Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

C:\PROGR~2\Wincert\WIN32C~1.DLL error message


  • This topic is locked This topic is locked
12 replies to this topic

#1 PriyaS

PriyaS

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:53 AM

Posted 03 December 2014 - 12:31 PM

Mod Edit: moved to proper forum for FRST logs... ~~boopme

Good day, I have just joined the bleeping computer forums.
 
Please could you assist me as follows:
 
I ran my avast antivirus and malware bytes programs which then picked up some viruses. I quarantined and deleted the files and now I keep receiving the following error messages every time I click on any icon/application/program on my computer:
 
 
 

C:\PROGR~2\Wincert\WIN32C~1.DLL is either not designed to run on Windows or it contains and error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support.

 
Your urgent assistance is much appreciated.
 
Many thanks.


Ok I tried the FRST tool. Please see the log as below:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-12-2014
Ran by The Shorts (administrator) on THESHORTS-PC on 02-12-2014 16:55:08
Running from C:\Users\The Shorts\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5CUFRIMH
Loaded Profile: The Shorts (Available profiles: The Shorts)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
() C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Attix5 Development (Pty) Ltd) C:\Program Files\Pastel IronTree\a5backup.exe
( ) C:\Windows\System32\lxdncoms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Dell, Inc.) C:\Program Files\Dell\Dell Datasafe Online\NOBuAgent.exe
(Apple Inc.) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\w32x86\3\NetFaxServer.exe
(SoftThinks SAS) C:\Program Files\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
(Dell Products, LP.) C:\Program Files\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Creative Technology Ltd) C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
() C:\Program Files\Dell\Stage Remote\StageRemote.exe
(CyberLink Corp.) C:\Program Files\Cyberlink\PowerDVD9\PDVD9Serv.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
() C:\Program Files\Lexmark 2600 Series\lxdnmon.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
() C:\Program Files\Dell\Stage Remote\StageRemoteService.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
() C:\Program Files\Lexmark 2600 Series\lxdnmsdmon.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nero AG) C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(ooVoo LLC) C:\Program Files\ooVoo\ooVoo.exe
(Softline Pastel Payroll) C:\Program Files\Softline Pastel\Connected Services\SageCSClient.exe
(Dell) C:\Users\The Shorts\AppData\Local\Apps\2.0\WXYWT1P3.XZB\563BEKJO.PHX\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\w32x86\3\NetFaxTray.exe
(Pervasive Software Inc.) C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe
(Dropbox, Inc.) C:\Users\The Shorts\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
(Verbatim) C:\Program Files\Verbatim\GREEN BUTTON\GREEN BUTTON.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_223_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Dell Webcam Central] => C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [501104 2011-03-29] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3405168 2011-03-24] (Dell Inc.)
HKLM\...\Run: [RoxWatchTray] => c:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM\...\Run: [Desktop Disc Tool] => c:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM\...\Run: [Stage Remote] => C:\Program Files\Dell\Stage Remote\StageRemote.exe [2022976 2011-06-28] ()
HKLM\...\Run: [RemoteControl9] => C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink Corp.)
HKLM\...\Run: [PDVD9LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM\...\Run: [Dell DataSafe Online] => C:\Program Files\Dell\Dell Datasafe Online\NOBuClient.exe [927576 2010-08-26] (Dell, Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [1278064 2013-03-13] (McAfee, Inc.)
HKLM\...\Run: [AccuWeatherWidget] => C:\Program Files\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [968048 2012-02-01] ()
HKLM\...\Run: [DellStage] => C:\Program Files\Dell Stage\Dell Stage\stage_primary.exe [2195824 2012-02-01] ()
HKLM\...\Run: [lxdnmon.exe] => C:\Program Files\Lexmark 2600 Series\lxdnmon.exe [660136 2010-02-04] ()
HKLM\...\Run: [lxdnamon] => C:\Program Files\Lexmark 2600 Series\lxdnamon.exe [16040 2010-02-04] ()
HKLM\...\Run: [FaxCenterServer] => C:\Program Files\Lexmark Fax Solutions\fm3032.exe [320168 2010-02-04] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe [144784 2008-02-22] (Sun Microsystems, Inc.)
HKLM\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM\...\Run: [RIM PeerManager] => C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe [4254720 2013-04-18] (Research In Motion Limited)
HKLM\...\Run: [BtTray] => C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe [229888 2008-07-09] ()
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [350072 2012-03-09] ()
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-02] (AVAST Software)
HKLM\...\Run: [NBAgent] => C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-14] (Nero AG)
HKLM\...\Run: [MobileBroadband] => C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [279552 2011-07-14] (Vodafone)
HKLM\...\Run: [PCSuiteTrayApplication] => C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [271360 2007-06-18] (Nokia)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [1138783 2011-05-27] (IDT, Inc.)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Reader 10.0\Reader\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [ooVoo.exe] => C:\Program Files\ooVoo\oovoo.exe [34929728 2013-05-01] (ooVoo LLC)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [SDP] => C:\Users\The Shorts\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [Payroll Notification Service] => C:\Program Files\Softline Pastel\Connected Services\SageCSClient.exe [838744 2012-10-16] (Softline Pastel Payroll)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [Yahoo! Search] => C:\Users\The Shorts\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe [535472 2014-06-29] ()
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [DellSystemDetect] => C:\Users\The Shorts\AppData\Local\Apps\2.0\WXYWT1P3.XZB\563BEKJO.PHX\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe [264488 2014-11-08] (Dell)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: E - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: F - F:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: G - G:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {0d7ec8ad-cb8f-11e1-bf6c-24b6fd595849} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {10656923-8ab2-11e3-bfb6-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {13063555-4f76-11e3-8fd1-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {2224d924-03aa-11e2-a32e-e006e66be937} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {32c69062-2ad5-11e4-a98e-806e6f6e6963} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {349ebe36-2b86-11e4-b87e-001f81000830} - F:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {a45ba152-14eb-11e4-96cd-001f81000830} - E:\AutoRun.exe
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {a45ba15a-14eb-11e4-96cd-001f81000830} - E:\AutoRun.exe
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {ac8cc826-e4d1-11e3-96d7-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {bae0e120-e054-11e1-9c75-24b6fd595849} - G:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {c26c61f9-59cf-11e3-b35b-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {c26c61fb-59cf-11e3-b35b-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {c8643afe-20ca-11e4-82e2-806e6f6e6963} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {deb700a9-e3d1-11e3-97c9-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {fa03196c-c3ec-11e3-9722-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-18\...\Run: [Nokia.PCSync] => C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe [1241088 2007-06-19] (Time Information Services Ltd.)
AppInit_DLLs: C:\PROGRA~2\Wincert\WIN32C~1.DLL => C:\ProgramData\Wincert\win32cert.dll [7168 2012-12-20] ()
AppInit_DLLs:  c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll => c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\NetFaxTray.exe (Samsung Electronics Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Pervasive PSQL Workgroup Engine.lnk
ShortcutTarget: Start Pervasive PSQL Workgroup Engine.lnk -> C:\Windows\Installer\{0A3238D7-AB32-1010-B717-F3E3F18B4A8C}\WGE.14A03FCD_EA43_4130_A5C0_F02D38895A13.exe ()
Startup: C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\The Shorts\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk
ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files\Verbatim\GREEN BUTTON\GREEN BUTTON.exe (Verbatim)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
CHR HKU\S-1-5-21-372935575-2588982572-1376958264-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://howzit.msn.com/
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2A560DFC01B4CF01
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ZA
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.za/
SearchScopes: HKLM -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=ZA&userid=ad4b160e-2830-16ea-2a48-a24b34a1e33f&searchtype=ds&q={searchTerms}&installDate=30/07/2013
SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=ZA&userid=ad4b160e-2830-16ea-2a48-a24b34a1e33f&searchtype=ds&q={searchTerms}&installDate=30/07/2013
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120715084343.dll (McAfee, Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: delta Helper Object -> {C1AF5FA5-852C-4C90-812E-A7F75E011D87} -> C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll ()
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll ()
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKU\S-1-5-21-372935575-2588982572-1376958264-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{9372C132-B18A-41CA-983A-83DC1B337F11}: [NameServer] 196.43.53.190 196.43.54.190
FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-372935575-2588982572-1376958264-1000: @tightropeinteractive.com/Plugin -> C:\Users\The Shorts\AppData\Local\TNT2\2.0.0.1534\npTNT2.dll ()
FF Plugin HKU\S-1-5-21-372935575-2588982572-1376958264-1000: @tnt2ghost.com/Plugin -> C:\Users\The Shorts\AppData\Local\TNT2\2.0.0.1534\npTNT2ghost.dll ()
FF HKLM\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files\Common Files\McAfee\SystemCore
FF Extension: McAfee ScriptScan for Firefox - C:\Program Files\Common Files\McAfee\SystemCore [2012-06-25]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-07-11]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2012-06-25]
FF HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Firefox\Extensions: [{58bd07eb-0ee0-4df0-8121-dc9b693373df}] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gnnabbonolmdccgncgckdfikehphiknc] - C:\Users\The Shorts\AppData\Roaming\CRDeltaTB\DeltaYHS.crx [2013-01-21]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-30]
CHR HKLM\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files\TornTV.com\torn11.crx [2014-11-30]
CHR HKLM\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\The Shorts\AppData\Local\Torch\Plugins\TorchPlugin.crx [2014-11-30]
CHR HKLM\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx [2014-11-30]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-02] (AVAST Software)
R3 BlackBerry Device Manager; C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [585728 2013-02-06] (Research In Motion Limited) [File not signed]
R2 BlueSoleilCS; C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [775168 2008-07-09] () [File not signed]
R3 BsHelpCS; C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe [69735 2008-06-04] () [File not signed]
R2 BsMobileCS; C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe [143467 2008-06-04] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 DellDigitalDelivery; C:\Program Files\Dell Digital Delivery\DeliveryService.exe [202248 2014-04-10] (Dell Products, LP.)
R2 IronTreeDL; C:\Program Files\Pastel IronTree\a5backup.exe [163840 2010-03-02] (Attix5 Development (Pty) Ltd) [File not signed]
S2 lxdnCATSCustConnectService; C:\windows\system32\spool\DRIVERS\W32X86\3\\lxdnserv.exe [94208 2009-04-28] (Lexmark International, Inc.)
R2 lxdn_device; C:\windows\system32\lxdncoms.exe [589824 2007-11-28] ( )
S3 McAWFwk; c:\Program Files\McAfee\msc\McAWFwk.exe [203080 2011-03-09] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [279048 2012-11-16] (McAfee, Inc.)
S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [203840 2013-02-19] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169320 2013-02-19] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [172416 2013-02-19] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 NOBU; C:\Program Files\Dell\Dell Datasafe Online\NOBuAgent.exe [2075480 2010-08-26] (Dell, Inc.)
R2 RIM MDNS; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [388096 2013-04-18] (Apple Inc.) [File not signed]
R2 RIM Tunnel Service; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1235456 2013-04-18] (Research In Motion Limited) [File not signed]
S3 RoxMediaDB12OEM; c:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [1116656 2010-11-25] (Sonic Solutions)
S2 RoxWatch12; c:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [219632 2010-11-25] (Sonic Solutions)
R2 Samsung Network Fax Server; C:\windows\system32\spool\drivers\w32x86\3\NetFaxServer.exe [379952 2013-07-01] (Samsung Electronics Co., Ltd.)
S4 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [300544 2007-06-15] (Nokia.) [File not signed]
R2 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [1695040 2012-02-16] (SoftThinks SAS)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [282709 2011-05-27] (IDT, Inc.)
S2 Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-08-02] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-08-02] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-08-02] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-08-02] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-11-27] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-08-02] (AVAST Software)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [71944 2014-08-02] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-08-02] ()
R3 BT; C:\windows\System32\DRIVERS\btnetdrv.sys [14600 2008-01-21] (IVT Corporation.)
S3 Btcsrusb; C:\windows\System32\Drivers\btcusb.sys [38920 2008-03-06] (IVT Corporation.)
R0 BtHidBus; C:\windows\System32\Drivers\BtHidBus.sys [21512 2008-01-21] (IVT Corporation.)
R3 cfwids; C:\windows\System32\drivers\cfwids.sys [60920 2013-02-19] (McAfee, Inc.)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [146872 2012-04-20] (McAfee, Inc.)
R3 IvtBtBUs; C:\windows\System32\Drivers\IvtBtBus.sys [26248 2008-01-21] (IVT Corporation.)
R3 MBAMSwissArmy; C:\windows\system32\drivers\mbamswissarmy.sys [40776 2014-12-02] (Malwarebytes Corporation)
R3 MEI; C:\windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 mfeapfk; C:\windows\System32\drivers\mfeapfk.sys [133416 2013-02-19] (McAfee, Inc.)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [235264 2013-02-19] (McAfee, Inc.)
S3 mfebopk; C:\windows\System32\drivers\mfebopk.sys [65928 2013-02-19] (McAfee, Inc.)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [363080 2013-02-19] (McAfee, Inc.)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [565888 2013-02-19] (McAfee, Inc.)
S3 mferkdet; C:\windows\System32\drivers\mferkdet.sys [92632 2013-02-19] (McAfee, Inc.)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [210608 2013-02-19] (McAfee, Inc.)
R3 rimvndis; C:\windows\System32\Drivers\rimvndis6.sys [14848 2013-04-18] (Research in Motion Limited)
R2 SSPORT; C:\windows\system32\Drivers\SSPORT.sys [5120 2013-04-10] (Samsung Electronics) [File not signed]
S3 VComm; C:\windows\System32\DRIVERS\VComm.sys [14856 2008-01-21] (IVT Corporation.)
R3 VcommMgr; C:\windows\System32\Drivers\VcommMgr.sys [29960 2008-01-21] (IVT Corporation.)
R3 vodafone_K3805-z_dc_enum; C:\windows\System32\DRIVERS\vodafone_K3805-z_dc_enum.sys [61952 2010-09-01] (Vodafone)
R3 vodafone_zte_cdc_acm; C:\windows\System32\DRIVERS\vodafone_zte_cdc_acm.sys [67968 2011-05-20] (Vodafone)
R3 vodafone_zte_cdc_ecm; C:\windows\System32\DRIVERS\vodafone_zte_cdc_ecm.sys [52224 2011-05-20] (Vodafone)
S3 vodafone_zte_cpo; C:\windows\System32\DRIVERS\vodafone_zte_cpo.sys [9984 2011-05-20] (Vodafone)
R3 vodafone_zte_ecm_enum; C:\windows\System32\DRIVERS\vodafone_zte_ecm_enum.sys [47488 2011-05-20] (Vodafone)
R3 vodafone_zte_ecm_enum_filter; C:\windows\System32\DRIVERS\vodafone_zte_ecm_enum_filter.sys [47488 2011-05-20] (Vodafone)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33800 2008-03-06] (IVT Corporation.)
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
U3 mfeavfk01; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-02 16:54 - 2014-12-02 16:55 - 00000000 ____D () C:\FRST
2014-12-02 16:40 - 2014-12-02 16:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-12-02 12:41 - 2014-12-02 12:41 - 00002007 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-12-02 12:41 - 2014-12-02 12:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2014-12-02 12:41 - 2014-08-02 13:49 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-12-01 20:42 - 2014-12-02 22:32 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-11-20 09:57 - 2014-11-11 04:44 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-11-20 09:57 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2014-11-20 09:45 - 2014-11-20 09:45 - 00000000 __SHD () C:\Users\The Shorts\AppData\Local\EmieBrowserModeList
2014-11-18 14:19 - 2014-11-18 14:19 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\WEB2Print
2014-11-17 17:04 - 2014-11-17 17:10 - 00000000 ____D () C:\Users\The Shorts\Documents\SARS 2014
2014-11-17 17:01 - 2014-10-18 03:33 - 00571904 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2014-11-17 17:01 - 2014-10-14 03:50 - 02363904 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-11-17 17:01 - 2014-08-12 03:36 - 00701440 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL
2014-11-17 17:00 - 2014-10-10 02:45 - 02379264 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-11-17 17:00 - 2014-10-03 03:44 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2014-11-17 17:00 - 2014-09-19 11:23 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-11-17 17:00 - 2014-08-21 08:26 - 01237504 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-11-17 17:00 - 2014-08-21 08:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-11-17 16:59 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-11-17 16:58 - 2014-10-14 03:56 - 00136632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-11-17 16:58 - 2014-10-14 03:50 - 01059840 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-11-17 16:58 - 2014-10-14 03:50 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2014-11-17 16:58 - 2014-10-14 03:47 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2014-11-17 16:58 - 2014-10-14 03:46 - 00681984 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2014-11-17 16:57 - 2014-11-07 21:23 - 00341168 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-11-17 16:57 - 2014-11-06 05:28 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-11-17 16:57 - 2014-11-06 05:28 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-11-17 16:57 - 2014-11-06 05:13 - 00501248 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-11-17 16:57 - 2014-11-06 05:13 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-11-17 16:57 - 2014-11-06 05:12 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-11-17 16:57 - 2014-11-06 05:10 - 19781632 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-11-17 16:57 - 2014-11-06 05:10 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-11-17 16:57 - 2014-11-06 05:05 - 02277376 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-11-17 16:57 - 2014-11-06 05:04 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-11-17 16:57 - 2014-11-06 05:03 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-11-17 16:57 - 2014-11-06 05:00 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-11-17 16:57 - 2014-11-06 04:59 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-11-17 16:57 - 2014-11-06 04:59 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-11-17 16:57 - 2014-11-06 04:58 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-11-17 16:57 - 2014-11-06 04:51 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-11-17 16:57 - 2014-11-06 04:48 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-11-17 16:57 - 2014-11-06 04:42 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-17 16:57 - 2014-11-06 04:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-11-17 16:57 - 2014-11-06 04:36 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-11-17 16:57 - 2014-11-06 04:34 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-11-17 16:57 - 2014-11-06 04:22 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-11-17 16:57 - 2014-11-06 04:22 - 00683008 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-11-17 16:57 - 2014-11-06 04:21 - 04298240 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-11-17 16:57 - 2014-11-06 04:21 - 02051072 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-11-17 16:57 - 2014-11-06 04:20 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-11-17 16:57 - 2014-11-06 04:03 - 12819456 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-11-17 16:57 - 2014-11-06 03:52 - 01892864 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-11-17 16:57 - 2014-11-06 03:48 - 01310208 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-11-17 16:57 - 2014-11-06 03:47 - 00708096 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-11-11 17:17 - 2011-05-27 21:06 - 04788224 _____ (IDT, Inc.) C:\windows\system32\stlang.dll
2014-11-11 17:17 - 2011-05-27 21:06 - 01488384 _____ (IDT, Inc.) C:\windows\system32\IDTNCPL.cpl
2014-11-11 17:17 - 2010-04-02 00:06 - 00139776 _____ (Andrea Electronics Corporation) C:\windows\system32\aestacap.dll
2014-11-11 17:17 - 2009-10-10 10:45 - 00380928 _____ (Andrea Electronics Corporation) C:\windows\system32\aestecap.dll
2014-11-11 17:17 - 2009-03-03 11:57 - 00061440 _____ (Andrea Electronics Corporation) C:\windows\system32\aestaren.dll
2014-11-11 17:17 - 2009-03-03 11:47 - 00086016 _____ (Andrea Electronics Corporation) C:\windows\system32\AESTCom.dll
2014-11-11 16:57 - 2014-12-02 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free FLV to AVI Converter
2014-11-11 16:57 - 2014-11-11 16:57 - 00001191 _____ () C:\Users\Public\Desktop\Pazera Free FLV to AVI Converter.lnk
2014-11-11 16:57 - 2014-11-11 16:57 - 00000000 ____D () C:\Program Files\pazera-software
2014-11-08 17:40 - 2014-11-08 17:40 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-11-08 17:37 - 2014-12-02 22:33 - 00000000 ____D () C:\Program Files\My Dell
2014-11-08 17:34 - 2014-12-02 22:32 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-11-08 17:24 - 2014-11-08 17:24 - 00000000 ____D () C:\Users\The Shorts\Documents\free-videoconverter
2014-11-08 17:24 - 2014-11-08 17:24 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\free-videoconverter
2014-11-08 17:23 - 2014-11-08 17:23 - 00002269 _____ () C:\Users\Public\Desktop\Free FLV to MP4 Converter.lnk
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\temp
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free-videoconverter
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\ProgramData\free-videoconverter
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\Program Files\free-videoconverter
2014-11-08 17:17 - 2014-12-02 22:33 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-02 22:35 - 2014-05-21 20:18 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-12-02 22:35 - 2013-02-04 14:21 - 00000000 ____D () C:\Program Files\Windows Journal
2014-12-02 22:35 - 2012-05-23 02:30 - 00000000 ____D () C:\windows\WisTools
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\DVD Maker
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 __RSD () C:\windows\Media
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\ras
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\com
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\AdvancedInstallers
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\L2Schemas
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\IME
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\Cursors
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-12-02 22:34 - 2012-06-25 01:50 - 00000000 ____D () C:\windows\system32\Macromed
2014-12-02 22:34 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\wfp
2014-12-02 22:33 - 2014-10-27 13:07 - 00000000 ___RD () C:\Program Files\Skype
2014-12-02 22:33 - 2014-10-27 13:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-12-02 22:33 - 2014-08-24 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia PC Suite
2014-12-02 22:33 - 2014-08-24 15:28 - 00000000 ____D () C:\Program Files\PC Connectivity Solution
2014-12-02 22:33 - 2014-08-24 14:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vodafone
2014-12-02 22:33 - 2014-08-09 19:51 - 00000000 ___RD () C:\Users\The Shorts\Desktop\Games
2014-12-02 22:33 - 2014-07-26 20:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Manager
2014-12-02 22:33 - 2014-06-29 09:31 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Pay-By-Ads
2014-12-02 22:33 - 2013-12-14 06:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-12-02 22:33 - 2013-12-14 06:51 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-12-02 22:33 - 2013-10-27 08:54 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2014-12-02 22:33 - 2013-10-27 08:18 - 00000000 ____D () C:\Program Files\SamsungPrinterLiveUpdate
2014-12-02 22:33 - 2013-10-24 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-12-02 22:33 - 2013-10-24 08:05 - 00000000 ____D () C:\Program Files\WinZip
2014-12-02 22:33 - 2013-09-06 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sage Connected Services
2014-12-02 22:33 - 2013-08-21 15:39 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\dvdcss
2014-12-02 22:33 - 2013-08-21 09:39 - 00000000 ____D () C:\Users\The Shorts\Documents\Inyaninga Bookkeeping Solutions
2014-12-02 22:33 - 2013-08-12 16:25 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\bluesoleil
2014-12-02 22:33 - 2013-08-12 15:08 - 00000000 ____D () C:\windows\Minidump
2014-12-02 22:33 - 2013-07-30 19:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-02 22:33 - 2013-07-30 19:41 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-12-02 22:33 - 2013-07-30 19:41 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\FilesFrog Update Checker
2014-12-02 22:33 - 2013-07-30 19:40 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\SeeSimilar
2014-12-02 22:33 - 2013-07-10 18:33 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\vlc
2014-12-02 22:33 - 2013-07-10 18:30 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\TNT2
2014-12-02 22:33 - 2013-06-23 13:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ooVoo
2014-12-02 22:33 - 2013-06-23 13:47 - 00000000 ____D () C:\Program Files\ooVoo
2014-12-02 22:33 - 2013-03-21 10:35 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\FFP
2014-12-02 22:33 - 2013-03-21 10:28 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\TFP
2014-12-02 22:33 - 2013-03-18 21:32 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-12-02 22:33 - 2013-03-14 18:41 - 00000000 ____D () C:\ProgramData\Wincert
2014-12-02 22:33 - 2013-02-21 17:17 - 00000000 ___RD () C:\Program Files\Pastel IronTree
2014-12-02 22:33 - 2013-02-21 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pastel IronTree
2014-12-02 22:33 - 2013-02-06 10:51 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
2014-12-02 22:33 - 2013-02-06 10:50 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Delta
2014-12-02 22:33 - 2013-02-06 10:48 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
2014-12-02 22:33 - 2013-02-04 13:45 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\BitTorrent
2014-12-02 22:33 - 2012-11-19 15:23 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Dell Edoc Viewer
2014-12-02 22:33 - 2012-11-08 15:27 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Malwarebytes
2014-12-02 22:33 - 2012-11-08 15:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-02 22:33 - 2012-11-08 15:26 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-12-02 22:33 - 2012-10-09 10:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-12-02 22:33 - 2012-08-30 20:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CollageIt
2014-12-02 22:33 - 2012-08-30 20:24 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Smilebox
2014-12-02 22:33 - 2012-08-25 09:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry
2014-12-02 22:33 - 2012-08-15 14:51 - 00000000 ____D () C:\ProgramData\Anti-phishing Domain Advisor
2014-12-02 22:33 - 2012-08-15 10:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpowerAMP Music Converter
2014-12-02 22:33 - 2012-08-10 07:47 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\FaxCtr
2014-12-02 22:33 - 2012-08-10 07:42 - 00000000 ____D () C:\ProgramData\Lx_cats
2014-12-02 22:33 - 2012-08-10 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark Fax Solutions
2014-12-02 22:33 - 2012-08-10 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
2014-12-02 22:33 - 2012-08-10 07:36 - 00000000 ____D () C:\Program Files\Lexmark Fax Solutions
2014-12-02 22:33 - 2012-08-10 07:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 2600 Series
2014-12-02 22:33 - 2012-08-10 07:33 - 00000000 ____D () C:\Program Files\Lexmark 2600 Series
2014-12-02 22:33 - 2012-08-06 13:13 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Microsoft Help
2014-12-02 22:33 - 2012-08-06 13:12 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-02 22:33 - 2012-08-06 12:27 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\MicrosoftStore
2014-12-02 22:33 - 2012-07-11 21:38 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-12-02 22:33 - 2012-07-11 21:34 - 00000000 ___RD () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2012-07-11 21:34 - 00000000 ___RD () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2012-06-25 02:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9.5
2014-12-02 22:33 - 2012-06-25 02:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
2014-12-02 22:33 - 2012-06-25 02:24 - 00000000 ____D () C:\ProgramData\McAfee
2014-12-02 22:33 - 2012-06-25 02:22 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-12-02 22:33 - 2012-06-25 02:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe Online
2014-12-02 22:33 - 2012-06-25 02:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-02 22:33 - 2012-06-25 02:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-02 22:33 - 2012-06-25 02:11 - 00000000 ____D () C:\ProgramData\WildTangent
2014-12-02 22:33 - 2012-06-25 02:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator Starter
2014-12-02 22:33 - 2012-06-25 02:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-12-02 22:33 - 2012-06-25 02:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Stage
2014-12-02 22:33 - 2012-06-25 01:49 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-12-02 22:33 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-12-02 22:32 - 2014-06-25 13:04 - 00000000 ____D () C:\Program Files\Dell Digital Delivery
2014-12-02 22:32 - 2014-03-23 17:17 - 00000000 ____D () C:\Program Files\e@syFile-employer
2014-12-02 22:32 - 2013-12-14 06:51 - 00000000 ____D () C:\Program Files\iTunes
2014-12-02 22:32 - 2013-12-14 06:48 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-12-02 22:32 - 2013-12-14 06:43 - 00000000 ____D () C:\Program Files\Bonjour
2014-12-02 22:32 - 2013-10-27 08:56 - 00000000 ____D () C:\Program Files\Common Files\Common Desktop Agent
2014-12-02 22:32 - 2013-10-24 08:15 - 00000000 ____D () C:\Program Files\Common Files\Sage SBD
2014-12-02 22:32 - 2013-09-06 08:55 - 00000000 ____D () C:\Program Files\Common Files\BIGenerator
2014-12-02 22:32 - 2013-02-21 17:21 - 00000000 ____D () C:\Binaries
2014-12-02 22:32 - 2013-02-21 17:19 - 00000000 ____D () C:\Program Files\Common Files\Softline Pastel
2014-12-02 22:32 - 2013-02-21 17:19 - 00000000 ____D () C:\Pastel11
2014-12-02 22:32 - 2013-02-21 17:18 - 00000000 ____D () C:\Program Files\Common Files\Bank Manager
2014-12-02 22:32 - 2012-11-07 08:53 - 00000000 ____D () C:\Program Files\GPLGS
2014-12-02 22:32 - 2012-08-30 20:45 - 00000000 ____D () C:\Program Files\CollageIt
2014-12-02 22:32 - 2012-08-10 07:36 - 00000000 ____D () C:\Program Files\Abbyy FineReader 6.0 Sprint
2014-12-02 22:32 - 2012-06-25 02:07 - 00000000 ____D () C:\Program Files\Common Files\SureThing Shared
2014-12-02 22:32 - 2012-06-25 02:05 - 00000000 ____D () C:\Program Files\Common Files\PX Storage Engine
2014-12-02 22:32 - 2012-06-25 02:04 - 00000000 ____D () C:\Program Files\Dell Games Folder
2014-12-02 22:32 - 2012-06-25 02:02 - 00000000 ____D () C:\Program Files\eBay
2014-12-02 22:32 - 2012-06-25 01:52 - 00000000 ____D () C:\Program Files\IDT
2014-12-02 22:32 - 2012-06-25 01:52 - 00000000 ____D () C:\Program Files\DellTPad
2014-12-02 22:28 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\registration
2014-12-02 22:05 - 2013-02-06 10:51 - 00000000 ____D () C:\Program Files\Delta
2014-12-02 16:51 - 2013-03-18 21:35 - 00000000 ___RD () C:\Users\The Shorts\Dropbox
2014-12-02 16:51 - 2013-03-18 21:31 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Dropbox
2014-12-02 16:49 - 2014-08-24 12:02 - 00040776 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamswissarmy.sys
2014-12-02 16:45 - 2012-06-25 01:50 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-12-02 16:38 - 2012-06-25 02:06 - 00000000 ____D () C:\ProgramData\Sonic
2014-12-02 16:37 - 2012-06-25 02:40 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-12-02 16:37 - 2012-06-25 02:40 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-12-02 16:37 - 2012-06-25 02:28 - 00000000 ____D () C:\Program Files\Dell DataSafe Local Backup
2014-12-02 16:36 - 2013-07-30 20:22 - 00000376 _____ () C:\windows\Tasks\LyricsViewer Update.job
2014-12-02 16:36 - 2012-06-25 01:42 - 01176481 _____ () C:\windows\WindowsUpdate.log
2014-12-02 16:20 - 2009-07-14 06:34 - 00024720 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-02 16:20 - 2009-07-14 06:34 - 00024720 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-02 16:13 - 2008-07-09 20:51 - 00000980 _____ () C:\windows\system32\bscs.ini
2014-12-02 16:12 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-12-02 16:12 - 2009-07-14 06:39 - 00191325 _____ () C:\windows\setupact.log
2014-12-02 14:30 - 2012-07-11 21:40 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\{EBB94E3B-3BF9-4353-8238-02E9637A682C}
2014-12-02 12:52 - 2012-07-11 21:34 - 00000000 ____D () C:\Users\The Shorts
2014-12-01 18:35 - 2014-10-23 18:43 - 00000000 ____D () C:\Users\The Shorts\Desktop\Kaelin-9 days
2014-11-27 13:13 - 2012-07-11 22:00 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-11-18 16:23 - 2009-07-14 06:33 - 00458336 _____ () C:\windows\system32\FNTCACHE.DAT
2014-11-18 15:11 - 2012-07-11 21:34 - 00127840 _____ () C:\Users\The Shorts\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-18 14:01 - 2013-07-12 22:40 - 00000000 ____D () C:\windows\system32\MRT
2014-11-18 13:44 - 2012-08-11 09:55 - 100445232 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-11-17 17:06 - 2012-11-07 08:54 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\CutePDF Writer
2014-11-17 16:48 - 2013-03-18 21:35 - 00001040 _____ () C:\Users\The Shorts\Desktop\Dropbox.lnk
2014-11-17 16:47 - 2012-06-25 01:50 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-11-17 16:47 - 2012-06-25 01:50 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-11-13 14:45 - 2012-07-11 21:53 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Skype
2014-11-12 15:31 - 2010-11-20 23:48 - 00321854 _____ () C:\windows\PFRO.log
2014-11-11 17:10 - 2012-08-27 09:55 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Deployment
2014-11-11 17:00 - 2013-03-26 20:06 - 00000000 ____D () C:\Users\The Shorts\Desktop\Cartoons
2014-11-09 14:33 - 2012-11-19 14:27 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\PCDr
2014-11-08 17:37 - 2012-11-19 14:25 - 00000000 ____D () C:\ProgramData\PCDr
2014-11-07 14:03 - 2014-10-24 20:28 - 00000000 ____D () C:\Users\The Shorts\Desktop\Geveshan
2014-11-07 13:44 - 2014-09-06 22:39 - 00000000 ____D () C:\Users\The Shorts\Desktop\priya's baby shower
2014-11-06 16:16 - 2010-11-20 23:01 - 00782470 _____ () C:\windows\system32\PerfStringBackup.INI
Some content of TEMP:
====================
C:\Users\The Shorts\AppData\Local\Temp\9F3C.exe
C:\Users\The Shorts\AppData\Local\Temp\AdobeAIRInstaller.exe
C:\Users\The Shorts\AppData\Local\Temp\AskSLib.exe
C:\Users\The Shorts\AppData\Local\Temp\BlackBerryDeviceManager.exe
C:\Users\The Shorts\AppData\Local\Temp\BlackBerryLauncher.exe
C:\Users\The Shorts\AppData\Local\Temp\CC8SuC.exe
C:\Users\The Shorts\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpoq4yfm.dll
C:\Users\The Shorts\AppData\Local\Temp\dsrlte.exe
C:\Users\The Shorts\AppData\Local\Temp\easyFile-employer.exe
C:\Users\The Shorts\AppData\Local\Temp\FF0Et.exe
C:\Users\The Shorts\AppData\Local\Temp\htmlayout.dll
C:\Users\The Shorts\AppData\Local\Temp\Installhelper.dll
C:\Users\The Shorts\AppData\Local\Temp\isutldll.dll
C:\Users\The Shorts\AppData\Local\Temp\iXf2rb.exe
C:\Users\The Shorts\AppData\Local\Temp\jre-7u21-windows-i586-iftw_fd432d6c.exe
C:\Users\The Shorts\AppData\Local\Temp\jre-7u45-windows-i586-iftw_39ebb5f7.exe
C:\Users\The Shorts\AppData\Local\Temp\offercast.exe
C:\Users\The Shorts\AppData\Local\Temp\ose00000.exe
C:\Users\The Shorts\AppData\Local\Temp\SkypeSetup.exe
C:\Users\The Shorts\AppData\Local\Temp\SRAssetsHelper.dll
C:\Users\The Shorts\AppData\Local\Temp\utt9B40.tmp.exe
C:\Users\The Shorts\AppData\Local\Temp\vlc-2.0.2-win32.exe
C:\Users\The Shorts\AppData\Local\Temp\wympHC.exe
C:\Users\The Shorts\AppData\Local\Temp\{09B000F9-8FBF-4418-8507-54D9884A90BC}-31.0.1650.63_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{6CD04489-A46C-43D1-8798-7BFAFF84F2A4}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{71AECBCB-5438-41D8-ABF8-D62B9E370229}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{7C3F1099-5238-4908-807D-376F67AF808E}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{8CF9C98D-BFFA-43E2-8C4E-B6BB786346EC}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{BEEEF170-6995-4F32-810B-83A3185981BC}-31.0.1650.57_30.0.1599.101_chrome_updater.exe
C:\Users\The Shorts\AppData\Local\Temp\{DE5D3ABD-9EA4-445F-B165-D1A677600DC2}-31.0.1650.57_chrome_installer.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2012-11-22 18:37
==================== End Of Log ============================

 
I require the Fix file to run in order to sort the problem out.
 
Please assist.
 
Many thanks.
 
Regards,
PriyaS


Edited by boopme, 03 December 2014 - 02:32 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 05 December 2014 - 08:17 AM

Hello! Welcome to BleepingComputer Forums! :welcome:
My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:

  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.

 

Please download the latest version of Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

 

Regards,

Georgi


cXfZ4wS.png


#3 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 08 December 2014 - 04:58 AM

Hi,

 

Are you still around?

 

 

Regards,

Georgi


cXfZ4wS.png


#4 PriyaS

PriyaS
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:53 AM

Posted 09 December 2014 - 08:05 AM

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-12-2014
Ran by The Shorts (administrator) on THESHORTS-PC on 02-12-2014 16:55:08
Running from C:\Users\The Shorts\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5CUFRIMH
Loaded Profile: The Shorts (Available profiles: The Shorts)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
() C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Attix5 Development (Pty) Ltd) C:\Program Files\Pastel IronTree\a5backup.exe
( ) C:\Windows\System32\lxdncoms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Dell, Inc.) C:\Program Files\Dell\Dell Datasafe Online\NOBuAgent.exe
(Apple Inc.) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\w32x86\3\NetFaxServer.exe
(SoftThinks SAS) C:\Program Files\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
(Dell Products, LP.) C:\Program Files\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(SoftThinks - Dell) C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Creative Technology Ltd) C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
() C:\Program Files\Dell\Stage Remote\StageRemote.exe
(CyberLink Corp.) C:\Program Files\Cyberlink\PowerDVD9\PDVD9Serv.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
() C:\Program Files\Lexmark 2600 Series\lxdnmon.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
() C:\Program Files\Dell\Stage Remote\StageRemoteService.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
() C:\Program Files\Lexmark 2600 Series\lxdnmsdmon.exe
() C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nero AG) C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(ooVoo LLC) C:\Program Files\ooVoo\ooVoo.exe
(Softline Pastel Payroll) C:\Program Files\Softline Pastel\Connected Services\SageCSClient.exe
(Dell) C:\Users\The Shorts\AppData\Local\Apps\2.0\WXYWT1P3.XZB\563BEKJO.PHX\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\w32x86\3\NetFaxTray.exe
(Pervasive Software Inc.) C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe
(Dropbox, Inc.) C:\Users\The Shorts\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
(Verbatim) C:\Program Files\Verbatim\GREEN BUTTON\GREEN BUTTON.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_223_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Dell Webcam Central] => C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [501104 2011-03-29] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3405168 2011-03-24] (Dell Inc.)
HKLM\...\Run: [RoxWatchTray] => c:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM\...\Run: [Desktop Disc Tool] => c:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM\...\Run: [Stage Remote] => C:\Program Files\Dell\Stage Remote\StageRemote.exe [2022976 2011-06-28] ()
HKLM\...\Run: [RemoteControl9] => C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink Corp.)
HKLM\...\Run: [PDVD9LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM\...\Run: [Dell DataSafe Online] => C:\Program Files\Dell\Dell Datasafe Online\NOBuClient.exe [927576 2010-08-26] (Dell, Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [1278064 2013-03-13] (McAfee, Inc.)
HKLM\...\Run: [AccuWeatherWidget] => C:\Program Files\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [968048 2012-02-01] ()
HKLM\...\Run: [DellStage] => C:\Program Files\Dell Stage\Dell Stage\stage_primary.exe [2195824 2012-02-01] ()
HKLM\...\Run: [lxdnmon.exe] => C:\Program Files\Lexmark 2600 Series\lxdnmon.exe [660136 2010-02-04] ()
HKLM\...\Run: [lxdnamon] => C:\Program Files\Lexmark 2600 Series\lxdnamon.exe [16040 2010-02-04] ()
HKLM\...\Run: [FaxCenterServer] => C:\Program Files\Lexmark Fax Solutions\fm3032.exe [320168 2010-02-04] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe [144784 2008-02-22] (Sun Microsystems, Inc.)
HKLM\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM\...\Run: [RIM PeerManager] => C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe [4254720 2013-04-18] (Research In Motion Limited)
HKLM\...\Run: [BtTray] => C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe [229888 2008-07-09] ()
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [350072 2012-03-09] ()
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-02] (AVAST Software)
HKLM\...\Run: [NBAgent] => C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-14] (Nero AG)
HKLM\...\Run: [MobileBroadband] => C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [279552 2011-07-14] (Vodafone)
HKLM\...\Run: [PCSuiteTrayApplication] => C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [271360 2007-06-18] (Nokia)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [1138783 2011-05-27] (IDT, Inc.)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Reader 10.0\Reader\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [ooVoo.exe] => C:\Program Files\ooVoo\oovoo.exe [34929728 2013-05-01] (ooVoo LLC)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [SDP] => C:\Users\The Shorts\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [Payroll Notification Service] => C:\Program Files\Softline Pastel\Connected Services\SageCSClient.exe [838744 2012-10-16] (Softline Pastel Payroll)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [Yahoo! Search] => C:\Users\The Shorts\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe [535472 2014-06-29] ()
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Run: [DellSystemDetect] => C:\Users\The Shorts\AppData\Local\Apps\2.0\WXYWT1P3.XZB\563BEKJO.PHX\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe [264488 2014-11-08] (Dell)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: E - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: F - F:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: G - G:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {0d7ec8ad-cb8f-11e1-bf6c-24b6fd595849} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {10656923-8ab2-11e3-bfb6-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {13063555-4f76-11e3-8fd1-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {2224d924-03aa-11e2-a32e-e006e66be937} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {32c69062-2ad5-11e4-a98e-806e6f6e6963} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {349ebe36-2b86-11e4-b87e-001f81000830} - F:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {a45ba152-14eb-11e4-96cd-001f81000830} - E:\AutoRun.exe
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {a45ba15a-14eb-11e4-96cd-001f81000830} - E:\AutoRun.exe
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {ac8cc826-e4d1-11e3-96d7-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {bae0e120-e054-11e1-9c75-24b6fd595849} - G:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {c26c61f9-59cf-11e3-b35b-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {c26c61fb-59cf-11e3-b35b-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {c8643afe-20ca-11e4-82e2-806e6f6e6963} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {deb700a9-e3d1-11e3-97c9-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\MountPoints2: {fa03196c-c3ec-11e3-9722-001f81000830} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-18\...\Run: [Nokia.PCSync] => C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe [1241088 2007-06-19] (Time Information Services Ltd.)
AppInit_DLLs: C:\PROGRA~2\Wincert\WIN32C~1.DLL => C:\ProgramData\Wincert\win32cert.dll [7168 2012-12-20] ()
AppInit_DLLs:  c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll => c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\NetFaxTray.exe (Samsung Electronics Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Pervasive PSQL Workgroup Engine.lnk
ShortcutTarget: Start Pervasive PSQL Workgroup Engine.lnk -> C:\Windows\Installer\{0A3238D7-AB32-1010-B717-F3E3F18B4A8C}\WGE.14A03FCD_EA43_4130_A5C0_F02D38895A13.exe ()
Startup: C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\The Shorts\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk
ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files\Verbatim\GREEN BUTTON\GREEN BUTTON.exe (Verbatim)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
CHR HKU\S-1-5-21-372935575-2588982572-1376958264-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://howzit.msn.com/
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2A560DFC01B4CF01
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ZA
HKU\S-1-5-21-372935575-2588982572-1376958264-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.za/
SearchScopes: HKLM -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=ZA&userid=ad4b160e-2830-16ea-2a48-a24b34a1e33f&searchtype=ds&q={searchTerms}&installDate=30/07/2013
SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=ZA&userid=ad4b160e-2830-16ea-2a48-a24b34a1e33f&searchtype=ds&q={searchTerms}&installDate=30/07/2013
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120715084343.dll (McAfee, Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: delta Helper Object -> {C1AF5FA5-852C-4C90-812E-A7F75E011D87} -> C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll ()
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll ()
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKU\S-1-5-21-372935575-2588982572-1376958264-1000 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{9372C132-B18A-41CA-983A-83DC1B337F11}: [NameServer] 196.43.53.190 196.43.54.190
FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-372935575-2588982572-1376958264-1000: @tightropeinteractive.com/Plugin -> C:\Users\The Shorts\AppData\Local\TNT2\2.0.0.1534\npTNT2.dll ()
FF Plugin HKU\S-1-5-21-372935575-2588982572-1376958264-1000: @tnt2ghost.com/Plugin -> C:\Users\The Shorts\AppData\Local\TNT2\2.0.0.1534\npTNT2ghost.dll ()
FF HKLM\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files\Common Files\McAfee\SystemCore
FF Extension: McAfee ScriptScan for Firefox - C:\Program Files\Common Files\McAfee\SystemCore [2012-06-25]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-07-11]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2012-06-25]
FF HKU\S-1-5-21-372935575-2588982572-1376958264-1000\...\Firefox\Extensions: [{58bd07eb-0ee0-4df0-8121-dc9b693373df}] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gnnabbonolmdccgncgckdfikehphiknc] - C:\Users\The Shorts\AppData\Roaming\CRDeltaTB\DeltaYHS.crx [2013-01-21]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-30]
CHR HKLM\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files\TornTV.com\torn11.crx [2014-11-30]
CHR HKLM\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\The Shorts\AppData\Local\Torch\Plugins\TorchPlugin.crx [2014-11-30]
CHR HKLM\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx [2014-11-30]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-02] (AVAST Software)
R3 BlackBerry Device Manager; C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [585728 2013-02-06] (Research In Motion Limited) [File not signed]
R2 BlueSoleilCS; C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [775168 2008-07-09] () [File not signed]
R3 BsHelpCS; C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe [69735 2008-06-04] () [File not signed]
R2 BsMobileCS; C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe [143467 2008-06-04] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 DellDigitalDelivery; C:\Program Files\Dell Digital Delivery\DeliveryService.exe [202248 2014-04-10] (Dell Products, LP.)
R2 IronTreeDL; C:\Program Files\Pastel IronTree\a5backup.exe [163840 2010-03-02] (Attix5 Development (Pty) Ltd) [File not signed]
S2 lxdnCATSCustConnectService; C:\windows\system32\spool\DRIVERS\W32X86\3\\lxdnserv.exe [94208 2009-04-28] (Lexmark International, Inc.)
R2 lxdn_device; C:\windows\system32\lxdncoms.exe [589824 2007-11-28] ( )
S3 McAWFwk; c:\Program Files\McAfee\msc\McAWFwk.exe [203080 2011-03-09] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [279048 2012-11-16] (McAfee, Inc.)
S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [203840 2013-02-19] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169320 2013-02-19] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [172416 2013-02-19] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 NOBU; C:\Program Files\Dell\Dell Datasafe Online\NOBuAgent.exe [2075480 2010-08-26] (Dell, Inc.)
R2 RIM MDNS; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [388096 2013-04-18] (Apple Inc.) [File not signed]
R2 RIM Tunnel Service; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1235456 2013-04-18] (Research In Motion Limited) [File not signed]
S3 RoxMediaDB12OEM; c:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [1116656 2010-11-25] (Sonic Solutions)
S2 RoxWatch12; c:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [219632 2010-11-25] (Sonic Solutions)
R2 Samsung Network Fax Server; C:\windows\system32\spool\drivers\w32x86\3\NetFaxServer.exe [379952 2013-07-01] (Samsung Electronics Co., Ltd.)
S4 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [300544 2007-06-15] (Nokia.) [File not signed]
R2 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [1695040 2012-02-16] (SoftThinks SAS)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [282709 2011-05-27] (IDT, Inc.)
S2 Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-08-02] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-08-02] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-08-02] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-08-02] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [779536 2014-11-27] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [414520 2014-08-02] (AVAST Software)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [71944 2014-08-02] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [192352 2014-08-02] ()
R3 BT; C:\windows\System32\DRIVERS\btnetdrv.sys [14600 2008-01-21] (IVT Corporation.)
S3 Btcsrusb; C:\windows\System32\Drivers\btcusb.sys [38920 2008-03-06] (IVT Corporation.)
R0 BtHidBus; C:\windows\System32\Drivers\BtHidBus.sys [21512 2008-01-21] (IVT Corporation.)
R3 cfwids; C:\windows\System32\drivers\cfwids.sys [60920 2013-02-19] (McAfee, Inc.)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [146872 2012-04-20] (McAfee, Inc.)
R3 IvtBtBUs; C:\windows\System32\Drivers\IvtBtBus.sys [26248 2008-01-21] (IVT Corporation.)
R3 MBAMSwissArmy; C:\windows\system32\drivers\mbamswissarmy.sys [40776 2014-12-02] (Malwarebytes Corporation)
R3 MEI; C:\windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 mfeapfk; C:\windows\System32\drivers\mfeapfk.sys [133416 2013-02-19] (McAfee, Inc.)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [235264 2013-02-19] (McAfee, Inc.)
S3 mfebopk; C:\windows\System32\drivers\mfebopk.sys [65928 2013-02-19] (McAfee, Inc.)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [363080 2013-02-19] (McAfee, Inc.)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [565888 2013-02-19] (McAfee, Inc.)
S3 mferkdet; C:\windows\System32\drivers\mferkdet.sys [92632 2013-02-19] (McAfee, Inc.)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [210608 2013-02-19] (McAfee, Inc.)
R3 rimvndis; C:\windows\System32\Drivers\rimvndis6.sys [14848 2013-04-18] (Research in Motion Limited)
R2 SSPORT; C:\windows\system32\Drivers\SSPORT.sys [5120 2013-04-10] (Samsung Electronics) [File not signed]
S3 VComm; C:\windows\System32\DRIVERS\VComm.sys [14856 2008-01-21] (IVT Corporation.)
R3 VcommMgr; C:\windows\System32\Drivers\VcommMgr.sys [29960 2008-01-21] (IVT Corporation.)
R3 vodafone_K3805-z_dc_enum; C:\windows\System32\DRIVERS\vodafone_K3805-z_dc_enum.sys [61952 2010-09-01] (Vodafone)
R3 vodafone_zte_cdc_acm; C:\windows\System32\DRIVERS\vodafone_zte_cdc_acm.sys [67968 2011-05-20] (Vodafone)
R3 vodafone_zte_cdc_ecm; C:\windows\System32\DRIVERS\vodafone_zte_cdc_ecm.sys [52224 2011-05-20] (Vodafone)
S3 vodafone_zte_cpo; C:\windows\System32\DRIVERS\vodafone_zte_cpo.sys [9984 2011-05-20] (Vodafone)
R3 vodafone_zte_ecm_enum; C:\windows\System32\DRIVERS\vodafone_zte_ecm_enum.sys [47488 2011-05-20] (Vodafone)
R3 vodafone_zte_ecm_enum_filter; C:\windows\System32\DRIVERS\vodafone_zte_ecm_enum_filter.sys [47488 2011-05-20] (Vodafone)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33800 2008-03-06] (IVT Corporation.)
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
U3 mfeavfk01; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-02 16:54 - 2014-12-02 16:55 - 00000000 ____D () C:\FRST
2014-12-02 16:40 - 2014-12-02 16:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-12-02 12:41 - 2014-12-02 12:41 - 00002007 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-12-02 12:41 - 2014-12-02 12:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2014-12-02 12:41 - 2014-08-02 13:49 - 00276432 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-12-01 20:42 - 2014-12-02 22:32 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-11-20 09:57 - 2014-11-11 04:44 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-11-20 09:57 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2014-11-20 09:45 - 2014-11-20 09:45 - 00000000 __SHD () C:\Users\The Shorts\AppData\Local\EmieBrowserModeList
2014-11-18 14:19 - 2014-11-18 14:19 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\WEB2Print
2014-11-17 17:04 - 2014-11-17 17:10 - 00000000 ____D () C:\Users\The Shorts\Documents\SARS 2014
2014-11-17 17:01 - 2014-10-18 03:33 - 00571904 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2014-11-17 17:01 - 2014-10-14 03:50 - 02363904 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-11-17 17:01 - 2014-08-12 03:36 - 00701440 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL
2014-11-17 17:00 - 2014-10-10 02:45 - 02379264 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-11-17 17:00 - 2014-10-03 03:44 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2014-11-17 17:00 - 2014-10-03 03:44 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2014-11-17 17:00 - 2014-09-19 11:23 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-11-17 17:00 - 2014-08-21 08:26 - 01237504 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-11-17 17:00 - 2014-08-21 08:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-11-17 16:59 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-11-17 16:59 - 2014-09-19 11:23 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-11-17 16:58 - 2014-10-14 03:56 - 00136632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-11-17 16:58 - 2014-10-14 03:50 - 01059840 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-11-17 16:58 - 2014-10-14 03:50 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2014-11-17 16:58 - 2014-10-14 03:47 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2014-11-17 16:58 - 2014-10-14 03:46 - 00681984 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2014-11-17 16:57 - 2014-11-07 21:23 - 00341168 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-11-17 16:57 - 2014-11-06 05:28 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-11-17 16:57 - 2014-11-06 05:28 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-11-17 16:57 - 2014-11-06 05:13 - 00501248 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-11-17 16:57 - 2014-11-06 05:13 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-11-17 16:57 - 2014-11-06 05:12 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-11-17 16:57 - 2014-11-06 05:10 - 19781632 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-11-17 16:57 - 2014-11-06 05:10 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-11-17 16:57 - 2014-11-06 05:05 - 02277376 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-11-17 16:57 - 2014-11-06 05:04 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-11-17 16:57 - 2014-11-06 05:03 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-11-17 16:57 - 2014-11-06 05:00 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-11-17 16:57 - 2014-11-06 04:59 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-11-17 16:57 - 2014-11-06 04:59 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-11-17 16:57 - 2014-11-06 04:58 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-11-17 16:57 - 2014-11-06 04:51 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-11-17 16:57 - 2014-11-06 04:48 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-11-17 16:57 - 2014-11-06 04:42 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-17 16:57 - 2014-11-06 04:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-11-17 16:57 - 2014-11-06 04:36 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-11-17 16:57 - 2014-11-06 04:34 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-11-17 16:57 - 2014-11-06 04:22 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-11-17 16:57 - 2014-11-06 04:22 - 00683008 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-11-17 16:57 - 2014-11-06 04:21 - 04298240 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-11-17 16:57 - 2014-11-06 04:21 - 02051072 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-11-17 16:57 - 2014-11-06 04:20 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-11-17 16:57 - 2014-11-06 04:03 - 12819456 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-11-17 16:57 - 2014-11-06 03:52 - 01892864 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-11-17 16:57 - 2014-11-06 03:48 - 01310208 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-11-17 16:57 - 2014-11-06 03:47 - 00708096 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-11-11 17:17 - 2011-05-27 21:06 - 04788224 _____ (IDT, Inc.) C:\windows\system32\stlang.dll
2014-11-11 17:17 - 2011-05-27 21:06 - 01488384 _____ (IDT, Inc.) C:\windows\system32\IDTNCPL.cpl
2014-11-11 17:17 - 2010-04-02 00:06 - 00139776 _____ (Andrea Electronics Corporation) C:\windows\system32\aestacap.dll
2014-11-11 17:17 - 2009-10-10 10:45 - 00380928 _____ (Andrea Electronics Corporation) C:\windows\system32\aestecap.dll
2014-11-11 17:17 - 2009-03-03 11:57 - 00061440 _____ (Andrea Electronics Corporation) C:\windows\system32\aestaren.dll
2014-11-11 17:17 - 2009-03-03 11:47 - 00086016 _____ (Andrea Electronics Corporation) C:\windows\system32\AESTCom.dll
2014-11-11 16:57 - 2014-12-02 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free FLV to AVI Converter
2014-11-11 16:57 - 2014-11-11 16:57 - 00001191 _____ () C:\Users\Public\Desktop\Pazera Free FLV to AVI Converter.lnk
2014-11-11 16:57 - 2014-11-11 16:57 - 00000000 ____D () C:\Program Files\pazera-software
2014-11-08 17:40 - 2014-11-08 17:40 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-11-08 17:37 - 2014-12-02 22:33 - 00000000 ____D () C:\Program Files\My Dell
2014-11-08 17:34 - 2014-12-02 22:32 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-11-08 17:24 - 2014-11-08 17:24 - 00000000 ____D () C:\Users\The Shorts\Documents\free-videoconverter
2014-11-08 17:24 - 2014-11-08 17:24 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\free-videoconverter
2014-11-08 17:23 - 2014-11-08 17:23 - 00002269 _____ () C:\Users\Public\Desktop\Free FLV to MP4 Converter.lnk
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\temp
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free-videoconverter
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\ProgramData\free-videoconverter
2014-11-08 17:23 - 2014-11-08 17:23 - 00000000 ____D () C:\Program Files\free-videoconverter
2014-11-08 17:17 - 2014-12-02 22:33 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-02 22:35 - 2014-05-21 20:18 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-12-02 22:35 - 2013-02-04 14:21 - 00000000 ____D () C:\Program Files\Windows Journal
2014-12-02 22:35 - 2012-05-23 02:30 - 00000000 ____D () C:\windows\WisTools
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-12-02 22:35 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\DVD Maker
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 __RSD () C:\windows\Media
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\ras
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\com
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\AdvancedInstallers
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\L2Schemas
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\IME
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\Cursors
2014-12-02 22:35 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-12-02 22:34 - 2012-06-25 01:50 - 00000000 ____D () C:\windows\system32\Macromed
2014-12-02 22:34 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\wfp
2014-12-02 22:33 - 2014-10-27 13:07 - 00000000 ___RD () C:\Program Files\Skype
2014-12-02 22:33 - 2014-10-27 13:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-12-02 22:33 - 2014-08-24 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia PC Suite
2014-12-02 22:33 - 2014-08-24 15:28 - 00000000 ____D () C:\Program Files\PC Connectivity Solution
2014-12-02 22:33 - 2014-08-24 14:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vodafone
2014-12-02 22:33 - 2014-08-09 19:51 - 00000000 ___RD () C:\Users\The Shorts\Desktop\Games
2014-12-02 22:33 - 2014-07-26 20:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Manager
2014-12-02 22:33 - 2014-06-29 09:31 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Pay-By-Ads
2014-12-02 22:33 - 2013-12-14 06:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-12-02 22:33 - 2013-12-14 06:51 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-12-02 22:33 - 2013-10-27 08:54 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2014-12-02 22:33 - 2013-10-27 08:18 - 00000000 ____D () C:\Program Files\SamsungPrinterLiveUpdate
2014-12-02 22:33 - 2013-10-24 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-12-02 22:33 - 2013-10-24 08:05 - 00000000 ____D () C:\Program Files\WinZip
2014-12-02 22:33 - 2013-09-06 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sage Connected Services
2014-12-02 22:33 - 2013-08-21 15:39 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\dvdcss
2014-12-02 22:33 - 2013-08-21 09:39 - 00000000 ____D () C:\Users\The Shorts\Documents\Inyaninga Bookkeeping Solutions
2014-12-02 22:33 - 2013-08-12 16:25 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\bluesoleil
2014-12-02 22:33 - 2013-08-12 15:08 - 00000000 ____D () C:\windows\Minidump
2014-12-02 22:33 - 2013-07-30 19:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-02 22:33 - 2013-07-30 19:41 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-12-02 22:33 - 2013-07-30 19:41 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\FilesFrog Update Checker
2014-12-02 22:33 - 2013-07-30 19:40 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\SeeSimilar
2014-12-02 22:33 - 2013-07-10 18:33 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\vlc
2014-12-02 22:33 - 2013-07-10 18:30 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\TNT2
2014-12-02 22:33 - 2013-06-23 13:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ooVoo
2014-12-02 22:33 - 2013-06-23 13:47 - 00000000 ____D () C:\Program Files\ooVoo
2014-12-02 22:33 - 2013-03-21 10:35 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\FFP
2014-12-02 22:33 - 2013-03-21 10:28 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\TFP
2014-12-02 22:33 - 2013-03-18 21:32 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-12-02 22:33 - 2013-03-14 18:41 - 00000000 ____D () C:\ProgramData\Wincert
2014-12-02 22:33 - 2013-02-21 17:17 - 00000000 ___RD () C:\Program Files\Pastel IronTree
2014-12-02 22:33 - 2013-02-21 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pastel IronTree
2014-12-02 22:33 - 2013-02-06 10:51 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
2014-12-02 22:33 - 2013-02-06 10:50 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Delta
2014-12-02 22:33 - 2013-02-06 10:48 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
2014-12-02 22:33 - 2013-02-04 13:45 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\BitTorrent
2014-12-02 22:33 - 2012-11-19 15:23 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Dell Edoc Viewer
2014-12-02 22:33 - 2012-11-08 15:27 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Malwarebytes
2014-12-02 22:33 - 2012-11-08 15:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-02 22:33 - 2012-11-08 15:26 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-12-02 22:33 - 2012-10-09 10:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-12-02 22:33 - 2012-08-30 20:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CollageIt
2014-12-02 22:33 - 2012-08-30 20:24 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Smilebox
2014-12-02 22:33 - 2012-08-25 09:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry
2014-12-02 22:33 - 2012-08-15 14:51 - 00000000 ____D () C:\ProgramData\Anti-phishing Domain Advisor
2014-12-02 22:33 - 2012-08-15 10:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpowerAMP Music Converter
2014-12-02 22:33 - 2012-08-10 07:47 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\FaxCtr
2014-12-02 22:33 - 2012-08-10 07:42 - 00000000 ____D () C:\ProgramData\Lx_cats
2014-12-02 22:33 - 2012-08-10 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark Fax Solutions
2014-12-02 22:33 - 2012-08-10 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
2014-12-02 22:33 - 2012-08-10 07:36 - 00000000 ____D () C:\Program Files\Lexmark Fax Solutions
2014-12-02 22:33 - 2012-08-10 07:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 2600 Series
2014-12-02 22:33 - 2012-08-10 07:33 - 00000000 ____D () C:\Program Files\Lexmark 2600 Series
2014-12-02 22:33 - 2012-08-06 13:13 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Microsoft Help
2014-12-02 22:33 - 2012-08-06 13:12 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-02 22:33 - 2012-08-06 12:27 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\MicrosoftStore
2014-12-02 22:33 - 2012-07-11 21:38 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-12-02 22:33 - 2012-07-11 21:34 - 00000000 ___RD () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2012-07-11 21:34 - 00000000 ___RD () C:\Users\The Shorts\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2012-06-25 02:40 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9.5
2014-12-02 22:33 - 2012-06-25 02:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
2014-12-02 22:33 - 2012-06-25 02:24 - 00000000 ____D () C:\ProgramData\McAfee
2014-12-02 22:33 - 2012-06-25 02:22 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-12-02 22:33 - 2012-06-25 02:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe Online
2014-12-02 22:33 - 2012-06-25 02:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-02 22:33 - 2012-06-25 02:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-02 22:33 - 2012-06-25 02:11 - 00000000 ____D () C:\ProgramData\WildTangent
2014-12-02 22:33 - 2012-06-25 02:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator Starter
2014-12-02 22:33 - 2012-06-25 02:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-12-02 22:33 - 2012-06-25 02:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Stage
2014-12-02 22:33 - 2012-06-25 01:49 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-12-02 22:33 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-02 22:33 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-12-02 22:32 - 2014-06-25 13:04 - 00000000 ____D () C:\Program Files\Dell Digital Delivery
2014-12-02 22:32 - 2014-03-23 17:17 - 00000000 ____D () C:\Program Files\e@syFile-employer
2014-12-02 22:32 - 2013-12-14 06:51 - 00000000 ____D () C:\Program Files\iTunes
2014-12-02 22:32 - 2013-12-14 06:48 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-12-02 22:32 - 2013-12-14 06:43 - 00000000 ____D () C:\Program Files\Bonjour
2014-12-02 22:32 - 2013-10-27 08:56 - 00000000 ____D () C:\Program Files\Common Files\Common Desktop Agent
2014-12-02 22:32 - 2013-10-24 08:15 - 00000000 ____D () C:\Program Files\Common Files\Sage SBD
2014-12-02 22:32 - 2013-09-06 08:55 - 00000000 ____D () C:\Program Files\Common Files\BIGenerator
2014-12-02 22:32 - 2013-02-21 17:21 - 00000000 ____D () C:\Binaries
2014-12-02 22:32 - 2013-02-21 17:19 - 00000000 ____D () C:\Program Files\Common Files\Softline Pastel
2014-12-02 22:32 - 2013-02-21 17:19 - 00000000 ____D () C:\Pastel11
2014-12-02 22:32 - 2013-02-21 17:18 - 00000000 ____D () C:\Program Files\Common Files\Bank Manager
2014-12-02 22:32 - 2012-11-07 08:53 - 00000000 ____D () C:\Program Files\GPLGS
2014-12-02 22:32 - 2012-08-30 20:45 - 00000000 ____D () C:\Program Files\CollageIt
2014-12-02 22:32 - 2012-08-10 07:36 - 00000000 ____D () C:\Program Files\Abbyy FineReader 6.0 Sprint
2014-12-02 22:32 - 2012-06-25 02:07 - 00000000 ____D () C:\Program Files\Common Files\SureThing Shared
2014-12-02 22:32 - 2012-06-25 02:05 - 00000000 ____D () C:\Program Files\Common Files\PX Storage Engine
2014-12-02 22:32 - 2012-06-25 02:04 - 00000000 ____D () C:\Program Files\Dell Games Folder
2014-12-02 22:32 - 2012-06-25 02:02 - 00000000 ____D () C:\Program Files\eBay
2014-12-02 22:32 - 2012-06-25 01:52 - 00000000 ____D () C:\Program Files\IDT
2014-12-02 22:32 - 2012-06-25 01:52 - 00000000 ____D () C:\Program Files\DellTPad
2014-12-02 22:28 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\registration
2014-12-02 22:05 - 2013-02-06 10:51 - 00000000 ____D () C:\Program Files\Delta
2014-12-02 16:51 - 2013-03-18 21:35 - 00000000 ___RD () C:\Users\The Shorts\Dropbox
2014-12-02 16:51 - 2013-03-18 21:31 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Dropbox
2014-12-02 16:49 - 2014-08-24 12:02 - 00040776 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamswissarmy.sys
2014-12-02 16:45 - 2012-06-25 01:50 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-12-02 16:38 - 2012-06-25 02:06 - 00000000 ____D () C:\ProgramData\Sonic
2014-12-02 16:37 - 2012-06-25 02:40 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-12-02 16:37 - 2012-06-25 02:40 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-12-02 16:37 - 2012-06-25 02:28 - 00000000 ____D () C:\Program Files\Dell DataSafe Local Backup
2014-12-02 16:36 - 2013-07-30 20:22 - 00000376 _____ () C:\windows\Tasks\LyricsViewer Update.job
2014-12-02 16:36 - 2012-06-25 01:42 - 01176481 _____ () C:\windows\WindowsUpdate.log
2014-12-02 16:20 - 2009-07-14 06:34 - 00024720 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-02 16:20 - 2009-07-14 06:34 - 00024720 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-02 16:13 - 2008-07-09 20:51 - 00000980 _____ () C:\windows\system32\bscs.ini
2014-12-02 16:12 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-12-02 16:12 - 2009-07-14 06:39 - 00191325 _____ () C:\windows\setupact.log
2014-12-02 14:30 - 2012-07-11 21:40 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\{EBB94E3B-3BF9-4353-8238-02E9637A682C}
2014-12-02 12:52 - 2012-07-11 21:34 - 00000000 ____D () C:\Users\The Shorts
2014-12-01 18:35 - 2014-10-23 18:43 - 00000000 ____D () C:\Users\The Shorts\Desktop\Kaelin-9 days
2014-11-27 13:13 - 2012-07-11 22:00 - 00779536 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2014-11-18 16:23 - 2009-07-14 06:33 - 00458336 _____ () C:\windows\system32\FNTCACHE.DAT
2014-11-18 15:11 - 2012-07-11 21:34 - 00127840 _____ () C:\Users\The Shorts\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-18 14:01 - 2013-07-12 22:40 - 00000000 ____D () C:\windows\system32\MRT
2014-11-18 13:44 - 2012-08-11 09:55 - 100445232 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-11-17 17:06 - 2012-11-07 08:54 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\CutePDF Writer
2014-11-17 16:48 - 2013-03-18 21:35 - 00001040 _____ () C:\Users\The Shorts\Desktop\Dropbox.lnk
2014-11-17 16:47 - 2012-06-25 01:50 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-11-17 16:47 - 2012-06-25 01:50 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-11-13 14:45 - 2012-07-11 21:53 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\Skype
2014-11-12 15:31 - 2010-11-20 23:48 - 00321854 _____ () C:\windows\PFRO.log
2014-11-11 17:10 - 2012-08-27 09:55 - 00000000 ____D () C:\Users\The Shorts\AppData\Local\Deployment
2014-11-11 17:00 - 2013-03-26 20:06 - 00000000 ____D () C:\Users\The Shorts\Desktop\Cartoons
2014-11-09 14:33 - 2012-11-19 14:27 - 00000000 ____D () C:\Users\The Shorts\AppData\Roaming\PCDr
2014-11-08 17:37 - 2012-11-19 14:25 - 00000000 ____D () C:\ProgramData\PCDr
2014-11-07 14:03 - 2014-10-24 20:28 - 00000000 ____D () C:\Users\The Shorts\Desktop\Geveshan
2014-11-07 13:44 - 2014-09-06 22:39 - 00000000 ____D () C:\Users\The Shorts\Desktop\priya's baby shower
2014-11-06 16:16 - 2010-11-20 23:01 - 00782470 _____ () C:\windows\system32\PerfStringBackup.INI
Some content of TEMP:
====================
C:\Users\The Shorts\AppData\Local\Temp\9F3C.exe
C:\Users\The Shorts\AppData\Local\Temp\AdobeAIRInstaller.exe
C:\Users\The Shorts\AppData\Local\Temp\AskSLib.exe
C:\Users\The Shorts\AppData\Local\Temp\BlackBerryDeviceManager.exe
C:\Users\The Shorts\AppData\Local\Temp\BlackBerryLauncher.exe
C:\Users\The Shorts\AppData\Local\Temp\CC8SuC.exe
C:\Users\The Shorts\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpoq4yfm.dll
C:\Users\The Shorts\AppData\Local\Temp\dsrlte.exe
C:\Users\The Shorts\AppData\Local\Temp\easyFile-employer.exe
C:\Users\The Shorts\AppData\Local\Temp\FF0Et.exe
C:\Users\The Shorts\AppData\Local\Temp\htmlayout.dll
C:\Users\The Shorts\AppData\Local\Temp\Installhelper.dll
C:\Users\The Shorts\AppData\Local\Temp\isutldll.dll
C:\Users\The Shorts\AppData\Local\Temp\iXf2rb.exe
C:\Users\The Shorts\AppData\Local\Temp\jre-7u21-windows-i586-iftw_fd432d6c.exe
C:\Users\The Shorts\AppData\Local\Temp\jre-7u45-windows-i586-iftw_39ebb5f7.exe
C:\Users\The Shorts\AppData\Local\Temp\offercast.exe
C:\Users\The Shorts\AppData\Local\Temp\ose00000.exe
C:\Users\The Shorts\AppData\Local\Temp\SkypeSetup.exe
C:\Users\The Shorts\AppData\Local\Temp\SRAssetsHelper.dll
C:\Users\The Shorts\AppData\Local\Temp\utt9B40.tmp.exe
C:\Users\The Shorts\AppData\Local\Temp\vlc-2.0.2-win32.exe
C:\Users\The Shorts\AppData\Local\Temp\wympHC.exe
C:\Users\The Shorts\AppData\Local\Temp\{09B000F9-8FBF-4418-8507-54D9884A90BC}-31.0.1650.63_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{6CD04489-A46C-43D1-8798-7BFAFF84F2A4}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{71AECBCB-5438-41D8-ABF8-D62B9E370229}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{7C3F1099-5238-4908-807D-376F67AF808E}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{8CF9C98D-BFFA-43E2-8C4E-B6BB786346EC}-31.0.1650.57_chrome_installer.exe
C:\Users\The Shorts\AppData\Local\Temp\{BEEEF170-6995-4F32-810B-83A3185981BC}-31.0.1650.57_30.0.1599.101_chrome_updater.exe
C:\Users\The Shorts\AppData\Local\Temp\{DE5D3ABD-9EA4-445F-B165-D1A677600DC2}-31.0.1650.57_chrome_installer.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2012-11-22 18:37
==================== End Of Log ============================



#5 PriyaS

PriyaS
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:53 AM

Posted 09 December 2014 - 08:07 AM

How do I attach the "addition" log file???



#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 09 December 2014 - 08:30 AM

Hi,

 

Select More Reply Options and next click on the Choose Files button:

 

http://i.imgur.com/3A7k8eC.png

 

http://i.imgur.com/5XjvN55.png

 

Browser for the Addition.txt and select it. :)

 

Then hit the Add Reply button.

 

 

Regards,

Georgi

 


cXfZ4wS.png


#7 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 12 December 2014 - 05:05 AM

Hi,

 

Are you still around?

 

 

Regards,

Georgi


cXfZ4wS.png


#8 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 14 December 2014 - 04:16 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

cXfZ4wS.png


#9 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 17 December 2014 - 04:30 AM

This topic has been re-opened at the request of the person who originally posted.

cXfZ4wS.png


#10 PriyaS

PriyaS
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:53 AM

Posted 17 December 2014 - 12:31 PM

Hi,

 

Please find the addition file attached.

 

Thanks.

 

Regards,

PriyaS

Attached Files



#11 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 17 December 2014 - 06:12 PM

Hi,

 

 

I do not recommend that you have more than one anti virus product installed and running on your computer at a time.  The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms".  It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:
1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.
Therefore please go to add/remove in the control panel and remove either McAfee Anti-Virus and Anti-Spyware or avast! Antivirus.

 

Please go ahead and uninstall the following programs from the Control Panel:

 

BrowserProtect

Bundled software uninstaller

Delta
Delta toolbar

FilesFrog Update Checker

Search.us.com
Updater Service

Yahoo! Search

 

 

Next please download the following file => and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

 

 

Regards,

Georgi


Edited by B-boy/StyLe/, 17 December 2014 - 06:12 PM.
typo.

cXfZ4wS.png


#12 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 21 December 2014 - 10:46 AM

Hi,

 

Are you still around?

 

 

Regards,

Georgi


cXfZ4wS.png


#13 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:53 AM

Posted 24 December 2014 - 03:09 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

cXfZ4wS.png





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users