Dina

Members

View Profile See their activity

Posts
2
Joined
August 28, 2014
Last visited
August 28, 2014

Content Type

All Activity

Events

Profiles

Forums

Topics
Posts

Everything posted by Dina

Unable to uninstall "Muvic Smartbar Engine"

Dina replied to Dina's topic in Resolved Malware Removal Logs

Hi Naat, I did as you instructed (I have already run AdwCleaner several times, and it usually removes everything!). But when I open my control panel and check "Programs, " that damn " Muvic Smartbar Engine" is still there. Here are my logs. No rush. Thank you for your help. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 8.1 x64 Ran by Dina on Thu 08/28/2014 at 9:57:01.38 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Chrome Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [blacklisted Policy] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Thu 08/28/2014 at 10:08:26.62 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # AdwCleaner v3.308 - Report created 28/08/2014 at 09:48:52 # Updated 20/08/2014 by Xplode # Operating System : Windows 8.1 (64 bits) # Username : Dina - DINA # Running from : C:\Users\Dina\Downloads\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17239 -\\ Google Chrome v36.0.1985.143 [ File : C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\preferences ] Deleted [startup_urls] : hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBtqSnxyioASX7XiWPTstsnShmoHIx_XSAfc_DgD8cwsvfFQcViSdjt-5dwCsuFoybi5SNkYx-nVViMIvZEDdLEsgxJHyXh6HuKE2YvbG-5ZnTxjNxIjj59Ut3XyXSWb7XnEcGeUjrXm6klFtDxk, ************************* AdwCleaner[R0].txt - [652 octets] - [08/05/2014 20:32:29] AdwCleaner[R10].txt - [10280 octets] - [27/08/2014 12:02:13] AdwCleaner[R11].txt - [2464 octets] - [27/08/2014 13:02:48] AdwCleaner[R12].txt - [2338 octets] - [28/08/2014 09:39:15] AdwCleaner[R1].txt - [1907 octets] - [09/05/2014 23:48:49] AdwCleaner[R2].txt - [1806 octets] - [10/05/2014 21:53:08] AdwCleaner[R3].txt - [2460 octets] - [22/05/2014 08:09:07] AdwCleaner[R4].txt - [2520 octets] - [19/06/2014 08:39:18] AdwCleaner[R5].txt - [1499 octets] - [26/06/2014 14:47:38] AdwCleaner[R6].txt - [3399 octets] - [07/07/2014 20:15:06] AdwCleaner[R7].txt - [1661 octets] - [07/07/2014 20:31:26] AdwCleaner[R8].txt - [2639 octets] - [09/07/2014 07:09:42] AdwCleaner[R9].txt - [1810 octets] - [20/07/2014 19:30:59] AdwCleaner[s0].txt - [714 octets] - [08/05/2014 20:33:58] AdwCleaner[s10].txt - [1721 octets] - [28/08/2014 09:48:52] AdwCleaner[s1].txt - [1998 octets] - [09/05/2014 23:49:26] AdwCleaner[s2].txt - [2449 octets] - [19/06/2014 08:40:46] AdwCleaner[s3].txt - [1531 octets] - [26/06/2014 14:48:55] AdwCleaner[s4].txt - [2599 octets] - [07/07/2014 20:16:03] AdwCleaner[s5].txt - [1724 octets] - [07/07/2014 20:32:14] AdwCleaner[s6].txt - [2653 octets] - [09/07/2014 07:10:47] AdwCleaner[s7].txt - [1873 octets] - [20/07/2014 19:32:18] AdwCleaner[s8].txt - [8149 octets] - [27/08/2014 12:05:00] AdwCleaner[s9].txt - [2492 octets] - [27/08/2014 13:04:18] ########## EOF - C:\AdwCleaner\AdwCleaner[s10].txt - [2322 octets] ##########
- August 28, 2014
- 4 replies
Unable to uninstall "Muvic Smartbar Engine"

Dina posted a topic in Resolved Malware Removal Logs

I cannot get "Muvic Smartbar Engine" uninstalled from my programs. Have tried AdwCleaner. Have tried MalwareBytes. Have tried uninstalling. Have reset my browsers. Here is my log: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-08-2014 Ran by Dina (administrator) on DINA on 28-08-2014 07:12:19 Running from C:\Users\Dina\Downloads Platform: Windows 8.1 (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Hewlett-Packard Company) C:\Windows\System32\hpservice.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\nacl64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\nacl64.exe (CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [sysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-24] (Synaptics Incorporated) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.) HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2012-09-14] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) HKLM-x32\...\Run: [ospd_us_64] => [X] HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer: [NoFolderOptions] 0 HKLM\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-21-1517019308-1780926289-49639357-1001\...\Run: [GoogleChromeAutoLaunch_36020EC8E86D277CDBF2C9BB4D61DC0C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-08-06] (Google Inc.) HKU\S-1-5-21-1517019308-1780926289-49639357-1001\...\Run: [Diagnostics] => C:\Program Files (x86)\Software Update\diagnostics.exe [1933760 2014-08-04] () Startup: C:\Users\Dina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1050 J410 series.lnk ShortcutTarget: Monitor Ink Alerts - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.) ShellIconOverlayIdentifiers: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File ShellIconOverlayIdentifiers: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File ShellIconOverlayIdentifiers: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File ShellIconOverlayIdentifiers: SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL No File ShellIconOverlayIdentifiers: SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL No File ShellIconOverlayIdentifiers: SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL No File ShellIconOverlayIdentifiers-x32: SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File ShellIconOverlayIdentifiers-x32: SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File ShellIconOverlayIdentifiers-x32: SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.yahoo.com/yhs/search?type=odc278&hspart=avast&hsimp=yhs-001&p={searchTerms} HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.yahoo.com?fr=hp-avast&type=odc278 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo.com/yhs/search?type=odc278&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKLM-x32 - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo.com/yhs/search?type=odc278&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKCU - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo.com/yhs/search?type=odc278&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKCU - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo.com/yhs/search?type=odc278&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKCU - {E92A340C-3FC9-4DB9-816A-0B7CB4C13F80} URL = https://search.yahoo.com/search?fr=mcafee&type=A011US0&p={SearchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll No File BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL No File BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL No File BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard) BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL No File BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard) Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.) Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) Toolbar: HKCU - No Name - {1CF748F6-FB50-45FB-BA88-C179726019F8} - No File Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL No File Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL () FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL No File FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin HKCU: @citrixonline.com/appdetectorplugin -> C:\Users\Dina\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online) FF Plugin HKCU: hp.com/HPDetect -> C:\Users\Dina\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll (HP) FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-07-08] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBtqSnxyioASX7XiWPTstsnShmoHIx_XSAfc_DgD8cwsvfFQcViSdjt-5dwCsuFoybi5SNkYx-nVViMIvZEDdLEsgxJHyXh6HuKE2YvbG-5ZnTxjNxIjj59Ut3XyXSWb7XnEcGeUjrXm6klFtDxk,", "https://www.yahoo.com?fr=hp-avast&type=odc278" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-15] CHR Extension: (Google Drive) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-15] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23] CHR Extension: (YouTube) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-15] CHR Extension: (Google Search) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-15] CHR Extension: (AdBlock) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-08-01] CHR Extension: (Bunny) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\liamdcfhclcpdgfdllgpcecaglkhfbde [2014-08-28] CHR Extension: (Google Wallet) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-15] CHR Extension: (Gmail) - C:\Users\Dina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-15] CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2356912 2014-07-19] (Microsoft Corporation) R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.) R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed] R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard) R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed] R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel® Corporation) [File not signed] S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Corporation) R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-05-09] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165336 2014-05-09] (Intel Corporation) R2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.) S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [603424 2014-06-12] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.) R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-07-24] (McAfee, Inc.) R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-06-20] (McAfee, Inc.) R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [189912 2014-06-20] (McAfee, Inc.) S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-05-15] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-05-15] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-05-15] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-17] (Qualcomm Atheros Communications, Inc.) S3 BrSerIf; C:\Windows\system32\DRIVERS\BrSerIf.sys [97280 2006-12-12] (Brother Industries Ltd.) R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-06-20] (McAfee, Inc.) S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.) R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.) R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313544 2014-06-20] (McAfee, Inc.) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-06-20] (McAfee, Inc.) R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [523792 2014-06-20] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-06-20] (McAfee, Inc.) R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [444720 2014-07-24] (McAfee, Inc.) S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-07-24] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-06-20] (McAfee, Inc.) S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-24] (Synaptics Incorporated) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-05-15] (Microsoft Corporation) R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.) S3 STHDA; \SystemRoot\system32\DRIVERS\stwrt64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-28 07:12 - 2014-08-28 07:13 - 00022823 _____ () C:\Users\Dina\Downloads\FRST.txt 2014-08-28 07:11 - 2014-08-28 07:12 - 00000000 ____D () C:\FRST 2014-08-28 07:10 - 2014-08-28 07:10 - 02103296 _____ (Farbar) C:\Users\Dina\Downloads\FRST64.exe 2014-08-28 06:47 - 2014-08-28 06:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2014-08-27 23:12 - 2014-08-22 17:42 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-08-27 13:37 - 2014-08-28 06:04 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 13:37 - 2014-08-27 13:37 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-08-27 13:37 - 2014-08-27 13:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2014-08-27 13:37 - 2014-08-27 13:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-08-27 13:37 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-08-27 13:37 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-08-27 13:37 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-08-27 13:36 - 2014-08-27 13:36 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Dina\Downloads\mbam-setup-2.0.2.1012.exe 2014-08-27 13:28 - 2014-08-27 13:28 - 02953520 _____ (AVAST Software) C:\Users\Dina\Downloads\avast-browser-cleanup.exe 2014-08-27 13:19 - 2014-08-27 13:19 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.5.Run.exe 2014-08-27 13:18 - 2014-08-27 13:18 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.4.Run.exe 2014-08-27 13:14 - 2014-08-27 13:14 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.3.Run.exe 2014-08-27 13:13 - 2014-08-27 13:16 - 00000000 ____D () C:\MATS 2014-08-27 13:11 - 2014-08-27 13:11 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.2.Run.exe 2014-08-27 13:10 - 2014-08-27 13:10 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.1.Run.exe 2014-08-27 13:02 - 2014-08-27 13:02 - 01364531 _____ () C:\Users\Dina\Downloads\AdwCleaner.exe 2014-08-27 12:57 - 2014-08-27 12:57 - 00000584 _____ () C:\Users\Dina\Downloads\nativeplayback (1).jnlp - Shortcut.lnk 2014-08-27 12:57 - 2014-08-27 12:57 - 00000564 _____ () C:\Users\Dina\Downloads\nativeplayback.jnlp - Shortcut.lnk 2014-08-27 12:48 - 2014-08-27 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft 2014-08-27 12:48 - 2014-08-27 12:48 - 00000000 ____D () C:\ProgramData\Anvisoft 2014-08-27 12:48 - 2014-08-27 12:48 - 00000000 ____D () C:\Program Files (x86)\Anvisoft 2014-08-27 12:47 - 2014-08-27 12:47 - 06369640 _____ () C:\Users\Dina\Downloads\adblocker_setup.exe 2014-08-27 12:12 - 2014-08-27 12:12 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 11:51 - 2014-08-27 12:05 - 00001112 _____ () C:\Users\Dina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2014-08-27 11:50 - 2014-08-27 11:50 - 00000000 ____D () C:\Program Files\005 2014-08-27 11:50 - 2014-08-27 11:50 - 00000000 ____D () C:\Program Files (x86)\Software Update 2014-08-26 13:22 - 2014-08-26 13:22 - 00003434 _____ () C:\Users\Dina\Downloads\113149-44132 - Dina Takouris - Aug 24, 2014 303 PM - Interview homework.odt 2014-08-24 12:59 - 2014-08-24 13:12 - 00000000 ____D () C:\Users\Dina\AppData\Roaming\Blackboard 2014-08-23 11:52 - 2014-08-23 11:52 - 00000325 _____ () C:\Users\Dina\Desktop\HP Printer Diagnostic Tools.url 2014-08-23 09:59 - 2014-08-24 14:59 - 00014867 _____ () C:\Users\Dina\Documents\Interview homework.odt 2014-08-22 13:25 - 2014-08-22 13:25 - 00025678 _____ () C:\Users\Dina\Documents\Assignment Media Writing.odt 2014-08-15 22:03 - 2014-08-01 17:17 - 00704480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-08-15 22:03 - 2014-08-01 17:17 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-08-15 10:42 - 2014-08-15 10:43 - 03975678 _____ () C:\Users\Dina\Downloads\Luckys_Neuter_Certificate.bmp 2014-08-15 06:10 - 2014-08-15 06:08 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe 2014-08-15 06:09 - 2014-08-15 06:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-15 06:09 - 2014-08-15 06:08 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe 2014-08-15 06:09 - 2014-08-15 06:08 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe 2014-08-15 06:09 - 2014-08-15 06:08 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2014-08-15 06:08 - 2014-08-15 06:08 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-13 09:30 - 2014-08-13 11:29 - 00022524 _____ () C:\Users\Dina\Documents\ASD letter.odt 2014-08-13 08:28 - 2014-08-13 20:41 - 00014155 _____ () C:\Users\Dina\Downloads\letter.odt 2014-08-12 20:40 - 2014-07-25 07:52 - 23645696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-08-12 20:40 - 2014-07-25 06:51 - 17524224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-08-12 20:40 - 2014-07-25 06:25 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-08-12 20:40 - 2014-07-25 05:59 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2014-08-12 20:40 - 2014-07-25 05:40 - 00452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll 2014-08-12 20:40 - 2014-07-25 05:28 - 05824512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-08-12 20:40 - 2014-07-25 05:21 - 02184704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-08-12 20:40 - 2014-07-25 05:17 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2014-08-12 20:40 - 2014-07-25 05:10 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2014-08-12 20:40 - 2014-07-25 05:08 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-08-12 20:40 - 2014-07-25 05:06 - 04204032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-08-12 20:40 - 2014-07-25 04:52 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll 2014-08-12 20:40 - 2014-07-25 04:47 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-08-12 20:40 - 2014-07-25 04:39 - 02087936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2014-08-12 20:40 - 2014-07-25 04:34 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2014-08-12 20:40 - 2014-07-25 04:29 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2014-08-12 20:40 - 2014-07-25 04:23 - 13547008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-08-12 20:40 - 2014-07-25 04:13 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-08-12 20:40 - 2014-07-25 04:07 - 02001920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-08-12 20:40 - 2014-07-25 04:03 - 11772928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-08-12 20:40 - 2014-07-25 03:26 - 01431040 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-08-12 20:40 - 2014-07-25 03:17 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-08-12 20:40 - 2014-07-25 03:09 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-08-12 20:40 - 2014-07-25 03:00 - 01169920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-08-12 20:39 - 2014-07-25 06:28 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2014-08-12 20:39 - 2014-07-25 06:25 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll 2014-08-12 20:39 - 2014-07-25 05:34 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2014-08-12 20:39 - 2014-07-25 05:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll 2014-08-12 20:39 - 2014-07-25 05:28 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll 2014-08-12 20:39 - 2014-07-25 04:43 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2014-08-12 20:39 - 2014-07-25 04:43 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll 2014-08-12 20:39 - 2014-07-25 04:42 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-08-12 20:39 - 2014-07-25 04:09 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2014-08-12 20:39 - 2014-07-25 03:52 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-08-12 20:39 - 2014-07-25 03:05 - 01792512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-08-12 20:28 - 2014-06-19 18:48 - 01273184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2014-08-12 20:28 - 2014-06-19 16:52 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2014-08-12 20:28 - 2014-06-12 18:15 - 00517528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2014-08-12 20:28 - 2014-06-12 18:14 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2014-08-12 20:28 - 2014-06-12 17:10 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2014-08-12 20:28 - 2014-06-06 04:34 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2014-08-12 20:26 - 2014-07-15 11:16 - 03048880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2014-08-12 20:26 - 2014-07-15 01:29 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2014-08-12 20:26 - 2014-07-15 01:22 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll 2014-08-12 20:26 - 2014-07-15 01:03 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2014-08-12 20:26 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2014-08-12 20:26 - 2014-06-09 15:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2014-08-12 20:26 - 2014-05-30 23:27 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2014-08-12 20:25 - 2014-07-09 21:16 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll 2014-08-12 20:25 - 2014-07-09 21:03 - 04756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2014-08-12 20:25 - 2014-07-09 20:33 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe 2014-08-12 20:25 - 2014-05-13 00:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe 2014-08-12 20:25 - 2014-05-12 22:07 - 02844160 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2014-08-12 20:25 - 2014-05-12 21:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll 2014-08-12 20:25 - 2014-05-12 21:26 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll 2014-08-12 20:25 - 2014-05-12 20:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2014-08-12 20:25 - 2014-05-12 20:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll 2014-08-12 20:25 - 2014-05-03 04:29 - 01726224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2014-08-12 20:25 - 2014-05-03 02:20 - 01473080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2014-08-12 20:25 - 2014-05-02 22:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2014-08-12 20:25 - 2014-05-02 22:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll 2014-08-12 20:25 - 2014-05-02 22:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll 2014-08-12 20:25 - 2014-05-02 22:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll 2014-08-12 20:25 - 2014-05-02 21:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll 2014-08-12 20:25 - 2014-05-02 21:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll 2014-08-12 20:25 - 2014-05-02 21:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll 2014-08-12 20:25 - 2014-05-02 16:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat 2014-08-12 20:25 - 2014-04-30 22:44 - 01025536 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2014-08-12 20:25 - 2014-04-29 23:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys 2014-08-12 20:25 - 2014-04-29 23:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2014-08-12 20:25 - 2014-04-29 23:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2014-08-12 20:25 - 2014-04-29 23:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys 2014-08-12 20:25 - 2014-04-29 22:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe 2014-08-12 20:25 - 2014-04-29 21:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe 2014-08-12 20:25 - 2014-04-29 21:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll 2014-08-12 20:25 - 2014-04-29 21:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll 2014-08-12 20:25 - 2014-04-29 21:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll 2014-08-12 20:25 - 2014-04-29 21:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll 2014-08-12 20:25 - 2014-04-29 21:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2014-08-12 20:25 - 2014-04-29 20:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2014-08-12 20:25 - 2014-04-29 20:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll 2014-08-12 20:25 - 2014-04-29 20:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll 2014-08-12 20:25 - 2014-04-29 20:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll 2014-08-12 20:25 - 2014-04-29 20:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll 2014-08-12 20:25 - 2014-04-29 20:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2014-08-12 20:25 - 2014-04-28 15:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2014-08-12 20:25 - 2014-04-26 15:03 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-08-12 20:25 - 2014-04-26 13:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-08-12 20:25 - 2014-04-26 09:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll 2014-08-12 20:25 - 2014-04-14 02:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2014-08-12 20:25 - 2014-04-14 01:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2014-08-12 20:25 - 2014-04-13 22:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll 2014-08-12 20:25 - 2014-04-08 23:11 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll 2014-08-12 20:25 - 2014-04-08 22:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll 2014-08-12 20:22 - 2014-05-16 21:59 - 16871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2014-08-12 20:21 - 2014-08-06 19:12 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2014-08-12 20:21 - 2014-08-06 15:38 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2014-08-12 20:21 - 2014-08-01 22:44 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2014-08-12 20:21 - 2014-08-01 20:56 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2014-08-12 20:21 - 2014-08-01 20:11 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2014-08-12 20:21 - 2014-07-11 21:17 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2014-08-12 20:21 - 2014-06-05 07:13 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2014-08-12 20:21 - 2014-06-05 06:14 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2014-08-12 20:21 - 2014-06-04 02:27 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe 2014-08-12 20:21 - 2014-06-03 22:31 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll 2014-08-12 20:21 - 2014-06-03 22:22 - 02790912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2014-08-12 20:21 - 2014-06-03 21:43 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll 2014-08-12 20:21 - 2014-06-03 21:38 - 03304448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2014-08-12 20:21 - 2014-06-03 19:15 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2014-08-12 20:21 - 2014-06-03 19:14 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2014-08-12 20:21 - 2014-06-01 19:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2014-08-12 20:21 - 2014-05-31 03:07 - 00467800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2014-08-12 20:21 - 2014-05-31 03:07 - 00440664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys 2014-08-12 20:21 - 2014-05-31 03:07 - 00419672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2014-08-12 20:21 - 2014-05-31 03:07 - 00089944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys 2014-08-12 20:21 - 2014-05-31 03:07 - 00027480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys 2014-08-12 20:21 - 2014-05-30 23:30 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys 2014-08-12 20:21 - 2014-05-30 23:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys 2014-08-12 20:21 - 2014-05-30 23:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys 2014-08-12 20:21 - 2014-05-30 21:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe 2014-08-12 20:21 - 2014-05-30 21:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll 2014-08-12 20:21 - 2014-05-30 21:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll 2014-08-12 20:21 - 2014-05-27 08:53 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-08-12 20:21 - 2014-05-27 02:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll 2014-08-12 20:21 - 2014-05-27 02:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll 2014-08-12 20:21 - 2014-05-16 21:13 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-08-10 12:23 - 2014-08-10 14:07 - 00099902 _____ () C:\Users\Dina\Downloads\Tolucan Times Letter1.odt 2014-08-09 20:02 - 2014-08-09 20:55 - 00076545 _____ () C:\Users\Dina\Documents\priest letter.odt 2014-08-08 15:00 - 2014-08-09 11:54 - 00067131 _____ () C:\Users\Dina\Documents\Corpus Christi Sta.odt 2014-08-08 13:48 - 2014-08-16 07:57 - 00000000 ____D () C:\Users\Dina\Downloads\OC mom n babies 2014-08-08 13:32 - 2014-08-08 13:32 - 00089551 _____ () C:\Users\Dina\Documents\Tolucan Times Sta.odt 2014-08-08 13:09 - 2014-08-08 13:34 - 00012508 _____ () C:\Users\Dina\Documents\American Solar Direct Sta.odt 2014-08-05 00:30 - 2014-08-05 08:14 - 00024155 _____ () C:\Users\Dina\Documents\Your Honor.odt 2014-08-04 23:38 - 2014-08-04 23:38 - 00000000 ____D () C:\Users\Dina\AppData\Roaming\OpenOffice 2014-08-04 23:36 - 2014-08-04 23:36 - 00001128 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk 2014-08-04 23:36 - 2014-08-04 23:36 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0 2014-08-04 23:34 - 2014-08-04 23:35 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4 2014-08-04 23:19 - 2014-08-04 23:19 - 00000000 ____D () C:\Users\Dina\Desktop\OpenOffice 4.1.0 (en-US) Installation Files 2014-08-04 23:12 - 2014-08-04 23:15 - 140910890 _____ () C:\Users\Dina\Downloads\Apache_OpenOffice_4.1.0_Win_x86_install_en-US.exe 2014-08-04 23:11 - 2014-08-04 23:11 - 00003420 _____ () C:\WINDOWS\System32\Tasks\{723A8B6F-DFDD-46D8-9065-CA9D95A08620} ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-28 07:13 - 2014-08-28 07:12 - 00022823 _____ () C:\Users\Dina\Downloads\FRST.txt 2014-08-28 07:12 - 2014-08-28 07:11 - 00000000 ____D () C:\FRST 2014-08-28 07:10 - 2014-08-28 07:10 - 02103296 _____ (Farbar) C:\Users\Dina\Downloads\FRST64.exe 2014-08-28 07:02 - 2014-05-15 06:24 - 01490156 _____ () C:\WINDOWS\WindowsUpdate.log 2014-08-28 07:02 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-08-28 07:01 - 2014-05-08 17:35 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1517019308-1780926289-49639357-1001 2014-08-28 06:56 - 2014-07-20 19:38 - 00002275 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-28 06:47 - 2014-08-28 06:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2014-08-28 06:47 - 2014-07-08 11:51 - 00001860 _____ () C:\Users\Public\Desktop\McAfee AntiVirus Plus.lnk 2014-08-28 06:43 - 2014-07-20 19:36 - 00000900 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-28 06:42 - 2014-05-15 06:56 - 00000000 ___DO () C:\Users\Dina\OneDrive 2014-08-28 06:41 - 2014-07-20 19:36 - 00000904 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-28 06:37 - 2014-05-21 17:10 - 00000566 _____ () C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-1517019308-1780926289-49639357-1001.job 2014-08-28 06:25 - 2013-08-22 07:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-08-28 06:25 - 2013-08-22 07:44 - 00510872 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-08-28 06:24 - 2014-03-18 02:54 - 00779860 _____ () C:\WINDOWS\PFRO.log 2014-08-28 06:24 - 2013-08-22 06:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI 2014-08-28 06:24 - 2012-07-26 01:12 - 00000000 ____D () C:\WINDOWS\LiveKernelReports 2014-08-28 06:21 - 2014-05-08 17:27 - 00003906 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E8743989-E496-4789-87A5-90F3451757A7} 2014-08-28 06:04 - 2014-08-27 13:37 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-08-27 23:19 - 2012-07-26 00:59 - 00000000 ____D () C:\WINDOWS\CbsTemp 2014-08-27 17:07 - 2014-08-27 12:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft 2014-08-27 13:37 - 2014-08-27 13:37 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-08-27 13:37 - 2014-08-27 13:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2014-08-27 13:37 - 2014-08-27 13:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-08-27 13:36 - 2014-08-27 13:36 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Dina\Downloads\mbam-setup-2.0.2.1012.exe 2014-08-27 13:28 - 2014-08-27 13:28 - 02953520 _____ (AVAST Software) C:\Users\Dina\Downloads\avast-browser-cleanup.exe 2014-08-27 13:19 - 2014-08-27 13:19 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.5.Run.exe 2014-08-27 13:18 - 2014-08-27 13:18 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.4.Run.exe 2014-08-27 13:16 - 2014-08-27 13:13 - 00000000 ____D () C:\MATS 2014-08-27 13:14 - 2014-08-27 13:14 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.3.Run.exe 2014-08-27 13:11 - 2014-08-27 13:11 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.2.Run.exe 2014-08-27 13:10 - 2014-08-27 13:10 - 00347816 _____ (Microsoft Corporation) C:\Users\Dina\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.49332601025267972.1.1.Run.exe 2014-08-27 13:04 - 2014-05-08 20:32 - 00000000 ____D () C:\AdwCleaner 2014-08-27 13:02 - 2014-08-27 13:02 - 01364531 _____ () C:\Users\Dina\Downloads\AdwCleaner.exe 2014-08-27 12:57 - 2014-08-27 12:57 - 00000584 _____ () C:\Users\Dina\Downloads\nativeplayback (1).jnlp - Shortcut.lnk 2014-08-27 12:57 - 2014-08-27 12:57 - 00000564 _____ () C:\Users\Dina\Downloads\nativeplayback.jnlp - Shortcut.lnk 2014-08-27 12:48 - 2014-08-27 12:48 - 00000000 ____D () C:\ProgramData\Anvisoft 2014-08-27 12:48 - 2014-08-27 12:48 - 00000000 ____D () C:\Program Files (x86)\Anvisoft 2014-08-27 12:47 - 2014-08-27 12:47 - 06369640 _____ () C:\Users\Dina\Downloads\adblocker_setup.exe 2014-08-27 12:39 - 2014-06-05 22:05 - 00007341 _____ () C:\WINDOWS\setupact.log 2014-08-27 12:39 - 2013-06-06 22:17 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-08-27 12:39 - 2012-07-26 01:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP 2014-08-27 12:12 - 2014-08-27 12:12 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-27 12:05 - 2014-08-27 11:51 - 00001112 _____ () C:\Users\Dina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2014-08-27 11:55 - 2014-07-08 11:48 - 00000000 ____D () C:\Program Files (x86)\McAfee 2014-08-27 11:50 - 2014-08-27 11:50 - 00000000 ____D () C:\Program Files\005 2014-08-27 11:50 - 2014-08-27 11:50 - 00000000 ____D () C:\Program Files (x86)\Software Update 2014-08-27 10:00 - 2014-07-15 11:44 - 00000000 ____D () C:\Users\Dina\Downloads\Mashhur Anam 2014-08-27 10:00 - 2014-05-09 10:21 - 00000000 ____D () C:\Users\Dina\Downloads\Posters 2014-08-26 17:04 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-08-26 13:22 - 2014-08-26 13:22 - 00003434 _____ () C:\Users\Dina\Downloads\113149-44132 - Dina Takouris - Aug 24, 2014 303 PM - Interview homework.odt 2014-08-26 06:47 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-08-24 19:00 - 2014-03-18 03:03 - 00958356 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-08-24 15:05 - 2014-06-13 15:47 - 00218112 ___SH () C:\Users\Dina\Documents\Thumbs.db 2014-08-24 14:59 - 2014-08-23 09:59 - 00014867 _____ () C:\Users\Dina\Documents\Interview homework.odt 2014-08-24 13:38 - 2014-05-08 20:04 - 00006656 _____ () C:\Users\Dina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-08-24 13:12 - 2014-08-24 12:59 - 00000000 ____D () C:\Users\Dina\AppData\Roaming\Blackboard 2014-08-23 13:43 - 2014-05-09 17:42 - 00000000 ____D () C:\Users\Dina\AppData\Roaming\HpUpdate 2014-08-23 11:52 - 2014-08-23 11:52 - 00000325 _____ () C:\Users\Dina\Desktop\HP Printer Diagnostic Tools.url 2014-08-22 17:42 - 2014-08-27 23:12 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-08-22 13:25 - 2014-08-22 13:25 - 00025678 _____ () C:\Users\Dina\Documents\Assignment Media Writing.odt 2014-08-22 07:55 - 2014-05-09 07:40 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log 2014-08-22 07:55 - 2014-05-09 07:39 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt 2014-08-21 20:57 - 2014-07-08 11:26 - 00000000 ____D () C:\Program Files\Common Files\McAfee 2014-08-21 12:33 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\NDF 2014-08-20 00:40 - 2014-05-21 17:10 - 00003556 _____ () C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-1517019308-1780926289-49639357-1001 2014-08-16 10:10 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-08-16 07:57 - 2014-08-08 13:48 - 00000000 ____D () C:\Users\Dina\Downloads\OC mom n babies 2014-08-15 21:57 - 2014-07-09 05:46 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel 2014-08-15 21:57 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ToastData 2014-08-15 21:57 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions 2014-08-15 21:57 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\MediaViewer 2014-08-15 21:57 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\FileManager 2014-08-15 21:57 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\Camera 2014-08-15 10:43 - 2014-08-15 10:42 - 03975678 _____ () C:\Users\Dina\Downloads\Luckys_Neuter_Certificate.bmp 2014-08-15 06:09 - 2014-08-15 06:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-15 06:08 - 2014-08-15 06:10 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe 2014-08-15 06:08 - 2014-08-15 06:09 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe 2014-08-15 06:08 - 2014-08-15 06:09 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe 2014-08-15 06:08 - 2014-08-15 06:09 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2014-08-15 06:08 - 2014-08-15 06:08 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-14 21:31 - 2014-05-09 10:23 - 00000000 ____D () C:\Users\Dina\Downloads\Jeff Gignac 2014-08-13 20:41 - 2014-08-13 08:28 - 00014155 _____ () C:\Users\Dina\Downloads\letter.odt 2014-08-13 11:29 - 2014-08-13 09:30 - 00022524 _____ () C:\Users\Dina\Documents\ASD letter.odt 2014-08-12 21:53 - 2014-05-09 07:55 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-08-12 21:48 - 2014-05-09 07:54 - 99218768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-08-12 20:21 - 2013-08-21 21:17 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2014-08-12 20:21 - 2013-08-21 20:46 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2014-08-12 20:21 - 2013-08-21 20:16 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll 2014-08-12 20:20 - 2014-03-18 03:13 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe 2014-08-12 20:20 - 2014-03-18 03:13 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll 2014-08-12 20:20 - 2014-03-18 03:13 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2014-08-12 20:20 - 2013-08-22 04:45 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2014-08-12 20:20 - 2013-08-22 04:44 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll 2014-08-12 20:20 - 2013-08-22 04:22 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2014-08-12 20:20 - 2013-08-22 04:21 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll 2014-08-12 20:20 - 2013-08-22 04:10 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2014-08-12 20:20 - 2013-08-22 04:03 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe 2014-08-12 20:20 - 2013-08-22 03:32 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll 2014-08-12 20:20 - 2013-08-21 20:55 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-08-12 20:20 - 2013-08-21 20:45 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll 2014-08-12 20:20 - 2013-08-21 20:40 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-08-12 20:16 - 2014-03-18 03:13 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-08-12 20:15 - 2014-05-15 06:48 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2014-08-10 14:07 - 2014-08-10 12:23 - 00099902 _____ () C:\Users\Dina\Downloads\Tolucan Times Letter1.odt 2014-08-09 20:55 - 2014-08-09 20:02 - 00076545 _____ () C:\Users\Dina\Documents\priest letter.odt 2014-08-09 11:54 - 2014-08-08 15:00 - 00067131 _____ () C:\Users\Dina\Documents\Corpus Christi Sta.odt 2014-08-09 11:07 - 2014-05-09 17:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2014-08-09 11:07 - 2014-05-09 17:42 - 00000000 ____D () C:\Program Files (x86)\HP 2014-08-09 11:06 - 2013-06-06 22:56 - 00000000 ____D () C:\WINDOWS\Hewlett-Packard 2014-08-09 09:58 - 2014-05-09 09:25 - 00000000 ____D () C:\Users\Dina\Downloads\Birthday & Holiday 2014-08-08 13:53 - 2014-07-06 13:43 - 00019456 ____H () C:\Users\Dina\Documents\photothumb.db 2014-08-08 13:50 - 2014-05-09 12:56 - 00000000 ____D () C:\Users\Dina\Downloads\Our Stuff 2014-08-08 13:48 - 2014-05-09 10:24 - 00000000 ____D () C:\Users\Dina\Downloads\Marina Sanctuary 2014-08-08 13:34 - 2014-08-08 13:09 - 00012508 _____ () C:\Users\Dina\Documents\American Solar Direct Sta.odt 2014-08-08 13:32 - 2014-08-08 13:32 - 00089551 _____ () C:\Users\Dina\Documents\Tolucan Times Sta.odt 2014-08-08 07:34 - 2014-06-13 07:55 - 00000338 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForDina.job 2014-08-06 19:12 - 2014-08-12 20:21 - 01336624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2014-08-06 15:38 - 2014-08-12 20:21 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2014-08-05 08:14 - 2014-08-05 00:30 - 00024155 _____ () C:\Users\Dina\Documents\Your Honor.odt 2014-08-04 23:38 - 2014-08-04 23:38 - 00000000 ____D () C:\Users\Dina\AppData\Roaming\OpenOffice 2014-08-04 23:36 - 2014-08-04 23:36 - 00001128 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk 2014-08-04 23:36 - 2014-08-04 23:36 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0 2014-08-04 23:35 - 2014-08-04 23:34 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4 2014-08-04 23:19 - 2014-08-04 23:19 - 00000000 ____D () C:\Users\Dina\Desktop\OpenOffice 4.1.0 (en-US) Installation Files 2014-08-04 23:15 - 2014-08-04 23:12 - 140910890 _____ () C:\Users\Dina\Downloads\Apache_OpenOffice_4.1.0_Win_x86_install_en-US.exe 2014-08-04 23:11 - 2014-08-04 23:11 - 00003420 _____ () C:\WINDOWS\System32\Tasks\{723A8B6F-DFDD-46D8-9065-CA9D95A08620} 2014-08-04 22:52 - 2014-07-09 05:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2014-08-02 14:58 - 2014-05-08 19:33 - 00000000 ____D () C:\Users\Dina\Documents\Youcam 2014-08-01 22:44 - 2014-08-12 20:21 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2014-08-01 20:56 - 2014-08-12 20:21 - 01064448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2014-08-01 20:11 - 2014-08-12 20:21 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2014-08-01 17:17 - 2014-08-15 22:03 - 00704480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-08-01 17:17 - 2014-08-15 22:03 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-08-01 07:05 - 2014-05-12 21:31 - 00001082 _____ () C:\Users\Public\Desktop\VLC media player.lnk Some content of TEMP: ==================== C:\Users\Dina\AppData\Local\Temp\Extract.exe C:\Users\Dina\AppData\Local\Temp\Installer.exe C:\Users\Dina\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe C:\Users\Dina\AppData\Local\Temp\prefetch.exe C:\Users\Dina\AppData\Local\Temp\Quarantine.exe C:\Users\Dina\AppData\Local\Temp\silent_v2.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-21 06:42 ==================== End Of Log ============================
- August 28, 2014
- 4 replies

Sign In

Dina

Posts

Joined

Last visited

Content Type

Events

Profiles

Forums

Everything posted by Dina

Unable to uninstall "Muvic Smartbar Engine"

Unable to uninstall "Muvic Smartbar Engine"

Browse

Activity

Personal

Business

Business Modules

Partners

Learn

Start here

Type of malware/attacks

How does it get on my computer?

Scams and grifts

Support

Important Information