I had an administrator account and something was installed in my PC without my knowledge and deleted that account. Any time I try to change my account type or to set up a new administrator account the message comes up. Any time I try to change anything in the registry, the message comes up. Any time I try to uninstall a program, the message comes up.
The AVG antivirus won't scan the computer. Windows Defender won't do a full computer scan. I cannot download and run Microsoft Malicious Software Removal Tool without the message coming up.
I am also not able to download the DDS scanner linked to above. The setting won't allow me to even open up the downloaded file. I used Farbar. The results are below.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015
Ran by Admin (ATTENTION: The logged in user is not administrator) on MICKYS on 17-07-2015 23:37:12
Running from C:\Users\Micky\Downloads
Loaded Profiles: Admin (Available Profiles: Admin)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
Failed to access process -> smss.exe
Failed to access process -> csrss.exe
Failed to access process -> wininit.exe
Failed to access process -> csrss.exe
Failed to access process -> winlogon.exe
Failed to access process -> services.exe
Failed to access process -> lsass.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> atiesrxx.exe
Failed to access process -> dwm.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> atieclxx.exe
Failed to access process -> svchost.exe
Failed to access process -> WTabletServicePro.exe
Failed to access process -> svchost.exe
Failed to access process -> spoolsv.exe
Failed to access process -> svchost.exe
Failed to access process -> armsvc.exe
Failed to access process -> AdobeUpdateService.exe
Failed to access process -> Fuel.Service.exe
Failed to access process -> avgwdsvc.exe
Failed to access process -> SkypeC2CAutoUpdateSvc.exe
Failed to access process -> SkypeC2CPNRSvc.exe
Failed to access process -> officeclicktorun.exe
Failed to access process -> svchost.exe
Failed to access process -> dasHost.exe
Failed to access process -> FlipShareService.exe
Failed to access process -> mysqld.exe
Failed to access process -> pbbtnService.exe
Failed to access process -> PDFProFiltSrvPP.exe
Failed to access process -> PnkBstrA.exe
Failed to access process -> sqlwriter.exe
Failed to access process -> svchost.exe
Failed to access process -> ToolbarUpdater.exe
Failed to access process -> unsecapp.exe
Failed to access process -> loggingserver.exe
Failed to access process -> conhost.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> avgnsa.exe
Failed to access process -> avgemca.exe
Failed to access process -> TvService.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> WUDFHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
Failed to access process -> WacomHost.exe
Failed to access process -> Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
Failed to access process -> SearchIndexer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(AllerSoft) C:\Program Files (x86)\AllerCalc\AllerCalc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\Users\Micky\AppData\Roaming\Settings Manager\SettingsManager.exe
() C:\Program Files (x86)\USB_video_device\Utility\RemoteTool\BDARemote.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
Failed to access process -> BrYNSvc.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
Failed to access process -> wmpnetwk.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Failed to access process -> svchost.exe
Failed to access process -> dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\32988BernardoZamora.BackgammonPro_1.97.0.31_neutral__1fgex2kbsn6g8\Backgammon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Failed to access process -> SearchProtocolHost.exe
Failed to access process -> SearchFilterHost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13213840 2012-10-26] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-12-16] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2563472 2015-07-16] ()
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] => C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe [328992 2010-02-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498728 2014-12-03] (Adobe Systems Inc.)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [40960 2012-07-09] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [cdloader] => C:\Users\Micky\AppData\Roaming\mjusbsp\cdloader2.exe [50592 2012-02-01] (magicJack L.P.)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [AllerCalc] => C:\Program Files (x86)\AllerCalc\AllerCalc.exe [560408 2000-08-22] (AllerSoft)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2015-03-18] (Microsoft Corporation)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [BackgroundContainerV2] => "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\Micky\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Browser Extensions] => C:\Users\Micky\AppData\Roaming\BrowserExtensions\BEHelper.exe [540656 2015-06-09] ()
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Monotype SkyFonts Clean Up] => C:\Program Files\Monotype\SkyFonts\Monotype.SkyFonts.CleanUp.exe
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Itibiti.exe] => C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Settings Manager] => C:\Users\Micky\AppData\Roaming\Settings Manager\SettingsManager.EXE [897520 2015-05-22] ()
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [UM] => C:\Users\Micky\AppData\Roaming\Update Manager\UM.EXE [776880 2015-06-26] ()
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Policies\Explorer: [HideSCAHealth] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BDARemote.lnk [2013-05-23]
ShortcutTarget: BDARemote.lnk -> C:\Program Files (x86)\USB_video_device\Utility\RemoteTool\BDARemote.exe ()
Startup: C:\Users\Micky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk [2013-04-15]
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Micky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2014-12-14]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... chTerms%7D
URLSearchHook: HKLM-x32 - SweetPacks Toolbar - {7e8a1050-cf67-4575-92df-dcc60e7d952d} - C:\Users\Micky\AppData\LocalLow\SweetPacks\prxtbSwe0.dll (ClientConnect Ltd.)
URLSearchHook: HKLM-x32 - KeyBar 2.3 Toolbar - {3f842035-47f4-4f10-846b-6199b07f09b8} - C:\Users\Micky\AppData\LocalLow\KeyBar_2.3\prxtbKey0.dll (ClientConnect Ltd.)
SearchScopes: HKLM-x32 -> DefaultScope {5A56602F-4A65-4A67-AC77-C2D8FFF1F156} URL =
SearchScopes: HKLM-x32 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://start.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10043&barid={7BAC30C3-C7D5-11E2-BE8B-94DE80249892}
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> DefaultScope {8D63B733-E9FE-4B53-A395-4E6A3C493D64} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://isearch.babylon.com/?q={searchTerms}&babsrc=SP_ssbtis1&mntrId=125194DE80249892&affID=121136&tsp=4983
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {5A56602F-4A65-4A67-AC77-C2D8FFF1F156} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3313051&CUI=UN20097614991244525&UM=2
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {7837580A-CA3A-4379-B389-E500058D4612} URL = http://www.mysearchresults.com/search?c=2402&t=01&q={searchTerms}
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {8D63B733-E9FE-4B53-A395-4E6A3C493D64} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={45AA6619-638F-4467-B738-C213C00A5178}&mid=022734329b9f47d39dca4597c6c07161-cfd582779a4313917e294f97d7fde85584f20375&lang=en&ds=AVG&coid=avgtbavg&cmpid=0615tb&pr=fr&d=2014-02-05 23:52:56&v=18.6.0.922&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {F05B8C04-53A9-4F57-A3AA-062152494B3E} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3310511&CUI=UN11983204181079743&UM=2
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation)
BHO: Browser Extensions -> {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} -> C:\Users\Micky\AppData\Roaming\BrowserExtensions\Coupons64.dll [2015-06-09] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-04] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-04] (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-12-15] (DVDVideoSoft Ltd.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Browser Extensions -> {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} -> C:\Users\Micky\AppData\Roaming\BrowserExtensions\Coupons.dll [2015-06-09] ()
BHO-x32: KeyBar 2.3 Toolbar -> {3f842035-47f4-4f10-846b-6199b07f09b8} -> C:\Users\Micky\AppData\LocalLow\KeyBar_2.3\prxtbKey0.dll [2014-04-10] (ClientConnect Ltd.)
BHO-x32: mixidj Helper Object -> {4D6A9BBF-402C-4301-B1EF-28D04F71D761} -> C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\bh\mixidj.dll [2013-04-25] (MixiDJ)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO-x32: PasswordBox Helper -> {5DB69B97-934B-451D-94DB-32EF802A01CD} -> C:\Program Files (x86)\PasswordBox\Application\pbbtn.dll [2015-05-04] (PasswordBox, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-04] (Oracle Corporation)
BHO-x32: No Name -> {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} -> No File
BHO-x32: SweetPacks Toolbar -> {7e8a1050-cf67-4575-92df-dcc60e7d952d} -> C:\Users\Micky\AppData\LocalLow\SweetPacks\prxtbSwe0.dll [2014-04-10] (ClientConnect Ltd.)
BHO-x32: AVG SafeGuard toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG SafeGuard toolbar\18.7.0.147\AVG SafeGuard toolbar_toolbar.dll [2015-07-16] (AVG Secure Search)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-04] (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-12-15] (DVDVideoSoft Ltd.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\18.7.0.147\AVG SafeGuard toolbar_toolbar.dll [2015-07-16] (AVG Secure Search)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.7.0.147\AVG SafeGuard toolbar_toolbar.dll [2015-07-16] (AVG Secure Search)
Toolbar: HKLM-x32 - MixiDJ Toolbar - {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidjTlbr.dll [2013-04-25] (MixiDJ)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - SweetPacks Toolbar - {7e8a1050-cf67-4575-92df-dcc60e7d952d} - C:\Users\Micky\AppData\LocalLow\SweetPacks\prxtbSwe0.dll [2014-04-10] (ClientConnect Ltd.)
Toolbar: HKLM-x32 - KeyBar 2.3 Toolbar - {3f842035-47f4-4f10-846b-6199b07f09b8} - C:\Users\Micky\AppData\LocalLow\KeyBar_2.3\prxtbKey0.dll [2014-04-10] (ClientConnect Ltd.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {3F842035-47F4-4F10-846B-6199B07F09B8} - No File
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {7E8A1050-CF67-4575-92DF-DCC60E7D952D} - No File
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.7.0\ViProtocol.dll [2015-07-16] (AVG Secure Search)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{2A0EF40E-A1F2-41EF-9657-CE4F831DDB7B}: [NameServer] 208.69.150.250,208.69.150.252
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 208.69.150.250,208.69.150.252
FireFox:
========
FF ProfilePath: C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801
FF DefaultSearchEngine: Bing
FF DefaultSearchEngine.US: Yahoo!
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Homepage: hxxp://www.msn.com/?pc=U270&ocid=U270DH ... g.com?cid={45AA6619-638F-4467-B738-C213C00A5178}&mid=022734329b9f47d39dca4597c6c07161-cfd582779a4313917e294f97d7fde85584f20375&lang=en&ds=AVG&coid=avgtbavg&cmpid=0615tb&pr=fr&d=2014-02-05 23:52:56&v=18.6.0.922&pid=safeguard&sg=0&sap=hp
FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-14] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.7.0\\npsitesafety.dll No File
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll No File
FF SearchPlugin: C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\searchplugins\avg-secure-search.xml [2015-06-14]
FF SearchPlugin: C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\searchplugins\yahoo_ff.xml [2015-04-29]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml [2015-07-16]
FF Extension: Bing Search - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\bingsearch.full@microsoft.com [2015-07-16]
FF Extension: Ebay Shopping Assistant by Spigot - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\{cb95c6f9-efa1-43f6-886f-f466821f5348} [2015-03-13]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\adblockpopups@jessehakanen.net.xpi [2014-06-24]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-01-01]
FF Extension: Adblock Plus - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-20]
FF Extension: SySaver - C:\Program Files (x86)\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org [2015-05-18]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.7.0.147
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.7.0.147 [2015-07-16]
FF HKLM-x32\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [firefox@passwordbox.com] - C:\Program Files (x86)\PasswordBox\Firefox
FF Extension: PasswordBox - C:\Program Files (x86)\PasswordBox\Firefox [2013-11-22]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-12-02]
FF HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Firefox\Extensions: [{83198ede-24e1-41e2-b78f-dcc763428f7a}] - C:\Program Files (x86)\LyricsParty\131.xpi
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2015-05-18] <==== ATTENTION
Chrome:
=======
CHR Profile: C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default
CHR Extension: (Awesome Screenshot: Screen capture, Annotate) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2014-10-03]
CHR Extension: (Google Docs) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-30]
CHR Extension: (Google Drive) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-30]
CHR Extension: (YouTube) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-30]
CHR Extension: (Google Search) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-30]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2014-09-12]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-12-07]
CHR Extension: (AdBlock) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Skype Click to Call) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-08-17]
CHR Extension: (AVG SafeGuard) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-08-30]
CHR Extension: (Google Wallet) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Bitdefender QuickScan) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2015-07-17]
CHR Extension: (Gmail) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-30]
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [banjjklfojcdbofbhbgiedekefohoaff] - C:\Users\Micky\AppData\Local\CRE\banjjklfojcdbofbhbgiedekefohoaff.crx [2013-09-26]
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bnkkfcoajiakgkgooblnilgdgcimmael] - C:\Users\Micky\AppData\Local\CRE\bnkkfcoajiakgkgooblnilgdgcimmael.crx [2013-09-24]
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [banjjklfojcdbofbhbgiedekefohoaff] - C:\Users\Micky\AppData\Local\CRE\banjjklfojcdbofbhbgiedekefohoaff.crx [2013-09-26]
CHR HKLM-x32\...\Chrome\Extension: [bnkkfcoajiakgkgooblnilgdgcimmael] - C:\Users\Micky\AppData\Local\CRE\bnkkfcoajiakgkgooblnilgdgcimmael.crx [2013-09-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-12-03]
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [kpepfkjapeclaafmhoelccknpfedainn] - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidj.crx [2013-04-18]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [lmhcioafdnaphcmlajkgbnghloomafka] - C:\Program Files (x86)\LyricsParty\131.crx [Not Found]
Opera:
=======
OPR Extension: (Opera Software) - C:\Users\Micky\AppData\Roaming\Opera Software\Opera Stable\Extensions\hjjhcalkcaeagibemeeakbmmmaneedoh [2014-09-15]
OPR Extension: (Adblock Plus) - C:\Users\Micky\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2014-09-12]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-06-09] (Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-07-04] (Advanced Micro Devices, Inc.) [File not signed]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3247120 2014-12-16] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-12-16] (AVG Technologies CZ, s.r.o.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-28] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2739888 2015-05-19] (Microsoft Corporation)
R2 FlipShare Service; C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe [451904 2009-06-04] ()
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 lmhosts; C:\Windows\system32\svchost.exe [38792 2014-10-28] (Microsoft Corporation)
R2 lmhosts; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-28] (Microsoft Corporation)
S3 Media Center 19 Service; C:\Program Files (x86)\J River\Media Center 19\JRService.exe [397896 2014-08-13] (JRiver, Inc.)
R2 MySQL; C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe [12907520 2013-02-01] () [File not signed]
R2 NlaSvc; C:\Windows\System32\svchost.exe [38792 2014-10-28] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-28] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [38792 2014-10-28] (Microsoft Corporation)
R2 nsi; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-28] (Microsoft Corporation)
R2 PasswordBox; C:\Program Files (x86)\PasswordBox\pbbtnService.exe [67584 2014-05-14] (PasswordBox, Inc.) [File not signed]
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe [63040 2007-08-15] ()
R2 TVService; C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TVService.exe [233984 2014-09-15] (Team MediaPortal) [File not signed]
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation)
R2 vToolbarUpdater18.7.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\ToolbarUpdater.exe [1842576 2015-07-16] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671000 2014-11-04] (Wacom Technology, Corp.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R2 AODDriver4.2; C:\Program Files (x86)\GIGABYTE\ET6\amd64\AODDriver2.sys [57512 2012-09-24] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [237848 2014-10-24] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-10-29] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [270104 2014-06-30] (AVG Technologies CZ, s.r.o.)
S3 DFX11_1; C:\Windows\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-05-07] ()
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-28] (Microsoft Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2014-04-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-17 23:37 - 2015-07-17 23:37 - 02133504 _____ (Farbar) C:\Users\Micky\Downloads\FRST64.exe
2015-07-17 23:37 - 2015-07-17 23:37 - 00042249 _____ C:\Users\Micky\Downloads\FRST.txt
2015-07-17 23:37 - 2015-07-17 23:37 - 00000000 ____D C:\FRST
2015-07-17 23:34 - 2015-07-17 23:34 - 00688992 _____ (Swearware) C:\Users\Micky\Downloads\dds.com
2015-07-17 23:34 - 2015-07-17 23:34 - 00688992 _____ (Swearware) C:\Users\Micky\Downloads\dds (1).com
2015-07-17 23:30 - 2015-07-17 23:30 - 00688992 _____ (Swearware) C:\Users\Micky\Downloads\dds.scr
2015-07-17 18:25 - 2015-07-17 18:25 - 00572456 _____ (F-Secure Corporation) C:\Users\Micky\Downloads\F-SecureOnlineScanner.exe
2015-07-17 18:25 - 2015-07-17 18:25 - 00000000 ____D C:\ProgramData\F-Secure
2015-07-17 18:24 - 2015-07-17 18:24 - 00717656 _____ (Kaspersky Lab) C:\Users\Micky\Downloads\setup.exe
2015-07-17 18:24 - 2015-07-17 18:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2015-07-17 18:21 - 2015-07-17 18:21 - 02870984 _____ (ESET) C:\Users\Micky\Downloads\esetsmartinstaller_enu.exe
2015-07-17 18:21 - 2015-07-17 18:21 - 02865680 _____ C:\Users\Micky\Downloads\bitdefender_isecurity_qs.exe
2015-07-17 18:19 - 2015-07-17 18:20 - 00000000 ____D C:\Users\Micky\AppData\Roaming\QuickScan
2015-07-17 18:19 - 2015-07-17 18:19 - 00039480 _____ C:\Users\Micky\Downloads\qsinstaller (1).exe
2015-07-17 18:14 - 2015-07-17 20:48 - 00000095 _____ C:\Users\Micky\.accessibility.properties
2015-07-17 16:00 - 2015-07-17 16:00 - 01178272 _____ (Magical Jelly Bean ) C:\Users\Micky\Downloads\KeyFinderInstaller.exe
2015-07-17 15:24 - 2015-07-17 15:24 - 05481344 _____ (Avast Software s.r.o.) C:\Users\Micky\Downloads\avast_free_antivirus_setup_online_softonic.exe
2015-07-17 15:07 - 2015-07-17 15:07 - 00000000 ____D C:\Users\Micky\AppData\Roaming\TeamViewer
2015-07-17 15:06 - 2015-07-17 15:07 - 05434464 _____ (TeamViewer) C:\Users\Micky\Downloads\TeamViewerQS_en (2).exe
2015-07-17 15:06 - 2015-07-17 15:06 - 05434464 _____ (TeamViewer) C:\Users\Micky\Downloads\TeamViewerQS_en (1).exe
2015-07-17 15:05 - 2015-07-17 15:05 - 08009896 _____ (TeamViewer GmbH) C:\Users\Micky\Downloads\TeamViewer_Setup_en.exe
2015-07-17 15:05 - 2015-07-17 15:05 - 05434464 _____ (TeamViewer) C:\Users\Micky\Downloads\TeamViewerQS_en.exe
2015-07-17 15:05 - 2015-07-17 15:05 - 00000000 _____ C:\Users\Micky\debug.log
2015-07-17 13:52 - 2015-07-17 13:52 - 04176437 _____ C:\Users\Micky\Downloads\tdsskiller.zip
2015-07-16 22:05 - 2015-07-17 17:08 - 00000000 _____ C:\Recovery.txt
2015-07-16 21:34 - 2015-07-16 21:34 - 00000548 _____ C:\Users\Micky\Documents\codeidentifiers.txt
2015-07-16 21:01 - 2015-07-16 21:01 - 50057952 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\Windows-KB890830-x64-V5.26 (2).exe
2015-07-16 21:01 - 2015-07-16 21:01 - 02253456 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\DefaultPack.EXE
2015-07-16 20:59 - 2015-07-16 20:59 - 02897510 _____ C:\Users\Micky\Downloads\Windows8.1-KB2959977-x64 (1).msu
2015-07-16 20:58 - 2015-07-16 21:09 - 724339463 _____ C:\Users\Micky\Downloads\Windows8.1-KB2919355-x64.msu
2015-07-16 20:58 - 2015-07-16 20:59 - 50327684 _____ C:\Users\Micky\Downloads\Windows8.1-KB2932046-x64.msu
2015-07-16 20:58 - 2015-07-16 20:59 - 132577686 _____ C:\Users\Micky\Downloads\Windows8.1-KB2934018-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 20533883 _____ C:\Users\Micky\Downloads\Windows8.1-KB2938439-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 02897510 _____ C:\Users\Micky\Downloads\Windows8.1-KB2959977-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 00309819 _____ C:\Users\Micky\Downloads\Windows8.1-KB2937592-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 00038064 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\clearcompressionflag.exe
2015-07-16 19:27 - 2015-07-16 19:28 - 115831096 _____ (AVG Technologies) C:\Users\Micky\Downloads\avg_tuh_stf_all_2015_604_24c28.exe
2015-07-16 18:54 - 2015-07-16 18:54 - 00000000 ____D C:\Users\Micky\AppData\Roaming\AVG2014
2015-07-16 15:32 - 2015-07-16 15:32 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Micky\Downloads\mbam-setup-2.1.8.1057 (1).exe
2015-07-16 15:02 - 2015-07-16 15:02 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Micky\Downloads\mbam-setup-2.1.8.1057.exe
2015-07-16 13:29 - 2015-07-17 18:14 - 00000000 ___DO C:\Users\Micky\OneDrive
2015-07-16 13:08 - 2015-07-16 13:08 - 50057952 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\Windows-KB890830-x64-V5.26 (1).exe
2015-07-15 21:54 - 2015-07-15 21:54 - 00050688 _____ (Atribune.org) C:\Users\Micky\Downloads\ATF-Cleaner.exe
2015-07-15 21:46 - 2015-07-15 21:46 - 50057952 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\Windows-KB890830-x64-V5.26.exe
2015-07-15 14:53 - 2015-07-17 22:00 - 00000000 ____D C:\Users\Micky\Documents\Border Patrol SCOTUS Support
2015-07-15 02:43 - 2015-07-09 14:51 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-15 02:43 - 2015-07-09 13:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 02:43 - 2015-07-09 11:03 - 03701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-15 02:43 - 2015-07-09 10:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-15 02:43 - 2015-07-09 10:53 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-15 02:43 - 2015-07-09 10:50 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 02:43 - 2015-07-09 10:50 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-15 02:43 - 2015-07-09 10:48 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-15 02:43 - 2015-07-09 10:46 - 02229248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-15 02:43 - 2015-07-09 10:38 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-15 02:43 - 2015-07-09 10:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-15 02:43 - 2015-07-09 10:35 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-15 02:43 - 2015-07-09 10:34 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-15 02:43 - 2015-06-28 00:07 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-07-15 02:43 - 2015-06-28 00:07 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-07-15 02:43 - 2015-06-28 00:06 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 02:43 - 2015-06-28 00:06 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-07-15 02:43 - 2015-06-27 11:42 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-07-15 02:43 - 2015-06-26 22:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-07-15 02:43 - 2015-06-26 22:12 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-07-15 02:43 - 2015-06-26 22:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-07-15 02:43 - 2015-06-26 22:08 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-15 02:43 - 2015-06-26 22:08 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-07-15 02:43 - 2015-06-26 21:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-07-15 02:43 - 2015-06-26 21:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-15 02:43 - 2015-06-26 21:05 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-15 02:43 - 2015-06-26 21:00 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-07-15 02:43 - 2015-06-26 20:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-07-15 02:43 - 2015-06-26 20:26 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-07-15 02:43 - 2015-06-24 21:31 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-07-15 02:43 - 2015-06-15 17:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-15 02:43 - 2015-06-15 17:24 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-15 02:43 - 2015-06-15 16:16 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-15 02:43 - 2015-06-15 16:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-15 02:43 - 2015-06-15 15:50 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-07-15 02:43 - 2015-06-15 14:57 - 02460160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-07-15 02:43 - 2015-05-30 16:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 02:43 - 2015-05-30 14:36 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 02:43 - 2015-05-30 14:35 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-15 02:43 - 2015-05-07 12:50 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-15 02:43 - 2015-05-07 12:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 02:43 - 2015-05-07 11:53 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-15 02:43 - 2015-05-07 11:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-15 02:43 - 2015-05-07 10:21 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 02:43 - 2015-05-07 10:05 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-07-15 02:43 - 2015-05-02 19:39 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-07-15 02:43 - 2015-04-29 18:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 02:38 - 2015-07-03 08:52 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-15 02:38 - 2015-07-03 08:52 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-15 02:38 - 2015-07-03 08:50 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-15 02:38 - 2015-07-03 08:50 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-15 02:38 - 2015-07-02 16:21 - 19877376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-15 02:38 - 2015-07-02 15:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-15 02:38 - 2015-07-02 15:49 - 25193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-15 02:38 - 2015-07-02 15:23 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-15 02:38 - 2015-07-02 15:19 - 12855296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-15 02:38 - 2015-07-02 14:55 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-15 02:38 - 2015-07-02 14:20 - 14453248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-15 02:38 - 2015-07-02 13:59 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-15 02:38 - 2015-07-01 17:08 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-15 02:38 - 2015-07-01 16:14 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-15 02:38 - 2015-06-29 17:43 - 00026288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 02:38 - 2015-06-29 10:07 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-07-15 02:38 - 2015-06-26 18:21 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-07-15 02:38 - 2015-06-26 18:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-07-15 02:38 - 2015-06-15 17:39 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-07-15 02:38 - 2015-06-15 17:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 02:38 - 2015-06-15 17:26 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-07-15 02:38 - 2015-06-15 17:24 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-07-15 02:38 - 2015-06-15 17:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-07-15 02:38 - 2015-06-15 16:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-07-15 02:38 - 2015-06-15 16:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-07-15 02:38 - 2015-06-15 16:56 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-07-15 02:38 - 2015-06-15 16:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-07-15 02:38 - 2015-06-15 16:49 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-07-15 02:38 - 2015-06-15 16:41 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-07-15 02:38 - 2015-06-15 16:38 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-07-15 02:38 - 2015-06-15 16:36 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-07-15 02:38 - 2015-06-15 16:17 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-15 02:38 - 2015-06-15 16:16 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-15 02:38 - 2015-06-15 16:15 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-07-15 02:38 - 2015-06-15 16:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-07-15 02:38 - 2015-06-15 16:04 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-07-15 02:38 - 2015-06-15 16:03 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-07-15 02:38 - 2015-06-15 15:52 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 02:38 - 2015-06-15 15:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-07-15 02:38 - 2015-06-15 15:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-07-15 02:38 - 2015-06-15 15:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-07-15 02:38 - 2015-06-15 15:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-07-15 02:38 - 2015-06-15 15:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-07-15 02:38 - 2015-06-15 15:37 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-07-15 02:38 - 2015-06-15 15:32 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-07-15 02:38 - 2015-06-15 15:31 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-07-15 02:38 - 2015-06-15 15:30 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-07-15 02:38 - 2015-06-15 15:30 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-07-15 02:38 - 2015-06-15 15:17 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-15 02:38 - 2015-06-15 15:07 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-15 02:38 - 2015-06-15 15:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-07-15 02:38 - 2015-06-10 22:49 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-15 02:38 - 2015-06-10 11:13 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-15 02:38 - 2015-05-11 11:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-07-15 02:38 - 2015-05-03 10:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 02:38 - 2015-05-03 10:07 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-15 02:38 - 2015-05-03 09:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 02:38 - 2015-05-03 09:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-07-15 02:38 - 2015-05-03 09:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-07-15 02:38 - 2015-05-03 09:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-07-15 02:38 - 2015-04-24 21:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-07-15 02:38 - 2014-11-04 14:25 - 00059712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-07-15 02:38 - 2014-11-04 14:25 - 00051008 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-07-15 02:38 - 2014-11-04 01:55 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-07-15 02:38 - 2014-11-04 01:54 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-07-15 02:38 - 2014-11-04 01:54 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-07-15 02:38 - 2014-11-04 01:54 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-07-15 02:37 - 2015-06-16 00:36 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-07-15 02:37 - 2015-06-16 00:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-07-15 02:37 - 2015-05-12 08:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 02:37 - 2015-05-01 18:33 - 00410739 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-15 02:37 - 2015-04-28 08:13 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-07-15 02:37 - 2015-04-28 08:13 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2015-07-15 02:36 - 2015-05-07 11:47 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-07-15 02:36 - 2015-04-23 10:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-15 02:36 - 2015-04-23 10:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-08 21:32 - 2015-07-08 21:32 - 00000000 ____D C:\Users\Micky\Documents\New folder (3)
2015-07-08 21:31 - 2015-07-08 21:31 - 00000000 ____D C:\Users\Micky\Documents\Games
2015-07-08 21:31 - 2015-07-08 21:31 - 00000000 ____D C:\Users\Micky\Desktop\New folder
2015-07-08 20:55 - 2015-07-08 20:55 - 00280297 _____ C:\Users\Micky\Downloads\AA3DeployInstaller.exe
2015-07-08 20:55 - 2015-07-08 20:55 - 00000000 ____D C:\Users\Micky\AppData\Local\Apps\2.0
2015-07-03 19:00 - 2015-07-03 19:00 - 00000000 ____D C:\Users\Micky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Git
2015-07-03 18:59 - 2015-07-03 19:00 - 00000000 ____D C:\Users\Micky\AppData\Roaming\Appcelerator
2015-07-03 18:58 - 2015-07-03 18:59 - 135327376 _____ (Appcelerator) C:\Users\Micky\Downloads\Aptana_Studio_3_Setup_3.6.1.exe
2015-07-03 18:57 - 2015-07-03 18:57 - 06890528 _____ (Linspire Inc. ) C:\Users\Micky\Downloads\nvu-1.0-win32-installer-full.exe
2015-07-03 18:56 - 2015-07-03 18:56 - 00000000 ____D C:\Users\Micky\AppData\Roaming\KompoZer
2015-07-03 18:55 - 2015-07-03 18:55 - 07949158 _____ C:\Users\Micky\Downloads\kompozer-0.7.10-win32.zip
2015-07-03 18:55 - 2015-07-03 18:55 - 00000000 ____D C:\Users\Micky\Downloads\kompozer-0.7.10-win32
2015-07-01 18:52 - 2015-07-01 18:52 - 00037376 _____ C:\Users\Micky\Downloads\VIOLENT-Broward.xls
2015-06-29 11:52 - 2015-06-29 11:52 - 00000000 ____D C:\Users\Micky\Downloads\texas-notary-training
2015-06-29 11:48 - 2015-06-29 11:49 - 110978379 _____ C:\Users\Micky\Downloads\texas-notary-training.zip
2015-06-25 00:53 - 2015-06-25 00:53 - 00000000 ____D C:\Users\Micky\Documents\MIT_Marketing
2015-06-25 00:52 - 2015-06-25 00:52 - 03987450 _____ C:\Users\Micky\Downloads\15-834-spring-2003.zip
2015-06-24 23:39 - 2015-06-24 23:39 - 00000000 ____D C:\Users\Micky\Documents\MIT Macroeconomis
2015-06-24 23:36 - 2015-06-24 23:36 - 11255781 _____ C:\Users\Micky\Downloads\14-02-spring-2014.zip
2015-06-24 01:29 - 2015-06-24 01:29 - 01217192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FM20.DLL
2015-06-18 13:16 - 2015-06-18 13:17 - 04928968 _____ (AVG Technologies) C:\Users\Micky\Downloads\avg_free_stb_all_5961p1_177.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-17 23:26 - 2014-06-20 19:42 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-17 23:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-07-17 22:58 - 2013-04-11 11:31 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-17 20:48 - 2014-08-23 06:40 - 00000000 ____D C:\Users\Micky
2015-07-17 18:20 - 2013-08-29 18:30 - 00000398 _____ C:\WINDOWS\Tasks\LyricsParty Update.job
2015-07-17 18:16 - 2013-04-14 23:27 - 00000000 ____D C:\ProgramData\MFAData
2015-07-17 18:00 - 2015-01-11 12:32 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-17 17:59 - 2015-02-23 08:07 - 00000372 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2015-07-17 17:59 - 2013-08-22 09:46 - 00313033 _____ C:\WINDOWS\setupact.log
2015-07-17 17:59 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-17 17:59 - 2013-04-11 11:31 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-17 17:51 - 2014-08-23 07:15 - 01555635 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-17 14:03 - 2014-08-23 07:20 - 00000258 __RSH C:\Users\Micky\ntuser.pol
2015-07-17 01:59 - 2013-04-11 11:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-07-16 19:28 - 2014-01-19 15:08 - 00000000 ____D C:\ProgramData\AVG
2015-07-16 17:22 - 2014-08-26 03:49 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2015-07-16 17:22 - 2013-04-14 23:33 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2015-07-16 15:26 - 2014-05-11 20:58 - 00000000 ____D C:\Users\Micky\.gradle
2015-07-16 12:25 - 2015-01-06 21:43 - 00000000 ____D C:\Users\Micky\Tracing
2015-07-16 12:08 - 2015-04-04 02:33 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-07-16 12:08 - 2015-04-04 02:33 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-07-16 12:08 - 2012-07-26 02:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-16 02:14 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\rescache
2015-07-15 21:04 - 2013-08-22 09:44 - 05641488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-07-15 20:59 - 2014-12-13 21:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-15 20:59 - 2014-08-25 02:42 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-07-15 20:59 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-07-15 20:59 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-07-15 03:55 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-07-15 03:48 - 2013-04-12 02:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-15 03:43 - 2013-08-16 07:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-14 13:54 - 2014-09-12 09:51 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-14 12:18 - 2015-03-18 12:15 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-07-14 12:18 - 2014-09-12 10:17 - 00000000 ____D C:\Program Files (x86)\Opera
2015-07-13 17:26 - 2015-04-02 17:55 - 00001169 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-07-13 17:26 - 2015-04-02 17:55 - 00001157 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-07-13 17:26 - 2013-04-11 22:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-13 17:21 - 2014-03-18 04:54 - 00056554 _____ C:\WINDOWS\PFRO.log
2015-07-13 16:10 - 2015-03-13 11:29 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-13 16:10 - 2015-03-13 11:29 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-13 01:35 - 2013-10-19 01:38 - 00000000 ____D C:\Users\Micky\Documents\Resumes
2015-07-12 02:00 - 2014-06-15 00:53 - 00000372 _____ C:\WINDOWS\Tasks\Quark Updater.job
2015-07-05 05:08 - 2013-04-13 05:09 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-07-03 18:58 - 2014-08-26 03:29 - 00556032 ___SH C:\Users\Micky\Downloads\Thumbs.db
2015-07-03 08:43 - 2013-04-12 05:04 - 130333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-27 01:24 - 2015-05-06 17:03 - 00000000 ____D C:\Users\Micky\AppData\Roaming\Update Manager
2015-06-26 05:56 - 2014-12-14 09:04 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-06-25 09:41 - 2013-12-28 02:33 - 00000000 ____D C:\Users\Micky\Documents\Visual Studio 2013
2015-06-17 10:57 - 2015-04-16 23:10 - 00000000 ____D C:\Users\Micky\Documents\stormSpotters
==================== Files in the root of some directories =======
2013-06-14 16:36 - 2013-06-14 16:36 - 0000201 _____ () C:\Program Files (x86)\17B5MCP0.bat
2013-05-20 17:58 - 2014-06-17 02:57 - 0003745 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-05-07 13:22 - 2014-06-02 22:14 - 0000132 _____ () C:\Users\Micky\AppData\Roaming\Adobe BMP Format CS5 Prefs
2013-06-12 19:10 - 2013-06-12 19:26 - 0000132 _____ () C:\Users\Micky\AppData\Roaming\Adobe IllExport Filter CS5 Prefs
2013-07-25 22:45 - 2014-02-09 23:58 - 0000132 _____ () C:\Users\Micky\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-12-02 22:54 - 2015-05-21 19:28 - 0000033 _____ () C:\Users\Micky\AppData\Roaming\AdobeWLCMCache.dat
2014-11-23 14:42 - 2014-11-23 14:46 - 0000348 _____ () C:\Users\Micky\AppData\Roaming\burnaware.ini
2014-07-05 01:21 - 2014-07-05 02:25 - 0019165 _____ () C:\Users\Micky\AppData\Roaming\PS12_panel.log
2013-04-21 00:29 - 2014-11-23 21:17 - 0001456 _____ () C:\Users\Micky\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-01-08 20:50 - 2015-05-20 17:34 - 0001456 _____ () C:\Users\Micky\AppData\Local\Adobe Save for Web 13.0 Prefs
2013-04-27 18:17 - 2014-11-23 14:40 - 0013824 _____ () C:\Users\Micky\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-10-02 19:53 - 2014-10-02 19:53 - 0001783 _____ () C:\Users\Micky\AppData\Local\recently-used.xbel
2015-07-17 15:55 - 2015-07-17 15:55 - 0000017 _____ () C:\Users\Micky\AppData\Local\resmon.resmoncfg
2013-08-30 21:07 - 2013-08-30 21:07 - 0000130 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
ATTENTION: ==> Could not access BCD. Check to make sure user is administrator or see Addition.txt for additional information.
==================== End of log ============================
Please help.
Thank you,
Micky