Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Messed up controls, ads all over the place, and java glitching out.


  • This topic is locked This topic is locked
9 replies to this topic

#1 Houka

Houka

  • Members
  • 112 posts
  • OFFLINE
  •  
  • Local time:10:49 AM

Posted 18 September 2014 - 11:28 PM

So started using my brother's laptop and it's just full of parasites. Dozen and dozen of add of all kinds, just pop on the desktop, on the web from pretty much everywhere , and the words turning green and shows an add when scrolled over. It slows done the page loading and sometimes will directed me to a new window with an ad in it. 

 

The controls go messed up and will freeze and if I'm hitting a key when doing so it will get lock into that key til I push it again (after the freeze up has ended anyway) making typing more annoying then needed.

 

Java seem glitchy like one some pages it perfectly fine but on other there is a mess of images and videos that seem busted at points while OK on other sections. The Java script seem to have error written in it while it was fine not long a go. Clearing the browser settings seem to clear it for a minute or two. And when I wish to update java it flat out refuse saying this PC can't support it when it can.

 

A few other things online videos will just flat out refreshes itself. This PC seem to be downloading some programs as a few new Icon just pop up out of no ware. Also I think it can corrupted some files as sometimes when I'm working something it just died for that reason when nothing else before so did. I don't see any form of Anti Virus or Malware on here so I can't used them.

 

That should cover everything, I would be grateful if someone would let me know how I should go about cleaning this thing up.



BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:49 PM

Posted 19 September 2014 - 04:50 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

  • Important: To help me reviewing your logs, please post them in code boxes. You can create them by clicking on the <>-symbol on top of the reply window.

 
 
 
 
HijackThis is not the preferred initial scanning tool in this forum. With today's malware, a more comprehensive set of logs is required to determine the presence of malware.
 
 
 
 
Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)
 
  • Run FRST.
  • Don´t change one of the checkboxes and hit Scan.
  • Logfiles are created on your desktop.
  • Poste the FRST.txt and (after the first scan only!) the Addition.txt.

 
 
 
 
 Scan with aswMBR

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • There will be a short delay before the next dialog box comes up. Please just wait a minute or two.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Typically this is about a 100MB download so depending on your connection speed it can take a short while to download and become ready.
  • Click the Scan button to start the scan once the update has finished downloading
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

Note: There will also be a file on your desktop named MBR.dat do not delete this for now. It is an actual backup of the MBR (master boot record).


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 Houka

Houka
  • Topic Starter

  • Members
  • 112 posts
  • OFFLINE
  •  
  • Local time:10:49 AM

Posted 19 September 2014 - 09:36 AM

Fore the FRST one:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Cody (administrator) on CODY-PC on 19-09-2014 09:18:43
Running from C:\Users\Cody\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvchst.exe
() C:\Program Files (x86)\Re-markit\Re-markit153.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
() C:\Program Files (x86)\Surftastic\updateSurftastic.exe
() C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
(Conduit) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(Conduit) C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe
(Conduit) C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvchst.exe
() C:\Program Files (x86)\Re-markit\Re-markit_wd.exe
(http://joyvy.com/) C:\Program Files (x86)\Joyvy\GCUpdater.exe
() C:\Users\Cody\AppData\Local\GCC\Controller.exe
(http://yourfiledownloader.com) C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(http://joyvy.com/) C:\Program Files (x86)\Joyvy\GameCenter.exe
() C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
() C:\Users\Cody\AppData\Local\GCC\Controller.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Search Module Ltd.) C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe
(YTDownloader) C:\Program Files (x86)\YTDownloader\YTDownloader.exe
(Search Snacks) C:\Program Files (x86)\SearchSnacks\Service\sssvc.exe
() C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe
(Joyent, Inc) C:\Program Files (x86)\Common Files\Diagnostics\node\node.exe
() C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe
(Joyent, Inc) C:\Program Files (x86)\Common Files\Diagnostics\node\node.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Interesting Solutions) C:\ProgramData\QTLfxSZtHur\ANCSqMRuSFK.exe
(Google Inc.) C:\Users\Cody\AppData\Local\GCC\Chrome-bin\chrome.exe
(iWebar) C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-6.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\ClearThink\updateClearThink.exe
() C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.PurBrowse64.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter.exe
() C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cody\AppData\Local\GCC\Chrome-bin\chrome.exe
(Google Inc.) C:\Users\Cody\AppData\Local\GCC\Chrome-bin\chrome.exe
(Google Inc.) C:\Users\Cody\AppData\Local\GCC\Chrome-bin\chrome.exe
(Google Inc.) C:\Users\Cody\AppData\Local\GCC\Chrome-bin\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Joyent, Inc) C:\Program Files (x86)\Common Files\Diagnostics\node\node.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12558440 2011-07-11] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2721576 2011-06-16] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2014-01-18] (RealNetworks, Inc.)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [775872 2014-02-11] ()
HKLM-x32\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988968 2014-08-25] (YTDownloader)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\Run: [NextLive] => C:\windows\SysWOW64\rundll32.exe "C:\Users\Cody\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\Run: [GameCenter] => C:\Program Files (x86)\Joyvy\GameCenter.exe [1140464 2014-02-11] (http://joyvy.com/)
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\Run: [WeatherBug] => C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe [146736 2014-04-01] ()
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988968 2014-08-25] (YTDownloader)
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [148048 2014-09-16] (PC Utilities Software Limited)
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\MountPoints2: F - F:\LaunchU3.exe -a
HKU\S-1-5-21-1378875358-1120829428-2694025308-1001\...\MountPoints2: {6aa8c5b1-9431-11e3-921e-e8039a1fb09e} - F:\LaunchU3.exe -a
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1351456 2014-02-06] (Conduit)
AppInit_DLLs:  C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [226920 2011-06-04] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1047328 2014-02-06] (Conduit)
AppInit_DLLs-x32:  C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [193128 2011-06-04] (NVIDIA Corporation)
Startup: C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: 127.0.0.1:5050
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
SearchScopes: HKCU - DefaultScope {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL = http://www-search.net/search.aspx?s=E9Iztrpds02TRS,69750f47-c260-4427-8e47-43cb8d430adc,&q={searchTerms}
BHO: Addon control -> {11111111-1111-1111-1111-110611341143} -> C:\Program Files (x86)\Addon control\Addon control-bho64.dll (iWebar)
BHO: SearchSnacks -> {7D1B27B2-3DE0-4F26-94A0-E14FDB06D292} -> C:\Program Files\SearchSnacks\IE\SearchSnacksClientIE.dll (Search Snacks)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: MiniGetBHO Class -> {10E1725C-7237-41A9-954A-04DCCB1FD16C} -> C:\Program Files (x86)\MiniGet\MiniGetHelper1.11.dll (MiniSoft)
BHO-x32: Addon control -> {11111111-1111-1111-1111-110611341143} -> C:\Program Files (x86)\Addon control\Addon control-bho.dll (iWebar)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Symantec NCO BHO -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
BHO-x32: Symantec Intrusion Prevention -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: SearchSnacks -> {7D1B27B2-3DE0-4F26-94A0-E14FDB06D292} -> C:\Program Files (x86)\SearchSnacks\IE\SearchSnacksClientIE.dll (Search Snacks)
BHO-x32: ClearThink -> {7e6d4e3e-fc66-4036-9799-ce5c625c4c56} -> C:\Program Files (x86)\ClearThink\ClearThinkbho.dll (ClearThink)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFF
FF Extension: Symantec Intrusion Prevention - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFF [2014-01-19]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\coFFPlgn_2011_7_13_2
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\coFFPlgn_2011_7_13_2 [2014-09-18]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-01-18]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
 
Chrome: 
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (RealNetworks™ RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks™ RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks™ RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Profile: C:\Users\Cody\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Cody\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-16]
CHR Extension: (RealDownloader) - C:\Users\Cody\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-01-18]
CHR Extension: (Google Wallet) - C:\Users\Cody\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-02]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 70e6ca8c; c:\Program Files (x86)\Optimizer Pro\OptProCrash.dll [3649616 2014-09-18] ()
R2 ANCSqMRuSFK; C:\ProgramData\QTLfxSZtHur\ANCSqMRuSFK.exe [2319728 2014-09-18] (Interesting Solutions)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36936 2014-09-10] (Just Develop It)
R2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2360608 2014-02-06] (Conduit)
R2 Diagnostics; C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe [154112 2014-09-10] () [File not signed]
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-09-18] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-09-18] (globalUpdate) [File not signed]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [130008 2011-04-16] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 Proxy; C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe [154112 2014-09-10] () [File not signed]
U2 Re-markit; C:\Program Files (x86)\Re-markit\Re-markit153.exe [180736 2014-02-11] () [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] () [File not signed]
R2 SMUpd; C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe [2708328 2014-09-18] (Search Module Ltd.)
R2 sssvc; C:\Program Files (x86)\SearchSnacks\Service\sssvc.exe [276064 2014-08-21] (Search Snacks)
R2 Update ClearThink; C:\Program Files (x86)\ClearThink\updateClearThink.exe [325360 2014-09-19] ()
R2 Update Surftastic; C:\Program Files (x86)\Surftastic\updateSurftastic.exe [80672 2014-02-12] ()
R2 Util ClearThink; C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe [325360 2014-09-19] ()
R2 Util Surftastic; C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe [80672 2014-02-12] ()
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2014-01-10] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-01-19] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-01-19] (Symantec Corporation) [File not signed]
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20140214.001\IDSvia64.sys [521944 2014-01-18] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20140215.007\ENG64.SYS [126040 2014-01-19] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20140215.007\EX64.SYS [2099288 2014-01-19] (Symantec Corporation)
R2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58728 2014-08-25] (YTDownloader)
R2 SGDrv; C:\Windows\System32\DRIVERS\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
R3 SMUpdd; C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys [42856 2014-09-18] ()
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [744568 2011-03-30] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [40568 2011-03-30] (Symantec Corporation)
R1 ssnfd; C:\Windows\System32\drivers\ssnfd.sys [58248 2014-08-21] (Search Snacks)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1207020.003\SYMDS64.SYS [450680 2011-01-27] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1207020.003\SYMEFA64.SYS [912504 2011-03-14] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2014-01-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [171128 2011-01-27] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [386168 2011-04-20] (Symantec Corporation)
R1 {c5e48979-bd7f-4cf7-9b73-2482a67a4f37}w64; C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}w64.sys [44688 2014-09-15] (StdLib)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-19 09:18 - 2014-09-19 09:21 - 00024318 _____ () C:\Users\Cody\Downloads\FRST.txt
2014-09-19 09:18 - 2014-09-19 09:19 - 00000000 ____D () C:\FRST
2014-09-19 09:17 - 2014-09-19 09:17 - 02105856 _____ (Farbar) C:\Users\Cody\Downloads\FRST64.exe
2014-09-18 17:36 - 2014-09-18 17:36 - 00000000 _____ () C:\Users\Cody\Downloads\Java_Setup.exe
2014-09-18 17:36 - 2014-09-18 17:36 - 00000000 _____ () C:\Users\Cody\Downloads\Java_Setup (1).exe
2014-09-18 17:33 - 2014-09-18 17:33 - 00918440 _____ (Oracle Corporation) C:\Users\Cody\Downloads\chromeinstall-7u67 (1).exe
2014-09-18 17:31 - 2014-09-18 17:31 - 00918440 _____ (Oracle Corporation) C:\Users\Cody\Downloads\chromeinstall-7u67.exe
2014-09-18 17:31 - 2014-09-18 17:31 - 00003238 _____ () C:\windows\System32\Tasks\Optimizer Pro Schedule
2014-09-18 17:31 - 2014-09-18 17:31 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Optimizer Pro
2014-09-18 17:30 - 2014-09-19 09:12 - 00000000 ____D () C:\Users\Cody\AppData\Local\InstaShare
2014-09-18 17:30 - 2014-09-18 22:56 - 00001024 _____ () C:\.rnd
2014-09-18 17:28 - 2014-09-18 17:28 - 00263186 _____ () C:\Users\Cody\Desktop\Minecraft.exe
2014-09-18 17:27 - 2014-09-18 17:27 - 00000000 ____D () C:\ProgramData\QTLfxSZtHur
2014-09-18 17:27 - 2014-09-18 17:27 - 00000000 ____D () C:\ProgramData\InstaShare
2014-09-18 17:26 - 2014-09-18 17:26 - 00001066 _____ () C:\Users\Cody\Desktop\Optimizer Pro.lnk
2014-09-18 17:26 - 2014-09-18 17:26 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Common dictionary
2014-09-18 17:26 - 2014-09-18 17:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2014-09-18 17:26 - 2014-09-18 17:26 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-09-18 17:25 - 2014-09-18 17:25 - 00000000 ____D () C:\Program Files\SearchSnacks
2014-09-18 17:25 - 2014-09-18 17:25 - 00000000 ____D () C:\Program Files (x86)\SearchSnacks
2014-09-18 17:14 - 2014-09-19 09:14 - 00003796 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-6.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00004822 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-11.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00004140 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-4.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00003796 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-7.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00003116 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5_user.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00003116 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00003096 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-1.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00002428 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-2.job
2014-09-18 17:14 - 2014-09-19 09:05 - 00000906 _____ () C:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-09-18 17:14 - 2014-09-18 17:19 - 00000902 _____ () C:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-09-18 17:14 - 2014-09-18 17:14 - 00007852 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-11
2014-09-18 17:14 - 2014-09-18 17:14 - 00007170 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-4
2014-09-18 17:14 - 2014-09-18 17:14 - 00006826 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-7
2014-09-18 17:14 - 2014-09-18 17:14 - 00006824 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-6
2014-09-18 17:14 - 2014-09-18 17:14 - 00006146 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5
2014-09-18 17:14 - 2014-09-18 17:14 - 00006126 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-1
2014-09-18 17:14 - 2014-09-18 17:14 - 00005458 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-2
2014-09-18 17:14 - 2014-09-18 17:14 - 00003904 _____ () C:\windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-09-18 17:14 - 2014-09-18 17:14 - 00003650 _____ () C:\windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-09-18 17:14 - 2014-09-18 17:14 - 00000000 ____D () C:\Users\Cody\AppData\Local\globalUpdate
2014-09-18 17:14 - 2014-09-18 17:14 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-09-18 17:14 - 2014-09-18 17:14 - 00000000 ____D () C:\Program Files (x86)\Addon control
2014-09-18 17:13 - 2014-09-18 17:13 - 00004234 _____ () C:\windows\System32\Tasks\SMW_UpdateTask_Time_323632353131363730332d374a55414134502a576c4a5a
2014-09-18 17:13 - 2014-09-18 17:13 - 00003834 _____ () C:\windows\System32\Tasks\Smp
2014-09-18 17:13 - 2014-09-18 17:13 - 00003718 _____ () C:\windows\System32\Tasks\SMupdate1
2014-09-18 17:13 - 2014-09-18 17:13 - 00003578 _____ () C:\windows\System32\Tasks\YTDownloader
2014-09-18 17:13 - 2014-09-18 17:13 - 00003568 _____ () C:\windows\System32\Tasks\YTDownloaderUpd
2014-09-18 17:13 - 2014-09-18 17:13 - 00001953 _____ () C:\Users\Cody\Desktop\YTDownloader.lnk
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\ProgramData\SearchModule
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\Program Files\Common Files\Goobzo
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\Program Files (x86)\YTDownloader
2014-09-18 17:12 - 2014-09-18 17:12 - 00000000 ____D () C:\Users\Cody\AppData\Local\CrashRpt
2014-09-18 17:10 - 2014-09-18 17:10 - 79580528 _____ () C:\Users\Cody\Downloads\minecraft-setup.exe
2014-09-18 16:47 - 2014-09-18 16:47 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (11).exe
2014-09-18 16:46 - 2014-09-18 16:46 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (9).exe
2014-09-18 16:46 - 2014-09-18 16:46 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (10).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (8).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (7).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (6).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (5).exe
2014-09-18 16:44 - 2014-09-18 16:44 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (4).exe
2014-09-18 16:43 - 2014-09-18 16:43 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (3).exe
2014-09-18 16:43 - 2014-09-18 16:43 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (2).exe
2014-09-18 14:38 - 2014-09-18 14:38 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15092_b39f5116dbe35a71611240cb454fb4b8.exe
2014-09-18 12:07 - 2014-09-18 12:07 - 00000000 ____D () C:\Users\Cody\AppData\Local\{C7C76FBE-A123-4027-AFAA-D8DCA0CF6740}
2014-09-18 10:33 - 2014-09-18 10:33 - 00770556 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-09-18 10:19 - 2014-09-18 10:19 - 00000000 __SHD () C:\Users\Cody\AppData\Local\EmieUserList
2014-09-18 10:19 - 2014-09-18 10:19 - 00000000 __SHD () C:\Users\Cody\AppData\Local\EmieSiteList
2014-09-17 12:50 - 2014-09-17 12:50 - 00000000 ____D () C:\Users\Cody\AppData\Local\{C4392F58-4855-4E4F-9ABB-A523AD725FBA}
2014-09-17 12:04 - 2014-09-17 12:05 - 05377337 _____ () C:\Users\Cody\Downloads\banjokazooie-xbla-sounds.zip
2014-09-17 10:52 - 2014-08-18 17:29 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-09-17 10:52 - 2014-08-18 17:14 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-09-17 10:52 - 2014-08-18 17:08 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-09-17 10:52 - 2014-08-18 17:05 - 00596480 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-09-17 10:52 - 2014-08-18 16:57 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-09-17 10:52 - 2014-08-18 16:45 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-09-17 10:52 - 2014-08-18 16:44 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-09-17 10:52 - 2014-08-18 16:37 - 00440320 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-09-17 10:51 - 2014-08-19 13:05 - 00374968 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-09-17 10:51 - 2014-08-19 12:39 - 00327872 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-09-17 10:51 - 2014-08-18 18:01 - 23591424 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-09-17 10:51 - 2014-08-18 17:29 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-09-17 10:51 - 2014-08-18 17:26 - 17455104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-09-17 10:51 - 2014-08-18 17:20 - 02793984 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-09-17 10:51 - 2014-08-18 17:19 - 05833728 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-09-17 10:51 - 2014-08-18 17:15 - 00547328 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-09-17 10:51 - 2014-08-18 17:15 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-09-17 10:51 - 2014-08-18 17:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-09-17 10:51 - 2014-08-18 17:08 - 04232704 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-09-17 10:51 - 2014-08-18 17:08 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-09-17 10:51 - 2014-08-18 17:03 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-09-17 10:51 - 2014-08-18 17:03 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-09-17 10:51 - 2014-08-18 17:03 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-09-17 10:51 - 2014-08-18 16:56 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-09-17 10:51 - 2014-08-18 16:51 - 00446464 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-09-17 10:51 - 2014-08-18 16:46 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-09-17 10:51 - 2014-08-18 16:45 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-09-17 10:51 - 2014-08-18 16:44 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-09-17 10:51 - 2014-08-18 16:42 - 02185728 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-09-17 10:51 - 2014-08-18 16:40 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-09-17 10:51 - 2014-08-18 16:39 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-09-17 10:51 - 2014-08-18 16:39 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-09-17 10:51 - 2014-08-18 16:39 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-09-17 10:51 - 2014-08-18 16:38 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-09-17 10:51 - 2014-08-18 16:36 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-09-17 10:51 - 2014-08-18 16:35 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-09-17 10:51 - 2014-08-18 16:27 - 00365056 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-09-17 10:51 - 2014-08-18 16:25 - 00727040 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-09-17 10:51 - 2014-08-18 16:25 - 00707072 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-09-17 10:51 - 2014-08-18 16:23 - 02104832 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-09-17 10:51 - 2014-08-18 16:23 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-09-17 10:51 - 2014-08-18 16:22 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-17 10:51 - 2014-08-18 16:19 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-09-17 10:51 - 2014-08-18 16:17 - 00243200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-09-17 10:51 - 2014-08-18 16:17 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-09-17 10:51 - 2014-08-18 16:16 - 13588480 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-09-17 10:51 - 2014-08-18 16:15 - 11769856 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-09-17 10:51 - 2014-08-18 16:15 - 02310656 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-09-17 10:51 - 2014-08-18 16:09 - 00603136 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-09-17 10:51 - 2014-08-18 16:08 - 02014208 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-09-17 10:51 - 2014-08-18 16:07 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-09-17 10:51 - 2014-08-18 15:55 - 01447424 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-09-17 10:51 - 2014-08-18 15:46 - 01812992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-09-17 10:51 - 2014-08-18 15:38 - 01190400 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-09-17 10:51 - 2014-08-18 15:38 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-09-17 10:51 - 2014-08-18 15:36 - 00678400 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-09-17 10:35 - 2014-06-26 21:08 - 02777088 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-09-17 10:35 - 2014-06-26 20:45 - 02285056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-09-17 10:31 - 2014-06-30 17:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-09-17 10:31 - 2014-06-30 17:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-09-17 10:31 - 2014-06-06 01:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-09-17 10:31 - 2014-06-06 01:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-09-17 10:31 - 2014-03-09 16:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-09-17 10:31 - 2014-03-09 16:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-09-17 10:31 - 2014-03-09 16:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-09-17 10:31 - 2014-03-09 16:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-09-16 19:20 - 2014-09-16 19:20 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (6).exe
2014-09-16 19:19 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (5).exe
2014-09-16 19:19 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (4).exe
2014-09-16 19:19 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (5).exe
2014-09-16 19:18 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (4).exe
2014-09-16 19:18 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (3).exe
2014-09-16 19:18 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (2).exe
2014-09-16 19:18 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (3).exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528.exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (1).exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (2).exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (1).exe
2014-09-16 19:16 - 2014-09-16 19:16 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528.exe
2014-09-16 19:14 - 2014-09-18 19:05 - 00000000 ____D () C:\Movies
2014-09-16 19:07 - 2014-09-18 13:04 - 00000000 ____D () C:\Muisc
2014-09-16 18:53 - 2014-09-16 18:53 - 00004020 _____ () C:\windows\System32\Tasks\LaunchSignup
2014-09-16 18:53 - 2014-09-16 18:53 - 00001973 _____ () C:\Users\Cody\Desktop\Sync Folder.lnk
2014-09-16 18:53 - 2014-09-16 18:53 - 00000000 ____D () C:\Users\Cody\AppData\Local\IsolatedStorage
2014-09-16 18:52 - 2014-09-16 18:55 - 00000000 ____D () C:\Users\Cody\AppData\Local\Free YouTube Downloader
2014-09-16 18:52 - 2014-09-16 18:53 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-09-16 18:52 - 2014-09-16 18:52 - 00001919 _____ () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\WeatherBug®.lnk
2014-09-16 18:52 - 2014-09-16 18:52 - 00001895 _____ () C:\Users\Cody\Desktop\WeatherBug®.lnk
2014-09-16 18:52 - 2014-09-16 18:52 - 00001091 _____ () C:\Users\Cody\Desktop\MyPC Backup.lnk
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 __HDC () C:\ProgramData\{E0A9340B-C01B-42C1-9910-C307D7BE4756}
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WeatherBug®
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 ____D () C:\Program Files\Earth Networks
2014-09-16 18:51 - 2014-09-16 18:51 - 00001293 _____ () C:\Users\Public\Desktop\Free YouTube Downloader.lnk
2014-09-16 18:51 - 2014-09-16 18:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free YouTube Downloader
2014-09-16 18:51 - 2014-09-16 18:51 - 00000000 ____D () C:\Program Files (x86)\Free YouTube Downloader
2014-09-16 18:50 - 2014-09-16 18:50 - 00720336 _____ ( ) C:\Users\Cody\Downloads\FreeYouTubeDownloaderIC.exe
2014-09-16 18:44 - 2014-09-16 22:09 - 00000000 ____D () C:\Users\Cody\AppData\Local\Windows Live
2014-09-16 18:44 - 2014-09-16 18:44 - 00000000 ____D () C:\Users\Cody\AppData\Local\{780D05A1-6CF9-4E3B-8011-AB08608BCBE3}
2014-09-16 18:44 - 2014-09-16 18:44 - 00000000 ____D () C:\Users\Cody\AppData\Local\{739792FD-91F5-4A31-9CBC-9E4470965F94}
2014-09-16 15:21 - 2014-08-01 06:53 - 01031168 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2014-09-16 15:21 - 2014-08-01 06:35 - 00793600 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2014-09-16 15:21 - 2014-07-15 22:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-09-16 15:21 - 2014-07-15 21:46 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-09-16 15:21 - 2014-06-23 22:29 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-09-16 15:21 - 2014-06-23 21:59 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-09-16 15:20 - 2014-06-24 21:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-09-16 15:20 - 2014-06-24 20:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-09-16 15:20 - 2014-06-15 21:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-09-16 15:20 - 2014-06-03 05:02 - 03241984 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-09-16 15:20 - 2014-06-03 05:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-09-16 15:20 - 2014-06-03 05:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-09-16 15:20 - 2014-06-03 05:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-09-16 15:20 - 2014-06-03 04:29 - 02363392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-09-16 15:20 - 2014-06-03 04:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-09-16 15:20 - 2014-06-03 04:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-09-16 15:19 - 2014-09-04 21:10 - 00578048 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-09-16 15:19 - 2014-09-04 21:05 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-09-16 15:19 - 2014-08-22 21:07 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-09-16 15:19 - 2014-08-22 20:45 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-09-16 15:19 - 2014-08-22 19:59 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-09-16 15:19 - 2014-07-13 21:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-09-16 15:19 - 2014-07-13 20:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-09-16 15:19 - 2014-07-06 21:06 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-09-16 15:19 - 2014-07-06 21:06 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-09-16 15:19 - 2014-07-06 20:40 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-09-16 15:19 - 2014-07-06 20:40 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-09-16 15:19 - 2014-07-06 20:39 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-09-16 14:13 - 2014-09-18 11:01 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-09-16 11:54 - 2014-09-16 11:54 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent) (3).zip
2014-09-16 11:54 - 2014-09-16 11:54 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent) (2).zip
2014-09-16 11:54 - 2014-09-16 11:54 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent) (1).zip
2014-09-16 11:53 - 2014-09-16 11:53 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent).zip
2014-09-16 10:50 - 2014-09-16 10:50 - 00349760 _____ () C:\Users\Cody\Downloads\Setup (3).exe
2014-09-16 10:50 - 2014-09-16 10:50 - 00349760 _____ () C:\Users\Cody\Downloads\Setup (2).exe
2014-09-16 10:50 - 2014-09-16 10:50 - 00349760 _____ () C:\Users\Cody\Downloads\Setup (1).exe
2014-09-15 21:23 - 2014-09-15 16:18 - 00044688 _____ (StdLib) C:\windows\system32\Drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}w64.sys
2014-09-15 21:19 - 2014-09-15 21:19 - 00378335 _____ () C:\Users\Cody\Downloads\Pokemon - Blue Version (USA, Europe).zip
2014-09-15 21:12 - 2014-09-15 21:13 - 00000000 ____D () C:\Games
2014-09-15 21:10 - 2014-09-15 21:10 - 00002024 _____ () C:\Users\Cody\Downloads\vba1.ini
2014-09-15 21:07 - 2014-09-15 21:07 - 00659797 _____ () C:\Users\Cody\Downloads\VisualBoyAdvance-1.8.0-beta3 (2).zip
2014-09-15 21:07 - 2014-09-15 21:07 - 00659797 _____ () C:\Users\Cody\Downloads\VisualBoyAdvance-1.8.0-beta3 (1).zip
2014-09-15 21:04 - 2014-09-15 21:04 - 00003076 _____ () C:\windows\System32\Tasks\Advanced-System Protector_startup
2014-09-15 21:04 - 2014-09-15 21:04 - 00001045 _____ () C:\Users\Public\Desktop\Advanced-System Protector.lnk
2014-09-15 21:04 - 2014-09-15 21:04 - 00000000 ____D () C:\ProgramData\Systweak
2014-09-15 21:04 - 2014-09-15 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced-System Protector
2014-09-15 21:04 - 2014-09-15 21:04 - 00000000 ____D () C:\Program Files (x86)\ASP
2014-09-15 21:04 - 2012-07-25 12:03 - 00016896 _____ () C:\windows\system32\sasnative64.exe
2014-09-15 21:03 - 2014-09-18 15:01 - 00003090 _____ () C:\windows\System32\Tasks\RegClean Pro
2014-09-15 21:03 - 2014-09-18 15:01 - 00000256 _____ () C:\windows\Tasks\RegClean Pro_DEFAULT.job
2014-09-15 21:03 - 2014-09-17 21:03 - 00000264 _____ () C:\windows\Tasks\RegClean Pro_UPDATES.job
2014-09-15 21:03 - 2014-09-16 14:16 - 00000000 ____D () C:\Program Files (x86)\ClearThink
2014-09-15 21:03 - 2014-09-15 21:04 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Systweak
2014-09-15 21:03 - 2014-09-15 21:03 - 00659797 _____ () C:\Users\Cody\Downloads\VisualBoyAdvance-1.8.0-beta3.zip
2014-09-15 21:03 - 2014-09-15 21:03 - 00003002 _____ () C:\windows\System32\Tasks\RegClean Pro_UPDATES
2014-09-15 21:03 - 2014-09-15 21:03 - 00002846 _____ () C:\windows\System32\Tasks\RegClean Pro_DEFAULT
2014-09-15 21:03 - 2014-09-15 21:03 - 00000985 _____ () C:\Users\Public\Desktop\RegClean Pro.lnk
2014-09-15 21:03 - 2014-09-15 21:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
2014-09-15 21:03 - 2014-09-15 21:03 - 00000000 ____D () C:\Program Files (x86)\RCP
2014-09-15 21:03 - 2014-08-05 19:14 - 00020328 _____ () C:\windows\system32\roboot64.exe
2014-09-15 21:02 - 2014-09-15 21:02 - 00754608 _____ ( ) C:\Users\Cody\Downloads\CR_Downloader_for_visual-boy-advance.exe
2014-09-15 17:47 - 2014-05-14 11:23 - 02477536 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-09-15 17:47 - 2014-05-14 11:23 - 00058336 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-09-15 17:47 - 2014-05-14 11:23 - 00044512 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-09-15 17:47 - 2014-05-14 11:21 - 02620928 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-09-15 17:46 - 2014-05-14 11:23 - 00700384 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-09-15 17:46 - 2014-05-14 11:23 - 00581600 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-09-15 17:46 - 2014-05-14 11:23 - 00038880 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-09-15 17:46 - 2014-05-14 11:23 - 00036320 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2014-09-15 17:46 - 2014-05-14 11:20 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-09-15 17:46 - 2014-05-14 11:17 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-09-15 17:45 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-09-15 17:45 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-09-15 17:45 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-09-15 17:45 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-08-21 12:15 - 2014-08-21 12:15 - 00058248 _____ (Search Snacks) C:\windows\system32\Drivers\ssnfd.sys
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-19 09:21 - 2014-09-19 09:18 - 00024318 _____ () C:\Users\Cody\Downloads\FRST.txt
2014-09-19 09:21 - 2014-01-18 18:18 - 00000000 ____D () C:\Users\Cody\AppData\Local\CrashDumps
2014-09-19 09:20 - 2011-12-14 18:28 - 01291996 _____ () C:\windows\WindowsUpdate.log
2014-09-19 09:19 - 2014-09-19 09:18 - 00000000 ____D () C:\FRST
2014-09-19 09:18 - 2014-01-18 20:00 - 00000890 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-19 09:17 - 2014-09-19 09:17 - 02105856 _____ (Farbar) C:\Users\Cody\Downloads\FRST64.exe
2014-09-19 09:14 - 2014-09-18 17:14 - 00003796 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-6.job
2014-09-19 09:12 - 2014-09-18 17:30 - 00000000 ____D () C:\Users\Cody\AppData\Local\InstaShare
2014-09-19 09:07 - 2009-07-13 21:34 - 00000505 _____ () C:\windows\win.ini
2014-09-19 09:06 - 2014-01-18 20:00 - 00000894 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00004822 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-11.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00004140 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-4.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00003796 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-7.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00003116 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5_user.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00003116 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00003096 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-1.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00002428 _____ () C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-2.job
2014-09-19 09:05 - 2014-09-18 17:14 - 00000906 _____ () C:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-09-19 09:05 - 2014-02-11 21:16 - 00000352 _____ () C:\windows\Tasks\AmiUpdXp.job
2014-09-18 23:13 - 2014-01-18 17:56 - 00001595 _____ () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-18 22:56 - 2014-09-18 17:30 - 00001024 _____ () C:\.rnd
2014-09-18 20:17 - 2014-02-11 21:16 - 00000368 _____ () C:\windows\Tasks\Re-markit_wd.job
2014-09-18 20:06 - 2014-02-11 21:16 - 00000382 _____ () C:\windows\Tasks\Re-markit Update.job
2014-09-18 19:05 - 2014-09-16 19:14 - 00000000 ____D () C:\Movies
2014-09-18 17:36 - 2014-09-18 17:36 - 00000000 _____ () C:\Users\Cody\Downloads\Java_Setup.exe
2014-09-18 17:36 - 2014-09-18 17:36 - 00000000 _____ () C:\Users\Cody\Downloads\Java_Setup (1).exe
2014-09-18 17:33 - 2014-09-18 17:33 - 00918440 _____ (Oracle Corporation) C:\Users\Cody\Downloads\chromeinstall-7u67 (1).exe
2014-09-18 17:31 - 2014-09-18 17:31 - 00918440 _____ (Oracle Corporation) C:\Users\Cody\Downloads\chromeinstall-7u67.exe
2014-09-18 17:31 - 2014-09-18 17:31 - 00003238 _____ () C:\windows\System32\Tasks\Optimizer Pro Schedule
2014-09-18 17:31 - 2014-09-18 17:31 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Optimizer Pro
2014-09-18 17:28 - 2014-09-18 17:28 - 00263186 _____ () C:\Users\Cody\Desktop\Minecraft.exe
2014-09-18 17:27 - 2014-09-18 17:27 - 00000000 ____D () C:\ProgramData\QTLfxSZtHur
2014-09-18 17:27 - 2014-09-18 17:27 - 00000000 ____D () C:\ProgramData\InstaShare
2014-09-18 17:26 - 2014-09-18 17:26 - 00001066 _____ () C:\Users\Cody\Desktop\Optimizer Pro.lnk
2014-09-18 17:26 - 2014-09-18 17:26 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Common dictionary
2014-09-18 17:26 - 2014-09-18 17:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2014-09-18 17:26 - 2014-09-18 17:26 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-09-18 17:25 - 2014-09-18 17:25 - 00000000 ____D () C:\Program Files\SearchSnacks
2014-09-18 17:25 - 2014-09-18 17:25 - 00000000 ____D () C:\Program Files (x86)\SearchSnacks
2014-09-18 17:19 - 2014-09-18 17:14 - 00000902 _____ () C:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-09-18 17:14 - 2014-09-18 17:14 - 00007852 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-11
2014-09-18 17:14 - 2014-09-18 17:14 - 00007170 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-4
2014-09-18 17:14 - 2014-09-18 17:14 - 00006826 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-7
2014-09-18 17:14 - 2014-09-18 17:14 - 00006824 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-6
2014-09-18 17:14 - 2014-09-18 17:14 - 00006146 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5
2014-09-18 17:14 - 2014-09-18 17:14 - 00006126 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-1
2014-09-18 17:14 - 2014-09-18 17:14 - 00005458 _____ () C:\windows\System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-2
2014-09-18 17:14 - 2014-09-18 17:14 - 00003904 _____ () C:\windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-09-18 17:14 - 2014-09-18 17:14 - 00003650 _____ () C:\windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-09-18 17:14 - 2014-09-18 17:14 - 00000000 ____D () C:\Users\Cody\AppData\Local\globalUpdate
2014-09-18 17:14 - 2014-09-18 17:14 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-09-18 17:14 - 2014-09-18 17:14 - 00000000 ____D () C:\Program Files (x86)\Addon control
2014-09-18 17:13 - 2014-09-18 17:13 - 00004234 _____ () C:\windows\System32\Tasks\SMW_UpdateTask_Time_323632353131363730332d374a55414134502a576c4a5a
2014-09-18 17:13 - 2014-09-18 17:13 - 00003834 _____ () C:\windows\System32\Tasks\Smp
2014-09-18 17:13 - 2014-09-18 17:13 - 00003718 _____ () C:\windows\System32\Tasks\SMupdate1
2014-09-18 17:13 - 2014-09-18 17:13 - 00003578 _____ () C:\windows\System32\Tasks\YTDownloader
2014-09-18 17:13 - 2014-09-18 17:13 - 00003568 _____ () C:\windows\System32\Tasks\YTDownloaderUpd
2014-09-18 17:13 - 2014-09-18 17:13 - 00001953 _____ () C:\Users\Cody\Desktop\YTDownloader.lnk
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\ProgramData\SearchModule
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\Program Files\Common Files\Goobzo
2014-09-18 17:13 - 2014-09-18 17:13 - 00000000 ____D () C:\Program Files (x86)\YTDownloader
2014-09-18 17:13 - 2014-01-18 20:01 - 00002361 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-18 17:13 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-09-18 17:12 - 2014-09-18 17:12 - 00000000 ____D () C:\Users\Cody\AppData\Local\CrashRpt
2014-09-18 17:11 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\Resources
2014-09-18 17:10 - 2014-09-18 17:10 - 79580528 _____ () C:\Users\Cody\Downloads\minecraft-setup.exe
2014-09-18 16:47 - 2014-09-18 16:47 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (11).exe
2014-09-18 16:46 - 2014-09-18 16:46 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (9).exe
2014-09-18 16:46 - 2014-09-18 16:46 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (10).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (8).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (7).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (6).exe
2014-09-18 16:45 - 2014-09-18 16:45 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (5).exe
2014-09-18 16:44 - 2014-09-18 16:44 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (4).exe
2014-09-18 16:43 - 2014-09-18 16:43 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (3).exe
2014-09-18 16:43 - 2014-09-18 16:43 - 01006488 _____ (Kromtech) C:\Users\Cody\Downloads\PCKeeper Installer (2).exe
2014-09-18 15:01 - 2014-09-15 21:03 - 00003090 _____ () C:\windows\System32\Tasks\RegClean Pro
2014-09-18 15:01 - 2014-09-15 21:03 - 00000256 _____ () C:\windows\Tasks\RegClean Pro_DEFAULT.job
2014-09-18 14:38 - 2014-09-18 14:38 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15092_b39f5116dbe35a71611240cb454fb4b8.exe
2014-09-18 13:04 - 2014-09-16 19:07 - 00000000 ____D () C:\Muisc
2014-09-18 12:07 - 2014-09-18 12:07 - 00000000 ____D () C:\Users\Cody\AppData\Local\{C7C76FBE-A123-4027-AFAA-D8DCA0CF6740}
2014-09-18 11:13 - 2009-07-14 00:13 - 00781298 _____ () C:\windows\system32\PerfStringBackup.INI
2014-09-18 11:12 - 2009-07-13 23:45 - 00021200 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-18 11:12 - 2009-07-13 23:45 - 00021200 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-18 11:10 - 2014-01-18 20:08 - 00003358 _____ () C:\windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1378875358-1120829428-2694025308-1001
2014-09-18 11:10 - 2014-01-18 20:08 - 00003222 _____ () C:\windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1378875358-1120829428-2694025308-1001
2014-09-18 11:08 - 2014-02-11 21:18 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\newnext.me
2014-09-18 11:07 - 2009-07-14 00:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-18 11:06 - 2009-07-13 23:51 - 00043802 _____ () C:\windows\setupact.log
2014-09-18 11:06 - 2009-07-13 23:45 - 00277888 _____ () C:\windows\system32\FNTCACHE.DAT
2014-09-18 11:05 - 2010-11-20 22:47 - 00070294 _____ () C:\windows\PFRO.log
2014-09-18 11:01 - 2014-09-16 14:13 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-09-18 11:01 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-09-18 10:33 - 2014-09-18 10:33 - 00770556 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-09-18 10:19 - 2014-09-18 10:19 - 00000000 __SHD () C:\Users\Cody\AppData\Local\EmieUserList
2014-09-18 10:19 - 2014-09-18 10:19 - 00000000 __SHD () C:\Users\Cody\AppData\Local\EmieSiteList
2014-09-17 21:03 - 2014-09-15 21:03 - 00000264 _____ () C:\windows\Tasks\RegClean Pro_UPDATES.job
2014-09-17 12:50 - 2014-09-17 12:50 - 00000000 ____D () C:\Users\Cody\AppData\Local\{C4392F58-4855-4E4F-9ABB-A523AD725FBA}
2014-09-17 12:05 - 2014-09-17 12:04 - 05377337 _____ () C:\Users\Cody\Downloads\banjokazooie-xbla-sounds.zip
2014-09-16 22:09 - 2014-09-16 18:44 - 00000000 ____D () C:\Users\Cody\AppData\Local\Windows Live
2014-09-16 19:20 - 2014-09-16 19:20 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (6).exe
2014-09-16 19:19 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (5).exe
2014-09-16 19:19 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (4).exe
2014-09-16 19:19 - 2014-09-16 19:19 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (5).exe
2014-09-16 19:19 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (4).exe
2014-09-16 19:18 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (3).exe
2014-09-16 19:18 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (2).exe
2014-09-16 19:18 - 2014-09-16 19:18 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (3).exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528.exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD22987_99718cd26a1be16dd51a76eaed461528 (1).exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (2).exe
2014-09-16 19:17 - 2014-09-16 19:17 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528 (1).exe
2014-09-16 19:16 - 2014-09-16 19:16 - 00566504 _____ (Downloadius) C:\Users\Cody\Downloads\HD_Player__CD5MTCD15087_99718cd26a1be16dd51a76eaed461528.exe
2014-09-16 18:55 - 2014-09-16 18:52 - 00000000 ____D () C:\Users\Cody\AppData\Local\Free YouTube Downloader
2014-09-16 18:53 - 2014-09-16 18:53 - 00004020 _____ () C:\windows\System32\Tasks\LaunchSignup
2014-09-16 18:53 - 2014-09-16 18:53 - 00001973 _____ () C:\Users\Cody\Desktop\Sync Folder.lnk
2014-09-16 18:53 - 2014-09-16 18:53 - 00000000 ____D () C:\Users\Cody\AppData\Local\IsolatedStorage
2014-09-16 18:53 - 2014-09-16 18:52 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-09-16 18:52 - 2014-09-16 18:52 - 00001919 _____ () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\WeatherBug®.lnk
2014-09-16 18:52 - 2014-09-16 18:52 - 00001895 _____ () C:\Users\Cody\Desktop\WeatherBug®.lnk
2014-09-16 18:52 - 2014-09-16 18:52 - 00001091 _____ () C:\Users\Cody\Desktop\MyPC Backup.lnk
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 __HDC () C:\ProgramData\{E0A9340B-C01B-42C1-9910-C307D7BE4756}
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WeatherBug®
2014-09-16 18:52 - 2014-09-16 18:52 - 00000000 ____D () C:\Program Files\Earth Networks
2014-09-16 18:51 - 2014-09-16 18:51 - 00001293 _____ () C:\Users\Public\Desktop\Free YouTube Downloader.lnk
2014-09-16 18:51 - 2014-09-16 18:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free YouTube Downloader
2014-09-16 18:51 - 2014-09-16 18:51 - 00000000 ____D () C:\Program Files (x86)\Free YouTube Downloader
2014-09-16 18:50 - 2014-09-16 18:50 - 00720336 _____ ( ) C:\Users\Cody\Downloads\FreeYouTubeDownloaderIC.exe
2014-09-16 18:44 - 2014-09-16 18:44 - 00000000 ____D () C:\Users\Cody\AppData\Local\{780D05A1-6CF9-4E3B-8011-AB08608BCBE3}
2014-09-16 18:44 - 2014-09-16 18:44 - 00000000 ____D () C:\Users\Cody\AppData\Local\{739792FD-91F5-4A31-9CBC-9E4470965F94}
2014-09-16 14:16 - 2014-09-15 21:03 - 00000000 ____D () C:\Program Files (x86)\ClearThink
2014-09-16 14:13 - 2011-12-14 18:11 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-16 14:13 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-09-16 14:13 - 2009-07-13 22:20 - 00000000 ____D () C:\windows\system32\Dism
2014-09-16 11:54 - 2014-09-16 11:54 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent) (3).zip
2014-09-16 11:54 - 2014-09-16 11:54 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent) (2).zip
2014-09-16 11:54 - 2014-09-16 11:54 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent) (1).zip
2014-09-16 11:53 - 2014-09-16 11:53 - 10526844 _____ () C:\Users\Cody\Downloads\1805 - Final Fantasy I & II - Dawn of Souls (U)(Independent).zip
2014-09-16 10:50 - 2014-09-16 10:50 - 00349760 _____ () C:\Users\Cody\Downloads\Setup (3).exe
2014-09-16 10:50 - 2014-09-16 10:50 - 00349760 _____ () C:\Users\Cody\Downloads\Setup (2).exe
2014-09-16 10:50 - 2014-09-16 10:50 - 00349760 _____ () C:\Users\Cody\Downloads\Setup (1).exe
2014-09-15 21:19 - 2014-09-15 21:19 - 00378335 _____ () C:\Users\Cody\Downloads\Pokemon - Blue Version (USA, Europe).zip
2014-09-15 21:13 - 2014-09-15 21:12 - 00000000 ____D () C:\Games
2014-09-15 21:10 - 2014-09-15 21:10 - 00002024 _____ () C:\Users\Cody\Downloads\vba1.ini
2014-09-15 21:07 - 2014-09-15 21:07 - 00659797 _____ () C:\Users\Cody\Downloads\VisualBoyAdvance-1.8.0-beta3 (2).zip
2014-09-15 21:07 - 2014-09-15 21:07 - 00659797 _____ () C:\Users\Cody\Downloads\VisualBoyAdvance-1.8.0-beta3 (1).zip
2014-09-15 21:04 - 2014-09-15 21:04 - 00003076 _____ () C:\windows\System32\Tasks\Advanced-System Protector_startup
2014-09-15 21:04 - 2014-09-15 21:04 - 00001045 _____ () C:\Users\Public\Desktop\Advanced-System Protector.lnk
2014-09-15 21:04 - 2014-09-15 21:04 - 00000000 ____D () C:\ProgramData\Systweak
2014-09-15 21:04 - 2014-09-15 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced-System Protector
2014-09-15 21:04 - 2014-09-15 21:04 - 00000000 ____D () C:\Program Files (x86)\ASP
2014-09-15 21:04 - 2014-09-15 21:03 - 00000000 ____D () C:\Users\Cody\AppData\Roaming\Systweak
2014-09-15 21:03 - 2014-09-15 21:03 - 00659797 _____ () C:\Users\Cody\Downloads\VisualBoyAdvance-1.8.0-beta3.zip
2014-09-15 21:03 - 2014-09-15 21:03 - 00003002 _____ () C:\windows\System32\Tasks\RegClean Pro_UPDATES
2014-09-15 21:03 - 2014-09-15 21:03 - 00002846 _____ () C:\windows\System32\Tasks\RegClean Pro_DEFAULT
2014-09-15 21:03 - 2014-09-15 21:03 - 00000985 _____ () C:\Users\Public\Desktop\RegClean Pro.lnk
2014-09-15 21:03 - 2014-09-15 21:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
2014-09-15 21:03 - 2014-09-15 21:03 - 00000000 ____D () C:\Program Files (x86)\RCP
2014-09-15 21:02 - 2014-09-15 21:02 - 00754608 _____ ( ) C:\Users\Cody\Downloads\CR_Downloader_for_visual-boy-advance.exe
2014-09-15 17:29 - 2014-01-18 17:53 - 00000000 ____D () C:\Users\Cody
2014-09-15 16:18 - 2014-09-15 21:23 - 00044688 _____ (StdLib) C:\windows\system32\Drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}w64.sys
2014-09-04 21:10 - 2014-09-16 15:19 - 00578048 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-09-04 21:05 - 2014-09-16 15:19 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-25 06:53 - 2010-11-20 22:27 - 00270496 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-08-22 21:07 - 2014-09-16 15:19 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-08-22 20:45 - 2014-09-16 15:19 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-08-22 19:59 - 2014-09-16 15:19 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-08-21 12:15 - 2014-08-21 12:15 - 00058248 _____ (Search Snacks) C:\windows\system32\Drivers\ssnfd.sys
 
Some content of TEMP:
====================
C:\Users\Cody\AppData\Local\Temp\chrome.exe
C:\Users\Cody\AppData\Local\Temp\CloudBackup8677.exe
C:\Users\Cody\AppData\Local\Temp\DownloadManager.exe
C:\Users\Cody\AppData\Local\Temp\dufgmr4c.exe
C:\Users\Cody\AppData\Local\Temp\htmlayout.dll
C:\Users\Cody\AppData\Local\Temp\ICReinstall_ZipOpenerSetup.exe
C:\Users\Cody\AppData\Local\Temp\lowproc.exe
C:\Users\Cody\AppData\Local\Temp\nsjD936.exe
C:\Users\Cody\AppData\Local\Temp\nszD501.exe
C:\Users\Cody\AppData\Local\Temp\nszE4.exe
C:\Users\Cody\AppData\Local\Temp\nszF8F7.exe
C:\Users\Cody\AppData\Local\Temp\stubhelper.dll
C:\Users\Cody\AppData\Local\Temp\toolbar105475286.exe
C:\Users\Cody\AppData\Local\Temp\vcredist_x64.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-01-31 21:50
 
==================== End Of Log ==========


#4 Houka

Houka
  • Topic Starter

  • Members
  • 112 posts
  • OFFLINE
  •  
  • Local time:10:49 AM

Posted 19 September 2014 - 09:43 AM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by Cody at 2014-09-19 09:22:22
Running from C:\Users\Cody\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
„Windows Live Essentials“ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden
„Windows Live“ fotogalerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Addon control (HKLM-x32\...\Addon control) (Version: 1.35.9.16 - iWebar) <==== ATTENTION
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{48DB5914-8772-472D-B8DF-E2092BE598F6}) (Version: 10.3.181.34 - Adobe Systems Incorporated)
Advanced-System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~4A5BE654_is1) (Version: 2.1.1000.13727 - Systweak Software)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.82 - WildTangent) Hidden
Amazon Kindle (HKLM-x32\...\Amazon Kindle) (Version:  - Amazon)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}) (Version: 7.0.610.0 - Microsoft Corporation)
Build-a-lot (x32 Version: 2.2.0.82 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
ClearThink (HKLM\...\ClearThink) (Version: 2014.09.16.010832 - ClearThink)
Common dictionary (HKCU\...\Common dictionary) (Version: 1 - Common dictionary)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
CyberLink Media Suite (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
CyberLink Media+ Player10 (HKLM-x32\...\InstallShield_{34FBC7C4-CD31-4D93-A428-0E524EAC4586}) (Version: 10.0.1110.00 - CyberLink Corp.)
CyberLink Media+ Player10 (x32 Version: 10.0.1110.00 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1130a - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 5.0.1130a - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3802 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3802 - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3306 - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 8.0.3306 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.4417 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.1.4417 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden
Easy File Share (HKLM-x32\...\{95BB7324-77D3-4BF3-8CF6-29F0857AC175}) (Version: 1.1.1699 - Samsung Electronics Co., Ltd.)
Easy Migration (HKLM-x32\...\{AD86049C-3D9C-43E1-BE73-643F57D83D50}) (Version: 1.0 - Samsung Electronics Co., Ltd.)
Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics Co., Ltd.)
Easy Software Manager (HKLM-x32\...\{DE256D8B-D971-456D-BC02-CB64DA24F115}) (Version: 1.1.16.14 - Samsung Electronics Co., Ltd.)
Easy Support Center 1.0 (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.36 - Samsung)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung)
ETDWare PS/2-X64 10.0.7.2_WHQL (HKLM\...\Elantech) (Version: 10.0.7.2 - ELAN Microelectronic Corp.)
ExpressFiles (HKCU\...\ExpressFiles) (Version: 2.0.1 - http://www.express-files.com/) <==== ATTENTION
Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version:  - Q, Timeslip)
Farm Frenzy (x32 Version: 2.2.0.82 - WildTangent) Hidden
FileParade bundle uninstaller (HKLM-x32\...\FileParade bundle uninstaller) (Version: 1.0.0.0 - FileParade) <==== ATTENTION
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Free YouTube Downloader 4.0.284 (HKLM-x32\...\{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1) (Version:  - HOW Inc.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GigaClicks Crawler (HKLM-x32\...\GigaClicks Crawler) (Version: 4.0.0.45 - GigaClicks Inc.) <==== ATTENTION
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Insaniquarium Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
InstaShare (HKLM-x32\...\InstaShare) (Version: 3.0.13 - Interesting Solutions)
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2266 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{295AEB79-B53A-4F1B-860F-7800BB7E3681}) (Version: 14.2.1000 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.5.1001 - Intel Corporation)
John Deere Drive Green (x32 Version: 2.2.0.82 - WildTangent) Hidden
Joyvy (HKCU\...\Joyvy) (Version: 1.5.1 - http://joyvy.com//)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
MiniGet 1.0.8.2504 (HKLM-x32\...\MiniGet) (Version: 1.0.8.2504 - MiniGet)
Mobogenie (HKLM-x32\...\Mobogenie) (Version:  - Mobogenie.com) <==== ATTENTION
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Multimedia POP (HKLM-x32\...\{331ECF61-69AF-4F57-AC35-AFED610231C3}) (Version: 1.0 - )
MyPC Backup  (HKLM\...\MyPC Backup) (Version:  - JDi Backup Ltd) <==== ATTENTION
Norton Internet Security (HKLM-x32\...\NIS) (Version: 18.7.2.3 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
NVIDIA Display Control Panel (Version: 6.14.12.6883 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 268.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 268.83 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.265.42.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.0.23 (Version: 1.0.23 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 1.0.23 - NVIDIA Corporation) Hidden
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.2.0.1 - PC Utilities Software Limited) <==== ATTENTION
Peggle (x32 Version: 2.2.0.82 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6413 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
RegClean-Pro (HKLM-x32\...\RegClean-Pro_is1) (Version: 6.21 - Systweak Inc) <==== ATTENTION
Re-markit (HKLM-x32\...\050da802-31eb-4d5d-9b8e-4400e0c0f928) (Version:  - Re-markit Software) <==== ATTENTION
RPG Maker 2003 v1.08 (HKLM-x32\...\RPG Maker 2003_is1) (Version:  - Enterbrain, Inc.)
Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.1.5 - Samsung)
Search module (HKLM-x32\...\Search module) (Version:  - )
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.10.20.64 - Conduit) <==== ATTENTION
Search Snacks (HKLM-x32\...\SearchSnacks) (Version: 1.9.0.8 - Search Snacks)
Skype™ 4.2 (HKLM-x32\...\{D103C4BA-F905-437A-8049-DB24763BBE36}) (Version: 4.2.169 - Skype Technologies S.A.)
Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung)
Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.3.8 - ) <==== ATTENTION
Surftastic (HKLM\...\Surftastic) (Version: 2014.02.11.223523 - Surftastic) <==== ATTENTION
TubeSucker (HKLM-x32\...\{4E906533-F57F-45BD-A837-FCF24A2C243E}) (Version: 5.0.0.4 - )
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.3 - )
WeatherBug® (HKLM-x32\...\WeatherBug®) (Version: 10.0.7.4 - Earth Networks, Inc.)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.1.5 - WildTangent)
WildTangent ORB Game Console (x32 Version:  - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live fotoattēlu galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Foto-galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Корпорация Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Pošta (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 메일 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 사진 갤러리 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 필수 패키지 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 照片库 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 软件包 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
YourFileDownloader (HKCU\...\YourFileDownloader) (Version: 1.4.0 - http://www.yourfiledownloader.com/) <==== ATTENTION
YTDownloader (HKLM-x32\...\YTDownloader) (Version:  - YTDownloader)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
13-07-2014 10:07:52 Windows Update
15-09-2014 22:42:36 Windows Update
15-09-2014 22:44:03 Windows Update
16-09-2014 14:50:33 Windows Update
17-09-2014 15:29:46 Windows Update
18-09-2014 15:16:35 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0B4D92E3-94AC-41E2-94E6-347409E1A59B} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1378875358-1120829428-2694025308-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {0DFD9ADF-4305-4E15-B45B-315A30FE6633} - System32\Tasks\Smp => C:\Program Files\Common Files\Goobzo\GBUpdate\smp.exe [2014-07-09] () <==== ATTENTION
Task: {1DACCC20-24E1-4C8C-A754-A90D079F1C8C} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {2404B8EA-3240-44C7-ABCC-E899198548F4} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RCP\RegCleanPro.exe [2014-08-05] ()
Task: {2C877C1E-090F-43C4-9A64-DA8CAE220F10} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2011-09-06] (Samsung Electronics Co., Ltd.)
Task: {3E71F552-5E85-4A84-B8B6-9E5912499A4E} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {3F6FDA06-A201-4DA6-8F44-2B2B2C391E8D} - System32\Tasks\AmiUpdXp => C:\Users\Cody\AppData\Local\SwvUpdater\Updater.exe [2014-02-11] () <==== ATTENTION
Task: {420CCBD0-BF85-45F4-AA3D-AC76B75A35CF} - System32\Tasks\Symantec\Norton Error Analyzer 18.7.2.3 => C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\SymErr.exe [2012-06-07] (Symantec Corporation)
Task: {490ECADE-E4FA-4C09-8740-0A018754113B} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2014-08-25] (Goobzo) <==== ATTENTION
Task: {4D931669-69A8-4EF6-94F6-CBA06FA2DDC3} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1378875358-1120829428-2694025308-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {5740CD35-F6A9-4078-9902-D14C04A75E9F} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-09-18] (globalUpdate) <==== ATTENTION
Task: {5A784829-FE4E-42D1-ACD2-F9DDB719C530} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-4 => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-4.exe [2014-09-18] (iWebar)
Task: {61F137CE-1E9B-40C6-9ADE-F17CF546F820} - System32\Tasks\JoyvyUpdate => C:\Program Files (x86)\Joyvy\GCUpdater.exe [2014-02-11] (http://joyvy.com/)
Task: {63D5C3B3-DCF5-4565-A284-690423829451} - System32\Tasks\GC_Informer => %LOCALAPPDATA%\GCC\Controller.exe <==== ATTENTION
Task: {6A2B7FCD-EF79-47BF-B79F-637FB7445F2A} - System32\Tasks\Microsoft\Windows\Maintenance\UP_Scheduler => %LOCALAPPDATA%\GCC\Controller.exe <==== ATTENTION
Task: {6C8D437F-560A-4976-BDCD-9D713C3B1F63} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe [2014-02-11] (http://yourfiledownloader.com) <==== ATTENTION
Task: {7A59BF97-F390-4EDB-8CD0-B92E5B1CC881} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-11 => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-11.exe [2014-09-18] (iWebar)
Task: {7E54F826-8ED6-43F6-A3EB-8F587265331D} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-09-18] (globalUpdate) <==== ATTENTION
Task: {7FDF5EEB-BC49-4530-A51F-9ACFFF92B2B1} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5 => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.exe [2014-09-18] (iWebar)
Task: {83FDD0BE-7BE5-4238-B4A5-B41CE01030B2} - System32\Tasks\GC_Scheduler => %LOCALAPPDATA%\GCC\Controller.exe <==== ATTENTION
Task: {842093F0-64D6-4A78-92CF-F1373E1CAC34} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2011-09-27] (Samsung Electronics)
Task: {86806D49-6FEE-4F42-8741-81F46C44E31F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18] (Google Inc.)
Task: {888A0805-BB48-4BCC-8E67-E9E199EAF797} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2011-08-22] (Samsung Electronics Co., Ltd.)
Task: {929B614E-86B8-4390-974C-F74E90585CCC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18] (Google Inc.)
Task: {9815B3AE-5199-4708-A36B-9977E22AEBFD} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-7 => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-7.exe [2014-09-18] (iWebar)
Task: {9F7B9560-6E9E-4016-A7F6-E324FE681689} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [2014-08-25] (YTDownloader) <==== ATTENTION
Task: {A3B5F110-CD5B-4EA9-9676-2E4D9C83C103} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1378875358-1120829428-2694025308-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {A8EFA313-286E-4C9E-B36C-5EDDCDB3924E} - System32\Tasks\Advanced-System Protector_startup => C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [2014-08-25] (Systweak)
Task: {A95CFEBE-4B16-4355-8D20-A5DFF109B685} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe [2014-02-11] () <==== ATTENTION
Task: {ACC4F7DB-9787-4412-ACCD-F9BAFDC599E5} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2011-06-24] (SEC)
Task: {B1517160-A283-43F6-95ED-1EDF62B6BF6A} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RCP\RegCleanPro.exe [2014-08-05] ()
Task: {B3581EC3-E815-4580-A3B2-83AF23BAED00} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe [2011-08-18] (Samsung Electronics Co., Ltd.)
Task: {B5822B9C-6AF5-4119-A57A-9DB0E87AFC65} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-2 => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-2.exe [2014-09-18] (iWebar)
Task: {BCAB07E0-E5DF-4AC0-A7C5-644AE0AD6FB5} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2011-09-06] (Samsung Electronics Co., Ltd.)
Task: {C0CC13FF-BCE1-4021-91DE-E60467B66E74} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [2014-09-16] (PC Utilities Software Limited) <==== ATTENTION
Task: {C4A39EFF-1D1B-4805-8541-88562AD335EE} - System32\Tasks\SMW_UpdateTask_Time_323632353131363730332d374a55414134502a576c4a5a => Wscript.exe //B "C:\ProgramData\SearchModule\smhe.js" smu.exe /invoke /f:check_services /l:0 <==== ATTENTION
Task: {CE6E8426-AF66-4966-801E-D2EBBEA223B6} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe [2014-09-10] (MyPC Backup) <==== ATTENTION
Task: {D0605ABC-0888-41CD-84E5-C4CEE80202AD} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-1 => C:\Program Files (x86)\Addon control\Addon control-codedownloader.exe [2014-09-18] (iWebar)
Task: {D560F87C-B8D6-4D47-8C12-FBD0519171E9} - System32\Tasks\Easy Software Manager Agent => C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe [2011-09-14] (Samsung)
Task: {D754B171-830D-497A-9B9D-E8C92069A0A7} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1378875358-1120829428-2694025308-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {E2951E79-3AD2-462B-AFE3-EAC54859F25F} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5_user => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.exe [2014-09-18] (iWebar)
Task: {E879E18F-014D-4AC1-899F-F51EEE453580} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {EE0C0CE0-AD3F-44EB-92B5-FB6228C98F48} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-08-18] (SAMSUNG Electronics co., LTD.)
Task: {F3C745A9-3524-44A1-8DCE-00FE597A0FE6} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RCP\RegCleanPro.exe [2014-08-05] ()
Task: {F47318E4-C725-4755-9911-FBE10697CACD} - System32\Tasks\Re-markit_wd => C:\Program Files (x86)\Re-markit\Re-markit_wd.exe [2014-02-11] () <==== ATTENTION
Task: {F4C991F3-ACED-4A25-8451-78F2ADB232D2} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe [2011-07-29] (SAMSUNG Electronics)
Task: {F576E37F-DAF8-47EC-A8E9-89AF3FCDBA9C} - System32\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-6 => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-6.exe [2014-09-18] (iWebar)
Task: {F86959EB-7B9D-4B7E-9276-F5D8F2F8CE63} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1378875358-1120829428-2694025308-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {F9C12352-562C-4844-9D6C-1753B359DD10} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-08-17] (CyberLink)
Task: {FB20D82D-DBFF-46F4-9F9A-067DF53DD7E0} - System32\Tasks\Symantec\Norton Error Processor 18.7.2.3 => C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\SymErr.exe [2012-06-07] (Symantec Corporation)
Task: {FEE536DD-EEF7-4E4C-9411-3A5DC81E2923} - System32\Tasks\Re-markit Update => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe [2014-02-11] () <==== ATTENTION
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-1.job => C:\Program Files (x86)\Addon control\Addon control-codedownloader.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-11.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-11.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-2.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-2.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-4.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-4.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-5_user.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-5.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-6.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-6.exe
Task: C:\windows\Tasks\5a0fc902-f643-4f7c-abad-ebb396bce56f-7.job => C:\Program Files (x86)\Addon control\5a0fc902-f643-4f7c-abad-ebb396bce56f-7.exe
Task: C:\windows\Tasks\AmiUpdXp.job => C:\Users\Cody\AppData\Local\SwvUpdater\Updater.exe <==== ATTENTION
Task: C:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe <==== ATTENTION
Task: C:\windows\Tasks\Re-markit_wd.job => C:\Program Files (x86)\Re-markit\Re-markit_wd.exe <==== ATTENTION
Task: C:\windows\Tasks\RegClean Pro_DEFAULT.job => C:\Program Files (x86)\RCP\RegCleanPro.exe
Task: C:\windows\Tasks\RegClean Pro_UPDATES.job => C:\Program Files (x86)\RCP\RegCleanPro.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-02-11 21:16 - 2014-02-11 21:16 - 00180736 _____ () C:\Program Files (x86)\Re-markit\Re-markit153.exe
2013-08-14 16:19 - 2013-08-14 16:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2011-12-14 02:42 - 2009-12-01 02:21 - 00244904 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-02-11 17:44 - 2014-02-12 21:37 - 00080672 _____ () C:\Program Files (x86)\Surftastic\updateSurftastic.exe
2014-02-11 22:20 - 2014-02-12 21:06 - 00080672 _____ () C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
2014-02-11 21:16 - 2014-02-11 21:16 - 00093184 _____ () C:\Program Files (x86)\Re-markit\Re-markit_wd.exe
2014-02-05 10:30 - 2014-02-05 10:30 - 00475648 _____ () C:\Users\Cody\AppData\Local\GCC\Controller.exe
2014-09-16 18:52 - 2014-04-01 11:18 - 00146736 ____N () C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe
2014-09-10 04:56 - 2014-09-10 04:56 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2014-09-10 04:51 - 2014-09-10 04:51 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
2014-02-11 21:17 - 2014-02-11 21:18 - 00775872 _____ () C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
2011-07-21 00:51 - 2010-12-16 04:37 - 00094208 _____ () C:\windows\system32\IccLibDll_x64.dll
2014-09-10 19:48 - 2014-09-10 19:48 - 00154112 _____ () C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe
2014-09-15 20:16 - 2014-09-19 09:05 - 00325360 _____ () C:\Program Files (x86)\ClearThink\updateClearThink.exe
2014-09-15 21:20 - 2014-09-19 09:06 - 00325360 _____ () C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe
2014-09-15 21:23 - 2014-09-18 19:04 - 00349936 _____ () C:\Program Files (x86)\ClearThink\bin\ClearThink.PurBrowse64.exe
2014-09-15 21:23 - 2014-09-19 03:26 - 00098544 _____ () C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter.exe
2014-09-15 21:23 - 2014-09-19 03:26 - 00114928 _____ () C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter64.exe
2014-02-11 21:37 - 2014-02-11 21:37 - 07535616 _____ () C:\Program Files (x86)\Joyvy\libcef.dll
2011-12-14 01:41 - 2011-02-16 10:03 - 00203776 _____ () C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll
2014-02-11 21:17 - 2014-02-11 21:18 - 00061440 _____ () C:\Program Files (x86)\Mobogenie\Device.dll
2014-02-11 21:17 - 2014-02-11 21:18 - 00471040 _____ () C:\Program Files (x86)\Mobogenie\DCR.dll
2011-12-14 01:41 - 2006-08-11 21:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll
2011-12-14 01:52 - 2010-05-07 09:22 - 01636864 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
2009-11-02 00:20 - 2009-11-02 00:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 00:23 - 2009-11-02 00:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-09-10 19:48 - 2014-09-10 19:48 - 00070656 _____ () C:\Program Files (x86)\Common Files\Diagnostics\node\sys.node
2014-09-18 17:26 - 2014-09-18 17:26 - 03649616 _____ () c:\Program Files (x86)\Optimizer Pro\OptProCrash.dll
2014-09-18 17:14 - 2014-09-18 17:14 - 00120680 _____ () C:\Program Files (x86)\Addon control\6e3245d2-65ba-48d5-89fb-46b175181f24.dll
2014-09-18 17:27 - 2014-09-18 17:27 - 01186160 _____ () C:\ProgramData\QTLfxSZtHur\dat\qqgeJjGaVj.dll
2014-09-15 21:23 - 2014-09-19 03:26 - 00195312 _____ () C:\Program Files (x86)\ClearThink\bin\c5e48979bd7f4cf79b73.dll
2014-09-15 22:27 - 2014-09-03 22:01 - 01098056 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libglesv2.dll
2014-09-15 22:27 - 2014-09-03 22:01 - 00174408 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libegl.dll
2014-09-15 22:27 - 2014-09-03 22:01 - 08577864 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll
2014-09-15 22:28 - 2014-09-03 22:01 - 00331592 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll
2014-09-15 22:27 - 2014-09-03 22:01 - 01660232 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll
2014-09-15 22:28 - 2014-09-03 22:01 - 14891848 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
==================== Faulty Device Manager Devices =============
 
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/19/2014 09:21:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x1242f0
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/19/2014 09:11:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x8c780
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/19/2014 09:11:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x1227d8
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/19/2014 09:07:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x124164
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/19/2014 09:06:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x1243ac
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/18/2014 11:26:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x8f140
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/18/2014 11:11:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x11c144
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/18/2014 11:10:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x120e18
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/18/2014 11:06:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x4478
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
Error: (09/18/2014 11:05:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AWVPAhp.exe, version: 1.0.0.0, time stamp: 0x541b2959
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xc06d007e
Fault offset: 0x0000c42d
Faulting process id: 0x123eec
Faulting application start time: 0xAWVPAhp.exe0
Faulting application path: AWVPAhp.exe1
Faulting module path: AWVPAhp.exe2
Report Id: AWVPAhp.exe3
 
 
System errors:
=============
Error: (09/18/2014 11:21:34 AM) (Source: DCOM) (EventID: 10016) (User: Cody-PC)
Description: machine-defaultLocalActivation{3EEF301F-B596-4C0B-BD92-013BEAFCE793}{3EEF301F-B596-4C0B-BD92-013BEAFCE793}Cody-PCCodyS-1-5-21-1378875358-1120829428-2694025308-1001LocalHost (Using LRPC)
 
Error: (09/18/2014 11:07:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Computer Backup (MyPC Backup) service failed to start due to the following error: 
%%1053
 
Error: (09/18/2014 11:07:30 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Computer Backup (MyPC Backup) service to connect.
 
Error: (09/18/2014 11:04:07 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Windows Modules Installer service did not shut down properly after receiving a preshutdown control.
 
Error: (09/18/2014 10:15:46 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
 
Error: (09/16/2014 03:11:24 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 70. The internal error state is 105.
 
Error: (09/16/2014 02:28:32 PM) (Source: DCOM) (EventID: 10016) (User: Cody-PC)
Description: machine-defaultLocalActivation{3EEF301F-B596-4C0B-BD92-013BEAFCE793}{3EEF301F-B596-4C0B-BD92-013BEAFCE793}Cody-PCCodyS-1-5-21-1378875358-1120829428-2694025308-1001LocalHost (Using LRPC)
 
Error: (09/16/2014 02:15:02 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Windows Modules Installer service did not shut down properly after receiving a preshutdown control.
 
Error: (09/16/2014 09:49:46 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
 
Error: (09/15/2014 06:01:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80246002: Microsoft .NET Framework 4.5.1 for Windows 7 x64-based Systems (KB2858725).
 
 
Microsoft Office Sessions:
=========================
Error: (09/19/2014 09:23:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42dbadc01cfd415518b6539C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dll8fc99383-4008-11e4-88a1-e8039a1fb09e
 
Error: (09/19/2014 09:21:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d1242f001cfd4150829d608C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dll4657d776-4008-11e4-88a1-e8039a1fb09e
 
Error: (09/19/2014 09:11:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d8c78001cfd413a70e7f9eC:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dlle4d8b4b6-4006-11e4-88a1-e8039a1fb09e
 
Error: (09/19/2014 09:11:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d1227d801cfd4139d0bf188C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dlldb3733cc-4006-11e4-88a1-e8039a1fb09e
 
Error: (09/19/2014 09:07:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d12416401cfd41303556549C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dll41136533-4006-11e4-88a1-e8039a1fb09e
 
Error: (09/19/2014 09:06:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d1243ac01cfd412e539e49eC:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dll241e6778-4006-11e4-88a1-e8039a1fb09e
 
Error: (09/18/2014 11:26:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d8f14001cfd3c1dbf8bb29C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dll1b75afae-3fb5-11e4-88a1-e8039a1fb09e
 
Error: (09/18/2014 11:11:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d11c14401cfd3bfc0f9ae23C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dllfecc20ba-3fb2-11e4-88a1-e8039a1fb09e
 
Error: (09/18/2014 11:10:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d120e1801cfd3bfb61bd807C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dllf4ae420e-3fb2-11e4-88a1-e8039a1fb09e
 
Error: (09/18/2014 11:06:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AWVPAhp.exe1.0.0.0541b2959KERNELBASE.dll6.1.7601.1840953159a86c06d007e0000c42d447801cfd3bf0c0c5571C:\ProgramData\QTLfxSZtHur\dat\AWVPAhp.exeC:\windows\syswow64\KERNELBASE.dll49c8a7a5-3fb2-11e4-88a1-e8039a1fb09e
 
 
==================== Memory info =========================== 
 
Processor: Intel® Pentium® CPU B950 @ 2.10GHz
Percentage of memory in use: 72%
Total physical RAM: 4009.55 MB
Available physical RAM: 1092.48 MB
Total Pagefile: 8017.27 MB
Available Pagefile: 2916.48 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:178 GB) (Free:108.7 GB) NTFS
Drive d: () (Fixed) (Total:266.46 GB) (Free:261.86 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CB1DA558)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=178 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=266.5 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=21.2 GB) - (Type=27)
 
==================== End Of Log ============================
 
As for aswMBR: "The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail."
 
Not sure what to do for that one.


#5 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:49 PM

Posted 22 September 2014 - 03:20 AM

We need to remove some programs with Revo Uninstaller Free:


Note: Revo Uninstaller is more thorough in deleting programs on your computer than using the Add/Remove option in Windows. Since it is a more powerful tool, please be sure to follow the instructions carefully.
Note: If the program you want to uninstall is not listed by Revo, let me know and we will try an altenate method of removal.

  • Please download and install Revo Uninstaller Free
    note: there is no need to click anything on that page, the download will start automatically
  • Double click Revo Uninstaller to run it
  • From the list of programs double click on the listed program(s), or anything similar, to remove it:
    YourFileDownloader
    YTDownloader
    Surftastic
    Software Version Updater
    Search Protect
    Search module
    Search Snacks
    Re-markit
    RegClean-Pro
    Optimizer Pro v3.2
    MyPC Backup
    Mobogenie
    GigaClicks Crawler
    FileParade bundle uninstaller
    ExpressFiles
    Addon control
    
    
  • When prompted if you want to uninstall click Yes
  • Be sure the Moderate option is selected then click Next
  • The program will run, If prompted again click Yes
  • When the built-in uninstaller is finished click on Next
  • Once the program has searched for leftovers click Next
  • Check the items in bold only on the list then click Delete
    note: you may have to expand some folders by clicking the "+" mark
  • When prompted click on Yes and then on Next
  • Put a check on any folders that are found and select Delete
  • When prompted select Yes then Next
  • Once done click Finish

 

 

 

Fix with FRST (normal mode)

WARNING: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
 

  • Download the attached fixlist.txt and save it to the location where FRST is saved to.
  • Run FRST.exe (on 64bit, run FRST64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

 

Attached Files


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#6 Houka

Houka
  • Topic Starter

  • Members
  • 112 posts
  • OFFLINE
  •  
  • Local time:10:49 AM

Posted 23 September 2014 - 12:07 AM

So I put in the filesix and click the FIx button on FRST and after words the "Proxy: seem to be broken and no longer allow me to connect to anthing. My dad decided to wipe everything and set this Laptop to squre one. The oneproblem I still have is the Keyboaed will still lock up. I;m think there is a bad connection with my curret keyboard

 

Well thanks anyway. Any advice on avoding Viruses, Wareware, and other parasites?



#7 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:49 PM

Posted 23 September 2014 - 07:57 AM

Uninstall our tools using delfix

Please follow these steps in order:

  • In the case we used Defogger to turn off your CD emulation software. You can start it again and use the Enable button.
  • In the case we used Combofix. Deactivate your antivirus software once more, then rename the combofix.exe to uninstall.exe and run it one last time. You shall be noted that Combofix has been removed.
  • In any case please download delfix to your desktop.
    • Close all other programms and start delfix.
    • Please check all the boxes and run the tool.
    • delfix will now delete all found traces of our removal process
  • If there is still something left please delete it manualy.




Delete System Restore Points

To ensure your System Restore Points are free of malware, we will delete all of them but the most recent or create a new one.

On Windows Vista: Please follow these instructions to delete all but the most common System Protection Restore Points.
On Windows 7/8: Please follow these instructions to delete all but the most common System Protection Restore Points.
On Windows XP: Please follow these instructions to delete all but the most common System Protection Restore Points.




Temp File Cleaner

We need to download Temp File Cleaner (TFC) by OldTimer:
  • Please download TFC.exe by Oldtimer at one of the two links: Link 1 Link 2
  • Save and close all running applications
  • Double-click on TFC.exe to run the program
  • Click on Start to begin the cleaning process note: this program may close running applications, make your screen disappear temporarily, or require a reboot of your PC - this is normal and part of the cleanup
  • When the scan is complete, if you were not asked to reboot the computer, please do so now
More Information can be found about the tool here: http://www.geekstogo.com/forum/files/file/187-tfc-temp-file-cleaner-by-oldtimer/

 

 

 

Recommendations: How to protect yourself

  • System Updates
    Please ensure to have automatic updates activated in your control panel.
    For further information and a tutorial, see this Microsoft Support article.
  • Protection
    What you need is one (not more) virus scanner with background protection. Additionally I recommend a special malware scanner to run on demand weekly.
    Personally I am using avast! Antivirus Free Edition and Malwarebytes Anti-Malware. They offer good protection for free.
    • To keep your browser free of advertising, you may install the Adblock Plus browser extension.
      It will filter unwanted advertising out of the website´s content.
    • To protect yourself from accidentally visiting malicious web sites, install the Web of Trust (WOT) browser extension.
      It will display a green (safe), yellow (unknown) or red (potentially dangerous) icon for a visited website within your browser.
      In addition, before accessing a dangerous classified web site, a warning screen is displayed.

  • Up to date Software
    Keep your Windows and your third party software up to date. The easiest way to get infected is an outdated windows, followed by: browser(s) (including add-ons and plug-ins), Adobe Flash Player and Adobe Reader, Java Runtime Environment, your antivirus program and so on. These links may help you to check:

  • Backup
    Hardware issues, malware, fire, lightning strike: There is a long list of different ways to loose all your data. Back up your files regularly. Use the windows internal backup function or a third party tool and save your data onto an external hard drive, cloud storage, optical media like CDs or DVDs or (if available) a professional network backup system.
  • Behaviour
    The commonest error when using a computer is "error 80" - what means that the error is located about 80cm in front of the monitor. This is a common joke between IT support technicians but it shows that all the safety mechanisms won´t help if you aren´t careful enough.
    • While surfing the internet, don´t click on anything you don´t know. In the worst case, it infects your system with malware.
    • Watch your step in social networks! Many cyber criminals use them to spread malware, mine personal pata (to be sold to advertising companies, for example) or simply do damage to other users. Even if a received hyperlink within a message seems to be coming from one of your friends, have a closer look. In addition, don´t click everything.
    • When installing software, have a look to each of the setup windows and uncheck any additional toolbars or free programs that may be offered additionally. Most of today´s setup procedures contain potentially unwanted programs so keep them off your system.
    • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
      They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#8 Houka

Houka
  • Topic Starter

  • Members
  • 112 posts
  • OFFLINE
  •  
  • Local time:10:49 AM

Posted 23 September 2014 - 10:35 AM

OK all done and up to date thank for everything!



#9 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:49 PM

Posted 24 September 2014 - 05:41 AM

You´re welcome! :)


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#10 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:49 PM

Posted 24 September 2014 - 05:41 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users