Jump to content

fufu

Members
  • Posts

    6
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Kevin, I ran Adwcleaner and now it says: Waiting for action. Please uncheck elements you want to keep. Don't know what to do.
  2. Kevin, I realize I have 2 downloads of FRST64 One is titled FRST64, the other FRST64 (1) They are both 1.99 MB One is file version: 29.2.2015.0 created 3/2/2015 12.29 AM The other is file version 2.3.2015.0 created 3/2/2015 12:33 PM Should I delete one of them before running it? Which one should I run and which one should I delete? Do I delete by right clicking?
  3. Kevin, Sorry to bother you again, but wanted to make sure I do this right. When you say.... or the folder you saved FRST into. NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work. How do I make sure where this was saved? Is it the list like I sent you or something that was automatically saved? The reason I ask is earlier after running Farbar I went to save the results that it printed out and it said I already had saved something with the same name. Anyway, I named the one I was saving with a different name to make sure I had it since I wasn't sure if it was the results that were already saved or part of the program. I believe all of them are saved in the same place with different names will that be a problem? Hope you understand what I'm asking.
  4. Kevin... Thank you so much. You are so kind to help! I ran the MBAM scan, but am having trouble getting to the buttons at the bottom of the page since they are covered by my icons. Btw, there was nothing found on the scan. Please instruct me on how to uncover the buttons so that I may post the results. Here is my Farbar FRST you requested: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-03-2015Ran by Dee (administrator) on DEE-PC on 02-03-2015 12:34:13Running from C:\Users\Dee\DownloadsLoaded Profiles: Dee (Available profiles: Dee)Platform: Windows 7 Home Premium (X64) OS Language: English (United States)Internet Explorer Version 8 (Default browser: Chrome)Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe(Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe(Intel Corporation) C:\Windows\System32\igfxtray.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Intel Corporation) C:\Windows\System32\igfxsrvc.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe() C:\Windows\PLFSetI.exe(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe(Microsoft Corporation) C:\Windows\System32\rundll32.exe(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe(Microsoft Corporation) C:\Windows\System32\StikyNot.exe(Intel Corporation) C:\Windows\System32\igfxext.exe(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIHVA.EXE(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe(Acer Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe(Google Inc.) C:\Users\Dee\AppData\Local\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Users\Dee\AppData\Local\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Users\Dee\AppData\Local\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Users\Dee\AppData\Local\Google\Chrome\Application\chrome.exe(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe(Google Inc.) C:\Users\Dee\AppData\Local\Google\Chrome\Application\chrome.exe(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe(Acer) C:\Program Files\Acer\Acer Updater\ALU.exe(Farbar) C:\Users\Dee\Downloads\FRST64 (1).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [iAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-08-07] (Egis Technology Inc.)HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-05] (Realtek Semiconductor)HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated)HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2009-09-25] ()HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [828960 2009-08-05] (Acer Incorporated)HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888 2009-08-20] (NewTech Infosystems, Inc.)HKLM-x32\...\Run: [EgisTecLiveUpdate] => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1194504 2009-08-27] (Dritek System Inc.)HKLM-x32\...\Run: [ArcadeDeluxeAgent] => C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [128296 2009-07-31] (CyberLink Corp.)HKLM-x32\...\Run: [PlayMovie] => C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [181480 2009-08-04] (Acer Corp.)HKLM-x32\...\Run: [Acer Assist Launcher] => C:\Program Files (x86)\Acer\Acer Assist\launcher.exe [1261568 2007-11-19] ()HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [141624 2010-06-15] (Apple Inc.)HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)HKLM-x32\...\Run: [LTCM Client] => C:\Program Files (x86)\LTCM Client\ltcmClient.exe [1596096 2009-08-05] (Leader Technologies Inc.)HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-02-10] (AVAST Software)HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [Google Update] => C:\Users\Dee\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-14] (Google Inc.)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [sUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5487488 2012-02-21] (SUPERAntiSpyware.com)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHVA.EXE [241280 2013-01-04] (SEIKO EPSON CORPORATION)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-08-21] (Google Inc.)HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664 2013-01-08] (Skype Technologies S.A.)HKU\S-1-5-21-3631994560-431200245-383745115-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2009-07-13] (Microsoft Corporation)Startup: C:\Users\Dee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ePrompter.lnkShortcutTarget: ePrompter.lnk -> C:\Program Files (x86)\ePrompter\ePrompter.exe (No File)ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll (Egis Technology Inc.)ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll (Egis Technology Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5738&r=273612093906l0328z165t4761w111HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5738&r=273612093906l0328z165t4761w111HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5738&r=273612093906l0328z165t4761w111HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5738&r=273612093906l0328z165t4761w111HKU\S-1-5-21-3631994560-431200245-383745115-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=acaw&l=0409&m=aspire_5738&r=273612093906l0328z165t4761w111HKU\S-1-5-21-3631994560-431200245-383745115-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5738&r=273612093906l0328z165t4761w111URLSearchHook: HKU\S-1-5-21-3631994560-431200245-383745115-1001 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)URLSearchHook: HKU\S-1-5-21-3631994560-431200245-383745115-1001 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAWSearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAWSearchScopes: HKU\S-1-5-21-3631994560-431200245-383745115-1001 -> DefaultScope {84D8F99F-26DE-46AB-A903-E8F4E23354AD} URL = https://search.yahoo.com/search?fr=mcafee&type=B010US662D20110902&p={SearchTerms}SearchScopes: HKU\S-1-5-21-3631994560-431200245-383745115-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_enUS359US359SearchScopes: HKU\S-1-5-21-3631994560-431200245-383745115-1001 -> {84D8F99F-26DE-46AB-A903-E8F4E23354AD} URL = https://search.yahoo.com/search?fr=mcafee&type=B010US662D20110902&p={SearchTerms}SearchScopes: HKU\S-1-5-21-3631994560-431200245-383745115-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://www.ask.com/web?q={SEARCHTERMS}&o=15527&l=dis&prt=NIS&chn=retail&geo=US&ver=19BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg64.dll (Google Inc.)BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No FileBHO-x32: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No FileBHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll (Google Inc.)BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No FileToolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No FileToolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)Toolbar: HKU\S-1-5-21-3631994560-431200245-383745115-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)Toolbar: HKU\S-1-5-21-3631994560-431200245-383745115-1001 -> No Name - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - No FileDPF: HKLM-x32 {1C11B948-582A-433F-A98D-A8C4D5CC64F2} https://lowes.2020.net/Core/Player/2020PlayerAX_Win32.cabDPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cabHandler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 FireFox:========FF ProfilePath: C:\Users\Dee\AppData\Roaming\Mozilla\Firefox\Profiles\h2z5i7uh.defaultFF DefaultSearchEngine: Secure SearchFF SearchEngineOrder.1: Secure SearchFF SelectedSearchEngine: Secure SearchFF Keyword.URL: https://search.yahoo.com/search?fr=mcafee&type=B110US662D20110902&p=FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()FF Plugin: @microsoft.com/GENUINE -> disabled No FileFF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()FF Plugin-x32: @microsoft.com/GENUINE -> disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin HKU\S-1-5-21-3631994560-431200245-383745115-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKU\S-1-5-21-3631994560-431200245-383745115-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xmlFF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisorFF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2011-09-02]FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FFFF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-07] Chrome: =======CHR HomePage: Default -> hxxp://www.google.com/CHR Profile: C:\Users\Dee\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-02]CHR Extension: (YouTube) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-17]CHR Extension: (Google Search) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-17]CHR Extension: (SiteAdvisor) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2011-11-28]CHR Extension: (AdBlock) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-28]CHR Extension: (Avast Online Security) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-03-11]CHR Extension: (Google Wallet) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]CHR Extension: (Gmail) - C:\Users\Dee\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-17]CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-02-24]CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-02-24]CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-02-10]StartMenuInternet: Google Chrome.G67LLL3MDAFYD66OBAMMTC2WHM - C:\Users\Dee\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2011-08-11] (SUPERAntiSpyware.com) [File not signed]R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-02-10] (AVAST Software)R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109048 2014-04-08] (AVAST Software)R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2015-02-21] (SurfRight B.V.)R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [155368 2015-02-19] (McAfee, Inc.)R2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-07] (Egis Technology Inc.)S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-02-10] ()R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-04-08] (AVAST Software)R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-02-10] (AVAST Software)R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [445304 2014-04-08] (AVAST Software)R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-02-10] (AVAST Software)R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-02-10] ()R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-02-10] (AVAST Software)R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-02-10] (AVAST Software)R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-02-10] (AVAST Software)R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-02-10] ()R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-02] (Malwarebytes Corporation)R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-02 12:34 - 2015-03-02 12:34 - 00025591 _____ () C:\Users\Dee\Downloads\FRST.txt2015-03-02 12:34 - 2015-03-02 12:34 - 00000000 ____D () C:\FRST2015-03-02 12:33 - 2015-03-02 12:33 - 02092544 _____ (Farbar) C:\Users\Dee\Downloads\FRST64 (1).exe2015-03-02 12:30 - 2015-03-02 12:30 - 01132032 _____ (Farbar) C:\Users\Dee\Downloads\FRST.exe2015-03-02 00:29 - 2015-03-02 00:29 - 02092544 _____ (Farbar) C:\Users\Dee\Downloads\FRST64.exe2015-03-01 11:42 - 2015-03-02 11:58 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2015-03-01 11:42 - 2015-03-01 11:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2015-03-01 11:42 - 2015-03-01 11:42 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2015-03-01 11:42 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2015-03-01 11:42 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys2015-02-17 19:19 - 2015-02-17 19:19 - 00001849 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk2015-02-17 19:19 - 2015-02-17 19:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime2015-02-17 19:19 - 2015-02-17 19:19 - 00000000 ____D () C:\Program Files (x86)\QuickTime2015-02-13 14:19 - 2015-02-13 14:19 - 04651952 _____ () C:\Users\Dee\Downloads\support diagnostic.exe2015-02-13 14:19 - 2015-02-13 14:19 - 00000000 ____D () C:\Diag-Advisor2015-02-13 14:18 - 2014-05-13 09:15 - 00010240 _____ () C:\Users\Dee\AppData\Local\Z@!-3bc42c48-12ad-4c7a-925c-188160370819.tmp2015-02-13 14:18 - 2014-05-13 09:15 - 00009216 _____ () C:\Users\Dee\AppData\Local\Z@S!-a8409c65-1805-4541-9ec1-792047ff7241.tmp2015-02-10 14:20 - 2015-02-10 14:20 - 00001928 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk2015-02-10 14:20 - 2015-02-10 14:19 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe2015-02-10 14:19 - 2015-02-10 14:19 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-02 12:32 - 2010-02-17 07:39 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2015-03-02 12:25 - 2009-09-25 07:13 - 01814509 _____ () C:\Windows\WindowsUpdate.log2015-03-02 12:03 - 2012-04-29 18:02 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job2015-03-02 12:01 - 2011-11-28 09:08 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001UA.job2015-03-02 11:59 - 2009-07-13 22:45 - 00017600 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02015-03-02 11:59 - 2009-07-13 22:45 - 00017600 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02015-03-02 11:51 - 2009-12-21 19:34 - 00000000 ___HD () C:\Users\Dee\Tracing2015-03-02 11:50 - 2010-02-17 07:39 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2015-03-02 11:50 - 2009-08-22 16:18 - 05471710 _____ () C:\Windows\PFRO.log2015-03-02 11:50 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2015-03-02 11:50 - 2009-07-13 22:51 - 00125034 _____ () C:\Windows\setupact.log2015-03-01 14:46 - 2014-03-07 15:08 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update2015-03-01 12:14 - 2015-01-30 23:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2015-03-01 11:42 - 2012-02-20 18:02 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2015-03-01 11:42 - 2012-02-20 18:02 - 00000000 ____D () C:\Users\Dee\AppData\Roaming\Malwarebytes2015-03-01 11:42 - 2012-02-20 18:02 - 00000000 ____D () C:\ProgramData\Malwarebytes2015-03-01 11:42 - 2012-02-20 18:02 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware2015-03-01 08:15 - 2011-11-28 09:08 - 00000848 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001Core.job2015-02-28 21:38 - 2010-08-25 16:31 - 00000000 ____D () C:\Users\Dee\AppData\Roaming\vlc2015-02-28 16:00 - 2011-03-23 20:32 - 00000000 ____D () C:\Users\Dee\AppData\Roaming\dvdcss2015-02-27 15:00 - 2012-07-13 21:03 - 00000000 ____D () C:\Users\Dee\AppData\Local\CrashDumps2015-02-26 15:53 - 2012-06-04 23:10 - 00000000 ____D () C:\Users\Dee\AppData\Roaming\Skype2015-02-19 16:05 - 2011-11-28 09:17 - 00002356 _____ () C:\Users\Dee\Desktop\Google Chrome.lnk2015-02-13 12:55 - 2009-07-13 23:13 - 00726316 _____ () C:\Windows\system32\PerfStringBackup.INI2015-02-10 14:20 - 2014-04-28 19:35 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys2015-02-10 14:20 - 2014-03-07 15:08 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys2015-02-10 14:20 - 2014-03-07 15:08 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys2015-02-10 14:20 - 2014-03-07 15:08 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys2015-02-10 14:20 - 2014-03-07 15:08 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys2015-02-10 14:20 - 2014-03-07 15:08 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys2015-02-10 14:20 - 2014-03-07 15:07 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys2015-02-10 14:19 - 2014-03-07 15:07 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys2015-02-07 11:53 - 2013-11-14 15:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2015-02-06 09:27 - 2010-02-17 07:39 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA2015-02-06 09:27 - 2010-02-17 07:39 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore2015-02-05 07:56 - 2011-11-28 09:08 - 00003866 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001UA2015-02-05 07:56 - 2011-11-28 09:08 - 00003470 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001Core2015-02-05 00:06 - 2012-04-29 18:02 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2015-02-05 00:06 - 2012-04-29 18:02 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater2015-02-05 00:06 - 2012-02-08 10:56 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2012-01-19 00:29 - 2012-01-20 12:19 - 0001883 _____ () C:\Users\Dee\AppData\Roaming\1e9318022012-01-19 00:29 - 2012-01-20 12:19 - 0001960 _____ () C:\Users\Dee\AppData\Local\dd2c39f82015-02-13 14:18 - 2014-05-13 09:15 - 0010240 _____ () C:\Users\Dee\AppData\Local\Z@!-3bc42c48-12ad-4c7a-925c-188160370819.tmp2015-02-13 14:18 - 2014-05-13 09:15 - 0009216 _____ () C:\Users\Dee\AppData\Local\Z@S!-a8409c65-1805-4541-9ec1-792047ff7241.tmp2012-01-19 00:29 - 2012-01-20 12:19 - 0001838 _____ () C:\ProgramData\4b67dbe82009-09-25 07:13 - 2009-09-25 07:16 - 0007803 _____ () C:\ProgramData\ArcadeDeluxe3.log Some content of TEMP:====================C:\Users\Dee\AppData\Local\Temp\COMAP.EXEC:\Users\Dee\AppData\Local\Temp\contentDATs.exeC:\Users\Dee\AppData\Local\Temp\FlashPlayerUpdate.exeC:\Users\Dee\AppData\Local\Temp\FlashPlayerUpdate01.exeC:\Users\Dee\AppData\Local\Temp\fp_pl_pfs_installer.exeC:\Users\Dee\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exeC:\Users\Dee\AppData\Local\Temp\msgC1B7.exeC:\Users\Dee\AppData\Local\Temp\SecurityScan_Release.exeC:\Users\Dee\AppData\Local\Temp\SkypeSetup.exeC:\Users\Dee\AppData\Local\Temp\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}_NAV_32365.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-02-23 11:13 ==================== End Of Log ============================ Here is the addition: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-03-2015Ran by Dee at 2015-03-02 12:35:11Running from C:\Users\Dee\DownloadsBoot Mode: Normal========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) HiddenAcer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.0.6821 - CyberLink Corp.)Acer Arcade Deluxe (x32 Version: 3.0.6821 - CyberLink Corp.) HiddenAcer Assist (HKLM-x32\...\Acer Assist) (Version: - Acer Incorporated)Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.22 - NewTech Infosystems)Acer Crystal Eye webcam Ver:1.1.74.216 (HKLM-x32\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.74.216 - Chicony Electronics Co.,Ltd.)Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3002 - Acer Incorporated)Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3003 - Acer Incorporated)Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.0.80 - WildTangent)Acer GridVista (HKLM-x32\...\GridVista) (Version: 3.01.0730 - Acer Inc.)Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3004 - Acer Incorporated)Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.5.0715 - Acer Incorporated)Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Acer Incorporated)Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated)Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)Apple Application Support (HKLM-x32\...\{B2D328BE-45AD-4D92-96F9-2151490A203E}) (Version: 1.3.0 - Apple Inc.)Apple Mobile Device Support (HKLM\...\{328CC232-CFDC-468B-A214-2E21300E4CB5}) (Version: 3.1.0.62 - Apple Inc.)Apple Software Update (HKLM-x32\...\{C41300B9-185D-475E-BFEC-39EF732F19B1}) (Version: 2.1.2.120 - Apple Inc.)Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)Backup Manager Basic (x32 Version: 2.0.0.22 - NewTech Infosystems) HiddenBonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)Broadcom Gigabit NetLink Controller (HKLM\...\{96F70DF8-160F-4F9C-9B9E-2A9B439B4EB9}) (Version: 12.26.02 - Broadcom Corporation)Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)eBay Worldwide (HKLM-x32\...\{AAF89271-2594-468D-B578-96B2E30C41C4}) (Version: 2.1.0703 - OEM)Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)Epson Download Navigator (HKLM-x32\...\{10F63395-157F-4B93-AB4D-702A2FF11942}) (Version: 1.0.1 - SEIKO EPSON CORPORATION)Epson Event Manager (HKLM-x32\...\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}) (Version: 2.50.0001 - SEIKO EPSON CORPORATION)Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - )EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)EPSON WorkForce 645 Series Printer Uninstall (HKLM\...\EPSON WorkForce 645 Series) (Version: - SEIKO EPSON Corporation)eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) HiddenGoogle Chrome (HKU\S-1-5-21-3631994560-431200245-383745115-1001\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) HiddenGoogle Update Helper (x32 Version: 1.3.25.11 - Google Inc.) HiddenGoogle Update Helper (x32 Version: 1.3.26.9 - Google Inc.) HiddenGraboid Video 1.8 (HKLM-x32\...\Graboid Video) (Version: 1.8 - Graboid Inc.)HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.238 - SurfRight B.V.)Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Acer Incorporated)Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)iTunes (HKLM\...\{53529DAD-F7C9-476E-87CC-1547C4E3E821}) (Version: 9.2.0.61 - Apple Inc.)Junk Mail filter update (x32 Version: 14.0.8117.416 - Microsoft Corporation) HiddenLaunch Manager (HKLM-x32\...\LManager) (Version: 3.0.03 - Acer Inc.)LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)LTCM Client (HKLM-x32\...\LTCM Client) (Version: - Leader Technologies Inc.)Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)McAfee SiteAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.4.1.195 - McAfee, Inc.)McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.194 - McAfee, Inc.)Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20125.0 - Microsoft Corporation)Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)Microsoft Works (HKLM-x32\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation)Mozilla Firefox 36.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0 (x86 en-US)) (Version: 36.0 - Mozilla)Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.72.0 - Egis Technology Inc.)NTI Backup Now 5 (HKLM-x32\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.627 - NewTech Infosystems)NTI Backup Now Standard (x32 Version: 5.1.2.627 - NewTech Infosystems) HiddenNTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6619 - NewTech Infosystems)NTI Media Maker 8 (x32 Version: 8.0.12.6619 - NewTech Infosystems) HiddenPolar Tubing (x32 Version: 2.2.0.82 - WildTangent) HiddenQuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5911 - Realtek Semiconductor Corp.)Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30093 - Realtek Semiconductor Corp.)Skype™ 6.1 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.1.129 - Skype Technologies S.A.)SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1134 - SUPERAntiSpyware.com)Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated)Turbo Lister 2 (HKLM-x32\...\{8927E07C-97F7-4A54-88FB-D976F50DD46E}) (Version: 2.00.0000 - eBay Inc.)Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)VLC media player 1.0.1 (HKLM-x32\...\VLC media player) (Version: 1.0.1 - VideoLAN Team)Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3005 - Acer Incorporated)Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No FileCustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No FileCustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No FileCustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)CustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No FileCustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)CustomCLSID: HKU\S-1-5-21-3631994560-431200245-383745115-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Dee\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File ==================== Restore Points ========================= 08-02-2015 03:27:31 Scheduled Checkpoint10-02-2015 14:17:12 avast! antivirus system restore point13-02-2015 17:49:10 Checkpoint by HitmanPro21-02-2015 12:31:20 Scheduled Checkpoint01-03-2015 17:22:38 Scheduled Checkpoint ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 20:34 - 2009-06-10 15:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {02CAA3F5-5EBA-43BE-B46B-DFD47C057D55} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2009-10-22] (Apple Inc.)Task: {42DB5582-733C-4A9A-BB75-C33CA3C14976} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Safe Web Lite\Engine\2014.6.0.27\SymErr.exeTask: {54713B5B-9A53-4C06-A74C-9301B530A683} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)Task: {7F7FAC95-01CF-4E0C-A87A-C8510C162370} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated)Task: {A56C52E2-BA4D-42AF-92C6-F4D5E2DF3BFF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)Task: {AF400A16-13C2-4667-BE02-28ED5B5D4CFB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001UA => C:\Users\Dee\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-14] (Google Inc.)Task: {CA0B68C8-92A3-4355-B43C-489C402C7B21} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Safe Web Lite\Engine\2014.6.0.27\SymErr.exeTask: {ED92B7A7-BDBE-4A94-9AC2-ECFAB012E0E2} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)Task: {F8C09EB7-F654-48E5-8F7C-9BBADF135E8E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001Core => C:\Users\Dee\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-14] (Google Inc.)Task: {FB935A53-D167-4BEE-98D3-94C55ABCC593} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-02-10] (AVAST Software)Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001Core.job => C:\Users\Dee\AppData\Local\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3631994560-431200245-383745115-1001UA.job => C:\Users\Dee\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2009-09-25 07:12 - 2009-09-25 07:12 - 00200704 _____ () C:\Windows\PLFSetI.exe2015-03-01 12:18 - 2015-03-01 12:18 - 02913792 _____ () C:\Program Files\AVAST Software\Avast\defs\15030101\algo.dll2015-03-02 11:51 - 2015-03-02 11:51 - 02913792 _____ () C:\Program Files\AVAST Software\Avast\defs\15030201\algo.dll2009-02-02 18:33 - 2009-02-02 18:33 - 00460199 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll2008-09-28 18:55 - 2008-09-28 18:55 - 01076224 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll2010-06-03 12:46 - 2010-06-03 12:46 - 00067872 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll2009-07-13 15:03 - 2009-07-13 19:15 - 00364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll2015-02-10 14:19 - 2015-02-10 14:19 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll2015-02-19 16:05 - 2015-02-17 16:44 - 01117512 _____ () C:\Users\Dee\AppData\Local\Google\Chrome\Application\40.0.2214.115\libglesv2.dll2015-02-19 16:05 - 2015-02-17 16:44 - 00211272 _____ () C:\Users\Dee\AppData\Local\Google\Chrome\Application\40.0.2214.115\libegl.dll2015-02-19 16:05 - 2015-02-17 16:44 - 09171272 _____ () C:\Users\Dee\AppData\Local\Google\Chrome\Application\40.0.2214.115\pdf.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3631994560-431200245-383745115-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dee\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpgDNS Servers: 192.168.0.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== Accounts: ============================= Administrator (S-1-5-21-3631994560-431200245-383745115-500 - Administrator - Disabled)Dee (S-1-5-21-3631994560-431200245-383745115-1001 - Administrator - Enabled) => C:\Users\DeeGuest (S-1-5-21-3631994560-431200245-383745115-501 - Limited - Disabled)HomeGroupUser$ (S-1-5-21-3631994560-431200245-383745115-1002 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors:==================Error: (03/01/2015 05:24:53 PM) (Source: SideBySide) (EventID: 33) (User: )Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.Please use sxstrace.exe for detailed diagnosis. Error: (03/01/2015 05:24:53 PM) (Source: SideBySide) (EventID: 33) (User: )Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.Please use sxstrace.exe for detailed diagnosis. Error: (03/01/2015 05:24:52 PM) (Source: SideBySide) (EventID: 33) (User: )Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.Please use sxstrace.exe for detailed diagnosis. Error: (03/01/2015 05:24:52 PM) (Source: SideBySide) (EventID: 33) (User: )Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.Please use sxstrace.exe for detailed diagnosis. Error: (02/28/2015 01:49:19 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: McSACore.exe, version: 3.7.2.194, time stamp: 0x54e649ddFaulting module name: ntdll.dll, version: 6.1.7600.16695, time stamp: 0x4cc7b325Exception code: 0xc0000374Fault offset: 0x00000000000c6ab2Faulting process id: 0xaccFaulting application start time: 0xMcSACore.exe0Faulting application path: McSACore.exe1Faulting module path: McSACore.exe2Report Id: McSACore.exe3 Error: (02/28/2015 04:09:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 594676 Error: (02/28/2015 04:09:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 594676 Error: (02/28/2015 04:09:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/28/2015 04:09:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 593631 Error: (02/28/2015 04:09:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 593631 System errors:=============Error: (03/01/2015 11:03:35 PM) (Source: DCOM) (EventID: 10010) (User: )Description: {063D34A4-BF84-4B8D-B699-E8CA06504DDE} Error: (03/01/2015 03:42:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )Description: The avast! Firewall service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. Error: (02/28/2015 09:25:23 PM) (Source: cdrom) (EventID: 7) (User: )Description: The device, \Device\CdRom0, has a bad block. Error: (02/28/2015 09:25:16 PM) (Source: cdrom) (EventID: 7) (User: )Description: The device, \Device\CdRom0, has a bad block. Error: (02/28/2015 08:21:32 PM) (Source: EventLog) (EventID: 6008) (User: )Description: The previous system shutdown at 8:20:18 PM on ‎2/‎28/‎2015 was unexpected. Error: (02/28/2015 01:49:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )Description: The McAfee SiteAdvisor Service service terminated unexpectedly. It has done this 1 time(s). Error: (02/28/2015 04:09:53 AM) (Source: Service Control Manager) (EventID: 7011) (User: )Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service. Error: (02/27/2015 03:02:28 PM) (Source: iaStor) (EventID: 9) (User: )Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period. Error: (02/27/2015 02:56:28 PM) (Source: EventLog) (EventID: 6008) (User: )Description: The previous system shutdown at 2:55:39 PM on ‎2/‎27/‎2015 was unexpected. Error: (02/25/2015 05:42:22 PM) (Source: Service Control Manager) (EventID: 7011) (User: )Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service. Microsoft Office Sessions:========================= ==================== Memory info =========================== Processor: Intel® Core2 Duo CPU T6600 @ 2.20GHzPercentage of memory in use: 49%Total physical RAM: 4024.93 MBAvailable physical RAM: 2044.74 MBTotal Pagefile: 8048 MBAvailable Pagefile: 5299.8 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (ACER) (Fixed) (Total:452.97 GB) (Free:379.31 GB) NTFS ==>[system with boot components (obtained from reading drive)]Drive d: (THE_BEST_OF_ME) (CDROM) (Total:6.85 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ========================================================Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 44DA44DA)Partition 1: (Not Active) - (Size=12.7 GB) - (Type=27)Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)Partition 3: (Not Active) - (Size=453 GB) - (Type=07 NTFS) ==================== End Of Log ============================
  5. Avast free version found the above threat and suggested I run a scan during boot up which is almost complete. Before doing so, I ran malwarebytes and it found 2 things which did not mention malware-gen. Sorry I did not make note of them, but I had it take care of them. I am now waiting for the long Avast scan to complete while I type this on my phone. It has found some things which I'll have to shorten since I can't copy. They all begin with File C:\users\Dee\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\2fc1f1cd-318afb4l->been\ Here's the endings: nforce.class is infected by Java:Malware-gen [Trj] piro.class is infected by Java:Agent Scan complete and I didn't get to copy all. Went to Avast for results of 6 high severity threats! I'm not sure if Avast was able to fix but when I applied "fix automatically" it says "error the system cannot find the file specified. Here are the threats: Java:cve-2010-0842-L Exp " " 0842-E Exp Java:Malware-gen Trj Java Agent DU Exp Java Malware-gen Trj " " " Please help me and instruct in very simple terms since I am a novice. Should I restore to an earlier date? My computer has been running slower than usual lately.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.