Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Getting the message"this program is blocked by group policy"

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Getting the message"this program is blocked by group policy"

Unread postby mbaker1973 » July 18th, 2015, 12:35 am

The full message that I am getting is, "This program is blocked by group policy. For more information, contact your system administrator".

I had an administrator account and something was installed in my PC without my knowledge and deleted that account. Any time I try to change my account type or to set up a new administrator account the message comes up. Any time I try to change anything in the registry, the message comes up. Any time I try to uninstall a program, the message comes up.

The AVG antivirus won't scan the computer. Windows Defender won't do a full computer scan. I cannot download and run Microsoft Malicious Software Removal Tool without the message coming up.

I am also not able to download the DDS scanner linked to above. The setting won't allow me to even open up the downloaded file. I used Farbar. The results are below.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015
Ran by Admin (ATTENTION: The logged in user is not administrator) on MICKYS on 17-07-2015 23:37:12
Running from C:\Users\Micky\Downloads
Loaded Profiles: Admin (Available Profiles: Admin)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> smss.exe
Failed to access process -> csrss.exe
Failed to access process -> wininit.exe
Failed to access process -> csrss.exe
Failed to access process -> winlogon.exe
Failed to access process -> services.exe
Failed to access process -> lsass.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> atiesrxx.exe
Failed to access process -> dwm.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> atieclxx.exe
Failed to access process -> svchost.exe
Failed to access process -> WTabletServicePro.exe
Failed to access process -> svchost.exe
Failed to access process -> spoolsv.exe
Failed to access process -> svchost.exe
Failed to access process -> armsvc.exe
Failed to access process -> AdobeUpdateService.exe
Failed to access process -> Fuel.Service.exe
Failed to access process -> avgwdsvc.exe
Failed to access process -> SkypeC2CAutoUpdateSvc.exe
Failed to access process -> SkypeC2CPNRSvc.exe
Failed to access process -> officeclicktorun.exe
Failed to access process -> svchost.exe
Failed to access process -> dasHost.exe
Failed to access process -> FlipShareService.exe
Failed to access process -> mysqld.exe
Failed to access process -> pbbtnService.exe
Failed to access process -> PDFProFiltSrvPP.exe
Failed to access process -> PnkBstrA.exe
Failed to access process -> sqlwriter.exe
Failed to access process -> svchost.exe
Failed to access process -> ToolbarUpdater.exe
Failed to access process -> unsecapp.exe
Failed to access process -> loggingserver.exe
Failed to access process -> conhost.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> avgnsa.exe
Failed to access process -> avgemca.exe
Failed to access process -> TvService.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> WUDFHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
Failed to access process -> WacomHost.exe
Failed to access process -> Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
Failed to access process -> SearchIndexer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(AllerSoft) C:\Program Files (x86)\AllerCalc\AllerCalc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\Users\Micky\AppData\Roaming\Settings Manager\SettingsManager.exe
() C:\Program Files (x86)\USB_video_device\Utility\RemoteTool\BDARemote.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
Failed to access process -> BrYNSvc.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
Failed to access process -> wmpnetwk.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Failed to access process -> svchost.exe
Failed to access process -> dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\32988BernardoZamora.BackgammonPro_1.97.0.31_neutral__1fgex2kbsn6g8\Backgammon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Failed to access process -> SearchProtocolHost.exe
Failed to access process -> SearchFilterHost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13213840 2012-10-26] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-12-16] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2563472 2015-07-16] ()
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] => C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe [328992 2010-02-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498728 2014-12-03] (Adobe Systems Inc.)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [40960 2012-07-09] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [cdloader] => C:\Users\Micky\AppData\Roaming\mjusbsp\cdloader2.exe [50592 2012-02-01] (magicJack L.P.)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [AllerCalc] => C:\Program Files (x86)\AllerCalc\AllerCalc.exe [560408 2000-08-22] (AllerSoft)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2015-03-18] (Microsoft Corporation)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [BackgroundContainerV2] => "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\Micky\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Browser Extensions] => C:\Users\Micky\AppData\Roaming\BrowserExtensions\BEHelper.exe [540656 2015-06-09] ()
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Monotype SkyFonts Clean Up] => C:\Program Files\Monotype\SkyFonts\Monotype.SkyFonts.CleanUp.exe
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Itibiti.exe] => C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [Settings Manager] => C:\Users\Micky\AppData\Roaming\Settings Manager\SettingsManager.EXE [897520 2015-05-22] ()
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Run: [UM] => C:\Users\Micky\AppData\Roaming\Update Manager\UM.EXE [776880 2015-06-26] ()
HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Policies\Explorer: [HideSCAHealth] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BDARemote.lnk [2013-05-23]
ShortcutTarget: BDARemote.lnk -> C:\Program Files (x86)\USB_video_device\Utility\RemoteTool\BDARemote.exe ()
Startup: C:\Users\Micky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk [2013-04-15]
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Micky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2014-12-14]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKU\S-1-5-21-704722630-783344360-457985468-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... chTerms%7D
URLSearchHook: HKLM-x32 - SweetPacks Toolbar - {7e8a1050-cf67-4575-92df-dcc60e7d952d} - C:\Users\Micky\AppData\LocalLow\SweetPacks\prxtbSwe0.dll (ClientConnect Ltd.)
URLSearchHook: HKLM-x32 - KeyBar 2.3 Toolbar - {3f842035-47f4-4f10-846b-6199b07f09b8} - C:\Users\Micky\AppData\LocalLow\KeyBar_2.3\prxtbKey0.dll (ClientConnect Ltd.)
SearchScopes: HKLM-x32 -> DefaultScope {5A56602F-4A65-4A67-AC77-C2D8FFF1F156} URL =
SearchScopes: HKLM-x32 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://start.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10043&barid={7BAC30C3-C7D5-11E2-BE8B-94DE80249892}
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> DefaultScope {8D63B733-E9FE-4B53-A395-4E6A3C493D64} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://isearch.babylon.com/?q={searchTerms}&babsrc=SP_ssbtis1&mntrId=125194DE80249892&affID=121136&tsp=4983
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {5A56602F-4A65-4A67-AC77-C2D8FFF1F156} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3313051&CUI=UN20097614991244525&UM=2
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {7837580A-CA3A-4379-B389-E500058D4612} URL = http://www.mysearchresults.com/search?c=2402&t=01&q={searchTerms}
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {8D63B733-E9FE-4B53-A395-4E6A3C493D64} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={45AA6619-638F-4467-B738-C213C00A5178}&mid=022734329b9f47d39dca4597c6c07161-cfd582779a4313917e294f97d7fde85584f20375&lang=en&ds=AVG&coid=avgtbavg&cmpid=0615tb&pr=fr&d=2014-02-05 23:52:56&v=18.6.0.922&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> {F05B8C04-53A9-4F57-A3AA-062152494B3E} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3310511&CUI=UN11983204181079743&UM=2
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation)
BHO: Browser Extensions -> {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} -> C:\Users\Micky\AppData\Roaming\BrowserExtensions\Coupons64.dll [2015-06-09] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-04] (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-04] (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-12-15] (DVDVideoSoft Ltd.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Browser Extensions -> {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} -> C:\Users\Micky\AppData\Roaming\BrowserExtensions\Coupons.dll [2015-06-09] ()
BHO-x32: KeyBar 2.3 Toolbar -> {3f842035-47f4-4f10-846b-6199b07f09b8} -> C:\Users\Micky\AppData\LocalLow\KeyBar_2.3\prxtbKey0.dll [2014-04-10] (ClientConnect Ltd.)
BHO-x32: mixidj Helper Object -> {4D6A9BBF-402C-4301-B1EF-28D04F71D761} -> C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\bh\mixidj.dll [2013-04-25] (MixiDJ)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO-x32: PasswordBox Helper -> {5DB69B97-934B-451D-94DB-32EF802A01CD} -> C:\Program Files (x86)\PasswordBox\Application\pbbtn.dll [2015-05-04] (PasswordBox, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-04] (Oracle Corporation)
BHO-x32: No Name -> {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} -> No File
BHO-x32: SweetPacks Toolbar -> {7e8a1050-cf67-4575-92df-dcc60e7d952d} -> C:\Users\Micky\AppData\LocalLow\SweetPacks\prxtbSwe0.dll [2014-04-10] (ClientConnect Ltd.)
BHO-x32: AVG SafeGuard toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG SafeGuard toolbar\18.7.0.147\AVG SafeGuard toolbar_toolbar.dll [2015-07-16] (AVG Secure Search)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-04] (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-12-15] (DVDVideoSoft Ltd.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\18.7.0.147\AVG SafeGuard toolbar_toolbar.dll [2015-07-16] (AVG Secure Search)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.7.0.147\AVG SafeGuard toolbar_toolbar.dll [2015-07-16] (AVG Secure Search)
Toolbar: HKLM-x32 - MixiDJ Toolbar - {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidjTlbr.dll [2013-04-25] (MixiDJ)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - SweetPacks Toolbar - {7e8a1050-cf67-4575-92df-dcc60e7d952d} - C:\Users\Micky\AppData\LocalLow\SweetPacks\prxtbSwe0.dll [2014-04-10] (ClientConnect Ltd.)
Toolbar: HKLM-x32 - KeyBar 2.3 Toolbar - {3f842035-47f4-4f10-846b-6199b07f09b8} - C:\Users\Micky\AppData\LocalLow\KeyBar_2.3\prxtbKey0.dll [2014-04-10] (ClientConnect Ltd.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {3F842035-47F4-4F10-846B-6199B07F09B8} - No File
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {7E8A1050-CF67-4575-92DF-DCC60E7D952D} - No File
Toolbar: HKU\S-1-5-21-704722630-783344360-457985468-1001 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.7.0\ViProtocol.dll [2015-07-16] (AVG Secure Search)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{2A0EF40E-A1F2-41EF-9657-CE4F831DDB7B}: [NameServer] 208.69.150.250,208.69.150.252
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 208.69.150.250,208.69.150.252

FireFox:
========
FF ProfilePath: C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801
FF DefaultSearchEngine: Bing
FF DefaultSearchEngine.US: Yahoo!
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Homepage: hxxp://www.msn.com/?pc=U270&ocid=U270DH ... g.com?cid={45AA6619-638F-4467-B738-C213C00A5178}&mid=022734329b9f47d39dca4597c6c07161-cfd582779a4313917e294f97d7fde85584f20375&lang=en&ds=AVG&coid=avgtbavg&cmpid=0615tb&pr=fr&d=2014-02-05 23:52:56&v=18.6.0.922&pid=safeguard&sg=0&sap=hp
FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-14] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.7.0\\npsitesafety.dll No File
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll No File
FF SearchPlugin: C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\searchplugins\avg-secure-search.xml [2015-06-14]
FF SearchPlugin: C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\searchplugins\yahoo_ff.xml [2015-04-29]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml [2015-07-16]
FF Extension: Bing Search - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\bingsearch.full@microsoft.com [2015-07-16]
FF Extension: Ebay Shopping Assistant by Spigot - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\{cb95c6f9-efa1-43f6-886f-f466821f5348} [2015-03-13]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\adblockpopups@jessehakanen.net.xpi [2014-06-24]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-01-01]
FF Extension: Adblock Plus - C:\Users\Micky\AppData\Roaming\Mozilla\Firefox\Profiles\8ffc1a9x.default-1403310971801\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-20]
FF Extension: SySaver - C:\Program Files (x86)\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org [2015-05-18]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.7.0.147
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.7.0.147 [2015-07-16]
FF HKLM-x32\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [firefox@passwordbox.com] - C:\Program Files (x86)\PasswordBox\Firefox
FF Extension: PasswordBox - C:\Program Files (x86)\PasswordBox\Firefox [2013-11-22]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-12-02]
FF HKU\S-1-5-21-704722630-783344360-457985468-1001\...\Firefox\Extensions: [{83198ede-24e1-41e2-b78f-dcc763428f7a}] - C:\Program Files (x86)\LyricsParty\131.xpi
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2015-05-18] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default
CHR Extension: (Awesome Screenshot: Screen capture, Annotate) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce [2014-10-03]
CHR Extension: (Google Docs) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-30]
CHR Extension: (Google Drive) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-30]
CHR Extension: (YouTube) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-30]
CHR Extension: (Google Search) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-30]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2014-09-12]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-12-07]
CHR Extension: (AdBlock) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Skype Click to Call) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-08-17]
CHR Extension: (AVG SafeGuard) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-08-30]
CHR Extension: (Google Wallet) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Bitdefender QuickScan) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2015-07-17]
CHR Extension: (Gmail) - C:\Users\Micky\AppData\Local\Google\Chrome\User Data\default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-30]
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [banjjklfojcdbofbhbgiedekefohoaff] - C:\Users\Micky\AppData\Local\CRE\banjjklfojcdbofbhbgiedekefohoaff.crx [2013-09-26]
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bnkkfcoajiakgkgooblnilgdgcimmael] - C:\Users\Micky\AppData\Local\CRE\bnkkfcoajiakgkgooblnilgdgcimmael.crx [2013-09-24]
CHR HKU\S-1-5-21-704722630-783344360-457985468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [banjjklfojcdbofbhbgiedekefohoaff] - C:\Users\Micky\AppData\Local\CRE\banjjklfojcdbofbhbgiedekefohoaff.crx [2013-09-26]
CHR HKLM-x32\...\Chrome\Extension: [bnkkfcoajiakgkgooblnilgdgcimmael] - C:\Users\Micky\AppData\Local\CRE\bnkkfcoajiakgkgooblnilgdgcimmael.crx [2013-09-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-12-03]
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [kpepfkjapeclaafmhoelccknpfedainn] - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidj.crx [2013-04-18]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [lmhcioafdnaphcmlajkgbnghloomafka] - C:\Program Files (x86)\LyricsParty\131.crx [Not Found]

Opera:
=======
OPR Extension: (Opera Software) - C:\Users\Micky\AppData\Roaming\Opera Software\Opera Stable\Extensions\hjjhcalkcaeagibemeeakbmmmaneedoh [2014-09-15]
OPR Extension: (Adblock Plus) - C:\Users\Micky\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2014-09-12]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-06-09] (Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-07-04] (Advanced Micro Devices, Inc.) [File not signed]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3247120 2014-12-16] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-12-16] (AVG Technologies CZ, s.r.o.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-28] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2739888 2015-05-19] (Microsoft Corporation)
R2 FlipShare Service; C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe [451904 2009-06-04] ()
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 lmhosts; C:\Windows\system32\svchost.exe [38792 2014-10-28] (Microsoft Corporation)
R2 lmhosts; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-28] (Microsoft Corporation)
S3 Media Center 19 Service; C:\Program Files (x86)\J River\Media Center 19\JRService.exe [397896 2014-08-13] (JRiver, Inc.)
R2 MySQL; C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe [12907520 2013-02-01] () [File not signed]
R2 NlaSvc; C:\Windows\System32\svchost.exe [38792 2014-10-28] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-28] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [38792 2014-10-28] (Microsoft Corporation)
R2 nsi; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-28] (Microsoft Corporation)
R2 PasswordBox; C:\Program Files (x86)\PasswordBox\pbbtnService.exe [67584 2014-05-14] (PasswordBox, Inc.) [File not signed]
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe [63040 2007-08-15] ()
R2 TVService; C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TVService.exe [233984 2014-09-15] (Team MediaPortal) [File not signed]
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-05] (Microsoft Corporation)
R2 vToolbarUpdater18.7.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\ToolbarUpdater.exe [1842576 2015-07-16] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671000 2014-11-04] (Wacom Technology, Corp.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R2 AODDriver4.2; C:\Program Files (x86)\GIGABYTE\ET6\amd64\AODDriver2.sys [57512 2012-09-24] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [237848 2014-10-24] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-10-29] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [270104 2014-06-30] (AVG Technologies CZ, s.r.o.)
S3 DFX11_1; C:\Windows\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-05-07] ()
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-28] (Microsoft Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2014-04-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-17 23:37 - 2015-07-17 23:37 - 02133504 _____ (Farbar) C:\Users\Micky\Downloads\FRST64.exe
2015-07-17 23:37 - 2015-07-17 23:37 - 00042249 _____ C:\Users\Micky\Downloads\FRST.txt
2015-07-17 23:37 - 2015-07-17 23:37 - 00000000 ____D C:\FRST
2015-07-17 23:34 - 2015-07-17 23:34 - 00688992 _____ (Swearware) C:\Users\Micky\Downloads\dds.com
2015-07-17 23:34 - 2015-07-17 23:34 - 00688992 _____ (Swearware) C:\Users\Micky\Downloads\dds (1).com
2015-07-17 23:30 - 2015-07-17 23:30 - 00688992 _____ (Swearware) C:\Users\Micky\Downloads\dds.scr
2015-07-17 18:25 - 2015-07-17 18:25 - 00572456 _____ (F-Secure Corporation) C:\Users\Micky\Downloads\F-SecureOnlineScanner.exe
2015-07-17 18:25 - 2015-07-17 18:25 - 00000000 ____D C:\ProgramData\F-Secure
2015-07-17 18:24 - 2015-07-17 18:24 - 00717656 _____ (Kaspersky Lab) C:\Users\Micky\Downloads\setup.exe
2015-07-17 18:24 - 2015-07-17 18:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2015-07-17 18:21 - 2015-07-17 18:21 - 02870984 _____ (ESET) C:\Users\Micky\Downloads\esetsmartinstaller_enu.exe
2015-07-17 18:21 - 2015-07-17 18:21 - 02865680 _____ C:\Users\Micky\Downloads\bitdefender_isecurity_qs.exe
2015-07-17 18:19 - 2015-07-17 18:20 - 00000000 ____D C:\Users\Micky\AppData\Roaming\QuickScan
2015-07-17 18:19 - 2015-07-17 18:19 - 00039480 _____ C:\Users\Micky\Downloads\qsinstaller (1).exe
2015-07-17 18:14 - 2015-07-17 20:48 - 00000095 _____ C:\Users\Micky\.accessibility.properties
2015-07-17 16:00 - 2015-07-17 16:00 - 01178272 _____ (Magical Jelly Bean ) C:\Users\Micky\Downloads\KeyFinderInstaller.exe
2015-07-17 15:24 - 2015-07-17 15:24 - 05481344 _____ (Avast Software s.r.o.) C:\Users\Micky\Downloads\avast_free_antivirus_setup_online_softonic.exe
2015-07-17 15:07 - 2015-07-17 15:07 - 00000000 ____D C:\Users\Micky\AppData\Roaming\TeamViewer
2015-07-17 15:06 - 2015-07-17 15:07 - 05434464 _____ (TeamViewer) C:\Users\Micky\Downloads\TeamViewerQS_en (2).exe
2015-07-17 15:06 - 2015-07-17 15:06 - 05434464 _____ (TeamViewer) C:\Users\Micky\Downloads\TeamViewerQS_en (1).exe
2015-07-17 15:05 - 2015-07-17 15:05 - 08009896 _____ (TeamViewer GmbH) C:\Users\Micky\Downloads\TeamViewer_Setup_en.exe
2015-07-17 15:05 - 2015-07-17 15:05 - 05434464 _____ (TeamViewer) C:\Users\Micky\Downloads\TeamViewerQS_en.exe
2015-07-17 15:05 - 2015-07-17 15:05 - 00000000 _____ C:\Users\Micky\debug.log
2015-07-17 13:52 - 2015-07-17 13:52 - 04176437 _____ C:\Users\Micky\Downloads\tdsskiller.zip
2015-07-16 22:05 - 2015-07-17 17:08 - 00000000 _____ C:\Recovery.txt
2015-07-16 21:34 - 2015-07-16 21:34 - 00000548 _____ C:\Users\Micky\Documents\codeidentifiers.txt
2015-07-16 21:01 - 2015-07-16 21:01 - 50057952 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\Windows-KB890830-x64-V5.26 (2).exe
2015-07-16 21:01 - 2015-07-16 21:01 - 02253456 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\DefaultPack.EXE
2015-07-16 20:59 - 2015-07-16 20:59 - 02897510 _____ C:\Users\Micky\Downloads\Windows8.1-KB2959977-x64 (1).msu
2015-07-16 20:58 - 2015-07-16 21:09 - 724339463 _____ C:\Users\Micky\Downloads\Windows8.1-KB2919355-x64.msu
2015-07-16 20:58 - 2015-07-16 20:59 - 50327684 _____ C:\Users\Micky\Downloads\Windows8.1-KB2932046-x64.msu
2015-07-16 20:58 - 2015-07-16 20:59 - 132577686 _____ C:\Users\Micky\Downloads\Windows8.1-KB2934018-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 20533883 _____ C:\Users\Micky\Downloads\Windows8.1-KB2938439-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 02897510 _____ C:\Users\Micky\Downloads\Windows8.1-KB2959977-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 00309819 _____ C:\Users\Micky\Downloads\Windows8.1-KB2937592-x64.msu
2015-07-16 20:58 - 2015-07-16 20:58 - 00038064 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\clearcompressionflag.exe
2015-07-16 19:27 - 2015-07-16 19:28 - 115831096 _____ (AVG Technologies) C:\Users\Micky\Downloads\avg_tuh_stf_all_2015_604_24c28.exe
2015-07-16 18:54 - 2015-07-16 18:54 - 00000000 ____D C:\Users\Micky\AppData\Roaming\AVG2014
2015-07-16 15:32 - 2015-07-16 15:32 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Micky\Downloads\mbam-setup-2.1.8.1057 (1).exe
2015-07-16 15:02 - 2015-07-16 15:02 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Micky\Downloads\mbam-setup-2.1.8.1057.exe
2015-07-16 13:29 - 2015-07-17 18:14 - 00000000 ___DO C:\Users\Micky\OneDrive
2015-07-16 13:08 - 2015-07-16 13:08 - 50057952 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\Windows-KB890830-x64-V5.26 (1).exe
2015-07-15 21:54 - 2015-07-15 21:54 - 00050688 _____ (Atribune.org) C:\Users\Micky\Downloads\ATF-Cleaner.exe
2015-07-15 21:46 - 2015-07-15 21:46 - 50057952 _____ (Microsoft Corporation) C:\Users\Micky\Downloads\Windows-KB890830-x64-V5.26.exe
2015-07-15 14:53 - 2015-07-17 22:00 - 00000000 ____D C:\Users\Micky\Documents\Border Patrol SCOTUS Support
2015-07-15 02:43 - 2015-07-09 14:51 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-15 02:43 - 2015-07-09 13:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-15 02:43 - 2015-07-09 11:03 - 03701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-15 02:43 - 2015-07-09 10:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-15 02:43 - 2015-07-09 10:53 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-15 02:43 - 2015-07-09 10:50 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-15 02:43 - 2015-07-09 10:50 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-15 02:43 - 2015-07-09 10:48 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-15 02:43 - 2015-07-09 10:46 - 02229248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-15 02:43 - 2015-07-09 10:38 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-15 02:43 - 2015-07-09 10:37 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-15 02:43 - 2015-07-09 10:35 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-15 02:43 - 2015-07-09 10:34 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-15 02:43 - 2015-06-28 00:07 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-07-15 02:43 - 2015-06-28 00:07 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-07-15 02:43 - 2015-06-28 00:06 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-07-15 02:43 - 2015-06-28 00:06 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-07-15 02:43 - 2015-06-27 11:42 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-07-15 02:43 - 2015-06-26 22:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-07-15 02:43 - 2015-06-26 22:12 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-07-15 02:43 - 2015-06-26 22:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-07-15 02:43 - 2015-06-26 22:08 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-15 02:43 - 2015-06-26 22:08 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-07-15 02:43 - 2015-06-26 21:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-07-15 02:43 - 2015-06-26 21:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-15 02:43 - 2015-06-26 21:05 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-07-15 02:43 - 2015-06-26 21:00 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-07-15 02:43 - 2015-06-26 20:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-07-15 02:43 - 2015-06-26 20:26 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-07-15 02:43 - 2015-06-24 21:31 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-07-15 02:43 - 2015-06-15 17:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-07-15 02:43 - 2015-06-15 17:24 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-07-15 02:43 - 2015-06-15 16:16 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-07-15 02:43 - 2015-06-15 16:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-07-15 02:43 - 2015-06-15 15:50 - 02774528 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-07-15 02:43 - 2015-06-15 14:57 - 02460160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-07-15 02:43 - 2015-05-30 16:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-07-15 02:43 - 2015-05-30 14:36 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-07-15 02:43 - 2015-05-30 14:35 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-07-15 02:43 - 2015-05-07 12:50 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-15 02:43 - 2015-05-07 12:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-15 02:43 - 2015-05-07 11:53 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-15 02:43 - 2015-05-07 11:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-15 02:43 - 2015-05-07 10:21 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-15 02:43 - 2015-05-07 10:05 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-07-15 02:43 - 2015-05-02 19:39 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-07-15 02:43 - 2015-04-29 18:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-15 02:38 - 2015-07-03 08:52 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-07-15 02:38 - 2015-07-03 08:52 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-07-15 02:38 - 2015-07-03 08:50 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-07-15 02:38 - 2015-07-03 08:50 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-07-15 02:38 - 2015-07-02 16:21 - 19877376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-07-15 02:38 - 2015-07-02 15:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-07-15 02:38 - 2015-07-02 15:49 - 25193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-07-15 02:38 - 2015-07-02 15:23 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-07-15 02:38 - 2015-07-02 15:19 - 12855296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-07-15 02:38 - 2015-07-02 14:55 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-07-15 02:38 - 2015-07-02 14:20 - 14453248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-07-15 02:38 - 2015-07-02 13:59 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-07-15 02:38 - 2015-07-01 17:08 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-07-15 02:38 - 2015-07-01 16:14 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-07-15 02:38 - 2015-06-29 17:43 - 00026288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-07-15 02:38 - 2015-06-29 10:07 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-07-15 02:38 - 2015-06-29 10:07 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-07-15 02:38 - 2015-06-26 18:21 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-07-15 02:38 - 2015-06-26 18:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-07-15 02:38 - 2015-06-15 17:39 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-07-15 02:38 - 2015-06-15 17:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-07-15 02:38 - 2015-06-15 17:26 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-07-15 02:38 - 2015-06-15 17:24 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-07-15 02:38 - 2015-06-15 17:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-07-15 02:38 - 2015-06-15 16:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-07-15 02:38 - 2015-06-15 16:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-07-15 02:38 - 2015-06-15 16:56 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-07-15 02:38 - 2015-06-15 16:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-07-15 02:38 - 2015-06-15 16:49 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-07-15 02:38 - 2015-06-15 16:41 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-07-15 02:38 - 2015-06-15 16:38 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-07-15 02:38 - 2015-06-15 16:36 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-07-15 02:38 - 2015-06-15 16:17 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-07-15 02:38 - 2015-06-15 16:16 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-07-15 02:38 - 2015-06-15 16:15 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-07-15 02:38 - 2015-06-15 16:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-07-15 02:38 - 2015-06-15 16:04 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-07-15 02:38 - 2015-06-15 16:03 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-07-15 02:38 - 2015-06-15 15:52 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-07-15 02:38 - 2015-06-15 15:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-07-15 02:38 - 2015-06-15 15:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-07-15 02:38 - 2015-06-15 15:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-07-15 02:38 - 2015-06-15 15:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-07-15 02:38 - 2015-06-15 15:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-07-15 02:38 - 2015-06-15 15:37 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-07-15 02:38 - 2015-06-15 15:32 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-07-15 02:38 - 2015-06-15 15:31 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-07-15 02:38 - 2015-06-15 15:30 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-07-15 02:38 - 2015-06-15 15:30 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-07-15 02:38 - 2015-06-15 15:17 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-07-15 02:38 - 2015-06-15 15:07 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-07-15 02:38 - 2015-06-15 15:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-07-15 02:38 - 2015-06-10 22:49 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-07-15 02:38 - 2015-06-10 11:13 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-07-15 02:38 - 2015-05-11 11:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-07-15 02:38 - 2015-05-03 10:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 02:38 - 2015-05-03 10:07 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-15 02:38 - 2015-05-03 09:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 02:38 - 2015-05-03 09:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-07-15 02:38 - 2015-05-03 09:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-07-15 02:38 - 2015-05-03 09:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-07-15 02:38 - 2015-04-24 21:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-07-15 02:38 - 2014-11-04 14:25 - 00059712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-07-15 02:38 - 2014-11-04 14:25 - 00051008 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-07-15 02:38 - 2014-11-04 01:55 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-07-15 02:38 - 2014-11-04 01:54 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-07-15 02:38 - 2014-11-04 01:54 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-07-15 02:38 - 2014-11-04 01:54 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-07-15 02:37 - 2015-06-16 00:36 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-07-15 02:37 - 2015-06-16 00:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-07-15 02:37 - 2015-05-12 08:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-15 02:37 - 2015-05-01 18:33 - 00410739 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-15 02:37 - 2015-04-28 08:13 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-07-15 02:37 - 2015-04-28 08:13 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2015-07-15 02:36 - 2015-05-07 11:47 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-07-15 02:36 - 2015-04-23 10:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-15 02:36 - 2015-04-23 10:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-08 21:32 - 2015-07-08 21:32 - 00000000 ____D C:\Users\Micky\Documents\New folder (3)
2015-07-08 21:31 - 2015-07-08 21:31 - 00000000 ____D C:\Users\Micky\Documents\Games
2015-07-08 21:31 - 2015-07-08 21:31 - 00000000 ____D C:\Users\Micky\Desktop\New folder
2015-07-08 20:55 - 2015-07-08 20:55 - 00280297 _____ C:\Users\Micky\Downloads\AA3DeployInstaller.exe
2015-07-08 20:55 - 2015-07-08 20:55 - 00000000 ____D C:\Users\Micky\AppData\Local\Apps\2.0
2015-07-03 19:00 - 2015-07-03 19:00 - 00000000 ____D C:\Users\Micky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Git
2015-07-03 18:59 - 2015-07-03 19:00 - 00000000 ____D C:\Users\Micky\AppData\Roaming\Appcelerator
2015-07-03 18:58 - 2015-07-03 18:59 - 135327376 _____ (Appcelerator) C:\Users\Micky\Downloads\Aptana_Studio_3_Setup_3.6.1.exe
2015-07-03 18:57 - 2015-07-03 18:57 - 06890528 _____ (Linspire Inc. ) C:\Users\Micky\Downloads\nvu-1.0-win32-installer-full.exe
2015-07-03 18:56 - 2015-07-03 18:56 - 00000000 ____D C:\Users\Micky\AppData\Roaming\KompoZer
2015-07-03 18:55 - 2015-07-03 18:55 - 07949158 _____ C:\Users\Micky\Downloads\kompozer-0.7.10-win32.zip
2015-07-03 18:55 - 2015-07-03 18:55 - 00000000 ____D C:\Users\Micky\Downloads\kompozer-0.7.10-win32
2015-07-01 18:52 - 2015-07-01 18:52 - 00037376 _____ C:\Users\Micky\Downloads\VIOLENT-Broward.xls
2015-06-29 11:52 - 2015-06-29 11:52 - 00000000 ____D C:\Users\Micky\Downloads\texas-notary-training
2015-06-29 11:48 - 2015-06-29 11:49 - 110978379 _____ C:\Users\Micky\Downloads\texas-notary-training.zip
2015-06-25 00:53 - 2015-06-25 00:53 - 00000000 ____D C:\Users\Micky\Documents\MIT_Marketing
2015-06-25 00:52 - 2015-06-25 00:52 - 03987450 _____ C:\Users\Micky\Downloads\15-834-spring-2003.zip
2015-06-24 23:39 - 2015-06-24 23:39 - 00000000 ____D C:\Users\Micky\Documents\MIT Macroeconomis
2015-06-24 23:36 - 2015-06-24 23:36 - 11255781 _____ C:\Users\Micky\Downloads\14-02-spring-2014.zip
2015-06-24 01:29 - 2015-06-24 01:29 - 01217192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FM20.DLL
2015-06-18 13:16 - 2015-06-18 13:17 - 04928968 _____ (AVG Technologies) C:\Users\Micky\Downloads\avg_free_stb_all_5961p1_177.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-17 23:26 - 2014-06-20 19:42 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-07-17 23:00 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-07-17 22:58 - 2013-04-11 11:31 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-17 20:48 - 2014-08-23 06:40 - 00000000 ____D C:\Users\Micky
2015-07-17 18:20 - 2013-08-29 18:30 - 00000398 _____ C:\WINDOWS\Tasks\LyricsParty Update.job
2015-07-17 18:16 - 2013-04-14 23:27 - 00000000 ____D C:\ProgramData\MFAData
2015-07-17 18:00 - 2015-01-11 12:32 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-17 17:59 - 2015-02-23 08:07 - 00000372 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2015-07-17 17:59 - 2013-08-22 09:46 - 00313033 _____ C:\WINDOWS\setupact.log
2015-07-17 17:59 - 2013-08-22 09:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-17 17:59 - 2013-04-11 11:31 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-17 17:51 - 2014-08-23 07:15 - 01555635 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-17 14:03 - 2014-08-23 07:20 - 00000258 __RSH C:\Users\Micky\ntuser.pol
2015-07-17 01:59 - 2013-04-11 11:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-07-16 19:28 - 2014-01-19 15:08 - 00000000 ____D C:\ProgramData\AVG
2015-07-16 17:22 - 2014-08-26 03:49 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2015-07-16 17:22 - 2013-04-14 23:33 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2015-07-16 15:26 - 2014-05-11 20:58 - 00000000 ____D C:\Users\Micky\.gradle
2015-07-16 12:25 - 2015-01-06 21:43 - 00000000 ____D C:\Users\Micky\Tracing
2015-07-16 12:08 - 2015-04-04 02:33 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-07-16 12:08 - 2015-04-04 02:33 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-07-16 12:08 - 2012-07-26 02:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-16 02:14 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\rescache
2015-07-15 21:04 - 2013-08-22 09:44 - 05641488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-07-15 20:59 - 2014-12-13 21:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-07-15 20:59 - 2014-08-25 02:42 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-07-15 20:59 - 2013-08-22 10:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-07-15 20:59 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-07-15 03:55 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-07-15 03:48 - 2013-04-12 02:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-15 03:43 - 2013-08-16 07:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-14 13:54 - 2014-09-12 09:51 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-14 12:18 - 2015-03-18 12:15 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-07-14 12:18 - 2014-09-12 10:17 - 00000000 ____D C:\Program Files (x86)\Opera
2015-07-13 17:26 - 2015-04-02 17:55 - 00001169 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-07-13 17:26 - 2015-04-02 17:55 - 00001157 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-07-13 17:26 - 2013-04-11 22:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-13 17:21 - 2014-03-18 04:54 - 00056554 _____ C:\WINDOWS\PFRO.log
2015-07-13 16:10 - 2015-03-13 11:29 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-07-13 16:10 - 2015-03-13 11:29 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-13 01:35 - 2013-10-19 01:38 - 00000000 ____D C:\Users\Micky\Documents\Resumes
2015-07-12 02:00 - 2014-06-15 00:53 - 00000372 _____ C:\WINDOWS\Tasks\Quark Updater.job
2015-07-05 05:08 - 2013-04-13 05:09 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-07-03 18:58 - 2014-08-26 03:29 - 00556032 ___SH C:\Users\Micky\Downloads\Thumbs.db
2015-07-03 08:43 - 2013-04-12 05:04 - 130333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-27 01:24 - 2015-05-06 17:03 - 00000000 ____D C:\Users\Micky\AppData\Roaming\Update Manager
2015-06-26 05:56 - 2014-12-14 09:04 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-06-25 09:41 - 2013-12-28 02:33 - 00000000 ____D C:\Users\Micky\Documents\Visual Studio 2013
2015-06-17 10:57 - 2015-04-16 23:10 - 00000000 ____D C:\Users\Micky\Documents\stormSpotters

==================== Files in the root of some directories =======

2013-06-14 16:36 - 2013-06-14 16:36 - 0000201 _____ () C:\Program Files (x86)\17B5MCP0.bat
2013-05-20 17:58 - 2014-06-17 02:57 - 0003745 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-05-07 13:22 - 2014-06-02 22:14 - 0000132 _____ () C:\Users\Micky\AppData\Roaming\Adobe BMP Format CS5 Prefs
2013-06-12 19:10 - 2013-06-12 19:26 - 0000132 _____ () C:\Users\Micky\AppData\Roaming\Adobe IllExport Filter CS5 Prefs
2013-07-25 22:45 - 2014-02-09 23:58 - 0000132 _____ () C:\Users\Micky\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-12-02 22:54 - 2015-05-21 19:28 - 0000033 _____ () C:\Users\Micky\AppData\Roaming\AdobeWLCMCache.dat
2014-11-23 14:42 - 2014-11-23 14:46 - 0000348 _____ () C:\Users\Micky\AppData\Roaming\burnaware.ini
2014-07-05 01:21 - 2014-07-05 02:25 - 0019165 _____ () C:\Users\Micky\AppData\Roaming\PS12_panel.log
2013-04-21 00:29 - 2014-11-23 21:17 - 0001456 _____ () C:\Users\Micky\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-01-08 20:50 - 2015-05-20 17:34 - 0001456 _____ () C:\Users\Micky\AppData\Local\Adobe Save for Web 13.0 Prefs
2013-04-27 18:17 - 2014-11-23 14:40 - 0013824 _____ () C:\Users\Micky\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-10-02 19:53 - 2014-10-02 19:53 - 0001783 _____ () C:\Users\Micky\AppData\Local\recently-used.xbel
2015-07-17 15:55 - 2015-07-17 15:55 - 0000017 _____ () C:\Users\Micky\AppData\Local\resmon.resmoncfg
2013-08-30 21:07 - 2013-08-30 21:07 - 0000130 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD. Check to make sure user is administrator or see Addition.txt for additional information.

==================== End of log ============================

Please help.

Thank you,

Micky
mbaker1973
Active Member
 
Posts: 1
Joined: July 17th, 2015, 7:51 pm
Advertisement
Register to Remove

Re: Getting the message"this program is blocked by group pol

Unread postby mAL_rEm018 » July 19th, 2015, 2:44 pm

Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the Malware Removal forum and wait for help.

Failure to post replies within 3 days will result in this thread being closed.


Hello mbaker1973,

My name is mAL_rEm018, but feel free to call me mAL :). I'm an undergraduate trainee and as such my posts to you have to first be checked by a Teacher, because of this my replies to your posts may be slightly delayed. Please be patient and I'm sure we'll be able to resolve your problems.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.


Because of this, I advise you to backup any personal files and folders before you start.

To make sure everything goes smoothly, I would like you to observe the following rules:
  • You must have Administrator rights, permissions for this computer.
  • Please reply to this thread. Do not start another topic.
  • Perform all actions in the order given.
  • If you don't know, stop and ask!
  • DO NOT run any other fix or removal tools unless instructed to do so!
  • Don't attempt to install any new software (other than those I ask you to) until your computer is clean.
  • DO NOT post for help at any other forum. Applying fixes from multiple help sites can cause problems.
  • I advise you to print the instructions if possible, since your internet connection might not be available during some of the fixes.
  • Absence of symptoms does not mean that everything is clear, therefore stick with this topic until I give you the "all clear".


Before you follow the instructions below, I would like you to read and get acquainted with the following topic: HOW TO GET HELP IN THIS FORUM - everyone must read this, where the conditions for receiving help here are explained.


Next..

  • Download FRST64 to a USB flash drive.
  • Plug the USB drive into the infected machine.

Boot your computer into Recovery Environment

  • Please follow the instructions ... HERE ... that explain how to open a Command window in Recovery Environment.
  • Once the Command window is open.
    • Type notepad then hit Enter.
    • Notepad will open.
      • Click File > Open then select Computer.
      • Note down the drive letter for your USB Drive.
      • Close Notepad.
  • Back in the command window ....
    • Type e:/frst64.exe and hit Enter (where e: is replaced by the drive letter for your USB drive)
    • FRST will start to run.
      • When the tool opens click Yes to disclaimer.
      • Press Scan button.
      • When finished scanning it will make a log FRST.txt on the flash drive.
  • Close the command window.
  • Boot back into normal mode and post me the FRST.txt log please.


-----------------------------------------
In your next reply, I would like to see..
  • FRST.txt
User avatar
mAL_rEm018
Admin/Teacher
Admin/Teacher
 
Posts: 2689
Joined: November 11th, 2013, 6:26 pm
Location: Saint-Petersburg, Russia

Re: Getting the message"this program is blocked by group pol

Unread postby Gary R » July 22nd, 2015, 4:08 pm

Due to lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 135 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware