Solved Unremovable Malware

Status
Not open for further replies.
TwinHeadedEagle

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Please download AdwCleaner by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
  • Click on the Scan button.
  • After the scan has finished click on the Clean button.

Press OK when asked to close all programs and follow the onscreen prompts.
Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Post logfile will also be saved in the C:\AdwCleaner folder.



***** NEXT *****



Please download CCleaner.

  • Double-click to run setup, then follow the installation process.
  • When installation is over, CCleaner will open.
  • Click on Run Cleaner button, and wait until program finishes.
  • Your temporary files are now emptied.
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
I've been running AdwCleaner and it doesn't detect any viruses. Here is the report.

# AdwCleaner v3.213 - Report created 26/06/2014 at 12:11:09
# Updated 23/06/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Sharon - KITCHENPC
# Running from : C:\Users\Alex\Desktop\adwcleaner_3.213.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16921


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Rachel\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [26226 octets] - [21/06/2014 01:45:50]
AdwCleaner[R1].txt - [1158 octets] - [22/06/2014 18:38:49]
AdwCleaner[R2].txt - [1161 octets] - [22/06/2014 18:48:18]
AdwCleaner[R3].txt - [1281 octets] - [22/06/2014 19:21:21]
AdwCleaner[R4].txt - [1404 octets] - [23/06/2014 14:54:02]
AdwCleaner[R5].txt - [1518 octets] - [23/06/2014 14:58:54]
AdwCleaner[R6].txt - [1642 octets] - [23/06/2014 15:05:35]
AdwCleaner[R7].txt - [1704 octets] - [26/06/2014 12:08:47]
AdwCleaner[R8].txt - [1263 octets] - [26/06/2014 12:11:09]
AdwCleaner[S0].txt - [25343 octets] - [21/06/2014 01:46:38]
AdwCleaner[S1].txt - [1234 octets] - [22/06/2014 18:41:50]
AdwCleaner[S2].txt - [1223 octets] - [22/06/2014 18:49:00]
AdwCleaner[S3].txt - [1343 octets] - [22/06/2014 19:22:15]
AdwCleaner[S4].txt - [1465 octets] - [23/06/2014 14:54:44]
AdwCleaner[S5].txt - [1579 octets] - [23/06/2014 14:59:37]
AdwCleaner[S6].txt - [1765 octets] - [26/06/2014 12:09:31]

########## EOF - \AdwCleaner\AdwCleaner[R8].txt - [1744 octets] ##########
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
Sorry for the late response but I've been out of town, and have not had access to my home computer, I will be returning on Tuesday where I will be able to run a full virus scan. Thanks a lot for the time you've spent helping me, I hope my next post will be good news.
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
Hi I ran a full scan and there is no difference. All the viruses still appear but only under Malwarebytes. Is this a malfunction with malwarebytes? I have had no issues with the key logger attempting to access my pesonal information as far as I know. I attached the most recent scan and all former viruses still exist according to malwarebytes. In addition I don't know if this matters or not but whenever I open Google Chrome it says "Your preferences cannot be read" and instead of directing me to my home webpage, it just brings me to a new tab.
 

Attachments

  • Malwarebytes Report.txt
    3.3 KB · Views: 79
TwinHeadedEagle

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Please download zoek.zip or zoek.rar by smeenk (
Zoek_icon.png
) from here or here and save it to your Desktop.
Unpack the archive...
  • Close any open browsers
  • Temporarily disable your AntiVirus program. (If necessary)
    If you are unsure how to do this please read this or this Instruction.
  • Double click on zoek.exe to run the tool .
    Please wait while the tool does not start...
  • Copy the text present inside the code box below and paste it into the large window in the zoek tool:
    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to the operating system

    Code: 
    autoclean;
  • Click on
    Run%20Script%20by%20zoek.png
    button.
    Please wait until a logreport will open (this can be after reboot)
  • Save notepad to your Desktop and attach here zoek-results.log
    Note: It will also create a log in the C:\ directory named "zoek-results.log"
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by Sharon on Wed 07/02/2014 at 19:34:46.96.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Alex\AppData\Local\Temp\Temp2_zoek.zip\zoek.com [Scan all users] [Script inserted]

===== Runcheck 19:34:57.09 =====

--- Create Environment Variables 19:34:58.89
--- Checking Input 19:35:11.11
--- AU AppData Check 19:35:14.76
--- Remove From Windows Installer 19:35:18.14
--- IE Startpage Check 19:36:12.76
--- Program Files DB Check 19:36:54.03
--- C:\Users\Alex\AppData\Roaming DB Check 19:37:42.65
--- C:\Users\Default\AppData\Roaming DB Check 19:37:42.65
--- C:\Users\Default User\AppData\Roaming DB Check 19:37:42.65
--- C:\Users\Guest\AppData\Roaming DB Check 19:37:42.65
--- C:\Users\Rachel\AppData\Roaming DB Check 19:37:42.65
--- C:\Users\Sharon\AppData\Roaming DB Check 19:37:42.65
--- C:\Windows\SysNative\config\systemprofile\AppData\Roaming DB Check 19:37:42.65
--- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming DB Check 19:37:42.65
--- C:\Windows\serviceprofiles\networkservice\AppData\Roaming DB Check 19:37:42.65
 
TwinHeadedEagle

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
thisisujrt.gif
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
I am not able to disable my protection software. I have McAfee and under real time scanning the "turn off" option is grayed out and I am unable to click on it. But I did run JRT and for some reason it saved the report to my mother's account instead of mine even though I ran the scan from my account. When I first tried to open the report I couldn't find it, so I ran it a second time, and it was after the second scan that I realized the report was saved in my mother's account. Unfortunately the second scan did not pick anything up because the first scan deleted two viruses. Here is the report anyway...
 

Attachments

  • JRT.txt
    621 bytes · Views: 61
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
No that was the entire problem. So these files mean nothing? Would you like to see what they say? I can't copy and paste is but I can either post another picture or just type them out by hand.
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-07-2014 01
Ran by Alex (ATTENTION: The logged in user is not administrator) on KITCHENPC on 16-07-2014 07:27:04
Running from C:\Users\Alex\Desktop
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12489360 2012-05-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133400 2011-12-16] (Intel Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [BearShare] => "C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe" --lightmode
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6564120 2014-06-04] (SUPERAntiSpyware)
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL => C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll => "C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll" File Not Found
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Smart Wizard.lnk
ShortcutTarget: NETGEAR WNDA3100v2 Smart Wizard.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - (No Name) - {55b95864-3251-45e9-bb30-1a82589aaff1} - No File
URLSearchHook: HKLM-x32 - (No Name) - {7f3f960e-a836-45ca-8911-0accb522246e} - No File
URLSearchHook: HKLM-x32 - (No Name) - {7f7f82f1-7c95-47cd-814f-950b56d58fc3} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name -> {55b95864-3251-45e9-bb30-1a82589aaff1} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {7f3f960e-a836-45ca-8911-0accb522246e} -> No File
BHO-x32: No Name -> {7f7f82f1-7c95-47cd-814f-950b56d58fc3} -> No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.11.1

FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\me4slhuo.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: BearSharePlugin - C:\Program Files (x86)\BearShare Applications\BearShare\npBearSharePlugin.dll No File
FF HKLM\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha979.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha979\ff

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-15]
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-15]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-15]
CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-15]
CHR Extension: (Google Wallet) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-15]
CHR HKLM-x32\...\Chrome\Extension: [kfehigaaopcnlfigcppmopdoncbnnmkl] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha979\ch\WebexpEnhancedV1alpha979.crx [2013-05-15]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2013-05-15]

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-07-16] (SurfRight B.V.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 lmhosts; C:\Windows\system32\svchost.exe [29696 2012-09-19] (Microsoft Corporation)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-03-18] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)
R2 NlaSvc; C:\Windows\System32\svchost.exe [29696 2012-09-19] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [29696 2012-09-19] (Microsoft Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
R2 WSWNDA3100; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [272864 2010-08-19] ()
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [272864 2010-08-19] ()

==================== Drivers (Whitelisted) ====================

R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-25] (Symantec Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 Linksys_adapter_H; C:\Windows\system32\DRIVERS\AE2500w764.sys [1254464 2011-03-29] (Broadcom Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)
S3 NPF; C:\Windows\system32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
S3 rtl819xpn64; C:\Windows\system32\DRIVERS\rtl819xp.sys [622624 2010-02-01] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 VSTWinDriver6; C:\Windows\system32\drivers\VSTwindrvr6.sys [252928 2013-03-29] (Jungo)
S3 netr28x; \SystemRoot\system32\DRIVERS\netr28x.sys [X]
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]
S4 NvStUSB; \SystemRoot\System32\drivers\nvstusb.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-16 06:57 - 2014-07-16 06:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-14 00:45 - 2014-07-14 00:45 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-13 22:32 - 2014-06-30 15:42 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-13 22:32 - 2014-06-30 15:42 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-07-13 22:32 - 2014-06-30 15:42 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-07-13 22:32 - 2014-06-27 20:35 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-13 22:32 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-13 22:32 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-13 22:32 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-13 22:32 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-13 22:32 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-13 22:32 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-13 22:32 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-13 22:32 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-13 22:32 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-13 22:32 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-13 22:32 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-13 22:32 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-13 22:32 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-13 22:32 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-13 22:32 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-13 22:32 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-13 22:32 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-13 22:32 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-13 22:32 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-13 22:32 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-13 22:32 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-13 22:32 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-13 22:32 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-13 22:32 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-13 22:32 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-13 22:32 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-13 22:32 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-13 22:32 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-13 22:32 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-13 22:32 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-13 22:32 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-06 14:55 - 2014-07-06 14:55 - 00001664 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\Program Files\iTunes
2014-07-06 14:51 - 2014-07-06 14:53 - 112616784 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2014-07-06 08:52 - 2014-07-06 08:54 - 00000000 ____D () C:\Users\Alex\AppData\Local\F1B88C61-B96C-42FB-A0AC-A70C11C18FF1.aplzod
2014-07-06 08:52 - 2014-07-06 08:52 - 00000000 ____D () C:\Users\Alex\Documents\Outlook Files
2014-07-06 08:44 - 2014-07-06 14:54 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-07-06 08:44 - 2014-07-06 08:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-07-04 18:05 - 2014-07-04 18:05 - 00000550 _____ () C:\Windows\PFRO.log
2014-07-03 19:09 - 2014-07-03 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-07-03 14:47 - 2014-07-06 14:59 - 00002556 _____ () C:\Windows\setupact.log
2014-07-03 14:47 - 2014-07-03 14:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-02 19:35 - 2014-06-25 22:49 - 00000741 _____ () C:\zoek-results2014-06-26-054915.log
2014-07-02 19:34 - 2014-07-02 19:40 - 00001300 _____ () C:\runcheck.txt
2014-07-02 19:32 - 2014-07-14 00:18 - 02818904 _____ () C:\Users\Alex\Downloads\zoek (1).zip
2014-07-02 14:31 - 2014-07-16 07:26 - 00000000 ____D () C:\Users\Alex\Desktop\FRST-OlderVersion
2014-07-01 15:17 - 2014-07-15 22:38 - 01107271 _____ () C:\Windows\WindowsUpdate.log
2014-06-26 12:13 - 2014-06-26 12:13 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-26 12:05 - 2014-06-26 12:05 - 04812672 _____ (Piriform Ltd) C:\Users\Alex\Desktop\ccsetup415.exe
2014-06-25 22:48 - 2014-07-02 19:35 - 00000375 _____ () C:\zoek-results.log
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\zoek_backup
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Users\Alex\Downloads\zoek
2014-06-25 22:45 - 2014-07-14 00:18 - 02818904 _____ () C:\Users\Alex\Desktop\zoek.zip
2014-06-25 12:10 - 2014-07-02 12:13 - 00003379 _____ () C:\Users\Alex\Documents\Malwarebytes Report.txt
2014-06-25 01:08 - 2014-06-25 02:50 - 00000000 ____D () C:\Recovery
2014-06-24 23:22 - 2014-06-24 23:36 - 00043818 _____ () C:\Windows\diagwrn.xml
2014-06-24 23:22 - 2014-06-24 23:36 - 00043818 _____ () C:\Windows\diagerr.xml
2014-06-24 22:59 - 2014-05-02 22:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-24 22:59 - 2014-05-02 20:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-24 22:59 - 2014-04-29 15:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-24 22:59 - 2014-04-29 15:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-24 22:59 - 2014-04-03 04:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-06-24 22:59 - 2014-04-02 20:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-24 22:59 - 2014-03-31 15:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-06-24 22:59 - 2014-03-24 16:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-06-24 22:59 - 2014-03-24 15:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-06-24 22:50 - 2014-04-03 04:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-24 22:50 - 2014-03-06 17:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-24 22:50 - 2014-03-06 17:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-23 16:00 - 2014-07-05 02:03 - 00000024 _____ () C:\Users\Alex\random.dat
2014-06-23 16:00 - 2014-07-05 02:00 - 00000043 _____ () C:\Users\Alex\jagex_cl_oldschool_LIVE.dat
2014-06-23 15:13 - 2014-06-23 15:13 - 00003271 _____ () C:\Users\Alex\Downloads\FRST.txt
2014-06-23 14:58 - 2014-06-23 14:58 - 01342659 _____ () C:\Users\Alex\Downloads\AdwCleaner.exe
2014-06-23 14:47 - 2014-06-23 15:14 - 00000240 _____ () C:\Users\Alex\Desktop\Search.txt
2014-06-23 14:03 - 2014-06-23 14:04 - 00035808 _____ () C:\Users\Alex\Desktop\Addition.txt
2014-06-23 14:00 - 2014-07-16 07:27 - 00016385 _____ () C:\Users\Alex\Desktop\FRST.txt
2014-06-23 13:41 - 2014-06-23 13:41 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-06-23 13:40 - 2014-06-23 13:40 - 02347384 _____ (ESET) C:\Users\Alex\Desktop\esetsmartinstaller_enu.exe
2014-06-23 13:39 - 2014-06-23 13:39 - 01016261 _____ (Thisisu) C:\Users\Alex\Desktop\JRT.exe
2014-06-23 13:33 - 2014-06-23 13:33 - 00031266 _____ () C:\Users\Alex\Downloads\Addition.txt
2014-06-23 13:32 - 2014-07-16 07:27 - 00000000 ____D () C:\FRST
2014-06-23 13:32 - 2014-06-23 13:32 - 02082816 _____ (Farbar) C:\Users\Alex\Downloads\FRST64 (1).exe
2014-06-23 13:31 - 2014-07-16 07:26 - 02086912 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2014-06-23 13:27 - 2014-07-05 19:11 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2014-06-23 11:23 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-06-23 11:23 - 2014-06-23 11:28 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-23 11:23 - 2014-06-23 11:26 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-23 11:23 - 2014-06-23 11:23 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2014-06-23 11:23 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-06-23 11:18 - 2014-06-23 11:19 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Alex\Downloads\spybot-2.3.exe
2014-06-22 20:46 - 2014-06-22 20:46 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-06-22 19:53 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-06-22 19:53 - 2014-06-22 19:53 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\SUPERAntiSpyware.com
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-06-22 19:40 - 2014-06-22 19:40 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-06-22 19:33 - 2014-06-22 19:33 - 05268992 _____ () C:\Users\Alex\Desktop\RogueKillerX64.exe
2014-06-22 19:27 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-06-22 19:27 - 2014-06-22 19:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-22 19:26 - 2014-06-22 19:34 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-22 19:25 - 2014-06-22 19:25 - 10971424 _____ (SurfRight B.V.) C:\Users\Alex\Desktop\HitmanPro_x64.exe
2014-06-22 19:06 - 2014-06-22 19:06 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-06-22 19:04 - 2014-06-22 19:04 - 00001107 _____ () C:\Users\Alex\Desktop\iExplore - Shortcut.lnk
2014-06-22 19:00 - 2014-06-22 19:00 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Alex\Downloads\iExplore.exe
2014-06-22 18:58 - 2014-06-22 18:59 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Alex\Desktop\tdsskiller.exe
2014-06-22 18:36 - 2014-06-22 18:36 - 01342659 _____ () C:\Users\Alex\Desktop\adwcleaner_3.213.exe
2014-06-22 18:17 - 2014-06-22 18:17 - 00002259 _____ () C:\Windows\epplauncher.mif
2014-06-22 18:16 - 2014-06-22 18:16 - 13829304 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall (1).exe
2014-06-22 18:16 - 2014-06-22 18:16 - 11241816 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall.exe
2014-06-21 01:52 - 2014-07-04 22:50 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-21 01:51 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-21 01:51 - 2014-06-22 19:06 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-21 01:51 - 2014-06-22 19:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-21 01:51 - 2014-06-21 01:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-21 01:51 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-21 01:51 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-21 01:51 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-21 01:50 - 2014-06-21 01:51 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-21 01:46 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-21 01:45 - 2014-06-26 12:11 - 00000000 ____D () C:\AdwCleaner
2014-06-19 21:00 - 2014-06-19 21:07 - 00000000 ____D () C:\Users\Alex\jagexcache

==================== One Month Modified Files and Folders =======

2014-07-16 07:27 - 2014-06-23 14:00 - 00016385 _____ () C:\Users\Alex\Desktop\FRST.txt
2014-07-16 07:27 - 2014-06-23 13:32 - 00000000 ____D () C:\FRST
2014-07-16 07:26 - 2014-07-02 14:31 - 00000000 ____D () C:\Users\Alex\Desktop\FRST-OlderVersion
2014-07-16 07:26 - 2014-06-23 13:31 - 02086912 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2014-07-16 07:26 - 2014-05-03 00:50 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-16 07:12 - 2014-05-03 00:50 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-16 07:00 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-16 06:57 - 2014-07-16 06:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-16 06:55 - 2013-05-24 10:41 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-15 22:38 - 2014-07-01 15:17 - 01107271 _____ () C:\Windows\WindowsUpdate.log
2014-07-14 00:52 - 2012-07-26 00:28 - 00848230 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-14 00:46 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-14 00:45 - 2014-07-14 00:45 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-14 00:45 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-14 00:45 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-14 00:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-14 00:45 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-14 00:18 - 2014-07-02 19:32 - 02818904 _____ () C:\Users\Alex\Downloads\zoek (1).zip
2014-07-14 00:18 - 2014-06-25 22:45 - 02818904 _____ () C:\Users\Alex\Desktop\zoek.zip
2014-07-13 22:48 - 2014-01-04 03:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-13 22:48 - 2012-12-22 02:09 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-13 22:48 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-13 22:47 - 2012-12-22 01:10 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-06 14:59 - 2014-07-03 14:47 - 00002556 _____ () C:\Windows\setupact.log
2014-07-06 14:59 - 2012-12-22 10:41 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Apple Computer
2014-07-06 14:55 - 2014-07-06 14:55 - 00001664 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\Program Files\iTunes
2014-07-06 14:55 - 2012-12-22 10:06 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-06 14:55 - 2012-12-22 10:06 - 00000000 ____D () C:\Program Files\iPod
2014-07-06 14:55 - 2012-12-22 10:06 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-06 14:54 - 2014-07-06 08:44 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-07-06 14:54 - 2012-12-22 10:06 - 00000000 ____D () C:\ProgramData\Apple
2014-07-06 14:53 - 2014-07-06 14:51 - 112616784 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2014-07-06 08:54 - 2014-07-06 08:52 - 00000000 ____D () C:\Users\Alex\AppData\Local\F1B88C61-B96C-42FB-A0AC-A70C11C18FF1.aplzod
2014-07-06 08:52 - 2014-07-06 08:52 - 00000000 ____D () C:\Users\Alex\Documents\Outlook Files
2014-07-06 08:51 - 2012-12-24 21:50 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apple Computer
2014-07-06 08:44 - 2014-07-06 08:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-07-05 19:11 - 2014-06-23 13:27 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2014-07-05 14:57 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-05 02:03 - 2014-06-23 16:00 - 00000024 _____ () C:\Users\Alex\random.dat
2014-07-05 02:00 - 2014-06-23 16:00 - 00000043 _____ () C:\Users\Alex\jagex_cl_oldschool_LIVE.dat
2014-07-04 22:50 - 2014-06-21 01:52 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-04 18:05 - 2014-07-04 18:05 - 00000550 _____ () C:\Windows\PFRO.log
2014-07-03 19:09 - 2014-07-03 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-07-03 14:47 - 2014-07-03 14:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-02 19:40 - 2014-07-02 19:34 - 00001300 _____ () C:\runcheck.txt
2014-07-02 19:35 - 2014-06-25 22:48 - 00000375 _____ () C:\zoek-results.log
2014-07-02 12:13 - 2014-06-25 12:10 - 00003379 _____ () C:\Users\Alex\Documents\Malwarebytes Report.txt
2014-07-01 15:17 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-30 15:42 - 2014-07-13 22:32 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-30 15:42 - 2014-07-13 22:32 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-06-30 15:42 - 2014-07-13 22:32 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-06-27 20:35 - 2014-07-13 22:32 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-26 13:53 - 2014-03-22 22:17 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-03-22 22:17 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 12:15 - 2012-08-27 14:41 - 00000000 ____D () C:\Windows\Panther
2014-06-26 12:13 - 2014-06-26 12:13 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-26 12:11 - 2014-06-21 01:45 - 00000000 ____D () C:\AdwCleaner
2014-06-26 12:05 - 2014-06-26 12:05 - 04812672 _____ (Piriform Ltd) C:\Users\Alex\Desktop\ccsetup415.exe
2014-06-25 22:49 - 2014-07-02 19:35 - 00000741 _____ () C:\zoek-results2014-06-26-054915.log
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\zoek_backup
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Users\Alex\Downloads\zoek
2014-06-25 09:04 - 2014-03-18 04:47 - 00000000 ___HD () C:\$Windows.~BT
2014-06-25 02:50 - 2014-06-25 01:08 - 00000000 ____D () C:\Recovery
2014-06-25 02:46 - 2014-06-23 11:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-06-25 02:46 - 2014-06-22 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-06-25 02:46 - 2014-06-22 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-06-25 02:46 - 2014-06-21 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-25 02:46 - 2014-05-03 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-25 02:46 - 2014-05-03 00:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-25 02:46 - 2014-05-03 00:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
2014-06-25 02:46 - 2013-10-02 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNDA3100v2 Genie
2014-06-25 02:46 - 2013-10-02 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNDA3100v2 Smart Wizard
2014-06-25 02:46 - 2013-08-14 15:43 - 00000000 ____D () C:\Windows\SysWOW64\cache
2014-06-25 02:46 - 2012-12-29 00:54 - 00000000 ____D () C:\Users\Guest
2014-06-25 02:46 - 2012-12-22 02:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2014-06-25 02:46 - 2012-12-22 02:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-06-25 02:46 - 2012-12-22 01:21 - 00000000 ____D () C:\Users\Rachel
2014-06-25 02:46 - 2012-12-22 00:53 - 00000000 ___RD () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-25 02:46 - 2012-12-22 00:53 - 00000000 ___RD () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-25 02:46 - 2012-12-22 00:53 - 00000000 ____D () C:\Users\Alex
2014-06-25 02:46 - 2012-12-21 22:55 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-06-25 02:46 - 2012-12-21 21:30 - 00000000 ____D () C:\Users\Sharon
2014-06-25 02:46 - 2012-07-26 01:18 - 00000000 ____D () C:\Windows\DigitalLocker
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 __RSD () C:\Windows\Media
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-06-25 02:46 - 2012-07-26 00:49 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-06-25 02:46 - 2012-07-26 00:49 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-06-25 02:46 - 2012-07-25 22:38 - 00000000 ____D () C:\Windows\SysWOW64\SMI
2014-06-24 23:36 - 2014-06-24 23:22 - 00043818 _____ () C:\Windows\diagwrn.xml
2014-06-24 23:36 - 2014-06-24 23:22 - 00043818 _____ () C:\Windows\diagerr.xml
2014-06-24 23:28 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-23 15:14 - 2014-06-23 14:47 - 00000240 _____ () C:\Users\Alex\Desktop\Search.txt
2014-06-23 15:13 - 2014-06-23 15:13 - 00003271 _____ () C:\Users\Alex\Downloads\FRST.txt
2014-06-23 14:58 - 2014-06-23 14:58 - 01342659 _____ () C:\Users\Alex\Downloads\AdwCleaner.exe
2014-06-23 14:56 - 2013-03-03 23:57 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-23 14:04 - 2014-06-23 14:03 - 00035808 _____ () C:\Users\Alex\Desktop\Addition.txt
2014-06-23 13:41 - 2014-06-23 13:41 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-06-23 13:40 - 2014-06-23 13:40 - 02347384 _____ (ESET) C:\Users\Alex\Desktop\esetsmartinstaller_enu.exe
2014-06-23 13:39 - 2014-06-23 13:39 - 01016261 _____ (Thisisu) C:\Users\Alex\Desktop\JRT.exe
2014-06-23 13:33 - 2014-06-23 13:33 - 00031266 _____ () C:\Users\Alex\Downloads\Addition.txt
2014-06-23 13:32 - 2014-06-23 13:32 - 02082816 _____ (Farbar) C:\Users\Alex\Downloads\FRST64 (1).exe
2014-06-23 11:28 - 2014-06-23 11:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-23 11:26 - 2014-06-23 11:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-23 11:23 - 2014-06-23 11:23 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2014-06-23 11:23 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-06-23 11:19 - 2014-06-23 11:18 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Alex\Downloads\spybot-2.3.exe
2014-06-22 20:46 - 2014-06-22 20:46 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-06-22 19:53 - 2014-06-22 19:53 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\SUPERAntiSpyware.com
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-06-22 19:40 - 2014-06-22 19:40 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-06-22 19:34 - 2014-06-22 19:26 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-22 19:33 - 2014-06-22 19:33 - 05268992 _____ () C:\Users\Alex\Desktop\RogueKillerX64.exe
2014-06-22 19:27 - 2014-06-22 19:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-22 19:25 - 2014-06-22 19:25 - 10971424 _____ (SurfRight B.V.) C:\Users\Alex\Desktop\HitmanPro_x64.exe
2014-06-22 19:06 - 2014-06-22 19:06 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-06-22 19:06 - 2014-06-21 01:51 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-22 19:06 - 2014-06-21 01:51 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-22 19:04 - 2014-06-22 19:04 - 00001107 _____ () C:\Users\Alex\Desktop\iExplore - Shortcut.lnk
2014-06-22 19:00 - 2014-06-22 19:00 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Alex\Downloads\iExplore.exe
2014-06-22 18:59 - 2014-06-22 18:58 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Alex\Desktop\tdsskiller.exe
2014-06-22 18:36 - 2014-06-22 18:36 - 01342659 _____ () C:\Users\Alex\Desktop\adwcleaner_3.213.exe
2014-06-22 18:17 - 2014-06-22 18:17 - 00002259 _____ () C:\Windows\epplauncher.mif
2014-06-22 18:16 - 2014-06-22 18:16 - 13829304 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall (1).exe
2014-06-22 18:16 - 2014-06-22 18:16 - 11241816 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall.exe
2014-06-21 01:51 - 2014-06-21 01:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-21 01:51 - 2014-06-21 01:50 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-19 21:07 - 2014-06-19 21:00 - 00000000 ____D () C:\Users\Alex\jagexcache
2014-06-18 19:12 - 2014-07-13 22:32 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-18 19:11 - 2014-07-13 22:32 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-18 19:11 - 2014-07-13 22:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-18 19:11 - 2014-07-13 22:32 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-18 19:09 - 2014-07-13 22:32 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-18 17:53 - 2014-07-13 22:32 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-18 17:52 - 2014-07-13 22:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-18 17:33 - 2014-07-13 22:32 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-18 17:30 - 2014-07-13 22:32 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-18 15:10 - 2014-05-03 00:51 - 00002064 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-18 15:05 - 2014-07-13 22:32 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-06-17 16:27 - 2014-07-13 22:32 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-06-17 16:24 - 2014-07-13 22:32 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe

Files to move or delete:
====================
C:\Users\Alex\jagex_cl_oldschool_LIVE.dat
C:\Users\Alex\random.dat


Some content of TEMP:
====================
C:\Users\Sharon\AppData\Local\Temp\7za.exe
C:\Users\Sharon\AppData\Local\Temp\hijackthis.exe
C:\Users\Sharon\AppData\Local\Temp\NirCmd.exe
C:\Users\Sharon\AppData\Local\Temp\PEVZ.EXE
C:\Users\Sharon\AppData\Local\Temp\remove.exe
C:\Users\Sharon\AppData\Local\Temp\sed.exe
C:\Users\Sharon\AppData\Local\Temp\shortcut.exe
C:\Users\Sharon\AppData\Local\Temp\swreg.exe
C:\Users\Sharon\AppData\Local\Temp\swxcacls.exe
C:\Users\Sharon\AppData\Local\Temp\wget.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================
 
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
Good catch, sorry about that.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-07-2014 01
Ran by Sharon (administrator) on KITCHENPC on 16-07-2014 08:16:59
Running from C:\Users\Alex\Desktop
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSM\McSmtFwk.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcods.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12489360 2012-05-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133400 2011-12-16] (Intel Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1477773806-3054807255-2046806828-1002\...\Run: [FoodBuzzUpdate] => C:\Program Files (x86)\FoodBuzz\Update\FoodBuzzUpdate.exe
HKU\S-1-5-21-1477773806-3054807255-2046806828-1002\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\S-1-5-21-1477773806-3054807255-2046806828-1002\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1477773806-3054807255-2046806828-1002\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [BearShare] => "C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe" --lightmode
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6564120 2014-06-04] (SUPERAntiSpyware)
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-1477773806-3054807255-2046806828-1003\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL => C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL File Not Found
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll => "C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll" File Not Found
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Smart Wizard.lnk
ShortcutTarget: NETGEAR WNDA3100v2 Smart Wizard.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Sharon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x41F9A94B08E0CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - (No Name) - {55b95864-3251-45e9-bb30-1a82589aaff1} - No File
URLSearchHook: HKLM-x32 - (No Name) - {7f3f960e-a836-45ca-8911-0accb522246e} - No File
URLSearchHook: HKLM-x32 - (No Name) - {7f7f82f1-7c95-47cd-814f-950b56d58fc3} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sea...tartIndex={startIndex?}&startPage={startPage}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name -> {55b95864-3251-45e9-bb30-1a82589aaff1} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {7f3f960e-a836-45ca-8911-0accb522246e} -> No File
BHO-x32: No Name -> {7f7f82f1-7c95-47cd-814f-950b56d58fc3} -> No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {55B95864-3251-45E9-BB30-1A82589AAFF1} - No File
Toolbar: HKCU - No Name - {7F3F960E-A836-45CA-8911-0ACCB522246E} - No File
Toolbar: HKCU - No Name - {7F7F82F1-7C95-47CD-814F-950B56D58FC3} - No File
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.11.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: CouponNetwork.com/CMDUniversalCouponPrintActivator - C:\Users\Sharon\AppData\Roaming\CATALI~1\NPBCSK~1.DLL (Catalina Marketing Corporation)
FF HKLM\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha979.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha979\ff

Chrome:
=======
CHR HomePage:
CHR Extension: (Google Docs) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-03]
CHR Extension: (Google Drive) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-03]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-22]
CHR Extension: (YouTube) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-03]
CHR Extension: (Google Search) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-03]
CHR Extension: (Google Wallet) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-12]
CHR Extension: (Gmail) - C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-03]
CHR HKLM-x32\...\Chrome\Extension: [kfehigaaopcnlfigcppmopdoncbnnmkl] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha979\ch\WebexpEnhancedV1alpha979.crx [2014-05-03]
CHR HKLM-x32\...\Chrome\Extension: [mmifolfpllfdhilecpdpmemhelmanajl] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx [2014-05-03]

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-07-16] (SurfRight B.V.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-03-18] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
R2 WSWNDA3100; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [272864 2010-08-19] ()
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [272864 2010-08-19] ()

==================== Drivers (Whitelisted) ====================

R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-25] (Symantec Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 Linksys_adapter_H; C:\Windows\system32\DRIVERS\AE2500w764.sys [1254464 2011-03-29] (Broadcom Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)
S3 NPF; C:\Windows\system32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
S3 rtl819xpn64; C:\Windows\system32\DRIVERS\rtl819xp.sys [622624 2010-02-01] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 VSTWinDriver6; C:\Windows\system32\drivers\VSTwindrvr6.sys [252928 2013-03-29] (Jungo)
S3 netr28x; \SystemRoot\system32\DRIVERS\netr28x.sys [X]
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]
S4 NvStUSB; \SystemRoot\System32\drivers\nvstusb.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-16 07:30 - 2014-07-16 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-14 00:45 - 2014-07-14 00:45 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-13 22:32 - 2014-06-30 15:42 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-13 22:32 - 2014-06-30 15:42 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-07-13 22:32 - 2014-06-30 15:42 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-07-13 22:32 - 2014-06-27 20:35 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-13 22:32 - 2014-06-18 19:12 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-13 22:32 - 2014-06-18 19:11 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-13 22:32 - 2014-06-18 19:11 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-13 22:32 - 2014-06-18 19:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-13 22:32 - 2014-06-18 19:10 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-13 22:32 - 2014-06-18 19:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-13 22:32 - 2014-06-18 17:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-13 22:32 - 2014-06-18 17:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-13 22:32 - 2014-06-18 17:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-13 22:32 - 2014-06-18 17:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-13 22:32 - 2014-06-18 17:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-13 22:32 - 2014-06-18 17:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-13 22:32 - 2014-06-18 15:05 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-07-13 22:32 - 2014-06-17 16:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-13 22:32 - 2014-06-17 16:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-13 22:32 - 2014-06-10 21:18 - 04038144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-13 22:32 - 2014-06-06 07:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-13 22:32 - 2014-06-06 03:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-13 22:32 - 2014-06-02 15:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-07-13 22:32 - 2014-05-29 16:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-07-13 22:32 - 2014-05-29 16:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-13 22:32 - 2014-05-29 16:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-13 22:32 - 2014-05-29 16:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-07-13 22:32 - 2014-05-29 15:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-13 22:32 - 2014-05-02 23:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-13 22:32 - 2014-05-02 23:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-13 22:32 - 2014-05-02 21:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-07-13 22:32 - 2014-05-01 15:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-13 22:32 - 2014-04-29 15:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-13 22:32 - 2014-04-29 15:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-07-13 22:32 - 2014-04-23 16:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-07-13 22:32 - 2014-04-23 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-13 22:32 - 2014-04-23 16:38 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-13 22:32 - 2014-04-23 16:38 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-13 22:32 - 2014-02-07 21:34 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-07 21:24 - 2014-07-07 21:24 - 00000000 ____D () C:\Users\Sharon\AppData\Local\CrashDumps
2014-07-06 14:55 - 2014-07-06 14:55 - 00001664 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\Program Files\iTunes
2014-07-06 14:51 - 2014-07-06 14:53 - 112616784 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2014-07-06 08:52 - 2014-07-06 08:54 - 00000000 ____D () C:\Users\Alex\AppData\Local\F1B88C61-B96C-42FB-A0AC-A70C11C18FF1.aplzod
2014-07-06 08:52 - 2014-07-06 08:52 - 00000000 ____D () C:\Users\Alex\Documents\Outlook Files
2014-07-06 08:44 - 2014-07-06 14:54 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-07-06 08:44 - 2014-07-06 08:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-07-04 18:05 - 2014-07-04 18:05 - 00000550 _____ () C:\Windows\PFRO.log
2014-07-04 01:59 - 2014-07-04 01:59 - 00000621 _____ () C:\Users\Sharon\Downloads\JRT (1).txt
2014-07-04 01:55 - 2014-07-04 01:55 - 00000621 _____ () C:\Users\Sharon\Downloads\JRT.txt
2014-07-04 01:54 - 2014-07-04 01:54 - 00000621 _____ () C:\Users\Sharon\Desktop\JRT.txt
2014-07-04 01:45 - 2014-07-04 01:45 - 00000913 _____ () C:\Users\Sharon\Documents\JRT.txt
2014-07-03 19:09 - 2014-07-03 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-07-03 14:47 - 2014-07-06 14:59 - 00002556 _____ () C:\Windows\setupact.log
2014-07-03 14:47 - 2014-07-03 14:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-02 19:35 - 2014-06-25 22:49 - 00000741 _____ () C:\zoek-results2014-06-26-054915.log
2014-07-02 19:34 - 2014-07-02 19:40 - 00001300 _____ () C:\runcheck.txt
2014-07-02 19:32 - 2014-07-14 00:18 - 02818904 _____ () C:\Users\Alex\Downloads\zoek (1).zip
2014-07-02 14:31 - 2014-07-16 07:26 - 00000000 ____D () C:\Users\Alex\Desktop\FRST-OlderVersion
2014-07-01 15:17 - 2014-07-15 22:38 - 01107271 _____ () C:\Windows\WindowsUpdate.log
2014-06-26 12:13 - 2014-06-26 12:13 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-26 12:13 - 2014-06-26 12:13 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-26 12:05 - 2014-06-26 12:05 - 04812672 _____ (Piriform Ltd) C:\Users\Alex\Desktop\ccsetup415.exe
2014-06-25 22:48 - 2014-07-02 19:35 - 00000375 _____ () C:\zoek-results.log
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\zoek_backup
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Users\Alex\Downloads\zoek
2014-06-25 22:45 - 2014-07-14 00:18 - 02818904 _____ () C:\Users\Alex\Desktop\zoek.zip
2014-06-25 12:10 - 2014-07-02 12:13 - 00003379 _____ () C:\Users\Alex\Documents\Malwarebytes Report.txt
2014-06-25 01:08 - 2014-06-25 02:50 - 00000000 ____D () C:\Recovery
2014-06-25 00:58 - 2014-06-25 00:58 - 00262144 _____ () C:\Windows\system32\config\userdiff
2014-06-24 23:22 - 2014-06-24 23:36 - 00043818 _____ () C:\Windows\diagwrn.xml
2014-06-24 23:22 - 2014-06-24 23:36 - 00043818 _____ () C:\Windows\diagerr.xml
2014-06-24 22:59 - 2014-05-02 22:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-24 22:59 - 2014-05-02 20:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-24 22:59 - 2014-04-29 15:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-24 22:59 - 2014-04-29 15:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-24 22:59 - 2014-04-03 04:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-06-24 22:59 - 2014-04-02 20:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-24 22:59 - 2014-03-31 15:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-06-24 22:59 - 2014-03-24 16:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-06-24 22:59 - 2014-03-24 15:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-06-24 22:50 - 2014-04-03 04:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-24 22:50 - 2014-03-06 17:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-24 22:50 - 2014-03-06 17:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-23 16:00 - 2014-07-05 02:03 - 00000024 _____ () C:\Users\Alex\random.dat
2014-06-23 16:00 - 2014-07-05 02:00 - 00000043 _____ () C:\Users\Alex\jagex_cl_oldschool_LIVE.dat
2014-06-23 15:13 - 2014-06-23 15:13 - 00003271 _____ () C:\Users\Alex\Downloads\FRST.txt
2014-06-23 14:58 - 2014-06-23 14:58 - 01342659 _____ () C:\Users\Alex\Downloads\AdwCleaner.exe
2014-06-23 14:47 - 2014-06-23 15:14 - 00000240 _____ () C:\Users\Alex\Desktop\Search.txt
2014-06-23 14:03 - 2014-06-23 14:04 - 00035808 _____ () C:\Users\Alex\Desktop\Addition.txt
2014-06-23 14:00 - 2014-07-16 08:16 - 00019924 _____ () C:\Users\Alex\Desktop\FRST.txt
2014-06-23 13:41 - 2014-06-23 13:41 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-06-23 13:40 - 2014-06-23 13:40 - 02347384 _____ (ESET) C:\Users\Alex\Desktop\esetsmartinstaller_enu.exe
2014-06-23 13:39 - 2014-06-23 13:39 - 01016261 _____ (Thisisu) C:\Users\Alex\Desktop\JRT.exe
2014-06-23 13:33 - 2014-06-23 13:33 - 00031266 _____ () C:\Users\Alex\Downloads\Addition.txt
2014-06-23 13:32 - 2014-07-16 08:17 - 00000000 ____D () C:\FRST
2014-06-23 13:32 - 2014-06-23 13:32 - 02082816 _____ (Farbar) C:\Users\Alex\Downloads\FRST64 (1).exe
2014-06-23 13:31 - 2014-07-16 07:26 - 02086912 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2014-06-23 13:27 - 2014-07-05 19:11 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2014-06-23 11:23 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-06-23 11:23 - 2014-06-23 11:28 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-23 11:23 - 2014-06-23 11:26 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-23 11:23 - 2014-06-23 11:23 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2014-06-23 11:23 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2014-06-23 11:23 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-06-23 11:23 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-06-23 11:18 - 2014-06-23 11:19 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Alex\Downloads\spybot-2.3.exe
2014-06-22 20:46 - 2014-06-22 20:46 - 00000000 ____D () C:\Users\Sharon\AppData\Roaming\SUPERAntiSpyware.com
2014-06-22 20:46 - 2014-06-22 20:46 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-06-22 19:53 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-06-22 19:53 - 2014-06-22 19:53 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\SUPERAntiSpyware.com
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-06-22 19:40 - 2014-06-22 19:40 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-06-22 19:33 - 2014-06-22 19:33 - 05268992 _____ () C:\Users\Alex\Desktop\RogueKillerX64.exe
2014-06-22 19:27 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-06-22 19:27 - 2014-06-22 19:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-22 19:26 - 2014-06-22 19:34 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-22 19:25 - 2014-06-22 19:25 - 10971424 _____ (SurfRight B.V.) C:\Users\Alex\Desktop\HitmanPro_x64.exe
2014-06-22 19:06 - 2014-06-22 19:06 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-06-22 19:04 - 2014-06-22 19:44 - 00002186 _____ () C:\Users\Sharon\Desktop\Rkill.txt
2014-06-22 19:04 - 2014-06-22 19:04 - 00001107 _____ () C:\Users\Alex\Desktop\iExplore - Shortcut.lnk
2014-06-22 19:00 - 2014-06-22 19:00 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Alex\Downloads\iExplore.exe
2014-06-22 18:58 - 2014-06-22 18:59 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Alex\Desktop\tdsskiller.exe
2014-06-22 18:36 - 2014-06-22 18:36 - 01342659 _____ () C:\Users\Alex\Desktop\adwcleaner_3.213.exe
2014-06-22 18:17 - 2014-06-22 18:17 - 00002259 _____ () C:\Windows\epplauncher.mif
2014-06-22 18:16 - 2014-06-22 18:16 - 13829304 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall (1).exe
2014-06-22 18:16 - 2014-06-22 18:16 - 11241816 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall.exe
2014-06-21 01:52 - 2014-07-04 22:50 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-21 01:51 - 2014-06-25 02:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-21 01:51 - 2014-06-22 19:06 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-21 01:51 - 2014-06-22 19:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-21 01:51 - 2014-06-21 01:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-21 01:51 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-21 01:51 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-21 01:51 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-21 01:50 - 2014-06-21 01:51 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-21 01:46 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-21 01:45 - 2014-06-26 12:11 - 00000000 ____D () C:\AdwCleaner
2014-06-19 21:00 - 2014-06-19 21:07 - 00000000 ____D () C:\Users\Alex\jagexcache
2014-06-18 14:07 - 2014-06-18 14:07 - 00000000 ____H () C:\Users\Rachel\AppData\Local\BIT9C27.tmp
2014-06-18 14:07 - 2014-06-18 14:07 - 00000000 _____ () C:\Users\Rachel\AppData\Local\{BCD83331-762D-41FA-B110-E546BAD8E109}

==================== One Month Modified Files and Folders =======

2014-07-16 08:17 - 2014-06-23 14:00 - 00019924 _____ () C:\Users\Alex\Desktop\FRST.txt
2014-07-16 08:17 - 2014-06-23 13:32 - 00000000 ____D () C:\FRST
2014-07-16 08:12 - 2014-05-03 00:50 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-16 08:00 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-16 07:55 - 2013-05-24 10:41 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-16 07:31 - 2012-12-22 00:59 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1477773806-3054807255-2046806828-1003
2014-07-16 07:30 - 2014-07-16 07:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-16 07:26 - 2014-07-02 14:31 - 00000000 ____D () C:\Users\Alex\Desktop\FRST-OlderVersion
2014-07-16 07:26 - 2014-06-23 13:31 - 02086912 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2014-07-16 07:26 - 2014-05-03 00:50 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-16 07:21 - 2012-12-22 02:43 - 00000000 ____D () C:\Users\Sharon\Documents\Outlook Files
2014-07-15 22:38 - 2014-07-01 15:17 - 01107271 _____ () C:\Windows\WindowsUpdate.log
2014-07-14 00:52 - 2012-07-26 00:28 - 00848230 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-14 00:46 - 2012-07-26 00:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-14 00:45 - 2014-07-14 00:45 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-14 00:45 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-14 00:45 - 2012-07-26 01:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-14 00:45 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\WinStore
2014-07-14 00:45 - 2012-07-26 00:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-14 00:45 - 2012-07-25 22:26 - 00786432 ___SH () C:\Windows\system32\config\BBI
2014-07-14 00:18 - 2014-07-02 19:32 - 02818904 _____ () C:\Users\Alex\Downloads\zoek (1).zip
2014-07-14 00:18 - 2014-06-25 22:45 - 02818904 _____ () C:\Users\Alex\Desktop\zoek.zip
2014-07-13 22:48 - 2014-01-04 03:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-13 22:48 - 2012-12-22 02:09 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-13 22:48 - 2012-07-26 00:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-13 22:47 - 2012-12-22 01:10 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-13 22:47 - 2012-07-25 22:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-08 12:55 - 2013-05-24 10:41 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-07 21:24 - 2014-07-07 21:24 - 00000000 ____D () C:\Users\Sharon\AppData\Local\CrashDumps
2014-07-06 17:32 - 2012-12-21 21:53 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1477773806-3054807255-2046806828-1002
2014-07-06 14:59 - 2014-07-03 14:47 - 00002556 _____ () C:\Windows\setupact.log
2014-07-06 14:59 - 2012-12-22 10:41 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Apple Computer
2014-07-06 14:55 - 2014-07-06 14:55 - 00001664 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-07-06 14:55 - 2014-07-06 14:55 - 00000000 ____D () C:\Program Files\iTunes
2014-07-06 14:55 - 2012-12-22 10:06 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-07-06 14:55 - 2012-12-22 10:06 - 00000000 ____D () C:\Program Files\iPod
2014-07-06 14:55 - 2012-12-22 10:06 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-07-06 14:54 - 2014-07-06 08:44 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-07-06 14:54 - 2012-12-22 10:06 - 00000000 ____D () C:\ProgramData\Apple
2014-07-06 14:53 - 2014-07-06 14:51 - 112616784 _____ (Apple Inc.) C:\Users\Alex\Downloads\iTunes64Setup.exe
2014-07-06 08:54 - 2014-07-06 08:52 - 00000000 ____D () C:\Users\Alex\AppData\Local\F1B88C61-B96C-42FB-A0AC-A70C11C18FF1.aplzod
2014-07-06 08:52 - 2014-07-06 08:52 - 00000000 ____D () C:\Users\Alex\Documents\Outlook Files
2014-07-06 08:51 - 2012-12-24 21:50 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apple Computer
2014-07-06 08:44 - 2014-07-06 08:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-07-05 19:11 - 2014-06-23 13:27 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2014-07-05 14:57 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-05 02:03 - 2014-06-23 16:00 - 00000024 _____ () C:\Users\Alex\random.dat
2014-07-05 02:00 - 2014-06-23 16:00 - 00000043 _____ () C:\Users\Alex\jagex_cl_oldschool_LIVE.dat
2014-07-04 22:50 - 2014-06-21 01:52 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-04 18:05 - 2014-07-04 18:05 - 00000550 _____ () C:\Windows\PFRO.log
2014-07-04 01:59 - 2014-07-04 01:59 - 00000621 _____ () C:\Users\Sharon\Downloads\JRT (1).txt
2014-07-04 01:55 - 2014-07-04 01:55 - 00000621 _____ () C:\Users\Sharon\Downloads\JRT.txt
2014-07-04 01:54 - 2014-07-04 01:54 - 00000621 _____ () C:\Users\Sharon\Desktop\JRT.txt
2014-07-04 01:45 - 2014-07-04 01:45 - 00000913 _____ () C:\Users\Sharon\Documents\JRT.txt
2014-07-03 19:09 - 2014-07-03 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-07-03 14:47 - 2014-07-03 14:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-02 19:40 - 2014-07-02 19:34 - 00001300 _____ () C:\runcheck.txt
2014-07-02 19:35 - 2014-06-25 22:48 - 00000375 _____ () C:\zoek-results.log
2014-07-02 12:13 - 2014-06-25 12:10 - 00003379 _____ () C:\Users\Alex\Documents\Malwarebytes Report.txt
2014-07-01 15:17 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-30 15:42 - 2014-07-13 22:32 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-30 15:42 - 2014-07-13 22:32 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-06-30 15:42 - 2014-07-13 22:32 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-06-27 20:35 - 2014-07-13 22:32 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-26 13:53 - 2014-03-22 22:17 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:53 - 2014-03-22 22:17 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 12:15 - 2013-10-01 22:11 - 00000000 ___DC () C:\Users\Sharon\AppData\Local\MigWiz
2014-06-26 12:15 - 2012-08-27 14:41 - 00000000 ____D () C:\Windows\Panther
2014-06-26 12:13 - 2014-06-26 12:13 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-26 12:13 - 2014-06-26 12:13 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-26 12:13 - 2014-06-26 12:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-26 12:11 - 2014-06-21 01:45 - 00000000 ____D () C:\AdwCleaner
2014-06-26 12:05 - 2014-06-26 12:05 - 04812672 _____ (Piriform Ltd) C:\Users\Alex\Desktop\ccsetup415.exe
2014-06-25 22:49 - 2014-07-02 19:35 - 00000741 _____ () C:\zoek-results2014-06-26-054915.log
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\zoek_backup
2014-06-25 22:46 - 2014-06-25 22:46 - 00000000 ____D () C:\Users\Alex\Downloads\zoek
2014-06-25 09:04 - 2014-03-18 04:47 - 00000000 ___HD () C:\$Windows.~BT
2014-06-25 02:50 - 2014-06-25 01:08 - 00000000 ____D () C:\Recovery
2014-06-25 02:46 - 2014-06-23 11:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-06-25 02:46 - 2014-06-22 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-06-25 02:46 - 2014-06-22 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-06-25 02:46 - 2014-06-21 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-25 02:46 - 2014-05-09 09:22 - 00000000 ____D () C:\Users\Sharon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Catalina – Print Savings
2014-06-25 02:46 - 2014-05-03 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-25 02:46 - 2014-05-03 00:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-25 02:46 - 2014-05-03 00:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
2014-06-25 02:46 - 2013-10-02 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNDA3100v2 Genie
2014-06-25 02:46 - 2013-10-02 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNDA3100v2 Smart Wizard
2014-06-25 02:46 - 2013-08-14 15:43 - 00000000 ____D () C:\Windows\SysWOW64\cache
2014-06-25 02:46 - 2012-12-29 00:54 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-25 02:46 - 2012-12-29 00:54 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-25 02:46 - 2012-12-29 00:54 - 00000000 ____D () C:\Users\Guest
2014-06-25 02:46 - 2012-12-22 02:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2014-06-25 02:46 - 2012-12-22 02:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-06-25 02:46 - 2012-12-22 01:21 - 00000000 ___RD () C:\Users\Rachel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-25 02:46 - 2012-12-22 01:21 - 00000000 ___RD () C:\Users\Rachel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-25 02:46 - 2012-12-22 01:21 - 00000000 ____D () C:\Users\Rachel
2014-06-25 02:46 - 2012-12-22 00:53 - 00000000 ___RD () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-25 02:46 - 2012-12-22 00:53 - 00000000 ___RD () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-25 02:46 - 2012-12-22 00:53 - 00000000 ____D () C:\Users\Alex
2014-06-25 02:46 - 2012-12-21 22:55 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-06-25 02:46 - 2012-12-21 21:30 - 00000000 ___RD () C:\Users\Sharon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-25 02:46 - 2012-12-21 21:30 - 00000000 ___RD () C:\Users\Sharon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-25 02:46 - 2012-12-21 21:30 - 00000000 ____D () C:\Users\Sharon
2014-06-25 02:46 - 2012-07-26 01:18 - 00000000 ____D () C:\Windows\DigitalLocker
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 __RSD () C:\Windows\Media
2014-06-25 02:46 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-06-25 02:46 - 2012-07-26 00:49 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-06-25 02:46 - 2012-07-26 00:49 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-06-25 02:46 - 2012-07-25 22:38 - 00000000 ____D () C:\Windows\SysWOW64\SMI
2014-06-25 00:58 - 2014-06-25 00:58 - 00262144 _____ () C:\Windows\system32\config\userdiff
2014-06-24 23:36 - 2014-06-24 23:22 - 00043818 _____ () C:\Windows\diagwrn.xml
2014-06-24 23:36 - 2014-06-24 23:22 - 00043818 _____ () C:\Windows\diagerr.xml
2014-06-24 23:28 - 2012-07-26 01:12 - 00000000 ____D () C:\Windows\registration
2014-06-23 15:14 - 2014-06-23 14:47 - 00000240 _____ () C:\Users\Alex\Desktop\Search.txt
2014-06-23 15:13 - 2014-06-23 15:13 - 00003271 _____ () C:\Users\Alex\Downloads\FRST.txt
2014-06-23 14:58 - 2014-06-23 14:58 - 01342659 _____ () C:\Users\Alex\Downloads\AdwCleaner.exe
2014-06-23 14:56 - 2013-03-03 23:57 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-23 14:04 - 2014-06-23 14:03 - 00035808 _____ () C:\Users\Alex\Desktop\Addition.txt
2014-06-23 13:41 - 2014-06-23 13:41 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-06-23 13:40 - 2014-06-23 13:40 - 02347384 _____ (ESET) C:\Users\Alex\Desktop\esetsmartinstaller_enu.exe
2014-06-23 13:39 - 2014-06-23 13:39 - 01016261 _____ (Thisisu) C:\Users\Alex\Desktop\JRT.exe
2014-06-23 13:33 - 2014-06-23 13:33 - 00031266 _____ () C:\Users\Alex\Downloads\Addition.txt
2014-06-23 13:32 - 2014-06-23 13:32 - 02082816 _____ (Farbar) C:\Users\Alex\Downloads\FRST64 (1).exe
2014-06-23 11:28 - 2014-06-23 11:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-23 11:26 - 2014-06-23 11:23 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-23 11:23 - 2014-06-23 11:23 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2014-06-23 11:23 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-06-23 11:23 - 2014-06-23 11:23 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-06-23 11:19 - 2014-06-23 11:18 - 46392680 _____ (Safer-Networking Ltd. ) C:\Users\Alex\Downloads\spybot-2.3.exe
2014-06-23 00:49 - 2012-12-22 03:05 - 00000000 ____D () C:\Users\Rachel\Documents\Outlook Files
2014-06-22 20:46 - 2014-06-22 20:46 - 00000000 ____D () C:\Users\Sharon\AppData\Roaming\SUPERAntiSpyware.com
2014-06-22 20:46 - 2014-06-22 20:46 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-06-22 19:53 - 2014-06-22 19:53 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\SUPERAntiSpyware.com
2014-06-22 19:53 - 2014-06-22 19:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-06-22 19:44 - 2014-06-22 19:04 - 00002186 _____ () C:\Users\Sharon\Desktop\Rkill.txt
2014-06-22 19:40 - 2014-06-22 19:40 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-06-22 19:34 - 2014-06-22 19:26 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-22 19:33 - 2014-06-22 19:33 - 05268992 _____ () C:\Users\Alex\Desktop\RogueKillerX64.exe
2014-06-22 19:27 - 2014-06-22 19:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-22 19:25 - 2014-06-22 19:25 - 10971424 _____ (SurfRight B.V.) C:\Users\Alex\Desktop\HitmanPro_x64.exe
2014-06-22 19:06 - 2014-06-22 19:06 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-06-22 19:06 - 2014-06-21 01:51 - 00001068 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-22 19:06 - 2014-06-21 01:51 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-22 19:04 - 2014-06-22 19:04 - 00001107 _____ () C:\Users\Alex\Desktop\iExplore - Shortcut.lnk
2014-06-22 19:00 - 2014-06-22 19:00 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Alex\Downloads\iExplore.exe
2014-06-22 18:59 - 2014-06-22 18:58 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Alex\Desktop\tdsskiller.exe
2014-06-22 18:36 - 2014-06-22 18:36 - 01342659 _____ () C:\Users\Alex\Desktop\adwcleaner_3.213.exe
2014-06-22 18:17 - 2014-06-22 18:17 - 00002259 _____ () C:\Windows\epplauncher.mif
2014-06-22 18:16 - 2014-06-22 18:16 - 13829304 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall (1).exe
2014-06-22 18:16 - 2014-06-22 18:16 - 11241816 _____ (Microsoft Corporation) C:\Users\Alex\Downloads\MSEInstall.exe
2014-06-21 01:51 - 2014-06-21 01:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-21 01:51 - 2014-06-21 01:50 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-19 21:07 - 2014-06-19 21:00 - 00000000 ____D () C:\Users\Alex\jagexcache
2014-06-19 17:07 - 2014-05-03 00:50 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-19 17:07 - 2014-05-03 00:50 - 00003654 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-18 19:12 - 2014-07-13 22:32 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 01366528 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-06-18 19:12 - 2014-07-13 22:32 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-18 19:11 - 2014-07-13 22:32 - 19277312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-18 19:11 - 2014-07-13 22:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-18 19:11 - 2014-07-13 22:32 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 15369728 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 02650624 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-18 19:10 - 2014-07-13 22:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-18 19:09 - 2014-07-13 22:32 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-18 17:53 - 2014-07-13 22:32 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 01141760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-18 17:53 - 2014-07-13 22:32 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 13732352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 02863616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-18 17:52 - 2014-07-13 22:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-18 17:52 - 2014-07-13 22:32 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-18 17:33 - 2014-07-13 22:32 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-18 17:30 - 2014-07-13 22:32 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-18 15:10 - 2014-05-03 00:51 - 00002064 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-18 15:05 - 2014-07-13 22:32 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-06-18 14:07 - 2014-06-18 14:07 - 00000000 ____H () C:\Users\Rachel\AppData\Local\BIT9C27.tmp
2014-06-18 14:07 - 2014-06-18 14:07 - 00000000 _____ () C:\Users\Rachel\AppData\Local\{BCD83331-762D-41FA-B110-E546BAD8E109}
2014-06-17 16:27 - 2014-07-13 22:32 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-06-17 16:24 - 2014-07-13 22:32 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe

Files to move or delete:
====================
C:\Users\Alex\jagex_cl_oldschool_LIVE.dat
C:\Users\Alex\random.dat


Some content of TEMP:
====================
C:\Users\Guest\AppData\Local\Temp\SecondStepInstaller.exe
C:\Users\Sharon\AppData\Local\Temp\7za.exe
C:\Users\Sharon\AppData\Local\Temp\hijackthis.exe
C:\Users\Sharon\AppData\Local\Temp\NirCmd.exe
C:\Users\Sharon\AppData\Local\Temp\PEVZ.EXE
C:\Users\Sharon\AppData\Local\Temp\remove.exe
C:\Users\Sharon\AppData\Local\Temp\sed.exe
C:\Users\Sharon\AppData\Local\Temp\shortcut.exe
C:\Users\Sharon\AppData\Local\Temp\swreg.exe
C:\Users\Sharon\AppData\Local\Temp\swxcacls.exe
C:\Users\Sharon\AppData\Local\Temp\wget.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-16 06:54

==================== End Of Log ============================
 
TwinHeadedEagle

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Next time, please attach reports instead of copying them.


FRST.gif
Fix with Farbar Recovery Scan Tool

icon_exclaim.gif
This fix was created for this user for use on that particular machine.
icon_exclaim.gif

icon_exclaim.gif
Running it on another one may cause damage and render the system unstable.
icon_exclaim.gif

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on
    FRST.gif
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.




51a612a8b27e2-Zoek.png
Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on
    51a612a8b27e2-Zoek.png
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
  • Wait patiently until the main console will appear, it may take a minute or two.
  • In the main box please paste in the following script:
    Code: 
    createsrpoint;
chrdefaults;
ffdefaults;
autoclean;
emptyalltemp;
  • Make sure that Scan All Users option is checked.
  • Push Run Script and wait patiently. The scan may take a couple of minutes.
  • When the scan completes, a zoek-results logfile should open in notepad.
  • If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Attach report into your next reply.
 

Attachments

  • fixlist.txt
    4 KB · Views: 83
A

Alex Yee

New Member
Thread author
Verified
Jun 22, 2014
31
For Zoek, it always says "An error has occurred in the script on this page".
 

Attachments

  • Fixlog.txt
    10.9 KB · Views: 126
Status
Not open for further replies.

Similar threads

duma
  • Locked
Help to clean my PC after BHGR ransomware
Replies
2
Views
961
Windows Malware Removal Help & Support
nasdaq
nasdaq
anirbandutta01
    • Like
Serious Discussion Safe mode protection
Replies
11
Views
879
General Security Discussions
Brahman
Brahman
tanner_doriano
  • Locked
PC Infected with Persistent Malware Downloading Files Hourly
Replies
7
Views
945
Inactive Support Threads
icotonev
icotonev

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top