Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I can't uninstall QuickShare too


  • Please log in to reply
1 reply to this topic

#1 chillism

chillism

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 27 September 2014 - 01:25 AM

 Results of screen317's Security Check version 0.99.87  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Norton 360    
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player 15.0.0.152  
 Adobe Reader XI  
 Mozilla Firefox (32.0.3)
````````Process Check: objlist.exe by Laurent````````  
 iolo Common Lib ioloServiceManager.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 1%
````````````````````End of Log``````````````````````

Farbar Service Scanner Version: 21-07-2014
Ran by MICAH (administrator) on 26-09-2014 at 23:26:54
Running from "C:\Users\MICAH\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by MICAH (administrator) on 26-09-2014 at 23:29:50
Running from "C:\Users\MICAH\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================



========================= IP Configuration: ================================

Rosewill RNX-N150PCx Wireless LAN Card = Wireless Network Connection 5 (Connected)
Intel® 82579V Gigabit Network Connection = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 6 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : MICAH-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : local.tld

Wireless LAN adapter Wireless Network Connection 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #4
   Physical Address. . . . . . . . . : 68-1C-A2-04-49-77
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 5:

   Connection-specific DNS Suffix  . : local.tld
   Description . . . . . . . . . . . : Rosewill RNX-N150PCx Wireless LAN Card #2
   Physical Address. . . . . . . . . : 68-1C-A2-04-49-76
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::44e3:8d9a:8544:aeee%20(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.15.201(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, September 26, 2014 4:30:50 PM
   Lease Expires . . . . . . . . . . : Saturday, September 27, 2014 12:18:10 AM
   Default Gateway . . . . . . . . . : 192.168.15.1
   DHCP Server . . . . . . . . . . . : 192.168.15.1
   DHCPv6 IAID . . . . . . . . . . . : 392699042
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-2F-C2-A3-38-60-77-29-7C-1A
   DNS Servers . . . . . . . . . . . : 192.168.15.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
   Physical Address. . . . . . . . . : 38-60-77-29-7C-1A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
Server:  clearmodem
Address:  192.168.15.1

Name:    google.com
Addresses:  2607:f8b0:400a:802::1009
      173.194.33.78
      173.194.33.72
      173.194.33.68
      173.194.33.65
      173.194.33.64
      173.194.33.69
      173.194.33.67
      173.194.33.70
      173.194.33.73
      173.194.33.71
      173.194.33.66


Pinging google.com [173.194.33.66] with 32 bytes of data:
Reply from 173.194.33.66: bytes=32 time=83ms TTL=56
Reply from 173.194.33.66: bytes=32 time=79ms TTL=56

Ping statistics for 173.194.33.66:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 79ms, Maximum = 83ms, Average = 81ms
Server:  clearmodem
Address:  192.168.15.1

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=122ms TTL=52
Reply from 98.138.253.109: bytes=32 time=86ms TTL=52

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 86ms, Maximum = 122ms, Average = 104ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 21...68 1c a2 04 49 77 ......Microsoft Virtual WiFi Miniport Adapter #4
 20...68 1c a2 04 49 76 ......Rosewill RNX-N150PCx Wireless LAN Card #2
 12...38 60 77 29 7c 1a ......Intel® 82579V Gigabit Network Connection
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.15.1   192.168.15.201     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
     192.168.15.0    255.255.255.0         On-link    192.168.15.201    281
   192.168.15.201  255.255.255.255         On-link    192.168.15.201    281
   192.168.15.255  255.255.255.255         On-link    192.168.15.201    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link    192.168.15.201    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link    192.168.15.201    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 20    281 fe80::/64                On-link
 20    281 fe80::44e3:8d9a:8544:aeee/128
                                    On-link
  1    306 ff00::/8                 On-link
 20    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/26/2014 11:00:41 PM) (Source: Application Hang) (User: )
Description: The program CCleaner64.exe version 4.18.0.4842 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 49a4

Start Time: 01cfda16e67e754b

Termination Time: 16

Application Path: C:\Program Files\CCleaner\CCleaner64.exe

Report Id: 969dea1f-460b-11e4-950b-386077297c1a

Error: (09/26/2014 10:58:51 PM) (Source: ConvertFilesforFree) (User: )
Description: Failed to uninstall source, code: 2

Error: (09/26/2014 10:58:51 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/26/2014 10:58:51 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

Error: (09/26/2014 10:58:51 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/26/2014 10:58:51 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

Error: (09/26/2014 10:46:18 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/26/2014 10:31:14 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object


System errors:
=============
Error: (09/26/2014 10:41:44 PM) (Source: DCOM) (User: MICAH-PC)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MICAH-PCMICAHS-1-5-21-1546516830-3071941798-1972571606-1000LocalHost (Using LRPC)

Error: (09/26/2014 10:40:24 PM) (Source: Service Control Manager) (User: )
Description: The Support Dock Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (09/26/2014 10:37:11 PM) (Source: DCOM) (User: MICAH-PC)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MICAH-PCMICAHS-1-5-21-1546516830-3071941798-1972571606-1000LocalHost (Using LRPC)

Error: (09/26/2014 10:37:05 PM) (Source: DCOM) (User: MICAH-PC)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}MICAH-PCMICAHS-1-5-21-1546516830-3071941798-1972571606-1000LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Amazon Music (HKCU\...\Amazon Amazon Music) (Version: 3.0.0.564 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}) (Version: 2.2.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}) (Version: 6.0.0.59 - Apple Inc.)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
C4500 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Common Desktop Agent (Version: 1.53.0 - OEM) Hidden
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
EasyBoost (HKLM-x32\...\InstallShield_{41910260-4532-4734-8181-3E8AFDBB05D7}) (Version: 1.0.3.1 - GIGABYTE)
EasyBoost (x32 Version: 1.0.3.1 - GIGABYTE) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
H&R Block Basic + Efile 2013 (HKLM-x32\...\{FDF789BA-0A3F-45B1-AFC3-FB424AFEB3D0}) (Version: 13.02.6502 - HRB Technology, LLC.)
H&R Block Deluxe + Efile + State 2012 (HKLM-x32\...\{89D20029-0578-4D8D-979A-695C8D868868}) (Version: 12.05.7803 - HRB Technology, LLC.)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart C4500 All-In-One Driver Software 13.0 Rel. 4 (HKLM\...\{AA6F009F-0CCD-4DD6-A462-28419C101D54}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel® Desktop Utilities (HKLM-x32\...\{F01CBA59-B5BD-4608-A834-1CBE8C292A71}) (Version: 1.0.0 - Intel Corporation)
Intel® Desktop Utilities (HKLM-x32\...\InstallShield_{10D45EA7-619E-4C69-8A87-0F1BEDC2DB9E}) (Version: 3.2.6 - Intel Corporation)
Intel® Desktop Utilities (x32 Version: 3.2.6 - Intel Corporation) Hidden
Intel® Integrator Assistant (HKLM-x32\...\{D1A35687-AEA9-422C-B237-FC4F8136B6F6}) (Version: 1.0.0 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Network Connections 18.4.59.0 (HKLM\...\PROSetDX) (Version: 18.4.59.0 - Intel)
Intel® Network Connections 18.4.59.0 (Version: 18.4.59.0 - Intel) Hidden
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
Intel® SMBus (HKLM\...\SMBus) (Version:  - )
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
iolo technologies' Search and Recover (HKLM-x32\...\{D56C7EAB-BEE6-4D51-86CF-419FFC07FF11}_is1) (Version: 5.4.12 - iolo technologies, LLC)
iSEEK AnswerWorks English Runtime (HKLM-x32\...\{18A8E78B-9EF2-496E-B310-BCD8E4C1DAB3}) (Version: 010.000.0101 - Vantage Linguistics)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Filter Pack 2.0 (HKLM\...\{95140000-2000-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.3.188.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Standard 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
NVIDIA 3D Vision Controller Driver (x32 Version: 280.19 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller Driver 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 320.49 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Control Panel 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8 - NVIDIA Corporation)
NVIDIA Graphics Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0604 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.10.5 (Version: 10.10.5 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Update 10.10.5 (Version: 10.10.5 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.10.5 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.12 - NVIDIA Corporation)
ocxinstall (HKLM-x32\...\{1A2606DD-5E86-4ADA-954B-D98012A174E0}) (Version: 1.0.0.32 - apexis)
PC Cleaners (HKCU\...\PC Cleaners) (Version:  - PC Cleaners)
Pdf995 (installed by H&R Block) (HKLM-x32\...\Pdf995) (Version:  - )
PdfEdit995 (installed by H&R Block) (HKLM-x32\...\PdfEdit995) (Version:  - )
PressReader (HKLM-x32\...\{912CED74-88D3-4C5B-ACB0-132318649765}) (Version: 5.12.0927.0 -  NewspaperDirect Inc.)
PS_AIO_04_C4500_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6914 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden
Rosewill RNX-N150PCx Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.6.0 - Rosewill)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.06.09 - Samsung Electronics Co., Ltd.)
Samsung ML-2950 Series (HKLM-x32\...\Samsung ML-2950 Series) (Version: 1.14 (5/8/2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Savings Bond Wizard (HKLM-x32\...\{566DBD89-9955-4024-9384-A6301C8C6584}) (Version: 4.15 - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 1.6.75 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
Strongvault Online Backup (x32 Version: 5.0.2.34 - Strongvault Online Backup) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_STANDARDR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_STANDARDR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_STANDARDR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_STANDARDR_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_STANDARDR_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2889914) 32-Bit Edition (HKLM-x32\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{F3F83933-75FC-4B60-84F2-3F8FA63D042E}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_STANDARDR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_STANDARDR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_STANDARDR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Visual Basic for Applications ® Core - English (x32 Version: 6.5.10.32 - Microsoft Corporation) Hidden
Visual Basic for Applications ® Core (x32 Version: 6.5.10.53 - Microsoft Corporation) Hidden
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinSCP 5.1.3 (HKLM-x32\...\winscp3_is1) (Version: 5.1.3 - Martin Prikryl)

========================= Devices: ================================

Name: Photosmart C4500 series
Description: Photosmart C4500 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


========================= Memory info: ===================================

Percentage of memory in use: 23%
Total physical RAM: 16361.41 MB
Available physical RAM: 12444.79 MB
Total Pagefile: 32721.01 MB
Available Pagefile: 28618.3 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.28 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.66 GB) (Free:341.34 GB) NTFS

========================= Users: ========================================

User accounts for \\MICAH-PC

Administrator            Guest                    MICAH                    


**** End of log ****

<?xml version="1.0" encoding="UTF-8" ?>
<mbam-log>
<header>
<date>2014/09/26 23:35:20 -0700</date>
<logfile>mbam-log-2014-09-26 (23-35-15).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.2.1012</version>
<malware-database>v2014.09.27.02</malware-database>
<rootkit-database>v2014.09.19.01</rootkit-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 7 Service Pack 1</osversion>
<arch>x64</arch>
<username>MICAH</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>377811</objects>
<time>537</time>
<processes>0</processes>
<modules>0</modules>
<keys>8</keys>
<values>2</values>
<datas>0</datas>
<folders>4</folders>
<files>45</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}</path><vendor>PUP.Optional.Babylon.A</vendor><action>success</action><hash>f4aa836f710af2442662d7b8a75b857b</hash></key>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{59A062A1-5ECA-4A1A-BC44-B2A9283A8ACB}</path><vendor>PUP.Optional.FreeFileConverter.A</vendor><action>success</action><hash>584627cb2f4c3cfaf5d94c46ce34cf31</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{59A062A1-5ECA-4A1A-BC44-B2A9283A8ACB}</path><vendor>PUP.Optional.FreeFileConverter.A</vendor><action>success</action><hash>584627cb2f4c3cfaf5d94c46ce34cf31</hash></key>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{59A062A1-5ECA-4A1A-BC44-B2A9283A8ACB}</path><vendor>PUP.Optional.FreeFileConverter.A</vendor><action>success</action><hash>584627cb2f4c3cfaf5d94c46ce34cf31</hash></key>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}</path><vendor>PUP.Optional.Consumer.Input.A</vendor><action>success</action><hash>3d61c62c9cdf9e9849e2326321e17a86</hash></key>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{CF190686-9E72-403C-B99D-682ABDB63C5B}</path><vendor>PUP.Optional.TopArcadeHits.A</vendor><action>success</action><hash>f0aed71b403ba19550ab5078758d45bb</hash></key>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\BringMeSports_1c</path><vendor>PUP.Optional.MindSpark.A</vendor><action>success</action><hash>ccd25f93accff93d307735f03ec553ad</hash></key>
<key><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\bProtectSettings</path><vendor>PUP.Optional.BProtector.A</vendor><action>success</action><hash>e4baaa489fdcd1655ea5e971e123867a</hash></key>
<value><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{D4027C7F-154A-4066-A1AD-4243D8127440}</path><valuename></valuename><vendor>PUP.Optional.FrostwireTB.A</vendor><action>success</action><valuedata></valuedata><hash>0599faf8f487b97d53126d5f768cff01</hash></value>
<value><path>HKU\S-1-5-21-1546516830-3071941798-1972571606-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER</path><valuename>{D4027C7F-154A-4066-A1AD-4243D8127440}</valuename><vendor>PUP.Optional.FrostwireTB.A</vendor><action>success</action><valuedata>|ÔJf@¡­BCØt@</valuedata><hash>0599faf8f487b97d53126d5f768cff01</hash></value>
<folder><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\TelevisionFanatic</path><vendor>PUP.Optional.MindSpark.A</vendor><action>success</action><hash>1a8400f262194ee846a07d68d32f58a8</hash></folder>
<folder><path>C:\Program Files (x86)\ver2Re-Markable</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></folder>
<folder><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></folder>
<folder><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></folder>
<file><path>C:\Program Files (x86)\ver2Re-Markable\F8Re-MarkableI45.exe</path><vendor>PUP.Optional.AdLyrics</vendor><action>success</action><hash>c4dac032e49776c089c7a6adf30d2bd5</hash></file>
<file><path>C:\Users\MICAH\Downloads\install_flash_player.exe</path><vendor>PUP.Optional.AirInstaller</vendor><action>success</action><hash>9608668cc0bbc3734e3952db3bc618e8</hash></file>
<file><path>C:\Users\MICAH\Downloads\setup(2).exe</path><vendor>PUP.Optional.Linkular</vendor><action>success</action><hash>7d211ed4413a14227a4aef98ca3a9e62</hash></file>
<file><path>C:\Users\MICAH\Downloads\setup_ic.exe</path><vendor>PUP.Optional.Bundlore</vendor><action>success</action><hash>efaf678bfe7d8aacdf9c0685a25f4fb1</hash></file>
<file><path>C:\Users\MICAH\Downloads\SoftonicDownloader_for_tvants.exe</path><vendor>PUP.Optional.Softonic</vendor><action>success</action><hash>0e909b57adce5cda234aca4c956c9769</hash></file>
<file><path>C:\Users\MICAH\Downloads\adobe_flash_setup(1).exe</path><vendor>Trojan.Downloader</vendor><action>success</action><hash>b8e6a74bff7cb08695ddd2e49e63be42</hash></file>
<file><path>C:\Users\MICAH\Downloads\adobe_flash_setup.exe</path><vendor>Trojan.Downloader</vendor><action>success</action><hash>f2ac46aca4d7cb6b4a289a1ce41d9f61</hash></file>
<file><path>C:\Users\MICAH\Downloads\Player-Firefox(1).exe</path><vendor>PUP.Optional.IBryte</vendor><action>success</action><hash>c0de18da7407fa3c8da52e8217ea41bf</hash></file>
<file><path>C:\Users\MICAH\Downloads\Player-Firefox.exe</path><vendor>PUP.Optional.iBryte</vendor><action>success</action><hash>b7e7a34f483379bdd23c3777c23f5ea2</hash></file>
<file><path>C:\Windows\System32\Tasks\Idle~Crawler Runner</path><vendor>PUP.Optional.IdleCrawler.A</vendor><action>success</action><hash>e3bb3eb41665eb4b5bd956b5748f10f0</hash></file>
<file><path>C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\5x45bkmh.default\searchplugins\Astromenda.xml</path><vendor>PUP.Optional.Astromenda</vendor><action>success</action><hash>ebb3846e94e74fe7cb91e62be3209c64</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\searchplugins\Astromenda.xml</path><vendor>PUP.Optional.Astromenda</vendor><action>success</action><hash>abf3777b4437cf670b51e52ca45fc43c</hash></file>
<file><path>C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance\Idle~Crawler Update</path><vendor>PUP.Optional.IdleCrawler</vendor><action>success</action><hash>c1ddc52d106b092dd231a0725ca7ad53</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\TelevisionFanatic\7C1CCC98-F618-4D53-A146-C13E83A443A9.sqlite</path><vendor>PUP.Optional.MindSpark.A</vendor><action>success</action><hash>1a8400f262194ee846a07d68d32f58a8</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\178.crx</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\178.xpi</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\178_x64.dll</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\a.db</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\b.db</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\F8Re-MarkableI45.dll</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\G1Re-Markablekt178.bin</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\G1Re-Markablekt178.dll</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\G1Re-Markablekt178.exe</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\p.res</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\p2.res</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\p3.res</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Program Files (x86)\ver2Re-Markable\Sqlite3.dll</path><vendor>PUP.Optional.ReMarkable.A</vendor><action>success</action><hash>7b23ed05cfacc0765ebeb83d28da8878</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav-groups</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\favs##bda8c03deb580cad33a77ff5b53a1971</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\redirects</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\06027c9b43fd9c4836a52d250cf044f6</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\33b7c8999a656811c0e815aeaa8ac948</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\3874fd9ca02ed9cc4fcc873601b6f571</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\428a1fc9d5ae0f2e3823a081d2462490</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\772c2b11521b9542264a56f55cd0fe81</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\86f7e06310ce27f0feb89a77d2e5f227</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\b5543bb035e5c97cb0d58f6064453c50</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\b9c845884ecb5e800b408c17a500df22</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\bf8513acb2fe4ea72e9733a831a13d25</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\c0103474c89a18e2f4559398f1b4f340</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\c742c734c5d08e165e64e7bcb2adf9c4</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\dba4697d7f61993ed3552a14400b0999</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\e3119f1cc6579b70c8640b819c6750ba</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\f7e8eabcbfa34dd341df8f9a3c8dea80</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
<file><path>C:\Users\MICAH\AppData\Roaming\Mozilla\Firefox\Profiles\bq8tt59o.default\nspdlgrvrio\fav_thumbs\ffd865717900e3cbcc5f99f102ab4034</path><vendor>PUP.Optional.Groovorio.A</vendor><action>success</action><hash>acf2b63cb1ca40f6628ac82f0cf66997</hash></file>
</items>
</mbam-log>

 

Moderator edit: Split into this topic and merged from two other topics

Roger


Edited by rotor123, 27 September 2014 - 03:08 PM.


BC AdBot (Login to Remove)

 


#2 chillism

chillism
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 27 September 2014 - 01:27 AM

Farbar Service Scanner Version: 21-07-2014
Ran by MICAH (administrator) on 26-09-2014 at 23:26:54
Running from "C:\Users\MICAH\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users