/1/2013 7:30:37 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {145B4335-FE2A-4927-A040-7C35AD3180EF} and APPID {145B4335-FE2A-4927-A040-7C35AD3180EF} to the user h81050\Rodney SID (S-1-5-21-203374124-555481709-2284268658-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.7/28/2013 1:37:47 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.7/28/2013 1:37:47 PM, Error: Service Control Manager [7000] - The McAfee Platform Services service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.7/28/2013 1:37:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service mcpltsvc with arguments "" in order to run the server: {20966775-18A4-4299-B8E3-772C336B52A7}.==== End Of File ===========================Internet Explorer: 10.0.9200.16611 BrowserJavaVersion: 10.25.2Run by Rodney at 22:08:43 on 2013-08-03Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.10220.7539 [GMT -4:00].AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Program Files\IDT\WDM\STacSV64.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\system32\atieclxx.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files\IDT\WDM\AESTSr64.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exeC:\Windows\system32\mfevtps.exeC:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Program Files (x86)\Tether\TBService.exeC:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files\Common Files\McAfee\AMCore\mcshield.exeC:\Program Files\Common Files\McAfee\SystemCore\mfefire.exeC:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exeC:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\Dwm.exeC:\Windows\system32\taskeng.exeC:\Windows\Explorer.EXEC:\Program Files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exeC:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exeC:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exeC:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXEC:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\System32\WUDFHost.exeC:\Program Files\IDT\WDM\beats64.exeC:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exeC:\Program Files\IDT\WDM\sttray64.exeC:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exeC:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exeC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exeC:\Windows\System32\svchost.exe -k LocalServicePeerNetC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exeC:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exeC:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\PROGRA~1\McAfee\MSC\McAPExe.exeC:\Windows\System32\svchost.exe -k secsvcsC:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\Windows\system32\wuauclt.exeC:\Program Files\Common Files\McAfee\Platform\mcuicnt.exeC:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exec:\PROGRA~1\mcafee\mqs\qcshm.exeC:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXEC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXEC:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXEC:\Windows\splwow64.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.mWinlogon: Userinit = userinit.exe,BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dllBHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllBHO: Wondershare Video Converter Ultimate: {65DEE40A-3E93-4cae-9F98-B8E06DCEE2BF} - C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRIEPlugin.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllBHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLLBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllBHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dllBHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllTB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllTB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllTB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dlluRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkeymRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkeymRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRunmRun: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exemRun: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exemRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:5mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableUIADesktopToggle = dword:0IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.htmlIE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.htmlIE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.htmlIE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.htmlIE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htmIE: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htmIE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllIE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exeIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll.INFO: HKCU has more than 50 listed domains.If you wish to scan all of them, select the 'Force scan all domains' option...INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option..TCP: NameServer = 192.168.0.1TCP: Interfaces\{78490266-4C20-422C-8947-66E2248928E5} : DHCPNameServer = 192.168.0.1TCP: Interfaces\{C52A2B3B-3BEE-4A3A-BCCB-59A52CA01F26} : NameServer = 208.67.222.222,208.67.220.220TCP: Interfaces\{F06E1F44-C8C6-4CEF-99AF-1AFEE3DFCFCB} : DHCPNameServer = 192.168.0.1Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dllFilter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllSSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLLx64-Run: [beatsOSDApp] C:\Program Files\IDT\WDM\beats64.exex64-Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exex64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exex64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll.INFO: x64-HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option..x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dllx64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dllx64-SSODL: WebCheck - <orphaned>Hosts: 127.0.0.1 www.spywareinfo.com.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Rodney\AppData\Roaming\Mozilla\Firefox\Profiles\0fqg6qkd.default\FF - prefs.js: browser.startup.homepage - FF - prefs.js: network.proxy.type - 0FF - plugin: c:\PROGRA~2\mcafee\msc\npMcSnFFPl.dllFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dllFF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dllFF - plugin: C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dllFF - plugin: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dllFF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dllFF - plugin: C:\Program Files (x86)\McAfee\SiteAdvisor\NPMcFFPlg32.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dllFF - plugin: C:\Windows\SysWOW64\npDeployJava1.dllFF - plugin: C:\Windows\SysWOW64\npmproxy.dllFF - ExtSQL: !HIDDEN! 2012-09-07 21:43; {8D150B8F-EFE8-45a3-A4A3-053020F48FAC}; C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRFirefoxExt.---- FIREFOX POLICIES ----FF - user.js: extensions.delta.tlbrSrchUrl - FF - user.js: extensions.delta.id - eca0707b00000000000038607714567dFF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}FF - user.js: extensions.delta.instlDay - 15915FF - user.js: extensions.delta.vrsn - 1.8.22.0FF - user.js: extensions.delta.vrsni - 1.8.22.0FF - user.js: extensions.delta.vrsnTs - 1.8.22.00:32:05FF - user.js: extensions.delta.prtnrId - deltaFF - user.js: extensions.delta.prdct - deltaFF - user.js: extensions.delta.aflt - babsstFF - user.js: extensions.delta.smplGrp - noneFF - user.js: extensions.delta.tlbrId - baseFF - user.js: extensions.delta.instlRef - sstFF - user.js: extensions.delta.dfltLng - enFF - user.js: extensions.delta.excTlbr - falseFF - user.js: extensions.delta.ffxUnstlRst - trueFF - user.js: extensions.delta.admin - falseFF - user.js: extensions.delta_i.babTrack - affID=119351&tsp=4958FF - user.js: extensions.delta_i.babExt - FF - user.js: extensions.delta_i.srcExt - ssFF - user.js: extensions.delta.autoRvrt - falseFF - user.js: extensions.delta.rvrt - falseFF - user.js: extensions.delta.newTab - false.============= SERVICES / DRIVERS ===============.R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2012-12-21 772944]R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2012-12-21 342416]R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-10-18 55856]R2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-9-1 169624]R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2011-7-20 89600]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-19 240640]R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-1-4 221296]R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-1-4 221296]R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-1-4 221296]R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-1-4 221296]R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-1-4 221296]R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2013-1-4 1017016]R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2013-1-4 218760]R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-4-13 182752]R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]R2 Tether;Tether;C:\Program Files (x86)\Tether\TBService.exe [2011-11-25 50416]R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-7-20 2656280]R2 WDBackup;WD Backup;C:\Program Files (x86)\Western Digital\WD Smartware\WDBackupEngine.exe [2013-6-19 1042808]R2 WDDriveService;WD Drive Manager;C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-6-19 270192]R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256]R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2012-11-9 70112]R3 HCW723x;Hauppauge WinTV 723x PCIe Card;C:\Windows\System32\drivers\HCW723x.sys [2011-5-25 1843712]R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\System32\drivers\LEqdUsb.sys [2011-9-2 76056]R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\System32\drivers\LHidEqd.sys [2011-9-2 15128]R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2012-11-9 309968]R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2012-11-9 516608]R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\drivers\mfencbdc.sys [2013-2-18 337120]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-5-16 533096]R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]R3 tihub3;TI USB3 Hub Service;C:\Windows\System32\drivers\tihub3.sys [2011-7-20 125552]R3 tixhci;TI XHCI Service;C:\Windows\System32\drivers\tixhci.sys [2011-7-20 382024]R3 WsAudio_Device;WsAudio_Device;C:\Windows\System32\drivers\VirtualAudio.sys [2012-9-7 31080]S2 CLKMSVC10_38F51D56;CyberLink Product - 2011/07/20 15:22:39;C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [2011-1-25 241648]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-2-6 102936]S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\drivers\HipShieldK.sys [2013-4-14 197264]S3 McAWFwk;McAfee Activation Service;C:\PROGRA~1\mcafee\msc\mcawfwk.exe [2012-12-21 225216]S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\drivers\mfencrk.sys [2013-2-18 95856]S3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\drivers\netr28x.sys [2012-12-6 2350176]S3 qrkis;Tether Miniport;C:\Windows\System32\drivers\qrkis.sys [2011-11-25 50856]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-9-19 203104]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-10-19 1255736]S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]S4 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-12-21 201304]S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184].=============== Created Last 30 ================.2013-08-02 06:13:37 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{90C5B00D-5C65-4D71-8D07-3BEED14B177F}\mpengine.dll2013-07-30 15:55:25 -------- d-----w- C:\Users\Rodney\AppData\Local\{17E56AE7-3A11-428F-9CA6-BB430101D546}2013-07-29 04:31:18 -------- d-----w- C:\Users\Rodney\AppData\Roaming\DigitalSite2013-07-29 04:31:14 -------- d-----w- C:\Program Files (x86)\OpenIt2013-07-21 02:50:51 -------- d-----w- C:\Users\Rodney\AppData\Local\{AE8953A5-72AA-4F8A-828F-F3AD36E84FC3}2013-07-13 03:44:51 -------- d-----w- C:\Users\Rodney\AppData\Local\{E9844A17-A6B7-437A-A3FD-D4913865DA10}2013-07-12 23:21:58 -------- d-----w- C:\Program Files (x86)\DeLorme.==================== Find3M ====================.2013-07-12 22:45:42 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2013-07-12 22:45:42 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2013-06-28 14:48:59 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2013-06-28 14:48:59 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll2013-06-28 14:48:59 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll2013-06-08 12:28:46 2706432 ----a-w- C:\Windows\System32\mshtml.tlb2013-06-08 11:13:19 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb2013-05-17 01:25:57 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll2013-05-17 01:25:27 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll2013-05-17 01:25:26 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll2013-05-17 01:25:26 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll2013-05-17 00:59:03 2241024 ----a-w- C:\Windows\System32\wininet.dll2013-05-17 00:58:10 3958784 ----a-w- C:\Windows\System32\jscript9.dll2013-05-17 00:58:08 67072 ----a-w- C:\Windows\System32\iesetup.dll2013-05-17 00:58:08 136704 ----a-w- C:\Windows\System32\iesysprep.dll2013-05-14 12:23:25 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe2013-05-14 08:40:13 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe2013-05-13 05:51:01 184320 ----a-w- C:\Windows\System32\cryptsvc.dll2013-05-13 05:51:00 1464320 ----a-w- C:\Windows\System32\crypt32.dll2013-05-13 05:51:00 139776 ----a-w- C:\Windows\System32\cryptnet.dll2013-05-13 05:50:40 52224 ----a-w- C:\Windows\System32\certenc.dll2013-05-13 04:45:55 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll2013-05-13 04:45:55 1160192 ----a-w- C:\Windows\SysWow64\crypt32.dll2013-05-13 04:45:55 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll2013-05-13 03:43:55 1192448 ----a-w- C:\Windows\System32\certutil.exe2013-05-13 03:08:10 903168 ----a-w- C:\Windows\SysWow64\certutil.exe2013-05-13 03:08:06 43008 ----a-w- C:\Windows\SysWow64\certenc.dll2013-05-10 05:49:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll2013-05-10 03:20:54 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll2013-05-08 06:39:01 1910632 ----a-w- C:\Windows\System32\drivers\tcpip.sys.============= FINISH: 22:09:09.18 ===============
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.