Solved internet explorer and firefox won’t follow links

[Solved] internet explorer and firefox won’t follow links

To Admin. Further to my earlier posting, and your requests via e-mail:

Start new topic in our Malware Removal forum and provide following logs:

FRST.txt
Addition.txt


I did download Farbar Recovery Scan Tool.

Saved it to my Desktop.

Ran the scan button.

Recovery Scan Tool made a log (FRST.txt). Shows up on my desktop.
It made another log (Addition.txt). Also shows up on my desktop.

" Please copy and paste it to your reply ". Your instructions: Make sure all logs are pasted not attached. Attached logs won't be reviewed. Don't attach logs, copy & post logs in your post & reply(s). You'll most likely need multiple replies to post all your logs. You can post around 55,000 characters in a single post.

NOT SURE HOW TO DO THIS.

 

internet explorer and firefox won’t follow links

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by FRENCHIE (administrator) on SPEEDY on 03-04-2015 18:40:33
Running from C:\Users\FRENCHIE\Favorites\Desktop
Loaded Profiles: FRENCHIE (Available profiles: FRENCHIE & Ron & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\nis.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
() C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
() C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATILAE.EXE
(Pelmorex Media Inc.) C:\Program Files (x86)\weathereye.exe
(Microsoft® Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Works Shared\WkCalRem.exe
(Dropbox, Inc.) C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
() C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_134.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_134.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [20480 2006-09-20] ()
HKLM\...\Run: [IntelliType Pro] => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464984 2012-10-12] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2075288 2012-10-12] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-04-13] (Intel Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-26] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] => C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [Microsoft Works Update Detection] => C:\Program Files (x86)\Microsoft Works\WkDetect.exe [28739 2000-07-13] (Microsoft® Corporation)
HKLM-x32\...\Run: [ContentTransferWMDetector.exe] => C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe [423200 2008-07-11] (Sony Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [1734144 2013-05-29] (AimerSoft)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LTCM Client] => C:\Program Files (x86)\LTCM Client\ltcmClient.exe [2756864 2011-04-07] (Leader Technologies Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1057920 2012-07-31] (SEIKO EPSON CORPORATION)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\Run: [Exetender] => "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
HKU\S-1-5-20\...\Run: [Exetender] => "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILAE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Run: [WeatherEye] => C:\Program Files (x86)\weathereye.exe [310920 2012-08-30] (Pelmorex Media Inc.)
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\MountPoints2: D - D:\Msetup4.exe
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\MountPoints2: {f193cbf0-59f6-11e3-a93b-1c7508aca517} - E:\DPFMate.exe
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Program Files (x86)\PANDORA.TV\PanService\FirstRun.scr
HKU\S-1-5-18\...\Run: [Exetender] => "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Works Calendar Reminders.lnk
ShortcutTarget: Microsoft Works Calendar Reminders.lnk -> C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
Startup: C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ "DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ "DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-776278072-1255483964-2025531215-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\S-1-5-21-776278072-1255483964-2025531215-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-06] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-06] (Oracle Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-04] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2015-01-01] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-01] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-776278072-1255483964-2025531215-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/downl...-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {61900274-3323-4446-BDCD-91548D32AF1B} http://www.worldwinner.com/games/v56/spidersolitaire/spidersolitaire.cab
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
DPF: HKLM-x32 {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinner.com/games/shared/wwlaunch.cab
DPF: HKLM-x32 {8F6E7FB2-E56B-4F66-A4E1-9765D2565280} http://www.worldwinner.com/games/launcher/ie/v2.23.01.0/iewwload.cab
DPF: HKLM-x32 {C82BB209-F528-46F9-96D5-69DEF7260916} http://www.worldwinner.com/games/v45/mysterypi/mysterypi.cab
DPF: HKLM-x32 {C93C1C34-CEA9-49B1-9046-040F59E0E0D8} http://www.worldwinner.com/games/v43/paint/paint.cab
Tcpip\Parameters: [DhcpNameServer] 142.161.2.155 142.161.130.155 192.168.1.1
Tcpip\..\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991}: [NameServer] 108.171.182.159,108.171.177.124

 

internet explorer and firefox won’t follow links

PAGE 2 - Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by FRENCHIE (administrator) on SPEEDY on 03-04-2015 18:40:33A

FireFox:
========
FF ProfilePath: C:\Users\FRENCHIE\AppData\Roaming\Mozilla\Firefox\Profiles\fjcgspeu.default-1427901169199
FF Homepage: https://www.google.ca/?gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-04-02] ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-09-06] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-08-20] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-01-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-08-20] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] ()
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VLC\npvlc.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Extension: Pinterest Pin Button - C:\Users\FRENCHIE\AppData\Roaming\Mozilla\Firefox\Profiles\fjcgspeu.default-1427901169199\Extensions\{677a8f98-fd64-40b0-a883-b8c95d0cbf17}.xpi [2015-04-03]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn [2015-04-03]

Chrome:
=======
CHR Profile: C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-16]
CHR Extension: (Google Drive) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-16]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-29]
CHR Extension: (YouTube) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-16]
CHR Extension: (Music Songs Player) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdenlcnfdjepagejpfajlkicggieknab [2014-03-17]
CHR Extension: (Google Search) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-16]
CHR Extension: (Crackle) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-03-17]
CHR Extension: (Norton Identity Safe) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-29]
CHR Extension: (Love Smoke) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgibfhhccaknggplelmbaepoikkcnllb [2014-03-17]
CHR Extension: (Norton Security Toolbar) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-03-31]
CHR Extension: (Google Wallet) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-16]
CHR Extension: (Gmail) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-16]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-04-02]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx [2015-04-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [276336 2015-03-07] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 SBAMSvc; No ImagePath
S2 vToolbarUpdater17.1.2; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-10] (AVG Technologies)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\BASHDefs\20150321.001\BHDrvx64.sys [1622744 2015-03-21] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [162392 2014-02-20] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-25] (Symantec Corporation)
S3 esgiguard; No ImagePath
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\IPSDefs\20150401.001\IDSvia64.sys [671448 2015-04-01] (Symantec Corporation)
S3 IntcAzAudAddService; No ImagePath
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-03] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation)
S3 motccgpfl; No ImagePath
S3 motport; C:\Windows\System32\DRIVERS\motport.sys [31744 2013-03-19] (Motorola Mobility Inc)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150402.032\ENG64.SYS [129752 2014-11-15] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150402.032\EX64.SYS [2137304 2014-11-15] (Symantec Corporation)
S3 RSUSBSTOR; No ImagePath
R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMDS64.SYS [493656 2014-08-25] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-25] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2015-04-02] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [593112 2014-08-25] (Symantec Corporation)
S2 X5XSEx; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-03 18:38 - 2015-04-03 18:39 - 00015374 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150403_183848.reg
2015-04-03 18:13 - 2015-04-03 18:25 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\MALWARE PROGRAM
2015-04-03 16:47 - 2015-04-03 18:40 - 00000000 ____D () C:\FRST
2015-04-03 16:07 - 2015-04-03 16:08 - 00007800 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150403_160727.reg
2015-04-03 08:08 - 2015-04-03 08:08 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{02859D68-3F2B-4AAE-847D-A2C8556220CC}
2015-04-02 23:45 - 2015-04-02 23:45 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2015-04-02 23:39 - 2015-04-03 08:26 - 00046130 _____ () C:\Windows\PFRO.log
2015-04-02 23:39 - 2015-04-03 08:26 - 00000112 _____ () C:\Windows\setupact.log
2015-04-02 23:39 - 2015-04-02 23:39 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-02 23:07 - 2015-04-03 17:00 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-02 23:06 - 2015-04-02 23:06 - 00001066 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-02 23:06 - 2015-04-02 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-02 23:06 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-02 23:06 - 2015-03-17 06:15 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-02 23:06 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-02 23:04 - 2015-04-02 23:05 - 21540440 _____ (Malwarebytes Corporation ) C:\Program Files (x86)\Malwarebytes Anti-Malware.exe
2015-04-02 22:37 - 2015-04-03 18:40 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-02 22:37 - 2015-04-02 22:37 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-02 22:37 - 2015-04-02 22:37 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-02 22:37 - 2015-04-02 22:37 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-02 20:07 - 2015-04-02 20:08 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{B4ABCDE1-63A8-4859-91D4-268FC7F96CD1}
2015-04-02 18:40 - 2015-04-02 18:40 - 00001111 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-04-02 18:33 - 2015-04-02 18:34 - 41090240 _____ () C:\Program Files (x86)\Firefox Setup 36.0.4.exe
2015-04-02 15:56 - 2015-04-02 23:40 - 00002465 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2015-04-02 15:56 - 2015-04-02 15:56 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2015-04-02 15:56 - 2015-04-02 15:56 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2015-04-02 15:55 - 2015-04-02 15:55 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2015-04-02 15:08 - 2015-04-02 15:08 - 00073180 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150402_150825.reg
2015-04-02 07:59 - 2015-04-02 08:00 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{AE5C6AF4-6264-4354-96F6-142D3F2D8C1F}
2015-04-01 18:24 - 2015-04-01 18:24 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{977C3F42-17C6-412F-8416-E3DFC4C9F3D7}
2015-04-01 11:51 - 2015-04-01 11:51 - 00002924 _____ () C:\Windows\System32\Tasks\{8DF0E5BB-28E4-42E2-994A-8185D36B1CB4}
2015-04-01 06:23 - 2015-04-01 06:23 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{9ACC9273-797A-4A32-9BEA-287454A51895}
2015-03-31 14:52 - 2015-03-31 14:53 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{518B2798-7A2C-4AC8-A371-54FBF4F10C41}
2015-03-31 13:34 - 2015-04-02 18:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-31 05:40 - 2015-03-31 05:40 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{89E51B7E-976C-4C52-B9D1-AEC5AA8F26B6}
2015-03-31 01:32 - 2015-03-31 01:32 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{CC4B508F-1463-438E-B808-B94619FE43A8}
2015-03-30 11:45 - 2015-03-30 11:45 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{5D9AE1D9-69E6-4E8C-9CA7-F49445A0F4FA}
2015-03-29 22:25 - 2015-03-29 22:26 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{8BC4D0BE-A64B-4EE0-B067-8F61048A1F86}
2015-03-29 10:23 - 2015-03-29 10:23 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{67D01C49-5C6A-4601-8649-38C4C0A11280}
2015-03-28 20:43 - 2015-03-28 20:43 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{DD9905F7-B69E-4185-AC4C-D3D7D309160E}
2015-03-28 08:42 - 2015-03-28 08:42 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{56B6BC7F-1594-487E-BE66-AC5427B476B7}
2015-03-27 20:41 - 2015-03-27 20:41 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{A258D673-AE3E-4DEC-AF58-5259CD1389B5}
2015-03-27 08:40 - 2015-03-27 08:40 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{83321A69-0C36-4A37-A618-F941E366E8A5}
2015-03-26 23:05 - 2015-03-31 14:29 - 00000000 ____D () C:\Program Files (x86)\KMPlayer
2015-03-26 23:02 - 2015-03-26 23:02 - 32863376 _____ (PandoraTV) C:\Program Files (x86)\KMPlayer_3-9-0-128.exe
2015-03-26 22:54 - 2015-03-26 23:00 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer2
2015-03-26 22:46 - 2015-04-03 15:21 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\00000 MOVIES
2015-03-26 20:38 - 2015-03-26 20:39 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{55463481-285E-4EBF-93B5-F728A4A19273}
2015-03-26 18:59 - 2015-03-26 18:59 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{B39C4046-0F32-487F-A69B-3CB3DDBE0CC6}
2015-03-26 06:58 - 2015-03-26 06:58 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{00A65411-A1B3-464F-BA54-FB9AC25D7376}
2015-03-25 14:07 - 2015-03-25 14:07 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{8ECD9EFC-192C-489F-B4C3-FA2103153632}
2015-03-25 10:30 - 2015-03-31 14:26 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\Evernote
2015-03-25 02:52 - 2015-03-25 02:53 - 40891792 _____ (Amazon.com) C:\Program Files (x86)\KindleForPC-installer.exe
2015-03-25 02:24 - 2015-03-25 02:25 - 99237384 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote_5.8.4.6870.exe
2015-03-25 02:05 - 2015-03-25 02:05 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{4F52A3D1-4BC0-418D-9DEF-93B2EA9B51E4}
2015-03-25 00:36 - 2015-03-25 00:36 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{F686CADB-5F7C-48C9-B5CA-4BFE4A08AEDF}
2015-03-24 17:20 - 2015-03-10 23:06 - 00943616 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-03-24 17:20 - 2015-03-10 23:06 - 00760832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-03-24 17:20 - 2015-03-10 23:06 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-03-24 17:20 - 2015-03-10 23:06 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-03-24 17:20 - 2015-03-10 23:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-03-24 17:20 - 2015-03-10 23:05 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-03-24 17:20 - 2015-03-10 23:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-03-24 17:20 - 2015-03-10 23:02 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-03-24 12:35 - 2015-03-24 12:35 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{85B53EDA-A0CE-4810-BDCF-7AD72A71DCF0}
2015-03-24 08:46 - 2015-03-24 08:46 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{10CADD51-DEA9-4C13-A65A-4C34AA383492}
2015-03-23 20:45 - 2015-03-23 20:45 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{7172241A-FF83-40C3-AE8F-6A544CE12F2D}
2015-03-23 08:15 - 2015-03-23 08:15 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{80011057-3DE7-4020-A229-89D0CB2B0C10}
2015-03-22 12:15 - 2015-03-22 12:15 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{7243076C-A8C8-4021-8A64-4686BFDB7766}
2015-03-22 00:14 - 2015-03-22 00:14 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{3AF73DD0-E0D2-41AD-BA38-8C7B5D650B6B}
2015-03-21 11:48 - 2015-03-21 11:48 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{755E7F58-7543-4519-A4F6-A2561837F2AF}
2015-03-20 23:47 - 2015-03-20 23:47 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{B6021C6F-59A4-4BA5-A411-46CC12FDE97F}
2015-03-20 11:25 - 2015-03-20 11:25 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{C6073DB6-02C8-4CE5-B950-363DD42606F7}
2015-03-19 18:20 - 2015-03-19 18:20 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{0A0EA616-56EE-4D37-9019-9E7E6615D9BE}
2015-03-19 06:19 - 2015-03-19 06:19 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{BFECAD95-5B68-46E9-B718-18D0ECE1779A}
2015-03-18 16:28 - 2015-03-18 16:28 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{FFB3BA9C-3615-43A7-AF46-2C74D67B004E}
2015-03-18 15:58 - 2015-04-03 13:28 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\00000-pics
2015-03-18 15:58 - 2015-03-18 15:58 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\RECIPES
2015-03-18 15:58 - 2015-03-18 15:58 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\MUSIC BOXES
2015-03-18 15:30 - 2015-02-19 23:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-18 15:30 - 2015-02-19 23:40 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-18 15:30 - 2015-02-19 23:40 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-18 15:30 - 2015-02-19 23:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-18 15:30 - 2015-02-19 23:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-18 15:30 - 2015-02-19 23:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-18 15:30 - 2015-02-19 23:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-18 15:30 - 2015-02-19 23:12 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-18 15:30 - 2015-02-19 22:29 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-18 15:30 - 2015-02-19 22:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-18 15:30 - 2015-02-02 22:34 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-18 15:30 - 2015-02-02 22:31 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-18 15:30 - 2015-02-02 22:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-18 15:29 - 2015-02-02 22:34 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-18 15:29 - 2015-02-02 22:34 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-18 15:29 - 2015-02-02 22:33 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-18 15:29 - 2015-02-02 22:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-18 15:29 - 2015-02-02 22:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-18 15:29 - 2015-02-02 22:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-18 15:29 - 2015-02-02 22:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-18 15:29 - 2015-02-02 22:28 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-18 15:29 - 2015-02-02 22:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-18 15:29 - 2015-02-02 22:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-18 15:29 - 2015-02-02 22:16 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-18 15:29 - 2015-02-02 22:16 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-18 15:29 - 2015-02-02 22:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-18 15:29 - 2015-02-02 22:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-18 15:29 - 2015-02-02 22:11 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-18 15:29 - 2015-02-02 22:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-18 15:29 - 2015-02-02 22:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-18 15:29 - 2015-02-02 22:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-18 15:29 - 2015-02-02 22:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-18 15:29 - 2015-02-02 21:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-18 15:29 - 2014-10-31 17:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-18 15:29 - 2014-06-27 19:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-03-18 15:29 - 2014-06-27 19:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-03-18 15:28 - 2015-03-06 00:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-18 15:28 - 2015-03-06 00:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-18 15:28 - 2015-03-06 00:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-18 15:28 - 2015-03-06 00:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-18 15:28 - 2015-03-06 00:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-18 15:28 - 2015-03-06 00:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-18 15:28 - 2015-03-06 00:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-18 15:28 - 2015-03-06 00:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-18 15:28 - 2015-03-06 00:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-18 15:28 - 2015-03-06 00:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-18 15:28 - 2015-03-06 00:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-18 15:28 - 2015-03-06 00:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-18 15:28 - 2015-03-06 00:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-18 15:28 - 2015-02-13 00:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-18 15:28 - 2015-02-13 00:22 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-18 15:28 - 2015-02-02 22:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-18 15:28 - 2015-02-02 22:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-18 15:28 - 2015-01-30 18:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-18 15:28 - 2015-01-16 21:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-18 15:28 - 2015-01-16 21:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-18 15:19 - 2015-03-18 15:19 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{5E6C8E6B-C75B-46BF-B18C-C0F0C8B5722B}
2015-03-18 15:19 - 2015-02-25 22:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-18 15:19 - 2015-02-23 22:15 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-18 15:19 - 2015-02-23 21:32 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-18 15:19 - 2015-02-20 20:16 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-18 15:19 - 2015-02-20 19:41 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-18 15:19 - 2015-02-20 19:27 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-18 15:19 - 2015-02-20 19:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-18 15:19 - 2015-02-20 19:25 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-18 15:19 - 2015-02-20 18:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-18 15:19 - 2015-02-20 18:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-18 15:19 - 2015-02-19 22:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-18 15:19 - 2015-02-19 22:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-18 15:19 - 2015-02-19 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-18 15:19 - 2015-02-19 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-18 15:19 - 2015-02-19 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-18 15:19 - 2015-02-19 21:48 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-18 15:19 - 2015-02-19 21:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-18 15:19 - 2015-02-19 21:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-18 15:19 - 2015-02-19 21:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-18 15:19 - 2015-02-19 21:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-18 15:19 - 2015-02-19 21:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-18 15:19 - 2015-02-19 21:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-18 15:19 - 2015-02-19 21:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-18 15:19 - 2015-02-19 21:32 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-18 15:19 - 2015-02-19 21:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-18 15:19 - 2015-02-19 21:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-18 15:19 - 2015-02-19 21:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-18 15:19 - 2015-02-19 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-18 15:19 - 2015-02-19 21:09 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-18 15:19 - 2015-02-19 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-18 15:19 - 2015-02-19 21:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-18 15:19 - 2015-02-19 21:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-18 15:19 - 2015-02-19 21:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-18 15:19 - 2015-02-19 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-18 15:19 - 2015-02-19 21:03 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-18 15:19 - 2015-02-19 21:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-18 15:19 - 2015-02-19 21:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-18 15:19 - 2015-02-19 20:58 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-18 15:19 - 2015-02-19 20:56 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-18 15:19 - 2015-02-19 20:56 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-18 15:19 - 2015-02-19 20:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-18 15:19 - 2015-02-19 20:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-18 15:19 - 2015-02-19 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-18 15:19 - 2015-02-19 20:43 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-18 15:19 - 2015-02-19 20:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-18 15:19 - 2015-02-19 20:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-18 15:19 - 2015-02-19 20:30 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-18 15:19 - 2015-02-19 20:28 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-18 15:19 - 2015-02-19 20:24 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-18 15:19 - 2015-02-19 20:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-18 15:19 - 2015-02-19 20:23 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-18 15:19 - 2015-02-19 20:16 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-18 15:19 - 2015-02-19 20:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-18 15:19 - 2015-02-19 20:01 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-18 15:19 - 2015-02-19 19:57 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-18 15:19 - 2015-02-19 19:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-18 15:19 - 2015-02-02 22:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-18 15:19 - 2015-02-02 22:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-18 15:17 - 2015-03-18 15:17 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{4A7074B1-6648-43B0-A9BB-2EBDDDF41347}
2015-03-18 15:17 - 2015-02-03 22:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-18 15:17 - 2015-02-03 21:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-18 06:20 - 2015-03-18 06:20 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{9CFE3354-50EF-4B52-ADDD-58C54AD770AB}
2015-03-17 12:48 - 2015-03-17 12:48 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{A19C2D93-D7D9-4176-8C44-F8743CF00A18}
2015-03-17 00:47 - 2015-03-17 00:47 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{FDEF7BE5-660F-4A22-9518-F58BBE256513}
2015-03-16 08:48 - 2015-03-16 08:48 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{550DCE33-6954-44D5-8C15-1678D0872AC1}
2015-03-15 20:19 - 2015-03-15 20:20 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{354B77C3-0CF0-440F-8E7C-F5DADC6E27C0}
2015-03-15 08:19 - 2015-03-15 08:19 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{F97A8A84-4C53-4920-9BF8-904812EA05FB}
2015-03-14 10:41 - 2015-03-14 10:41 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{96E280B1-A2BA-4146-A90C-B261FCBBE1C5}
2015-03-13 22:39 - 2015-03-13 22:40 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{6475A9AE-CE1F-45B0-ADA1-B23C3300DD4A}
2015-03-13 10:39 - 2015-03-13 10:39 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{11AE7EF7-BF12-4561-B21A-325B119E3145}
2015-03-12 22:25 - 2015-03-12 22:25 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{9805E0FB-1FD0-4F67-9807-8D02809EFB99}
2015-03-12 10:24 - 2015-03-12 10:25 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{590D190A-C776-46A4-8244-A909962C989F}
2015-03-11 22:23 - 2015-03-11 22:23 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{226D208A-C4DA-45CE-B386-3CFFAE4A5F7A}
2015-03-11 10:23 - 2015-03-11 10:23 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{4EDF1279-1D03-4056-829F-C268701D88EC}
2015-03-11 09:10 - 2015-02-19 20:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-10 22:22 - 2015-03-10 22:22 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{D29355E4-8FCE-4B19-B027-897DF4221498}
2015-03-10 10:22 - 2015-03-10 10:22 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{7E56FB62-28C9-4B47-8C03-2BC9B9A0BED1}
2015-03-09 22:20 - 2015-03-09 22:21 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{AF4D60EB-D4B8-4BAF-A911-62D8BDF84954}
2015-03-09 10:20 - 2015-03-09 10:20 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{61018471-C663-441C-9BAF-996195AB5E56}
2015-03-08 22:19 - 2015-03-08 22:19 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{5192E501-7DA8-45DF-A021-CAB5BB97ABA9}
2015-03-08 10:05 - 2015-03-08 10:05 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{17F7FE40-3EFA-450A-825A-1B999ABA2A2E}
2015-03-07 22:05 - 2015-03-07 22:05 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{17AE2EB7-4CD9-4F12-8BFE-90170C331156}
2015-03-07 10:04 - 2015-03-07 10:04 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{158072C1-799C-43B5-92EC-5C94E957F9D5}
2015-03-06 22:02 - 2015-03-06 22:03 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{3E8C2988-F65C-4E1C-A7A1-7CE39CD9EC99}
2015-03-06 10:02 - 2015-03-06 10:02 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{94711E73-1318-4430-A4A2-81C445420628}
2015-03-05 22:01 - 2015-03-05 22:01 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{00AD8142-32E4-4148-BB2E-ED2F10EAB301}
2015-03-05 10:01 - 2015-03-05 10:01 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{7A091C7B-FB9B-4EDA-A859-F6DA8D80CF51}
2015-03-04 11:55 - 2015-03-04 11:55 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{4E1997AD-D7B5-4385-917F-C01565B67CDE}

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by FRENCHIE at 2015-04-03 18:41:55
Running from C:\Users\FRENCHIE\Favorites\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.4.5 - Liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Amazon Kindle (HKLM-x32\...\Amazon Kindle) (Version: - Amazon)
Angry Birds Space (HKLM-x32\...\{561AA971-37EB-4D63-9FB9-810B663B5CC7}) (Version: 1.4.1 - Rovio)
Any Video Converter Professional 5.0.9 (HKLM-x32\...\Any Video Converter Professional_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft PhotoStudio 5.5 (HKLM-x32\...\{85309D89-7BE9-4094-BB17-24999C6118FC}) (Version: - ArcSoft)
ArcSoft Print Creations - Album Page (HKLM-x32\...\{E6B4117F-AC59-4B13-9274-EB136E8897EE}) (Version: - ArcSoft)
ArcSoft Print Creations - Brochures & Flyers (HKLM-x32\...\{01A1A019-E1D8-482A-BE17-5E118D17C0A0}) (Version: - ArcSoft)
ArcSoft Print Creations - Funhouse (HKLM-x32\...\{9591C049-5CAE-4E89-A8D9-191F1899628B}) (Version: - ArcSoft)
ArcSoft Print Creations - Funhouse II (HKLM-x32\...\{3CE47E6B-AE27-4E40-AC54-329EED96B933}) (Version: - ArcSoft)
ArcSoft Print Creations - Greeting Card (HKLM-x32\...\{F04F9557-81A9-4293-BC49-2C216FA325A7}) (Version: - ArcSoft)
ArcSoft Print Creations - Photo Book (HKLM-x32\...\{56589DFE-0C29-4DFE-8E42-887B771ECD23}) (Version: - ArcSoft)
ArcSoft Print Creations - Photo Calendar (HKLM-x32\...\{CA9ED5E4-1548-485B-A293-417840060158}) (Version: - ArcSoft)
ArcSoft Print Creations - Photo Prints (HKLM-x32\...\{95F875CC-1B85-43E6-B3E0-13EA04F3D995}) (Version: - ArcSoft)
ArcSoft Print Creations - Poster Creator (HKLM-x32\...\{5D1C82E7-7EC0-4404-A8AD-36C3B444BC34}) (Version: - ArcSoft)
ArcSoft Print Creations - Scrapbook (HKLM-x32\...\{B0D83FCD-9D42-43ED-8315-250326AADA02}) (Version: - ArcSoft)
ArcSoft Print Creations - Slimline Card (HKLM-x32\...\{007B37D9-0C45-4202-834B-DD5FAAE99D63}) (Version: - ArcSoft)
ArcSoft Print Creations (HKLM-x32\...\{F03EC055-F34E-4F6B-A684-8A370E11A304}) (Version: 3.0.255.500 - ArcSoft)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 3.09 - Piriform)
Cisco Connect (HKLM-x32\...\Cisco Connect) (Version: 1.4.11299.0 - Cisco Consumer Products LLC)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.0.0.07110 - Sony Corporation)
Cook'n for Diabetes (HKLM-x32\...\Cook'n for Diabetes) (Version: - )
Cook'n Recipe Browser (HKLM-x32\...\Cook'n Recipe Browser) (Version: - )
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
EPSON Connect version 1.0 (HKLM-x32\...\EPSON Connect_is1) (Version: 1.0 - Epson America Inc.)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{10144CFE-D76C-4CFA-81A1-37A1642349A3}) (Version: 3.01.0013 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-410 Series Printer Uninstall (HKLM\...\EPSON XP-410 Series) (Version: - SEIKO EPSON Corporation)
Epson XP-410 User's Guide version 1.0 (HKLM-x32\...\UsersGuideEpson XP-410 User's Guide_is1) (Version: 1.0 - )
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ffdshow v1.2.4422 [2012-04-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.2.4422.0 - )
Free Studio version 6.4.2.113 (HKLM-x32\...\Free Studio_is1) (Version: 6.4.2.113 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.44.908 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.44.908 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Imikimi Plugin (HKLM-x32\...\Imikimi Plugin) (Version: - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kobo (HKLM-x32\...\Kobo) (Version: 3.12.0 - Rakuten Kobo Inc.)
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.14 - Acer Inc.)
LTCM Client (HKLM-x32\...\{B38E9B55-7136-4E66-A084-320512FF3F6F}) (Version: 1.20.3792 - Leader Technologies Inc)
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Media Manager for WALKMAN 1.2 (HKLM-x32\...\{5A6ED905-D19D-4954-8499-0DAF386460F7}) (Version: 1.2.771 - Sony)
MediaFACE II (HKLM-x32\...\{DC1D7AD2-583A-4024-9041-387E8FFA5D8C}) (Version: - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM-x32\...\{D03632B5-1DA9-4536-976D-604719500C45}) (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.0.161.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office XP Small Business (HKLM-x32\...\{91130409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B2-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Works 6.0 (HKLM-x32\...\{F8D0829C-9C6F-11D3-8080-00C04FA329AA}) (Version: 06.00.1829 - Microsoft Corporation)
MKVtoolnix 5.0.1 (HKLM-x32\...\MKVtoolnix) (Version: 5.0.1 - Moritz Bunkus)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC)
Mozilla Firefox 36.0.4 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 en-US)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.4 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.7.0.11 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
Omron Health Management Software (HKLM-x32\...\{F6BA8EF2-A9F8-45B7-BD59-0A15DA9F7D68}) (Version: 1.21.0001 - Omron Healthcare)
PCStitch 10 (HKLM-x32\...\{7D389358-56D0-4988-BAAC-5ACE907CCEBD}) (Version: 10.00.23 - M&R Technologies, Inc.)
Plenty Jackpot (HKLM-x32\...\{f748bdcf-1691-49d4-b5a6-20abf8d9d2b9}) (Version: 13.1.0-RTG - RealTimeGaming Software)
Presto! PageManager 7.15.14 (HKLM-x32\...\{D2D6B9EB-C6DC-4DAA-B4DE-BB7D9735E7DA}) (Version: 7.15.14E - NewSoft)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Save.ca Print-At-Home (HKLM-x32\...\ca.save.print-at-home-signed) (Version: 14.0 - Metroland Media Group Ltd)
Save.ca Print-At-Home (x32 Version: 14.0 - Metroland Media Group Ltd) Hidden
ScanSoft OmniPage SE 4.0 (HKLM-x32\...\{C1E693A4-B1D5-4DCD-B68D-2087835B7184}) (Version: 15.00.0020 - Nuance Communications, Inc.)
Serif PanoramaPlus X4 (HKLM-x32\...\{35EDE682-4AE5-47D6-B44F-103F859951DC}) (Version: 4.0.3.010 - Serif (Europe) Ltd)
Serif PhotoPlus Starter Edition (HKLM-x32\...\{A0765939-76F5-48D8-82B1-8D0BBFAD0702}) (Version: 2.0.0.002 - Serif (Europe) Ltd)
Serif PhotoPlus X4 (HKLM-x32\...\{AFA3224E-8AD6-4EFA-9DBA-A2E499F30282}) (Version: 14.0.2.013 - Serif (Europe) Ltd)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Smilebox (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Smilebox) (Version: 1.1.1.1 - Smilebox, Inc.)
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.0.125 - PandoraTV)
The Weather Network (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\The Weather Network) (Version: 6.0.2.5 - The Weather Network)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3005 - Acer Incorporated)
Windows 7 Codec Pack 3.3.0 (HKLM-x32\...\Windows 7 - Codec Pack) (Version: - Windows 7 Codec Pack)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
XBMC (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\XBMC) (Version: - Team XBMC)

 

internet explorer and firefox won’t follow links

PAGE 2

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

31-03-2015 14:06:16 Windows Update
31-03-2015 14:17:19 Restore Operation
31-03-2015 14:47:52 Removed Evernote v. 5.8.4
01-04-2015 13:09:33 Installed Adblock Plus for IE (32-bit and 64-bit)
02-04-2015 10:00:41 Removed Adblock Plus for IE (32-bit and 64-bit)
02-04-2015 11:30:44 Norton Virus Spyware check.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {02E728B5-30CB-4C22-99C4-BB3BA5C7289D} - System32\Tasks\{F4D3820D-0E9E-45DF-BA4E-813D8167A413} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {037D261B-7580-4A72-942F-79D96DEB37C1} - System32\Tasks\{9725E417-0029-446A-9BCF-580F3C7C4AFA} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {064A21F4-56C5-4B01-AAED-8F01A83EF1AB} - System32\Tasks\{9E19266D-58C7-4646-8202-74790023F720} => pcalua.exe -a "C:\Program Files (x86)\HAIRSTYLES\setup.exe" -d "C:\Program Files (x86)\HAIRSTYLES "
Task: {0907BAA8-038D-44A5-9FA6-03C650302862} - System32\Tasks\{D4F25C98-5DB0-46D3-A3DA-F7C282FF4103} => C:\Users\FRENCHIE\Downloads\KindleForPC-installer.exe
Task: {090980E4-410C-45D6-8BCA-2C1CBA375873} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_LG => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {0DBCD00E-0FE1-40D2-AA7B-D6BD56C83A5F} - System32\Tasks\{E5D05E66-1F9C-4F69-A2BD-0F3AE3096C60} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {159F3984-EB4C-49CD-A449-DCCC9BC4FEC5} - System32\Tasks\{4448FAA0-5E38-49C7-BA5F-5321FA8B59E3} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {1F56AFED-7D7D-4965-B479-70A0FD82534A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17] (Google Inc.)
Task: {20BB4C66-84ED-41A4-A5A7-5277944E5C23} - System32\Tasks\{DCE6877C-70BA-4D31-A704-ED9BEAF53C52} => C:\Users\FRENCHIE\AppData\Roaming\Smilebox\SmileboxStarter.exe [2015-03-13] (Smilebox, Inc.)
Task: {21FBACE2-6051-4ED7-BCCE-26405FD04D0E} - System32\Tasks\{20F8CC33-CF5F-4731-AF43-00524DDD8B89} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {2681C3AE-D8D6-492C-8C32-81E3FFFD66F1} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {2CE24555-9757-43B3-BDF6-59F046AD38ED} - System32\Tasks\{0FA732B6-8950-4112-A498-1587AF3758D1} => C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe [2015-01-13] (DVDVideoSoft Ltd.)
Task: {2E28EE33-6A0A-462A-9B10-EC1816F6A871} - System32\Tasks\{303A744A-84C9-474D-A656-5355EBCE66B0} => C:\Program Files (x86)\The KMPlayer\KMPlayer.exe [2014-06-29] (PandoraTV)
Task: {309E046B-D2BA-46E4-99E7-4F7FE77DF6F2} - System32\Tasks\{27BA1E85-591C-4E2C-9DB0-5158BF1E6E73} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {343840CF-94CF-457B-97BA-C2E7D4F19CA8} - System32\Tasks\{DCD77774-D7FD-4A8C-9DAE-AE0A06BD8A54} => C:\Program Files (x86)\The KMPlayer\KMPlayer.exe [2014-06-29] (PandoraTV)
Task: {37A8E42E-E22A-4F8F-81E2-24D43C42555B} - System32\Tasks\{BD0290D3-551B-432D-B05E-3AA17AFE1AE3} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {3877FE70-98EE-47CD-A6EF-DDD398A50DDA} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {39B8E6B5-33DC-478A-BCF5-673325B40C56} - System32\Tasks\{906AF7AA-FB35-44B0-BDE1-D14EE34D3F63} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {3D2C0B06-B04E-468D-869D-B143D48EB869} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_RS => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {3F52AC8A-D1A4-4417-B135-6BDBA0933F32} - System32\Tasks\{0125C562-B806-4E2D-9E07-2AF128D8732F} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {422E6BCF-6965-4974-B1E0-C3E400FE9246} - System32\Tasks\{CD8868AF-C5B6-4ADD-900A-C0A368591FC9} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {43B5F255-BA2E-4B2A-AC17-6632863CB37D} - System32\Tasks\{7F2BEEDB-E40C-4CCD-A2AC-613AF2463EE6} => C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App\Cook'n.exe [2012-07-30] ()
Task: {4703625B-BDB9-4582-9818-6A0EC2C58784} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17] (Google Inc.)
Task: {48844275-FEF6-454C-9BBD-B45436773F6C} - System32\Tasks\{59C7729F-AFAC-49DC-8F82-31D48768BD43} => pcalua.exe -a "C:\Users\FRENCHIE\Downloads\World Of Goo game [ENG] [PC]\WorldOfGooSetup.exe" -d "C:\Users\FRENCHIE\Downloads\World Of Goo game [ENG] [PC] "
Task: {4DF92789-4411-4A20-8F7C-252C64152925} - System32\Tasks\{449DCF9A-DD04-4904-9C34-8C403298C190} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {4E757129-8004-43F8-9C3D-F639EBAF08F7} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_RN => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {50050E2C-9185-4451-AF5F-5CE50244E9EC} - System32\Tasks\FileCure Default => C:\Program Files (x86)\ParetoLogic\FileCure\FileCure.exe
Task: {502B14B6-5D3D-4832-93E0-41973D843A64} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {5030FCEF-EADD-453C-9A7F-F4BDC6587ABD} - System32\Tasks\{0451D13A-6A5F-4F7A-99D7-6CC92B807AE8} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {50C7537C-FA8C-4251-BDDA-3827F9B070A8} - System32\Tasks\{BB2A8EC2-FED9-47E8-804D-142A0ED4D1AD} => C:\Users\FRENCHIE\AppData\Roaming\Smilebox\SmileboxStarter.exe [2015-03-13] (Smilebox, Inc.)
Task: {53E649FE-FD01-4B54-86FD-EE54E123B76E} - System32\Tasks\{B2DCBF71-02FC-4020-9FE3-A6F3E3DACF88} => pcalua.exe -a C:\Users\FRENCHIE\Favorites\Desktop\ESDPK-HLX5-PhotoPlusStarterEdition_Setup.exe -d C:\Users\FRENCHIE\Favorites\Desktop
Task: {5659FEAF-243F-4736-A650-8A4BD7A981B3} - System32\Tasks\{97F0BA97-E5FF-4A51-987C-BC6231D32262} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {56A01349-9D97-40AF-9ACA-419559E579AF} - System32\Tasks\EPSON XP-410 Series Update {D58AF3A2-47AF-43DC-835F-780C760AC2B9} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION)
Task: {56D73C8A-213C-4079-B744-764B6CCE33FC} - System32\Tasks\{699786BE-B43E-4519-B796-85C48B74B1C5} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {58FE767D-7292-402F-8BC0-4EBFF09E3B85} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {59B75F68-80D6-429C-948E-9A815FAC241D} - System32\Tasks\{53BF5571-4CFE-4897-ABC9-D66C816A7B82} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {5B8DB8BF-305C-4B6D-AC71-0CD21B1E609F} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {5BF476B9-FBA2-496D-8D0A-2249556E13E5} - System32\Tasks\{34782763-5A29-4728-8391-7C5DD7BFF0CB} => C:\Users\FRENCHIE\Downloads\KindleForPC-installer.exe
Task: {61A107A4-0412-4A4D-AB7B-94322999D52B} - System32\Tasks\{B1F7C4A6-20CA-46E1-9BAC-CEE59755FE6C} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {68869B47-5D9D-458B-A8B5-3413855C8AB1} - System32\Tasks\{874D5114-551F-4849-AF76-F9C36295D9B8} => C:\Program Files (x86)\uTorrent\uTorrent.exe [2011-02-12] (BitTorrent, Inc.)
Task: {68E4D416-6C43-43F6-B74C-22AF019B1EB2} - System32\Tasks\{78238E2A-B6C1-4A34-9987-ECA9509381AD} => pcalua.exe -a "C:\Program Files (x86)\The KMPlayer\KMPSetup.exe" -d "C:\Program Files (x86)\The KMPlayer "
Task: {709B5D14-9420-48E7-A828-2E03FCB25BFB} - System32\Tasks\{59E925EE-31C4-4CC6-B008-BBF15D712D74} => C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe [2015-01-13] (DVDVideoSoft Ltd.)
Task: {72CF2AB5-E566-483D-BA6E-BA5CD3F8AC04} - System32\Tasks\AdobeAAMUpdater-1.0-SPEEDY-FRENCHIE => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {73294E62-B0D5-40F4-82F6-3249D72DB1A3} - System32\Tasks\{10EB893C-70DF-41FE-843A-C366E6F39C19} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {7FF996CE-089F-485A-B180-62E58682C15C} - System32\Tasks\GenericUpdaterRefreshTask => C:\ProgramData\TheBflixUpdater\updater.exe
Task: {84244C84-30F5-4227-B520-0290205D897D} - System32\Tasks\{61892717-13DB-40F5-B5F9-053B2CF3F3A3} => pcalua.exe -a "C:\Program Files (x86)\cookn.exe" -d "C:\Program Files (x86) "
Task: {8565F9C3-82A2-4AAD-976E-C8AEA4B52130} - System32\Tasks\{F4277C7E-DFFD-48AB-BAC8-552A87478162} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {87435CE8-D2FD-4A1C-A318-5B33761994BE} - System32\Tasks\{69746A75-2B06-44B7-8813-51E54C866983} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {89CA0CA6-EBEE-422C-9AAB-3C4070BDDB1C} - System32\Tasks\{AA5258AD-A599-4293-925E-EB91289225F4} => pcalua.exe -a "C:\Program Files (x86)\PDFCreator\Converter.exe" -d "C:\Program Files (x86)\PDFCreator "
Task: {8AB63496-C6E2-48D0-96DF-42082ABF71DB} - System32\Tasks\{79DA7DA7-7988-46A0-BC50-D34D72BC7CAC} => pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -c /M{71F6DF7D-B639-4FAD-BA93-E6DF267AA44D}
Task: {90617168-3EC0-4AD7-A45F-ACC72FB080F9} - System32\Tasks\{0769033C-4B9C-48FC-81BE-77FAD89924BD} => pcalua.exe -a "C:\Program Files\The KMPlayer\KMPSetup.exe" -d "C:\Program Files\The KMPlayer "
Task: {964E23EB-D81E-4A4B-BD9D-BBF14E50C7D6} - System32\Tasks\{FD872311-B063-42AD-B4E6-AD3193C2CD8B} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {97FD31F5-F14D-4878-B1E1-3FCB2773525D} - System32\Tasks\{5DDB8ACC-9C71-4749-A36C-3ACD2543F2BD} => pcalua.exe -a "C:\Program Files (x86)\imikimi_installer_0.5.1.exe" -d "C:\Program Files (x86) "
Task: {9FC98B39-46E1-424D-B640-D87A146F9BCF} - System32\Tasks\{4E6D4DC6-1399-4E64-B25D-22D8EDF7194B} => C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE [2011-04-27] (Microsoft Corporation)
Task: {A306EA3F-409B-4349-BE56-34EA2E0993F8} - System32\Tasks\{49E54664-04DC-4D95-993F-0AC3EA7393D4} => C:\Program Files (x86)\XBMC\XBMC.exe [2013-12-19] (Team XBMC)
Task: {A3F2B3C1-1A1D-48B9-B3A5-FF2436274279} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\WSCStub.exe [2015-03-07] (Symantec Corporation)
Task: {A57C4674-BE13-407E-9710-A27245786661} - System32\Tasks\{0102986A-F76E-4519-864B-C24A2BF04DFF} => pcalua.exe -a "C:\Program Files (x86)\DivXInstaller.exe" -d "C:\Program Files (x86) "
Task: {AC1F5196-0486-4ECA-951E-7A95462F7C47} - System32\Tasks\{EFCEC0C1-03FB-48B1-9996-BF85411B632F} => C:\Users\FRENCHIE\Downloads\Adobe Photoshop CS5 Extended Edition.exe
Task: {AE51D325-6ED5-4DC6-A13B-C4E0E0801347} - System32\Tasks\{BDA7613A-0B3D-4EED-97E7-11A4C47B20A9} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {AE8276FB-C1E6-4F19-B8DB-A5261F15B8C7} - System32\Tasks\{8DF0E5BB-28E4-42E2-994A-8185D36B1CB4} => C:\Windows\System32\java.exe [2014-09-06] (Oracle Corporation)
Task: {B1015C48-A121-4D4A-919E-41D113C6F61B} - System32\Tasks\{D98AF9D0-30F3-4E2B-ABC4-49BCD1C43C7F} => C:\Program Files (x86)\Plenty Jackpot\casino.exe [2015-03-11] (Realtime Gaming, Inc)
Task: {B15DC8E3-5A1A-48A1-8496-CB264F47E8B7} - System32\Tasks\{90E2663E-B3AA-4DA3-BB26-331B0D9BB1C7} => C:\Program Files (x86)\Plenty Jackpot\casino.exe [2015-03-11] (Realtime Gaming, Inc)
Task: {B255E505-C67C-4F3F-89A3-161A37FBB7C1} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_RM => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {B51101B2-F4CC-43B0-A2BD-2B8D44804D09} - System32\Tasks\{804B0DB8-CDE1-47A3-B47B-4F850FFCDAC9} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {B5162D8F-BACF-4528-AF51-DC8D2D1DEB7D} - System32\Tasks\{BA734B8B-5EF7-4190-AEEE-AA2502EF8E9F} => C:\Program Files (x86)\Plenty Jackpot\casino.exe [2015-03-11] (Realtime Gaming, Inc)
Task: {B604661D-1326-4BE8-A846-001BB28DCE43} - System32\Tasks\{2002163D-A52F-460D-BFC6-7622CCFD180D} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {BA027A89-5811-4CD5-9B2C-960661C023AF} - System32\Tasks\{2A0FBFE3-002E-4FF1-AA69-A81828D4F26C} => pcalua.exe -a C:\Users\FRENCHIE\Downloads\dBpoweramp-Codec-FLAC.exe -d C:\Users\FRENCHIE\Downloads
Task: {BAE80326-F2C1-45AA-BD67-D700A3EB7865} - System32\Tasks\{24BE94E5-40B1-4216-83B4-A132C0511AEC} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {BBC0C171-0A2A-4AA8-A706-10018AC6BDEB} - System32\Tasks\{8B3FEE0A-C2D2-4E95-9387-875459FB5CC0} => C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App\Cook'n.exe [2012-07-30] ()
Task: {BEFF86A5-35F8-48E4-885A-6CAD66233864} - System32\Tasks\{8EB64CF1-3495-4DD7-A135-29805908CD23} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {BFA2325A-47D3-4F6F-A18A-94677A0542B1} - System32\Tasks\GenericUpdaterLogonTask => C:\ProgramData\TheBflixUpdater\updater.exe
Task: {C58402DA-C261-4F80-8E11-D328104814A8} - System32\Tasks\{FE5D42B8-D9F4-4B05-ACB3-83342A990674} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {C8119FE6-EB4D-47C9-8D0B-75E00C510406} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_UP => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {C821C00F-DDC1-4935-8D4A-EAFD9575A698} - \VisualBeeRecovery No Task File <==== ATTENTION
Task: {CBCCB339-E976-4322-8A29-7809ECE3610D} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {CBE3F373-CF27-4A3F-AE78-67950E5E118C} - System32\Tasks\{6F7F7536-0D13-496D-825C-DF17CF821583} => pcalua.exe -a "C:\Users\FRENCHIE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CCZ9HO6R\DivXInstaller[1].exe" -d C:\Users\FRENCHIE\Desktop
Task: {CD80BBB4-7B0C-4E70-A163-5DA8C3958BBE} - System32\Tasks\{A3A2D021-00DC-4941-BA0F-FDC5BB97F5F9} => C:\Users\FRENCHIE\Downloads\KindleForPC-installer.exe
Task: {CE91C5B0-ACFA-409C-B166-812FF70F99E6} - System32\Tasks\EPSON XP-410 Series Invitation {D58AF3A2-47AF-43DC-835F-780C760AC2B9} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION)
Task: {CFE02594-581D-4335-AC6D-AF88B79E86ED} - System32\Tasks\{AF6616AC-2F8A-4DB8-9ACB-4CFA51EC1A3C} => pcalua.exe -a "C:\Program Files (x86)\DesignPro5_4_Limited.exe" -d "C:\Program Files (x86) "
Task: {D4789B06-4FEF-4EC1-BCDF-B11EF972FA9E} - System32\Tasks\{BB58B383-5E96-40B0-B223-9C5895F0BFA1} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {D4EF0775-FA64-4394-90CC-D4C52BF14D07} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D70F3E51-6FB8-4EED-970D-18DC9DC74EF3} - System32\Tasks\{A12D5E8F-41A2-45D3-B2B5-3170119A3206} => C:\Program Files (x86)\uTorrent\uTorrent.exe [2011-02-12] (BitTorrent, Inc.)
Task: {D89E6D2D-5730-4383-A06B-040E6B31EBEE} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe
Task: {DA545899-DDCF-4CC4-8830-28CF8AEE0E47} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe
Task: {DA6E3EFE-6EBB-4EB0-869A-8090F1A4242A} - System32\Tasks\{1A87B66A-EBA7-4F46-B6D0-39A7950C9249} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {DB8991F7-4517-4431-8E1C-1E35CDF3FE04} - System32\Tasks\{7A62A4F6-638A-4BA1-92F4-D9D86B34C403} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {DF6628E8-2C32-493B-B5EE-FE01BACACA7B} - System32\Tasks\{36EDDD40-136B-43D7-A766-CA1F31492198} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {DF958D7D-C51D-4E57-A6E1-148D9D46D3CB} - System32\Tasks\SpyHunter4 => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
Task: {E1161989-B5EE-48A3-99D2-4CEF65AD5D46} - System32\Tasks\{18A83870-BEB2-4E4C-ADB0-CDEBFAAF8D71} => pcalua.exe -a "C:\Program Files\DVO\Cook'n for Diabetes\Install.exe" -d "C:\Program Files\DVO\Cook'n for Diabetes "
Task: {E37968A9-92DC-485A-9B9F-19AD42F11C8D} - System32\Tasks\{8FC84B81-571A-4144-866F-1D63B5EE8CA1} => pcalua.exe -a C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App\Install.exe -d C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App
Task: {E5B94530-AA9A-47EB-A36F-0C9B4FAE757D} - System32\Tasks\{30451FFE-14A5-4A59-9C43-D6D7530E94C7} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {E69F05AD-5675-4FF9-B854-8470E4790994} - System32\Tasks\{26B797BD-FC5D-4F42-B7C9-613D0849F75F} => C:\Users\FRENCHIE\Downloads\Adobe Photoshop CS5 Extended Edition.exe
Task: {E984B9B3-7876-4FBE-AB5A-272E434A006A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-02] (Adobe Systems Incorporated)
Task: {F2A096B9-3FF9-42CF-9E7F-7EC9B3A8ED2D} - System32\Tasks\{287EF12B-EE56-4FD8-B5CD-33B9D7D57CC0} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {F5015342-B78C-47AB-B5E9-206A82B1847D} - System32\Tasks\{64E0F564-B1B8-4C45-80CE-35D4D5C06740} => C:\Users\FRENCHIE\Downloads\Adobe Photoshop CS5 Extended Edition.exe
Task: {F9C3A155-DBAA-4AF2-8C85-8CF4ED1B28A1} - System32\Tasks\{AE225B85-5C93-41EC-B094-C809242DC643} => C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe [2015-01-13] (DVDVideoSoft Ltd.)
Task: {FF6A9648-087B-4DBD-A5F9-43E4CC835EBA} - System32\Tasks\{7023DDD9-2544-4AD3-9995-852DC0244412} => C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE [2011-04-27] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-410 Series Invitation {D58AF3A2-47AF-43DC-835F-780C760AC2B9}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE
Task: C:\Windows\Tasks\EPSON XP-410 Series Update {D58AF3A2-47AF-43DC-835F-780C760AC2B9}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE:/EXE:{D58AF3A2-47AF-43DC-835F-780C760AC2B9} /F:UpdateSYSTEM

Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\FileCure Default.job => C:\Program Files (x86)\ParetoLogic\FileCure\FileCure.exe
Task: C:\Windows\Tasks\GenericUpdaterLogonTask.job => C:\ProgramData\TheBflixUpdater\updater.exe
Task: C:\Windows\Tasks\GenericUpdaterRefreshTask.job => C:\ProgramData\TheBflixUpdater\updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SpyHunter4.job => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe

==================== Loaded Modules (whitelisted) ==============

2014-04-17 17:53 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\AiCM64.dll
2011-08-22 17:02 - 2006-09-20 08:35 - 00020480 _____ () C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
2011-08-22 17:02 - 2006-09-19 16:05 - 00024576 _____ () C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
2010-02-28 03:33 - 2010-02-28 03:33 - 00077664 _____ () C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-10-31 10:05 - 2013-10-31 10:05 - 00172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2010-06-28 18:20 - 2010-06-28 18:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-28 18:12 - 2010-06-28 18:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2014-10-17 18:19 - 2014-10-17 18:19 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\89753abff3827095ec7f3d3fb79f744a\IsdiInterop.ni.dll
2010-11-22 03:12 - 2010-04-13 12:52 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-03-04 17:08 - 2015-03-04 17:08 - 00750080 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-04-03 08:42 - 2015-04-03 08:42 - 00043008 _____ () c:\users\frenchie\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpepyfmr.dll
2015-03-04 17:08 - 2015-03-04 17:08 - 00047616 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 17:08 - 2015-03-04 17:08 - 00865280 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 17:07 - 2015-03-04 17:07 - 00200704 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2010-11-22 02:43 - 2009-05-20 01:02 - 00072200 _____ () C:\Program Files (x86)\Launch Manager\CdDirIo.dll
2015-04-02 22:37 - 2015-04-02 22:37 - 16858288 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:084612C9
AlternateDataStreams: C:\ProgramData\Temp:164561C8
AlternateDataStreams: C:\ProgramData\Temp:17C48B08
AlternateDataStreams: C:\ProgramData\Temp:206470A5
AlternateDataStreams: C:\ProgramData\Temp:2C86E2AD
AlternateDataStreams: C:\ProgramData\Temp:30E0D641
AlternateDataStreams: C:\ProgramData\Temp:31C9BA96
AlternateDataStreams: C:\ProgramData\Temp:32289BE8
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:391535F9
AlternateDataStreams: C:\ProgramData\Temp:3C4BD225
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4E79C4F8
AlternateDataStreams: C:\ProgramData\Temp:4EE95FE7
AlternateDataStreams: C:\ProgramData\Temp:517EFA90
AlternateDataStreams: C:\ProgramData\Temp:61B54B15
AlternateDataStreams: C:\ProgramData\Temp:63210866
AlternateDataStreams: C:\ProgramData\Temp:661DFA1C
AlternateDataStreams: C:\ProgramData\Temp:6A9CA6CB
AlternateDataStreams: C:\ProgramData\Temp:6DD124E2
AlternateDataStreams: C:\ProgramData\Temp:8AED9359
AlternateDataStreams: C:\ProgramData\Temp:902C848D
AlternateDataStreams: C:\ProgramData\Temp:9195103F
AlternateDataStreams: C:\ProgramData\Temp:91DEEE71
AlternateDataStreams: C:\ProgramData\Temp:9ACB70D7
AlternateDataStreams: C:\ProgramData\Temp:9AE67195
AlternateDataStreams: C:\ProgramData\Temp:B36361EE
AlternateDataStreams: C:\ProgramData\Temp:B790962B
AlternateDataStreams: C:\ProgramData\Temp:BB718C46
AlternateDataStreams: C:\ProgramData\Temp:BE0654D6
AlternateDataStreams: C:\ProgramData\Temp:BF3D62E7
AlternateDataStreams: C:\ProgramData\Temp:C6D0ABC3
AlternateDataStreams: C:\ProgramData\Temp987CB43
AlternateDataStreams: C:\ProgramData\TempFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E4EE99EF
AlternateDataStreams: C:\ProgramData\Temp:E9FAC3AB
AlternateDataStreams: C:\ProgramData\Temp:F53B274A
AlternateDataStreams: C:\ProgramData\Temp:F7FFE8AF
AlternateDataStreams: C:\ProgramData\Temp:FCBEDCFD
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\KOBO GET PURCHASED BOOKS ON KOBO.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique Aug 28 2010.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique October 2010.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique Re_Mexican and SPY.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Re_ HAPPY MOTHER'S DAY.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\TO MARIE JULY 2013RE_ MONIQUE SNEAKS OUT OF TOWN.eml:OECustomProperty

 

internet explorer and firefox won’t follow links

PAGE 3

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => " "= "Service "

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-776278072-1255483964-2025531215-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 108.171.182.159 - 108.171.177.124

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe "
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe "
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe "
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: OpwareSE4 => "C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpwareSE4.exe "
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: SSBkgdUpdate => "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe "
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe "
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: WorksFUD => C:\Program Files (x86)\Microsoft Works\wkfud.exe

==================== Accounts: =============================

Administrator (S-1-5-21-776278072-1255483964-2025531215-500 - Administrator - Disabled)
ASPNET (S-1-5-21-776278072-1255483964-2025531215-1005 - Limited - Enabled)
FRENCHIE (S-1-5-21-776278072-1255483964-2025531215-1000 - Administrator - Enabled) => C:\Users\FRENCHIE
Guest (S-1-5-21-776278072-1255483964-2025531215-501 - Limited - Disabled) => C:\Users\Guest
Ron (S-1-5-21-776278072-1255483964-2025531215-1001 - Limited - Enabled) => C:\Users\Ron

==================== Faulty Device Manager Devices =============

Name: G:\
Description: Multi-Card
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall ", and then click "Scan for hardware changes" to load a usable driver.

Name: X5XSEx
Description: X5XSEx
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: X5XSEx
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Internet Access Server
Description: Internet Access Server
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/03/2015 08:27:10 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 11:40:26 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 03:50:57 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 03:04:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NIS.exe, version: 12.11.4.4, time stamp: 0x53f531a0
Faulting module name: APPMGR32.DLL_unloaded, version: 0.0.0.0, time stamp: 0x53eea02a
Exception code: 0xc0000005
Fault offset: 0x6f87cd39
Faulting process id: 0x738
Faulting application start time: 0xNIS.exe0
Faulting application path: NIS.exe1
Faulting module path: NIS.exe2
Report Id: NIS.exe3

Error: (04/02/2015 03:03:35 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 01:15:53 PM) (Source: Microsoft Office 14) (EventID: 2000) (User: )
Description: Microsoft WordWord failed to start correctly last time. Starting Word in safe mode will help you correct or isolate a startup problem in order to successfully start the program. Some functionality may be disabled in this mode.

Do you want to start Word in safe mode?

Error: (04/02/2015 11:41:31 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/01/2015 06:21:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program KMPlayer.exe version 3.9.0.125 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1b98

Start Time: 01d06cd264b85441

Termination Time: 16

Application Path: C:\PROGRA~2\THEKMP~1\KMPlayer.exe

Report Id:

Error: (04/01/2015 03:49:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program XBMC.exe version 12.3.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1898

Start Time: 01d06cbcbf9dad6b

Termination Time: 51

Application Path: C:\Program Files (x86)\XBMC\XBMC.exe

Report Id: 91fe96d1-d8b0-11e4-a12d-1c7508aca517

Error: (04/01/2015 03:45:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: XBMC.exe, version: 12.3.0.0, time stamp: 0x52b35cf9
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x0002defe
Faulting process id: 0x1628
Faulting application start time: 0xXBMC.exe0
Faulting application path: XBMC.exe1
Faulting module path: XBMC.exe2
Report Id: XBMC.exe3


System errors:
=============
Error: (04/03/2015 08:29:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The ParetoLogic Internet Security service failed to start due to the following error:
%%3

Error: (04/03/2015 08:27:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%2

Error: (04/03/2015 08:27:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The vToolbarUpdater17.1.2 service failed to start due to the following error:
%%3

Error: (04/02/2015 11:43:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The ParetoLogic Internet Security service failed to start due to the following error:
%%3

Error: (04/02/2015 11:40:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%2

Error: (04/02/2015 11:40:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The vToolbarUpdater17.1.2 service failed to start due to the following error:
%%3

Error: (04/02/2015 05:05:14 PM) (Source: ipnathlp) (EventID: 30009) (User: )
Description: 0.0.0.0

Error: (04/02/2015 03:53:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The ParetoLogic Internet Security service failed to start due to the following error:
%%3

Error: (04/02/2015 03:50:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%2

Error: (04/02/2015 03:50:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The vToolbarUpdater17.1.2 service failed to start due to the following error:
%%3


Microsoft Office Sessions:
=========================
Error: (04/03/2015 08:27:10 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 11:40:26 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 03:50:57 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 03:04:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: NIS.exe12.11.4.453f531a0APPMGR32.DLL_unloaded0.0.0.053eea02ac00000056f87cd3973801d06d80113dfc6dC:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exeAPPMGR32.DLL709d60f0-d973-11e4-9f91-1c7508aca517

Error: (04/02/2015 03:03:35 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/02/2015 01:15:53 PM) (Source: Microsoft Office 14) (EventID: 2000) (User: )
Description: Microsoft WordWord failed to start correctly last time. Starting Word in safe mode will help you correct or isolate a startup problem in order to successfully start the program. Some functionality may be disabled in this mode.

Do you want to start Word in safe mode?

Error: (04/02/2015 11:41:31 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/01/2015 06:21:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: KMPlayer.exe3.9.0.1251b9801d06cd264b8544116C:\PROGRA~2\THEKMP~1\KMPlayer.exe

Error: (04/01/2015 03:49:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: XBMC.exe12.3.0.0189801d06cbcbf9dad6b51C:\Program Files (x86)\XBMC\XBMC.exe91fe96d1-d8b0-11e4-a12d-1c7508aca517

Error: (04/01/2015 03:45:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: XBMC.exe12.3.0.052b35cf9ntdll.dll6.1.7601.18247521ea8e7c00000050002defe162801d06cbc9e55a863C:\Program Files (x86)\XBMC\XBMC.exeC:\Windows\SysWOW64\ntdll.dllf6fc1c8b-d8af-11e4-a12d-1c7508aca517


==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentage of memory in use: 61%
Total physical RAM: 4025.97 MB
Available physical RAM: 1561.43 MB
Total Pagefile: 8050.13 MB
Available Pagefile: 5133.83 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:284.49 GB) (Free:158.99 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 89FDF899)
Partition 1: (Not Active) - (Size=13.5 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=284.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

Yes I am.

 

Yes I did, and sent you all the information you asked for. I used your PM. Will send again.

 

In answer to Reply #9

FRST.txt log is incomplete.
You missed lower portion of it.
Here is the lower portion……..
Some content of TEMP:
====================
C:\Users\FRENCHIE\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpepyfmr.dll
C:\Users\FRENCHIE\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\FRENCHIE\AppData\Local\Temp\KMP_3.9.1.135.exe
C:\Users\FRENCHIE\AppData\Local\Temp\tmd_34011201.exe
C:\Users\FRENCHIE\AppData\Local\Temp\uninstall.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-25 18:39

==================== End Of Log ============================

Quote:
internet explorer and firefox won’t follow links

What exactly does it mean?

- In several websites and e-mails, when I see a clickable icon, (for recipes, coupons, etc.) clicking leads me to a newly opened tab that shows NOTHING but a black screen with a small white dot in the center, but claims (in the TAB) to be a 1x1 pixel GIF image. No other navigation seems possible to access the item. This especially occurs with online catalogs in shopping contexts, the HTTP address will begin with "http://click.email.sears.ca

 

internet explorer and firefox won’t follow links

You: Download RogueKiller
Click on Report and copy/paste the content of the Notepad into your next reply.

RKreport.txt

RogueKiller V10.5.10.0 [Apr 14 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : FRENCHIE [Administrator]
Started from : C:\Users\FRENCHIE\Favorites\Desktop\RogueKiller.exe
Mode : Delete -- Date : 04/14/2015 20:11:54

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 19 ¤¤¤
[PUP] (X64) HKEY_CLASSES_ROOT\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} -> Not selected
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\vToolbarUpdater17.1.2 -> Not selected
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\vToolbarUpdater17.1.2 -> Not selected
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\vToolbarUpdater17.1.2 -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 142.161.2.155 142.161.130.155 192.168.1.1 [CANADA (CA)][CANADA (CA)][-] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 142.161.2.155 142.161.130.155 192.168.1.1 [CANADA (CA)][CANADA (CA)][-] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 142.161.2.155 142.161.130.155 192.168.1.1 [CANADA (CA)][CANADA (CA)][-] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991} | NameServer : 108.171.182.159,108.171.177.124 [UNITED STATES (US)][(Unknown Country?) (XX)] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991} | DhcpNameServer : 142.161.2.155 142.161.130.155 192.168.1.1 [CANADA (CA)][CANADA (CA)][-] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991} | NameServer : 108.171.182.159,108.171.177.124 [UNITED STATES (US)][(Unknown Country?) (XX)] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991} | DhcpNameServer : 142.161.2.155 142.161.130.155 192.168.1.1 [CANADA (CA)][CANADA (CA)][-] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991} | NameServer : 108.171.182.159,108.171.177.124 [UNITED STATES (US)][(Unknown Country?) (XX)] -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{13C087A9-2FF5-4860-B7D1-7C8FFE85F991} | DhcpNameServer : 142.161.2.155 142.161.130.155 192.168.1.1 [CANADA (CA)][CANADA (CA)][-] -> Not selected
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Not selected
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Not selected
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Not selected
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Not selected
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Not selected
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Not selected

¤¤¤ Tasks : 6 ¤¤¤
[Suspicious.Path] GenericUpdaterLogonTask.job -- C:\ProgramData\TheBflixUpdater\updater.exe (/schedule /profilepath "/profilepath ") -> Deleted
[Suspicious.Path] GenericUpdaterRefreshTask.job -- C:\ProgramData\TheBflixUpdater\updater.exe (/profilepath "/profilepath ") -> Deleted
[Suspicious.Path] \\{7F2BEEDB-E40C-4CCD-A2AC-613AF2463EE6} -- C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App\Cook'n.exe -> Deleted
[Suspicious.Path] \\{8B3FEE0A-C2D2-4E95-9387-875459FB5CC0} -- C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App\Cook'n.exe -> Deleted
[Suspicious.Path] \\{BB2A8EC2-FED9-47E8-804D-142A0ED4D1AD} -- C:\Users\FRENCHIE\AppData\Roaming\Smilebox\SmileboxStarter.exe -> Deleted
[Suspicious.Path] \\{DCE6877C-70BA-4D31-A704-ED9BEAF53C52} -- C:\Users\FRENCHIE\AppData\Roaming\Smilebox\SmileboxStarter.exe -> Deleted

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BPVT-22ZEST0 +++++
--- User ---
[MBR] 452c39d76a368f25351ca6efac443f84
[BSP] ad5d4574dd1003bfb1b1ec4056ae99a8 : Windows Vista/7/8 MBR Code
Partition table:
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Generic- Multi-Card USB Device +++++
Error reading User MBR! ([15] The device is not ready. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] The request is not supported. )


============================================
RKreport_SCN_04142015_200712.log

 

Thanks. A lot of information and homework for me, but I will try.

 

internet explorer and firefox won’t follow links

YOU: Malwarebytes Anti-Malware Scan Report

MBAM Scan Report of April 14, 2015

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 14/04/2015
Scan Time: 8:31:09 PM
Logfile: MBAM Scan April 14, 2015.txt
Administrator: Yes

Version: 2.01.4.1018
Malware Database: v2015.04.14.07
Rootkit Database: v2015.03.31.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: FRENCHIE

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 452840
Time Elapsed: 22 min, 51 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

internet explorer and firefox won’t follow links

YOU: Download AdwCleaner, run scan, send report.

# AdwCleaner v4.201 - Logfile created 14/04/2015 at 21:18:27
# Updated 08/04/2015 by Xplode
# Database : 2015-04-08.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : FRENCHIE - SPEEDY
# Running from : C:\Users\FRENCHIE\Favorites\Desktop\adwcleaner_4.201.exe
# Option : Cleaning

***** [ Services ] *****

[#] Service Deleted : vToolbarUpdater17.1.2

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\FileCure
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\ProgramData\EnergoTech
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC HealthBoost
Folder Deleted : C:\Program Files (x86)\GetPrivate
Folder Deleted : C:\Program Files (x86)\ParetoLogic
Folder Deleted : C:\Program Files (x86)\SockshareDownloader
Folder Deleted : C:\Users\FRENCHIE\AppData\Local\StormFall
Folder Deleted : C:\Users\FRENCHIE\AppData\LocalLow\ilividtoolbargaw
Folder Deleted : C:\Users\FRENCHIE\AppData\Roaming\RHEng
File Deleted : C:\Users\FRENCHIE\AppData\Local\Temp\Uninstall.exe

***** [ Scheduled tasks ] *****

Task Deleted : VisualBeeRecovery

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9C81D00A-3DAA-48AB-90C7-8252119ABB93}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1DA17428-323D-48FF-857C-98CFEE48BFD5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2FF49ED5-A3EF-410B-918E-97DECEB5996D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{50F60937-910A-4C05-8E36-FE4E299191CF}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\ilividtoolbargaw
Key Deleted : HKLM\SOFTWARE\TBID
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKLM\SOFTWARE\VideoPlayer
Key Deleted : HKU\.DEFAULT\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{90120000-00B2-0409-0000-0000000FF1CE}
Key Deleted : [x64] HKLM\SOFTWARE\TBID
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local;192.168.*.*

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689


-\\ Mozilla Firefox v37.0.1 (x86 en-US)


-\\ Google Chrome v

[C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [27723 bytes] - [11/11/2013 11:16:05]
AdwCleaner[R10].txt - [5195 bytes] - [14/04/2015 21:15:21]
AdwCleaner[R1].txt - [1785 bytes] - [11/11/2013 11:27:54]
AdwCleaner[R2].txt - [1238 bytes] - [11/11/2013 11:39:02]
AdwCleaner[R3].txt - [1359 bytes] - [11/11/2013 20:22:13]
AdwCleaner[R4].txt - [1479 bytes] - [12/11/2013 21:34:16]
AdwCleaner[R5].txt - [1634 bytes] - [13/11/2013 17:41:10]
AdwCleaner[R6].txt - [1719 bytes] - [14/11/2013 01:58:53]
AdwCleaner[R7].txt - [1841 bytes] - [16/11/2013 01:54:46]
AdwCleaner[R8].txt - [1996 bytes] - [19/11/2013 10:04:39]
AdwCleaner[R9].txt - [2116 bytes] - [21/11/2013 00:47:40]
AdwCleaner[S0].txt - [27024 bytes] - [11/11/2013 11:20:47]
AdwCleaner[S10].txt - [4463 bytes] - [14/04/2015 21:18:27]
AdwCleaner[S1].txt - [1892 bytes] - [11/11/2013 11:33:29]
AdwCleaner[S2].txt - [1302 bytes] - [11/11/2013 11:40:04]
AdwCleaner[S3].txt - [1422 bytes] - [11/11/2013 20:35:22]
AdwCleaner[S4].txt - [1542 bytes] - [12/11/2013 21:39:35]
AdwCleaner[S5].txt - [1699 bytes] - [13/11/2013 17:42:21]
AdwCleaner[S6].txt - [1782 bytes] - [14/11/2013 01:59:26]
AdwCleaner[S7].txt - [1904 bytes] - [16/11/2013 01:55:22]
AdwCleaner[S8].txt - [2061 bytes] - [19/11/2013 10:05:44]
AdwCleaner[S9].txt - [2181 bytes] - [21/11/2013 00:48:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S10].txt - [5054 bytes] ##########