Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

key stroke lag after full profile load - need help


  • This topic is locked This topic is locked
3 replies to this topic

#1 capekelly

capekelly

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:atlanta
  • Local time:07:59 PM

Posted 10 August 2014 - 08:44 AM

also infections that emsisoft can't fix (UPDATE: 2nd pass quarantined them aaall)

lenovo ideapad p2580 win7 64bit I5

 

Mod Edit:  Pasted FRST data into topic - Hamluis.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-08-2014 01
Ran by Devon Mooney (administrator) on DEVONMOONEY-PC on 09-08-2014 14:43:45
Running from C:\Users\Devon Mooney\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Visioneer Inc.) C:\Program Files (x86)\Visioneer\OneTouch 4.0\OtService.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Garmin Ltd or its subsidiaries) C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
( ) C:\Program Files (x86)\LockKey\LockKey.exe
() C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\A2SERVICE.EXE.old
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\A2WIZARD.EXE.old
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [(default)] => [X]
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2866960 2011-12-15] (Synaptics Incorporated)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [410896 2011-12-15] (Synaptics)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-06-08] (Lenovo)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-06-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [564352 2012-03-01] (Conexant Systems, Inc.)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe [7715160 2014-06-03] ()
HKLM-x32\...\Run: [VeriFaceManager] => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-06-08] (Lenovo)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-13] (CyberLink Corp.)
HKLM-x32\...\Run: [LockKey] => C:\Program Files (x86)\LockKey\LockKey.exe [337776 2011-08-25] ( )
HKLM-x32\...\Run: [Intelligent Touchpad] => C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe [291272 2011-12-08] ()
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [507744 2011-12-20] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [548864 2011-12-09] (Vimicro)
HKLM-x32\...\Run: [emsisoft anti-malware] => C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [4841824 2014-08-09] (Emsisoft GmbH)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4126706860-2239837865-3147436915-1000\...\Run: [GoogleChromeAutoLaunch_40F2E65FCEBB3F93CC66BE068BCD7C1F] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-4126706860-2239837865-3147436915-1000\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
AppInit_DLLs-x32: C:\PROGRA~2\Citrix\ICACLI~1\RSHook.dll => C:\Program Files (x86)\Citrix\ICA Client\RSHook.dll [256568 2012-12-14] (Citrix Systems, Inc.)
ShellIconOverlayIdentifiers: VeriFace Enc -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\Windows\system32\IcnOvrly.dll ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dlr.sd.gov/ui/uibenefits.aspx
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_enUS507
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_enUS507
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120608151652.dll No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120608151652.dll No File
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {10CECF4F-A96E-4803-8AC2-F565FB29FF47} -  No File
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Flash Video Downloader - YouTube Full HD Download - C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default\Extensions\artur.dubovoy@gmail.com [2014-05-10]
FF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default\Extensions\donottrackplus@abine.com [2014-07-11]
FF Extension: HTTPS-Everywhere - C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default\Extensions\https-everywhere@eff.org [2014-07-01]
FF Extension: PageTweak - C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default\Extensions\{15312e9a-4905-48da-aae4-15b24bdc2a24}.xpi [2014-04-09]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-02-25]
FF Extension: Adblock Plus - C:\Users\Devon Mooney\AppData\Roaming\Mozilla\Firefox\Profiles\39qzs52u.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-28]
FF Extension: TextAloud 3 Toolbar - C:\Program Files (x86)\Mozilla Firefox\extensions\{99a0337c-6303-4879-b72e-500fd9aaca8c} [2014-06-08]

Chrome:
=======
CHR HomePage: https://startpage.com/eng/
CHR StartupUrls: "https://startpage.com/eng/"
CHR Extension: (Google Docs) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-11]
CHR Extension: (Google Drive) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-11]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (YouTube) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-11]
CHR Extension: (Facebook) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2013-12-16]
CHR Extension: (Google Search) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-11]
CHR Extension: (Facebook Disconnect) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec [2013-11-28]
CHR Extension: (Facebook Share Button) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\feakibicljdmfdfdjacenlnmeacnnnpm [2013-11-28]
CHR Extension: (AdBlock) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-11-28]
CHR Extension: (Protect My Choices) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdgloanjhdcenjgiafkpbehddcnonlic [2014-07-13]
CHR Extension: (Crackle) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2013-11-28]
CHR Extension: (Looper for YouTube) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\iggpfpnahkgpnindfkdncknoldgnccdg [2013-11-28]
CHR Extension: (Shareaholic for Google Chrome™) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmipnjdeifmobkhgogdnomkihhgojep [2013-12-16]
CHR Extension: (Auto HD For YouTube™) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2013-12-16]
CHR Extension: (MultiPartTube) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\lafgflilldkcacihcmgjpmadpabgkooe [2013-11-28]
CHR Extension: (Webcam Toy) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2013-11-28]
CHR Extension: (FVD Downloader) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp [2013-11-28]
CHR Extension: (Lazarus: Form Recovery) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\loljledaigphbcpfhfmgopdkppkifgno [2013-11-28]
CHR Extension: (Google Wallet) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2013-12-16]
CHR Extension: (Gmail) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-11]
CHR Extension: (Ambient Aurea) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkaglmndhfgdaiaccjglghcbnfinfffa [2013-11-28]
CHR Extension: (PostPost: Your Real-Time Facebook Newspaper) - C:\Users\Devon Mooney\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppljepfclkbpmkclbopgnfajoenjonae [2013-12-16]
CHR HKLM-x32\...\Chrome\Extension: [jifflliplgeajjdhmkcfnngfpgbjonjg] - C:\Program Files (x86)\Perion\NewTab\newTab.crx [2012-12-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4741384 2014-08-09] (Emsisoft GmbH)
R2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [219480 2013-07-22] (Garmin Ltd or its subsidiaries)
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [15872 2010-11-20] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe [706864 2014-06-03] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()
R2 OneTouch 4.0 Monitor; C:\Program Files (x86)\Visioneer\OneTouch 4.0\OtService.exe [229376 2012-08-23] (Visioneer Inc.) [File not signed]
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 BdfNdisf; c:\program files\lavasoft\ad-aware antivirus\firewall engine\1.6.0.0\drivers\bdfndisf6.sys [93160 2013-10-21] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys [102992 2013-10-21] (BitDefender LLC)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [41032 2013-05-23] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2012-12-30] (GFI Software)
R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\gzflt.sys [150256 2014-04-22] (BitDefender LLC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-09] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [74752 2011-07-25] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44032 2011-07-20] (Research in Motion Ltd)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-04-22] (BitDefender S.R.L.)
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 nvUpdatusService;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys 73C035299E3044636104CA7A7634A6AC
C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys D27A8B7BB0E15DFBFC6B4E774EE17AD9
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AcpiVpc.sys 5E813B11629007309E4FC0F0FD2B7C30
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys FA886682CFC5D36718D3E436AACF10B9
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\System32\DRIVERS\AMPPAL.sys 449D90F1FB6402773C2F1ECCEAE15F74
C:\Windows\System32\DRIVERS\amppal.sys 449D90F1FB6402773C2F1ECCEAE15F74
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
c:\program files\lavasoft\ad-aware antivirus\firewall engine\1.6.0.0\drivers\bdfndisf6.sys 9920B815BC3B3F2D69071842DD18D422
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys A626DCB25F09E117421E1021CA3D22A0
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\System32\drivers\BPntDrv.sys AAA4F992F879977A000FE8B8C730CD2C
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys B794DCF38C965FA2F93C45A7C3D582C5
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\clwvd.sys 50F92C943F18B070F166D019DFAB3D9A
C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\System32\drivers\CHDRT64.sys C6D2584D7BBEED22EC288223CAC68FCE
C:\Windows\System32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ctxusbm.sys C20E2A7A29F06A69C40E949255257B01
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Dot4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Dot4Prt.sys E9F5969233C5D89F3C35E3A66A52A361
C:\Windows\System32\DRIVERS\dot4usb.sys ==> MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\System32\drivers\fbfmon.sys 0BDD7984DB7AAFF6DFEFD11D82D473DB
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F
C:\Windows\System32\drivers\gfiark.sys 4EA5458FCA8518344686C543749365B1
C:\Windows\System32\drivers\gfibto.sys 14908F4F9005C29DE8F5587E271390EE
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\gzflt.sys 0A9D58AABD01DA97B1D101473EFA7659
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys C224331A54571C8C9162F7714400BBBD
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\System32\DRIVERS\igdkmd64.sys 348214F96642FD4FEF630DE021BA3540
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\intelaud.sys CADDF0927DAC63EDAE48F5C35A61D87D
C:\Windows\System32\DRIVERS\IntcDAud.sys 6C9FFFECA9FED31347D211C5D1FFBD2D
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\iusb3hcs.sys 846354992EBB373F452EB9182D501B08
C:\Windows\System32\DRIVERS\iusb3hub.sys 1D88A23853387D34D52CC8F9DDBFC56C
C:\Windows\System32\DRIVERS\iusb3xhc.sys FC5EFD7C797DF19DFB999F0605A7924E
C:\Windows\System32\DRIVERS\iwdbus.sys 716F66336F10885D935B08174DC54242
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 353009DEDF918B2A51414F330CF72DEC
C:\Windows\System32\Drivers\ksecpkg.sys 1C2D8E18AA8FD50CD04C15CC27F7F5AB
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\L1C62x64.sys E84DA1A93978B3700EA63414357B9BA3
C:\Windows\System32\DRIVERS\LhdX64.sys BE166935083F9C38EDFDC21B9A7A679B
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbam.sys F92B0E478C0FAA6D6661E6E977247E60
C:\Windows\system32\drivers\MBAMSwissArmy.sys 8A50D5304E6AE48664CF5838EC32F647
C:\Windows\system32\drivers\mwac.sys 15E8ABC06843672955CE26A009533BAD
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECIx64.sys 772A1DEEDFDBC244183B5C805D1B7D85
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\system32\drivers\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\NETwNs64.sys B51E9AD4F4E4F8DBE0AB882756BC5DAB
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys 1A29A59A4C5BA6F8C85062A613B7E2B2
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RimUsb_AMD64.sys AD42432D22940B4215177BE113E4919C
C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys 4AAFFFA67AC4DFA3D9985D78573887E2
C:\Windows\System32\DRIVERS\RMCAST.sys CAF88D6573D21CD2AA27001DDBFDC74D
C:\Windows\System32\Drivers\RootMdm.sys 388D3DD1A6457280F3BADBA9F3ACD6B1
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RtsUVStor.sys 88AB579F407A3D02918B8DCC4E6E34B3
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SynTP.sys E6A9BD45EF10EFA2EB2D380A32FBA7B6
C:\Windows\System32\drivers\tcpip.sys 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E
C:\Windows\System32\DRIVERS\tcpip.sys 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\tpm.sys DBCC20C02E8A3E43B03C304A4E40A84F
C:\Windows\System32\DRIVERS\Trufos.sys 325A512F98BEB97B1FFBE88927B8090D
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E
C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\Windows\System32\Drivers\usbaapl64.sys C9E9D59C0099A9FF51697E9306A44240
C:\Windows\System32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\System32\DRIVERS\usbccgp.sys DCA68B0943D6FA415F0C56C92158A83A
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 18A85013A3E0F7E1755365D287443965
C:\Windows\System32\DRIVERS\usbhub.sys 8D1196CFBB223621F2C67D45710F25BA
C:\Windows\system32\drivers\usbohci.sys 765A92D428A8DB88B960DA5A8D6089DC
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys DD253AFC3BC6CBA412342DE60C3647F3
C:\Windows\System32\Drivers\usbvideo.sys 1F775DA4CF1A3A1834207E975A72E9D7
C:\Windows\System32\DRIVERS\usb8023x.sys 7B28E2FBE75115660FAB31079C0A9F29
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\vm332avs.sys BEEC7DB99737B083C62A84D1328571D2
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys 13A0DECD1794DE60A8427862C8669D27
C:\Windows\System32\DRIVERS\vwifimp.sys 49003B357D101CDC474937437ECF5ABC
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wsvd.sys 83575C43B2BFE9AB0661A7F957E843C0
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-09 14:43 - 2014-08-09 14:44 - 00046213 _____ () C:\Users\Devon Mooney\Downloads\FRST.txt
2014-08-09 14:43 - 2014-08-09 14:43 - 00000000 ____D () C:\FRST
2014-08-09 14:42 - 2014-08-09 14:43 - 01366203 _____ () C:\Users\Devon Mooney\Downloads\AdwCleaner.exe
2014-08-09 12:57 - 2014-08-09 13:00 - 196859008 _____ () C:\Users\Devon Mooney\Downloads\EmsisoftEmergencyKit.exe
2014-08-09 12:57 - 2014-08-09 12:57 - 02093568 _____ (Farbar) C:\Users\Devon Mooney\Downloads\FRST64.exe
2014-08-09 11:36 - 2014-08-09 11:36 - 00000000 ____D () C:\ProgramData\Emsisoft
2014-08-09 09:48 - 2014-08-09 09:48 - 00001106 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-08-09 09:48 - 2014-08-09 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2014-08-09 09:47 - 2014-08-09 11:36 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2014-08-09 09:37 - 2014-08-09 09:39 - 233663808 _____ (Emsisoft GmbH ) C:\Users\Devon Mooney\Downloads\EmsisoftAntiMalwareSetup.exe
2014-08-09 00:02 - 2014-08-09 00:02 - 00000000 ____D () C:\32788R22FWJFW
2014-08-08 02:13 - 2014-08-08 02:13 - 18590290 _____ () C:\Users\Devon Mooney\AppData\Local\census.cache
2014-08-08 02:13 - 2014-08-08 02:13 - 00000000 _____ () C:\Users\Devon Mooney\AppData\Local\ars.cache
2014-08-07 19:39 - 2014-08-07 19:39 - 00000010 _____ () C:\Users\Devon Mooney\AppData\Local\sponge.last.runtime.cache
2014-08-07 19:33 - 2014-08-07 19:33 - 00000036 _____ () C:\Users\Devon Mooney\AppData\Local\housecall.guid.cache
2014-08-07 19:32 - 2014-08-07 19:32 - 02055784 _____ (Trend Micro Inc.) C:\Users\Devon Mooney\Downloads\HousecallLauncher.exe
2014-08-06 20:10 - 2014-08-06 20:10 - 00671232 _____ () C:\Users\Devon Mooney\Downloads\MicrosoftFixit50688.msi
2014-08-06 18:43 - 2014-07-27 12:54 - 00020708 _____ () C:\Users\Devon Mooney\Documents\basic resume.ott
2014-08-06 07:59 - 2014-08-06 07:59 - 05576048 _____ (Lenovo Group ) C:\Users\Devon Mooney\Downloads\0zla01ww.exe
2014-08-05 21:07 - 2014-08-05 21:07 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{0A21EBA9-F537-43B2-9550-1CD54CB64D89}
2014-08-05 18:47 - 2014-08-05 18:47 - 02117530 _____ () C:\Users\Devon Mooney\Documents\errors.txt
2014-08-05 18:44 - 2014-08-05 18:44 - 00347816 _____ (Microsoft Corporation) C:\Users\Devon Mooney\Downloads\MicrosoftFixit.Performance.RNP.1330707319368922.2.1.Run.exe
2014-08-05 18:37 - 2014-08-05 18:30 - 03170798 _____ () C:\Users\Devon Mooney\Documents\080514.html
2014-08-03 12:17 - 2014-08-03 12:17 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{F7041D3D-820C-47C7-A93C-A02A466D8CC6}
2014-08-03 12:17 - 2014-08-03 12:17 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{4EEF357C-2FFF-4129-9EAB-179A58C512FF}
2014-08-02 23:18 - 2014-08-09 13:20 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-02 23:18 - 2014-08-02 23:18 - 00001117 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-02 23:18 - 2014-08-02 23:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-02 23:18 - 2014-08-02 23:18 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-02 23:18 - 2014-08-02 23:18 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-02 23:18 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-02 23:18 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-02 23:18 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-02 23:16 - 2014-08-02 23:17 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Devon Mooney\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-01 01:04 - 2014-08-01 01:04 - 08017824 _____ (Lenovo Group Limited ) C:\Users\Devon Mooney\Downloads\motherboard_quick_test_x64_3104738.exe
2014-08-01 01:04 - 2014-08-01 01:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-08-01 01:02 - 2014-08-01 01:02 - 00000000 ____D () C:\SWTOOLS
2014-08-01 01:02 - 2014-08-01 01:02 - 00000000 ____D () C:\ProgramData\Lenovo
2014-08-01 00:58 - 2014-08-01 00:58 - 07851632 _____ (Lenovo Group Limited ) C:\Users\Devon Mooney\Downloads\pci_express_quick_test_x64_3104738.exe
2014-07-30 19:30 - 2014-07-30 20:02 - 00242735 _____ () C:\Users\Devon Mooney\Downloads\fl_rest_+_liq_5k-10k.xls
2014-07-30 17:58 - 2014-07-30 17:59 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{B698757E-BF1D-4A18-89F9-274CCD7FD928}
2014-07-29 21:26 - 2014-07-29 21:27 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{EB71418D-6047-4FC0-AF09-81EA69400166}
2014-07-27 12:55 - 2014-07-27 12:55 - 00017911 _____ () C:\Users\Devon Mooney\Desktop\adv resume.ott
2014-07-27 11:48 - 2014-07-27 11:48 - 00032260 _____ () C:\Users\Devon Mooney\Desktop\draft kc resume 714.odt
2014-07-22 19:01 - 2014-07-22 19:01 - 00000000 ____D () C:\Users\Devon Mooney\Documents\OpenOffice 4.1.0 (en-US) Installation Files
2014-07-22 07:49 - 2014-07-22 07:49 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{78DE35F7-6108-43AA-8234-BD5FA981401D}
2014-07-21 07:43 - 2014-07-21 07:43 - 06028818 _____ () C:\Users\Devon Mooney\Downloads\violentmars_small.wmv
2014-07-17 06:57 - 2014-07-17 06:57 - 00017580 _____ () C:\Users\Devon Mooney\Documents\kc rm res.odt
2014-07-16 20:03 - 2014-07-16 20:03 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Roaming\OpenOffice
2014-07-16 19:44 - 2014-07-16 19:44 - 00001112 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2014-07-16 19:44 - 2014-07-16 19:44 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-07-16 19:43 - 2014-07-16 19:44 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-07-16 19:20 - 2014-07-16 19:20 - 00000000 ____D () C:\Users\Devon Mooney\Desktop\OpenOffice 4.1.0 (en-US) Installation Files
2014-07-16 18:42 - 2014-07-16 18:47 - 140910890 _____ () C:\Users\Devon Mooney\Downloads\Apache_OpenOffice_4.1.0_Win_x86_install_en-US.exe
2014-07-11 20:29 - 2014-07-11 20:31 - 06437391 _____ () C:\Users\Devon Mooney\Downloads\The NSAS Michael Aquino, Founder of The Temple of Set (Mobile).3gp
2014-07-11 20:21 - 2014-07-11 20:23 - 05759237 _____ () C:\Users\Devon Mooney\Downloads\Tesla Howitzer used Against Mosque in Iraq - Tesla Howitzer Unveiled (Mobile).3gp
2014-07-11 20:20 - 2014-07-11 20:23 - 08327034 _____ () C:\Users\Devon Mooney\Downloads\CNN Special Report 1985 Electromagnetic Frequency (Mobile).3gp
2014-07-11 04:06 - 2014-07-11 04:49 - 135303879 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part Three (Mobile).3gp
2014-07-11 04:06 - 2014-07-11 04:44 - 117230796 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part Five (Mobile).3gp
2014-07-11 04:06 - 2014-07-11 04:43 - 116128619 _____ () C:\Users\Devon Mooney\Downloads\A Dance With Dragons - Part Four (Mobile).3gp
2014-07-11 04:06 - 2014-07-11 04:43 - 112815918 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part Six (Mobile).3gp
2014-07-11 04:05 - 2014-07-11 04:48 - 135823820 _____ () C:\Users\Devon Mooney\Downloads\A Dance With Dragons - Part Two (Mobile).3gp
2014-07-11 04:05 - 2014-07-11 04:42 - 116055402 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part One (Mobile).3gp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-09 14:44 - 2014-08-09 14:43 - 00046213 _____ () C:\Users\Devon Mooney\Downloads\FRST.txt
2014-08-09 14:43 - 2014-08-09 14:43 - 00000000 ____D () C:\FRST
2014-08-09 14:43 - 2014-08-09 14:42 - 01366203 _____ () C:\Users\Devon Mooney\Downloads\AdwCleaner.exe
2014-08-09 14:29 - 2012-06-08 17:33 - 01908990 _____ () C:\Windows\WindowsUpdate.log
2014-08-09 14:23 - 2012-06-08 18:19 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-09 14:02 - 2012-11-19 17:12 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-09 13:20 - 2014-08-02 23:18 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-09 13:00 - 2014-08-09 12:57 - 196859008 _____ () C:\Users\Devon Mooney\Downloads\EmsisoftEmergencyKit.exe
2014-08-09 12:57 - 2014-08-09 12:57 - 02093568 _____ (Farbar) C:\Users\Devon Mooney\Downloads\FRST64.exe
2014-08-09 11:36 - 2014-08-09 11:36 - 00000000 ____D () C:\ProgramData\Emsisoft
2014-08-09 11:36 - 2014-08-09 09:47 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2014-08-09 09:48 - 2014-08-09 09:48 - 00001106 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-08-09 09:48 - 2014-08-09 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2014-08-09 09:39 - 2014-08-09 09:37 - 233663808 _____ (Emsisoft GmbH ) C:\Users\Devon Mooney\Downloads\EmsisoftAntiMalwareSetup.exe
2014-08-09 09:07 - 2012-11-24 12:46 - 05002752 ___SH () C:\Users\Devon Mooney\Downloads\Thumbs.db
2014-08-09 02:04 - 2009-07-14 00:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-09 02:04 - 2009-07-14 00:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-09 00:12 - 2013-06-09 11:08 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{1C9E579D-00D6-4232-85CB-B22B4BFAAAD5}
2014-08-09 00:02 - 2014-08-09 00:02 - 00000000 ____D () C:\32788R22FWJFW
2014-08-09 00:02 - 2013-06-30 18:22 - 05568206 _____ (Swearware) C:\Users\Devon Mooney\Downloads\ComboFix.exe
2014-08-08 21:23 - 2012-06-08 18:19 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-08 20:13 - 2013-01-06 23:31 - 00000095 _____ () C:\Users\Devon Mooney\.accessibility.properties
2014-08-08 20:13 - 2012-10-27 06:20 - 02372627 _____ () C:\FaceProv.log
2014-08-08 20:13 - 2012-10-27 06:20 - 00000000 ____D () C:\Users\Devon Mooney
2014-08-08 20:13 - 2012-06-08 18:20 - 00600522 _____ () C:\Windows\system32\fastboot.set
2014-08-08 20:13 - 2012-06-08 18:15 - 00000000 ____D () C:\ProgramData\VeriFace
2014-08-08 20:13 - 2009-07-14 01:13 - 00898706 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-08 20:10 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-08-08 20:09 - 2014-01-27 14:36 - 00002316 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-08-08 20:08 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-08 20:08 - 2009-07-14 00:51 - 00121716 _____ () C:\Windows\setupact.log
2014-08-08 07:47 - 2013-05-16 00:18 - 00000000 ____D () C:\Users\Public\CyberLink
2014-08-08 02:13 - 2014-08-08 02:13 - 18590290 _____ () C:\Users\Devon Mooney\AppData\Local\census.cache
2014-08-08 02:13 - 2014-08-08 02:13 - 00000000 _____ () C:\Users\Devon Mooney\AppData\Local\ars.cache
2014-08-07 19:39 - 2014-08-07 19:39 - 00000010 _____ () C:\Users\Devon Mooney\AppData\Local\sponge.last.runtime.cache
2014-08-07 19:33 - 2014-08-07 19:33 - 00000036 _____ () C:\Users\Devon Mooney\AppData\Local\housecall.guid.cache
2014-08-07 19:32 - 2014-08-07 19:32 - 02055784 _____ (Trend Micro Inc.) C:\Users\Devon Mooney\Downloads\HousecallLauncher.exe
2014-08-06 20:10 - 2014-08-06 20:10 - 00671232 _____ () C:\Users\Devon Mooney\Downloads\MicrosoftFixit50688.msi
2014-08-06 18:24 - 2012-12-15 17:57 - 00000000 ____D () C:\ProgramData\Ad-Aware Browsing Protection
2014-08-06 07:59 - 2014-08-06 07:59 - 05576048 _____ (Lenovo Group ) C:\Users\Devon Mooney\Downloads\0zla01ww.exe
2014-08-05 21:07 - 2014-08-05 21:07 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{0A21EBA9-F537-43B2-9550-1CD54CB64D89}
2014-08-05 19:26 - 2012-10-27 06:21 - 00002254 _____ () C:\Users\Devon Mooney\Desktop\OneKey Recovery.lnk
2014-08-05 18:47 - 2014-08-05 18:47 - 02117530 _____ () C:\Users\Devon Mooney\Documents\errors.txt
2014-08-05 18:44 - 2014-08-05 18:44 - 00347816 _____ (Microsoft Corporation) C:\Users\Devon Mooney\Downloads\MicrosoftFixit.Performance.RNP.1330707319368922.2.1.Run.exe
2014-08-05 18:30 - 2014-08-05 18:37 - 03170798 _____ () C:\Users\Devon Mooney\Documents\080514.html
2014-08-05 07:45 - 2013-03-01 22:38 - 00000000 ____D () C:\Windows\pss
2014-08-04 18:46 - 2012-10-26 18:47 - 24846971 _____ () C:\Windows\system32\PsBoot.log
2014-08-04 18:46 - 2012-10-26 18:47 - 00000000 _____ () C:\Windows\system32\defragLog.log
2014-08-03 20:19 - 2013-08-14 20:20 - 00000231 _____ () C:\Users\Devon Mooney\AppData\Roaming\Rim.Transcoder.Exception.log
2014-08-03 20:19 - 2013-03-24 22:38 - 00011264 _____ () C:\Users\Devon Mooney\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-03 20:19 - 2012-11-15 09:10 - 00006314 _____ () C:\Users\Devon Mooney\AppData\Roaming\Rim.Desktop.Exception.log
2014-08-03 12:17 - 2014-08-03 12:17 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{F7041D3D-820C-47C7-A93C-A02A466D8CC6}
2014-08-03 12:17 - 2014-08-03 12:17 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{4EEF357C-2FFF-4129-9EAB-179A58C512FF}
2014-08-02 23:48 - 2010-11-20 23:47 - 00230450 _____ () C:\Windows\PFRO.log
2014-08-02 23:18 - 2014-08-02 23:18 - 00001117 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-02 23:18 - 2014-08-02 23:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-02 23:18 - 2014-08-02 23:18 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-02 23:18 - 2014-08-02 23:18 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-02 23:17 - 2014-08-02 23:16 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Devon Mooney\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-01 19:23 - 2013-05-17 17:07 - 00007625 _____ () C:\Users\Devon Mooney\AppData\Local\Resmon.ResmonCfg
2014-08-01 01:04 - 2014-08-01 01:04 - 08017824 _____ (Lenovo Group Limited ) C:\Users\Devon Mooney\Downloads\motherboard_quick_test_x64_3104738.exe
2014-08-01 01:04 - 2014-08-01 01:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-08-01 01:02 - 2014-08-01 01:02 - 00000000 ____D () C:\SWTOOLS
2014-08-01 01:02 - 2014-08-01 01:02 - 00000000 ____D () C:\ProgramData\Lenovo
2014-08-01 00:58 - 2014-08-01 00:58 - 07851632 _____ (Lenovo Group Limited ) C:\Users\Devon Mooney\Downloads\pci_express_quick_test_x64_3104738.exe
2014-08-01 00:40 - 2014-06-07 23:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus
2014-08-01 00:40 - 2013-06-09 00:46 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-01 00:40 - 2011-10-10 04:19 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-08-01 00:40 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration
2014-07-30 20:02 - 2014-07-30 19:30 - 00242735 _____ () C:\Users\Devon Mooney\Downloads\fl_rest_+_liq_5k-10k.xls
2014-07-30 17:59 - 2014-07-30 17:58 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{B698757E-BF1D-4A18-89F9-274CCD7FD928}
2014-07-29 21:27 - 2014-07-29 21:26 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{EB71418D-6047-4FC0-AF09-81EA69400166}
2014-07-27 12:55 - 2014-07-27 12:55 - 00017911 _____ () C:\Users\Devon Mooney\Desktop\adv resume.ott
2014-07-27 12:54 - 2014-08-06 18:43 - 00020708 _____ () C:\Users\Devon Mooney\Documents\basic resume.ott
2014-07-27 11:48 - 2014-07-27 11:48 - 00032260 _____ () C:\Users\Devon Mooney\Desktop\draft kc resume 714.odt
2014-07-27 11:47 - 2012-10-27 00:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-07-26 22:09 - 2014-06-08 00:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-26 11:24 - 2012-12-19 09:02 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-26 11:24 - 2012-12-19 09:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 20:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-24 03:02 - 2012-12-19 09:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-22 19:01 - 2014-07-22 19:01 - 00000000 ____D () C:\Users\Devon Mooney\Documents\OpenOffice 4.1.0 (en-US) Installation Files
2014-07-22 07:49 - 2014-07-22 07:49 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Local\{78DE35F7-6108-43AA-8234-BD5FA981401D}
2014-07-21 07:43 - 2014-07-21 07:43 - 06028818 _____ () C:\Users\Devon Mooney\Downloads\violentmars_small.wmv
2014-07-17 20:27 - 2012-10-26 17:25 - 00074176 _____ () C:\Users\Devon Mooney\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-17 20:26 - 2009-07-14 00:45 - 00351000 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-17 06:57 - 2014-07-17 06:57 - 00017580 _____ () C:\Users\Devon Mooney\Documents\kc rm res.odt
2014-07-16 20:03 - 2014-07-16 20:03 - 00000000 ____D () C:\Users\Devon Mooney\AppData\Roaming\OpenOffice
2014-07-16 19:44 - 2014-07-16 19:44 - 00001112 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2014-07-16 19:44 - 2014-07-16 19:44 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-07-16 19:44 - 2014-07-16 19:43 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-07-16 19:20 - 2014-07-16 19:20 - 00000000 ____D () C:\Users\Devon Mooney\Desktop\OpenOffice 4.1.0 (en-US) Installation Files
2014-07-16 18:47 - 2014-07-16 18:42 - 140910890 _____ () C:\Users\Devon Mooney\Downloads\Apache_OpenOffice_4.1.0_Win_x86_install_en-US.exe
2014-07-13 16:25 - 2013-10-08 15:05 - 00000000 ____D () C:\Users\Devon Mooney\Documents\My OneTouch Archive
2014-07-11 20:31 - 2014-07-11 20:29 - 06437391 _____ () C:\Users\Devon Mooney\Downloads\The NSAS Michael Aquino, Founder of The Temple of Set (Mobile).3gp
2014-07-11 20:23 - 2014-07-11 20:21 - 05759237 _____ () C:\Users\Devon Mooney\Downloads\Tesla Howitzer used Against Mosque in Iraq - Tesla Howitzer Unveiled (Mobile).3gp
2014-07-11 20:23 - 2014-07-11 20:20 - 08327034 _____ () C:\Users\Devon Mooney\Downloads\CNN Special Report 1985 Electromagnetic Frequency (Mobile).3gp
2014-07-11 04:49 - 2014-07-11 04:06 - 135303879 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part Three (Mobile).3gp
2014-07-11 04:48 - 2014-07-11 04:05 - 135823820 _____ () C:\Users\Devon Mooney\Downloads\A Dance With Dragons - Part Two (Mobile).3gp
2014-07-11 04:44 - 2014-07-11 04:06 - 117230796 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part Five (Mobile).3gp
2014-07-11 04:43 - 2014-07-11 04:06 - 116128619 _____ () C:\Users\Devon Mooney\Downloads\A Dance With Dragons - Part Four (Mobile).3gp
2014-07-11 04:43 - 2014-07-11 04:06 - 112815918 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part Six (Mobile).3gp
2014-07-11 04:42 - 2014-07-11 04:05 - 116055402 _____ () C:\Users\Devon Mooney\Downloads\A Dance with Dragons - Part One (Mobile).3gp
2014-07-10 03:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-07-10 03:19 - 2014-05-06 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-10 03:19 - 2011-10-10 04:19 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 03:19 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-10 03:19 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-10 03:04 - 2013-07-17 05:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-10 03:02 - 2012-10-26 18:37 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Devon Mooney\AppData\Local\Temp\qi3mtwwz.dll
C:\Users\Devon Mooney\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Devon Mooney\AppData\Local\Temp\Update.exe
C:\Users\Devon Mooney\AppData\Local\Temp\UpdateX.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume1
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {75513759-b127-11e1-84ea-dc0ea1eac40e}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 0

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {fc1e0d4a-201f-11e2-8529-dc0ea1eac40e}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {75513759-b127-11e1-84ea-dc0ea1eac40e}
nx                      OptIn

Windows Boot Loader
-------------------
identifier              {fc1e0d4a-201f-11e2-8529-dc0ea1eac40e}
device                  ramdisk=[C:]\Recovery\fc1e0d4a-201f-11e2-8529-dc0ea1eac40e\Winre.wim,{fc1e0d4b-201f-11e2-8529-dc0ea1eac40e}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\fc1e0d4a-201f-11e2-8529-dc0ea1eac40e\Winre.wim,{fc1e0d4b-201f-11e2-8529-dc0ea1eac40e}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Resume from Hibernate
---------------------
identifier              {75513759-b127-11e1-84ea-dc0ea1eac40e}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume1
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 Yes

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Setup Ramdisk Options
---------------------
identifier              {ramdiskoptions}
description             Ramdisk options
ramdisksdidevice        boot
ramdisksdipath          \boot\boot.sdi

Device options
--------------
identifier              {fc1e0d4b-201f-11e2-8529-dc0ea1eac40e}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\fc1e0d4a-201f-11e2-8529-dc0ea1eac40e\boot.sdi

 

LastRegBack: 2014-08-07 00:56

==================== End Of Log ============================

Attached Files


Edited by hamluis, 10 August 2014 - 12:07 PM.
Moved from Win 7 to Malware Removal Logs - Hamluis.


BC AdBot (Login to Remove)

 


#2 capekelly

capekelly
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:atlanta
  • Local time:07:59 PM

Posted 10 August 2014 - 07:48 PM

Your fabar did not help however I was able to fix the problem. It's all better now. Taken 8 days, but everything is good now.



#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 PM

Posted 15 August 2014 - 08:45 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/543927 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,761 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:59 PM

Posted 20 August 2014 - 08:50 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users