Jump to content

Scorpion Saver Will Not Remove From Program List


Recommended Posts

I have been trying for days to remove this. I have scanned my computer with Norton, Malwarebytes Pro, AdwCleanerFarbar Recovery Scan Tool , and SystemLook . Then I downloaded ERUNT and backed up my registry. And then I downloaded FXX.zip  and then I let it merge with my registry. I have rebooted after that, and it is still there. When I click in the remove program to remove it, I get the following error- The feature you are trying to use is on a network resource that is unavailable. Click ok to try again, or enter an alternate path to a folder containing the installation package "installServices64.msi" in the box below. Use source  c:\\temp\\ with the option to browse, although there is not any other option. Is there any way to remove this please!

Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-12-2013

Ran by John at 2013-12-09 19:19:36

Running from C:\Users\John\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: Norton AntiVirus (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Norton AntiVirus (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}

 

==================== Installed Programs ======================

 

Adobe AIR (x32 Version: 1.5.3.9130)

Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)

Adobe Reader X (10.1.8) (x32 Version: 10.1.8)

Agatha Christie - Peril at End House (x32 Version: 2.2.0.95)

AOL Uninstaller (Choose which Products to Remove) (x32)

Apple Application Support (x32 Version: 2.3.3)

Apple Mobile Device Support (Version: 6.1.0.13)

Apple Software Update (x32 Version: 2.1.3.127)

ATI Catalyst Install Manager (Version: 3.0.774.0)

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95)

Bing Rewards Client Installer (x32 Version: 16.0.345.0)

BitZipper 2010 (x32)

Blackhawk Striker 2 (x32 Version: 2.2.0.95)

Blasterball 3 (x32 Version: 2.2.0.95)

Bounce Symphony (x32 Version: 2.2.0.95)

Build-a-lot 2 (x32 Version: 2.2.0.95)

Cake Mania (x32 Version: 2.2.0.95)

Catalyst Control Center - Branding (x32 Version: 1.00.0000)

Catalyst Control Center Core Implementation (x32 Version: 2010.0511.2153.37435)

Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0511.2153.37435)

Catalyst Control Center Graphics Full New (x32 Version: 2010.0511.2153.37435)

Catalyst Control Center Graphics Light (x32 Version: 2010.0511.2153.37435)

Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0511.2153.37435)

Catalyst Control Center InstallProxy (x32 Version: 2010.0511.2153.37435)

Catalyst Control Center Localization All (x32 Version: 2010.0511.2153.37435)

CCC Help Chinese Standard (x32 Version: 2010.0511.2152.37435)

CCC Help Chinese Traditional (x32 Version: 2010.0511.2152.37435)

CCC Help Czech (x32 Version: 2010.0511.2152.37435)

CCC Help Danish (x32 Version: 2010.0511.2152.37435)

CCC Help Dutch (x32 Version: 2010.0511.2152.37435)

CCC Help English (x32 Version: 2010.0511.2152.37435)

CCC Help Finnish (x32 Version: 2010.0511.2152.37435)

CCC Help French (x32 Version: 2010.0511.2152.37435)

CCC Help German (x32 Version: 2010.0511.2152.37435)

CCC Help Greek (x32 Version: 2010.0511.2152.37435)

CCC Help Hungarian (x32 Version: 2010.0511.2152.37435)

CCC Help Italian (x32 Version: 2010.0511.2152.37435)

CCC Help Japanese (x32 Version: 2010.0511.2152.37435)

CCC Help Korean (x32 Version: 2010.0511.2152.37435)

CCC Help Norwegian (x32 Version: 2010.0511.2152.37435)

CCC Help Polish (x32 Version: 2010.0511.2152.37435)

CCC Help Portuguese (x32 Version: 2010.0511.2152.37435)

CCC Help Russian (x32 Version: 2010.0511.2152.37435)

CCC Help Spanish (x32 Version: 2010.0511.2152.37435)

CCC Help Swedish (x32 Version: 2010.0511.2152.37435)

CCC Help Thai (x32 Version: 2010.0511.2152.37435)

CCC Help Turkish (x32 Version: 2010.0511.2152.37435)

ccc-core-static (x32 Version: 2010.0511.2153.37435)

ccc-utility64 (Version: 2010.0511.2153.37435)

Chuzzle Deluxe (x32 Version: 2.2.0.95)

CyberLink DVD Suite Deluxe (x32 Version: 7.0.3210)

D3DX10 (x32 Version: 15.4.2368.0902)

Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95)

Dora's World Adventure (x32 Version: 2.2.0.95)

Doxillion Document Converter (x32)

DVD Menu Pack for HP MediaSmart Video (x32 Version: 4.2.4412)

Escape Rosecliff Island (x32 Version: 2.2.0.95)

Family Feud Battle of the Sexes (x32 Version: 2.2.0.95)

Farm Frenzy (x32 Version: 2.2.0.95)

FATE (x32 Version: 2.2.0.95)

File Type Assistant (x32)

Final Drive Nitro (x32 Version: 2.2.0.95)

Free YouTube to MP3 Converter Studio 8.2 (x32)

Google Chrome (HKCU Version: 31.0.1650.63)

Google Earth (x32 Version: 7.1.1.1888)

Google Update Helper (x32 Version: 1.3.22.3)

Heroes of Hellas 2 - Olympia (x32 Version: 2.2.0.95)

Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)

HP Auto (Version: 1.0.12494.3472)

HP Client Services (Version: 1.0.12656.3472)

HP Customer Experience Enhancements (x32 Version: 6.0.1.7)

HP Games (x32 Version: 1.0.2.5)

HP MediaSmart DVD (x32 Version: 4.2.4521)

HP MediaSmart Music (x32 Version: 4.2.4517)

HP MediaSmart Photo (x32 Version: 4.2.4513)

HP MediaSmart SmartMenu (Version: 3.1.2.4)

HP MediaSmart Video (x32 Version: 4.2.4522)

HP MediaSmart/TouchSmart Netflix (x32 Version: 1.0.4.0)

HP MovieStore (x32 Version: 1.0.027)

HP MovieStore (x32 Version: 2.0.2)

HP Odometer (x32 Version: 2.10.0000)

HP Setup (x32 Version: 8.4.4400.3525)

HP Setup Manager (x32 Version: 1.0.12844.3519)

HP Support Assistant (x32 Version: 7.0.39.15)

HP Support Information (x32 Version: 10.1.1000)

HP Update (x32 Version: 5.002.003.003)

HP Vision Hardware Diagnostics (Version: 2.1.6.0)

Hulu Desktop (HKCU Version: 0.9.13)

iTunes (Version: 11.0.2.26)

Java Auto Updater (x32 Version: 2.0.7.1)

Java 6 Update 23 (x32 Version: 6.0.230)

Java 6 Update 33 (x32 Version: 6.0.330)

Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95)

Junk Mail filter update (x32 Version: 15.4.3502.0922)

LabelPrint (x32 Version: 2.5.3130)

magicJack (HKCU Version: 2.0.6073.4413)

Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Default Manager (x32 Version: 2.2.114.0)

Microsoft Office 365 Home Premium - en-us (Version: 15.0.4551.1005)

Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)

Microsoft Office Click-to-Run 2010 (x32 Version: 14.0.4763.1000)

Microsoft Office Starter 2010 - English (x32 Version: 14.0.4763.1000)

Microsoft PowerPoint Viewer (x32 Version: 14.0.7015.1000)

Microsoft Silverlight (Version: 5.1.20913.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)

Microsoft VC9 runtime libraries (x32 Version: 1.0.0)

Microsoft VC9 runtime libraries (x32 Version: 2.0.0)

Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)

Movie Theme Pack for HP MediaSmart Video (x32 Version: 4.2.4412)

MSVCRT (x32 Version: 15.4.2862.0708)

MSVCRT_amd64 (x32 Version: 15.4.2862.0708)

MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)

Mystery P.I. - The London Caper (x32 Version: 2.2.0.95)

Norton AntiVirus (x32 Version: 19.9.1.14)

Norton Online Backup (x32 Version: 2.1.17869)

Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1005)

Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1005)

Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1005)

PDF Complete Special Edition (x32 Version: 4.0.9)

Penguins! (x32 Version: 2.2.0.95)

PhotoNow! (x32 Version: 1.1.7717)

PictureMover (x32 Version: 3.5.0.33)

Plants vs. Zombies (x32 Version: 2.2.0.95)

PlayReady PC Runtime amd64 (Version: 1.3.0)

PlayReady PC Runtime x86 (x32 Version: 1.3.0)

Poker Superstars III (x32 Version: 2.2.0.95)

Polar Bowler (x32 Version: 2.2.0.95)

Polar Golfer (x32 Version: 2.2.0.95)

Power2Go (x32 Version: 6.1.4329)

PowerDirector (x32 Version: 8.0.3129)

Press Your Luck 2010 Edition (x32 Version: 2.2.0.95)

PressReader (x32 Version: 5.10.621.0)

Ralink RT2860 Wireless LAN Card (x32)

RealDownloader (x32 Version: 1.3.2)

RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)

RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0)

RealPlayer (x32 Version: 16.0.2)

Realtek High Definition Audio Driver (x32 Version: 6.0.1.6196)

RealUpgrade 1.1 (x32 Version: 1.1.0)

Recovery Manager (x32 Version: 5.5.3219)

RoxioNow Player (x32 Version: 1.9.5.101)

ScorpionSaver (x32 Version: 1.0.0.0) <==== ATTENTION

ScorpionSaver Services (Version: 1.0.0.0) <==== ATTENTION

TomTom HOME (x32 Version: 2.9.2)

TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)

Update Installer for WildTangent Games App (x32)

VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)

Virtual Families (x32 Version: 2.2.0.95)

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95)

VLC media player 1.0.1 (x32 Version: 1.0.1)

Wheel of Fortune 2 (x32 Version: 2.2.0.95)

WildTangent Games App (HP Games) (x32 Version: 4.0.4.9)

Windows Live Communications Platform (x32 Version: 15.4.3502.0922)

Windows Live Essentials (x32 Version: 15.4.3502.0922)

Windows Live Essentials (x32 Version: 15.4.3555.0308)

Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)

Windows Live Installer (x32 Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3555.0308)

Windows Live Mail (x32 Version: 15.4.3502.0922)

Windows Live Messenger (x32 Version: 15.4.3538.0513)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (x32 Version: 15.4.3502.0922)

Windows Live Photo Common (x32 Version: 15.4.3502.0922)

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)

Windows Live SOXE (x32 Version: 15.4.3502.0922)

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)

Windows Live UX Platform (x32 Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)

Windows Live Writer (x32 Version: 15.4.3502.0922)

Windows Live Writer Resources (x32 Version: 15.4.3502.0922)

Yahoo! Software Update (x32)

Zinio Reader 4 (x32 Version: 4.0.3184)

Zuma Deluxe (x32 Version: 2.2.0.95)

 

==================== Restore Points  =========================

 

29-11-2013 23:04:21 Removed ScorpionSaver Services

02-12-2013 01:00:08 Windows Backup

07-12-2013 08:32:46 Removed ScorpionSaver Services

09-12-2013 01:00:08 Windows Backup

 

==================== Hosts content: ==========================

 

2009-07-13 20:34 - 2009-06-10 15:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {043DA2DC-9BA0-4073-AC1F-5834EEF6CBEB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2013-11-13] (Microsoft Corporation)

Task: {056B7101-D6EE-4FC6-A1AB-B9623C63067A} - System32\Tasks\Microsoft Office 15 Sync Maintenance for John-HP-John John-HP => C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE [2013-11-13] (Microsoft Corporation)

Task: {05A54BEE-6029-42BC-95B6-BC30F0056904} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {1198CAA8-7876-478C-9A1B-8D0E29833726} - System32\Tasks\RMCreator => C:\Program Files (x86)\Hewlett-Packard\Recovery\Reminder.exe [2010-08-19] (CyberLink)

Task: {16F091C1-1A5C-4661-9939-0F9CB8A972D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-07] (Google Inc.)

Task: {1A263F22-98B4-4F33-A0EF-CE7EEB1295C4} - \DSite No Task File

Task: {1C264FC9-733F-434C-AE4A-BD13A020E1C2} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\wscstub.exe [2013-02-01] (Symantec Corporation)

Task: {2A7999E3-13EB-47BE-B891-A335D0D4CFC2} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)

Task: {3542DD76-2E00-41CD-BDAD-5E8D6EEE61AD} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-09-17] (Microsoft Corporation)

Task: {4675D35E-207F-43EC-84C1-B58EB07B54E4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001Core => C:\Users\John\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-12] (Google Inc.)

Task: {5447BAE6-7BF3-4D3B-B811-5FBD18373B9D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-10-15] (Hewlett-Packard)

Task: {5C9F5ACD-6EF3-4B7B-8A95-76B225BB95E9} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-04-16] (RealNetworks, Inc.)

Task: {61E764B2-3DB6-49D5-B756-43A2E1FD9253} - System32\Tasks\Norton AntiVirus\Norton Error Analyzer => C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\symerr.exe [2012-02-03] (Symantec Corporation)

Task: {69BF5D9B-B0A2-47BB-A9BA-4B0E5DCD9B10} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-07] (Google Inc.)

Task: {70C51F38-3B7D-4DD5-94C2-843A94D37238} - System32\Tasks\4580 => C:\Users\John\AppData\Local\Temp\launchie.vbsC:\Users\John\AppData\Local\Temp\launchie.vbs //B

Task: {71F90B76-DAB8-475B-B0BE-A409406808A2} - System32\Tasks\HPCeeScheduleForJOHN-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard)

Task: {73DCBF34-91F3-489D-87BD-E7F13199F0CD} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)

Task: {8EB897AB-9855-4F5F-A0C6-7411D0ECCC48} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-09-23] (Hewlett-Packard Company)

Task: {9E7CEBEF-DE31-4DB6-B3A2-8A0FABF31113} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)

Task: {9F644EF6-1326-42F4-AE31-3F58361C3C05} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-23] (Adobe Systems Incorporated)

Task: {A64D6E92-DBC2-4645-804A-5E1607E53599} - \BackgroundContainer Startup Task No Task File

Task: {AA1D8E04-F198-410F-9A2C-DB1EC6D48E34} - System32\Tasks\HPCeeScheduleForJohn => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard)

Task: {AA61E265-36A6-4FA2-A195-2918ACD979E5} - System32\Tasks\Norton AntiVirus\Norton Error Processor => C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\symerr.exe [2012-02-03] (Symantec Corporation)

Task: {ABF64462-DDF5-4422-B534-00A6061123FC} - System32\Tasks\{13858D49-47D3-477B-8743-669AB15070C7} => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe [2013-09-03] (Adobe Systems Incorporated)

Task: {B1C6D376-B9C6-48E2-A578-2F46E22A2E55} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)

Task: {C3B46052-4C11-4066-BA06-E6631E08421F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)

Task: {C5D1D491-EAC8-42B0-A409-ECB3015F478A} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)

Task: {DBC3BABB-2FDA-49E1-97BD-E2B02213BDFA} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)

Task: {E310C5AB-775E-4087-8EE4-390CB2D60481} - System32\Tasks\0 => Iexplore.exe 

Task: {F4FFAA55-ACE6-481D-8B05-004C194C3FFB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)

Task: {F5D77FC9-3917-47E4-8A78-9E2C16EFF9E3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001UA => C:\Users\John\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-12] (Google Inc.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001Core.job => C:\Users\John\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001UA.job => C:\Users\John\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\HPCeeScheduleForJOHN-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

Task: C:\Windows\Tasks\HPCeeScheduleForJohn.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

 

==================== Loaded Modules (whitelisted) =============

 

2013-11-13 03:59 - 2013-11-13 03:59 - 08866472 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll

2009-06-08 18:45 - 2009-06-08 18:45 - 00098304 ____R () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll

2010-11-22 19:08 - 2010-11-22 19:08 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll

2013-01-28 12:08 - 2013-01-28 12:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2013-01-28 12:08 - 2013-01-28 12:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2013-09-07 11:20 - 2013-09-07 11:20 - 00048640 _____ () C:\Program Files (x86)\AOL Desktop 9.7\zlib.dll

2013-09-07 11:19 - 2013-09-07 11:19 - 21117440 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libcef.dll

2013-09-07 11:19 - 2013-09-07 11:19 - 00648704 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libglesv2.dll

2013-09-07 11:19 - 2013-09-07 11:19 - 00122880 _____ () C:\Program Files (x86)\AOL Desktop 9.7\libegl.dll

2013-11-13 03:57 - 2013-11-13 03:57 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll

2013-11-13 03:57 - 2013-11-13 03:57 - 00359592 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\c2r32.dll

2013-12-05 13:20 - 2013-12-03 20:47 - 00702416 _____ () C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll

2013-12-05 13:20 - 2013-12-03 20:47 - 00099792 _____ () C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll

2013-12-05 13:20 - 2013-12-03 20:48 - 04055504 _____ () C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll

2013-12-05 13:20 - 2013-12-03 20:48 - 00399312 _____ () C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll

2013-12-05 13:20 - 2013-12-03 20:47 - 01619408 _____ () C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

AlternateDataStreams: C:\ProgramData\Temp:2C6A77F3

 

==================== Safe Mode (whitelisted) ===================

 

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (12/09/2013 08:08:12 AM) (Source: Office 2013 Licensing Service) (User: )

Description: Subscription licensing service failed: -1073415161

 

Error: (12/09/2013 06:48:43 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

 

Error: (12/09/2013 06:46:40 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

 

Error: (12/09/2013 01:01:13 AM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

 

Error: (12/08/2013 00:10:07 PM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".

Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.

Please use sxstrace.exe for detailed diagnosis.

 

Error: (12/08/2013 00:08:07 PM) (Source: Office 2013 Licensing Service) (User: )

Description: Subscription licensing service failed: -1073415161

 

Error: (12/08/2013 00:07:48 PM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

 

Error: (12/07/2013 08:39:47 PM) (Source: SideBySide) (User: )

Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.

The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

 

Error: (12/07/2013 01:37:26 PM) (Source: Office 2013 Licensing Service) (User: )

Description: Subscription licensing service failed: -1073415161

 

Error: (12/06/2013 08:08:11 AM) (Source: Office 2013 Licensing Service) (User: )

Description: Subscription licensing service failed: -1073415161

 

 

System errors:

=============

Error: (12/07/2013 04:55:51 AM) (Source: DCOM) (User: )

Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

 

Error: (12/06/2013 00:25:29 PM) (Source: Service Control Manager) (User: )

Description: The AdpeakProxy service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (11/29/2013 03:30:17 AM) (Source: Server) (User: )

Description: The server could not bind to the transport \Device\NetBT_Tcpip_{3DE02E36-3C2C-40C4-8E90-A7B28B29CF40} because another computer on the network has the same name.  The server could not start.

 

Error: (11/28/2013 06:53:19 PM) (Source: BugCheck) (User: )

Description: 0x0000003b (0x00000000c0000005, 0xfffff8800501f39e, 0xfffff880094ce8c0, 0x0000000000000000)C:\Windows\Minidump\112813-30950-01.dmp112813-30950-01

 

Error: (11/28/2013 06:53:18 PM) (Source: EventLog) (User: )

Description: The previous system shutdown at 6:50:58 PM on ‎11/‎28/‎2013 was unexpected.

 

Error: (11/27/2013 02:53:38 PM) (Source: Service Control Manager) (User: )

Description: The AdpeakProxy service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (11/27/2013 05:02:57 AM) (Source: DCOM) (User: )

Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

 

Error: (11/19/2013 04:37:12 AM) (Source: DCOM) (User: )

Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

 

Error: (11/12/2013 00:58:12 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (11/12/2013 03:02:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)

Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Internet Explorer 11 for Windows 7 for x64-based Systems.

 

 

Microsoft Office Sessions:

=========================

Error: (12/09/2013 08:08:12 AM) (Source: Office 2013 Licensing Service)(User: )

Description: Subscription licensing service failed: -1073415161

 

Error: (12/09/2013 06:48:43 AM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

 

Error: (12/09/2013 06:46:40 AM) (Source: SideBySide)(User: )

Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

 

Error: (12/09/2013 01:01:13 AM) (Source: SideBySide)(User: )

Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

 

Error: (12/08/2013 00:10:07 PM) (Source: SideBySide)(User: )

Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}\recordingmanager.exe

 

Error: (12/08/2013 00:08:07 PM) (Source: Office 2013 Licensing Service)(User: )

Description: Subscription licensing service failed: -1073415161

 

Error: (12/08/2013 00:07:48 PM) (Source: SideBySide)(User: )

Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

 

Error: (12/07/2013 08:39:47 PM) (Source: SideBySide)(User: )

Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

 

Error: (12/07/2013 01:37:26 PM) (Source: Office 2013 Licensing Service)(User: )

Description: Subscription licensing service failed: -1073415161

 

Error: (12/06/2013 08:08:11 AM) (Source: Office 2013 Licensing Service)(User: )

Description: Subscription licensing service failed: -1073415161

 

 

==================== Memory info =========================== 

 

Percentage of memory in use: 49%

Total physical RAM: 3839.29 MB

Available physical RAM: 1951.89 MB

Total Pagefile: 7676.75 MB

Available Pagefile: 5446.72 MB

Total Virtual: 8192 MB

Available Virtual: 8191.8 MB

 

==================== Drives ================================

 

Drive c: (OS) (Fixed) (Total:918.13 GB) (Free:499.96 GB) NTFS

Drive d: (HP_RECOVERY) (Fixed) (Total:13.28 GB) (Free:1.63 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive e: (Raven) (CDROM) (Total:0.69 GB) (Free:0.54 GB) UDF

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (Size: 932 GB) (Disk ID: 99082D95)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=918 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=13 GB) - (Type=07 NTFS)

 

==================== End Of Log ============================

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-12-2013

Ran by John (administrator) on JOHN-HP on 09-12-2013 19:15:30

Running from C:\Users\John\Downloads

Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)

Internet Explorer Version 11

Boot Mode: Normal

 

==================== Processes (Whitelisted) =================

 

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvchst.exe

(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe

(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe

() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe

(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvchst.exe

(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe

(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

(AOL Inc.) C:\Program Files (x86)\Common Files\AOL\1297381482\ee\aolsoftware.exe

(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(AOL Inc.) C:\Program Files (x86)\AOL Desktop 9.7\waol.exe

(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe

(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe

(Google Inc.) C:\Users\John\AppData\Local\Google\Update\1.3.22.3\GoogleCrashHandler.exe

(Google Inc.) C:\Users\John\AppData\Local\Google\Update\1.3.22.3\GoogleCrashHandler64.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(AOL LLC) C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe

(magicJack L.P.) C:\Users\John\AppData\Roaming\mjusbsp\st00000\mjsetup.exe

(AOL Inc.) C:\Program Files (x86)\AOL Desktop 9.7\shellmon.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE

(magicJack L.P.) C:\Users\John\AppData\Roaming\mjusbsp\magicJack.exe

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Google Inc.) C:\Users\John\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\John\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\John\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\John\AppData\Local\Google\Chrome\Application\chrome.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe

(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\cltlmh.exe

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [hpsysdrv] - C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)

HKLM\...\Run: [smartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [611896 2010-09-15] ()

HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2013-11-27] (Hewlett-Packard)

HKCU\...\Run: [cdloader] - C:\Users\John\AppData\Roaming\mjusbsp\cdloader2.exe [50592 2012-02-01] (magicJack L.P.)

HKCU\...\Run: [spyware Doctor] - C:\Users\John\Desktop\sdsetup.exe -min

HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

HKCU\...\Run: [sPMTray] - "C:\Program Files (x86)\PC Speed Maximizer\SPMTray.exe"

HKCU\...\Run: [Google Update] - C:\Users\John\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-12] (Google Inc.)

HKCU\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [247768 2012-08-28] (TomTom)

HKCU\...\Run: [DW7] - "C:\Program Files (x86)\The Weather Channel\The Weather Channel App\TWCApp.exe"

HKCU\...\Run: [AOL Fast Start] - C:\Program Files (x86)\AOL Desktop 9.7\aol.exe [72760 2013-09-07] (AOL Inc.)

MountPoints2: J - J:\autorun.exe

HKLM-x32\...\Run: [startCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-05-11] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576 2008-12-08] (Hewlett-Packard)

HKLM-x32\...\Run: [Norton Online Backup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)

HKLM-x32\...\Run: [Microsoft Default Manager] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation)

HKLM-x32\...\Run: [HostManager] - C:\Program Files (x86)\Common Files\AOL\1297381482\ee\aolsoftware.exe [41800 2010-03-08] (AOL Inc.)

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)

HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)

HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-02-20] (Apple Inc.)

HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2013-05-29] (RealNetworks, Inc.)

AppInit_DLLs:      [ ] ()

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC1E9103B3EF3CE01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US

SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = 

SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKLM - {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = http://rover.ebay.com/rover/1/711-111092-2357-0/4?satitle={searchTerms}&mfe=Desktops

SearchScopes: HKLM-x32 - {84A38C99-9D60-45B0-AF64-C78054CC717F} URL = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=msie70a

SearchScopes: HKLM-x32 - {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = http://rover.ebay.com/rover/1/711-111092-2357-0/4?satitle={searchTerms}&mfe=Desktops

SearchScopes: HKCU - {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = 

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)

BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)

BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ips\ipsbho.dll (Symantec Corporation)

BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)

BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)

Toolbar: HKLM - No Name - !{EF99BD32-C1FB-11D2-892F-0090271D4F88} -  No File

Toolbar: HKLM-x32 - No Name - !{EF99BD32-C1FB-11D2-892F-0090271D4F88} -  No File

Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File

Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

 

Chrome: 

=======



CHR DefaultSearchKeyword: google.com

CHR DefaultSearchProvider: Google

CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}

CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}

CHR Plugin: (Shockwave Flash) - C:\Users\John\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll No File

CHR Plugin: (Shockwave Flash) - C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File

CHR Plugin: (Remoting Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Users\John\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()

CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL No File

CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)

CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)

CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File

CHR Plugin: (Java Platform SE 6 U33) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)

CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)

CHR Plugin: (MetaStream 3 Plugin) - C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll No File

CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (RealNetworks Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll No File

CHR Plugin: (RealPlayer HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll No File

CHR Plugin: (RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

CHR Plugin: (RealPlayer Download Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)

CHR Plugin: (Hulu Desktop) - C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.13.1\npHDPlg.dll (Hulu LLC)

CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File

CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll No File

CHR Extension: (Google Calendar) - C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0

CHR Extension: (Google Wallet) - C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0

CHR HKLM-x32\...\Chrome\Extension: [banjjklfojcdbofbhbgiedekefohoaff] - C:\Users\John\AppData\Local\CRE\banjjklfojcdbofbhbgiedekefohoaff.crx

CHR HKLM-x32\...\Chrome\Extension: [bhapnjfnhgjijlphlbjbhkjbinbmcmjn] - C:\Users\John\AppData\Local\CRE\bhapnjfnhgjijlphlbjbhkjbinbmcmjn.crx

CHR HKLM-x32\...\Chrome\Extension: [ccifdkgnonhkcmaoappjpmijdhlppgmg] - C:\Users\John\AppData\Local\CRE\ccifdkgnonhkcmaoappjpmijdhlppgmg.crx

CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx

CHR HKLM-x32\...\Chrome\Extension: [lgnpmcfjohgjgfimgbegoabmaljgkokk] - C:\Program Files (x86)\GreyGray\lgnpmcfjohgjgfimgbegoabmaljgkokk.crx

CHR HKLM-x32\...\Chrome\Extension: [mcmilggabgjndpmhfnnnmpmmggmimbof] - C:\Users\John\AppData\Local\CRE\mcmilggabgjndpmhfnnnmpmmggmimbof.crx

 

==================== Services (Whitelisted) =================

 

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 NAV; C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe [138272 2012-06-15] (Symantec Corporation)

R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)

R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-09-17] (Microsoft Corporation)

R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1119768 2010-09-28] (PDF Complete Inc)

R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()

 

==================== Drivers (Whitelisted) ====================

 

R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.7.1.5\Definitions\BASHDefs\20131203.001\BHDrvx64.sys [1526488 2013-12-03] (Symantec Corporation)

R1 ccSet_NAV; C:\Windows\system32\drivers\NAVx64\1309010.00E\ccSetx64.sys [167072 2012-06-06] (Symantec Corporation)

R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-20] (Symantec Corporation)

R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-20] (Symantec Corporation)

R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.7.1.5\Definitions\IPSDefs\20131206.001\IDSvia64.sys [521816 2013-10-25] (Symantec Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.7.1.5\Definitions\VirusDefs\20131209.016\ENG64.SYS [126040 2013-11-20] (Symantec Corporation)

R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.7.1.5\Definitions\VirusDefs\20131209.016\EX64.SYS [2099288 2013-11-20] (Symantec Corporation)

R1 SRTSP; C:\Windows\System32\Drivers\NAVx64\1309010.00E\SRTSP64.SYS [737952 2012-07-05] (Symantec Corporation)

R1 SRTSPX; C:\Windows\system32\drivers\NAVx64\1309010.00E\SRTSPX64.SYS [37536 2012-07-05] (Symantec Corporation)

R0 SymDS; C:\Windows\System32\drivers\NAVx64\1309010.00E\SYMDS64.SYS [451192 2012-03-29] (Symantec Corporation)

R0 SymEFA; C:\Windows\System32\drivers\NAVx64\1309010.00E\SYMEFA64.SYS [1129120 2012-05-21] (Symantec Corporation)

R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2012-06-10] (Symantec Corporation)

R1 SymIRON; C:\Windows\system32\drivers\NAVx64\1309010.00E\Ironx64.SYS [190072 2012-04-17] (Symantec Corporation)

R1 SymNetS; C:\Windows\System32\Drivers\NAVx64\1309010.00E\SYMNETS.SYS [405624 2012-04-17] (Symantec Corporation)

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2013-12-09 19:15 - 2013-12-09 19:17 - 00018732 _____ C:\Users\John\Downloads\FRST.txt

2013-12-09 19:14 - 2013-12-09 19:14 - 00000000 ____D C:\FRST

2013-12-09 19:13 - 2013-12-09 19:13 - 01927982 _____ (Farbar) C:\Users\John\Downloads\FRST64.exe

2013-12-09 18:35 - 2013-12-09 18:35 - 01110034 _____ C:\Users\John\Downloads\AdwCleaner (1).exe

2013-12-07 05:21 - 2013-12-09 18:38 - 00000000 ____D C:\AdwCleaner

2013-12-07 05:21 - 2013-12-07 05:21 - 01110034 _____ C:\Users\John\Downloads\adwcleaner.exe

2013-12-05 12:25 - 2013-12-09 19:10 - 00003358 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-12-04 14:18 - 2013-12-04 17:01 - 00003336 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-11-28 19:32 - 2013-12-09 19:10 - 00003222 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-11-27 20:08 - 2013-11-27 20:08 - 00054855 _____ C:\Users\John\Downloads\msg0006 (2).WAV

2013-11-27 20:08 - 2013-11-27 20:08 - 00015075 _____ C:\Users\John\Downloads\msg0003 (13).WAV

2013-11-27 20:04 - 2013-11-27 20:04 - 00049655 _____ C:\Users\John\Downloads\msg0005 (5).WAV

2013-11-27 14:53 - 2013-10-16 10:18 - 00439296 _____ (Adpeak, Inc.) C:\Windows\system32\AdpeakProxy64.dll

2013-11-24 19:17 - 2013-11-24 19:17 - 00000000 ____D C:\Users\John\AppData\Local\{347ACE0D-227D-4447-83C1-546B738E9341}

2013-11-23 23:42 - 2013-11-23 23:42 - 00000000 ____D C:\Users\John\AppData\Local\{7FAE19E6-2FCA-453C-88C1-7BFF07D9238D}

2013-11-23 10:56 - 2013-12-04 17:01 - 00003200 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-11-19 20:47 - 2013-11-20 13:34 - 00000000 ____D C:\Users\John\Documents\RAVENGETSINTOCOLLEGE

2013-11-19 20:47 - 2013-11-19 20:47 - 00023054 _____ C:\Users\John\Documents\RAVENGETSINTOCOLLEGE.zip

2013-11-15 13:26 - 2013-11-15 13:26 - 00995763 _____ C:\Users\John\Documents\BATBFinaleB.zip

2013-11-15 13:26 - 2013-11-15 13:26 - 00000000 ____D C:\Users\John\Documents\BATBFinaleB

2013-11-13 01:32 - 2013-11-13 01:32 - 00023460 _____ C:\Users\John\Downloads\msg0003 (12).WAV

2013-11-13 01:31 - 2013-11-13 01:31 - 00033470 _____ C:\Users\John\Downloads\msg0002 (15).WAV

2013-11-12 13:06 - 2013-10-11 20:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2013-11-12 13:06 - 2013-10-11 20:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2013-11-12 13:06 - 2013-10-11 20:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2013-11-12 13:06 - 2013-10-11 20:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll

2013-11-12 13:06 - 2013-10-11 20:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL

2013-11-12 13:06 - 2013-10-05 14:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2013-11-12 13:06 - 2013-10-05 13:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-11-12 13:06 - 2013-10-03 20:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-12 13:06 - 2013-10-03 20:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2013-11-12 13:06 - 2013-10-03 20:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2013-11-12 13:06 - 2013-10-03 19:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2013-11-12 13:06 - 2013-10-03 19:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-11-12 13:06 - 2013-10-03 19:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll

2013-11-12 13:06 - 2013-10-02 20:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2013-11-12 13:06 - 2013-10-02 20:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-11-12 13:06 - 2013-09-27 19:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2013-11-12 13:06 - 2013-09-24 20:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2013-11-12 13:06 - 2013-09-24 20:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2013-11-12 13:06 - 2013-09-24 20:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2013-11-12 13:06 - 2013-09-24 20:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2013-11-12 13:06 - 2013-09-24 20:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2013-11-12 13:06 - 2013-09-24 20:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2013-11-12 13:06 - 2013-09-24 20:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2013-11-12 13:06 - 2013-09-24 20:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2013-11-12 13:06 - 2013-09-24 19:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-11-12 13:06 - 2013-09-24 19:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-11-12 13:06 - 2013-09-24 19:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-11-12 13:06 - 2013-09-24 19:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2013-11-12 13:06 - 2013-09-24 19:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2013-11-12 13:06 - 2013-07-04 06:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2013-11-12 04:44 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2013-11-12 04:42 - 2013-11-12 04:42 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 04:42 - 2013-11-12 04:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 04:42 - 2013-11-12 04:42 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 04:42 - 2013-11-12 04:42 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 04:42 - 2013-11-12 04:42 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 04:42 - 2013-11-12 04:42 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 04:42 - 2013-11-12 04:42 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 04:42 - 2013-11-12 04:42 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 04:42 - 2013-11-12 04:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 04:42 - 2013-11-12 04:42 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 04:42 - 2013-11-12 04:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-12 03:01 - 2013-11-12 04:44 - 00011917 _____ C:\Windows\IE11_main.log

 

==================== One Month Modified Files and Folders =======

 

2013-12-09 19:17 - 2013-12-09 19:15 - 00018732 _____ C:\Users\John\Downloads\FRST.txt

2013-12-09 19:15 - 2012-09-07 05:33 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001UA.job

2013-12-09 19:14 - 2013-12-09 19:14 - 00000000 ____D C:\FRST

2013-12-09 19:14 - 2010-11-22 19:01 - 01935492 _____ C:\Windows\WindowsUpdate.log

2013-12-09 19:13 - 2013-12-09 19:13 - 01927982 _____ (Farbar) C:\Users\John\Downloads\FRST64.exe

2013-12-09 19:12 - 2011-04-07 16:49 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-12-09 19:11 - 2013-10-15 23:19 - 00004966 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for John-HP-John John-HP

2013-12-09 19:11 - 2011-02-11 15:35 - 00000991 _____ C:\Users\John\Desktop\magicJack.lnk

2013-12-09 19:11 - 2011-02-11 15:35 - 00000977 _____ C:\Users\John\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\magicJack.lnk

2013-12-09 19:11 - 2011-02-11 15:33 - 00000000 ____D C:\Users\John\AppData\Roaming\mjusbsp

2013-12-09 19:10 - 2013-12-05 12:25 - 00003358 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-12-09 19:10 - 2013-11-28 19:32 - 00003222 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-12-09 19:10 - 2011-04-07 16:49 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-12-09 19:10 - 2009-07-13 23:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-12-09 19:10 - 2009-07-13 22:51 - 00105251 _____ C:\Windows\setupact.log

2013-12-09 19:00 - 2012-05-16 05:29 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-12-09 18:49 - 2009-07-13 22:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-12-09 18:49 - 2009-07-13 22:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-12-09 18:38 - 2013-12-07 05:21 - 00000000 ____D C:\AdwCleaner

2013-12-09 18:35 - 2013-12-09 18:35 - 01110034 _____ C:\Users\John\Downloads\AdwCleaner (1).exe

2013-12-09 15:50 - 2011-07-01 22:28 - 00003918 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{D72B4571-56BA-4F8F-A04B-51110348F961}

2013-12-09 12:15 - 2012-09-07 05:33 - 00000852 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001Core.job

2013-12-08 16:17 - 2011-06-19 20:25 - 00003180 _____ C:\Windows\System32\Tasks\HPCeeScheduleForJohn

2013-12-08 16:17 - 2011-06-19 20:25 - 00000328 _____ C:\Windows\Tasks\HPCeeScheduleForJohn.job

2013-12-08 12:10 - 2012-09-07 05:33 - 00003872 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001UA

2013-12-08 12:10 - 2012-09-07 05:33 - 00003476 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1711144829-5549640-2036380566-1001Core

2013-12-07 16:14 - 2011-10-29 14:30 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt

2013-12-07 16:14 - 2011-02-12 19:51 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log

2013-12-07 16:13 - 2011-02-12 19:49 - 00000000 ____D C:\Users\John\AppData\Roaming\HP Support Assistant

2013-12-07 16:13 - 2011-02-11 18:21 - 00000000 ____D C:\Users\John\AppData\Roaming\HpUpdate

2013-12-07 05:29 - 2010-11-22 22:18 - 00687012 _____ C:\Windows\PFRO.log

2013-12-07 05:21 - 2013-12-07 05:21 - 01110034 _____ C:\Users\John\Downloads\adwcleaner.exe

2013-12-05 13:20 - 2012-09-07 05:34 - 00002358 _____ C:\Users\John\Desktop\Google Chrome.lnk

2013-12-04 17:01 - 2013-12-04 14:18 - 00003336 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-12-04 17:01 - 2013-11-23 10:56 - 00003200 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1711144829-5549640-2036380566-1001

2013-12-03 18:29 - 2011-03-15 05:29 - 00003216 _____ C:\Windows\System32\Tasks\HPCeeScheduleForJOHN-HP$

2013-12-03 18:29 - 2011-03-15 05:29 - 00000340 _____ C:\Windows\Tasks\HPCeeScheduleForJOHN-HP$.job

2013-12-03 12:18 - 2010-11-22 19:23 - 00000000 ____D C:\ProgramData\PDFC

2013-12-03 08:07 - 2011-04-07 16:49 - 00003890 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2013-12-03 08:07 - 2011-04-07 16:49 - 00003638 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2013-11-29 17:06 - 2013-10-31 19:24 - 00000000 ____D C:\Program Files (x86)\AmiExt

2013-11-28 18:53 - 2012-03-09 22:17 - 00000000 ____D C:\Windows\Minidump

2013-11-28 18:53 - 2010-11-22 22:18 - 00287559 ____N C:\Windows\Minidump\112813-30950-01.dmp

2013-11-27 20:08 - 2013-11-27 20:08 - 00054855 _____ C:\Users\John\Downloads\msg0006 (2).WAV

2013-11-27 20:08 - 2013-11-27 20:08 - 00015075 _____ C:\Users\John\Downloads\msg0003 (13).WAV

2013-11-27 20:04 - 2013-11-27 20:04 - 00049655 _____ C:\Users\John\Downloads\msg0005 (5).WAV

2013-11-24 19:17 - 2013-11-24 19:17 - 00000000 ____D C:\Users\John\AppData\Local\{347ACE0D-227D-4447-83C1-546B738E9341}

2013-11-23 23:42 - 2013-11-23 23:42 - 00000000 ____D C:\Users\John\AppData\Local\{7FAE19E6-2FCA-453C-88C1-7BFF07D9238D}

2013-11-20 13:34 - 2013-11-19 20:47 - 00000000 ____D C:\Users\John\Documents\RAVENGETSINTOCOLLEGE

2013-11-19 20:48 - 2012-05-25 18:22 - 00000000 ____D C:\Users\John\AppData\Roaming\vlc

2013-11-19 20:47 - 2013-11-19 20:47 - 00023054 _____ C:\Users\John\Documents\RAVENGETSINTOCOLLEGE.zip

2013-11-19 02:14 - 2009-07-13 23:13 - 00727334 _____ C:\Windows\system32\PerfStringBackup.INI

2013-11-15 13:26 - 2013-11-15 13:26 - 00995763 _____ C:\Users\John\Documents\BATBFinaleB.zip

2013-11-15 13:26 - 2013-11-15 13:26 - 00000000 ____D C:\Users\John\Documents\BATBFinaleB

2013-11-13 22:50 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\rescache

2013-11-13 04:00 - 2013-10-15 22:58 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-11-13 03:04 - 2013-08-15 02:01 - 00000000 ____D C:\Windows\system32\MRT

2013-11-13 03:02 - 2011-02-11 12:09 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-11-13 01:32 - 2013-11-13 01:32 - 00023460 _____ C:\Users\John\Downloads\msg0003 (12).WAV

2013-11-13 01:31 - 2013-11-13 01:31 - 00033470 _____ C:\Users\John\Downloads\msg0002 (15).WAV

2013-11-12 12:56 - 2011-02-10 17:22 - 00001411 _____ C:\Users\John\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-11-12 12:54 - 2009-07-13 21:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-11-12 04:44 - 2013-11-12 03:01 - 00011917 _____ C:\Windows\IE11_main.log

2013-11-12 04:42 - 2013-11-12 04:42 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 04:42 - 2013-11-12 04:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 04:42 - 2013-11-12 04:42 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 04:42 - 2013-11-12 04:42 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 04:42 - 2013-11-12 04:42 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 04:42 - 2013-11-12 04:42 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 04:42 - 2013-11-12 04:42 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 04:42 - 2013-11-12 04:42 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 04:42 - 2013-11-12 04:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 04:42 - 2013-11-12 04:42 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 04:42 - 2013-11-12 04:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 04:42 - 2013-11-12 04:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 04:42 - 2013-11-12 04:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-11 16:54 - 2011-02-26 06:31 - 00000000 ____D C:\Users\John\AppData\Local\CrashDumps

 

Some content of TEMP:

====================

C:\Users\John\AppData\Local\Temp\AcsInstall.dll

C:\Users\John\AppData\Local\Temp\BackupSetup.exe

C:\Users\John\AppData\Local\Temp\CouponPrinter.exe

C:\Users\John\AppData\Local\Temp\GenericUninstall.exe

C:\Users\John\AppData\Local\Temp\HPHelpUpdater.exe

C:\Users\John\AppData\Local\Temp\hsbing_717_active.exe

C:\Users\John\AppData\Local\Temp\lowproc.exe

C:\Users\John\AppData\Local\Temp\OfficeSetup.exe

C:\Users\John\AppData\Local\Temp\Quarantine.exe

C:\Users\John\AppData\Local\Temp\Resource.exe

C:\Users\John\AppData\Local\Temp\SHFOLDER.DLL

C:\Users\John\AppData\Local\Temp\sp58915.exe

C:\Users\John\AppData\Local\Temp\SpOrder.dll

C:\Users\John\AppData\Local\Temp\SpotifyUninstall.exe

C:\Users\John\AppData\Local\Temp\stubhelper.dll

C:\Users\John\AppData\Local\Temp\tbMixi.dll

C:\Users\John\AppData\Local\Temp\tbSwee.dll

C:\Users\John\AppData\Local\Temp\tbWhit.dll

C:\Users\John\AppData\Local\Temp\The_Weather_Channel_Application.exe

C:\Users\John\AppData\Local\Temp\uninst1.exe

C:\Users\John\AppData\Local\Temp\uninstaller.exe

C:\Users\John\AppData\Local\Temp\UninstallHPSA.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

 

 

LastRegBack: 2013-11-30 01:39

 

==================== End Of Log ============================

Link to post
Share on other sites

Farbar Recovery Scan Tool (x64) Version: 09-12-2013

Ran by John at 2013-12-09 22:26:41

Running from C:\Users\John\Downloads

Boot Mode: Normal

 

================== Search: "scorpion saver" ===================

 

====== End Of Search ======

 

 

 

I think that is all of them. I seriously didn't know about not using the FXX.zip. I have just been trying to remove this for so long. Sorry. Did it do something bad to my computer?

Link to post
Share on other sites

You still have a lot of adware showing in the logs.

Please delete this file:
C:\Windows\system32\AdpeakProxy64.dll

Then.........(download a fresh copy of AdwCleaner if you already have it on the system)

Lets clean out any adware/spyware now: (this will require a reboot so save all your work)

Please download AdwCleaner by Xplode and save to your Desktop.

Make sure you click on download buttons that look similar to this, not "sponsored ad links":

bleep-crop.jpg

  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • When it's done you'll see: Pending: Please uncheck elements you don't want removed.
  • Now click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • Look over the log especially under Files/Folders for any program you want to save.
  • If there's a program you may want to save, just uncheck it from AdwCleaner.
  • If you're not sure, post the log for review. (all items found are adware/spyware/foistware)
  • If you're ready to clean it all up.....click the Clean button.
  • After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • Items that are deleted are moved to the Quarantine Folder: C:\AdwCleaner\Quarantine
  • To restore an item that has been deleted:
  • Go to Tools > Quarantine Manager > check what you want restored > now click on Restore.

Then..................

Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select: Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

Link to post
Share on other sites

# AdwCleaner v3.015 - Report created 10/12/2013 at 19:00:30

# Updated 10/12/2013 by Xplode

# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

# Username : John - JOHN-HP

# Running from : C:\Users\John\Desktop\AdwCleaner (2).exe

# Option : Clean

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

File Deleted : C:\Windows\System32\Tasks\NCH Software

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9DC8FA51-B596-4F77-802C-5B295919C205}

Key Deleted : HKCU\Software\Adpeak, Inc.

Key Deleted : [x64] HKLM\SOFTWARE\Adpeak, Inc.

Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6E810AB6-F34E-49A3-A93F-9E503660F718}

Key Deleted : HKLM\Software\Classes\Installer\Features\6BA018E6E43F3A949AF3E90563067F81

Key Deleted : HKLM\Software\Classes\Installer\Products\6BA018E6E43F3A949AF3E90563067F81

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v11.0.9600.16428

 

 

-\\ Google Chrome v

 

[ File : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\preferences ]

 

Deleted : urls_to_restore_on_startup

 

*************************

 

AdwCleaner[R0].txt - [12203 octets] - [07/12/2013 05:22:35]

AdwCleaner[R1].txt - [1069 octets] - [09/12/2013 18:36:55]

AdwCleaner[R2].txt - [1690 octets] - [10/12/2013 18:57:47]

AdwCleaner[s0].txt - [11986 octets] - [07/12/2013 05:27:13]

AdwCleaner[s1].txt - [1026 octets] - [09/12/2013 18:38:34]

AdwCleaner[s2].txt - [1465 octets] - [10/12/2013 19:00:30]

 

########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1525 octets] ##########
Link to post
Share on other sites

Malwarebytes Anti-Malware (PRO) 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.12.10.07

 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16428

John :: JOHN-HP [administrator]

 

Protection: Enabled

 

12/10/2013 7:09:05 PM

mbam-log-2013-12-10 (19-09-05).txt

 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 224285

Time elapsed: 11 minute(s), 40 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 1

HKCU\Software\AmiExt\IE plugin (PUP.Optional.Amonetize.A) -> Quarantined and deleted successfully.

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 2

C:\$RECYCLE.BIN\S-1-5-21-1711144829-5549640-2036380566-1001\$R2RQOR3.dll (PUP.Optional.Adpeak) -> Quarantined and deleted successfully.

C:\Users\John\AppData\Local\Temp\flashEnhancer\Install\flashEnhancerInstaller.exe (PUP.Optional.Amonetize.A) -> Quarantined and deleted successfully.

 

(end)
Link to post
Share on other sites

Can I remove or delete the other programs and FXX.zip that I used before?

Yes


And is Norton, Malwarebytes Pro, and Windows Defender enough protection for my computer? Thanks again!!

Yes, but you only want one anti-virus program running along with Malwarebytes.

If you have Norton, please disable Defender:
How to Disable Defender

----------------------------------------------

A little clean up to do....

Please download OTC to your desktop. (This will clean up most of the tools and logs)
http://oldtimer.geekstogo.com/OTC.exe

Double-click OTC to run it. (Vista and up users, please right click on OTC and select "Run as an Administrator")
Click on the CleanUp! button and follow the prompts.
(If you get a warning from your firewall or other security programs regarding OTC attempting to contact the Internet, please allow the connection.)
You will be asked to reboot the machine to finish the Cleanup process, choose Yes.
After the reboot all the tools we used should be gone.
Note: Some more recently created tools may not yet be removed by OTC. Feel free to manually delete any tools it leaves behind.

Any other programs or logs you can manually delete.
IE: RogueKiller.exe, RKreport.txt, RK_Quarantine folder, C:\FRST, MBAR, etc....AdwCleaner > just run the program and click uninstall.

Note:
If you used FRST and can't delete the quarantine folder:
Download the fixlist.txt to the same folder as FRST.exe.
Run FRST.exe and click Fix only once and wait
That will delete the quarantine folder created by FRST.
The rest you can manually delete.

-------------------------------

Any questions...please post back.

If you think I've helped you, please leave a comment > click on my avatar picture > click Profile Feed.

Take a look at My Preventive Maintenance to avoid being infected again.


Good Luck and Thanks for using the forum, MrC

Link to post
Share on other sites

  • Root Admin

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.