Everything opens Windows Media Center Only

[Karen Amy]

This is my Dads computer.  It is running Windows 7, 64 bit.  Every thing you do opens the Windows Media Center.  I have tried downloading Malwarebytes, tried downloading it onto 2 different flash drives renamed and not renamed and still it will not install.  Neither will RKill, renamed, or not, CCleaner or TDSS killer all renamed and not.  This computer has Norton Anti-Virus and I can see no way to disable that.  It says that he has an administrator account, the other account on the computer is not an administrator account, both have this same problem with Windows Media Center opening.  There is a guest account that I cannot access at all.

 

I would appreciate any help.  It seems that anything with .exe will not install or run. 

[Maniac]

Hello Karen Amy! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

• If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
• I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
• Make sure you read all of the instructions and fixes thoroughly before continuing with them.
• Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
• Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
• Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.

For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

• Restart the computer.
• As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
• Use the arrow keys to select the Repair your computer menu item.
• Select English as the keyboard language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:

• Insert the installation disc.
• Restart your computer.
• If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
• Click Repair your computer.
• Select English as the keyboard language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account and click Next.

On the System Recovery Options menu you will get the following options:

• • Startup Repair

    System Restore

    Windows Complete PC Restore

    Windows Memory Diagnostic Tool

    Command Prompt

• Select Command Prompt
• In the command window type in notepad and press Enter.
• The notepad opens. Under File menu select Open.
• Select "Computer" and find your flash drive letter and close the notepad.
• In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter

  Note: Replace letter e with the drive letter of your flash drive.

• The tool will start to run.
• When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

[Karen Amy]

Thank you very much for your help.  I think what has happened is that someone tried to open a file and when the box came up and asked which program to use, they chose Windows Media Center.  I was able to get that turned off and did get the Norton Antivirus to run a scan, it found nothing.  However, I still cannot download Malwarebytes, even renamed.  I get the message, "The system cannot find the environment option that you entered" when I try to do virtually anything.  I did all of this before you replied and I promise to be good and do nothing I wasn't told to do now.

 

Here is the log:

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013

Ran by SYSTEM on 08-07-2013 09:05:12

Running from H:\

Windows 7 Home Premium (X64) OS Language: English(US)

Internet Explorer Version 10

Boot Mode: Recovery

The current controlset is ControlSet001

ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)

HKLM\...\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-01-04] (IDT, Inc.)

HKLM\...\Run: [setDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-19] (Hewlett-Packard Development Company, L.P.)

HKLM\...\Run: [WeatherBlink Home Page Guard 64 bit] "C:\PROGRA~2\WEATHE~2\bar\1.bin\AppIntegrator64.exe" [548936 2013-05-27] ()

HKLM\...\Run: [MapsGalaxy Home Page Guard 64 bit] "C:\PROGRA~2\MAPSGA~2\bar\1.bin\AppIntegrator64.exe" [548936 2013-05-27] ()

HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-20] (Microsoft Corporation)

HKLM-x32\...\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [630912 2012-02-10] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)

HKLM-x32\...\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)

HKLM-x32\...\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)

HKLM-x32\...\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-09-13] (Hewlett-Packard Development Company L.P.)

HKLM-x32\...\Run: []  [x]

HKLM-x32\...\Run: [WeatherBlink Search Scope Monitor] "C:\PROGRA~2\WEATHE~2\bar\1.bin\gcsrchmn.exe" /m=2 /w /h [44784 2013-05-27] (MindSpark)

HKLM-x32\...\Run: [WeatherBlink Browser Plugin Loader] C:\PROGRA~2\WEATHE~2\bar\1.bin\gcbrmon.exe [30096 2013-05-27] (VER_COMPANY_NAME)

HKLM-x32\...\Run: [MapsGalaxy Search Scope Monitor] "C:\PROGRA~2\MAPSGA~2\bar\1.bin\39srchmn.exe" /m=2 /w /h [44784 2013-05-27] (MindSpark)

HKLM-x32\...\Run: [MapsGalaxy_39 Browser Plugin Loader] C:\PROGRA~2\MAPSGA~2\bar\1.bin\39brmon.exe [30096 2013-05-27] (VER_COMPANY_NAME)

HKU\Baylee Carroll\...\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil64_11_2_202_160_ActiveX.exe -update activex [628896 2012-02-29] (Adobe Systems Incorporated)

 

==================== Services (Whitelisted) =================

 

S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-02-10] (Advanced Micro Devices, Inc.)

S2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard)

S2 MapsGalaxy_39Service; C:\PROGRA~2\MAPSGA~2\bar\1.bin\39barsvc.exe [42504 2013-05-27] (COMPANYVERS_NAME)

S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe [138272 2012-06-15] (Symantec Corporation)

S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)

S2 WeatherBlinkService; C:\PROGRA~2\WEATHE~2\bar\1.bin\gcbarsvc.exe [42504 2013-05-27] (COMPANYVERS_NAME)

S3 WMSVC; C:\Windows\system32\inetsrv\wmsvc.exe [10752 2009-07-13] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

S0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [31872 2012-02-02] (Advanced Micro Devices, Inc.)

S3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20130620.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)

S3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20130620.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)

S3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys [167072 2012-06-06] (Symantec Corporation)

S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-06-22] (Symantec Corporation)

S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-06-22] (Symantec Corporation)

S3 EraserUtilDrv11220; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys [138912 2013-06-22] (Symantec Corporation)

S3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20130626.001\IDSvia64.sys [513184 2013-06-21] (Symantec Corporation)

S3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20130626.001\IDSvia64.sys [513184 2013-06-21] (Symantec Corporation)

S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130626.017\ENG64.SYS [126040 2013-06-22] (Symantec Corporation)

S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130626.017\ENG64.SYS [126040 2013-06-22] (Symantec Corporation)

S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130626.017\EX64.SYS [2098776 2013-06-22] (Symantec Corporation)

S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130626.017\EX64.SYS [2098776 2013-06-22] (Symantec Corporation)

S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [258664 2011-09-21] (Realtek Semiconductor Corp.)

S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS [737952 2012-07-05] (Symantec Corporation)

S3 SRTSPX; C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS [37536 2012-07-05] (Symantec Corporation)

S3 SymDS; C:\Windows\system32\drivers\NISx64\1309010.00E\SYMDS64.SYS [451192 2011-07-25] (Symantec Corporation)

S3 SymEFA; C:\Windows\system32\drivers\NISx64\1309010.00E\SYMEFA64.SYS [1129120 2012-05-21] (Symantec Corporation)

S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2013-02-17] (Symantec Corporation)

S1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [43640 2012-04-17] (Symantec Corporation)

S3 SymIRON; C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS [190072 2012-04-17] (Symantec Corporation)

S3 SymNetS; C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS [405624 2012-04-17] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

 

==================== One Month Created Files and Folders ========

 

2013-07-08 09:05 - 2013-07-08 09:05 - 00000000 ____D C:\FRST

2013-07-08 05:59 - 2013-07-08 05:59 - 00000000 ____D C:\Users\Max\WPDNSE

2013-07-08 05:39 - 2013-07-08 05:39 - 00000000 ____A C:\Users\Max\Desktop\sfcdetails.txt

2013-07-07 18:52 - 2013-07-07 18:52 - 10285040 ___AC (Malwarebytes Corporation                                    ) C:\Users\Max\Downloads\mbam-setup-1.75.0.1300 (1).exe

2013-07-07 18:50 - 2013-07-07 19:06 - 00000000 ____D C:\Users\Max\{96A9AA49-920A-4A75-96D4-6B143E533599}

2013-07-07 18:46 - 2013-07-07 18:46 - 00000000 ____D C:\Users\Max\Documents\all_default_file_extentions

2013-07-07 18:45 - 2013-07-07 18:45 - 00138461 ___AC C:\Users\Max\Downloads\all_default_file_extentions.zip

2013-07-07 18:45 - 2013-07-07 18:45 - 00001251 ____A C:\Users\Max\Desktop\all_default_file_extentions - Shortcut.lnk

2013-07-07 16:47 - 2013-07-07 16:47 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE (3).reg

2013-07-07 16:46 - 2013-07-07 16:46 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE (2).reg

2013-07-07 16:44 - 2013-07-07 16:44 - 00001213 ____A C:\Users\Max\Desktop\Default_EXE (1) - Shortcut.lnk

2013-07-07 16:43 - 2013-07-07 16:43 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE (1).reg

2013-07-07 16:42 - 2013-07-07 16:42 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE.reg

2013-07-07 16:39 - 2013-07-07 16:49 - 00000000 ____D C:\Users\Max\{AE723B3B-3988-4D75-8D8D-8D6BA6587FC6}

2013-07-07 15:03 - 2013-07-07 15:03 - 01093416 ___AC C:\Users\Max\Downloads\Setup.exe

2013-07-07 15:01 - 2013-07-07 15:01 - 01814144 ___AC (Bleeping Computer, LLC) C:\Users\Max\Downloads\iExplore.exe

2013-07-07 14:59 - 2013-07-07 14:59 - 10285040 ___AC (Malwarebytes Corporation                                    ) C:\Users\Max\Downloads\mbam-setup-1.75.0.1300.exe

2013-07-07 14:43 - 2013-07-07 14:43 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Baylee Carroll\Downloads\YYYYYY.exe

2013-07-07 14:40 - 2013-07-07 14:41 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Baylee Carroll\Downloads\mbam-setup-1.75.0.1300.exe

2013-07-07 14:32 - 2013-07-07 13:59 - 01624112 ____A (Bandoo Media Inc) C:\Users\Max\Documents\iLividSetup-r394-n-bf.exe

2013-07-07 14:13 - 2013-07-07 14:13 - 00000326 ____A C:\Users\Max\Desktop\Programs - Shortcut.lnk

2013-07-07 12:26 - 2013-07-07 12:10 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Max\Documents\pictureshouse-setup-1.75.0.1300(1).exe

2013-07-06 09:43 - 2013-07-06 09:43 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\WildTangent

2013-07-06 08:52 - 2013-07-06 08:52 - 00000288 ___AH C:\Windows\Tasks\User_Feed_Synchronization-{000D7FF2-F09B-4A2D-8142-C312F8BEB79A}.job

2013-07-05 10:43 - 2013-07-05 10:43 - 00000000 ____D C:\Users\Max\New folder

2013-07-05 08:23 - 2013-07-05 08:23 - 35818464 ____A C:\Users\Max\00000063

2013-07-05 08:21 - 2013-07-05 08:21 - 28825678 ____A C:\Users\Max\0000004C

2013-07-01 18:54 - 2013-07-01 18:56 - 00005287 ____A C:\Users\Max\Office(20130701215410E50).log

2013-07-01 15:16 - 2013-07-01 15:16 - 00034012 ____A C:\Users\Max\PrintPreview.hta

2013-06-30 09:38 - 2012-02-29 18:12 - 00000090 __AHC C:\Users\Max\Downloads\desktop (1).ini

2013-06-30 07:44 - 2013-07-01 18:05 - 00000000 ____D C:\Users\Max\AppData\Roaming\Skype

2013-06-29 13:28 - 2013-07-05 10:43 - 00031744 __ASH C:\Users\Max\Thumbs.db

2013-06-29 09:19 - 2013-06-29 09:19 - 00049472 ____A C:\Users\Max\MSI12a63.LOG

2013-06-29 09:18 - 2013-06-29 09:18 - 00035862 ____A C:\Users\Max\MSI12a62.LOG

2013-06-29 09:17 - 2013-06-29 09:17 - 00020978 ____A C:\Users\Max\MSI12a61.LOG

2013-06-29 09:16 - 2013-06-29 09:17 - 00021136 ____A C:\Users\Max\MSI12a60.LOG

2013-06-29 09:14 - 2013-06-29 09:15 - 00547942 ____A C:\Users\Max\MSI12a5d.LOG

2013-06-29 09:12 - 2013-06-29 09:12 - 00049472 ____A C:\Users\Max\MSI12a5c.LOG

2013-06-29 09:11 - 2013-06-29 09:11 - 00049472 ____A C:\Users\Max\MSI12a5b.LOG

2013-06-29 09:10 - 2013-06-29 09:10 - 00048934 ____A C:\Users\Max\MSI12a5a.LOG

2013-06-29 05:15 - 2013-06-29 05:15 - 00001300 ____A C:\Users\Max\OutofProcReport37293728.txt

2013-06-28 18:52 - 2013-06-28 18:52 - 00000000 ___AT C:\Users\Max\~DF5195CBB15D05B193.TMP

2013-06-28 16:02 - 2012-04-17 18:13 - 00043640 ___RA (Symantec Corporation) C:\Windows\System32\Drivers\SymIMV.sys

2013-06-27 22:58 - 2013-07-07 18:51 - 00000000 ____D C:\Users\Max\msdt

2013-06-27 22:32 - 2013-06-27 22:34 - 10930320 ____A C:\Users\Max\MSIf4d72.LOG

2013-06-27 22:28 - 2013-06-27 22:28 - 04949942 ____A C:\Users\Max\MSIf4d70.LOG

2013-06-27 22:28 - 2013-06-27 22:28 - 04933560 ____A C:\Users\Max\MSIf4d71.LOG

2013-06-27 22:27 - 2013-06-27 22:28 - 00734552 ____A C:\Users\Max\MSIf4d6f.LOG

2013-06-27 22:27 - 2013-06-27 22:27 - 00734556 ____A C:\Users\Max\MSIf4d6e.LOG

2013-06-27 22:27 - 2013-06-27 22:27 - 00000000 ____A C:\Users\Max\isDBBF.tmp

2013-06-27 22:27 - 2013-06-27 22:27 - 00000000 ____A C:\Users\Max\is8EE7.tmp

2013-06-27 22:25 - 2013-06-27 22:25 - 00000000 ____A C:\Users\Max\is6BCD.tmp

2013-06-27 22:24 - 2013-06-27 22:25 - 00734468 ____A C:\Users\Max\MSIf4d6d.LOG

2013-06-27 22:24 - 2013-06-27 22:24 - 01230670 ____A C:\Users\Max\MSIf4d6c.LOG

2013-06-27 22:21 - 2013-06-27 22:22 - 00441584 ____A C:\Users\Max\MSIf4d69.LOG

2013-06-27 22:20 - 2013-06-27 22:21 - 00294294 ____A C:\Users\Max\MSIf4d66.LOG

2013-06-27 22:18 - 2013-06-27 22:19 - 00734284 ____A C:\Users\Max\MSIf4d65.LOG

2013-06-27 22:18 - 2013-06-27 22:18 - 00000000 ____A C:\Users\Max\is8381.tmp

2013-06-27 21:49 - 2013-06-27 21:56 - 00049208 ____A C:\Users\Max\HomeGroupUser$.bmp

2013-06-27 21:49 - 2013-06-27 21:56 - 00049208 ____A C:\Users\Max\Administrator.bmp

2013-06-27 21:47 - 2013-07-07 14:53 - 00031832 ____A C:\Users\Max\Max.bmp

2013-06-27 21:47 - 2013-06-27 21:56 - 00049208 ____A C:\Users\Max\Guest.bmp

2013-06-27 21:47 - 2013-06-27 21:56 - 00031832 ____A C:\Users\Max\Baylee Carroll.bmp

2013-06-27 16:47 - 2013-06-27 16:47 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Hewlett-Packard

2013-06-27 14:21 - 2013-07-07 18:40 - 00000000 ____D C:\Users\Max\msdtadmin

2013-06-27 13:33 - 2013-06-27 13:33 - 00000000 ____D C:\ACLM

2013-06-27 13:32 - 2013-07-08 05:00 - 00000000 ____D C:\HP Support Framework

2013-06-27 13:28 - 2013-06-27 21:38 - 00166438 ____A C:\Users\Max\AdobeARM.log

2013-06-26 13:32 - 2013-06-27 18:25 - 00000000 ____D C:\Users\Max\AppData\Local\Apps\2.0

2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ____D C:\Users\Max\Documents\New folder

2013-06-23 06:23 - 2013-06-23 06:24 - 00000000 ____D C:\Users\Max\AppData\Local\{04DCF938-88EC-4035-BA2B-660473B39F3D}

2013-06-22 17:28 - 2013-06-22 17:28 - 00001413 ____A C:\Users\Max\Desktop\Internet Explorer.lnk

2013-06-22 09:01 - 2013-06-23 13:09 - 00004293 ____A C:\Windows\SysWOW64\InstallUtil.InstallLog

2013-06-22 08:33 - 2013-06-27 21:26 - 00000000 ____D C:\users\DefaultAppPool

2013-06-22 08:33 - 2013-06-22 08:33 - 00000020 __ASH C:\Users\DefaultAppPool\ntuser.ini

2013-06-22 04:04 - 2013-06-22 04:04 - 00002501 ____A C:\Users\Public\Desktop\Norton Internet Security.lnk

2013-06-20 18:37 - 2013-06-20 18:37 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\Adobe

2013-06-20 18:18 - 2013-06-20 18:18 - 00000000 ____D C:\Users\Baylee Carroll\Documents\Youcam

2013-06-20 18:18 - 2013-06-20 18:18 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\CyberLink

2013-06-20 18:18 - 2013-06-20 18:18 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\CyberLink

2013-06-20 13:32 - 2013-06-20 13:34 - 02251920 ___AC (Microsoft Corporation) C:\Users\Max\Downloads\DefaultPack (1).EXE

2013-06-20 13:30 - 2013-06-20 13:30 - 02251920 ___AC (Microsoft Corporation) C:\Users\Max\Downloads\DefaultPack.EXE

2013-06-20 13:21 - 2012-08-23 06:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll

2013-06-20 13:21 - 2012-08-23 06:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys

2013-06-20 13:21 - 2012-08-23 06:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys

2013-06-20 13:21 - 2012-08-23 06:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys

2013-06-20 13:21 - 2012-08-23 05:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll

2013-06-20 13:21 - 2012-08-23 05:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll

2013-06-20 13:21 - 2012-08-23 05:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe

2013-06-20 13:21 - 2012-08-23 05:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll

2013-06-20 13:21 - 2012-08-23 05:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll

2013-06-20 13:21 - 2012-08-23 05:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll

2013-06-20 13:21 - 2012-08-23 05:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll

2013-06-20 13:21 - 2012-08-23 05:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll

2013-06-20 13:21 - 2012-08-23 05:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll

2013-06-20 13:21 - 2012-08-23 04:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll

2013-06-20 13:21 - 2012-08-23 03:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe

2013-06-20 13:21 - 2012-08-23 03:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll

2013-06-20 13:21 - 2012-08-23 03:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe

2013-06-20 13:21 - 2012-08-23 03:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll

2013-06-20 13:21 - 2012-08-23 02:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll

2013-06-20 13:21 - 2012-08-23 02:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll

2013-06-20 13:21 - 2012-08-23 02:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe

2013-06-20 13:21 - 2012-08-23 02:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe

2013-06-20 13:21 - 2012-08-23 01:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll

2013-06-20 13:21 - 2012-08-23 00:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2013-06-20 13:21 - 2012-08-23 00:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll

2013-06-20 13:09 - 2012-08-24 10:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys

2013-06-20 13:09 - 2012-08-24 10:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys

2013-06-20 13:09 - 2012-08-24 10:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll

2013-06-20 13:09 - 2012-08-24 10:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll

2013-06-20 13:09 - 2012-08-24 08:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-06-20 13:09 - 2012-08-24 08:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-06-20 13:09 - 2012-08-24 08:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-06-20 13:09 - 2012-05-04 03:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll

2013-06-20 13:09 - 2012-05-04 01:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

2013-06-20 12:39 - 2013-06-20 12:39 - 00173620 ___AC C:\Users\Max\Downloads\WindowsUpdateDiagnostic.diagcab

2013-06-20 09:48 - 2012-05-31 21:39 - 00014848 ____A (Microsoft Corporation) C:\Windows\System32\wamregps.dll

2013-06-20 09:48 - 2012-05-31 21:36 - 00192000 ____A (Microsoft Corporation) C:\Windows\System32\iisRtl.dll

2013-06-20 09:48 - 2012-05-31 21:36 - 00011264 ____A (Microsoft Corporation) C:\Windows\System32\iisrstap.dll

2013-06-20 09:48 - 2012-05-31 21:35 - 00060928 ____A (Microsoft Corporation) C:\Windows\System32\ahadmin.dll

2013-06-20 09:48 - 2012-05-31 21:34 - 00055296 ____A (Microsoft Corporation) C:\Windows\System32\admwprox.dll

2013-06-20 09:48 - 2012-05-31 21:33 - 00016896 ____A (Microsoft Corporation) C:\Windows\System32\iisreset.exe

2013-06-20 09:48 - 2012-05-31 20:40 - 00010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll

2013-06-20 09:48 - 2012-05-31 20:37 - 00154624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll

2013-06-20 09:48 - 2012-05-31 20:37 - 00008192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll

2013-06-20 09:48 - 2012-05-31 20:35 - 00050688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll

2013-06-20 09:48 - 2012-05-31 20:35 - 00026624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll

2013-06-20 09:48 - 2012-05-31 20:34 - 00015360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe

2013-06-19 17:43 - 2013-06-20 12:19 - 00038403 ____A C:\Windows\iis7.log

2013-06-19 17:43 - 2013-06-19 17:43 - 00812474 ____A C:\Windows\SysWOW64\PerfStringBackup.INI

2013-06-19 17:42 - 2013-06-19 17:42 - 00000000 ____D C:\Windows\SysWOW64\BestPractices

2013-06-19 17:42 - 2013-06-19 17:42 - 00000000 ____D C:\Windows\System32\BestPractices

2013-06-19 17:42 - 2013-06-19 17:42 - 00000000 ____D C:\inetpub

2013-06-18 17:21 - 2013-06-18 17:21 - 00127984 ___AC C:\Users\Max\Downloads\windowsupdate.diagcab

2013-06-17 17:45 - 2013-06-17 17:45 - 00000000 ____D C:\Users\Max\AppData\Local\{457C5DD3-DB4C-4A12-A5D6-395D45F4F483}

2013-06-16 05:42 - 2013-06-02 14:11 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2013-06-15 09:45 - 2013-06-15 09:46 - 00000000 ____D C:\Users\Max\AppData\Local\{A790F59E-FC2B-4A94-B830-4C388937AF68}

2013-06-15 09:45 - 2013-06-15 09:45 - 00000000 ____D C:\Users\Max\AppData\Roaming\Windows Live Writer

2013-06-15 09:45 - 2013-06-15 09:45 - 00000000 ____D C:\Users\Max\AppData\Local\Windows Live Writer

2013-06-15 08:12 - 2013-06-15 08:12 - 00000000 __ADC C:\Users\Max\Downloads\New folder

2013-06-14 12:55 - 2013-06-08 06:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-06-14 12:55 - 2013-06-08 06:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-06-14 12:55 - 2013-06-08 06:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-06-14 12:55 - 2013-06-08 06:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-06-14 12:55 - 2013-06-08 06:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-06-14 12:55 - 2013-06-08 04:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-06-14 12:55 - 2013-06-08 03:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-06-14 12:55 - 2013-06-08 03:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-06-14 12:55 - 2013-06-08 03:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-06-14 12:55 - 2013-06-08 03:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-06-14 12:55 - 2013-06-08 03:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-06-14 12:55 - 2013-06-08 03:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-06-12 17:18 - 2013-05-16 17:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-06-12 17:18 - 2013-05-16 17:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-06-12 17:18 - 2013-05-16 16:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2013-06-12 17:18 - 2013-05-16 16:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe

2013-06-12 17:18 - 2013-05-16 16:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2013-06-12 17:18 - 2013-05-16 16:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-06-12 17:18 - 2013-05-16 16:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll

2013-06-12 17:18 - 2013-05-16 16:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll

2013-06-12 17:18 - 2013-05-16 16:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll

2013-06-12 17:18 - 2013-05-16 16:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2013-06-12 17:18 - 2013-05-16 16:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll

2013-06-12 17:18 - 2013-05-14 04:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe

2013-06-12 17:18 - 2013-05-14 00:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-06-12 08:40 - 2013-05-07 22:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2013-06-12 08:37 - 2013-05-12 21:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll

2013-06-12 08:37 - 2013-05-12 21:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll

2013-06-12 08:37 - 2013-05-12 21:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll

2013-06-12 08:37 - 2013-05-12 21:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll

2013-06-12 08:37 - 2013-05-12 20:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-06-12 08:37 - 2013-05-12 20:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2013-06-12 08:37 - 2013-05-12 20:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2013-06-12 08:37 - 2013-05-12 19:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe

2013-06-12 08:37 - 2013-05-12 19:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe

2013-06-12 08:37 - 2013-05-12 19:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll

2013-06-12 08:37 - 2013-05-09 21:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll

2013-06-12 08:37 - 2013-05-09 19:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll

2013-06-12 08:37 - 2013-04-25 21:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll

2013-06-12 08:37 - 2013-04-25 20:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2013-06-12 08:37 - 2013-04-25 15:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2013-06-12 08:37 - 2013-04-16 23:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2013-06-12 08:37 - 2013-04-16 22:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll

2013-06-12 08:37 - 2013-03-31 14:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll

2013-06-11 18:40 - 2013-06-11 18:40 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Macromedia

2013-06-11 18:40 - 2013-06-11 18:40 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\WeatherBlink

2013-06-11 18:40 - 2013-06-11 18:40 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\MapsGalaxy_39

2013-06-11 18:37 - 2013-06-11 18:37 - 00058016 ____A C:\Users\Baylee Carroll\AppData\Local\GDIPFONTCACHEV1.DAT

2013-06-11 18:36 - 2013-06-20 18:37 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Adobe

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Synaptics

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\hpqLog

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\ATI

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\Hewlett-Packard

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\ATI

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\AMD

2013-06-11 18:35 - 2013-06-27 21:26 - 00000000 ____D C:\users\Baylee Carroll

2013-06-11 18:35 - 2013-06-11 18:35 - 00000020 ___SH C:\Users\Baylee Carroll\ntuser.ini

2013-06-11 18:35 - 2013-06-11 18:35 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\VirtualStore

2013-06-09 20:58 - 2013-06-09 20:59 - 00000000 ____D C:\Users\Max\AppData\Local\{8CA24A40-E06B-417E-99AC-40B572C71C96}

2013-06-08 17:47 - 2013-06-08 17:47 - 00000000 ____D C:\Users\Max\AppData\Local\{ABE6A93D-D737-4F4B-B75A-2189A7859DA0}

2013-06-08 17:29 - 2013-06-08 17:29 - 03449448 ___AC (Activeris                                                   ) C:\Users\Max\Downloads\FastAgain-Installer-s2.exe

2013-06-08 15:58 - 2013-06-08 15:58 - 00000000 ____D C:\Users\Public\CyberLink

2013-06-08 15:53 - 2013-06-08 15:53 - 00000000 ____D C:\Users\Max\Documents\Blio

2013-06-08 15:53 - 2013-06-08 15:53 - 00000000 ____D C:\ProgramData\Blio

2013-06-08 15:52 - 2013-06-08 15:53 - 00000000 ____D C:\Users\Max\AppData\Roaming\Blio

2013-06-08 05:16 - 2013-06-27 21:26 - 00000000 ____D C:\Users\Max\Documents\Youcam

2013-06-08 05:16 - 2013-06-08 05:16 - 00000000 ____D C:\Users\Max\AppData\Roaming\CyberLink

2013-06-08 05:16 - 2013-06-08 05:16 - 00000000 ____D C:\Users\Max\AppData\Local\CyberLink

 

==================== One Month Modified Files and Folders =======

 

2013-07-08 09:05 - 2013-07-08 09:05 - 00000000 ____D C:\FRST

2013-07-08 05:59 - 2013-07-08 05:59 - 00000000 ____D C:\Users\Max\WPDNSE

2013-07-08 05:59 - 2013-02-10 11:48 - 00000000 ____D C:\users\Max

2013-07-08 05:59 - 2009-07-13 20:51 - 00065781 ____A C:\Windows\setupact.log

2013-07-08 05:39 - 2013-07-08 05:39 - 00000000 ____A C:\Users\Max\Desktop\sfcdetails.txt

2013-07-08 05:00 - 2013-06-27 13:32 - 00000000 ____D C:\HP Support Framework

2013-07-08 05:00 - 2009-07-13 21:13 - 00859306 ____A C:\Windows\System32\PerfStringBackup.INI

2013-07-07 19:06 - 2013-07-07 18:50 - 00000000 ____D C:\Users\Max\{96A9AA49-920A-4A75-96D4-6B143E533599}

2013-07-07 18:52 - 2013-07-07 18:52 - 10285040 ___AC (Malwarebytes Corporation                                    ) C:\Users\Max\Downloads\mbam-setup-1.75.0.1300 (1).exe

2013-07-07 18:51 - 2013-06-27 22:58 - 00000000 ____D C:\Users\Max\msdt

2013-07-07 18:46 - 2013-07-07 18:46 - 00000000 ____D C:\Users\Max\Documents\all_default_file_extentions

2013-07-07 18:45 - 2013-07-07 18:45 - 00138461 ___AC C:\Users\Max\Downloads\all_default_file_extentions.zip

2013-07-07 18:45 - 2013-07-07 18:45 - 00001251 ____A C:\Users\Max\Desktop\all_default_file_extentions - Shortcut.lnk

2013-07-07 18:40 - 2013-06-27 14:21 - 00000000 ____D C:\Users\Max\msdtadmin

2013-07-07 16:49 - 2013-07-07 16:39 - 00000000 ____D C:\Users\Max\{AE723B3B-3988-4D75-8D8D-8D6BA6587FC6}

2013-07-07 16:47 - 2013-07-07 16:47 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE (3).reg

2013-07-07 16:46 - 2013-07-07 16:46 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE (2).reg

2013-07-07 16:46 - 2009-07-13 20:45 - 00031248 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-07-07 16:46 - 2009-07-13 20:45 - 00031248 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-07-07 16:44 - 2013-07-07 16:44 - 00001213 ____A C:\Users\Max\Desktop\Default_EXE (1) - Shortcut.lnk

2013-07-07 16:43 - 2013-07-07 16:43 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE (1).reg

2013-07-07 16:42 - 2013-07-07 16:42 - 00005828 ___AC C:\Users\Max\Downloads\Default_EXE.reg

2013-07-07 16:39 - 2013-02-10 11:52 - 00000324 ____A C:\Windows\Tasks\HPCeeScheduleForMax.job

2013-07-07 15:03 - 2013-07-07 15:03 - 01093416 ___AC C:\Users\Max\Downloads\Setup.exe

2013-07-07 15:01 - 2013-07-07 15:01 - 01814144 ___AC (Bleeping Computer, LLC) C:\Users\Max\Downloads\iExplore.exe

2013-07-07 14:59 - 2013-07-07 14:59 - 10285040 ___AC (Malwarebytes Corporation                                    ) C:\Users\Max\Downloads\mbam-setup-1.75.0.1300.exe

2013-07-07 14:53 - 2013-06-27 21:47 - 00031832 ____A C:\Users\Max\Max.bmp

2013-07-07 14:43 - 2013-07-07 14:43 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Baylee Carroll\Downloads\YYYYYY.exe

2013-07-07 14:41 - 2013-07-07 14:40 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Baylee Carroll\Downloads\mbam-setup-1.75.0.1300.exe

2013-07-07 14:13 - 2013-07-07 14:13 - 00000326 ____A C:\Users\Max\Desktop\Programs - Shortcut.lnk

2013-07-07 13:59 - 2013-07-07 14:32 - 01624112 ____A (Bandoo Media Inc) C:\Users\Max\Documents\iLividSetup-r394-n-bf.exe

2013-07-07 12:10 - 2013-07-07 12:26 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Max\Documents\pictureshouse-setup-1.75.0.1300(1).exe

2013-07-06 09:43 - 2013-07-06 09:43 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\WildTangent

2013-07-06 08:52 - 2013-07-06 08:52 - 00000288 ___AH C:\Windows\Tasks\User_Feed_Synchronization-{000D7FF2-F09B-4A2D-8142-C312F8BEB79A}.job

2013-07-06 07:56 - 2009-07-13 20:45 - 00027648 _____ C:\Windows\System32\umstartup.etl

2013-07-05 10:43 - 2013-07-05 10:43 - 00000000 ____D C:\Users\Max\New folder

2013-07-05 10:43 - 2013-06-29 13:28 - 00031744 __ASH C:\Users\Max\Thumbs.db

2013-07-05 08:23 - 2013-07-05 08:23 - 35818464 ____A C:\Users\Max\00000063

2013-07-05 08:21 - 2013-07-05 08:21 - 28825678 ____A C:\Users\Max\0000004C

2013-07-01 18:56 - 2013-07-01 18:54 - 00005287 ____A C:\Users\Max\Office(20130701215410E50).log

2013-07-01 18:05 - 2013-06-30 07:44 - 00000000 ____D C:\Users\Max\AppData\Roaming\Skype

2013-07-01 15:16 - 2013-07-01 15:16 - 00034012 ____A C:\Users\Max\PrintPreview.hta

2013-06-30 13:27 - 2013-06-05 15:00 - 00000000 ____D C:\Users\Max\AppData\Local\CrashDumps

2013-06-29 09:19 - 2013-06-29 09:19 - 00049472 ____A C:\Users\Max\MSI12a63.LOG

2013-06-29 09:18 - 2013-06-29 09:18 - 00035862 ____A C:\Users\Max\MSI12a62.LOG

2013-06-29 09:17 - 2013-06-29 09:17 - 00020978 ____A C:\Users\Max\MSI12a61.LOG

2013-06-29 09:17 - 2013-06-29 09:16 - 00021136 ____A C:\Users\Max\MSI12a60.LOG

2013-06-29 09:15 - 2013-06-29 09:14 - 00547942 ____A C:\Users\Max\MSI12a5d.LOG

2013-06-29 09:12 - 2013-06-29 09:12 - 00049472 ____A C:\Users\Max\MSI12a5c.LOG

2013-06-29 09:11 - 2013-06-29 09:11 - 00049472 ____A C:\Users\Max\MSI12a5b.LOG

2013-06-29 09:10 - 2013-06-29 09:10 - 00048934 ____A C:\Users\Max\MSI12a5a.LOG

2013-06-29 05:15 - 2013-06-29 05:15 - 00001300 ____A C:\Users\Max\OutofProcReport37293728.txt

2013-06-28 18:52 - 2013-06-28 18:52 - 00000000 ___AT C:\Users\Max\~DF5195CBB15D05B193.TMP

2013-06-27 22:54 - 2010-11-20 19:47 - 00011392 ____A C:\Windows\PFRO.log

2013-06-27 22:34 - 2013-06-27 22:32 - 10930320 ____A C:\Users\Max\MSIf4d72.LOG

2013-06-27 22:33 - 2012-02-29 18:16 - 00000000 ____D C:\ProgramData\Adobe

2013-06-27 22:28 - 2013-06-27 22:28 - 04949942 ____A C:\Users\Max\MSIf4d70.LOG

2013-06-27 22:28 - 2013-06-27 22:28 - 04933560 ____A C:\Users\Max\MSIf4d71.LOG

2013-06-27 22:28 - 2013-06-27 22:27 - 00734552 ____A C:\Users\Max\MSIf4d6f.LOG

2013-06-27 22:27 - 2013-06-27 22:27 - 00734556 ____A C:\Users\Max\MSIf4d6e.LOG

2013-06-27 22:27 - 2013-06-27 22:27 - 00000000 ____A C:\Users\Max\isDBBF.tmp

2013-06-27 22:27 - 2013-06-27 22:27 - 00000000 ____A C:\Users\Max\is8EE7.tmp

2013-06-27 22:25 - 2013-06-27 22:25 - 00000000 ____A C:\Users\Max\is6BCD.tmp

2013-06-27 22:25 - 2013-06-27 22:24 - 00734468 ____A C:\Users\Max\MSIf4d6d.LOG

2013-06-27 22:24 - 2013-06-27 22:24 - 01230670 ____A C:\Users\Max\MSIf4d6c.LOG

2013-06-27 22:22 - 2013-06-27 22:21 - 00441584 ____A C:\Users\Max\MSIf4d69.LOG

2013-06-27 22:21 - 2013-06-27 22:20 - 00294294 ____A C:\Users\Max\MSIf4d66.LOG

2013-06-27 22:19 - 2013-06-27 22:18 - 00734284 ____A C:\Users\Max\MSIf4d65.LOG

2013-06-27 22:18 - 2013-06-27 22:18 - 00000000 ____A C:\Users\Max\is8381.tmp

2013-06-27 21:56 - 2013-06-27 21:49 - 00049208 ____A C:\Users\Max\HomeGroupUser$.bmp

2013-06-27 21:56 - 2013-06-27 21:49 - 00049208 ____A C:\Users\Max\Administrator.bmp

2013-06-27 21:56 - 2013-06-27 21:47 - 00049208 ____A C:\Users\Max\Guest.bmp

2013-06-27 21:56 - 2013-06-27 21:47 - 00031832 ____A C:\Users\Max\Baylee Carroll.bmp

2013-06-27 21:53 - 2009-07-13 19:20 - 00000000 ___HD C:\Windows\System32\GroupPolicy

2013-06-27 21:38 - 2013-06-27 13:28 - 00166438 ____A C:\Users\Max\AdobeARM.log

2013-06-27 21:26 - 2013-06-22 08:33 - 00000000 ____D C:\users\DefaultAppPool

2013-06-27 21:26 - 2013-06-11 18:35 - 00000000 ____D C:\users\Baylee Carroll

2013-06-27 21:26 - 2013-06-08 05:16 - 00000000 ____D C:\Users\Max\Documents\Youcam

2013-06-27 21:26 - 2013-05-25 05:09 - 00000000 ____D C:\Users\Max\AppData\Local\Hewlett-Packard_Developme

2013-06-27 21:26 - 2013-04-30 14:22 - 00000000 ____D C:\users\Guest

2013-06-27 21:26 - 2013-02-10 11:51 - 00000000 ____D C:\Users\Max\AppData\Local\Hewlett-Packard

2013-06-27 21:26 - 2009-07-13 19:20 - 00000000 __RHD C:\Users\Public\Libraries

2013-06-27 21:25 - 2012-06-25 02:09 - 00000000 ____D C:\ProgramData\Norton

2013-06-27 21:25 - 2011-02-10 11:23 - 00000000 ____D C:\SWSetup

2013-06-27 21:25 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Windows Sidebar

2013-06-27 21:25 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\registration

2013-06-27 21:24 - 2013-02-10 13:44 - 01351483 ____A C:\Windows\WindowsUpdate.log

2013-06-27 21:23 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\NDF

2013-06-27 21:05 - 2012-02-29 17:58 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-06-27 19:46 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-06-27 18:25 - 2013-06-26 13:32 - 00000000 ____D C:\Users\Max\AppData\Local\Apps\2.0

2013-06-27 16:47 - 2013-06-27 16:47 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Hewlett-Packard

2013-06-27 15:49 - 2013-05-13 18:41 - 00000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt

2013-06-27 15:49 - 2013-02-25 19:55 - 00000052 ____A C:\Windows\SysWOW64\DOErrors.log

2013-06-27 15:34 - 2012-06-25 01:37 - 00000000 ___RD C:\Users\Public\Recorded TV

2013-06-27 13:33 - 2013-06-27 13:33 - 00000000 ____D C:\ACLM

2013-06-25 12:48 - 2013-05-31 14:56 - 00000000 ____D C:\Users\Guest\AppData\Local\CrashDumps

2013-06-23 13:25 - 2013-06-23 13:25 - 00000000 ____D C:\Users\Max\Documents\New folder

2013-06-23 13:09 - 2013-06-22 09:01 - 00004293 ____A C:\Windows\SysWOW64\InstallUtil.InstallLog

2013-06-23 07:45 - 2012-02-29 18:18 - 00000000 ____D C:\ProgramData\Hewlett-Packard

2013-06-23 07:45 - 2011-10-12 16:57 - 00000000 ____D C:\Program Files\Hewlett-Packard

2013-06-23 06:24 - 2013-06-23 06:23 - 00000000 ____D C:\Users\Max\AppData\Local\{04DCF938-88EC-4035-BA2B-660473B39F3D}

2013-06-22 17:28 - 2013-06-22 17:28 - 00001413 ____A C:\Users\Max\Desktop\Internet Explorer.lnk

2013-06-22 08:33 - 2013-06-22 08:33 - 00000020 __ASH C:\Users\DefaultAppPool\ntuser.ini

2013-06-22 04:04 - 2013-06-22 04:04 - 00002501 ____A C:\Users\Public\Desktop\Norton Internet Security.lnk

2013-06-20 18:37 - 2013-06-20 18:37 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\Adobe

2013-06-20 18:37 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Adobe

2013-06-20 18:18 - 2013-06-20 18:18 - 00000000 ____D C:\Users\Baylee Carroll\Documents\Youcam

2013-06-20 18:18 - 2013-06-20 18:18 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\CyberLink

2013-06-20 18:18 - 2013-06-20 18:18 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\CyberLink

2013-06-20 16:02 - 2013-06-05 15:00 - 00000000 ____D C:\Users\Max\AppData\Roaming\WildTangent

2013-06-20 16:02 - 2012-02-29 18:03 - 00000000 ____D C:\ProgramData\WildTangent

2013-06-20 16:02 - 2012-02-29 18:03 - 00000000 ____D C:\Program Files (x86)\WildTangent Games

2013-06-20 13:34 - 2013-06-20 13:32 - 02251920 ___AC (Microsoft Corporation) C:\Users\Max\Downloads\DefaultPack (1).EXE

2013-06-20 13:30 - 2013-06-20 13:30 - 02251920 ___AC (Microsoft Corporation) C:\Users\Max\Downloads\DefaultPack.EXE

2013-06-20 13:22 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-06-20 12:39 - 2013-06-20 12:39 - 00173620 ___AC C:\Users\Max\Downloads\WindowsUpdateDiagnostic.diagcab

2013-06-20 12:19 - 2013-06-19 17:43 - 00038403 ____A C:\Windows\iis7.log

2013-06-20 12:19 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\SysWOW64\inetsrv

2013-06-20 12:19 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\inetsrv

2013-06-19 17:43 - 2013-06-19 17:43 - 00812474 ____A C:\Windows\SysWOW64\PerfStringBackup.INI

2013-06-19 17:42 - 2013-06-19 17:42 - 00000000 ____D C:\Windows\SysWOW64\BestPractices

2013-06-19 17:42 - 2013-06-19 17:42 - 00000000 ____D C:\Windows\System32\BestPractices

2013-06-19 17:42 - 2013-06-19 17:42 - 00000000 ____D C:\inetpub

2013-06-18 17:21 - 2013-06-18 17:21 - 00127984 ___AC C:\Users\Max\Downloads\windowsupdate.diagcab

2013-06-18 12:16 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache

2013-06-17 17:45 - 2013-06-17 17:45 - 00000000 ____D C:\Users\Max\AppData\Local\{457C5DD3-DB4C-4A12-A5D6-395D45F4F483}

2013-06-17 17:44 - 2013-03-24 17:53 - 00000000 ____D C:\Users\Max\Tracing

2013-06-15 09:46 - 2013-06-15 09:45 - 00000000 ____D C:\Users\Max\AppData\Local\{A790F59E-FC2B-4A94-B830-4C388937AF68}

2013-06-15 09:45 - 2013-06-15 09:45 - 00000000 ____D C:\Users\Max\AppData\Roaming\Windows Live Writer

2013-06-15 09:45 - 2013-06-15 09:45 - 00000000 ____D C:\Users\Max\AppData\Local\Windows Live Writer

2013-06-15 08:12 - 2013-06-15 08:12 - 00000000 __ADC C:\Users\Max\Downloads\New folder

2013-06-11 18:40 - 2013-06-11 18:40 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Macromedia

2013-06-11 18:40 - 2013-06-11 18:40 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\WeatherBlink

2013-06-11 18:40 - 2013-06-11 18:40 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\MapsGalaxy_39

2013-06-11 18:37 - 2013-06-11 18:37 - 00058016 ____A C:\Users\Baylee Carroll\AppData\Local\GDIPFONTCACHEV1.DAT

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\Synaptics

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\hpqLog

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Roaming\ATI

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\Hewlett-Packard

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\ATI

2013-06-11 18:36 - 2013-06-11 18:36 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\AMD

2013-06-11 18:35 - 2013-06-11 18:35 - 00000020 ___SH C:\Users\Baylee Carroll\ntuser.ini

2013-06-11 18:35 - 2013-06-11 18:35 - 00000000 ____D C:\Users\Baylee Carroll\AppData\Local\VirtualStore

2013-06-09 20:59 - 2013-06-09 20:58 - 00000000 ____D C:\Users\Max\AppData\Local\{8CA24A40-E06B-417E-99AC-40B572C71C96}

2013-06-08 17:47 - 2013-06-08 17:47 - 00000000 ____D C:\Users\Max\AppData\Local\{ABE6A93D-D737-4F4B-B75A-2189A7859DA0}

2013-06-08 17:29 - 2013-06-08 17:29 - 03449448 ___AC (Activeris                                                   ) C:\Users\Max\Downloads\FastAgain-Installer-s2.exe

2013-06-08 16:57 - 2009-07-13 21:08 - 00032576 ____A C:\Windows\Tasks\SCHEDLGU.TXT

2013-06-08 15:58 - 2013-06-08 15:58 - 00000000 ____D C:\Users\Public\CyberLink

2013-06-08 15:53 - 2013-06-08 15:53 - 00000000 ____D C:\Users\Max\Documents\Blio

2013-06-08 15:53 - 2013-06-08 15:53 - 00000000 ____D C:\ProgramData\Blio

2013-06-08 15:53 - 2013-06-08 15:52 - 00000000 ____D C:\Users\Max\AppData\Roaming\Blio

2013-06-08 06:08 - 2013-06-14 12:55 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-06-08 06:07 - 2013-06-14 12:55 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-06-08 06:06 - 2013-06-14 12:55 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-06-08 06:06 - 2013-06-14 12:55 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-06-08 06:06 - 2013-06-14 12:55 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-06-08 05:16 - 2013-06-08 05:16 - 00000000 ____D C:\Users\Max\AppData\Roaming\CyberLink

2013-06-08 05:16 - 2013-06-08 05:16 - 00000000 ____D C:\Users\Max\AppData\Local\CyberLink

2013-06-08 04:28 - 2013-06-14 12:55 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-06-08 03:42 - 2013-06-14 12:55 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-06-08 03:40 - 2013-06-14 12:55 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-06-08 03:40 - 2013-06-14 12:55 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-06-08 03:40 - 2013-06-14 12:55 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-06-08 03:40 - 2013-06-14 12:55 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-06-08 03:13 - 2013-06-14 12:55 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

==================== Known DLLs (Whitelisted) ================

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

 

==================== EXE ASSOCIATION =====================

 

HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK

 

==================== Restore Points  =========================

 

Restore point made on: 2013-06-12 08:31:00

Restore point made on: 2013-06-12 17:17:45

Restore point made on: 2013-06-14 12:55:40

Restore point made on: 2013-06-16 05:42:35

Restore point made on: 2013-06-17 17:59:07

Restore point made on: 2013-06-19 17:42:01

Restore point made on: 2013-06-20 09:56:22

Restore point made on: 2013-06-20 13:15:11

Restore point made on: 2013-06-23 07:43:28

Restore point made on: 2013-06-23 07:44:38

Restore point made on: 2013-06-23 13:12:05

Restore point made on: 2013-06-27 15:31:44

==================== Memory info ===========================

Percentage of memory in use: 19%

Total physical RAM: 3560.37 MB

Available physical RAM: 2862.73 MB

Total Pagefile: 3558.52 MB

Available Pagefile: 2849.91 MB

Total Virtual: 8192 MB

Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:445.56 GB) (Free:399.92 GB) NTFS (Disk=0 Partition=2) ==>[system with boot components (obtained from reading drive)]

Drive e: (Recovery) (Fixed) (Total:19.91 GB) (Free:2.12 GB) NTFS (Disk=0 Partition=3) ==>[system with boot components (obtained from reading drive)]

Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32 (Disk=0 Partition=4)

Drive h: () (Removable) (Total:7.44 GB) (Free:7.33 GB) FAT32 (Disk=1 Partition=1)

Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS

Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS (Disk=0 Partition=1) ==>[system with boot components (obtained from reading drive)]

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 5D8C0991)

Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=446 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS)

Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

========================================================

Disk: 1 (Size: 7 GB) (Disk ID: 46D24CC6)

Partition 1: (Not Active) - (Size=7 GB) - (Type=0B)

 

LastRegBack: 2013-06-18 09:58

[Maniac]

Thank you!

Please follow the instrucitons here and post your log files:

http://forums.malwarebytes.org/index.php?showtopic=9573

[Karen Amy]

When I try to download Malwarebytes it says:  The system could not find the environment option that was entered.  It says: ShellExecuteEx failed; code 203

 

The same thing happens with DDS except it said to send it to the desktop and when I tried that it said:  Windows could not create the shortcut.  Check to see if the disk is full.

[Maniac]

You have DDS problem both with .scr and .com ?

[Karen Amy]

Yes the same thing happens on both.

[Maniac]

Try with this extension:

http://www.bleepingcomputer.com/download/dds/dl/104/

[Karen Amy]

The same thing happens

[Maniac]

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Please tick the Scan All users. Next, click the Quick Scan button. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.

[Karen Amy]

It says The system could not find the environment option that was entered also.

[Maniac]

Check the first answer:

http://answers.microsoft.com/en-us/windows/forum/windows_vista-security/the-system-could-not-find-the-environment-option/aa301b37-e6b9-4f8c-b812-3ba2c58e1442

[Karen Amy]

ok, on the scannow, it says "Windows resource protection found corrupt files but was unable to fix some of them details are included in the CBS Log

C:\Windows\Logs\CBS\CBS.log.  

My command prompt says C:\Windows\system32>.  Should I remove the system32 and type C:\Windows\Logs\CBS\CBS.log?  Or leave the system 32 in?

[Maniac]

Try to repair your Windows 7:

http://www.pcworld.com/article/243190/how_to_repair_a_corrupt_windows_7_installation.html

[Karen Amy]

I don't have the disc for that so I am attempting a factory reset

[Karen Amy]

Ok, back to factory settings everything seems ok. 

[Maniac]

Thanks for letting me know!

Here some malware prevention tips:

users.telenet.be/bluepatchy/miekiemoes/prevention.html

Safe surfing!

[Karen Amy]

You are welcome, Thanks a lot for your help. 

[AdvancedSetup]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!