Jump to content

ADubois

Members
  • Content Count

    146
  • Joined

  • Last visited

About ADubois

  • Rank
    Member

Previous Fields

  • System Specifications:
    Dell Dimension T500, Win 2K, HD#1 20GB #2 120GB, DVD Drive, CD R-RW
  1. Well great I think we've got it. Again thank you very much. Take care ADubois
  2. These programs you mentioned above are compatible to run together? They play nice with one another?
  3. I haven't been able to use this computer much the last couple days as I've been quite busy. However it appears to be working very good. It moves along quickly. No more pop up messages at all. The time and effort you folks here give us not so savy computer people is very much appreciated. Thank you very much.
  4. Ok it seems to be working with just the 32 bit version. And as best as I can tell everything is working good.
  5. Well I followed the above instructions and the download showed successful. So I clicked on the link for disabling the plugins. I tried to follow the instructions but when I go to the plugings tab Java didn't show up. I thought the download didn't go the way it was supposed to so I clicked on the download to download it again it says it is installed. On Java's site there is a test it say's Java is not working I need a plugin but not knowing what it really is I didn't click on it to find out. It's not working on Chrome or IE either. After the install it had the administrator shield on the Java download on my desktop. Not sure what to do?
  6. The new version of Adobe Reader from the link above is installed. As for the Java I'm not sure what I use on this machine that I need it. Nor my wife. But my son does use it. Is there a way to use it more safely. We 99.99% of the time use Firefox. Is there a way to allow one site with Java or maybe use another browser that people aren't messing with that I can set my son up on for that application?
  7. That was the complete and only log there. So I ran the scan again and it produced a complete log this time. ESETSmartInstaller@High as CAB hook log:OnlineScanner64.ocx - registred OKOnlineScanner.ocx - registred OKESETSmartInstaller@High as downloader log:all okESETSmartInstaller@High as downloader log:all ok# version=8# OnlineScannerApp.exe=1.0.0.1# OnlineScanner.ocx=1.0.0.6920# api_version=3.0.2# EOSSerial=7bafbc0c038312429c50d7e786de6732# engine=15141# end=finished# remove_checked=false# archives_checked=true# unwanted_checked=true# unsafe_checked=true# antistealth_checked=true# utc_time=2013-09-15 07:20:05# local_time=2013-09-15 12:20:05 (-0800, Pacific Daylight Time)# country="United States"# lang=1033# osver=6.1.7601 NT Service Pack 1# compatibility_mode=5893 16776574 66 85 4726492 130816255 0 0# scanned=156390# found=18# cleaned=0# scan_time=2573sh=C52C30CF64DEE98F964B9FF3502D389115E4DCAE ft=1 fh=aefa735fcc2a5aa9 vn="a variant of MSIL/AdvancedSystemProtector.B application" ac=I fn="C:AdwCleanerQuarantineCProgram Files (x86)Advanced System ProtectorAdvancedSystemProtector.exe.vir"sh=D6E64E17033E6D5B3A39274A908500EF10133805 ft=1 fh=66a249e1dfddf75c vn="a variant of MSIL/AdvancedSystemProtector.B application" ac=I fn="C:AdwCleanerQuarantineCProgram Files (x86)Advanced System ProtectorAspManager.exe.vir"sh=65300E119D5CD84D8619E0739FCCD11AD91746F0 ft=1 fh=0d4f51f4dd946221 vn="a variant of MSIL/AdvancedSystemProtector.B application" ac=I fn="C:AdwCleanerQuarantineCProgram Files (x86)Advanced System Protectorfiletypehelper.exe.vir"sh=1C6EAEBDF66762FF9FF29EB6B282B18753F16F98 ft=1 fh=fb1fd2e408fbda99 vn="a variant of MSIL/AdvancedSystemProtector.B application" ac=I fn="C:AdwCleanerQuarantineCProgram Files (x86)Advanced System Protectorscandll.dll.vir"sh=B1CF6E1D2CC7797C9CCD51E781DBEF3A1ACA74C8 ft=1 fh=e90057d45239714d vn="a variant of Win32/Toolbar.DefaultTab.B application" ac=I fn="C:AdwCleanerQuarantineCProgram Files (x86)DefaultTabDefaultTabSearch.exe.vir"sh=9F82BB5DC8D4EC6B8B2BB47CB6C329B8AF1C14CE ft=1 fh=c92ed1f3ca58c043 vn="a variant of Win32/InstallCore.AZ application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoaming0D0S1L2Z1P1B0T1P1B2ZZip Opener Packagesuninstaller.exe.vir"sh=806043854DBA08409D093C986B3208A5D4A512BA ft=1 fh=d6daed42d6889765 vn="Win32/Toolbar.DefaultTab.A application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDefaultTabDefaultTabDefaultTabBHO.dll.vir"sh=EBE113C41976B63D9645B60AF83CC8487555950D ft=1 fh=75c1fb4d2ef4de76 vn="Win32/Toolbar.DefaultTab.A application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDefaultTabDefaultTabDefaultTabStart.exe.vir"sh=9BAF667499AA6AD943B26B82408C69BDF9D2D942 ft=1 fh=e046ea995fe5496f vn="Win64/Toolbar.DefaultTab.A application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDefaultTabDefaultTabDefaultTabStart64.exe.vir"sh=60DF417037197BB71547FC35CAC95C41F428D418 ft=1 fh=44d029b316bd3b56 vn="Win32/Toolbar.DefaultTab.A application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDefaultTabDefaultTabDefaultTabWrap.dll.vir"sh=DB07648D185FE4A0448EDD08B409A3E90AE86B91 ft=1 fh=a325f42d455d8a90 vn="Win64/Toolbar.DefaultTab.A application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDefaultTabDefaultTabDefaultTabWrap64.dll.vir"sh=EA111903F48C1CB7FE5056509351A88EFE85114F ft=1 fh=0f73ddfd31d1def0 vn="Win32/Toolbar.DefaultTab.A application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDefaultTabDefaultTabDTUpdate.exe.vir"sh=84D231BD285FB6E1BC20F82BC6261C1507675C17 ft=1 fh=a053084764085b12 vn="a variant of Win32/DealPly.F application" ac=I fn="C:AdwCleanerQuarantineCUsersDuboisAppDataRoamingDSiteUpdateProcUpdateTask.exe.vir"sh=93510E07EBD463BE51052EC8114EC16C5423103E ft=0 fh=0000000000000000 vn="Win32/Conduit.SearchProtect.A application" ac=I fn="C:Program Files (x86)Mozilla Firefoxbrowsernsprotector.js"sh=BD90BDF00F1C7CA48D179A2D9D3DDB585F9265E7 ft=1 fh=c3086fd4c8245590 vn="Win32/InstallCore.BL application" ac=I fn="C:UsersDuboisDownloadsmalwarebytes-anti-malware_setup.exe"sh=8CA68B0A2FAFE1E6B44934E780C66C51D8F67ACA ft=1 fh=d0fcd47ba1539eb0 vn="a variant of MSIL/BrowseFox.A application" ac=I fn="C:_OTLMovedFiles09122013_225619C_Program Files (x86)Web LayersupdateWebLayers.exe"sh=3973C1C721C34E035E5A55030EDB675688A09BDE ft=1 fh=8473fd54aa244086 vn="a variant of MSIL/BrowseFox.A application" ac=I fn="C:_OTLMovedFiles09122013_225619C_Program Files (x86)Web LayersWebLayers.Common.dll"sh=580E74BAEC15BC6D64438E4435D95B0F8A63E336 ft=1 fh=7d7d41c38ca4a0f6 vn="a variant of MSIL/Adware.StrongVault.A application" ac=I fn="C:_OTLMovedFiles09122013_225619C_UsersDuboisAppDataLocalSevereWeatherAlertsSevereWeatherAlertsApp.exe"
  8. ESETSmartInstaller@High as CAB hook log:OnlineScanner64.ocx - registred OKOnlineScanner.ocx - registred OK
  9. I've not spent a lot of time browsing the net but it usually pops up with that message rather quickly. It's not done that at all. I'm not seeing any issues, things seem to be working good. Thank you so much. Do you have a thought on what program this gorilla price came into my computer on? Any when we're done maybe a thuoght of what program I may use to help prevent this from happening again? The only thing (tools wise) that I've had running is Avast. Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-09-2013 04Ran by Dubois at 2013-09-14 05:47:42 Run:1Running from C:UsersDuboisDesktopBoot Mode: Normal==============================================Content of fixlist:*****************StartSearchScopes: HKLM - DefaultScope value is missing.BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program Files (x86)Javajre6binjp2ssv.dll No FileCHR HKLM-x32...ChromeExtension: [ghdomkkcnldpmfcefiaaahchgoinofkb] - C:Program Files (x86)Web Layersghdomkkcnldpmfcefiaaahchgoinofkb.crxCHR HKLM-x32...ChromeExtension: [pkhojieggfgllhllcegoffdcnmdeojgb] - C:Program Files (x86)IminentToolbar1.8.25.0iminent.crxS2 vToolbarUpdater15.4.0; C:Program Files (x86)Common FilesAVG Secure SearchvToolbarUpdater15.4.0ToolbarUpdater.exe [x]S2 WatGorp; C:ProgramDataGorillaPricewatgorp.exe -service [x]S1 avgtp; ??C:Windowssystem32driversavgtpx64.sys [x]2013-08-31 16:11 - 2013-08-31 16:11 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(2).exe2013-08-31 15:59 - 2013-08-31 15:59 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(1).exe2013-08-31 15:55 - 2013-08-31 15:55 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File.exe2013-08-28 07:15 - 2013-08-28 07:15 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(18).exe2013-08-24 11:38 - 2013-08-24 11:38 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(17).exe2013-08-19 18:03 - 2013-08-19 18:03 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(16).exe2013-08-17 13:56 - 2013-08-17 13:56 - 00482680 _____ (My Company) C:UsersDuboisDownloadsSetup.exe2013-08-16 17:51 - 2013-08-16 17:51 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(15).exe2013-08-14 09:29 - 2013-08-14 09:30 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(14).exe2013-09-12 07:45 - 2013-09-12 07:45 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(19).exe2013-09-07 23:57 - 2013-09-07 23:57 - 00003326 _____ C:WindowsSystem32TasksAdvanced System Protector2013-09-07 23:57 - 2013-09-07 23:57 - 00003108 _____ C:WindowsSystem32TasksRegClean ProReg: reg delete "HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallMyPC Backup" /FReg: reg delete "HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallWeb Layers" /FEnd*****************HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopesDefaultScope => Value was restored successfully.HKLMSOFTWAREWow6432NodeMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.HKCRWow6432NodeCLSID{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.vToolbarUpdater15.4.0 => Service deleted successfully.WatGorp => Service deleted successfully.avgtp => Service deleted successfully.C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(2).exe => Moved successfully.C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(1).exe => Moved successfully.C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File.exe => Moved successfully.C:UsersDuboisDownloadsMinecraft(18).exe => Moved successfully.C:UsersDuboisDownloadsMinecraft(17).exe => Moved successfully.C:UsersDuboisDownloadsMinecraft(16).exe => Moved successfully.C:UsersDuboisDownloadsSetup.exe => Moved successfully.C:UsersDuboisDownloadsMinecraft(15).exe => Moved successfully.C:UsersDuboisDownloadsMinecraft(14).exe => Moved successfully.C:UsersDuboisDownloadsMinecraft(19).exe => Moved successfully.C:WindowsSystem32TasksAdvanced System Protector => Moved successfully.C:WindowsSystem32TasksRegClean Pro => Moved successfully.========= reg delete "HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallMyPC Backup" /F =========The operation completed successfully.========= End of Reg: ================== reg delete "HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallWeb Layers" /F =========The operation completed successfully.========= End of Reg: ============= End of Fixlog ====
  10. This doesn't come up right. When I click on the fix button is says no fixlist found. Do you want me to paste the fixlist.txt that I downloaded into the FRST.ext then click fix?
  11. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-09-2013Ran by Dubois at 2013-09-13 06:39:16Running from C:UsersDuboisDesktopBoot Mode: Normal============================================================================== Installed Programs =======================Acrobat.com (x32 Version: 1.6.65)Adobe AIR (x32 Version: 1.5.0.7220)Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.168)Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)AI Manager (x32 Version: 1.08.06)Apple Application Support (x32 Version: 2.3)Apple Software Update (x32 Version: 2.1.3.127)ASUSUpdate (x32)avast! Free Antivirus (x32 Version: 8.0.1489.0)Bing Bar (x32 Version: 7.0.609.0)BurnAware Free 5.4 (x32)Camera Window (x32 Version: 4.1)Canon Camera Window for ZoomBrowser EX (x32 Version: 4.1)Canon PhotoRecord (x32)Canon Utilities File Viewer Utility 1.2 (x32 Version: 1.2)Canon Utilities PhotoStitch 3.1 (x32 Version: 3.1.9)Canon Utilities RemoteCapture 2.7 (x32 Version: 2.7.0)Canon Utilities ZoomBrowser EX (x32 Version: 04.01.00046)Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)D3DX10 (x32 Version: 15.4.2368.0902)Diagnostic Utility (x32 Version: 1.00.0000)EPU-4 Engine (x32 Version: 1.00.25)Google Chrome (x32 Version: 29.0.1547.66)Google Update Helper (x32 Version: 1.3.21.153)Intel® Control Center (x32 Version: 1.2.0.1006)Intel® Graphics Media Accelerator Driver (x32 Version: 8.15.10.1968)Junk Mail filter update (x32 Version: 15.4.3502.0922)LogMeIn Hamachi (x32 Version: 2.1.0.374)Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)Microsoft Application Error Reporting (Version: 12.0.6015.5000)Microsoft Office PowerPoint Viewer 2007 (English) (x32 Version: 12.0.6612.1000)Microsoft Office Suite Activation Assistant (x32 Version: 2.9)Microsoft Office XP Small Business (x32 Version: 10.0.6626.0)Microsoft Silverlight (Version: 5.1.20513.0)Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)Microsoft Works (x32 Version: 9.7.0621)Mozilla Firefox 23.0.1 (x86 en-US) (x32 Version: 23.0.1)Mozilla Maintenance Service (x32 Version: 23.0.1)MSVCRT (x32 Version: 15.4.2862.0708)MSVCRT_amd64 (x32 Version: 15.4.2862.0708)MyPC Backup (Version: )Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0)Nero Blu-ray Player (x32 Version: 12.0.14300)Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.4000)Nero Core Components (x32 Version: 11.0.18100)Nero Kwik Media (x32 Version: 1.18.18500)Nero Kwik Media (x32 Version: 12.0.01300)Nero Kwik Media Help (CHM) (x32 Version: 12.0.4000)Nero Kwik Themes Basic (x32 Version: 12.0.11500)Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0)Nero Update (x32 Version: 11.0.11800.31.0)PhotoStitch (x32 Version: 3.1.9)Prerequisite installer (x32 Version: 12.0.0002)QuickTime (x32 Version: 7.73.80.64)RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)RealPlayer (x32 Version: 15.0.6)Realtek Ethernet Controller Driver For Windows Vista and Later (x32 Version: 1.00.0009)Realtek High Definition Audio Driver (x32 Version: 6.0.1.5919)RealUpgrade 1.1 (x32 Version: 1.1.0)RemoteCapture 2.7.0 (x32 Version: 2.7.0)Revo Uninstaller 1.95 (x32 Version: 1.95)Sansa Updater (HKCU Version: 1.313)Severe Weather Alerts (HKCU Version: 1.23.0.0)SUPERAntiSpyware (Version: 5.6.1032)Timez Attack (x32 Version: 3.11)Unity Web Player (HKCU Version: )Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)Update for Zip Opener (HKCU)Web Layers 3.0.0 (Version: 3.0.0)WebEx (HKCU)Windows Live Communications Platform (x32 Version: 15.4.3502.0922)Windows Live Essentials (x32 Version: 15.4.3502.0922)Windows Live Family Safety (Version: 15.4.3502.0922)Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)Windows Live Installer (x32 Version: 15.4.3502.0922)Windows Live Language Selector (Version: 15.4.3502.0922)Windows Live Mail (x32 Version: 15.4.3502.0922)Windows Live Messenger (x32 Version: 15.4.3502.0922)Windows Live MIME IFilter (Version: 15.4.3502.0922)Windows Live Movie Maker (x32 Version: 15.4.3502.0922)Windows Live Photo Common (x32 Version: 15.4.3502.0922)Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)Windows Live PIMT Platform (x32 Version: 15.4.3502.0922)Windows Live SOXE (x32 Version: 15.4.3502.0922)Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)Windows Live Sync (x32 Version: 14.0.8064.206)Windows Live UX Platform (x32 Version: 15.4.3502.0922)Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922)Windows Live Writer (x32 Version: 15.4.3502.0922)Windows Live Writer Resources (x32 Version: 15.4.3502.0922)Yahoo! Install Manager (x32)==================== Restore Points =========================29-08-2013 07:00:01 Scheduled Checkpoint01-09-2013 05:25:21 Windows Update07-09-2013 22:31:21 Revo Uninstaller's restore point - GorillaPrice07-09-2013 22:53:14 Revo Uninstaller's restore point - AVG SafeGuard toolbar07-09-2013 23:13:04 Revo Uninstaller's restore point - Iminent09-09-2013 10:00:12 Windows Update12-09-2013 04:18:54 OTL Restore Point - 9/11/2013 9:18:53 PM12-09-2013 10:00:13 Windows Update12-09-2013 12:56:37 Installed Microsoft Fix it 5090612-09-2013 13:03:17 Removed Adobe Reader 9.5.5.12-09-2013 13:07:08 Removed Java 6 Update 3212-09-2013 13:11:15 Revo Uninstaller's restore point - AVG SafeGuard toolbar12-09-2013 13:20:58 OTL Restore Point - 9/12/2013 6:20:58 AM12-09-2013 13:30:30 OTL Restore Point - 9/12/2013 6:30:27 AM13-09-2013 10:00:12 Windows Update==================== Hosts content: ==========================2009-07-13 19:34 - 2013-09-12 22:57 - 00000098 ____A C:Windowssystem32Driversetchosts127.0.0.1 localhost::1 localhost==================== Scheduled Tasks (whitelisted) =============Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32TasksMicrosoftWindowsTime SynchronizationSynchronizeTime => Sc.exe start w32time task_startedTask: {15454FC0-2CB3-4A04-8F77-67B50248381E} - System32TasksRNUpgradeHelperResumePrompt_Dubois => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exe [2013-08-30] (RealNetworks, Inc.)Task: {175580F5-A109-40DB-A62D-8D8DD2A9BF44} - System32TasksRealUpgradeScheduledTaskS-1-5-21-1212407562-3990132692-3319406616-1000 => C:Program Files (x86)RealRealUpgradeRealUpgrade.exe [2012-07-27] (RealNetworks, Inc.)Task: {30E43BB4-B507-40F4-ADD8-9CDCC03D7DEF} - System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2013-08-31] (Google Inc.)Task: {43F7E52A-E89C-4C8F-B420-F89F36CA29AB} - System32TasksASUSAi Manager => C:Program Files (x86)ASUSAI ManagerAIRunHelper.exe [2009-10-01] (ASUSTeK Computer Inc.)Task: {45D97378-7FA6-4490-9B2D-393285FD0A49} - System32TasksAppleAppleSoftwareUpdate => C:Program Files (x86)Apple Software UpdateSoftwareUpdate.exe [2011-06-01] (Apple Inc.)Task: {47A61F40-D960-4E9B-8DBC-830B67111082} - RegClean Pro_UPDATES No Task FileTask: {4AE0368F-26E1-45AE-B709-BD0676B3FB74} - System32TasksAdvanced System Protector_startup => C:Program Files (x86)Advanced System ProtectorAdvancedSystemProtector.exeTask: {62574B7C-0030-4D0C-BC93-CFDFDEF63967} - System32TasksASUSASUS Update Checker => C:Program Files (x86)ASUSASUSUpdateUpdateCheckerUpdateChecker.exe [2008-12-11] ()Task: {72CBDF7C-CA8A-4294-8BC1-12CBE4BDAA7E} - RegClean Pro_DEFAULT No Task FileTask: {740A8A93-AA59-4757-B782-A5B4D11B1520} - System32TasksRegClean Pro => C:Program Files (x86)RegClean ProRegCleanPro.exeTask: {74420A25-1448-4D18-AF1D-A344782BFEB4} - System32Tasksavast! Emergency Update => C:Program FilesAVAST SoftwareAvastAvastEmUpdate.exe [2013-05-09] (AVAST Software)Task: {790672ED-054A-481F-8E36-2E11ABD37475} - System32TasksASUSASUS SIX Engine => C:Program Files (x86)ASUSEPU-4 EngineFourEngine.exe [2009-06-04] ()Task: {7F6B4E86-E99F-400B-A1B0-AF13C87AED8F} - System32TasksRNUpgradeHelperLogonPrompt_Dubois => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exe [2013-08-30] (RealNetworks, Inc.)Task: {89C8C0D4-E9B2-46FA-93A9-AE51B5957D3A} - System32TasksRealUpgradeLogonTaskS-1-5-21-1212407562-3990132692-3319406616-1000 => C:Program Files (x86)RealRealUpgradeRealUpgrade.exe [2012-07-27] (RealNetworks, Inc.)Task: {9247B8E6-2467-4975-AFC8-EDA017638E93} - System32TasksASUSASUS RegRun Loader => C:Program Files (x86)ASUSAASP1.00.97AsLoader.exe [2009-08-19] (ASUSTeK Computer Inc.)Task: {9DD28B4D-11A8-4B84-B440-1166F43900B5} - System32TasksReclaimerUpdateFiles_Dubois => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exe [2013-08-30] (RealNetworks, Inc.)Task: {A3CC2AC3-772D-4D40-AAEA-F184D5269F16} - System32TasksMicrosoftWindows LiveSOXEExtractor Definitions Update TaskTask: {BC3C5C1F-F305-4912-8AE9-DC1ECD097C4F} - System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2013-08-31] (Google Inc.)Task: {CB51422F-41BD-4402-A63B-AC0B5F44A220} - System32TasksAdvanced System Protector => C:Program Files (x86)RegClean ProSystweakASP.exeTask: {CF3427DA-717F-4B02-A31F-FDB075CB0593} - DSite No Task FileTask: {EB321DCF-72B1-4206-A5C6-7CE8C38F1EB8} - System32TasksReclaimerUpdateXML_Dubois => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exe [2013-08-30] (RealNetworks, Inc.)Task: {F5E3BF99-558A-4C06-89B9-2EC61E4E0D1A} - System32TasksAdobe Flash Player Updater => C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe [2013-09-10] (Adobe Systems Incorporated)Task: C:WindowsTasksAdobe Flash Player Updater.job => C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exeTask: C:WindowsTasksGoogleUpdateTaskMachineCore.job => C:Program Files (x86)GoogleUpdateGoogleUpdate.exeTask: C:WindowsTasksGoogleUpdateTaskMachineUA.job => C:Program Files (x86)GoogleUpdateGoogleUpdate.exeTask: C:WindowsTasksReclaimerUpdateFiles_Dubois.job => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exeTask: C:WindowsTasksReclaimerUpdateXML_Dubois.job => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exeTask: C:WindowsTasksRNUpgradeHelperLogonPrompt_Dubois.job => C:UsersDuboisAppDataRoamingRealUpdateUpgradeHelperRealPlayer10.60agentrnupgagent.exe==================== Loaded Modules (whitelisted) =============2013-01-09 15:13 - 2012-11-22 20:13 - 00068608 _____ (Microsoft Corporation) C:Windowssystem32taskhost.exe2009-07-13 16:37 - 2009-07-13 18:39 - 00120320 _____ (Microsoft Corporation) C:Windowssystem32Dwm.exe2011-06-20 16:33 - 2010-11-20 06:25 - 00464384 _____ (Microsoft Corporation) C:Windowssystem32taskeng.exe2011-04-27 14:42 - 2011-02-24 23:19 - 02871808 _____ (Microsoft Corporation) C:WindowsExplorer.EXE2013-05-23 13:00 - 2013-05-23 13:00 - 00213264 _____ (SUPERAntiSpyware.com) C:Program FilesSUPERAntiSpywareSASCTXMN64.DLL2009-11-13 10:07 - 2009-06-04 16:10 - 05777408 _____ () C:Program Files (x86)ASUSEPU-4 EngineFourEngine.exe2013-06-28 14:02 - 2013-06-28 14:02 - 02255184 _____ (LogMeIn Inc.) C:Program Files (x86)LogMeIn Hamachihamachi-2-ui.exe2009-11-13 10:03 - 2009-08-18 04:17 - 08067616 _____ (Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVCpl64.exe2010-08-25 20:45 - 2010-08-25 20:45 - 00161304 _____ (Intel Corporation) C:WindowsSystem32igfxtray.exe2010-08-25 20:03 - 2010-08-25 20:03 - 00087552 _____ (Intel Corporation) C:Windowssystem32igfxrENU.lrc2010-08-25 20:44 - 2010-08-25 20:44 - 00386584 _____ (Intel Corporation) C:WindowsSystem32hkcmd.exe2010-08-25 20:45 - 2010-08-25 20:45 - 00415256 _____ (Intel Corporation) C:WindowsSystem32igfxpers.exe2012-06-08 16:24 - 2012-06-02 15:19 - 00057880 _____ (Microsoft Corporation) C:Windowssystem32wuauclt.exe2013-09-13 06:36 - 2013-09-13 06:36 - 01949572 _____ (Farbar) C:UsersDuboisDesktopFRST64.exe2009-11-13 10:07 - 2009-01-15 15:55 - 00565248 _____ () C:Program Files (x86)ASUSEPU-4 Enginepngio.dll2013-09-07 17:45 - 2013-09-07 17:45 - 00000000 _____ () C:Windowssystem32AsIo.dll2012-08-19 16:42 - 2012-08-19 16:42 - 00028160 _____ (RealNetworks, Inc.) C:ProgramDataRealRealPlayerBrowserRecordPluginChromeHookrpchrome150browserrecordhelper.dll2013-08-16 18:08 - 2013-08-16 18:08 - 03551640 _____ () C:Program Files (x86)Mozilla Firefoxmozjs.dll==================== Alternate Data Streams (whitelisted) ============================== Faulty Device Manager Devices =============Name: avgtpDescription: avgtpClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: avgtpProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name:Description:Class Guid:Manufacturer:Service:Problem: : The drivers for this device are not installed. (Code 28)Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.Name: HP ScanJet 3300CDescription: HP ScanJet 3300CClass Guid:Manufacturer:Service:Problem: : The drivers for this device are not installed. (Code 28)Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.==================== Event log errors: =========================Application errors:==================Error: (09/13/2013 00:30:24 AM) (Source: SideBySide) (User: )Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.Error: (09/12/2013 10:51:20 PM) (Source: SideBySide) (User: )Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.Invalid Xml syntax.Error: (09/12/2013 00:30:09 AM) (Source: SideBySide) (User: )Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.Error: (09/11/2013 09:13:14 PM) (Source: SideBySide) (User: )Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.Invalid Xml syntax.Error: (09/11/2013 00:30:09 AM) (Source: SideBySide) (User: )Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.Error: (09/10/2013 00:30:09 AM) (Source: SideBySide) (User: )Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.Error: (09/09/2013 00:30:29 AM) (Source: SideBySide) (User: )Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.System errors:=============Error: (09/12/2013 10:59:51 PM) (Source: Service Control Manager) (User: )Description: The following boot-start or system-start driver(s) failed to load:avgtpError: (09/12/2013 10:59:34 PM) (Source: Service Control Manager) (User: )Description: The WatGorp service failed to start due to the following error:%%2Error: (09/12/2013 10:59:34 PM) (Source: Service Control Manager) (User: )Description: The vToolbarUpdater15.4.0 service failed to start due to the following error:%%2Error: (09/12/2013 10:59:23 PM) (Source: Service Control Manager) (User: )Description: The ASPI32 service failed to start due to the following error:%%2Error: (09/12/2013 06:44:06 AM) (Source: Service Control Manager) (User: )Description: The WatGorp service failed to start due to the following error:%%2Error: (09/12/2013 06:44:06 AM) (Source: Service Control Manager) (User: )Description: The vToolbarUpdater15.4.0 service failed to start due to the following error:%%2Error: (09/12/2013 06:43:43 AM) (Source: Service Control Manager) (User: )Description: The ASPI32 service failed to start due to the following error:%%2Error: (09/12/2013 06:32:22 AM) (Source: Service Control Manager) (User: )Description: The WatGorp service failed to start due to the following error:%%2Error: (09/12/2013 06:32:22 AM) (Source: Service Control Manager) (User: )Description: The vToolbarUpdater15.4.0 service failed to start due to the following error:%%2Error: (09/12/2013 06:31:57 AM) (Source: Service Control Manager) (User: )Description: The ASPI32 service failed to start due to the following error:%%2Microsoft Office Sessions:=========================Error: (09/13/2013 00:30:24 AM) (Source: SideBySide)(User: )Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dllc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dll3Error: (09/12/2013 10:51:20 PM) (Source: SideBySide)(User: )Description: C:UsersDuboisDownloadsSetupE_duboisx4@sbcglobal!net.exeC:UsersDuboisDownloadsSetupE_duboisx4@sbcglobal!net.exe0Error: (09/12/2013 00:30:09 AM) (Source: SideBySide)(User: )Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dllc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dll3Error: (09/11/2013 09:13:14 PM) (Source: SideBySide)(User: )Description: C:UsersDuboisDownloadsSetupE_duboisx4@sbcglobal!net.exeC:UsersDuboisDownloadsSetupE_duboisx4@sbcglobal!net.exe0Error: (09/11/2013 00:30:09 AM) (Source: SideBySide)(User: )Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dllc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dll3Error: (09/10/2013 00:30:09 AM) (Source: SideBySide)(User: )Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dllc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dll3Error: (09/09/2013 00:30:29 AM) (Source: SideBySide)(User: )Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dllc:Program Files (x86)Common FilesAdobe AIRVersions1.0Adobe AIR.dll3==================== Memory info ===========================Percentage of memory in use: 22%Total physical RAM: 8079.05 MBAvailable physical RAM: 6292.32 MBTotal Pagefile: 16156.29 MBAvailable Pagefile: 14343.48 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.81 MB==================== Drives ================================Drive c: (WIN7) (Fixed) (Total:372.61 GB) (Free:316.23 GB) NTFS ==>[Drive with boot components (obtained from BCD)]Drive d: (DATA) (Fixed) (Total:550.9 GB) (Free:513.95 GB) NTFS==================== MBR & Partition Table ==========================================================================Disk: 0 (Size: 932 GB) (Disk ID: 67797465)Partition 1: (Not Active) - (Size=8 GB) - (Type=1B)Partition 2: (Active) - (Size=373 GB) - (Type=07 NTFS)Partition 3: (Not Active) - (Size=551 GB) - (Type=07 NTFS)==================== End Of Log ============================
  12. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-09-2013Ran by Dubois (administrator) on DUBOIS-PC on 13-09-2013 06:38:55Running from C:UsersDuboisDesktopWindows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)Internet Explorer Version 10Boot Mode: Normal==================== Processes (Whitelisted) =================(AVAST Software) C:Program FilesAVAST SoftwareAvastAvastSvc.exe(SUPERAntiSpyware.com) C:Program FilesSUPERAntiSpywareSASCORE64.EXE(ASUSTeK Computer Inc.) C:WindowsSysWOW64AsHookDevice.exe() C:Program Files (x86)ASUSEPU-4 EngineFourEngine.exe(LogMeIn Inc.) C:Program Files (x86)LogMeIn Hamachihamachi-2.exe(Microsoft Corporation) C:Program Files (x86)Common FilesMicrosoft SharedVS7Debugmdm.exe(Microsoft Corporation) C:Program Files (x86)MicrosoftBingBarSeaPort.EXE(Microsoft Corp.) C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE(LogMeIn Inc.) C:Program Files (x86)LogMeIn Hamachihamachi-2-ui.exe(Microsoft Corp.) C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe(Nero AG) C:Program Files (x86)NeroUpdateNASvc.exe(Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVCpl64.exe(Intel Corporation) C:WindowsSystem32igfxtray.exe(Intel Corporation) C:WindowsSystem32hkcmd.exe(Intel Corporation) C:WindowsSystem32igfxpers.exe(ASUSTeK Computer Inc.) C:Program Files (x86)ASUSAI ManagerAsShellApplication.exe(AVAST Software) C:Program FilesAVAST SoftwareAvastAvastUI.exe(RealNetworks, Inc.) C:Program Files (x86)RealrealplayerUpdaterealsched.exe(Mozilla Corporation) C:Program Files (x86)Mozilla Firefoxfirefox.exe==================== Registry (Whitelisted) ==================HKLM...Run: [RtHDVCpl] - C:Program FilesRealtekAudioHDARAVCpl64.exe [8067616 2009-08-18] (Realtek Semiconductor)HKLM...Run: [HotKeysCmds] - C:Windowssystem32hkcmd.exe [ ] ()HKLM-x32...Run: [RunAIShell] - C:Program Files (x86)ASUSAI ManagerAsShellApplication.exe [225280 2009-08-19] (ASUSTeK Computer Inc.)HKLM-x32...Run: [avast] - C:Program FilesAVAST SoftwareAvastavastUI.exe [4858968 2013-05-09] (AVAST Software)HKLM-x32...Run: [APSDaemon] - C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe [59280 2012-10-11] (Apple Inc.)HKLM-x32...Run: [TkBellExe] - c:program files (x86)realrealplayerUpdaterealsched.exe [296096 2012-08-19] (RealNetworks, Inc.)HKLM-x32...Run: [QuickTime Task] - C:Program Files (x86)QuickTimeQTTask.exe [421888 2012-10-25] (Apple Inc.)HKLM-x32...Run: [LogMeIn Hamachi Ui] - C:Program Files (x86)LogMeIn Hamachihamachi-2-ui.exe [2255184 2013-06-28] (LogMeIn Inc.)==================== Internet (Whitelisted) ====================HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://asus.msn.com/SearchScopes: HKLM - DefaultScope value is missing.BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:Program FilesAVAST SoftwareAvastaswWebRepIE64.dll (AVAST Software)BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll (Microsoft Corp.)BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:ProgramDataRealRealPlayerBrowserRecordPluginIErpbrowserrecordplugin.dll (RealPlayer)BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll (AVAST Software)BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program Files (x86)Common FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll (Microsoft Corp.)BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:Program Files (x86)MicrosoftBingBarBingExt.dll (Microsoft Corporation.)BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program Files (x86)Javajre6binjp2ssv.dll No FileToolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:Program FilesAVAST SoftwareAvastaswWebRepIE64.dll (AVAST Software)Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll (AVAST Software)Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:Program Files (x86)MicrosoftBingBarBingExt.dll (Microsoft Corporation.)DPF: HKLM-x32 {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:Program Files (x86)Yahoo!CommonYinsthelper.dllHandler-x32: http0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOLE DBmsdaipp.dll (Microsoft Corporation)Handler-x32: httpoledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOLE DBmsdaipp.dll (Microsoft Corporation)Handler-x32: https0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOLE DBmsdaipp.dll (Microsoft Corporation)Handler-x32: httpsoledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOLE DBmsdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOLE DBmsdaipp.dll (Microsoft Corporation)Handler-x32: msdaippoledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOLE DBmsdaipp.dll (Microsoft Corporation)TcpipParameters: [DhcpNameServer] 192.168.1.254FireFox:========FF ProfilePath: C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultFF Plugin: @adobe.com/FlashPlayer - C:Windowssystem32MacromedFlashNPSWF64_11_8_800_168.dll ()FF Plugin: @microsoft.com/GENUINE - disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:Program FilesMicrosoft Silverlight5.1.20513.0npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @adobe.com/FlashPlayer - C:WindowsSysWOW64MacromedFlashNPSWF32_11_8_800_168.dll ()FF Plugin-x32: @microsoft.com/GENUINE - disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:Program Files (x86)Microsoft Silverlight5.1.20513.0npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:Program Files (x86)Windows LivePhoto GalleryNPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:Program Files (x86)Windows LivePhoto GalleryNPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @Nero.com/KM - C:PROGRA~2COMMON~1NeroBROWSE~1NPBROW~1.DLL (Nero AG)FF Plugin-x32: @real.com/nppl3260;version=15.0.6.14 - c:program files (x86)realrealplayerNetscape6nppl3260.dll (RealNetworks, Inc.)FF Plugin-x32: @real.com/nprjplug;version=15.0.6.14 - c:program files (x86)realrealplayerNetscape6nprjplug.dll (RealNetworks, Inc.)FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:ProgramDataRealRealPlayerBrowserRecordPluginMozillaPluginsnprpchromebrowserrecordext.dll (RealNetworks, Inc.)FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:ProgramDataRealRealPlayerBrowserRecordPluginMozillaPluginsnprphtml5videoshim.dll (RealNetworks, Inc.)FF Plugin-x32: @real.com/nprpplugin;version=15.0.6.14 - c:program files (x86)realrealplayerNetscape6nprpplugin.dll (RealPlayer)FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:Program Files (x86)GoogleUpdate1.3.21.153npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:Program Files (x86)GoogleUpdate1.3.21.153npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:UsersDuboisAppDataLocalLowUnityWebPlayerloadernpUnity3D32.dll (Unity Technologies ApS)FF SearchPlugin: C:Program Files (x86)mozilla firefoxsearchpluginsanswers.xmlFF SearchPlugin: C:Program Files (x86)mozilla firefoxsearchpluginscreativecommons.xmlFF SearchPlugin: C:Program Files (x86)mozilla firefoxbrowsersearchpluginssafeguard-secure-search.xmlFF Extension: No Name - C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultExtensionsfoxmarks@kei.comFF HKLM-x32...FirefoxExtensions: [wrc@avast.com] - C:Program FilesAVAST SoftwareAvastWebRepFFFF Extension: avast! Online Security - C:Program FilesAVAST SoftwareAvastWebRepFFFF HKLM-x32...FirefoxExtensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:ProgramDataRealRealPlayerBrowserRecordPluginFirefoxExtFF Extension: RealPlayer Browser Record Plugin - C:ProgramDataRealRealPlayerBrowserRecordPluginFirefoxExtChrome:=======CHR Extension: (Google Docs) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake0.5_0CHR Extension: (Google Drive) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf6.3_0CHR Extension: (YouTube) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo4.2.6_0CHR Extension: (Google Search) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionscoobgpohoikkiipiblmjeljniedjpjpf0.0.0.20_0CHR Extension: (Web Layers) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionsghdomkkcnldpmfcefiaaahchgoinofkb1.0.0CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionsjfmjfhklogoienhpfnppmbcbjfjnkonk1.5_0CHR Extension: (Chrome In-App Payments service) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda0.0.4.10_0CHR Extension: (Gmail) - C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia7_1CHR HKLM-x32...ChromeExtension: [ghdomkkcnldpmfcefiaaahchgoinofkb] - C:Program Files (x86)Web Layersghdomkkcnldpmfcefiaaahchgoinofkb.crxCHR HKLM-x32...ChromeExtension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:ProgramDataRealRealPlayerBrowserRecordPluginChromeExtrphtml5video.crxCHR HKLM-x32...ChromeExtension: [pkhojieggfgllhllcegoffdcnmdeojgb] - C:Program Files (x86)IminentToolbar1.8.25.0iminent.crx==================== Services (Whitelisted) =================R2 !SASCORE; C:Program FilesSUPERAntiSpywareSASCORE64.EXE [143120 2013-05-23] (SUPERAntiSpyware.com)R2 avast! Antivirus; C:Program FilesAVAST SoftwareAvastAvastSvc.exe [46808 2013-05-09] (AVAST Software)S2 vToolbarUpdater15.4.0; C:Program Files (x86)Common FilesAVG Secure SearchvToolbarUpdater15.4.0ToolbarUpdater.exe [x]S2 WatGorp; C:ProgramDataGorillaPricewatgorp.exe -service [x]==================== Drivers (Whitelisted) ====================R2 ASInsHelp; C:WindowsSysWow64driversAsInsHelp64.sys [11832 2008-01-04] ()R2 ASInsHelp; C:WindowsSysWow64driversAsInsHelp64.sys [11832 2008-01-04] ()R1 AsIO; C:WindowsSysWow64driversAsIO.sys [13440 2009-08-03] ()R1 AsIO; C:WindowsSysWow64driversAsIO.sys [13440 2009-08-03] ()R1 AsUpIO; C:WindowsSysWow64driversAsUpIO.sys [13368 2009-07-06] ()R1 AsUpIO; C:WindowsSysWow64driversAsUpIO.sys [13368 2009-07-06] ()R2 aswMonFlt; C:Windowssystem32driversaswMonFlt.sys [80816 2013-05-09] (AVAST Software)R1 aswRdr; C:WindowsSystem32Driversaswrdr2.sys [72016 2013-05-09] (AVAST Software)R0 aswRvrt; C:WindowsSystem32DriversaswRvrt.sys [65336 2013-05-09] ()R1 aswSnx; C:WindowsSystem32DriversaswSnx.sys [1030952 2013-06-27] (AVAST Software)R1 aswSP; C:WindowsSystem32DriversaswSP.sys [378944 2013-06-27] (AVAST Software)R1 aswTdi; C:WindowsSystem32DriversaswTdi.sys [64288 2013-05-09] (AVAST Software)R0 aswVmm; C:WindowsSystem32DriversaswVmm.sys [189936 2013-06-27] ()R3 MTsensor; C:WindowsSystem32DRIVERSASACPI.sys [15416 2009-07-16] ()R2 RtNdPt60; C:WindowsSystem32DRIVERSRtNdPt60.sys [26624 2007-12-11] (Windows ® Codename Longhorn DDK provider)R1 SASDIFSV; C:Program FilesSUPERAntiSpywareSASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)R1 SASDIFSV; C:Program FilesSUPERAntiSpywareSASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)R1 SASKUTIL; C:Program FilesSUPERAntiSpywareSASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)R1 SASKUTIL; C:Program FilesSUPERAntiSpywareSASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)S3 Serial; C:Windowssystem32DRIVERSserial.sys [94208 2009-07-13] (Brother Industries Ltd.)S1 avgtp; ??C:Windowssystem32driversavgtpx64.sys [x]U3 tmlwf;U3 tmwfp;========================== Drivers MD5 =======================C:Windowssystem32drivers1394ohci.sys ==> MD5 is legitC:WindowsSystem32driversACPI.sys ==> MD5 is legitC:Windowssystem32driversacpipmi.sys ==> MD5 is legitC:Windowssystem32DRIVERSadp94xx.sys ==> MD5 is legitC:Windowssystem32DRIVERSadpahci.sys ==> MD5 is legitC:Windowssystem32DRIVERSadpu320.sys ==> MD5 is legitC:Windowssystem32driversafd.sys 1C7857B62DE5994A75B054A9FD4C3825C:Windowssystem32driversagp440.sys ==> MD5 is legitC:Windowssystem32driversaliide.sys ==> MD5 is legitC:Windowssystem32driversamdide.sys ==> MD5 is legitC:Windowssystem32DRIVERSamdk8.sys ==> MD5 is legitC:Windowssystem32DRIVERSamdppm.sys ==> MD5 is legitC:Windowssystem32driversamdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49C:Windowssystem32DRIVERSamdsbs.sys ==> MD5 is legitC:WindowsSystem32driversamdxata.sys 540DAF1CEA6094886D72126FD7C33048C:Windowssystem32driversappid.sys ==> MD5 is legitC:Windowssystem32DRIVERSarc.sys ==> MD5 is legitC:Windowssystem32DRIVERSarcsas.sys ==> MD5 is legitC:WindowsSysWow64driversAsInsHelp64.sys EDAA17CE771C696655B6585F7CAD2100C:WindowsSysWow64driversAsInsHelp64.sys EDAA17CE771C696655B6585F7CAD2100C:WindowsSysWow64driversAsIO.sys A82C01606DC27D05D9D3BFB6BB807E32C:WindowsSysWow64driversAsIO.sys A82C01606DC27D05D9D3BFB6BB807E32C:WindowsSysWow64driversAsUpIO.sys 26D66E32E78D3059715B3A17BC679CD9C:WindowsSysWow64driversAsUpIO.sys 26D66E32E78D3059715B3A17BC679CD9C:Windowssystem32driversaswMonFlt.sys FA562F34ED6633C66170B09182B4C049C:WindowsSystem32Driversaswrdr2.sys 64E2BAB4096C13D2342BC4661C967E07C:WindowsSystem32DriversaswRvrt.sys 5573AA70993A2BB81525B1C704B88763C:WindowsSystem32DriversaswSnx.sys 8C0800CDB501CFC1164B286A0478DC10C:WindowsSystem32DriversaswSP.sys 3815DB16CDA62190F5C0A65118F3D714C:WindowsSystem32DriversaswTdi.sys 29DD8E458A84171202AA4979364C30C0C:WindowsSystem32DriversaswVmm.sys 22F521108881DC59837F6FC614E0568FC:WindowsSystem32DRIVERSasyncmac.sys ==> MD5 is legitC:WindowsSystem32driversatapi.sys ==> MD5 is legitC:Windowssystem32DRIVERSbxvbda.sys ==> MD5 is legitC:WindowsSystem32DRIVERSb57nd60a.sys ==> MD5 is legitC:WindowsSystem32DriversBeep.sys ==> MD5 is legitC:WindowsSystem32DRIVERSblbdrive.sys ==> MD5 is legitC:WindowsSystem32DRIVERSbowser.sys ==> MD5 is legitC:Windowssystem32DRIVERSBrFiltLo.sys ==> MD5 is legitC:Windowssystem32DRIVERSBrFiltUp.sys ==> MD5 is legitC:WindowsSystem32DriversBrserid.sys ==> MD5 is legitC:WindowsSystem32DriversBrSerWdm.sys ==> MD5 is legitC:WindowsSystem32DriversBrUsbMdm.sys ==> MD5 is legitC:WindowsSystem32DriversBrUsbSer.sys ==> MD5 is legitC:Windowssystem32DRIVERSbthmodem.sys ==> MD5 is legitC:WindowsSystem32DRIVERScdfs.sys ==> MD5 is legitC:Windowssystem32driverscdrom.sys ==> MD5 is legitC:Windowssystem32DRIVERScirclass.sys ==> MD5 is legitC:WindowsSystem32CLFS.sys ==> MD5 is legitC:Windowssystem32DRIVERSCmBatt.sys ==> MD5 is legitC:Windowssystem32driverscmdide.sys ==> MD5 is legitC:WindowsSystem32Driverscng.sys 9AC4F97C2D3E93367E2148EA940CD2CDC:Windowssystem32DRIVERScompbatt.sys ==> MD5 is legitC:Windowssystem32driversCompositeBus.sys ==> MD5 is legitC:Windowssystem32DRIVERScrcdisk.sys ==> MD5 is legitC:WindowsSystem32Driversdfsc.sys ==> MD5 is legitC:WindowsSystem32driversdiscache.sys ==> MD5 is legitC:WindowsSystem32DRIVERSdisk.sys ==> MD5 is legitC:WindowsSystem32driversdrmkaud.sys ==> MD5 is legitC:WindowsSystem32driversdxgkrnl.sys AF2E16242AA723F68F461B6EAE2EAD3DC:Windowssystem32DRIVERSevbda.sys ==> MD5 is legitC:Windowssystem32DRIVERSelxstor.sys ==> MD5 is legitC:Windowssystem32driverserrdev.sys ==> MD5 is legitC:WindowsSystem32Driversexfat.sys ==> MD5 is legitC:WindowsSystem32Driversfastfat.sys ==> MD5 is legitC:Windowssystem32DRIVERSfdc.sys ==> MD5 is legitC:WindowsSystem32driversfileinfo.sys ==> MD5 is legitC:WindowsSystem32driversfiletrace.sys ==> MD5 is legitC:Windowssystem32DRIVERSflpydisk.sys ==> MD5 is legitC:WindowsSystem32driversfltmgr.sys ==> MD5 is legitC:WindowsSystem32driversFsDepends.sys ==> MD5 is legitC:WindowsSystem32DRIVERSfssfltr.sys 6C06701BF1DB05405804D7EB610991CEC:WindowsSystem32DriversFs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7BC:WindowsSystem32DRIVERSfvevol.sys 8F6322049018354F45F05A2FD2D4E5E0C:Windowssystem32DRIVERSgagp30kx.sys ==> MD5 is legitC:WindowsSystem32DRIVERShamachi.sys 1E6438D4EA6E1174A3B3B1EDC4DE660BC:Windowssystem32drivershcw85cir.sys ==> MD5 is legitC:Windowssystem32driversHdAudio.sys 975761C778E33CD22498059B91E7373AC:Windowssystem32driversHDAudBus.sys ==> MD5 is legitC:Windowssystem32DRIVERSHidBatt.sys ==> MD5 is legitC:Windowssystem32DRIVERShidbth.sys ==> MD5 is legitC:Windowssystem32DRIVERShidir.sys ==> MD5 is legitC:Windowssystem32drivershidusb.sys ==> MD5 is legitC:Windowssystem32driversHpSAMD.sys ==> MD5 is legitC:WindowsSystem32driversHTTP.sys ==> MD5 is legitC:WindowsSystem32drivershwpolicy.sys ==> MD5 is legitC:Windowssystem32driversi8042prt.sys ==> MD5 is legitC:Windowssystem32driversiaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366C:WindowsSystem32DRIVERSigdkmd64.sys 677AA5991026A65ADA128C4B59CF2BADC:Windowssystem32DRIVERSiirsp.sys ==> MD5 is legitC:WindowsSystem32driversRTKVHD64.sys F04D22D7A49A1B2210DBADF0B803E870C:WindowsSystem32DRIVERSIntcDAud.sys 49072EDBC5C2F964917D1B585C90ED0AC:Windowssystem32driversintelide.sys ==> MD5 is legitC:WindowsSystem32DRIVERSintelppm.sys ==> MD5 is legitC:WindowsSystem32DRIVERSipfltdrv.sys ==> MD5 is legitC:Windowssystem32driversIPMIDrv.sys ==> MD5 is legitC:WindowsSystem32driversipnat.sys ==> MD5 is legitC:WindowsSystem32driversirenum.sys ==> MD5 is legitC:Windowssystem32driversisapnp.sys ==> MD5 is legitC:Windowssystem32driversmsiscsi.sys ==> MD5 is legitC:Windowssystem32driverskbdclass.sys ==> MD5 is legitC:Windowssystem32driverskbdhid.sys ==> MD5 is legitC:WindowsSystem32Driversksecdd.sys 97A7070AEA4C058B6418519E869A63B4C:WindowsSystem32Driversksecpkg.sys 26C43A7C2862447EC59DEDA188D1DA07C:Windowssystem32driversksthunk.sys ==> MD5 is legitC:WindowsSystem32DRIVERSlltdio.sys ==> MD5 is legitC:Windowssystem32DRIVERSlsi_fc.sys ==> MD5 is legitC:Windowssystem32DRIVERSlsi_sas.sys ==> MD5 is legitC:Windowssystem32DRIVERSlsi_sas2.sys ==> MD5 is legitC:Windowssystem32DRIVERSlsi_scsi.sys ==> MD5 is legitC:Windowssystem32driversluafv.sys ==> MD5 is legitC:Windowssystem32DRIVERSmegasas.sys ==> MD5 is legitC:Windowssystem32DRIVERSMegaSR.sys ==> MD5 is legitC:WindowsSystem32driversmodem.sys ==> MD5 is legitC:WindowsSystem32DRIVERSmonitor.sys ==> MD5 is legitC:Windowssystem32driversmouclass.sys ==> MD5 is legitC:WindowsSystem32DRIVERSmouhid.sys ==> MD5 is legitC:WindowsSystem32driversmountmgr.sys ==> MD5 is legitC:Windowssystem32driversmpio.sys ==> MD5 is legitC:WindowsSystem32driversmpsdrv.sys ==> MD5 is legitC:Windowssystem32driversmrxdav.sys ==> MD5 is legitC:WindowsSystem32DRIVERSmrxsmb.sys A5D9106A73DC88564C825D317CAC68ACC:WindowsSystem32DRIVERSmrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163C:WindowsSystem32DRIVERSmrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30CC:Windowssystem32driversmsahci.sys ==> MD5 is legitC:Windowssystem32driversmsdsm.sys ==> MD5 is legitC:WindowsSystem32DriversMsfs.sys ==> MD5 is legitC:WindowsSystem32driversmshidkmdf.sys ==> MD5 is legitC:WindowsSystem32driversmsisadrv.sys ==> MD5 is legitC:WindowsSystem32driversMSKSSRV.sys ==> MD5 is legitC:WindowsSystem32driversMSPCLOCK.sys ==> MD5 is legitC:WindowsSystem32driversMSPQM.sys ==> MD5 is legitC:WindowsSystem32DriversMsRPC.sys ==> MD5 is legitC:Windowssystem32driversmssmbios.sys ==> MD5 is legitC:WindowsSystem32driversMSTEE.sys ==> MD5 is legitC:Windowssystem32DRIVERSMTConfig.sys ==> MD5 is legitC:WindowsSystem32DRIVERSASACPI.sys 19B006B181E3875FD254F7B67ACF1E7CC:WindowsSystem32Driversmup.sys ==> MD5 is legitC:WindowsSystem32DRIVERSnwifi.sys ==> MD5 is legitC:WindowsSystem32driversndis.sys 760E38053BF56E501D562B70AD796B88C:WindowsSystem32DRIVERSndiscap.sys ==> MD5 is legitC:WindowsSystem32DRIVERSndistapi.sys ==> MD5 is legitC:WindowsSystem32DRIVERSndisuio.sys ==> MD5 is legitC:WindowsSystem32DRIVERSndiswan.sys ==> MD5 is legitC:WindowsSystem32DriversNDProxy.sys ==> MD5 is legitC:WindowsSystem32DRIVERSnetbios.sys ==> MD5 is legitC:WindowsSystem32DRIVERSnetbt.sys ==> MD5 is legitC:WindowsSystem32DRIVERSnetr28x.sys B72BB9496A126FCFC7FC5945DED9B411C:Windowssystem32DRIVERSnfrd960.sys ==> MD5 is legitC:WindowsSystem32DriversNpfs.sys ==> MD5 is legitC:WindowsSystem32driversnsiproxy.sys ==> MD5 is legitC:WindowsSystem32DriversNtfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0C:WindowsSystem32DriversNull.sys ==> MD5 is legitC:Windowssystem32driversnvraid.sys 0A92CB65770442ED0DC44834632F66ADC:Windowssystem32driversnvstor.sys DAB0E87525C10052BF65F06152F37E4AC:Windowssystem32driversnv_agp.sys ==> MD5 is legitC:Windowssystem32driversohci1394.sys ==> MD5 is legitC:Windowssystem32DRIVERSparport.sys ==> MD5 is legitC:WindowsSystem32driverspartmgr.sys E9766131EEADE40A27DC27D2D68FBA9CC:WindowsSystem32driverspci.sys ==> MD5 is legitC:WindowsSystem32driverspciide.sys ==> MD5 is legitC:Windowssystem32DRIVERSpcmcia.sys ==> MD5 is legitC:WindowsSystem32driverspcw.sys ==> MD5 is legitC:WindowsSystem32driverspeauth.sys ==> MD5 is legitC:WindowsSystem32DRIVERSraspptp.sys ==> MD5 is legitC:Windowssystem32DRIVERSprocessr.sys ==> MD5 is legitC:WindowsSystem32DRIVERSpacer.sys ==> MD5 is legitC:Windowssystem32DRIVERSql2300.sys ==> MD5 is legitC:Windowssystem32DRIVERSql40xx.sys ==> MD5 is legitC:Windowssystem32driversqwavedrv.sys ==> MD5 is legitC:WindowsSystem32DRIVERSrasacd.sys ==> MD5 is legitC:WindowsSystem32DRIVERSAgileVpn.sys ==> MD5 is legitC:WindowsSystem32DRIVERSrasl2tp.sys ==> MD5 is legitC:WindowsSystem32DRIVERSraspppoe.sys ==> MD5 is legitC:WindowsSystem32DRIVERSrassstp.sys ==> MD5 is legitC:WindowsSystem32DRIVERSrdbss.sys ==> MD5 is legitC:Windowssystem32DRIVERSrdpbus.sys ==> MD5 is legitC:WindowsSystem32DRIVERSRDPCDD.sys ==> MD5 is legitC:WindowsSystem32driversrdpencdd.sys ==> MD5 is legitC:WindowsSystem32driversrdprefmp.sys ==> MD5 is legitC:WindowsSystem32DriversRDPWD.sys E61608AA35E98999AF9AAEEEA6114B0AC:WindowsSystem32driversrdyboost.sys ==> MD5 is legitC:WindowsSystem32DRIVERSrspndr.sys ==> MD5 is legitC:WindowsSystem32DRIVERSRt64win7.sys 3B01789EE4EAEE97F5EB46B711387D5EC:WindowsSystem32DRIVERSRtNdPt60.sys 5532C4BF15173270757A75B46BAEB960C:WindowsSystem32DRIVERSRtTeam60.sys BC85BDC1C30066C78B8C67AF1241D0B7C:WindowsSystem32DRIVERSRtVlan60.sys 8B6B42D782202363A562F82B0E13B1C0C:Program FilesSUPERAntiSpywareSASDIFSV64.SYS 3289766038DB2CB14D07DC84392138D5C:Program FilesSUPERAntiSpywareSASDIFSV64.SYS 3289766038DB2CB14D07DC84392138D5C:Program FilesSUPERAntiSpywareSASKUTIL64.SYS 58A38E75F3316A83C23DF6173D41F2B5C:Program FilesSUPERAntiSpywareSASKUTIL64.SYS 58A38E75F3316A83C23DF6173D41F2B5C:Windowssystem32driverssbp2port.sys ==> MD5 is legitC:WindowsSystem32DRIVERSscfilter.sys ==> MD5 is legitC:WindowsSystem32Driverssecdrv.sys ==> MD5 is legitC:Windowssystem32DRIVERSserenum.sys ==> MD5 is legitC:Windowssystem32DRIVERSserial.sys ==> MD5 is legitC:Windowssystem32DRIVERSsermouse.sys ==> MD5 is legitC:Windowssystem32driverssffdisk.sys ==> MD5 is legitC:Windowssystem32driverssffp_mmc.sys ==> MD5 is legitC:Windowssystem32driverssffp_sd.sys ==> MD5 is legitC:Windowssystem32DRIVERSsfloppy.sys ==> MD5 is legitC:Windowssystem32DRIVERSSiSRaid2.sys ==> MD5 is legitC:Windowssystem32DRIVERSsisraid4.sys ==> MD5 is legitC:WindowsSystem32DRIVERSsmb.sys ==> MD5 is legitC:WindowsSystem32Driversspldr.sys ==> MD5 is legitC:WindowsSystem32DRIVERSsrv.sys 441FBA48BFF01FDB9D5969EBC1838F0BC:WindowsSystem32DRIVERSsrv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28C:WindowsSystem32DRIVERSsrvnet.sys 27E461F0BE5BFF5FC737328F749538C3C:Windowssystem32DRIVERSstexstor.sys ==> MD5 is legitC:Windowssystem32driversswenum.sys ==> MD5 is legitC:WindowsSystem32driverstcpip.sys DB74544B75566C974815E79A62433F29C:WindowsSystem32DRIVERStcpip.sys DB74544B75566C974815E79A62433F29C:WindowsSystem32driverstcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABCC:WindowsSystem32driverstdpipe.sys ==> MD5 is legitC:WindowsSystem32driverstdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8C:WindowsSystem32DRIVERStdx.sys ==> MD5 is legitC:WindowsSystem32DRIVERSRtTeam60.sys BC85BDC1C30066C78B8C67AF1241D0B7C:Windowssystem32driverstermdd.sys ==> MD5 is legitC:WindowsSystem32DRIVERStssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09C:WindowsSystem32driverstsusbflt.sys ==> MD5 is legitC:WindowsSystem32DRIVERStunnel.sys ==> MD5 is legitC:Windowssystem32DRIVERSuagp35.sys ==> MD5 is legitC:WindowsSystem32DRIVERSudfs.sys ==> MD5 is legitC:Windowssystem32driversuliagpkx.sys ==> MD5 is legitC:Windowssystem32driversumbus.sys ==> MD5 is legitC:WindowsSystem32DRIVERSumpass.sys ==> MD5 is legitC:WindowsSystem32DRIVERSusbccgp.sys 6F1A3157A1C89435352CEB543CDB359CC:Windowssystem32driversusbcir.sys ==> MD5 is legitC:Windowssystem32driversusbehci.sys C025055FE7B87701EB042095DF1A2D7BC:WindowsSystem32DRIVERSusbhub.sys 287C6C9410B111B68B52CA298F7B8C24C:Windowssystem32driversusbohci.sys 9840FC418B4CBD632D3D0A667A725C31C:WindowsSystem32DRIVERSusbprint.sys ==> MD5 is legitC:WindowsSystem32DRIVERSUSBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6C:Windowssystem32driversusbuhci.sys 62069A34518BCF9C1FD9E74B3F6DB7CDC:WindowsSystem32driversvdrvroot.sys ==> MD5 is legitC:WindowsSystem32DRIVERSvgapnp.sys ==> MD5 is legitC:WindowsSystem32driversvga.sys ==> MD5 is legitC:Windowssystem32driversvhdmp.sys ==> MD5 is legitC:Windowssystem32driversviaide.sys ==> MD5 is legitC:WindowsSystem32driversvolmgr.sys ==> MD5 is legitC:WindowsSystem32driversvolmgrx.sys ==> MD5 is legitC:WindowsSystem32driversvolsnap.sys ==> MD5 is legitC:Windowssystem32DRIVERSvsmraid.sys ==> MD5 is legitC:WindowsSystem32DRIVERSvwifibus.sys ==> MD5 is legitC:WindowsSystem32DRIVERSvwififlt.sys ==> MD5 is legitC:Windowssystem32DRIVERSwacompen.sys ==> MD5 is legitC:WindowsSystem32DRIVERSwanarp.sys ==> MD5 is legitC:WindowsSystem32DRIVERSwanarp.sys ==> MD5 is legitC:Windowssystem32DRIVERSwd.sys ==> MD5 is legitC:WindowsSystem32driversWdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4C:WindowsSystem32DRIVERSwfplwf.sys ==> MD5 is legitC:WindowsSystem32driverswimmount.sys ==> MD5 is legitC:WindowsSysWow64driverswimmount.sys ==> MD5 is legitC:WindowsSystem32DRIVERSWinUsb.sys FE88B288356E7B47B74B13372ADD906DC:Windowssystem32driverswmiacpi.sys ==> MD5 is legitC:Windowssystem32driversws2ifsl.sys ==> MD5 is legitC:WindowsSystem32driversWudfPf.sys AB886378EEB55C6C75B4F2D14B6C869FC:WindowsSystem32DRIVERSWUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659==================== NetSvcs (Whitelisted) ======================================= One Month Created Files and Folders ========2013-09-13 06:37 - 2013-09-13 06:37 - 00000000 ____D C:FRST2013-09-13 06:36 - 2013-09-13 06:36 - 01949572 _____ (Farbar) C:UsersDuboisDesktopFRST64.exe2013-09-12 22:50 - 2013-09-12 22:50 - 00007159 _____ C:UsersDuboisDesktopfix.txt2013-09-12 07:45 - 2013-09-12 07:45 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(19).exe2013-09-12 06:20 - 2013-09-12 06:20 - 00000000 ____D C:_OTL2013-09-12 05:55 - 2013-09-12 05:55 - 00984576 _____ C:UsersDuboisDownloadsMicrosoftFixit50906.msi2013-09-12 03:03 - 2013-08-09 22:22 - 02241024 _____ (Microsoft Corporation) C:Windowssystem32wininet.dll2013-09-12 03:03 - 2013-08-09 22:22 - 01365504 _____ (Microsoft Corporation) C:Windowssystem32urlmon.dll2013-09-12 03:03 - 2013-08-09 22:22 - 00051712 _____ (Microsoft Corporation) C:Windowssystem32ie4uinit.exe2013-09-12 03:03 - 2013-08-09 22:21 - 19246592 _____ (Microsoft Corporation) C:Windowssystem32mshtml.dll2013-09-12 03:03 - 2013-08-09 22:21 - 00603136 _____ (Microsoft Corporation) C:Windowssystem32msfeeds.dll2013-09-12 03:03 - 2013-08-09 22:21 - 00053248 _____ (Microsoft Corporation) C:Windowssystem32jsproxy.dll2013-09-12 03:03 - 2013-08-09 22:20 - 15404544 _____ (Microsoft Corporation) C:Windowssystem32ieframe.dll2013-09-12 03:03 - 2013-08-09 22:20 - 03959296 _____ (Microsoft Corporation) C:Windowssystem32jscript9.dll2013-09-12 03:03 - 2013-08-09 22:20 - 02647040 _____ (Microsoft Corporation) C:Windowssystem32iertutil.dll2013-09-12 03:03 - 2013-08-09 22:20 - 00855552 _____ (Microsoft Corporation) C:Windowssystem32jscript.dll2013-09-12 03:03 - 2013-08-09 22:20 - 00526336 _____ (Microsoft Corporation) C:Windowssystem32ieui.dll2013-09-12 03:03 - 2013-08-09 22:20 - 00136704 _____ (Microsoft Corporation) C:Windowssystem32iesysprep.dll2013-09-12 03:03 - 2013-08-09 22:20 - 00067072 _____ (Microsoft Corporation) C:Windowssystem32iesetup.dll2013-09-12 03:03 - 2013-08-09 22:20 - 00039936 _____ (Microsoft Corporation) C:Windowssystem32iernonce.dll2013-09-12 03:03 - 2013-08-09 20:59 - 01767936 _____ (Microsoft Corporation) C:WindowsSysWOW64wininet.dll2013-09-12 03:03 - 2013-08-09 20:59 - 01141248 _____ (Microsoft Corporation) C:WindowsSysWOW64urlmon.dll2013-09-12 03:03 - 2013-08-09 20:58 - 13761024 _____ (Microsoft Corporation) C:WindowsSysWOW64ieframe.dll2013-09-12 03:03 - 2013-08-09 20:58 - 02876928 _____ (Microsoft Corporation) C:WindowsSysWOW64jscript9.dll2013-09-12 03:03 - 2013-08-09 20:58 - 02048000 _____ (Microsoft Corporation) C:WindowsSysWOW64iertutil.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00690688 _____ (Microsoft Corporation) C:WindowsSysWOW64jscript.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00493056 _____ (Microsoft Corporation) C:WindowsSysWOW64msfeeds.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00391168 _____ (Microsoft Corporation) C:WindowsSysWOW64ieui.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00109056 _____ (Microsoft Corporation) C:WindowsSysWOW64iesysprep.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00061440 _____ (Microsoft Corporation) C:WindowsSysWOW64iesetup.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00039424 _____ (Microsoft Corporation) C:WindowsSysWOW64jsproxy.dll2013-09-12 03:03 - 2013-08-09 20:58 - 00033280 _____ (Microsoft Corporation) C:WindowsSysWOW64iernonce.dll2013-09-12 03:03 - 2013-08-09 20:17 - 02706432 _____ (Microsoft Corporation) C:Windowssystem32mshtml.tlb2013-09-12 03:03 - 2013-08-09 20:07 - 02706432 _____ (Microsoft Corporation) C:WindowsSysWOW64mshtml.tlb2013-09-12 03:03 - 2013-08-09 19:27 - 00089600 _____ (Microsoft Corporation) C:Windowssystem32RegisterIEPKEYs.exe2013-09-12 03:03 - 2013-08-09 19:17 - 00071680 _____ (Microsoft Corporation) C:WindowsSysWOW64RegisterIEPKEYs.exe2013-09-12 03:02 - 2013-08-09 20:58 - 14332928 _____ (Microsoft Corporation) C:WindowsSysWOW64mshtml.dll2013-09-11 21:18 - 2013-08-07 18:20 - 03155456 _____ (Microsoft Corporation) C:Windowssystem32win32k.sys2013-09-11 21:18 - 2013-08-04 19:25 - 00155584 _____ (Microsoft Corporation) C:Windowssystem32Driversataport.sys2013-09-11 21:18 - 2013-08-01 19:23 - 05550528 _____ (Microsoft Corporation) C:Windowssystem32ntoskrnl.exe2013-09-11 21:18 - 2013-08-01 19:15 - 01732032 _____ (Microsoft Corporation) C:Windowssystem32ntdll.dll2013-09-11 21:18 - 2013-08-01 19:15 - 00362496 _____ (Microsoft Corporation) C:Windowssystem32wow64win.dll2013-09-11 21:18 - 2013-08-01 19:15 - 00243712 _____ (Microsoft Corporation) C:Windowssystem32wow64.dll2013-09-11 21:18 - 2013-08-01 19:15 - 00013312 _____ (Microsoft Corporation) C:Windowssystem32wow64cpu.dll2013-09-11 21:18 - 2013-08-01 19:14 - 00215040 _____ (Microsoft Corporation) C:Windowssystem32winsrv.dll2013-09-11 21:18 - 2013-08-01 19:14 - 00016384 _____ (Microsoft Corporation) C:Windowssystem32ntvdm64.dll2013-09-11 21:18 - 2013-08-01 19:13 - 01161216 _____ (Microsoft Corporation) C:Windowssystem32kernel32.dll2013-09-11 21:18 - 2013-08-01 19:13 - 00424448 _____ (Microsoft Corporation) C:Windowssystem32KernelBase.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00043520 _____ (Microsoft Corporation) C:Windowssystem32csrsrv.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00006656 _____ (Microsoft Corporation) C:Windowssystem32apisetschema.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00006144 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-security-base-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00005120 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-file-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00004608 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-threadpool-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00004608 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-processthreads-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00004096 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-sysinfo-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00004096 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-synch-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00004096 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-localregistry-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00004096 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-localization-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-rtlsupport-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-processenvironment-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-namedpipe-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-misc-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-memory-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-libraryloader-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003584 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-heap-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-xstate-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-util-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-string-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-profile-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-io-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-interlocked-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-handle-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-fibers-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-errorhandling-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-delayload-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-debug-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-datetime-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 19:12 - 00003072 ____H (Microsoft Corporation) C:Windowssystem32api-ms-win-core-console-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:59 - 03968960 _____ (Microsoft Corporation) C:WindowsSysWOW64ntkrnlpa.exe2013-09-11 21:18 - 2013-08-01 18:59 - 03913664 _____ (Microsoft Corporation) C:WindowsSysWOW64ntoskrnl.exe2013-09-11 21:18 - 2013-08-01 18:51 - 01292192 _____ (Microsoft Corporation) C:WindowsSysWOW64ntdll.dll2013-09-11 21:18 - 2013-08-01 18:50 - 01114112 _____ (Microsoft Corporation) C:WindowsSysWOW64kernel32.dll2013-09-11 21:18 - 2013-08-01 18:50 - 00274944 _____ (Microsoft Corporation) C:WindowsSysWOW64KernelBase.dll2013-09-11 21:18 - 2013-08-01 18:50 - 00005120 _____ (Microsoft Corporation) C:WindowsSysWOW64wow32.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00006656 _____ (Microsoft Corporation) C:WindowsSysWOW64apisetschema.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00005120 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-file-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00004608 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-processthreads-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00004096 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-sysinfo-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00004096 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-synch-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00004096 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-misc-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00004096 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-localregistry-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00004096 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-localization-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-processenvironment-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-namedpipe-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-memory-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-libraryloader-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-interlocked-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-heap-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-string-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-rtlsupport-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-profile-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-io-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-handle-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-fibers-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-errorhandling-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-delayload-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-debug-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-datetime-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:48 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-console-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 18:09 - 00338432 _____ (Microsoft Corporation) C:Windowssystem32conhost.exe2013-09-11 21:18 - 2013-08-01 17:59 - 00112640 _____ (Microsoft Corporation) C:Windowssystem32smss.exe2013-09-11 21:18 - 2013-08-01 17:45 - 00025600 _____ (Microsoft Corporation) C:WindowsSysWOW64setup16.exe2013-09-11 21:18 - 2013-08-01 17:45 - 00014336 _____ (Microsoft Corporation) C:WindowsSysWOW64ntvdm64.dll2013-09-11 21:18 - 2013-08-01 17:45 - 00007680 _____ (Microsoft Corporation) C:WindowsSysWOW64instnm.exe2013-09-11 21:18 - 2013-08-01 17:45 - 00002048 _____ (Microsoft Corporation) C:WindowsSysWOW64user.exe2013-09-11 21:18 - 2013-08-01 17:43 - 00006144 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-security-base-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 17:43 - 00004608 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-threadpool-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 17:43 - 00003584 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-xstate-l1-1-0.dll2013-09-11 21:18 - 2013-08-01 17:43 - 00003072 ____H (Microsoft Corporation) C:WindowsSysWOW64api-ms-win-core-util-l1-1-0.dll2013-09-11 21:18 - 2013-07-25 19:24 - 14172672 _____ (Microsoft Corporation) C:Windowssystem32shell32.dll2013-09-11 21:18 - 2013-07-25 19:24 - 00197120 _____ (Microsoft Corporation) C:Windowssystem32shdocvw.dll2013-09-11 21:18 - 2013-07-25 18:55 - 12872704 _____ (Microsoft Corporation) C:WindowsSysWOW64shell32.dll2013-09-11 21:18 - 2013-07-25 18:55 - 00180224 _____ (Microsoft Corporation) C:WindowsSysWOW64shdocvw.dll2013-09-11 21:11 - 2013-09-11 21:11 - 00602112 _____ (OldTimer Tools) C:UsersDuboisDesktopOTL.exe2013-09-08 07:14 - 2013-09-08 07:14 - 00000000 ____D C:WindowsERUNT2013-09-08 07:12 - 2013-09-08 07:12 - 01029490 _____ (Thisisu) C:UsersDuboisDownloadsJRT.exe2013-09-08 06:55 - 2013-09-08 06:55 - 00000186 _____ C:UsersDuboisDesktopfix.reg2013-09-08 00:07 - 2013-09-08 00:31 - 00000000 ____D C:AdwCleaner2013-09-08 00:03 - 2013-09-08 00:06 - 01037278 _____ C:UsersDuboisDownloadsAdwCleaner.exe2013-09-08 00:00 - 2013-09-08 00:00 - 00003120 _____ C:WindowsSystem32TasksAdvanced System Protector_startup2013-09-07 23:59 - 2013-09-08 00:00 - 00003725 _____ C:Program Files (x86)Mozilla Firefoxsafeguard-secure-search.xml2013-09-07 23:59 - 2012-07-25 12:03 - 00016896 _____ C:Windowssystem32sasnative64.exe2013-09-07 23:57 - 2013-09-07 23:57 - 00003326 _____ C:WindowsSystem32TasksAdvanced System Protector2013-09-07 23:57 - 2013-09-07 23:57 - 00003108 _____ C:WindowsSystem32TasksRegClean Pro2013-09-07 23:57 - 2013-09-07 23:57 - 00000258 __RSH C:UsersDuboisntuser.pol2013-09-07 17:53 - 2013-09-07 17:53 - 00868582 _____ C:UsersDuboisAppDataLocalcensus.cache2013-09-07 17:53 - 2013-09-07 17:53 - 00166817 _____ C:UsersDuboisAppDataLocalars.cache2013-09-07 17:45 - 2013-09-07 17:45 - 00000000 _____ C:Windowssystem32AsIo.dll2013-09-07 17:30 - 2013-09-07 17:30 - 00000036 _____ C:UsersDuboisAppDataLocalhousecall.guid.cache2013-09-07 17:28 - 2013-09-07 17:29 - 02467424 _____ (Trend Micro Inc.) C:UsersDuboisDownloadsHousecallLauncher64.exe2013-09-07 15:29 - 2013-09-07 16:15 - 00000866 _____ C:WindowsSysWOW64InstallUtil.InstallLog2013-09-07 15:29 - 2013-09-07 15:29 - 00001309 _____ C:UsersDuboisDesktopRevo Uninstaller.lnk2013-09-07 15:29 - 2013-09-07 15:29 - 00000000 ____D C:Program Files (x86)VS Revo Group2013-09-07 15:28 - 2013-09-07 15:28 - 02623656 _____ (VS Revo Group Ltd.) C:UsersDuboisDownloadsrevosetup.exe2013-08-31 16:51 - 2013-09-07 17:53 - 00000055 _____ C:UsersDuboisAppDataRoamingWB.CFG2013-08-31 16:51 - 2013-09-07 17:53 - 00000005 _____ C:UsersDuboisAppDataRoamingWBPU-TTL.DAT2013-08-31 16:44 - 2013-08-31 16:44 - 00001154 _____ C:UsersPublicDesktopMalwarebytes Anti-Malware.lnk2013-08-31 16:44 - 2013-08-31 16:44 - 00000000 ____D C:UsersDuboisAppDataRoamingMalwarebytes2013-08-31 16:44 - 2013-08-31 16:44 - 00000000 ____D C:ProgramDataMalwarebytes2013-08-31 16:44 - 2013-08-31 16:44 - 00000000 ____D C:Program Files (x86)Malwarebytes' Anti-Malware2013-08-31 16:44 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:Windowssystem32Driversmbam.sys2013-08-31 16:16 - 2013-08-31 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:UsersDuboisDownloadsmalwarebytes-anti-malware_setup [1].exe2013-08-31 16:15 - 2013-08-31 16:15 - 00607368 _____ C:UsersDuboisDownloadsmalwarebytes-anti-malware_setup.exe2013-08-31 16:11 - 2013-08-31 16:11 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(2).exe2013-08-31 15:59 - 2013-08-31 15:59 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(1).exe2013-08-31 15:55 - 2013-08-31 15:55 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File.exe2013-08-31 14:03 - 2013-09-07 15:11 - 00002224 _____ C:UsersPublicDesktopGoogle Chrome.lnk2013-08-31 13:54 - 2013-09-13 06:09 - 00000898 _____ C:WindowsTasksGoogleUpdateTaskMachineUA.job2013-08-31 13:54 - 2013-09-12 22:59 - 00000894 _____ C:WindowsTasksGoogleUpdateTaskMachineCore.job2013-08-31 13:54 - 2013-08-31 14:04 - 00003894 _____ C:WindowsSystem32TasksGoogleUpdateTaskMachineUA2013-08-31 13:54 - 2013-08-31 14:04 - 00003642 _____ C:WindowsSystem32TasksGoogleUpdateTaskMachineCore2013-08-31 13:54 - 2013-08-31 14:03 - 00000000 ____D C:UsersDuboisAppDataLocalGoogle2013-08-31 13:54 - 2013-08-31 14:03 - 00000000 ____D C:Program Files (x86)Google2013-08-31 13:54 - 2013-08-31 13:54 - 00001849 _____ C:UsersPublicDesktopSUPERAntiSpyware Free Edition.lnk2013-08-31 13:54 - 2013-08-31 13:54 - 00000000 ____D C:UsersDuboisAppDataRoamingSUPERAntiSpyware.com2013-08-31 13:54 - 2013-08-31 13:54 - 00000000 ____D C:ProgramDataSUPERAntiSpyware.com2013-08-31 13:54 - 2013-08-31 13:54 - 00000000 ____D C:Program FilesSUPERAntiSpyware2013-08-31 13:48 - 2013-08-31 13:51 - 27353088 _____ (SUPERAntiSpyware) C:UsersDuboisDownloadsSUPERAntiSpyware.exe2013-08-30 19:56 - 2013-09-12 22:59 - 00000380 _____ C:WindowsTasksRNUpgradeHelperLogonPrompt_Dubois.job2013-08-30 19:56 - 2013-09-12 20:03 - 00002964 _____ C:WindowsSystem32TasksReclaimerUpdateXML_Dubois2013-08-30 19:56 - 2013-09-12 20:03 - 00000370 _____ C:WindowsTasksReclaimerUpdateXML_Dubois.job2013-08-30 19:56 - 2013-09-11 16:59 - 00002968 _____ C:WindowsSystem32TasksReclaimerUpdateFiles_Dubois2013-08-30 19:56 - 2013-09-11 16:59 - 00000374 _____ C:WindowsTasksReclaimerUpdateFiles_Dubois.job2013-08-30 19:56 - 2013-08-30 19:56 - 00003618 _____ C:WindowsSystem32TasksRNUpgradeHelperResumePrompt_Dubois2013-08-30 19:56 - 2013-08-30 19:56 - 00002672 _____ C:WindowsSystem32TasksRNUpgradeHelperLogonPrompt_Dubois2013-08-28 07:15 - 2013-08-28 07:15 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(18).exe2013-08-24 11:38 - 2013-08-24 11:38 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(17).exe2013-08-19 18:03 - 2013-08-19 18:03 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(16).exe2013-08-17 13:56 - 2013-08-17 13:56 - 00482680 _____ (My Company) C:UsersDuboisDownloadsSetup.exe2013-08-16 18:08 - 2013-08-17 13:57 - 00000000 ____D C:Program Files (x86)Mozilla Firefox2013-08-16 17:51 - 2013-08-16 17:51 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(15).exe2013-08-14 09:29 - 2013-08-14 09:30 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(14).exe2013-08-14 03:00 - 2013-09-12 03:02 - 00000000 ____D C:Windowssystem32MRT==================== One Month Modified Files and Folders =======2013-09-13 06:37 - 2013-09-13 06:37 - 00000000 ____D C:FRST2013-09-13 06:36 - 2013-09-13 06:36 - 01949572 _____ (Farbar) C:UsersDuboisDesktopFRST64.exe2013-09-13 06:13 - 2012-09-03 15:25 - 00000830 _____ C:WindowsTasksAdobe Flash Player Updater.job2013-09-13 06:09 - 2013-08-31 13:54 - 00000898 _____ C:WindowsTasksGoogleUpdateTaskMachineUA.job2013-09-13 04:04 - 2010-02-21 20:50 - 01428353 _____ C:WindowsWindowsUpdate.log2013-09-12 23:07 - 2009-07-13 21:45 - 00009920 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02013-09-12 23:07 - 2009-07-13 21:45 - 00009920 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02013-09-12 23:02 - 2013-08-08 16:03 - 00000000 ____D C:UsersDuboisAppDataLocalLogMeIn Hamachi2013-09-12 22:59 - 2013-08-31 13:54 - 00000894 _____ C:WindowsTasksGoogleUpdateTaskMachineCore.job2013-09-12 22:59 - 2013-08-30 19:56 - 00000380 _____ C:WindowsTasksRNUpgradeHelperLogonPrompt_Dubois.job2013-09-12 22:59 - 2010-02-21 23:45 - 00105938 _____ C:WindowsPFRO.log2013-09-12 22:59 - 2009-07-13 22:08 - 00000006 ____H C:WindowsTasksSA.DAT2013-09-12 22:59 - 2009-07-13 21:51 - 00054609 _____ C:Windowssetupact.log2013-09-12 22:57 - 2010-02-21 21:09 - 00000000 ___RD C:UsersDuboisAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup2013-09-12 22:50 - 2013-09-12 22:50 - 00007159 _____ C:UsersDuboisDesktopfix.txt2013-09-12 20:03 - 2013-08-30 19:56 - 00002964 _____ C:WindowsSystem32TasksReclaimerUpdateXML_Dubois2013-09-12 20:03 - 2013-08-30 19:56 - 00000370 _____ C:WindowsTasksReclaimerUpdateXML_Dubois.job2013-09-12 07:45 - 2013-09-12 07:45 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(19).exe2013-09-12 06:44 - 2012-12-07 17:43 - 00004182 _____ C:WindowsSystem32Tasksavast! Emergency Update2013-09-12 06:20 - 2013-09-12 06:20 - 00000000 ____D C:_OTL2013-09-12 06:04 - 2009-11-13 10:09 - 00000000 ____D C:ProgramDataAdobe2013-09-12 06:03 - 2010-03-16 15:49 - 00000000 ____D C:UsersDuboisAppDataLocalAdobe2013-09-12 05:55 - 2013-09-12 05:55 - 00984576 _____ C:UsersDuboisDownloadsMicrosoftFixit50906.msi2013-09-12 03:57 - 2009-07-13 20:20 - 00000000 ____D C:Windowsrescache2013-09-12 03:21 - 2010-02-21 21:09 - 00000000 ___RD C:UsersDuboisAppDataRoamingMicrosoftWindowsStart MenuProgramsAdministrative Tools2013-09-12 03:20 - 2009-07-13 21:45 - 00424568 _____ C:Windowssystem32FNTCACHE.DAT2013-09-12 03:02 - 2013-08-14 03:00 - 00000000 ____D C:Windowssystem32MRT2013-09-12 03:01 - 2010-11-08 07:24 - 79143768 _____ (Microsoft Corporation) C:Windowssystem32MRT.exe2013-09-11 21:11 - 2013-09-11 21:11 - 00602112 _____ (OldTimer Tools) C:UsersDuboisDesktopOTL.exe2013-09-11 16:59 - 2013-08-30 19:56 - 00002968 _____ C:WindowsSystem32TasksReclaimerUpdateFiles_Dubois2013-09-11 16:59 - 2013-08-30 19:56 - 00000374 _____ C:WindowsTasksReclaimerUpdateFiles_Dubois.job2013-09-10 19:14 - 2012-09-03 15:25 - 00692616 _____ (Adobe Systems Incorporated) C:WindowsSysWOW64FlashPlayerApp.exe2013-09-10 19:14 - 2012-09-03 15:25 - 00003768 _____ C:WindowsSystem32TasksAdobe Flash Player Updater2013-09-10 19:14 - 2011-12-05 18:13 - 00071048 _____ (Adobe Systems Incorporated) C:WindowsSysWOW64FlashPlayerCPLApp.cpl2013-09-09 03:00 - 2009-07-13 20:20 - 00000000 ____D C:Program FilesCommon FilesMicrosoft Shared2013-09-08 07:14 - 2013-09-08 07:14 - 00000000 ____D C:WindowsERUNT2013-09-08 07:12 - 2013-09-08 07:12 - 01029490 _____ (Thisisu) C:UsersDuboisDownloadsJRT.exe2013-09-08 06:55 - 2013-09-08 06:55 - 00000186 _____ C:UsersDuboisDesktopfix.reg2013-09-08 00:31 - 2013-09-08 00:07 - 00000000 ____D C:AdwCleaner2013-09-08 00:06 - 2013-09-08 00:03 - 01037278 _____ C:UsersDuboisDownloadsAdwCleaner.exe2013-09-08 00:00 - 2013-09-08 00:00 - 00003120 _____ C:WindowsSystem32TasksAdvanced System Protector_startup2013-09-08 00:00 - 2013-09-07 23:59 - 00003725 _____ C:Program Files (x86)Mozilla Firefoxsafeguard-secure-search.xml2013-09-07 23:57 - 2013-09-07 23:57 - 00003326 _____ C:WindowsSystem32TasksAdvanced System Protector2013-09-07 23:57 - 2013-09-07 23:57 - 00003108 _____ C:WindowsSystem32TasksRegClean Pro2013-09-07 23:57 - 2013-09-07 23:57 - 00000258 __RSH C:UsersDuboisntuser.pol2013-09-07 23:57 - 2010-02-21 20:50 - 00000000 ____D C:UsersDubois2013-09-07 23:57 - 2009-07-13 20:20 - 00000000 ___HD C:Windowssystem32GroupPolicy2013-09-07 23:57 - 2009-07-13 20:20 - 00000000 ____D C:WindowsSysWOW64GroupPolicy2013-09-07 17:56 - 2010-02-25 07:30 - 00000000 ____D C:UsersDuboisDocumentsAlan2013-09-07 17:53 - 2013-09-07 17:53 - 00868582 _____ C:UsersDuboisAppDataLocalcensus.cache2013-09-07 17:53 - 2013-09-07 17:53 - 00166817 _____ C:UsersDuboisAppDataLocalars.cache2013-09-07 17:53 - 2013-08-31 16:51 - 00000055 _____ C:UsersDuboisAppDataRoamingWB.CFG2013-09-07 17:53 - 2013-08-31 16:51 - 00000005 _____ C:UsersDuboisAppDataRoamingWBPU-TTL.DAT2013-09-07 17:45 - 2013-09-07 17:45 - 00000000 _____ C:Windowssystem32AsIo.dll2013-09-07 17:30 - 2013-09-07 17:30 - 00000036 _____ C:UsersDuboisAppDataLocalhousecall.guid.cache2013-09-07 17:29 - 2013-09-07 17:28 - 02467424 _____ (Trend Micro Inc.) C:UsersDuboisDownloadsHousecallLauncher64.exe2013-09-07 16:15 - 2013-09-07 15:29 - 00000866 _____ C:WindowsSysWOW64InstallUtil.InstallLog2013-09-07 15:29 - 2013-09-07 15:29 - 00001309 _____ C:UsersDuboisDesktopRevo Uninstaller.lnk2013-09-07 15:29 - 2013-09-07 15:29 - 00000000 ____D C:Program Files (x86)VS Revo Group2013-09-07 15:28 - 2013-09-07 15:28 - 02623656 _____ (VS Revo Group Ltd.) C:UsersDuboisDownloadsrevosetup.exe2013-09-07 15:11 - 2013-08-31 14:03 - 00002224 _____ C:UsersPublicDesktopGoogle Chrome.lnk2013-08-31 22:26 - 2009-07-13 22:13 - 00740322 _____ C:Windowssystem32PerfStringBackup.INI2013-08-31 16:44 - 2013-08-31 16:44 - 00001154 _____ C:UsersPublicDesktopMalwarebytes Anti-Malware.lnk2013-08-31 16:44 - 2013-08-31 16:44 - 00000000 ____D C:UsersDuboisAppDataRoamingMalwarebytes2013-08-31 16:44 - 2013-08-31 16:44 - 00000000 ____D C:ProgramDataMalwarebytes2013-08-31 16:44 - 2013-08-31 16:44 - 00000000 ____D C:Program Files (x86)Malwarebytes' Anti-Malware2013-08-31 16:16 - 2013-08-31 16:16 - 10285040 _____ (Malwarebytes Corporation ) C:UsersDuboisDownloadsmalwarebytes-anti-malware_setup [1].exe2013-08-31 16:15 - 2013-08-31 16:15 - 00607368 _____ C:UsersDuboisDownloadsmalwarebytes-anti-malware_setup.exe2013-08-31 16:11 - 2013-08-31 16:11 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(2).exe2013-08-31 15:59 - 2013-08-31 15:59 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File(1).exe2013-08-31 15:55 - 2013-08-31 15:55 - 00359583 _____ C:UsersDuboisDownloadsGorilla_Uninstaller_Download_File.exe2013-08-31 14:04 - 2013-08-31 13:54 - 00003894 _____ C:WindowsSystem32TasksGoogleUpdateTaskMachineUA2013-08-31 14:04 - 2013-08-31 13:54 - 00003642 _____ C:WindowsSystem32TasksGoogleUpdateTaskMachineCore2013-08-31 14:03 - 2013-08-31 13:54 - 00000000 ____D C:UsersDuboisAppDataLocalGoogle2013-08-31 14:03 - 2013-08-31 13:54 - 00000000 ____D C:Program Files (x86)Google2013-08-31 13:54 - 2013-08-31 13:54 - 00001849 _____ C:UsersPublicDesktopSUPERAntiSpyware Free Edition.lnk2013-08-31 13:54 - 2013-08-31 13:54 - 00000000 ____D C:UsersDuboisAppDataRoamingSUPERAntiSpyware.com2013-08-31 13:54 - 2013-08-31 13:54 - 00000000 ____D C:ProgramDataSUPERAntiSpyware.com2013-08-31 13:54 - 2013-08-31 13:54 - 00000000 ____D C:Program FilesSUPERAntiSpyware2013-08-31 13:51 - 2013-08-31 13:48 - 27353088 _____ (SUPERAntiSpyware) C:UsersDuboisDownloadsSUPERAntiSpyware.exe2013-08-31 09:50 - 2012-02-15 19:36 - 00000000 ____D C:UsersDuboisAppDataRoaming.minecraft2013-08-30 19:56 - 2013-08-30 19:56 - 00003618 _____ C:WindowsSystem32TasksRNUpgradeHelperResumePrompt_Dubois2013-08-30 19:56 - 2013-08-30 19:56 - 00002672 _____ C:WindowsSystem32TasksRNUpgradeHelperLogonPrompt_Dubois2013-08-28 07:15 - 2013-08-28 07:15 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(18).exe2013-08-24 11:38 - 2013-08-24 11:38 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(17).exe2013-08-19 18:03 - 2013-08-19 18:03 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(16).exe2013-08-17 16:12 - 2012-05-17 18:15 - 00000000 ____D C:Program Files (x86)Mozilla Maintenance Service2013-08-17 13:57 - 2013-08-16 18:08 - 00000000 ____D C:Program Files (x86)Mozilla Firefox2013-08-17 13:57 - 2013-08-07 08:21 - 00000000 ____D C:Program Files (x86)Mozilla Firefox.bak2013-08-17 13:56 - 2013-08-17 13:56 - 00482680 _____ (My Company) C:UsersDuboisDownloadsSetup.exe2013-08-16 17:51 - 2013-08-16 17:51 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(15).exe2013-08-14 09:30 - 2013-08-14 09:29 - 00675988 _____ C:UsersDuboisDownloadsMinecraft(14).exe==================== Bamital & volsnap Check =================C:WindowsSystem32winlogon.exe => MD5 is legitC:WindowsSystem32wininit.exe => MD5 is legitC:WindowsSysWOW64wininit.exe => MD5 is legitC:Windowsexplorer.exe => MD5 is legitC:WindowsSysWOW64explorer.exe => MD5 is legitC:WindowsSystem32svchost.exe => MD5 is legitC:WindowsSysWOW64svchost.exe => MD5 is legitC:WindowsSystem32services.exe => MD5 is legitC:WindowsSystem32User32.dll => MD5 is legitC:WindowsSysWOW64User32.dll => MD5 is legitC:WindowsSystem32userinit.exe => MD5 is legitC:WindowsSysWOW64userinit.exe => MD5 is legitC:WindowsSystem32Driversvolsnap.sys => MD5 is legitLastRegBack: 2013-09-11 00:06==================== End Of Log ============================
  13. Malwarebytes scan Malwarebytes Anti-Malware 1.75.0.1300www.malwarebytes.orgDatabase version: v2013.09.12.06Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16686Dubois :: DUBOIS-PC [administrator]9/12/2013 11:04:00 PMmbam-log-2013-09-12 (23-04-00).txtScan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 293917Time elapsed: 2 minute(s), 21 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 0(No malicious items detected)Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected)Files Detected: 0(No malicious items detected)(end)
  14. When I finished the scan it said to restart. I clicked ok and a message popped up about winlogon.exe error. But it restarted. One thing is you asked me to click on scan all users the first time but not this time so I didn't. Hope that's right. At this point I've been on the computer about 15 minutes after the reboot. The gorilla price mesage hasn't popped up yet. It was doing it with in that time before. OTL Scan All processes killed ========== SERVICES/DRIVERS ========== Service GorillaPrice stopped successfully! Service GorillaPrice deleted successfully! Error: Unable to stop service Update Web Layers! Registry key HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesUpdate Web Layers deleted successfully. ========== OTL ========== HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerSearchScopesDefaultScope| /E : value set successfully! HKEY_USERSS-1-5-21-1212407562-3990132692-3319406616-1000SoftwareMicrosoftInternet ExplorerSearchScopesDefaultScope| /E : value set successfully! Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems Prefs.js: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 removed from extensions.enabledItems Prefs.js: "" removed from keyword.URL Registry key HKEY_LOCAL_MACHINESoftwareMozillaPlugins@java.com/DTPlugin,version=1.6.0_32 deleted successfully. C:WindowsSysWOW64npdeployJava1.dll moved successfully. Registry key HKEY_LOCAL_MACHINESoftwareMozillaPlugins@java.com/JavaPlugin not found. File C:Program Files (x86)Javajre6binplugin2npjp2.dll not found. Registry key HKEY_LOCAL_MACHINESoftwareMozillaPluginsyaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 deleted successfully. C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultextensionsfirefox@weblayers.coMETA-INF folder moved successfully. C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultextensionsfirefox@weblayers.cochromecontent folder moved successfully. C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultextensionsfirefox@weblayers.cochrome folder moved successfully. C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultextensionsfirefox@weblayers.co folder moved successfully. C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultextensionsfirefox@weblayers.co.xpi moved successfully. C:UsersDuboisAppDataRoamingMozillaFirefoxProfilestsoeaam0.defaultsearchpluginsiminent.xml moved successfully. Registry key HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} not found. File C:Program Files (x86)Javajre6binssv.dll not found. Registry key HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C3E50543-BC36-4C80-8070-38A97E02DEB2} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{C3E50543-BC36-4C80-8070-38A97E02DEB2} not found. 64bit-Registry value HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerToolbarLocked deleted successfully. Registry value HKEY_LOCAL_MACHINESoftwareMicrosoftInternet ExplorerToolbarLocked deleted successfully. Registry value HKEY_USERSS-1-5-21-1212407562-3990132692-3319406616-1000SoftwareMicrosoftInternet ExplorerToolbarWebBrowser{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{21FA44EF-376D-4D53-9B0F-8A89D3229068} not found. Registry value HKEY_USERSS-1-5-21-1212407562-3990132692-3319406616-1000SoftwareMicrosoftWindowsCurrentVersionRunOpen Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerodm.exe not found. Registry value HKEY_USERSS-1-5-19SoftwareMicrosoftWindowsCurrentVersionRunOncemctadmin deleted successfully. Registry value HKEY_USERSS-1-5-20SoftwareMicrosoftWindowsCurrentVersionRunOncemctadmin deleted successfully. C:UsersDuboisAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupSevere Weather Alerts App.lnk moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlertsSevereWeatherAlertsApp.exe moved successfully. C:UsersDuboisAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupSevere Weather Alerts.lnk moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlertsSevereWeatherAlerts.exe moved successfully. 64bit-Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload all with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdlall.htm not found. 64bit-Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload selected with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdlselected.htm not found. 64bit-Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload video with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdlfvideo.htm not found. 64bit-Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdllink.htm not found. Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload all with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdlall.htm not found. Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload selected with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdlselected.htm not found. Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload video with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdlfvideo.htm not found. Registry key HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExtDownload with Open Download Manager not found. File C:Program Files (x86)OpenDownloaderManagerdllink.htm not found. Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93} Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftCode Store DatabaseDistribution Units{8AD9C840-044E-11D1-B3E9-00805F499D93} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{8AD9C840-044E-11D1-B3E9-00805F499D93} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftActive SetupInstalled Components{8AD9C840-044E-11D1-B3E9-00805F499D93} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{8AD9C840-044E-11D1-B3E9-00805F499D93} not found. Starting removal of ActiveX control {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftCode Store DatabaseDistribution Units{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftActive SetupInstalled Components{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} not found. Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftCode Store DatabaseDistribution Units{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftActive SetupInstalled Components{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} not found. Registry key HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{a5eeb55a-1f06-11e0-b5b6-e0cb4eb5ab32} deleted successfully. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{a5eeb55a-1f06-11e0-b5b6-e0cb4eb5ab32} not found. Registry key HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{a5eeb55a-1f06-11e0-b5b6-e0cb4eb5ab32} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{a5eeb55a-1f06-11e0-b5b6-e0cb4eb5ab32} not found. File F:LaunchU3.exe -a not found. Registry key HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{a5eeb71e-1f06-11e0-b5b6-e0cb4eb5ab32} deleted successfully. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{a5eeb71e-1f06-11e0-b5b6-e0cb4eb5ab32} not found. Registry key HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{a5eeb71e-1f06-11e0-b5b6-e0cb4eb5ab32} not found. Registry key HKEY_LOCAL_MACHINESOFTWAREClassesCLSID{a5eeb71e-1f06-11e0-b5b6-e0cb4eb5ab32} not found. File F:LaunchU3.exe -a not found. C:UsersDuboisAppDataLocalAVG SafeGuard toolbar folder moved successfully. C:WindowsSysNativedriversavgtpx64.sys moved successfully. C:ProgramDataAVG SafeGuard toolbar folder moved successfully. Folder C:Program Files (x86)AVG SafeGuard toolbar not found. Folder C:Program Files (x86)IminentToolbar not found. Folder move failed. C:Program Files (x86)Web Layers scheduled to be moved on reboot. C:UsersDuboisAppDataLocalWeather_Notifications,_LLSevereWeatherAlerts.exe_Url_s4kj03dta5kcd5ih2jnwwbyheyvnlvkv1.21.0.0 folder moved successfully. C:UsersDuboisAppDataLocalWeather_Notifications,_LLSevereWeatherAlerts.exe_Url_s4kj03dta5kcd5ih2jnwwbyheyvnlvkv folder moved successfully. C:UsersDuboisAppDataLocalWeather_Notifications,_LL folder moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlerts0906215034 folder moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlerts0906213506 folder moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlerts0904062251 folder moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlerts0904062027 folder moved successfully. Folder move failed. C:UsersDuboisAppDataLocalSevereWeatherAlerts scheduled to be moved on reboot. C:UsersDuboisAppDataRoamingMicrosoftWindowsStart MenuProgramsSevere Weather Alerts folder moved successfully. C:UsersDuboisAppDataLocalavgchrome folder moved successfully. Folder C:ProgramDataMicrosoftWindowsStart MenuProgramsZipDownloader not found. Folder C:Program Files (x86)ZipDownloader not found. C:UsersDuboisAppDataRoamingOpen Download ManagerUpdate folder moved successfully. C:UsersDuboisAppDataRoamingOpen Download Manager folder moved successfully. Folder C:UsersDuboisAppDataRoamingMicrosoftWindowsStart MenuProgramsOpenDownloaderManager not found. Folder C:ProgramDataMicrosoftWindowsStart MenuProgramsOpenDownloaderManager not found. C:ProgramDataGorillaPrice folder moved successfully. C:Program Files (x86)GorillaPrice folder moved successfully. C:Program Files (x86)OpenDownloaderManager folder moved successfully. C:WindowsSysWow64searchplugins folder moved successfully. C:WindowsSysWow64Extensions folder moved successfully. File C:UsersDuboisDesktopOpenDownloaderManager.lnk not found. ========== FILES ========== < ipconfig /release /c > Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Link-local IPv6 Address . . . . . : fe80::5969:20ea:9177:ba31%10 Default Gateway . . . . . . . . . : Ethernet adapter Hamachi: Connection-specific DNS Suffix . : IPv6 Address. . . . . . . . . . . : 2620:9b::19c3:2322 Link-local IPv6 Address . . . . . : fe80::7c90:e7dc:5a30:f3d1%16 Default Gateway . . . . . . . . . : 2620:9b::1900:1 25.0.0.1 Tunnel adapter isatap.gateway.2wire.net: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Tunnel adapter Teredo Tunneling Pseudo-Interface: Connection-specific DNS Suffix . : IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c40:1631:b4f5:9f7f Link-local IPv6 Address . . . . . : fe80::2c40:1631:b4f5:9f7f%11 Default Gateway . . . . . . . . . : Tunnel adapter isatap.{167E008B-E9B5-4091-93E8-29A57F25F0C5}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. < ipconfig /renew /c > Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : gateway.2wire.net Link-local IPv6 Address . . . . . : fe80::5969:20ea:9177:ba31%10 IPv4 Address. . . . . . . . . . . : 192.168.1.66 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.254 Ethernet adapter Hamachi: Connection-specific DNS Suffix . : IPv6 Address. . . . . . . . . . . : 2620:9b::19c3:2322 Link-local IPv6 Address . . . . . : fe80::7c90:e7dc:5a30:f3d1%16 IPv4 Address. . . . . . . . . . . : 25.195.35.34 Subnet Mask . . . . . . . . . . . : 255.0.0.0 Default Gateway . . . . . . . . . : 2620:9b::1900:1 25.0.0.1 Tunnel adapter isatap.gateway.2wire.net: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Tunnel adapter Teredo Tunneling Pseudo-Interface: Connection-specific DNS Suffix . : IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c40:1631:b4f5:9f7f Link-local IPv6 Address . . . . . : fe80::2c40:1631:b4f5:9f7f%11 Default Gateway . . . . . . . . . : Tunnel adapter isatap.{167E008B-E9B5-4091-93E8-29A57F25F0C5}: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. < ipconfig /flushdns /c > Windows IP Configuration Successfully flushed the DNS Resolver Cache. C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. < netsh winsock reset all /c > Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. < netsh int ip reset all /c > Reseting Global, OK! Reseting Interface, OK! Reseting Route, OK! Restart the computer to complete this action. C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. < netsh advfirewall reset /c > Ok. C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. < netsh advfirewall set allprofiles state on /c > Ok. C:UsersDuboisDesktopcmd.bat deleted successfully. C:UsersDuboisDesktopcmd.txt deleted successfully. ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINESoftwareWow6432NodeMicrosoftWindowsCurrentVersionUninstallMyPC Backup not found. Registry key HKEY_LOCAL_MACHINESoftwareWow6432NodeMicrosoftWindowsCurrentVersionUninstallWeb Layers not found. ========== COMMANDS ========== C:WindowsSystem32driversetcHosts moved successfully. HOSTS file reset successfully [EMPTYTEMP] User: All Users User: Dad ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Dubois ->Temp folder emptied: 675988 bytes ->Temporary Internet Files folder emptied: 10872 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 21088973 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 602 bytes User: MEAGAN ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->FireFox cache emptied: 0 bytes User: Public User: UPTOWN ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->FireFox cache emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%System32 .tmp files removed: 0 bytes %systemroot%System32 (64bit) .tmp files removed: 0 bytes %systemroot%System32drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 59477120 bytes %systemroot%sysnativeconfigsystemprofileAppDataLocalMicrosoftWindowsTemporary Internet Files folder emptied: 128 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 77.00 mb OTL by OldTimer - Version 3.2.69.0 log created on 09122013_225619 FilesFolders moved on Reboot... C:Program Files (x86)Web Layers folder moved successfully. C:UsersDuboisAppDataLocalSevereWeatherAlerts folder moved successfully. C:UsersDuboisAppDataLocalTempFXSAPIDebugLogFile.txt moved successfully. File move failed. C:UsersDuboisAppDataLocalMicrosoftWindowsTemporary Internet Filescounters.dat scheduled to be moved on reboot. File move failed. C:Windowstemp_avast_Webshlock.txt scheduled to be moved on reboot. C:WindowsSysNativeconfigsystemprofileAppDataLocalMicrosoftWindowsTemporary Internet Filescounters.dat moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot...
  15. Malware bites scan Malwarebytes Anti-Malware 1.75.0.1300www.malwarebytes.orgDatabase version: v2013.09.12.06Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16686Dubois :: DUBOIS-PC [administrator]9/12/2013 6:38:32 AMmbam-log-2013-09-12 (06-38-32).txtScan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 294098Time elapsed: 2 minute(s), 11 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 12HKCRAppID{38495740-0035-4471-851E-F5BBB86AB085} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKCRAppID{72D89EBF-0C5D-4190-91FD-398E45F1D007} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKCRCLSID{A1E28287-1A31-4b0f-8D05-AA8C465D3C5A} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKCRTypeLib{FEB62B15-CC00-4736-AAEC-BA046C9DFF73} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKCRInterface{1F8EDE97-36D5-422A-B8F0-9406E2D87C60} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKLMSOFTWAREMicrosoftWindowsCurrentVersionExtPreApproved{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKCUSOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{7F6AFBF1-E065-4627-A2FD-810366367D01} (PUP.Optional.DefaultTab) -> Quarantined and deleted successfully.HKLMSOFTWAREMicrosoftInternet ExplorerLow RightsElevationPolicy{B2D33ED6-EBBD-467C-BF6F-F175D9B51363} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKLMSOFTWAREMicrosoftInternet ExplorerLow RightsElevationPolicy{BAD84EE2-624D-4e7c-A8BB-41EFD720FD77} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C3E50543-BC36-4C80-8070-38A97E02DEB2} (PUP.Optional.FastFreeConverter.A) -> Quarantined and deleted successfully.HKCRCLSID{C3E50543-BC36-4C80-8070-38A97E02DEB2} (PUP.Optional.FastFreeConverter.A) -> Quarantined and deleted successfully.HKCUSOFTWAREMicrosoftWindowsCurrentVersionExtStats{C3E50543-BC36-4C80-8070-38A97E02DEB2} (PUP.Optional.FastFreeConverter.A) -> Quarantined and deleted successfully.Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 5C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0 (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0 (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0bh (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.Files Detected: 21C:UsersDuboisDownloadsRevo%20Uninstaller.exe (PUP.Optional.Firser.A) -> Quarantined and deleted successfully.C:UsersDuboisDownloadsZipOpenerSetup.exe (PUP.Optional.InstallCore) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0appCntrl.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0bg.html (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0bg.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0CrmAdpt.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0ct.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0CTB.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0dpk.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0hprtkMsg.htm (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0hprtkMsg.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0json2.min.js (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0logo.png (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0manifest.json (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:UsersDuboisAppDataLocalGoogleChromeUser DataDefaultExtensionspkhojieggfgllhllcegoffdcnmdeojgb2.0_0pref.json (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0iminent.crx (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0iminentApp.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0iminentEng.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0iminentsrv.exe (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0iminentTlbr.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.C:Program Files (x86)IminentToolbar1.8.25.0bhiminent.dll (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.(end)
×
×
  • Create New...