Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 8 - Can't run almost any applications


  • This topic is locked This topic is locked
7 replies to this topic

#1 allenflame

allenflame

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:46 AM

Posted 03 July 2014 - 08:26 AM

Almost every file I run I get "Your system administrator has blocked this program.  For more information, contact your system administrator".  This is a Windows 8.1 computer, not a member of a domain or such.  I can't copy files to program files folder, most of the Windows 8 settings I've tried to go into I can't (Windows Update, User Control Panel).  I tried to do a system restore, the only user on the machine I've ever logged in with does not show up.  The only user listed is HomeGroupUser$.  I did get FRST to run and here are the logs.  I can't install Malwarebytes, can't run rkill (iexplore.exe), can't run AdwCleaner, Gpedit.msc.  Any help is much appreciated.

 

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Barbarapigatt (ATTENTION: The logged in user is not administrator) on BEDROOM on 03-07-2014 07:11:33
Running from C:\Users\Barbarapigatt\Desktop\copy
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(McAfee, Inc.) C:\Program Files\mcafee\MAT\McPvTray.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Microsoft Corporation) C:\Windows\regedit.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79088 2014-05-29] ()
HKLM\...\Run: [McAfeeWrapperApplication] => C:\Program Files (x86)\McAfeeMOBK\WrapperTrayIcon.exe [459232 2013-09-09] (McAfee, Inc.)
HKLM\...\Run: [V-bates] => C:\Program Files\V-bates\notifier.exe [416544 2014-06-22] (Wajamu)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BrowserSafeguard] => C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe [357376 2014-06-14] ()
HKLM-x32\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79088 2014-05-29] ()
HKLM-x32\...\Run: [Windows Update Manager] => C:\Program Files (x86)\JavaLive! Manager\jvsystem32.exe
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1974120 2014-05-22] (YTDownloader)
HKLM-x32\...\Run: [SPDriver] => C:\Program Files (x86)\ShopperPro\JSDriver\1.36.1.172\jsdrv.exe [3350528 2014-04-28] ()
HKLM-x32\...\Run: [SaferBrowser] => C:\Program Files (x86)\SaferBrowser\SaferBrowser.exe [900096 2014-05-29] ()
HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [461176 2014-05-12] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132736 2013-09-05] ( (Qualcomm®Atheros®))
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79088 2014-05-29] ()
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [fastclean] => "C:\Program Files (x86)\FastClean PRO\fastcleanpro.exe"
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [Driver Restore] => C:\Program Files (x86)\Driver Restore\Driver Restore\DriverRestore.exe [3988856 2013-09-19] (PC Drivers Headquarters)
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [Browser Infrastructure Helper] => C:\Users\Barbarapigatt\AppData\Local\Smartbar\Application\SnapDo.exe [29728 2014-06-10] (Smartbar)
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1974120 2014-05-22] (YTDownloader)
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [SPDriver] => C:\Program Files (x86)\ShopperPro\JSDriver\1.36.1.172\jsdrv.exe [3350528 2014-04-28] ()
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [ChicaPasswordManager] => "C:\Program Files (x86)\ChicaLogic\Chica Password Manager\stpass.exe" /autorunned
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135112 2014-06-23] (PC Utilities Software Limited)
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-3980831013-2058836797-2515308441-1001\...\Policies\Explorer: [NoControlPanel] 0
AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~2.DLL => C:\Program Files (x86)\SupTab\SearchProtect64.dll [102512 2014-05-08] (Skytech Co., Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\SupTab\SEARCH~1.DLL => C:\Program Files (x86)\SupTab\SearchProtect32.dll [91248 2014-05-08] (Skytech Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install SafeKey IE RunOnce.lnk
ShortcutTarget: Install SafeKey IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (McAfee)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftwareUpdater.lnk
ShortcutTarget: SoftwareUpdater.lnk -> C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe (Software Updater)
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1510 series.lnk
ShortcutTarget: Monitor Ink Alerts - HP Deskjet 1510 series.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Severe Weather Alerts App.lnk
ShortcutTarget: Severe Weather Alerts App.lnk -> C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp.exe ()
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Severe Weather Alerts.lnk
ShortcutTarget: Severe Weather Alerts.lnk -> C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe (Weather Notifications, LLC)
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Storm Alerts.lnk
ShortcutTarget: Storm Alerts.lnk -> C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlerts.exe (Weather Warnings LLC)
Startup: C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StormAlerts.lnk
ShortcutTarget: StormAlerts.lnk -> C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsApp.exe ()
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: MOBK -> {3c3f3c1a-9153-7c05-f938-622e7003894d} => C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll (McAfee, Inc.)
ShellIconOverlayIdentifiers: MOBK2 -> {e6ea1d7d-144e-b977-98c4-84c53c1a69d0} => C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll (McAfee, Inc.)
ShellIconOverlayIdentifiers: MOBK3 -> {b4caf489-1eec-c617-49ad-8d7088598c06} => C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll (McAfee, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:49177;https=127.0.0.1:49177
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?type=hp&ts=1403285520&from=air&uid=ST500DM002-1BD142_Z6E4X09QXXXXZ6E4X09Q&i=psd&t=3446c60a0
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {31090377-0740-419E-BEFC-A56E50500D5B} URL = 
SearchScopes: HKLM - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKLM - {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://www-search.net/search.aspx?s=E6Pzadku1,2b041799-804a-47ff-b2d2-d528e4580843,&q={searchTerms}
SearchScopes: HKLM - {E7FF8C19-56A3-4D15-B27F-20A0A8672ED5} URL = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=DCJB
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - DefaultScope {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://www-search.net/search.aspx?s=E6Pzadku1,2b041799-804a-47ff-b2d2-d528e4580843,&q={searchTerms}
SearchScopes: HKCU - {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://www-search.net/search.aspx?s=E6Pzadku1,2b041799-804a-47ff-b2d2-d528e4580843,&q={searchTerms}
BHO: Object Browser - {11111111-1111-1111-1111-110311281150} - C:\Program Files (x86)\Object Browser\Object Browser-bho64.dll (Object Browser)
BHO: iWebar - {11111111-1111-1111-1111-110311551110} - C:\Program Files (x86)\iWebar\iWebar-bho64.dll (iWebar)
BHO: V-bates - {21EAF666-26B3-4a3c-ABD0-CA2F5A326744} - C:\Program Files\V-bates\Extension64.dll ()
BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Quiknowledge - {323C6E6D-1621-470F-8A52-4FDEC4E75E40} - C:\Program Files\Quiknowledge\IE\QuiknowledgeClientIE.dll (Quiknowledge)
BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll (McAfee)
BHO: Shopper Pro - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro64.dll (Goobzo Ltd.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
BHO-x32: Object Browser - {11111111-1111-1111-1111-110311281150} - C:\Program Files (x86)\Object Browser\Object Browser-bho.dll (Object Browser)
BHO-x32: iWebar - {11111111-1111-1111-1111-110311551110} - C:\Program Files (x86)\iWebar\iWebar-bho.dll (iWebar)
BHO-x32: Greener Web - {1973d53b-7311-45d7-8270-f44571c041a0} - C:\Program Files (x86)\Greener Web\B4CAFBAA-3FF5-4FAF-BA2F-5CF1C25CB5A6.dll (Greener Web)
BHO-x32: V-bates - {21EAF666-26B3-4a3c-ABD0-CA2F5A326744} - C:\Program Files\V-bates\Extension32.dll ()
BHO-x32: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Quiknowledge - {323C6E6D-1621-470F-8A52-4FDEC4E75E40} - C:\Program Files (x86)\Quiknowledge\IE\QuiknowledgeClientIE.dll (Quiknowledge)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll (McAfee)
BHO-x32: Re-Markable - {A14E98B3-E4F8-C746-9F45-ADDC26F59949} - C:\Program Files (x86)\Re-MarkableS\173.dll ()
BHO-x32: Shopper Pro - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll (Goobzo Ltd.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: TheSea.TheSeaPlugin - {C585D593-E7F3-4852-A200-561686EE02E4} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll (McAfee)
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll (McAfee)
Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
 
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF Extension: V-bates - C:\Program Files\V-bates\Firefox [2014-06-23]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-06-17]
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF Extension: V-bates - C:\Program Files\V-bates\Firefox [2014-06-23]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-06-17]
FF HKCU\...\Firefox\Extensions: [{31CDF89B-8979-2C7B-A156-79ECB57F06AC}] - C:\Program Files (x86)\Re-MarkableS\173.xpi
FF Extension: Re-Markable - C:\Program Files (x86)\Re-MarkableS\173.xpi [2014-06-16]
 
Chrome: 
=======
CHR HomePage: hxxp://www-search.net/?s=E6Pzadku1,2b041799-804a-47ff-b2d2-d528e4580843,
CHR StartupUrls: "hxxp://www-search.net/?s=E6Pzadku1,2b041799-804a-47ff-b2d2-d528e4580843,"
CHR DefaultSearchKeyword: search.com
CHR DefaultSearchProvider: Search
CHR DefaultNewTabURL: 
CHR Extension: (McAfee SafeKey) - C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Extensions\agbnjankikoaabjkmfbaceggjliabkbn [2014-06-25]
CHR Extension: (Google Docs) - C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-18]
CHR Extension: (Google Drive) - C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-18]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-20]
CHR Extension: (Yahoo Extension) - C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eihhgekonheiliaidomffpplfhecmkag [2014-06-25]
CHR Extension: (Google Wallet) - C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-18]
CHR HKLM-x32\...\Chrome\Extension: [agbnjankikoaabjkmfbaceggjliabkbn] - C:\Program Files (x86)\SafeKey\lpchrome.crx [2014-06-17]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
S2 70e6ca8c; c:\Program Files (x86)\Optimizer Pro\OptProCrash.dll [3156936 2014-06-25] ()
S2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [312448 2013-09-05] (Windows ® Win 7 DDK provider)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36392 2014-03-14] (Just Develop It)
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
S2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [202744 2014-04-10] (Dell Inc.)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-25] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-25] (globalUpdate) [File not signed]
S2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [704112 2014-05-08] (Cherished Technololgy LIMITED)
S2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation)
S2 lmhosts; C:\Windows\system32\svchost.exe [37768 2013-08-22] (Microsoft Corporation)
S2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [34336 2014-06-10] ()
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
S2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 Mext Guard; C:\Program Files\V-bates\guardsvc.exe [128800 2014-06-22] (Wajamu)
S2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-03-18] (McAfee, Inc.)
S2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)
S2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)
S2 MOBKbackup; C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [231224 2010-04-13] (McAfee, Inc.)
S2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S2 NlaSvc; C:\Windows\System32\svchost.exe [37768 2013-08-22] (Microsoft Corporation)
S2 nsi; C:\Windows\system32\svchost.exe [37768 2013-08-22] (Microsoft Corporation)
S2 pcmaxservice; C:\Program Files\pcmax\pcmax.exe [241344 2014-05-29] ()
S2 pennybee; C:\ProgramData\pennybee\pennybee.exe [464952 2014-06-18] (Penny Bee Agent)
S2 qksvc; C:\Program Files (x86)\Quiknowledge\Service\qksvc.exe [273000 2014-04-01] (Quiknowledge)
S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
S2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor)
S2 servervo; C:\Users\Barbarapigatt\AppData\Roaming\VOPackage\VOsrv.exe [73216 2014-06-22] () [File not signed]
S2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915920 2013-11-21] (SoftThinks SAS)
S2 SMUpd; C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe [2644840 2014-06-22] (Search Module Ltd.)
S2 SupraSavingsService64; C:\Program Files (x86)\6E6B36EB-9156-411B-B951-C735F4747DCF\SupraSavingsService64.exe [172544 2014-06-25] () [File not signed]
S2 Update Greener Web; C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe [318752 2014-06-30] ()
S2 Util Greener Web; C:\Program Files (x86)\Greener Web\bin\utilGreenerWeb.exe [318752 2014-06-30] ()
S2 V-bates Updater; C:\Program Files\V-bates\ExtensionUpdaterService.exe [293664 2014-06-22] ()
S2 vxlsnyaiet64; C:\Program Files\003\vxlsnyaiet64.exe [706560 2014-06-14] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
S2 wpennybeed; C:\ProgramData\pennybee\wpennybeed.exe [240128 2014-06-24] (Penny Bee Agent) [File not signed]
S2 WysePocketCloud; C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe [16176 2013-08-22] ()
S2 WyseRemoteAccess; C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe [1785344 2013-08-19] (DELL Inc.) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-05] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-05-12] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)
S1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows ® Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows ® Win 7 DDK provider)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S2 McPvDrv; C:\Windows\system32\drivers\McPvDrv.sys [74560 2013-09-09] (McAfee, Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [100312 2013-12-09] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)
S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)
S3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)
S0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)
S3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)
S1 MOBKFilter; C:\Windows\System32\DRIVERS\MOBK.sys [66040 2010-04-13] (Mozy, Inc.)
S1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [46376 2014-06-12] (NetFilterSDK.com)
S1 qknfd; C:\Windows\System32\drivers\qknfd.sys [58256 2014-04-01] (Quiknowledge)
S2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58728 2014-05-22] (YTDownloader)
S3 SMUpdd; C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys [41320 2014-06-22] ()
S2 SPDRIVER_1.36.1.172; C:\Program Files (x86)\ShopperPro\JSDriver\1.36.1.172\jsdrv.sys [52072 2014-04-28] ()
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
S2 webinstr; C:\Windows\system32\Drivers\webinstr.sys [57528 2014-06-10] (Corsica)
S1 {a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys [61120 2014-06-11] (StdLib)
S1 {a3f28269-ad17-41a8-b032-3e0313ef8979}w64; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys [61120 2014-06-19] (StdLib)
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-03 07:11 - 2014-07-03 07:11 - 00000000 ____D () C:\FRST
2014-07-03 06:57 - 2014-07-03 07:11 - 00000000 ____D () C:\Users\Barbarapigatt\Desktop\copy
2014-07-03 06:47 - 2014-07-03 06:47 - 00000000 ___RD () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-06-30 20:58 - 2014-06-30 20:58 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp5192
2014-06-30 20:26 - 2014-06-30 20:27 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (4).exe
2014-06-30 12:50 - 2014-06-30 12:51 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (2).exe
2014-06-30 07:05 - 2014-07-03 06:41 - 00000000 ____D () C:\Users\Barbarapigatt\Documents\PrivacyDR
2014-06-30 07:02 - 2014-06-30 19:55 - 00000000 ____D () C:\Users\Barbarapigatt\Documents\Bluetooth Folder
2014-06-30 06:59 - 2014-06-30 06:59 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp4574
2014-06-30 06:59 - 2014-06-30 06:59 - 00000000 ____D () C:\unpacked4603
2014-06-30 06:58 - 2014-06-30 06:58 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Deployment
2014-06-30 06:51 - 2014-06-30 06:51 - 00002294 _____ () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Remote Technical Support.lnk
2014-06-29 19:44 - 2014-06-29 19:44 - 00000000 _____ () C:\Users\Barbarapigatt\Downloads\default.сps.trwx470.partial
2014-06-29 19:20 - 2014-06-30 06:58 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Apps\2.0
2014-06-28 20:41 - 2014-06-28 20:41 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp27360
2014-06-28 20:41 - 2014-06-28 20:41 - 00000000 ____D () C:\unpacked27377
2014-06-28 20:41 - 2014-06-28 20:41 - 00000000 ____D () C:\unpacked1238
2014-06-27 20:10 - 2014-06-27 20:10 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp1219
2014-06-27 17:32 - 2014-06-30 20:55 - 535432143 _____ () C:\Windows\MEMORY.DMP
2014-06-27 17:32 - 2014-06-30 20:55 - 00000000 ____D () C:\Windows\Minidump
2014-06-27 17:32 - 2014-06-27 17:32 - 00000000 ____D () C:\Windows\system32\icons
2014-06-26 14:21 - 2014-06-30 20:54 - 00000000 ____D () C:\Program Files\SupraSavings
2014-06-26 14:21 - 2014-06-26 14:21 - 00000000 ____D () C:\Program Files (x86)\6E6B36EB-9156-411B-B951-C735F4747DCF
2014-06-26 13:56 - 2014-06-26 13:58 - 00236434 _____ (Systweak Inc ) C:\Users\Barbarapigatt\Downloads\C215.tmp
2014-06-25 20:58 - 2014-06-25 20:58 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (3).exe
2014-06-25 20:58 - 2014-06-25 20:58 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (1).exe
2014-06-25 19:53 - 2014-06-25 19:53 - 00001080 _____ () C:\Users\Barbarapigatt\Desktop\Optimizer Pro.lnk
2014-06-25 19:53 - 2014-06-25 19:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Optimizer Pro
2014-06-25 19:53 - 2014-06-25 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2014-06-25 19:53 - 2014-06-25 19:53 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-06-25 19:28 - 2014-07-03 06:51 - 00000200 _____ () C:\Windows\Tasks\Tempo Runner.job
2014-06-25 17:03 - 2014-06-25 17:03 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\SearchProtect
2014-06-25 16:45 - 2014-06-25 16:46 - 00000000 ____D () C:\Program Files (x86)\SaferBrowser
2014-06-25 16:38 - 2014-06-25 16:38 - 00000000 ____D () C:\ProgramData\374311380
2014-06-25 16:27 - 2014-06-26 18:38 - 00002069 _____ () C:\Users\Public\Desktop\Configure McAfee Online Backup Service.lnk
2014-06-25 16:23 - 2014-06-25 16:23 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Chicalogic
2014-06-25 16:13 - 2014-06-25 16:13 - 00001442 _____ () C:\Windows\Tasks\temp_4490b723-3d8f-4641-b52e-f67e25a580a3-2.job
2014-06-25 16:07 - 2014-06-25 16:07 - 00000000 ____D () C:\ProgramData\SearchModule
2014-06-25 16:07 - 2014-06-25 16:07 - 00000000 ____D () C:\Program Files\Common Files\Goobzo
2014-06-25 15:56 - 2014-07-03 06:51 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\System Speedup
2014-06-25 15:56 - 2014-06-30 15:01 - 00000316 _____ () C:\Windows\Tasks\System Speedup_DEFAULT.job
2014-06-25 15:56 - 2014-06-25 16:14 - 00000324 _____ () C:\Windows\Tasks\System Speedup_UPDATES.job
2014-06-25 15:56 - 2014-06-25 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Speedup
2014-06-25 15:56 - 2014-06-25 15:56 - 00000000 ____D () C:\Program Files (x86)\System Speedup
2014-06-25 15:54 - 2014-07-03 06:51 - 00001800 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-7.job
2014-06-25 15:54 - 2014-07-03 06:46 - 00004166 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-11.job
2014-06-25 15:54 - 2014-07-03 06:46 - 00002444 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-4.job
2014-06-25 15:54 - 2014-07-03 06:46 - 00001866 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-6.job
2014-06-25 15:54 - 2014-07-03 06:46 - 00001756 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5_user.job
2014-06-25 15:54 - 2014-07-03 06:46 - 00001738 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5.job
2014-06-25 15:54 - 2014-07-03 06:46 - 00001632 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-2.job
2014-06-25 15:54 - 2014-06-25 16:14 - 00001868 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-1.job
2014-06-25 15:54 - 2014-06-25 15:54 - 00000000 ____D () C:\Program Files (x86)\iWebar
2014-06-25 15:53 - 2014-07-03 06:51 - 00001568 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-7.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00003838 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-11.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00002254 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-4.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00001630 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-1.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00001628 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-6.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00001502 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5_user.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00001488 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00001378 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-2.job
2014-06-25 15:53 - 2014-07-03 06:46 - 00000984 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-06-25 15:53 - 2014-06-30 10:17 - 00000988 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-06-25 15:53 - 2014-06-25 15:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\globalUpdate
2014-06-25 15:53 - 2014-06-25 15:53 - 00000000 ____D () C:\Program Files (x86)\Object Browser
2014-06-25 15:53 - 2014-06-25 15:53 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-06-25 15:51 - 2014-06-25 17:12 - 00000000 ____D () C:\Program Files (x86)\ShopperPro
2014-06-25 15:51 - 2014-06-25 15:51 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-06-25 15:51 - 2014-06-25 15:51 - 00000000 ____D () C:\ProgramData\ShopperPro
2014-06-25 15:50 - 2014-06-25 15:50 - 00001967 _____ () C:\Users\Barbarapigatt\Desktop\YTDownloader.lnk
2014-06-25 15:50 - 2014-06-25 15:50 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2014-06-25 15:50 - 2014-06-25 15:50 - 00000000 ____D () C:\Program Files (x86)\YTDownloader
2014-06-25 15:42 - 2014-06-25 15:42 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\CrashRpt
2014-06-25 15:40 - 2014-06-25 15:40 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\unpacked6603
2014-06-25 15:39 - 2014-07-03 06:46 - 00000780 _____ () C:\Windows\Tasks\pennybee Runner.job
2014-06-25 15:39 - 2014-06-30 06:59 - 00000000 ____D () C:\ProgramData\pennybee
2014-06-25 15:39 - 2014-06-25 15:39 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp6577
2014-06-25 15:12 - 2014-06-25 15:12 - 00017184 _____ () C:\Windows\SysWOW64\XMLOperations.xml
2014-06-23 16:39 - 2014-06-23 16:39 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Supremus Corporation
2014-06-23 12:19 - 2014-06-23 12:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Updates Downloader
2014-06-23 12:19 - 2014-06-23 12:19 - 00000000 ____D () C:\Program Files\Windows Updates Downloader
2014-06-23 12:16 - 2014-07-03 06:46 - 00000314 _____ () C:\Windows\Tasks\FF Watcher {ADB814BB-DFF2-4CAE-9482-2F92D2812DAD}.job
2014-06-23 12:16 - 2014-06-23 13:34 - 00000045 _____ () C:\user.js
2014-06-23 12:16 - 2014-06-23 12:16 - 00000000 ____D () C:\Program Files\V-bates
2014-06-23 12:15 - 2014-06-25 19:38 - 00002411 _____ () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-06-23 12:15 - 2014-06-25 19:38 - 00002313 _____ () C:\Users\Barbarapigatt\Desktop\Search.lnk
2014-06-23 12:15 - 2014-06-23 12:15 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-06-23 12:14 - 2014-06-23 12:35 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Idle_Crawler
2014-06-23 12:14 - 2014-06-23 12:14 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Smartbar
2014-06-23 12:14 - 2014-06-23 12:14 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\LPT
2014-06-22 20:42 - 2014-06-22 20:42 - 00002896 _____ () C:\Users\Barbarapigatt\AppData\Roaming\aps.scan.results
2014-06-22 20:42 - 2014-06-22 20:42 - 00001138 _____ () C:\Users\Barbarapigatt\AppData\Roaming\aps.scan.quick.results
2014-06-22 20:42 - 2014-06-22 20:42 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2014-06-22 20:38 - 2014-06-22 20:42 - 00000000 ____D () C:\Program Files (x86)\AnyProtectEx
2014-06-22 20:38 - 2014-06-22 20:38 - 00623616 _____ (Click Me In Limited) C:\Users\Barbarapigatt\AppData\Local\nsl8481.tmp
2014-06-22 20:34 - 2014-06-22 20:34 - 00178568 _____ () C:\Users\Barbarapigatt\Desktop\System Information.html
2014-06-22 17:09 - 2014-06-22 17:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-06-22 17:09 - 2014-06-22 17:09 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-06-22 17:09 - 2005-04-15 19:58 - 01071088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2014-06-22 17:09 - 2005-03-12 00:07 - 00087040 _____ () C:\Windows\system32\pdfcmnnt.dll
2014-06-22 17:09 - 2004-03-09 00:00 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX
2014-06-22 17:09 - 1998-07-06 00:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL
2014-06-22 17:09 - 1998-06-24 00:00 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2014-06-22 17:04 - 2014-06-27 18:02 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\VOPackage
2014-06-22 17:04 - 2014-06-22 17:05 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-06-20 12:45 - 2014-06-20 12:45 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\EuroTrade_A.L._Ltd
2014-06-20 12:43 - 2014-06-19 15:27 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\EuroTrade A.L. Ltd
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy DR
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 ____D () C:\Program Files (x86)\Privacy DR
2014-06-20 12:38 - 2014-06-20 12:38 - 00002319 _____ () C:\Users\Public\Desktop\Driver Restore.lnk
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\Users\Barbarapigatt\Downloads\Driver Restore
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\PC_Drivers_Headquarters
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\ProgramData\UAB
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Restore
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\ProgramData\Driver Restore
2014-06-20 12:37 - 2014-06-20 12:37 - 00000000 ____D () C:\Program Files (x86)\Driver Restore
2014-06-20 12:33 - 2014-06-20 12:35 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\SupTab
2014-06-20 12:33 - 2014-06-20 12:33 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-06-20 12:33 - 2014-06-20 12:33 - 00000000 ____D () C:\Program Files (x86)\The Sea App (Internet Explorer)
2014-06-20 12:33 - 2014-06-20 12:33 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-06-18 14:30 - 2014-06-25 16:22 - 00000379 _____ () C:\Windows\SysWOW64\ff.bin
2014-06-18 14:18 - 2014-06-18 14:18 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\fastcleanpro
2014-06-18 08:45 - 2014-06-18 08:45 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\IsolatedStorage
2014-06-18 08:36 - 2014-06-18 08:36 - 00000000 ____D () C:\Program Files\coupon downloader
2014-06-18 08:34 - 2014-06-18 08:36 - 00000000 ____D () C:\Program Files\004
2014-06-17 19:55 - 2014-07-03 07:01 - 00001781 _____ () C:\Users\Public\Desktop\McAfee All Access – Total Protection.lnk
2014-06-17 19:54 - 2014-07-03 07:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-06-17 19:54 - 2014-07-03 06:56 - 00000000 __RSD () C:\Users\Barbarapigatt\Documents\McAfee Vaults
2014-06-17 19:54 - 2014-06-22 20:24 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\McAfee File Lock
2014-06-17 19:54 - 2013-09-09 11:11 - 00074560 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\McPvDrv.sys
2014-06-17 19:53 - 2014-06-18 08:25 - 00000000 ____D () C:\Program Files (x86)\SafeKey
2014-06-17 19:53 - 2014-06-17 19:54 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Online Backup
2014-06-17 19:53 - 2014-06-17 19:54 - 00000000 ____D () C:\Program Files (x86)\McAfeeMOBK
2014-06-17 19:53 - 2014-06-17 19:53 - 00000000 ____D () C:\Program Files (x86)\McAfee Online Backup
2014-06-17 19:53 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2014-06-17 19:53 - 2010-04-13 20:10 - 00066040 _____ (Mozy, Inc.) C:\Windows\system32\Drivers\MOBK.sys
2014-06-17 19:52 - 2014-06-25 15:08 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-17 19:52 - 2014-06-17 19:52 - 00000000 ____D () C:\Program Files\McAfee.com
2014-06-17 19:52 - 2014-06-17 19:52 - 00000000 ____D () C:\Program Files (x86)\McAfee.com
2014-06-17 14:34 - 2014-06-17 19:53 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-06-17 14:34 - 2014-04-03 17:15 - 00189912 _____ (McAfee, Inc.) C:\Windows\system32\mfevtps.exe
2014-06-17 14:26 - 2014-06-17 14:26 - 00000000 ____D () C:\Quarantine
2014-06-17 14:25 - 2014-06-17 14:27 - 00000000 ____D () C:\Program Files\stinger
2014-06-17 14:19 - 2014-06-22 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Updater
2014-06-17 14:18 - 2014-06-22 17:11 - 00000000 ____D () C:\Program Files (x86)\Software Updater
2014-06-17 13:49 - 2014-06-25 16:17 - 00000552 _____ () C:\Windows\SysWOW64\schtasks.bin
2014-06-16 13:36 - 2014-06-16 13:37 - 00623936 _____ () C:\Users\Barbarapigatt\Downloads\uplayermediaplayer-setup.exe
2014-06-16 13:34 - 2014-06-16 13:35 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (6).exe
2014-06-16 12:19 - 2014-06-19 15:20 - 00000003 _____ () C:\Users\Barbarapigatt\AppData\Local\proxy.log
2014-06-16 12:03 - 2014-06-18 14:24 - 00000000 ____D () C:\ProgramData\InstallSightSDK
2014-06-16 12:01 - 2014-07-03 06:51 - 00000414 _____ () C:\Windows\Tasks\Re-Markable_wd.job
2014-06-16 12:01 - 2014-07-03 06:47 - 00000434 _____ () C:\Windows\Tasks\Re-Markable Update.job
2014-06-16 12:01 - 2014-06-16 12:01 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-06-16 12:01 - 2014-06-16 12:01 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\visi_coupon
2014-06-16 12:01 - 2014-06-16 12:01 - 00000000 ____D () C:\Program Files (x86)\Re-MarkableS
2014-06-16 12:01 - 2014-06-10 04:46 - 00057528 _____ (Corsica) C:\Windows\system32\Drivers\webinstr.sys
2014-06-16 12:00 - 2014-06-16 12:00 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\KeepMySettingsX
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Yahoo!
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\ProgramData\Yahoo! Companion
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\ProgramData\Yahoo!
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
2014-06-16 08:58 - 2014-06-25 15:07 - 00000000 ____D () C:\Program Files (x86)\Bench
2014-06-16 08:58 - 2014-06-19 15:26 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-06-15 21:04 - 2014-06-15 21:05 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup.exe
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\Windows\system32\Drivers\NSSx64
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\ProgramData\Norton
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\Program Files (x86)\Norton Security Scan
2014-06-14 12:08 - 2014-06-25 21:02 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP3.job
2014-06-14 12:08 - 2014-06-25 15:07 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP2.job
2014-06-14 12:08 - 2014-06-22 21:06 - 00000378 _____ () C:\Windows\Tasks\APSnotifierPP1.job
2014-06-14 12:06 - 2014-06-22 20:42 - 00000328 _____ () C:\Users\Barbarapigatt\AppData\Roaming\aps.uninstall.scan.results
2014-06-14 12:02 - 2014-06-30 20:01 - 00000330 _____ () C:\Windows\Tasks\MySearchDial.job
2014-06-14 12:02 - 2014-06-14 12:02 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\MySearchDial
2014-06-14 12:01 - 2014-06-14 12:01 - 00000000 ____D () C:\Program Files (x86)\Mysearchdial
2014-06-14 12:00 - 2014-06-14 12:00 - 00830792 _____ (Click Me In Limited) C:\Users\Barbarapigatt\AppData\Local\nszEE61.tmp
2014-06-14 11:56 - 2014-06-14 11:56 - 00000000 ____D () C:\Program Files\Quiknowledge
2014-06-14 11:56 - 2014-06-14 11:56 - 00000000 ____D () C:\Program Files (x86)\Quiknowledge
2014-06-14 08:27 - 2014-06-14 08:27 - 00000045 _____ () C:\Users\Barbarapigatt\AppData\Roaming\WB.CFG
2014-06-14 07:55 - 2014-06-16 09:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaLive! Manager
2014-06-14 07:55 - 2014-06-16 09:11 - 00000000 ____D () C:\Program Files (x86)\JavaLive! Manager
2014-06-14 07:53 - 2014-07-03 06:47 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts
2014-06-14 07:53 - 2014-06-14 07:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Severe Weather Alerts
2014-06-14 07:53 - 2014-06-14 07:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL
2014-06-14 07:51 - 2014-06-14 07:52 - 00000000 ____D () C:\Program Files\003
2014-06-14 07:49 - 2014-06-20 12:30 - 00000000 ____D () C:\Program Files\pcmax
2014-06-14 07:48 - 2014-06-25 16:10 - 00000000 ____D () C:\Program Files (x86)\PC Speed Maximizer
2014-06-14 07:47 - 2014-06-14 12:09 - 00000000 ____D () C:\Program Files (x86)\Browsersafeguard
2014-06-14 07:42 - 2014-06-25 17:03 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-06-14 07:23 - 2014-06-11 15:34 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys
2014-06-12 20:40 - 2014-06-14 07:35 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-06-12 20:40 - 2014-06-12 20:40 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-06-12 20:28 - 2014-06-25 16:12 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Systweak
2014-06-12 20:28 - 2014-06-20 12:56 - 00000000 ____D () C:\Program Files (x86)\Greener Web
2014-06-12 20:28 - 2013-12-13 17:53 - 00019544 _____ (System Speedup) C:\Windows\system32\roboot64.exe
2014-06-12 20:27 - 2014-07-03 06:43 - 00000330 _____ () C:\Windows\Tasks\Speedial.job
2014-06-12 20:27 - 2014-06-12 20:27 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Speedial
2014-06-12 20:27 - 2014-06-12 20:27 - 00000000 ____D () C:\Program Files (x86)\Speedial
2014-06-12 20:25 - 2014-06-28 21:17 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\StormAlerts
2014-06-12 20:25 - 2014-06-12 20:25 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Storm Alerts
2014-06-12 20:25 - 2014-06-12 20:25 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC
2014-06-12 19:56 - 2014-05-30 05:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 19:56 - 2014-05-30 04:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 19:56 - 2014-05-30 04:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 19:56 - 2014-05-30 04:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-12 19:56 - 2014-05-30 04:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 19:56 - 2014-05-30 04:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 19:56 - 2014-05-30 04:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 19:56 - 2014-05-30 03:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 19:56 - 2014-05-30 03:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 19:56 - 2014-05-30 03:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 19:56 - 2014-05-30 03:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 19:56 - 2014-05-30 03:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 19:56 - 2014-05-30 03:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 19:56 - 2014-05-30 03:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-12 19:56 - 2014-05-30 03:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 19:56 - 2014-05-30 03:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 19:56 - 2014-05-30 03:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 19:56 - 2014-05-30 03:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 19:56 - 2014-05-30 02:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 19:56 - 2014-05-30 02:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 19:56 - 2014-05-30 02:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 19:56 - 2014-05-30 02:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 19:56 - 2014-05-30 02:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 19:56 - 2014-05-30 02:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 19:56 - 2014-05-30 02:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 19:56 - 2014-05-30 02:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 19:56 - 2014-05-30 02:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 19:56 - 2014-05-30 02:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-12 19:56 - 2014-05-30 02:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-12 19:56 - 2014-02-06 06:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-12 19:56 - 2014-02-06 06:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 19:56 - 2014-02-06 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-12 19:56 - 2014-02-06 05:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 19:56 - 2014-02-06 05:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 19:56 - 2014-02-06 05:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-12 19:56 - 2014-02-06 05:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 19:56 - 2014-02-06 05:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-12 19:56 - 2014-02-06 04:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 19:56 - 2014-02-06 04:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 19:56 - 2014-02-06 04:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-12 19:56 - 2014-02-06 04:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 19:52 - 2014-04-18 09:57 - 00032600 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2014-06-12 19:52 - 2014-04-18 09:44 - 01466856 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-06-12 19:52 - 2014-04-18 08:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-06-12 19:52 - 2014-04-18 04:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2014-06-12 19:52 - 2014-04-18 04:32 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-06-12 19:52 - 2014-04-18 03:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-06-12 19:52 - 2014-04-18 03:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-06-12 19:52 - 2014-04-18 03:21 - 01126912 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-06-12 19:52 - 2014-04-18 03:09 - 08652800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-06-12 19:52 - 2014-04-18 02:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-06-12 19:52 - 2014-04-18 02:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-06-12 19:52 - 2014-04-14 04:20 - 00324888 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-06-12 19:52 - 2014-04-14 03:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2014-06-12 19:52 - 2014-04-11 01:13 - 01200128 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-06-12 19:52 - 2014-04-10 23:51 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-06-12 19:52 - 2014-04-10 23:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2014-06-12 19:52 - 2014-04-10 22:30 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-06-12 19:52 - 2014-04-09 06:53 - 00337240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-06-12 19:52 - 2014-04-09 01:39 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-06-12 19:52 - 2014-04-09 00:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2014-06-12 19:52 - 2014-04-08 23:35 - 01411584 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-06-12 19:52 - 2014-04-08 22:33 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-06-12 19:52 - 2014-04-07 21:01 - 00589656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-06-12 19:52 - 2014-04-06 11:34 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-06-12 19:52 - 2014-04-06 11:34 - 00275800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-06-12 19:52 - 2014-04-06 11:32 - 00125496 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-06-12 19:52 - 2014-04-06 11:31 - 21268952 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-06-12 19:52 - 2014-04-06 11:30 - 00201920 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2014-06-12 19:52 - 2014-04-06 11:24 - 00360792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-06-12 19:52 - 2014-04-06 11:20 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 01403856 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 01379064 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00881616 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00765408 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00609448 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00491744 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00467496 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00463256 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00364640 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00244880 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-06-12 19:52 - 2014-04-06 11:20 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-06-12 19:52 - 2014-04-06 11:20 - 00028408 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-06-12 19:52 - 2014-04-06 10:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-06-12 19:52 - 2014-04-06 10:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-06-12 19:52 - 2014-04-06 10:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-06-12 19:52 - 2014-04-06 10:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-06-12 19:52 - 2014-04-06 09:10 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-12 19:52 - 2014-04-06 07:58 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-06-12 19:52 - 2014-04-06 07:51 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-06-12 19:52 - 2014-04-06 07:33 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-06-12 19:52 - 2014-04-06 07:24 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-06-12 19:52 - 2014-04-06 07:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-06-12 19:52 - 2014-04-06 06:55 - 16872448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-06-12 19:52 - 2014-04-06 06:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-06-12 19:52 - 2014-04-06 06:26 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2014-06-12 19:52 - 2014-04-06 06:20 - 00201216 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-06-12 19:52 - 2014-04-06 06:01 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-06-12 19:52 - 2014-04-06 05:52 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-06-12 19:52 - 2014-04-06 05:51 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-06-12 19:52 - 2014-04-06 05:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-06-12 19:52 - 2014-04-06 05:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-06-12 19:52 - 2014-04-06 05:05 - 01222656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-06-12 19:52 - 2014-04-06 04:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-06-12 19:52 - 2014-04-03 03:12 - 02124840 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-06-12 19:52 - 2014-04-03 03:12 - 00307304 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-06-12 19:52 - 2014-04-03 03:12 - 00130144 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-06-12 19:52 - 2014-04-02 23:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-06-12 19:52 - 2014-04-02 23:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2014-06-12 19:52 - 2014-04-02 22:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2014-06-12 19:52 - 2014-04-02 21:53 - 04269056 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-06-12 19:52 - 2014-04-02 21:53 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-12 19:52 - 2014-04-02 21:51 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-06-12 19:52 - 2014-04-02 21:23 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-06-12 19:52 - 2014-04-02 21:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-06-12 19:52 - 2014-04-02 21:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2014-06-12 19:52 - 2014-04-02 21:22 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2014-06-12 19:52 - 2014-04-01 01:23 - 00384856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-06-12 19:52 - 2014-03-31 00:42 - 07425368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-12 19:52 - 2014-03-30 19:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8thk.dll
2014-06-12 19:52 - 2014-03-30 19:01 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-06-12 19:52 - 2014-03-30 18:43 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-06-12 19:52 - 2014-03-30 17:54 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-06-12 19:52 - 2014-03-30 17:49 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2014-06-12 19:52 - 2014-03-30 17:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2014-06-12 19:52 - 2014-03-30 17:11 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-06-12 19:52 - 2014-03-30 16:47 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-06-12 19:52 - 2014-03-28 10:58 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-06-12 19:52 - 2014-03-27 01:16 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-06-12 19:52 - 2014-03-27 00:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-06-12 19:52 - 2014-03-26 23:59 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-06-12 19:52 - 2014-03-26 23:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2014-06-12 19:52 - 2014-03-26 23:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-06-12 19:52 - 2014-03-26 22:46 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-06-12 19:52 - 2014-03-26 22:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-06-12 19:52 - 2014-03-26 22:10 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-06-12 19:52 - 2014-03-24 17:58 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-06-12 19:52 - 2014-03-19 22:48 - 00263424 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-06-12 19:52 - 2014-03-19 19:44 - 06645248 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-06-12 19:52 - 2014-03-19 18:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-06-12 19:52 - 2014-03-19 03:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-06-12 19:52 - 2014-03-19 03:07 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-06-12 19:52 - 2014-03-19 02:24 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-06-12 19:52 - 2014-03-19 02:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-06-12 19:52 - 2014-03-19 01:36 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-06-12 19:52 - 2014-03-19 00:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-06-12 19:52 - 2014-03-19 00:45 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-06-12 19:52 - 2014-03-19 00:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-06-12 19:52 - 2014-03-19 00:07 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-06-12 19:52 - 2014-03-19 00:02 - 01527296 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-06-12 19:52 - 2014-03-19 00:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-06-12 19:52 - 2014-03-18 23:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-06-12 19:52 - 2014-03-18 23:31 - 02100736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-06-12 19:52 - 2014-03-18 23:18 - 02688000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-06-12 19:52 - 2014-03-18 03:19 - 00077312 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-06-12 19:52 - 2014-03-18 00:00 - 07173120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2014-06-12 19:52 - 2014-03-17 23:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2014-06-12 19:52 - 2014-03-17 00:09 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-06-12 19:52 - 2014-03-16 23:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-06-12 19:52 - 2014-03-16 22:01 - 00486912 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-06-12 19:52 - 2014-03-16 21:47 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-12 19:52 - 2014-03-16 21:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2014-06-12 19:52 - 2014-03-14 01:26 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2014-06-12 19:52 - 2014-03-14 01:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2014-06-12 19:52 - 2014-03-06 07:42 - 00310616 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-06-12 19:52 - 2014-01-27 13:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-06-12 14:05 - 2014-06-12 14:05 - 00046376 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter64.sys
2014-06-11 19:43 - 2014-05-09 22:46 - 02151424 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 19:43 - 2014-05-09 22:22 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 19:43 - 2014-05-03 02:14 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe
2014-06-11 19:43 - 2014-05-02 23:21 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 19:43 - 2014-05-02 23:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 19:43 - 2014-05-02 22:41 - 00921088 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-06-11 19:43 - 2014-05-02 22:38 - 00754688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-06-11 19:41 - 2014-05-08 18:06 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-06-11 19:41 - 2014-05-04 23:02 - 03360256 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-11 19:41 - 2014-04-30 06:16 - 01336648 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-11 19:41 - 2014-04-29 22:51 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-11 19:41 - 2014-04-03 02:59 - 02518872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 19:41 - 2014-04-03 02:59 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 19:35 - 2014-05-19 01:31 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe
2014-06-11 19:35 - 2014-05-19 01:21 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-06-11 19:35 - 2014-05-19 00:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-06-11 19:35 - 2014-05-01 08:31 - 03048904 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-06-11 19:35 - 2014-05-01 08:31 - 00055328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2014-06-11 19:35 - 2014-05-01 02:14 - 03118080 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-06-11 19:35 - 2014-05-01 02:05 - 02861056 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2014-06-11 19:35 - 2014-05-01 01:51 - 02344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-06-11 19:35 - 2014-05-01 00:24 - 02834944 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-06-11 19:35 - 2014-04-29 23:43 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-06-11 19:35 - 2014-04-29 23:26 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-06-11 19:35 - 2014-04-29 22:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
 
==================== One Month Modified Files and Folders =======
 
2014-07-03 07:11 - 2014-07-03 07:11 - 00000000 ____D () C:\FRST
2014-07-03 07:11 - 2014-07-03 06:57 - 00000000 ____D () C:\Users\Barbarapigatt\Desktop\copy
2014-07-03 07:01 - 2014-06-17 19:55 - 00001781 _____ () C:\Users\Public\Desktop\McAfee All Access – Total Protection.lnk
2014-07-03 07:01 - 2014-06-17 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-03 06:58 - 2014-05-12 14:10 - 00865408 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-03 06:56 - 2014-06-17 19:54 - 00000000 __RSD () C:\Users\Barbarapigatt\Documents\McAfee Vaults
2014-07-03 06:51 - 2014-06-25 19:28 - 00000200 _____ () C:\Windows\Tasks\Tempo Runner.job
2014-07-03 06:51 - 2014-06-25 15:56 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\System Speedup
2014-07-03 06:51 - 2014-06-25 15:54 - 00001800 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-7.job
2014-07-03 06:51 - 2014-06-25 15:53 - 00001568 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-7.job
2014-07-03 06:51 - 2014-06-16 12:01 - 00000414 _____ () C:\Windows\Tasks\Re-Markable_wd.job
2014-07-03 06:51 - 2014-05-17 10:20 - 00001604 _____ () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-03 06:51 - 2014-05-12 14:21 - 01672960 _____ () C:\Windows\WindowsUpdate.log
2014-07-03 06:51 - 2013-08-22 09:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-03 06:49 - 2014-05-18 15:53 - 00002346 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-03 06:49 - 2014-05-12 14:36 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery
2014-07-03 06:47 - 2014-07-03 06:47 - 00000000 ___RD () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-07-03 06:47 - 2014-06-16 12:01 - 00000434 _____ () C:\Windows\Tasks\Re-Markable Update.job
2014-07-03 06:47 - 2014-06-14 07:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts
2014-07-03 06:47 - 2014-05-18 15:52 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-03 06:46 - 2014-06-25 15:54 - 00004166 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-11.job
2014-07-03 06:46 - 2014-06-25 15:54 - 00002444 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-4.job
2014-07-03 06:46 - 2014-06-25 15:54 - 00001866 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-6.job
2014-07-03 06:46 - 2014-06-25 15:54 - 00001756 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5_user.job
2014-07-03 06:46 - 2014-06-25 15:54 - 00001738 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5.job
2014-07-03 06:46 - 2014-06-25 15:54 - 00001632 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-2.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00003838 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-11.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00002254 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-4.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00001630 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-1.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00001628 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-6.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00001502 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5_user.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00001488 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00001378 _____ () C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-2.job
2014-07-03 06:46 - 2014-06-25 15:53 - 00000984 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-03 06:46 - 2014-06-25 15:39 - 00000780 _____ () C:\Windows\Tasks\pennybee Runner.job
2014-07-03 06:46 - 2014-06-23 12:16 - 00000314 _____ () C:\Windows\Tasks\FF Watcher {ADB814BB-DFF2-4CAE-9482-2F92D2812DAD}.job
2014-07-03 06:46 - 2014-05-17 10:41 - 00000000 __RDO () C:\Users\Barbarapigatt\OneDrive
2014-07-03 06:43 - 2014-06-12 20:27 - 00000330 _____ () C:\Windows\Tasks\Speedial.job
2014-07-03 06:41 - 2014-06-30 07:05 - 00000000 ____D () C:\Users\Barbarapigatt\Documents\PrivacyDR
2014-07-03 06:36 - 2013-08-22 09:46 - 00015028 _____ () C:\Windows\setupact.log
2014-06-30 20:58 - 2014-06-30 20:58 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp5192
2014-06-30 20:58 - 2014-05-17 10:19 - 00000000 ____D () C:\Users\Barbarapigatt
2014-06-30 20:57 - 2014-05-26 19:30 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\CrashDumps
2014-06-30 20:57 - 2013-08-22 08:25 - 00000226 _____ () C:\Windows\win.ini
2014-06-30 20:55 - 2014-06-27 17:32 - 535432143 _____ () C:\Windows\MEMORY.DMP
2014-06-30 20:55 - 2014-06-27 17:32 - 00000000 ____D () C:\Windows\Minidump
2014-06-30 20:54 - 2014-06-26 14:21 - 00000000 ____D () C:\Program Files\SupraSavings
2014-06-30 20:27 - 2014-06-30 20:26 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (4).exe
2014-06-30 20:08 - 2014-05-18 15:52 - 00000928 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-30 20:01 - 2014-06-14 12:02 - 00000330 _____ () C:\Windows\Tasks\MySearchDial.job
2014-06-30 20:00 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\system32\sru
2014-06-30 19:56 - 2014-05-12 14:29 - 00000000 ____D () C:\ProgramData\Temp
2014-06-30 19:55 - 2014-06-30 07:02 - 00000000 ____D () C:\Users\Barbarapigatt\Documents\Bluetooth Folder
2014-06-30 19:05 - 2014-05-12 14:37 - 00000000 ____D () C:\Temp
2014-06-30 15:01 - 2014-06-25 15:56 - 00000316 _____ () C:\Windows\Tasks\System Speedup_DEFAULT.job
2014-06-30 12:51 - 2014-06-30 12:50 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (2).exe
2014-06-30 10:17 - 2014-06-25 15:53 - 00000988 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-06-30 06:59 - 2014-06-30 06:59 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp4574
2014-06-30 06:59 - 2014-06-30 06:59 - 00000000 ____D () C:\unpacked4603
2014-06-30 06:59 - 2014-06-25 15:39 - 00000000 ____D () C:\ProgramData\pennybee
2014-06-30 06:58 - 2014-06-30 06:58 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Deployment
2014-06-30 06:58 - 2014-06-29 19:20 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Apps\2.0
2014-06-30 06:51 - 2014-06-30 06:51 - 00002294 _____ () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Remote Technical Support.lnk
2014-06-30 06:36 - 2014-05-12 14:33 - 00000000 ____D () C:\ProgramData\PCDr
2014-06-29 19:44 - 2014-06-29 19:44 - 00000000 _____ () C:\Users\Barbarapigatt\Downloads\default.сps.trwx470.partial
2014-06-29 14:21 - 2014-05-17 10:19 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Packages
2014-06-28 21:17 - 2014-06-12 20:25 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\StormAlerts
2014-06-28 20:41 - 2014-06-28 20:41 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp27360
2014-06-28 20:41 - 2014-06-28 20:41 - 00000000 ____D () C:\unpacked27377
2014-06-28 20:41 - 2014-06-28 20:41 - 00000000 ____D () C:\unpacked1238
2014-06-27 20:10 - 2014-06-27 20:10 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp1219
2014-06-27 19:31 - 2014-05-12 14:29 - 00000000 ____D () C:\ProgramData\CyberLink
2014-06-27 18:02 - 2014-06-22 17:04 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\VOPackage
2014-06-27 17:58 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-27 17:32 - 2014-06-27 17:32 - 00000000 ____D () C:\Windows\system32\icons
2014-06-26 18:38 - 2014-06-25 16:27 - 00002069 _____ () C:\Users\Public\Desktop\Configure McAfee Online Backup Service.lnk
2014-06-26 14:57 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-06-26 14:21 - 2014-06-26 14:21 - 00000000 ____D () C:\Program Files (x86)\6E6B36EB-9156-411B-B951-C735F4747DCF
2014-06-26 13:58 - 2014-06-26 13:56 - 00236434 _____ (Systweak Inc ) C:\Users\Barbarapigatt\Downloads\C215.tmp
2014-06-25 21:02 - 2014-06-14 12:08 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP3.job
2014-06-25 20:58 - 2014-06-25 20:58 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (3).exe
2014-06-25 20:58 - 2014-06-25 20:58 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (1).exe
2014-06-25 19:53 - 2014-06-25 19:53 - 00001080 _____ () C:\Users\Barbarapigatt\Desktop\Optimizer Pro.lnk
2014-06-25 19:53 - 2014-06-25 19:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Optimizer Pro
2014-06-25 19:53 - 2014-06-25 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2014-06-25 19:53 - 2014-06-25 19:53 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-06-25 19:38 - 2014-06-23 12:15 - 00002411 _____ () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-06-25 19:38 - 2014-06-23 12:15 - 00002313 _____ () C:\Users\Barbarapigatt\Desktop\Search.lnk
2014-06-25 19:26 - 2014-05-12 13:57 - 00061592 _____ () C:\Windows\PFRO.log
2014-06-25 17:12 - 2014-06-25 15:51 - 00000000 ____D () C:\Program Files (x86)\ShopperPro
2014-06-25 17:03 - 2014-06-25 17:03 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\SearchProtect
2014-06-25 17:03 - 2014-06-14 07:42 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-06-25 16:46 - 2014-06-25 16:45 - 00000000 ____D () C:\Program Files (x86)\SaferBrowser
2014-06-25 16:46 - 2014-05-18 15:52 - 00002280 _____ () C:\Users\Public\Desktop\HP Deskjet 1510 series.lnk
2014-06-25 16:38 - 2014-06-25 16:38 - 00000000 ____D () C:\ProgramData\374311380
2014-06-25 16:23 - 2014-06-25 16:23 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Chicalogic
2014-06-25 16:22 - 2014-06-18 14:30 - 00000379 _____ () C:\Windows\SysWOW64\ff.bin
2014-06-25 16:17 - 2014-06-17 13:49 - 00000552 _____ () C:\Windows\SysWOW64\schtasks.bin
2014-06-25 16:14 - 2014-06-25 15:56 - 00000324 _____ () C:\Windows\Tasks\System Speedup_UPDATES.job
2014-06-25 16:14 - 2014-06-25 15:54 - 00001868 _____ () C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-1.job
2014-06-25 16:13 - 2014-06-25 16:13 - 00001442 _____ () C:\Windows\Tasks\temp_4490b723-3d8f-4641-b52e-f67e25a580a3-2.job
2014-06-25 16:12 - 2014-06-12 20:28 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Systweak
2014-06-25 16:10 - 2014-06-14 07:48 - 00000000 ____D () C:\Program Files (x86)\PC Speed Maximizer
2014-06-25 16:09 - 2013-08-22 10:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-25 16:07 - 2014-06-25 16:07 - 00000000 ____D () C:\ProgramData\SearchModule
2014-06-25 16:07 - 2014-06-25 16:07 - 00000000 ____D () C:\Program Files\Common Files\Goobzo
2014-06-25 15:56 - 2014-06-25 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Speedup
2014-06-25 15:56 - 2014-06-25 15:56 - 00000000 ____D () C:\Program Files (x86)\System Speedup
2014-06-25 15:54 - 2014-06-25 15:54 - 00000000 ____D () C:\Program Files (x86)\iWebar
2014-06-25 15:53 - 2014-06-25 15:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\globalUpdate
2014-06-25 15:53 - 2014-06-25 15:53 - 00000000 ____D () C:\Program Files (x86)\Object Browser
2014-06-25 15:53 - 2014-06-25 15:53 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-06-25 15:51 - 2014-06-25 15:51 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-06-25 15:51 - 2014-06-25 15:51 - 00000000 ____D () C:\ProgramData\ShopperPro
2014-06-25 15:50 - 2014-06-25 15:50 - 00001967 _____ () C:\Users\Barbarapigatt\Desktop\YTDownloader.lnk
2014-06-25 15:50 - 2014-06-25 15:50 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2014-06-25 15:50 - 2014-06-25 15:50 - 00000000 ____D () C:\Program Files (x86)\YTDownloader
2014-06-25 15:42 - 2014-06-25 15:42 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\CrashRpt
2014-06-25 15:40 - 2014-06-25 15:40 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\unpacked6603
2014-06-25 15:39 - 2014-06-25 15:39 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\tmp6577
2014-06-25 15:12 - 2014-06-25 15:12 - 00017184 _____ () C:\Windows\SysWOW64\XMLOperations.xml
2014-06-25 15:08 - 2014-06-17 19:52 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-25 15:07 - 2014-06-16 08:58 - 00000000 ____D () C:\Program Files (x86)\Bench
2014-06-25 15:07 - 2014-06-14 12:08 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP2.job
2014-06-23 16:39 - 2014-06-23 16:39 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Supremus Corporation
2014-06-23 13:34 - 2014-06-23 12:16 - 00000045 _____ () C:\user.js
2014-06-23 12:35 - 2014-06-23 12:14 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Idle_Crawler
2014-06-23 12:19 - 2014-06-23 12:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Updates Downloader
2014-06-23 12:19 - 2014-06-23 12:19 - 00000000 ____D () C:\Program Files\Windows Updates Downloader
2014-06-23 12:16 - 2014-06-23 12:16 - 00000000 ____D () C:\Program Files\V-bates
2014-06-23 12:15 - 2014-06-23 12:15 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-06-23 12:14 - 2014-06-23 12:14 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Smartbar
2014-06-23 12:14 - 2014-06-23 12:14 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\LPT
2014-06-22 21:06 - 2014-06-14 12:08 - 00000378 _____ () C:\Windows\Tasks\APSnotifierPP1.job
2014-06-22 20:42 - 2014-06-22 20:42 - 00002896 _____ () C:\Users\Barbarapigatt\AppData\Roaming\aps.scan.results
2014-06-22 20:42 - 2014-06-22 20:42 - 00001138 _____ () C:\Users\Barbarapigatt\AppData\Roaming\aps.scan.quick.results
2014-06-22 20:42 - 2014-06-22 20:42 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2014-06-22 20:42 - 2014-06-22 20:38 - 00000000 ____D () C:\Program Files (x86)\AnyProtectEx
2014-06-22 20:42 - 2014-06-14 12:06 - 00000328 _____ () C:\Users\Barbarapigatt\AppData\Roaming\aps.uninstall.scan.results
2014-06-22 20:38 - 2014-06-22 20:38 - 00623616 _____ (Click Me In Limited) C:\Users\Barbarapigatt\AppData\Local\nsl8481.tmp
2014-06-22 20:34 - 2014-06-22 20:34 - 00178568 _____ () C:\Users\Barbarapigatt\Desktop\System Information.html
2014-06-22 20:24 - 2014-06-17 19:54 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\McAfee File Lock
2014-06-22 17:11 - 2014-06-17 14:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Updater
2014-06-22 17:11 - 2014-06-17 14:18 - 00000000 ____D () C:\Program Files (x86)\Software Updater
2014-06-22 17:09 - 2014-06-22 17:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-06-22 17:09 - 2014-06-22 17:09 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-06-22 17:08 - 2014-05-27 08:02 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Microsoft Help
2014-06-22 17:05 - 2014-06-22 17:04 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-06-22 14:49 - 2014-05-17 18:50 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-06-22 14:20 - 2014-05-23 19:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-22 14:18 - 2014-05-23 19:43 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-20 12:56 - 2014-06-12 20:28 - 00000000 ____D () C:\Program Files (x86)\Greener Web
2014-06-20 12:45 - 2014-06-20 12:45 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\EuroTrade_A.L._Ltd
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\EuroTrade A.L. Ltd
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy DR
2014-06-20 12:39 - 2014-06-20 12:39 - 00000000 ____D () C:\Program Files (x86)\Privacy DR
2014-06-20 12:38 - 2014-06-20 12:38 - 00002319 _____ () C:\Users\Public\Desktop\Driver Restore.lnk
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\Users\Barbarapigatt\Downloads\Driver Restore
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\PC_Drivers_Headquarters
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\ProgramData\UAB
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Restore
2014-06-20 12:38 - 2014-06-20 12:38 - 00000000 ____D () C:\ProgramData\Driver Restore
2014-06-20 12:37 - 2014-06-20 12:37 - 00000000 ____D () C:\Program Files (x86)\Driver Restore
2014-06-20 12:35 - 2014-06-20 12:33 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\SupTab
2014-06-20 12:33 - 2014-06-20 12:33 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-06-20 12:33 - 2014-06-20 12:33 - 00000000 ____D () C:\Program Files (x86)\The Sea App (Internet Explorer)
2014-06-20 12:33 - 2014-06-20 12:33 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-06-20 12:30 - 2014-06-14 07:49 - 00000000 ____D () C:\Program Files\pcmax
2014-06-19 15:27 - 2014-06-20 12:43 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys
2014-06-19 15:26 - 2014-06-16 08:58 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-06-19 15:20 - 2014-06-16 12:19 - 00000003 _____ () C:\Users\Barbarapigatt\AppData\Local\proxy.log
2014-06-18 14:24 - 2014-06-16 12:03 - 00000000 ____D () C:\ProgramData\InstallSightSDK
2014-06-18 14:20 - 2014-05-18 15:53 - 00000000 ____D () C:\Program Files\Google
2014-06-18 14:20 - 2014-05-18 15:52 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-18 14:18 - 2014-06-18 14:18 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\fastcleanpro
2014-06-18 13:44 - 2014-05-12 14:35 - 00000000 ____D () C:\ProgramData\McAfee
2014-06-18 08:45 - 2014-06-18 08:45 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\IsolatedStorage
2014-06-18 08:36 - 2014-06-18 08:36 - 00000000 ____D () C:\Program Files\coupon downloader
2014-06-18 08:36 - 2014-06-18 08:34 - 00000000 ____D () C:\Program Files\004
2014-06-18 08:32 - 2014-05-18 15:52 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Google
2014-06-18 08:32 - 2014-05-18 15:52 - 00000000 ____D () C:\ProgramData\Google
2014-06-18 08:25 - 2014-06-17 19:53 - 00000000 ____D () C:\Program Files (x86)\SafeKey
2014-06-17 19:57 - 2013-08-22 10:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-17 19:54 - 2014-06-17 19:53 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Online Backup
2014-06-17 19:54 - 2014-06-17 19:53 - 00000000 ____D () C:\Program Files (x86)\McAfeeMOBK
2014-06-17 19:54 - 2014-05-12 14:35 - 00000000 ____D () C:\Program Files\mcafee
2014-06-17 19:53 - 2014-06-17 19:53 - 00000000 ____D () C:\Program Files (x86)\McAfee Online Backup
2014-06-17 19:53 - 2014-06-17 14:34 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-06-17 19:52 - 2014-06-17 19:52 - 00000000 ____D () C:\Program Files\McAfee.com
2014-06-17 19:52 - 2014-06-17 19:52 - 00000000 ____D () C:\Program Files (x86)\McAfee.com
2014-06-17 19:52 - 2013-08-22 10:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-06-17 14:27 - 2014-06-17 14:25 - 00000000 ____D () C:\Program Files\stinger
2014-06-17 14:26 - 2014-06-17 14:26 - 00000000 ____D () C:\Quarantine
2014-06-16 13:37 - 2014-06-16 13:36 - 00623936 _____ () C:\Users\Barbarapigatt\Downloads\uplayermediaplayer-setup.exe
2014-06-16 13:35 - 2014-06-16 13:34 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup (6).exe
2014-06-16 12:01 - 2014-06-16 12:01 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-06-16 12:01 - 2014-06-16 12:01 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\visi_coupon
2014-06-16 12:01 - 2014-06-16 12:01 - 00000000 ____D () C:\Program Files (x86)\Re-MarkableS
2014-06-16 12:00 - 2014-06-16 12:00 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\KeepMySettingsX
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Yahoo!
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\ProgramData\Yahoo! Companion
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\ProgramData\Yahoo!
2014-06-16 11:59 - 2014-06-16 11:59 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
2014-06-16 09:11 - 2014-06-14 07:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaLive! Manager
2014-06-16 09:11 - 2014-06-14 07:55 - 00000000 ____D () C:\Program Files (x86)\JavaLive! Manager
2014-06-16 08:58 - 2013-08-22 10:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-16 08:58 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-06-15 21:05 - 2014-06-15 21:04 - 00774048 _____ (AirInstaller ) C:\Users\Barbarapigatt\Downloads\Setup.exe
2014-06-15 14:24 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\rescache
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\Windows\system32\Drivers\NSSx64
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\ProgramData\Norton
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
2014-06-14 12:35 - 2014-06-14 12:35 - 00000000 ____D () C:\Program Files (x86)\Norton Security Scan
2014-06-14 12:09 - 2014-06-14 07:47 - 00000000 ____D () C:\Program Files (x86)\Browsersafeguard
2014-06-14 12:02 - 2014-06-14 12:02 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\MySearchDial
2014-06-14 12:01 - 2014-06-14 12:01 - 00000000 ____D () C:\Program Files (x86)\Mysearchdial
2014-06-14 12:00 - 2014-06-14 12:00 - 00830792 _____ (Click Me In Limited) C:\Users\Barbarapigatt\AppData\Local\nszEE61.tmp
2014-06-14 11:56 - 2014-06-14 11:56 - 00000000 ____D () C:\Program Files\Quiknowledge
2014-06-14 11:56 - 2014-06-14 11:56 - 00000000 ____D () C:\Program Files (x86)\Quiknowledge
2014-06-14 08:27 - 2014-06-14 08:27 - 00000045 _____ () C:\Users\Barbarapigatt\AppData\Roaming\WB.CFG
2014-06-14 07:53 - 2014-06-14 07:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Severe Weather Alerts
2014-06-14 07:53 - 2014-06-14 07:53 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL
2014-06-14 07:52 - 2014-06-14 07:51 - 00000000 ____D () C:\Program Files\003
2014-06-14 07:35 - 2014-06-12 20:40 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-06-14 07:18 - 2013-08-22 09:44 - 00484248 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-12 20:41 - 2013-08-22 10:36 - 00000000 ___RD () C:\Windows\ToastData
2014-06-12 20:41 - 2013-08-22 10:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-06-12 20:41 - 2013-08-22 08:36 - 00000000 ____D () C:\Windows\system32\oobe
2014-06-12 20:40 - 2014-06-12 20:40 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-06-12 20:27 - 2014-06-12 20:27 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Speedial
2014-06-12 20:27 - 2014-06-12 20:27 - 00000000 ____D () C:\Program Files (x86)\Speedial
2014-06-12 20:25 - 2014-06-12 20:25 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Storm Alerts
2014-06-12 20:25 - 2014-06-12 20:25 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC
2014-06-12 14:05 - 2014-06-12 14:05 - 00046376 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter64.sys
2014-06-11 19:49 - 2013-08-22 10:36 - 00000000 ____D () C:\Windows\WinStore
2014-06-11 15:34 - 2014-06-14 07:23 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys
2014-06-10 04:46 - 2014-06-16 12:01 - 00057528 _____ (Corsica) C:\Windows\system32\Drivers\webinstr.sys
2014-06-09 20:22 - 2014-05-18 15:52 - 00000000 ____D () C:\Users\Barbarapigatt\AppData\Roaming\HpUpdate
 
Some content of TEMP:
====================
C:\Users\Barbarapigatt\AppData\Local\Temp\60C7_HiDefMedia-1.1.12-win32C.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\AF79_Upgrader.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air1F44.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air4E1B.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air5F52.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air60C6.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air636.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air7209.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air72B4.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air775C.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air78C0.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air7C5.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air8C38.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air8F0.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air9297.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air9BD4.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air9BE5.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\air9E38.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airB5DD.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airC99F.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airCC24.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airD914.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airDF6A.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airE60C.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airEDB2.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airFB7A.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\airFB8D.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\dlLogic.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\dltr.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\dsapi.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\EIE10_EN-CA_WOL_Win764.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run551075.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run551125.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run551555.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run551652.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55217.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55446.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55496.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55503.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55730.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55738.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55897.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55988.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\file_to_run55997.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\GCVerifier.dll
C:\Users\Barbarapigatt\AppData\Local\Temp\nsd8095.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nse1346.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nseAF38.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nsk8411.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nsl1980.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nstBA74.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nsuD030.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nsvA1EB.tmp.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\nswD4C5.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\optprosetup.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\setup.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\sp-downloader.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\speedmax_343.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\updater_131526.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\Upgrader.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\v-bates.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\verifier.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Barbarapigatt\AppData\Local\Temp\ytdi_adk_setup_20140317.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
 
 
 
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2014
Ran by Barbarapigatt at 2014-07-03 07:12:19
Running from C:\Users\Barbarapigatt\Desktop\copy
Boot Mode: Safe Mode (minimal)
==========================================================
 
 
==================== Security Center ========================
 
AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
 
==================== Installed Programs ======================
 
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION
BrowserSafeguard with RocketTab (HKLM-x32\...\BrowserSafeguard) (Version:  - BrowserSafeguard with RocketTab) <==== ATTENTION
Buzzdock (HKLM\...\{ac225167-00fc-452d-94c5-bb93600e7d9a}) (Version:  - Alactro LLC)
coupon downloader (HKLM\...\coupon downloader) (Version: 2.0.1 - coupon downloader) <==== ATTENTION
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.3214 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3205.55 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP)
Dell Update (HKLM-x32\...\{9E4750A7-90F6-4181-8A8A-B1ADF4216E93}) (Version: 1.0.1059.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Driver Restore (HKLM-x32\...\{273130E8-117C-4237-A0FA-83EBBF11E051}) (Version: 8.1 - Driver Restore)
DSC/AA Factory Installer (Version: 3.5.6426.22 - PC-Doctor, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Greener Web (HKLM\...\Greener Web) (Version: 2014.06.12.220948 - Greener Web) <==== ATTENTION
HP Deskjet 1510 series Basic Device Software (HKLM\...\{C9064E5C-D5AB-4EEB-86A6-50756901038A}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
HP Deskjet 1510 series Help (HKLM-x32\...\{2E25FCEB-EFCB-4696-AA01-D3CBAC721831}) (Version: 30.0.0 - Hewlett Packard)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Idle_Crawler (HKLM-x32\...\Idle_Crawler) (Version: 62.0.0.410 - web research foundation)
Installer (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - ) <==== ATTENTION
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
iWebar (HKLM-x32\...\iWebar) (Version: 1.34.6.10 - iWebar) <==== ATTENTION
KeepMySettingsX (HKLM-x32\...\KeepMySettingsX) (Version:  - InstallX, LLC) <==== ATTENTION
LPT System Updater Service (x32 Version: 1.0.0.0 - LPT) Hidden <==== ATTENTION
McAfee All Access – Total Protection (HKLM-x32\...\MSC) (Version: 12.8.958 - McAfee, Inc.)
McAfee Online Backup (Version: 1.16.4.0 - McAfee, Inc.) Hidden
McAfee Online Backup (x32 Version:  - McAfee, Inc.) Hidden
McAfee SafeKey(uninstall only) (HKLM-x32\...\SafeKey) (Version: 2.1.10 - McAfee, Inc.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4623.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
MyPC Backup  (HKLM\...\MyPC Backup) (Version:  - JDi Backup Ltd) <==== ATTENTION
Mysearchdial (HKLM-x32\...\mysearchdial) (Version:  - Mysearchdial) <==== ATTENTION
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
Object Browser (HKLM-x32\...\Object Browser) (Version: 1.34.6.10 - Object Browser) <==== ATTENTION
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) Hidden
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version:  - ) <==== ATTENTION
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.0 - Frank Heindörfer, Philip Chinery)
Penny Bee (HKCU\...\pennybee) (Version: 3.0.0.0 - pennybee)
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PocketCloud (HKLM-x32\...\{D9752C7D-A595-4687-A0D5-362E9C311C55}) (Version: 2.7.14 - Wyse Technology)
Privacy DR (HKLM-x32\...\{AF7CA56D-E85F-44EC-BBAD-580BC3A93E51}) (Version: 2.2.5 - EuroTrade A.L. Ltd)
Product Improvement Study for HP Deskjet 1510 series (HKLM\...\{EC27E742-EB04-4A2C-BA64-20271929528A}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.304 - Qualcomm Atheros Communications)
Quiknowledge (HKLM-x32\...\Quiknowledge) (Version: 1.9.0.3 - Quiknowledge) <==== ATTENTION
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7016 - Realtek Semiconductor Corp.)
Re-Markable (HKLM-x32\...\56B874BD-1C62-9448-0DB2-32F0511C591F) (Version:  - Re-Markable-software) <==== ATTENTION
SaferBrowser (HKLM-x32\...\SaferBrowser) (Version:  - SaferBrowser)
Search module (HKLM-x32\...\Search module) (Version:  - Search Module)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.15.10.118 - Client Connect LTD) <==== ATTENTION
Severe Weather Alerts (HKCU\...\Severe Weather Alerts) (Version: 1.23.0.0 - Weather Notifications, LLC) <==== ATTENTION
Shopper-Pro (HKLM-x32\...\ShopperPro) (Version:  - )
Snap.Do (HKLM-x32\...\{F97A8857-2A38-4CE9-A53A-F07E491F2DA8}) (Version: 11.77.1.17697 - ReSoft Ltd.) <==== ATTENTION
Snap.Do Engine (HKCU\...\{d4ebdcf7-7ab9-4c84-a202-67decd46d819}) (Version: 11.77.1.17697 - ReSoft Ltd.) <==== ATTENTION
Software Updater version 1.8.4 (HKLM-x32\...\Software Updater_is1) (Version: 1.8.4 - Air Software) <==== ATTENTION
Speedial (HKLM-x32\...\Speedial) (Version:  - Speedial) <==== ATTENTION
StormAlerts (HKCU\...\StormAlerts) (Version: 1.0.14.0 - Weather Warnings LLC)
System Optimizer Pro (HKLM\...\System Optimizer Pro) (Version: 1.0 - 383 Media, Inc.) <==== ATTENTION
System Speedup (HKLM-x32\...\System Speedup_is1) (Version: 2.1 - systemspeedup.com)
The Sea App (Internet Explorer)  (HKLM-x32\...\The Sea App) (Version:  - Growth Systems, LLC) <==== ATTENTION
V-bates 2.0.0.442 (HKLM\...\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}_is1) (Version: 2.0.0.442 - Wajamu) <==== ATTENTION
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Updates Downloader (HKLM-x32\...\Windows Updates Downloader) (Version: 2.50 Build 1002 - Supremus Corporation)
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version:  - Yahoo! Inc.)
YTDownloader (HKLM-x32\...\YTDownloader) (Version:  - YTDownloader)
 
==================== Restore Points  =========================
 
Could not list Restore Points. Check "winmgmt" service or repair WMI.
 
 
==================== Hosts content: ==========================
 
2013-08-22 08:25 - 2014-06-19 15:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-1.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-11.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-2.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-4.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5_user.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-6.job => ?
Task: C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-7.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-1.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-11.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-2.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-4.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5_user.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-6.job => ?
Task: C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-7.job => ?
Task: C:\Windows\Tasks\APSnotifierPP1.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\FF Watcher {ADB814BB-DFF2-4CAE-9482-2F92D2812DAD}.job => ?
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
Task: C:\Windows\Tasks\MySearchDial.job => ?
Task: C:\Windows\Tasks\pennybee Runner.job => ?
Task: C:\Windows\Tasks\Re-Markable Update.job => ?
Task: C:\Windows\Tasks\Re-Markable_wd.job => ?
Task: C:\Windows\Tasks\Speedial.job => ? <==== ATTENTION
Task: C:\Windows\Tasks\System Speedup_DEFAULT.job => ?
Task: C:\Windows\Tasks\System Speedup_UPDATES.job => ?
Task: C:\Windows\Tasks\Tempo Runner.job => ?
Task: C:\Windows\Tasks\temp_4490b723-3d8f-4641-b52e-f67e25a580a3-2.job => ?
 
==================== Loaded Modules (whitelisted) =============
 
2014-06-18 15:27 - 2014-06-18 15:27 - 08890536 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-05-12 14:37 - 2013-08-19 11:21 - 00020256 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIcon.dll
2014-05-12 14:37 - 2013-08-19 11:21 - 00019232 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayNotBackuped.dll
2014-05-12 14:37 - 2013-08-19 11:21 - 00035104 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRShellExtension.dll
2014-03-14 09:06 - 2014-03-14 09:06 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2014-03-14 09:00 - 2014-03-14 09:00 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\Users\Barbarapigatt\OneDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
HKLM\...\StartupApproved\Run32: => "PCFixSpeed"
HKLM\...\StartupApproved\Run32: => "PCTechHotline"
HKLM\...\StartupApproved\Run32: => "YTDownloader"
HKCU\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
HKCU\...\StartupApproved\StartupFolder: => "StormAlerts.lnk"
HKCU\...\StartupApproved\Run: => "KSS"
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/03/2014 06:46:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RSHP.exe, version: 2.0.3.263, time stamp: 0x535f59f7
Faulting module name: RSHP.exe, version: 2.0.3.263, time stamp: 0x535f59f7
Exception code: 0xc0000409
Fault offset: 0x00017b10
Faulting process id: 0x1134
Faulting application start time: 0xRSHP.exe0
Faulting application path: RSHP.exe1
Faulting module path: RSHP.exe2
Report Id: RSHP.exe3
Faulting package full name: RSHP.exe4
Faulting package-relative application ID: RSHP.exe5
 
Error: (07/03/2014 06:46:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x860
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:44:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x858
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:37:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PluginService.exe, version: 13.27.0.301, time stamp: 0x536b5640
Faulting module name: DpInterface32.dll, version: 3.0.2.3482, time stamp: 0x535f638f
Exception code: 0xc0000005
Fault offset: 0x0009b29a
Faulting process id: 0x4dc
Faulting application start time: 0xPluginService.exe0
Faulting application path: PluginService.exe1
Faulting module path: PluginService.exe2
Report Id: PluginService.exe3
Faulting package full name: PluginService.exe4
Faulting package-relative application ID: PluginService.exe5
 
Error: (07/03/2014 06:37:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x4c0
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:37:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x13c0
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:37:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0xa98
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:37:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x11fc
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:37:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x107c
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
Error: (07/03/2014 06:37:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Faulting module name: pennybee.exe, version: 1.1.0.13, time stamp: 0x53a1866d
Exception code: 0xc0000005
Fault offset: 0x0000b526
Faulting process id: 0x12ac
Faulting application start time: 0xpennybee.exe0
Faulting application path: pennybee.exe1
Faulting module path: pennybee.exe2
Report Id: pennybee.exe3
Faulting package full name: pennybee.exe4
Faulting package-relative application ID: pennybee.exe5
 
 
System errors:
=============
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (07/03/2014 07:12:20 AM) (Source: DCOM) (EventID: 10005) (User: BEDROOM)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
 
Microsoft Office Sessions:
=========================
Error: (07/03/2014 06:46:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: RSHP.exe2.0.3.263535f59f7RSHP.exe2.0.3.263535f59f7c000040900017b10113401cf96b472de8ab4C:\Program Files (x86)\SupTab\RSHP.exeC:\Program Files (x86)\SupTab\RSHP.exeb6697747-02a7-11e4-8274-0071cc495c9e
 
Error: (07/03/2014 06:46:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b52686001cf96b469bda819C:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exeacd12682-02a7-11e4-8274-0071cc495c9e
 
Error: (07/03/2014 06:44:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b52685801cf96b432dbe5c2C:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe7569841b-02a7-11e4-8273-0071cc495c9e
 
Error: (07/03/2014 06:37:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PluginService.exe13.27.0.301536b5640DpInterface32.dll3.0.2.3482535f638fc00000050009b29a4dc01cf96b057af55f4C:\ProgramData\IePluginServices\PluginService.exeC:\Program Files (x86)\SupTab\DpInterface32.dll68e27e35-02a6-11e4-8272-0071cc495c9e
 
Error: (07/03/2014 06:37:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b5264c001cf96b31cac2df3C:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe5a64a58b-02a6-11e4-8272-0071cc495c9e
 
Error: (07/03/2014 06:37:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b52613c001cf96b31be186aaC:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe5995387c-02a6-11e4-8272-0071cc495c9e
 
Error: (07/03/2014 06:37:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b526a9801cf96b31b8bb1d7C:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe5941c68f-02a6-11e4-8272-0071cc495c9e
 
Error: (07/03/2014 06:37:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b52611fc01cf96b31b383f61C:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe58ebf19d-02a6-11e4-8272-0071cc495c9e
 
Error: (07/03/2014 06:37:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b526107c01cf96b31ae4ccd4C:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe589ae17f-02a6-11e4-8272-0071cc495c9e
 
Error: (07/03/2014 06:37:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: pennybee.exe1.1.0.1353a1866dpennybee.exe1.1.0.1353a1866dc00000050000b52612ac01cf96b31a915a5cC:\PROGRA~3\pennybee\pennybee.exeC:\PROGRA~3\pennybee\pennybee.exe58476e7a-02a6-11e4-8272-0071cc495c9e
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 19%
Total physical RAM: 4012.95 MB
Available physical RAM: 3217.37 MB
Total Pagefile: 8108.95 MB
Available Pagefile: 7372.38 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:456.12 GB) (Free:411.83 GB) NTFS
Drive d: (Cleanup) (Fixed) (Total:14.91 GB) (Free:14.77 GB) NTFS
 
==================== MBR & Partition Table ==================
 
==================== End Of Log ============================
 


BC AdBot (Login to Remove)

 


#2 allenflame

allenflame
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:46 AM

Posted 03 July 2014 - 08:31 AM

Ok, after all of this, I finally found out I could login as Guest.  I was able to run all programs there.  Here are the logs

 

Adwcleaner

# AdwCleaner v3.214 - Report created 03/07/2014 at 08:08:08
# Updated 29/06/2014 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : Guest - BEDROOM
# Running from : D:\copy\AdwCleaner (1).exe
# Option : Clean
 
***** [ Services ] *****
 
Service Deleted : 70e6ca8c
Service Deleted : BackupStack
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
[#] Service Deleted : IePluginServices
Service Deleted : LPTSystemUpdater
Service Deleted : Mext Guard
[#] Service Deleted : qknfd
Service Deleted : sbmntr
Service Deleted : servervo
[#] Service Deleted : Update Greener Web
[#] Service Deleted : Util Greener Web
Service Deleted : V-bates Updater
Service Deleted : vxlsnyaiet64
Service Deleted : webinstr
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\374311380 
Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\PennyBee
Folder Deleted : C:\ProgramData\ShopperPro
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Updater
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Speedup
Folder Deleted : C:\Program Files (x86)\AnyProtectEx
Folder Deleted : C:\Program Files (x86)\Bench
Folder Deleted : C:\Program Files (x86)\Browsersafeguard
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Greener Web
Folder Deleted : C:\Program Files (x86)\iWebar
Folder Deleted : C:\Program Files (x86)\LPT
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Mysearchdial
Folder Deleted : C:\Program Files (x86)\Object Browser
Folder Deleted : C:\Program Files (x86)\Optimizer Pro
Folder Deleted : C:\Program Files (x86)\PC Speed Maximizer
Folder Deleted : C:\Program Files (x86)\Quiknowledge
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\ShopperPro
Folder Deleted : C:\Program Files (x86)\Software Updater
Folder Deleted : C:\Program Files (x86)\Speedial
Folder Deleted : C:\Program Files (x86)\SupTab
Folder Deleted : C:\Program Files (x86)\System Speedup
Folder Deleted : C:\Program Files\003
Folder Deleted : C:\Program Files\004
Folder Deleted : C:\Program Files\coupon downloader
Folder Deleted : C:\Program Files\Quiknowledge
Folder Deleted : C:\Program Files\SupraSavings
Folder Deleted : C:\Program Files\V-bates
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\LPT
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\Smartbar
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\visi_coupon
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\Temp\AirInstaller
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\Temp\Greener Web
Folder Deleted : C:\Users\Barbarapigatt\AppData\Local\Temp\Smartbar
Folder Deleted : C:\Users\Barbarapigatt\AppData\LocalLow\iWebar
Folder Deleted : C:\Users\Barbarapigatt\AppData\LocalLow\Object Browser
Folder Deleted : C:\Users\Barbarapigatt\AppData\LocalLow\PennyBee
Folder Deleted : C:\Users\Barbarapigatt\AppData\LocalLow\Smartbar
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Mysearchdial
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Optimizer Pro
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Speedial
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\SupTab
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\System Speedup
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\VOPackage
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Folder Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
Folder Deleted : C:\Users\Guest\AppData\Roaming\System Speedup
Folder Deleted : C:\Users\Public\Documents\ShopperPro
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftwareUpdater.lnk
File Deleted : C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Barbarapigatt\AppData\Roaming\aps.scan.quick.results
File Deleted : C:\Users\Barbarapigatt\AppData\Roaming\aps.scan.results
File Deleted : C:\Users\Barbarapigatt\AppData\Roaming\aps.uninstall.scan.results
File Deleted : C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
File Deleted : C:\Users\Barbarapigatt\Desktop\Optimizer Pro.lnk
File Deleted : C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_inst.shoppingate.info_0.localstorage
File Deleted : C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_inst.shoppingate.info_0.localstorage-journal
File Deleted : C:\Windows\Tasks\APSnotifierPP1.job
File Deleted : C:\Windows\System32\Tasks\APSnotifierPP1
File Deleted : C:\Windows\Tasks\APSnotifierPP2.job
File Deleted : C:\Windows\System32\Tasks\APSnotifierPP2
File Deleted : C:\Windows\Tasks\APSnotifierPP3.job
File Deleted : C:\Windows\System32\Tasks\APSnotifierPP3
File Deleted : C:\Windows\System32\Tasks\BrowserSafeguard Update Task
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
File Deleted : C:\Windows\System32\Tasks\LaunchApp
File Deleted : C:\Windows\System32\Tasks\Mext Guard FBE8818C-5B13-48C2-A93E-AD731167DBF2
File Deleted : C:\Windows\Tasks\MySearchDial.job
File Deleted : C:\Windows\System32\Tasks\MySearchDial
File Deleted : C:\Windows\Tasks\Re-Markable Update.job
File Deleted : C:\Windows\System32\Tasks\Re-Markable Update
File Deleted : C:\Windows\Tasks\Re-Markable_wd.job
File Deleted : C:\Windows\System32\Tasks\Re-Markable_wd
File Deleted : C:\Windows\System32\Tasks\ShopperPro
File Deleted : C:\Windows\System32\Tasks\ShopperProJSUpd
File Deleted : C:\Windows\System32\Tasks\SMupdate1
File Deleted : C:\Windows\System32\Tasks\SPDriver
File Deleted : C:\Windows\Tasks\Speedial.job
File Deleted : C:\Windows\System32\Tasks\Speedial
File Deleted : C:\Windows\Tasks\System Speedup_DEFAULT.job
File Deleted : C:\Windows\System32\Tasks\System Speedup_DEFAULT
File Deleted : C:\Windows\Tasks\System Speedup_UPDATES.job
File Deleted : C:\Windows\System32\Tasks\System Speedup_UPDATES
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-1.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-1
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-11.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-11
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-2.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-2
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-4.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-4
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5_user.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-5_user
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-6.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-6
File Deleted : C:\Windows\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-7.job
File Deleted : C:\Windows\System32\Tasks\429573a4-f75b-4966-b7a5-81b95eff680b-7
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-1.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-1
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-11.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-11
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-2.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-2
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-4.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-4
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5_user.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-5_user
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-6.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-6
File Deleted : C:\Windows\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-7.job
File Deleted : C:\Windows\System32\Tasks\4490b723-3d8f-4641-b52e-f67e25a580a3-7
File Deleted : C:\Windows\Tasks\FF Watcher {ADB814BB-DFF2-4CAE-9482-2F92D2812DAD}.job
File Deleted : C:\Windows\System32\Tasks\FF Watcher {ADB814BB-DFF2-4CAE-9482-2F92D2812DAD}
File Deleted : C:\Windows\Tasks\temp_4490b723-3d8f-4641-b52e-f67e25a580a3-2.job
File Deleted : C:\Windows\System32\Tasks\temp_4490b723-3d8f-4641-b52e-f67e25a580a3-2
 
***** [ Shortcuts ] *****
 
Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
 
***** [ Registry ] *****
 
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}]
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.bho
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.smartbardisplaystate
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BrowserSafeguard]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032850.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032850.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032850.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0032850.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1973D53B-7311-45D7-8270-F44571C041A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311281150}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311551110}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322282250}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322552210}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D95E57C2-53B3-4C38-BA1E-7980CB5E1803}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355285550}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366286650}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3A1BEABE-0DC5-4615-8099-83973B843C06}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344284450}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344554410}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1973D53B-7311-45D7-8270-F44571C041A0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311281150}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311281150}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311551110}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322282250}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322552210}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D95E57C2-53B3-4C38-BA1E-7980CB5E1803}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355285550}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366286650}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311281150}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Key Deleted : HKCU\Software\SoftwareUpdater
Key Deleted : HKCU\Software\System Speedup
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Object Browser
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\BrowserSafeGuard
Key Deleted : HKLM\Software\Greener Web
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\installedbrowserextensions
Key Deleted : HKLM\Software\Object Browser
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\SupDp
Key Deleted : HKLM\Software\suprasavings
Key Deleted : HKLM\Software\SupTab
Key Deleted : HKLM\Software\System Speedup
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\V9Software
Key Deleted : HKLM\Software\V-bates
Key Deleted : HKLM\Software\Wpm
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserSafeGuard
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysearchdial
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Object Browser
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Software Updater_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speedial
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\System Speedup_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions
Key Deleted : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Key Deleted : [x64] HKLM\SOFTWARE\Supra Savings
Key Deleted : [x64] HKLM\SOFTWARE\suprasavings
Key Deleted : [x64] HKLM\SOFTWARE\V-bates
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}_is1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\coupon downloader
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Greener Web
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~1.DLL
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17126
 
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
 
-\\ Google Chrome v35.0.1916.153
 
[ File : C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Extension] : bakijjialdiiboeaknfpmflphhmljfkd
Deleted [Extension] : pflphaooapbgpeakohlggbpidpppgdff
 
*************************
 
AdwCleaner[R0].txt - [28782 octets] - [03/07/2014 08:07:40]
AdwCleaner[S0].txt - [25737 octets] - [03/07/2014 08:08:08]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [25798 octets] ##########
 
 
Malwarebytes - was going to update, updating failed
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/3/2014
Scan Time: 8:19:39 AM
Logfile: mb1.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Guest
 
Scan Type: Threat Scan
Result: Cancelled
Objects Scanned: 39697
Time Elapsed: 2 min, 4 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 8
PUP.Optional.VBates, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}, , [22270ff06e0c3600721ed46c729028d8], 
PUP.Optional.VBates, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}, , [22270ff06e0c3600721ed46c729028d8], 
PUP.Optional.QuickShare.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, , [d77209f64d2da98d741e5320847ea759], 
PUP.Optional.QuickShare.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, , [d77209f64d2da98d741e5320847ea759], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [8fbadc23afcb9c9aa274350a42c0b44c], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [8fbadc23afcb9c9aa274350a42c0b44c], 
PUP.Optional.ShopperPro.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}, , [93b642bdb3c73105802fd5a1e41e41bf], 
PUP.Optional.ShopperPro.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}, , [93b642bdb3c73105802fd5a1e41e41bf], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 1
PUP.Optional.Conduit, C:\Temp\embededstub_new2.exe, , [da6f0df2c7b3f541abf306c9aa597090], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
Running another full scan of Malwarebytes now.


#3 allenflame

allenflame
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:46 AM

Posted 03 July 2014 - 08:35 AM

still can't get malwarebytes to update.

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/3/2014
Scan Time: 8:24:33 AM
Logfile: mbamcomplete.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.03.04.09
Rootkit Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Enabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Guest
 
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 248147
Time Elapsed: 2 min, 10 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Disabled
Archives: Disabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 26
PUP.Optional.StormAlerts.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\StormAlerts, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.TheSeaApp.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\The Sea App, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.SevereWeatherAlerts, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Severe Weather Alerts, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.iWebar.A, HKLM\SOFTWARE\WOW6432NODE\iWebar, , [bcc1924cc0ba42f44e6d922047bc3bc5], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\mysearchdial, , [502d6d71f98185b1ede705a6c43fd927], 
PUP.Optional.SmartBar, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SmartbarBackup, , [f8857e60b9c191a5710f21a25aa918e8], 
PUP.Optional.SmartBar, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SmartbarLog, , [ff7e538b7dfd290de19e8d365da69f61], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [b8c50dd116642f07a9cddfe072914eb2], 
PUP.Optional.iWebar.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [2558e0fea1d91620e3c46629946eae52], 
PUP.Optional.PriceGong.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\PriceGong, , [a0dd4b9389f173c3adf497f7eb1741bf], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pflphaooapbgpeakohlggbpidpppgdff, , [e6974a9403776acc9f5e43530ff31be5], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, , [651818c6d7a3072f2157a6ee54ae50b0], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\mysearchdial, , [423b3ca2dd9d3cfa147b3679de25d927], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, , [4e2f7668f783fd396b63f7b336cddb25], 
PUP.Optional.iWebar.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\iWebar, , [d1ac7a64fe7c999df53895fc03ffb848], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Object Browser, , [93eaaa34136747ef0a5ab70954af36ca], 
PUP.Optional.SevereWeatherAlerts.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\SevereWeatherAlerts.exe, , [641912ccb2c83ff765e51ea59f6453ad], 
PUP.Optional.ReMarkable.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A14E98B3-E4F8-C746-9F45-ADDC26F59949}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A14E98B3-E4F8-C746-9F45-ADDC26F59949}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{E17B0247-6F14-6782-BD65-61EDCB0040EA}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3C0D9E32-0A65-B608-F6AD-83EBCCF47BB8}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E17B0247-6F14-6782-BD65-61EDCB0040EA}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A14E98B3-E4F8-C746-9F45-ADDC26F59949}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A14E98B3-E4F8-C746-9F45-ADDC26F59949}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A14E98B3-E4F8-C746-9F45-ADDC26F59949}, , [2657fee0bfbb78be9048da585ca8ac54], 
PUP.Optional.ReMarkable.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A14E98B3-E4F8-C746-9F45-ADDC26F59949}, , [2657fee0bfbb78be9048da585ca8ac54], 
 
Registry Values: 2
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0R2Y1I1P1N0J1U1C, , [4e2f7668f783fd396b63f7b336cddb25]
PUP.Optional.Snapdo, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Browser Infrastructure Helper, C:\Users\Barbarapigatt\AppData\Local\Smartbar\Application\SnapDo.exe startup, , [bac3e7f736445dd94935197df80a05fb]
 
Registry Data: 8
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[05787b63f1893105f2514ae5a95be719]
PUP.Optional.Snapdo, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}),,[b4c96e7093e7a0968131141a966e11ef]
PUP.Optional.Snapdo, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}),,[87f6efef8feb4aec793ac66806fe6898]
PUP.Optional.Snapdo, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}),,[96e75e80f783ed49bef7220cdc286e92]
PUP.Optional.Snapdo, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}),,[8feec618afcb20166155b27c8b79af51]
PUP.Optional.Snapdo, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[502dd707601af145c2f038f6788cf40c]
PUP.Optional.Snapdo, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[c2bba23c86f41f170fa6ff2f9470748c]
PUP.Optional.Snapdo, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[c6b7a03e7ffb0a2c43734be332d2e917]
 
Folders: 11
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Storm Alerts, , [304dd10d9edca096e7b8e5aebd4536ca], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer), , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Severe Weather Alerts, , [29549d41cfab43f3d415ddd2e41fce32], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL, , [6d10cf0fe1993ef8f9f6a2e433cf07f9], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL\SevereWeatherAlerts.exe_Url_opy4wru3m0amloitsr1ir22mqth1u24b, , [6d10cf0fe1993ef8f9f6a2e433cf07f9], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL\SevereWeatherAlerts.exe_Url_opy4wru3m0amloitsr1ir22mqth1u24b\1.21.0.0, , [6d10cf0fe1993ef8f9f6a2e433cf07f9], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC\StormAlerts.exe_Url_1gslqxygc3josy2zrdfaaamieilfn0hk, , [6914a93580fa1e184170d1b70ff3ee12], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC\StormAlerts.exe_Url_1gslqxygc3josy2zrdfaaamieilfn0hk\1.6.0.0, , [6914a93580fa1e184170d1b70ff3ee12], 
 
Files: 90
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsU.dat, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsApp0.dat, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\ICSharpCode.SharpZipLib.dll, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\mod.StormAlertsApp0.dat, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\SAUpdater.exe, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\SAUpdater.exe.config, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlerts.exe, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlerts.exe.config, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsApp.exe, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsApp.exe.config, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsBrowser.exe, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsBrowser.exe.config, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsK.dat, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\StormAlertsuninstall.exe, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\uninstall.exe, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.26.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.0.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.1.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.10.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.11.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.12.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.13.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.14.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.15.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.16.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.17.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.18.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.19.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.2.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.20.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.21.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.22.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.23.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.24.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.25.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.27.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.28.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.29.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.3.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.30.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.31.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.32.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.33.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.34.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.35.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.36.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.37.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.38.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.39.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.4.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.40.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.41.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.42.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.43.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.5.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.6.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.7.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.8.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\StormAlerts\0612202534\3786.9.tmp, , [1469c41a265487afbfdf8c07ee14d927], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Storm Alerts\Storm Alerts.lnk, , [304dd10d9edca096e7b8e5aebd4536ca], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Storm Alerts.lnk, , [7a03ba243c3e4fe7742c058e010104fc], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StormAlerts.lnk, , [9edf03db027879bd1d84355e0cf6d729], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer)\The Sea App.dll.config, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer)\Interop.SHDocVw.dll, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer)\Microsoft.mshtml.dll, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer)\SpicIEx.dll, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer)\The Sea App.dll, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.TheSeaApp.A, C:\Program Files (x86)\The Sea App (Internet Explorer)\Uninstall.exe, , [59240dd1c5b54ee8572bbfd861a18977], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe.config, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\ICSharpCode.SharpZipLib.dll, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\mod.SevereWeatherAlertsApp0.dat, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp.exe, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp0.dat, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsAppAPI.dll, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsBrowser.exe, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsK.dat, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsU.dat, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\SWAUpdater.exe, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\SevereWeatherAlerts\uninstall.exe, , [7508bb23e09a47ef43a5733c21e2cb35], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Severe Weather Alerts\Severe Weather Alerts.lnk, , [29549d41cfab43f3d415ddd2e41fce32], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Severe Weather Alerts App.lnk, , [fc8112cce694082e83670ca357ac30d0], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Severe Weather Alerts.lnk, , [7b026a743446d462e8026d42ce350cf4], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL\SevereWeatherAlerts.exe_Url_opy4wru3m0amloitsr1ir22mqth1u24b\1.21.0.0\pmnuctbl.newcfg, , [6d10cf0fe1993ef8f9f6a2e433cf07f9], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL\SevereWeatherAlerts.exe_Url_opy4wru3m0amloitsr1ir22mqth1u24b\1.21.0.0\pmnuctbl.tmp, , [6d10cf0fe1993ef8f9f6a2e433cf07f9], 
PUP.Optional.SevereWeatherAlerts, C:\Users\Barbarapigatt\AppData\Local\Weather_Notifications,_LL\SevereWeatherAlerts.exe_Url_opy4wru3m0amloitsr1ir22mqth1u24b\1.21.0.0\user.config, , [6d10cf0fe1993ef8f9f6a2e433cf07f9], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC\StormAlerts.exe_Url_1gslqxygc3josy2zrdfaaamieilfn0hk\1.6.0.0\0mb5e2d6.newcfg, , [6914a93580fa1e184170d1b70ff3ee12], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC\StormAlerts.exe_Url_1gslqxygc3josy2zrdfaaamieilfn0hk\1.6.0.0\0mb5e2d6.tmp, , [6914a93580fa1e184170d1b70ff3ee12], 
PUP.Optional.StormAlerts.A, C:\Users\Barbarapigatt\AppData\Local\Weather_Warnings_LLC\StormAlerts.exe_Url_1gslqxygc3josy2zrdfaaamieilfn0hk\1.6.0.0\user.config, , [6914a93580fa1e184170d1b70ff3ee12], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\173.dll, , [2657fee0bfbb78be9048da585ca8ac54], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#4 allenflame

allenflame
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:46 AM

Posted 03 July 2014 - 09:01 AM

ok, finally got malwarebytes to update with the patched net.config file

 

updatedmalwarebytes

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/3/2014
Scan Time: 8:42:26 AM
Logfile: updatedmalware.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.07.03.03
Rootkit Database: v2014.07.01.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Guest
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 312268
Time Elapsed: 10 min, 57 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 1
PUP.Optional.SupraSavings.A, C:\Program Files (x86)\6E6B36EB-9156-411B-B951-C735F4747DCF\SupraSavingsService64.exe, 1492, , [4fd0f2a97209b581eeb7e6263cc842be]
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 24
PUP.Optional.MySpeeDial.A, HKLM\SOFTWARE\CLASSES\APPID\{0CD1A1DC-9819-4E6D-BAE2-594763D441F3}, , [e53a9902bcbfcf67459c5cee8181817f], 
PUP.Optional.MySpeeDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{0CD1A1DC-9819-4E6D-BAE2-594763D441F3}, , [e53a9902bcbfcf67459c5cee8181817f], 
PUP.Optional.GreenerWeb.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{1973D53B-7311-45D7-8270-F44571C041A0}, , [e7382972542757df346289c221e125db], 
PUP.Optional.GreenerWeb.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{1973D53B-7311-45D7-8270-F44571C041A0}, , [e7382972542757df346289c221e125db], 
PUP.Optional.Quiknowledge.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}, , [130c5e3dafcc6fc7d3d45cf28b777f81], 
PUP.Optional.Quiknowledge.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}, , [130c5e3dafcc6fc7d3d45cf28b777f81], 
PUP.Optional.Quiknowledge.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{323C6E6D-1621-470F-8A52-4FDEC4E75E40}, , [130c5e3dafcc6fc7d3d45cf28b777f81], 
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64, , [71ae3764bcbf6acc9c0fa765de26d22e], 
PUP.Optional.SavingsHen.A, HKLM\SOFTWARE\WOW6432NODE\Savings Hen, , [908f2f6c2a51181eaecf3682f70b5da3], 
PUP.Optional.SnapDo.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{F97A8857-2A38-4CE9-A53A-F07E491F2DA8}, , [bd626239047741f5dbcc24e747bdc040], 
PUP.Optional.Quiknowledge.A, HKLM\SOFTWARE\WOW6432NODE\QUIKNOWLEDGE, , [2ff06239314a04329423cd00b1519d63], 
PUP.Optional.SupraSavings.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SupraSavingsService64, , [4fd0f2a97209b581eeb7e6263cc842be], 
PUP.Optional.Quiknowledge.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\QKSVC, , [3fe00596e3982511f6c22ba250b256aa], 
PUP.Optional.SupraSavings.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Supra Savings, , [e738f5a6b0cb3afcf867a02734ce09f7], 
PUP.Optional.BrowserSafeGuard.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BrowsersafeguardInstalled, , [46d9405bc7b41620f9ac555d58aae61a], 
PUP.Optional.GreenerWeb.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Greener Web, , [ac738912196253e30218ded922e0ec14], 
PUP.Optional.Speedial.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\speedial, , [47d8a5f608738fa79413b20d0ef4be42], 
PUP.Optional.ReMarkable.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Re-Markable, , [c9568b10d9a2f2446fe3eddc45bd867a], 
PUP.Optional.SupraSavings.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\suprasavings, , [2bf49209bbc092a43930b018867cde22], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\20891, , [31eedfbc63189e986aa61eac729060a0], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\21836, , [b26d910ad7a41620a36d369440c2d828], 
PUP.Optional.SuperFish.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, , [1a050f8ccbb0ec4a73dba11127dbc23e], 
PUP.Optional.SystemSpeedup, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\ssd, , [bf60dbc06f0ce650553f8d23dd25867a], 
PUP.Optional.ReMarkable.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\56B874BD-1C62-9448-0DB2-32F0511C591F, , [e93683187b00e6505b0ae8b6877bcc34], 
 
Registry Values: 3
PUP.Optional.VBates.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|V-bates, C:\Program Files\V-bates\notifier.exe, , [928dc0dbf78440f620672d8acd3508f8]
PUP.Optional.Quiknowledge.A, HKLM\SOFTWARE\WOW6432NODE\QUIKNOWLEDGE|ie-ver, 11.0.9600.17126, , [2ff06239314a04329423cd00b1519d63]
PUP.Optional.Quiknowledge.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\QKSVC|ImagePath, "C:\Program Files (x86)\Quiknowledge\Service\qksvc.exe", , [3fe00596e3982511f6c22ba250b256aa]
 
Registry Data: 3
PUP.Optional.SnapDo.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklnKAlLcb2qZMruJE187No7dcs4Xl15URctwnk_FIJkNnuceapeF87LRT7w5iPtWzlwrOKGyM-CovmY1eBAHJoizZwhgEvfc1cbulW0u5mvfOoSUWatVRmfELpn0DBCQXRHxMVI0pAMhSPvsp7l_gu0zavw_nXoWhfXZ-vcGW-bzSl7umoghnFrO6Ej7aLjw,,&q={searchTerms}),,[3fe00794d4a73cfac4f87314ee167a86]
PUP.Optional.V9.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.v9.com/?type=hp&ts=1403285520&from=air&uid=ST500DM002-1BD142_Z6E4X09QXXXXZ6E4X09Q&i=psd&t=3446c60a0, Good: (http://www.google.com), Bad: (http://www.v9.com/?type=hp&ts=1403285520&from=air&uid=ST500DM002-1BD142_Z6E4X09QXXXXZ6E4X09Q&i=psd&t=3446c60a0),,[3ee1faa1a5d6fd399abcc4c37e8621df]
PUP.Optional.SnapDo.A, HKU\S-1-5-21-3980831013-2058836797-2515308441-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (www.google.com), Bad: (http://feed.snapdo.com/?publisher=Installmetrix&dpid=Installmetrix_CH&co=US&userid=57c1ceeb-950c-a8fe-fac8-844fff9a119b&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[0f109a01cbb0a195d4e83b4c47bdb54b]
 
Folders: 7
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x64, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x86, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.SupraSavings.A, C:\Program Files\SupraSavings, , [7fa0ddbe295256e07096cad5e022ae52], 
PUP.Optional.SupraSavings.A, C:\Program Files\SupraSavings\SSL, , [7fa0ddbe295256e07096cad5e022ae52], 
PUP.Optional.JavaLive.A, C:\Program Files (x86)\JavaLive! Manager, , [36e9c7d40e6d92a4ca3fefc12dd5ed13], 
PUP.Optional.JavaLive.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaLive! Manager, , [35eac7d4384368cea664af01bf43d22e], 
 
Files: 91
PUP.Optional.AirAdInstaller, C:\$Recycle.Bin\S-1-5-21-3980831013-2058836797-2515308441-1001\$RSPV8Y6.exe, , [6fb03467c4b77eb82bf5af8b3fc153ad], 
PUP.Optional.AirAdInstaller, C:\$Recycle.Bin\S-1-5-21-3980831013-2058836797-2515308441-1001\$RWUNQWQ.exe, , [65ba1c7f2e4d87af3ee297a3966a3ec2], 
PUP.Optional.AirAdInstaller, C:\$Recycle.Bin\S-1-5-21-3980831013-2058836797-2515308441-1001\$RX2ZVLA.exe, , [69b69b00b7c471c5839d380242be4db3], 
PUP.Optional.AirAdInstaller, C:\$Recycle.Bin\S-1-5-21-3980831013-2058836797-2515308441-1001\$R9CL938.exe, , [62bd4358eb90ac8aee32a496ab55fc04], 
PUP.Optional.AdPeak.A, C:\Temp\InstallFilter64.msi, , [bf60f7a4c3b8979f2f590c316c946b95], 
PUP.Optional.SupraSavings.A, C:\Temp\t.msi, , [2ff0c8d39be002346d21afca8183e21e], 
PUP.Optional.Quiknowledge.A, C:\Windows\System32\drivers\qknfd.sys, , [49d67229f08be84e2f3244258e736a96], 
PUP.Optional.Amonetize, C:\Users\Barbarapigatt\AppData\Local\Temp\0262860300, , [a6798c0f1566b6808d354400d42c16ea], 
PUP.Optional.InstallIQ, C:\Users\Barbarapigatt\AppData\Local\Temp\air9BE5.exe, , [110e6932f289e74f0c48c666916f857b], 
PUP.Optional.Elex.A, C:\Users\Barbarapigatt\AppData\Local\Temp\airE60C.exe, , [011e48530a71de58decaab9d4bb5e020], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Temp\airEDB2.exe, , [c55a118aff7ccd692ff1ec4e966a4ab6], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Temp\airFB8D.exe, , [3fe0217ae299f93d1e021c1eb54b1fe1], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Temp\setup.exe, , [001f6a31e7946accb66a16247090a060], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nsk8411.exe, , [1f001e7d9eddc07663b96e1aae53fd03], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nsl1980.exe, , [71ae821994e777bf59c316721ce56997], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nstBA74.exe, , [73ac7d1e3e3d5adcbf5d3c4cd62bec14], 
PUP.Optional.SearchProtect.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nsu3A39.tmp, , [ad729308dc9f0b2bac90bad8a9587c84], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nsuD030.exe, , [25fac2d92a51b97d0913d5b3eb16de22], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nswD4C5.exe, , [49d6d4c7dc9f2c0a4fcd394fce3358a8], 
PUP.Optional.SearchProtect.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nsy43A5.tmp, , [e53a74278dee37ff0933543efa078080], 
PUP.Optional.ZombieAlert.A, C:\Users\Barbarapigatt\AppData\Local\Temp\8456540176, , [59c6e3b8512aae885731eca260a19967], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\9284783253, , [ac73b3e807743600e3a25e2ba65b4eb2], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\verifier.exe, , [918ec5d684f7bd796c5d4bf75ca458a8], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\6436220663, , [011e970497e465d17a0b19707b8638c8], 
PUP.Optional.VBates.A, C:\Users\Barbarapigatt\AppData\Local\Temp\1025701797, , [5dc26833e39830067d5cdca18c780bf5], 
PUP.Optional.Amonetize, C:\Users\Barbarapigatt\AppData\Local\Temp\1282703438, , [6eb1a7f465162b0b08baf54f7b8532ce], 
PUP.Optional.VBates.A, C:\Users\Barbarapigatt\AppData\Local\Temp\1790920096, , [da45d9c2fe7da09619c090ed7d875da3], 
PUP.Optional.Amonetize, C:\Users\Barbarapigatt\AppData\Local\Temp\4268986945, , [22fd4655295296a08b370a3afc0443bd], 
PUP.Optional.Amonetize, C:\Users\Barbarapigatt\AppData\Local\Temp\4453249359, , [21fe9803ff7c181e2999d173c739fa06], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nsd8095.exe, , [051a83181863be78f8248206c53c7090], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nse1346.exe, , [4bd414873e3d83b3809cd1b7c938d42c], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\nseAF38.exe, , [c45b6b30d2a989ad33e94741e21f8878], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Temp\airCC24.exe, , [79a644570b708ea8f42cb68427d99b65], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Temp\airD914.exe, , [ec33a8f3b5c6a5917ca42614f60abe42], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Temp\airDF6A.exe, , [849b4f4c2f4cb38348d8e654a35d40c0], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\GCVerifier.dll, , [ec33514a0972ae88eed9e959b54b1ce4], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\sp-downloader.exe, , [d24d039804777abc8613d052ce33f30d], 
PUP.Optional.InstallIQ, C:\Users\Barbarapigatt\AppData\Local\Temp\air60C6.exe, , [4bd43269a4d7033341130f1d01fffa06], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\dlLogic.exe, , [c25d108bf3881a1c75539da53dc39a66], 
PUP.Optional.Conduit.A, C:\Users\Barbarapigatt\AppData\Local\Temp\dltr.exe, , [5ac5009b80fb5fd729a07ec47987a35d], 
PUP.Optional.CrossRider.A, C:\Users\Barbarapigatt\AppData\Local\Temp\Install_1912\cr.exe, , [ff202b708eedbb7b6d6d7eca1de3728e], 
PUP.Optional.CrossRider.A, C:\Users\Barbarapigatt\AppData\Local\Temp\Install_1912\iwebar.exe, , [6cb3fc9f8cef41f58a0c7bcfa65aee12], 
PUP.Optional.Goobzo, C:\Users\Barbarapigatt\AppData\Local\Temp\Install_25336\sm.exe, , [df40b1eaa0db89ad8a0df5918d77f20e], 
PUP.Optional.CrossRider.A, C:\Users\Barbarapigatt\AppData\Local\Temp\Install_32141\cr.exe, , [8d923c5f0774e6509e3cf850fa0648b8], 
PUP.Optional.CrossRider.A, C:\Users\Barbarapigatt\AppData\Local\Temp\Install_32141\iwebar.exe, , [d44b9407e497ea4c573f1139d42c2bd5], 
PUP.Optional.Goobzo, C:\Users\Barbarapigatt\AppData\Local\Temp\Install_32141\sm.exe, , [9689435802799a9cefa8ccbaaa5a19e7], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\Downloads\Setup (1).exe, , [d14ee0bbdf9c4beb061a18220ef27789], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\Downloads\Setup (2).exe, , [e43b227996e57eb8cf51f24859a7eb15], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\Downloads\Setup (3).exe, , [100feeadec8f74c2d24ed06a11efb848], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\Downloads\Setup (4).exe, , [4ad534676d0e9b9bdd431f1bdd237789], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\Downloads\Setup (6).exe, , [5ac59cff9fdc9d99e937c7734eb2926e], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\Downloads\Setup.exe, , [ae71f1aa6714f14568b8fd3d07f919e7], 
PUP.Optional.SnapDo.A, C:\Windows\Installer\194ce854.msi, , [96894b505c1f96a0ccb8761309f8f20e], 
PUP.Optional.BetterDeals.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage, , [0916b5e6c3b8eb4b647f9e1a9270bd43], 
PUP.Optional.BetterDeals.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage-journal, , [948b84170a7176c0836009afc53da45c], 
PUP.Optional.Trovi.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage, , [63bc3b60daa1fe38be332c906c96bf41], 
PUP.Optional.Trovi.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage-journal, , [4fd06c2f2e4d1a1c9d54c7f5b44e2ed2], 
PUP.Optional.MindSpark.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_totalrecipesearch.dl.tb.ask.com_0.localstorage, , [50cfe1ba463566d0d9b0863a11f16799], 
PUP.Optional.MindSpark.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_totalrecipesearch.dl.tb.ask.com_0.localstorage-journal, , [f22de7b40c6fb185bdccdde35ca6e917], 
PUP.Optional.MindSpark.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videodownloadconverter.dl.tb.ask.com_0.localstorage, , [7fa07922601bf145d9c5d4ec5ba72ed2], 
PUP.Optional.MindSpark.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videodownloadconverter.dl.tb.ask.com_0.localstorage-journal, , [a877d7c47b0038fed1cde0e0d32fa25e], 
PUP.Optional.MindSpark.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_aplusgamer.dl.tb.ask.com_0.localstorage, , [ff20dbc0b1ca989edbc5b50c9b67916f], 
PUP.Optional.MindSpark.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_aplusgamer.dl.tb.ask.com_0.localstorage-journal, , [16091b80c3b82115663a536e6b9714ec], 
PUP.Optional.QuickStart.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage, , [ff20c3d8c9b27db9585647c4a55f6d93], 
PUP.Optional.QuickStart.A, C:\Users\Barbarapigatt\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage-journal, , [120dc5d6403be353e7c75dae8f758c74], 
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys, , [71ae3764bcbf6acc9c0fa765de26d22e], 
PUP.Optional.SupraSavings.A, C:\Program Files (x86)\6E6B36EB-9156-411B-B951-C735F4747DCF\SupraSavingsService64.exe, , [4fd0f2a97209b581eeb7e6263cc842be], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\173.crx, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\173.dat, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\173.xpi, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\a.db, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\b.db, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Re-MarkableF.exe, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Re-Markablenq173.bin, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Re-Markablenq173.dll, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Re-Markablenq173.exe, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Re-Markableu03.exe, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Sqlite3.dll, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\Uninstall.exe, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x64\TandemRunner.exe, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x64\WdfCoInstaller01009.dll, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x64\webinstr.inf, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x64\webinstr.sys, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x86\TandemRunner.exe, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x86\WdfCoInstaller01009.dll, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x86\webinstr.inf, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.ReMarkable.A, C:\Program Files (x86)\Re-MarkableS\x86\webinstr.sys, , [e93683187b00e6505b0ae8b6877bcc34], 
PUP.Optional.JavaLive.A, C:\Program Files (x86)\JavaLive! Manager\SQLite3.dcu, , [36e9c7d40e6d92a4ca3fefc12dd5ed13], 
PUP.Optional.JavaLive.A, C:\Program Files (x86)\JavaLive! Manager\sqlite3.dll, , [36e9c7d40e6d92a4ca3fefc12dd5ed13], 
PUP.Optional.JavaLive.A, C:\Program Files (x86)\JavaLive! Manager\SQLiteTable3.dcu, , [36e9c7d40e6d92a4ca3fefc12dd5ed13], 
PUP.Optional.JavaLive.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JavaLive! Manager\JavaLive! Manager.lnk, , [35eac7d4384368cea664af01bf43d22e], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#5 allenflame

allenflame
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:46 AM

Posted 03 July 2014 - 10:15 AM

ran a full Malwarebytes scan

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7/3/2014
Scan Time: 8:59:58 AM
Logfile: lastmalwarebytes.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.07.03.03
Rootkit Database: v2014.07.01.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Guest
 
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 513824
Time Elapsed: 1 hr, 12 min, 12 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 86
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\G2VLE3M1\setup[2].exe, , [c45bb1eaa5d691a57fa1db5fdb25b34d], 
PUP.Optional.InstallIQ, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ITT303K7\OfferBrokerage_14220N[1].exe, , [7aa59efd5d1e67cf450f9a9245bb817f], 
PUP.Optional.TidyNetwork.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ITT303K7\TidyNetwork[1].exe, , [1a050398324951e5186ffe8da9588a76], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\KZ85GQC2\Setup.exe, , [938cebb0ea91fd398f9194a67a86d32d], 
PUP.Optional.Bundlore, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\NQDDWJQ8\setup (1).exe, , [19062c6fd3a8f14582bb355ebf42d42c], 
PUP.Optional.Firseria, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\NQDDWJQ8\Setup.exe, , [6ab5c1dae09b082e166be2d526def808], 
PUP.Optional.OptimumInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\NQDDWJQ8\Setup[1].exe, , [9986c3d80d6e39fde8d5a9aafa077a86], 
PUP.Optional.OptimumInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\Q6S9T1AE\Internet_Explorer_Setup[1].exe, , [8996fc9f88f3280ee2db6fe49f62de22], 
PUP.Optional.Montiera.I, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\Q6S9T1AE\HD_Player__CD5MTCD7045_d0b8b7d24669cf1ee136dcd204b8c0b0[1].exe, , [8e91a2f90873b680342a2361ec18be42], 
PUP.Optional.Montiera.I, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\Q6S9T1AE\HD_Player__CD5MTCD7045_d0b8b7d24669cf1ee136dcd204b8c0b0[2].exe, , [011ea1fa2754a690c29ca6de04007a86], 
PUP.Optional.OptimumInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\Q6S9T1AE\Java_Updater_Setup[1].exe, , [e33cb2e9c7b4c86e6756391a0100768a], 
PUP.Optional.Montiera.I, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\Q6S9T1AE\HD_Player__CD5MTCD7045_d0b8b7d24669cf1ee136dcd204b8c0b0[3].exe, , [021d504b7308ef4794ca8afa60a4b749], 
PUP.Optional.VBates.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\XHPCGIE6\vstub[1].exe, , [3de23f5cdaa110269742ceaffd077a86], 
PUP.Optional.FreeSoftToday.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\YFRTWX19\setup_fst_us[1].exe, , [42dd2477027932049f21503d36cb26da], 
PUP.Optional.OptimumInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ZS4O2LDF\Java_Updater_Setup[1].exe, , [938c247762193ff71f9e005333ce8a76], 
PUP.Optional.OptimumInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ZS4O2LDF\Java_Updater_Setup[2].exe, , [839c8b10c5b646f06f4ed97a7b8635cb], 
PUP.Optional.Bundlore, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ZS4O2LDF\setup (1).exe, , [ee31f3a88cef62d4b08dd3c030d1d828], 
PUP.Optional.Bundlore, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ZS4O2LDF\setup (2).exe, , [41ded0cbf9820d294fcace7db44c25db], 
PUP.Optional.AirAdInstaller, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\IE\ZS4O2LDF\Setup[1].exe, , [55ca2378d8a37cbaf729b684f50b6799], 
PUP.Optional.NextUp, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\Low\IE\45HPZQ3L\MediaPlayerClassicInstaller[1].exe, , [a07f6932dd9e3afc84e85a2c669ed927], 
PUP.Optional.BundleInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\Low\IE\CRA0LPMC\javaupdater-setup[1].exe, , [bb64b3e8f98274c2cc6967e1966a16ea], 
PUP.Optional.BundleInstaller.A, C:\Users\Barbarapigatt\AppData\Local\Microsoft\Windows\INetCache\Low\IE\CRA0LPMC\javaupdater-setup[2].exe, , [1c03fd9e59220c2a072e3e0a33cd6799], 
Adware.Adpeak, C:\AdwCleaner\Quarantine\C\Program Files\003\vxlsnyaiet64.exe.vir, , [53ccd8c3dd9ed5618d4c9bdf08fc669a], 
PUP.Optional.CouponDownloader.A, C:\AdwCleaner\Quarantine\C\Program Files\coupon downloader\uninstaller.exe.vir, , [35ea3e5db3c88caa1245de65e0209a66], 
PUP.Optional.Quiknowledge.A, C:\AdwCleaner\Quarantine\C\Program Files\Quiknowledge\IE\QuiknowledgeClientIE.dll.vir, , [5ec1207b94e77cba540d5910d8297b85], 
PUP.Optional.SweetPacks.A, C:\AdwCleaner\Quarantine\C\Program Files\V-bates\ExtensionUpdaterService.exe.vir, , [cb54dcbfa9d245f1d4cf2ce07a87c739], 
PUP.Optional.RocketTab.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe.vir, , [66b906956516f73f3bafe26758a839c7], 
PUP.Optional.GreenerWeb.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Greener Web\B4CAFBAA-3FF5-4FAF-BA2F-5CF1C25CB5A6.dll.vir, , [63bc6338a1dab482c2a84249a061c33d], 
PUP.Optional.GreenerWeb.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Greener Web\updateGreenerWeb.exe.vir, , [1e01108bb2c97abca6ec236e8d74a858], 
PUP.Optional.GreenerWeb.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Greener Web\bin\utilGreenerWeb.exe.vir, , [4bd45f3c7a01c76f3c56e0b1f60b6d93], 
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.BrowserAdapterS.dll.vir, , [fd22abf0611a7db9442dabe09b66926e], 
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.PurBrowse.dll.vir, , [24fbd7c46c0f0b2b73fb7a01b74aa15f], 
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Greener Web\bin\plugins\GreenerWeb.PurBrowseG.dll.vir, , [a679d9c21269b6806e5e2854c04104fc], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\429573a4-f75b-4966-b7a5-81b95eff680b-11.exe.vir, , [7ea1bfdcec8f2b0bef4e1d0b37ca7e82], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\429573a4-f75b-4966-b7a5-81b95eff680b-2.exe.vir, , [928d8219730825113ffe0e1ae61bb947], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\429573a4-f75b-4966-b7a5-81b95eff680b-4.exe.vir, , [34eb9dfe1368cb6b40fd70b8fa0751af], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\429573a4-f75b-4966-b7a5-81b95eff680b-5.exe.vir, , [1807b0eb69129d998eaf38f01fe21be5], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-bg.exe.vir, , [958a48537a013501b08d43e56e931be5], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-bho.dll.vir, , [6db28318a2d932046fce32f64eb3b947], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-bho64.dll.vir, , [24fb2d6e314a7bbb86b7db4ddc25cf31], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-buttonutil.exe.vir, , [9a85168545364aec57e68c9ca35ee020], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-buttonutil64.exe.vir, , [e03f5744dc9f45f1d4694ddb6d9448b8], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-codedownloader.exe.vir, , [3de2c7d41c5ffd39a6971c0c05fcdd23], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-nova.exe.vir, , [ad7294070f6c0432f94487a17c851ce4], 
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-novainstaller.exe.vir, , [051ac6d5007b979fb38ad157778a32ce], 
PUP.Optional.crossRider.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\utils.exe.vir, , [fa25efacec8ffd39b64546f9c937c040], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\4490b723-3d8f-4641-b52e-f67e25a580a3-11.exe.vir, , [7da29803502b5cdaa79731f73dc430d0], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\4490b723-3d8f-4641-b52e-f67e25a580a3-2.exe.vir, , [a7786e2d2754da5c3707c1677b86ac54], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\4490b723-3d8f-4641-b52e-f67e25a580a3-4.exe.vir, , [120d42595526c274df5fd25653ae0ef2], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\4490b723-3d8f-4641-b52e-f67e25a580a3-5.exe.vir, , [46d922798fecfc3a80bec068728fd828], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-bg.exe.vir, , [3ae509920e6d5adc84baac7c3ec36a96], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-bho.dll.vir, , [de418a11dd9e9f97e05e55d316eb21df], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-bho64.dll.vir, , [0817aeed334857dfda64da4ed52c55ab], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-buttonutil.exe.vir, , [37e8dfbc14670f278eb00d1b49b8e917], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-buttonutil64.exe.vir, , [0817cfcce497ef473fff7eaa8d7403fd], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-codedownloader.exe.vir, , [65ba980304772214ca7479af639ee818], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-nova.exe.vir, , [6db2e6b5087387af2f0faa7ed22fcd33], 
PUP.Optional.ObjectBrowser.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\Object Browser-novainstaller.exe.vir, , [d94639626b108caa63db88a021e018e8], 
PUP.Optional.crossRider.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Object Browser\utils.exe.vir, , [de41d4c797e43afc1be0d36c13edbe42], 
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProReminder.exe.vir, , [b36cefacc9b2fb3bbf4251dd1ce5e917], 
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSchedule.exe.vir, , [8c9326758bf0d95d01019b9329d8e41c], 
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe.vir, , [f62925767704e35358ab50de36cb41bf], 
PUP.Optional.Quiknowledge.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Quiknowledge\Uninstall.exe.vir, , [27f80f8c3b40e056c39edb8e27dab34d], 
PUP.Optional.Quiknowledge.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Quiknowledge\IE\QuiknowledgeClientIE.dll.vir, , [7ba468332a51db5b2140a3c648b9966a], 
PUP.Optional.Quiknowledge.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Quiknowledge\Service\qksvc.exe.vir, , [a57aaeed4536b086c0a1492003feec14], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir, , [150a534892e98aac76c6a5ed639e2ad6], 
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir, , [b36c7e1da3d8e05656c6ddabe918ba46], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir, , [1a050e8d1863df571d1ff79b56aba25e], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir, , [33ececaf116a3204d3696f2325dc9070], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir, , [2ff0cfcc8dee87afd963e8aa24dd8a76], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir, , [56c98f0cadce92a4ec506929a859e11f], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir, , [65bac1da5e1d88aeca72b2e05aa7ef11], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir, , [fc230c8fd3a84cea2c1098fa847d0df3], 
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir, , [30ef1e7d5229b97d7bc13e5450b15fa1], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir, , [35eacecd36457db998f0a8e35ca554ac], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface64.dll.vir, , [8699a5f69ae10432a6e2ee9d926fb14f], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterfacef32.dll.vir, , [bc63d4c7d8a3b185a5e3d5b6a75a1ce4], 
PUP.Optional.IEPluginService.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\RSHP.exe.vir, , [49d633681b604de9b62285e922df7c84], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect32.dll.vir, , [9c831f7cd9a25cdaf4946724f70ad32d], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect64.dll.vir, , [1b0497041b6037ff7216e8a3a160ad53], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SpAPPSv32.dll.vir, , [9788b3e8364558ded4b41b70a75a01ff], 
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SpAPPSv64.dll.vir, , [f42baeed2358d1653b4d7a11de2360a0], 
PUP.Optional.SupTab.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir, , [4bd47b20dd9e280e4d15211445bb17e9], 
PUP.Optional.IePluginService.A, C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir, , [0718712a5f1cf442174b302c28d9c63a], 
PUP.Optional.SnapDo.A, C:\AdwCleaner\Quarantine\C\Users\Barbarapigatt\AppData\Local\Smartbar\Application\BrowserHelper.exe.vir, , [64bbdebd4833d95dbcc8bccd47ba7d83], 
PUP.Optional.SmartBar.A, C:\AdwCleaner\Quarantine\C\Users\Barbarapigatt\AppData\Local\Smartbar\Application\SmartbarVersionsHelper.exe.vir, , [ff20514a3249e353a8488f98b14f55ab], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
Rebooting now, going to log in back in as the regular user now and see if any chance I can run applications now.


#6 allenflame

allenflame
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:07:46 AM

Posted 03 July 2014 - 10:51 AM

still can't run any exe files from that user.  Also, went back to the guest account, tried to make the user an administrator, doesn't seem to want to stick.


Edited by allenflame, 03 July 2014 - 10:52 AM.


#7 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:46 AM

Posted 08 July 2014 - 08:30 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/539781 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#8 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:46 AM

Posted 13 July 2014 - 08:30 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users