Solved internet explorer and firefox won’t follow links

internet explorer and firefox won’t follow links

(3)

FF Extension: Pinterest Pin Button - C:\Users\FRENCHIE\AppData\Roaming\Mozilla\Firefox\Profiles\zznp1gi8.default-1428672894693\Extensions\{677a8f98-fd64-40b0-a883-b8c95d0cbf17}.xpi [2015-04-10]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\IPSFF [2015-04-02]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.6.0.32\coFFPlgn [2015-04-15]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://feed.sonic-search.com/?p=mKO_AwFzXIpYRa0PgUlPpiyMtmwUlV6qlzRoMl6qpIpmXdA69DvaRC2N2-KD90bNKVFzKpxAMnw5CGjwn7gWya0dBS0gWJNhted3V-4N-NBil5mR_27oamjUA3lwLEJRaC5jcaDzNohOiry1Fbc1Rl2bCw7Icc7fD5Oaeg7LdpOatIIVXjE6w-ixpnwK "
CHR DefaultSuggestURL: Default -> http://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
CHR Profile: C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-16]
CHR Extension: (Google Drive) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-16]
CHR Extension: (YouTube) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-16]
CHR Extension: (Music Songs Player) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdenlcnfdjepagejpfajlkicggieknab [2014-03-17]
CHR Extension: (Google Search) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-16]
CHR Extension: (Crackle) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibfamoapbmmmlknoopmmfofgladlinic [2014-03-17]
CHR Extension: (Norton Identity Safe) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-29]
CHR Extension: (CPDD-Blossom) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlialpgnoagkdecfaggejocpfdbommon [2015-04-10]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-10]
CHR Extension: (Norton Safe) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2015-04-10]
CHR Extension: (Google Wallet) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-16]
CHR Extension: (Gmail) - C:\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-16]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\Exts\Chrome.crx [2015-04-15]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\Exts\Chrome.crx [2015-04-15]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [276376 2014-09-21] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-10] (AVG Technologies)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\BASHDefs\20140801.001\BHDrvx64.sys [1530160 2014-08-25] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1506000.020\ccSetx64.sys [162392 2014-02-20] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)
U3 EraserUtilDrv11411; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11411.sys [142640 2014-11-25] (Symantec Corporation)
S3 esgiguard; No ImagePath
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\IPSDefs\20140717.001\IDSVia64.sys [525016 2014-08-25] (Symantec Corporation)
S3 IntcAzAudAddService; No ImagePath
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-15] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation)
S3 motccgpfl; No ImagePath
S3 motport; C:\Windows\System32\DRIVERS\motport.sys [31744 2013-03-19] (Motorola Mobility Inc)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150415.001\ENG64.SYS [129752 2014-11-15] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.6.0.32\Definitions\VirusDefs\20150415.001\EX64.SYS [2137304 2014-11-15] (Symantec Corporation)
S3 RSUSBSTOR; No ImagePath
R3 SRTSP; C:\Windows\system32\drivers\NISx64\1506000.020\SRTSP64.SYS [876248 2014-08-25] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [37592 2014-08-25] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1506000.020\SYMDS64.SYS [493656 2014-08-25] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1506000.020\SYMEFA64.SYS [1148120 2014-08-25] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2015-04-15] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\NISx64\1506000.020\SYMNETS.SYS [593112 2014-08-25] (Symantec Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-04-14] ()
S2 X5XSEx; No ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-15 15:41 - 2015-04-15 15:41 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2015-04-15 15:36 - 2015-04-15 15:36 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2015-04-15 15:36 - 2015-04-15 15:36 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2015-04-15 15:36 - 2015-04-15 15:36 - 00002537 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2015-04-15 15:36 - 2015-04-15 15:36 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2015-04-15 15:35 - 2015-04-15 15:35 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2015-04-15 15:26 - 2015-04-15 15:46 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2015-04-15 15:12 - 2015-04-15 15:12 - 01021936 _____ (Symantec Corporation) C:\Program Files (x86)\NortonNISDownloader.exe
2015-04-15 13:30 - 2015-04-15 13:30 - 00031643 _____ () C:\ComboFix.txt
2015-04-15 12:52 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-04-15 12:52 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-04-15 12:52 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-04-15 12:52 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-04-15 12:52 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-04-15 12:52 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2015-04-15 12:52 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2015-04-15 12:52 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2015-04-15 12:46 - 2015-04-15 13:30 - 00000000 ____D () C:\Qoobox
2015-04-15 12:45 - 2015-04-15 13:27 - 00000000 ____D () C:\Windows\erdnt
2015-04-15 10:41 - 2015-03-03 23:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 10:41 - 2015-03-03 23:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 10:41 - 2015-03-03 23:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-15 10:00 - 2015-04-15 10:01 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\{BA6FC8BE-C914-4AE7-911A-C3EBFE755D7F}
2015-04-14 22:22 - 2015-04-14 22:22 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-SPEEDY-Windows-7-Home-Premium-(64-bit).dat
2015-04-14 22:22 - 2015-04-14 22:22 - 00000000 ____D () C:\RegBackup
2015-04-14 19:56 - 2015-04-14 20:15 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-04-14 19:56 - 2015-04-14 19:56 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-04-10 08:35 - 2015-04-10 08:35 - 00000000 ____D () C:\Program Files (x86)\Old Firefox Data April 10 2015
2015-04-10 08:21 - 2015-04-10 08:21 - 00002968 _____ () C:\Windows\System32\Tasks\{CA8393AC-D781-444E-A7BD-F2C9AC330C5A}
2015-04-10 08:21 - 2015-04-10 08:21 - 00002968 _____ () C:\Windows\System32\Tasks\{C3581CA7-75A0-4BDE-837C-02E5F010A44C}
2015-04-10 08:21 - 2015-04-10 08:21 - 00002968 _____ () C:\Windows\System32\Tasks\{6B10E714-10DB-452A-8EDB-CA87ABDC93F0}
2015-04-09 18:50 - 2015-04-09 18:50 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2015-04-09 18:49 - 2015-04-15 17:47 - 00000000 ____D () C:\KMPlayer
2015-04-09 18:46 - 2015-04-09 18:47 - 37423096 _____ (PandoraTV) C:\KMPlayer_3.9.1.135.exe
2015-04-08 21:17 - 2015-04-08 21:17 - 00002940 _____ () C:\Windows\System32\Tasks\{F1AA6241-2764-4B6F-9508-950EAB91FB33}
2015-04-08 21:17 - 2015-04-08 21:17 - 00002940 _____ () C:\Windows\System32\Tasks\{C31112C6-5361-4DF2-88A5-3BA9FD2F2ABE}

 

internet explorer and firefox won’t follow links

(4)

2015-04-08 21:17 - 2015-04-08 21:17 - 00002940 _____ () C:\Windows\System32\Tasks\{4532E4FB-1EAE-4BDE-900C-8CCA2490EFCD}
2015-04-08 21:16 - 2015-04-08 21:16 - 00002940 _____ () C:\Windows\System32\Tasks\{75EBD3FB-5375-4159-A223-F6B4ABCDA2C7}
2015-04-07 15:28 - 2015-04-15 18:02 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Kodi
2015-04-07 15:14 - 2015-04-07 15:14 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2015-04-07 15:13 - 2015-04-07 15:14 - 00000000 ____D () C:\Program Files (x86)\Kodi
2015-04-07 14:43 - 2015-04-07 14:44 - 71111070 _____ () C:\Program Files (x86)\kodi-14.2-Helix.exe
2015-04-07 13:03 - 2015-04-07 13:03 - 00000000 ____D () C:\Program Files (x86)\Reason
2015-04-07 12:58 - 2015-04-07 12:59 - 02178048 _____ (Reason Software Company Inc.) C:\Program Files (x86)\ShouldIRemoveIt_Setup.exe
2015-04-07 12:57 - 2015-04-07 12:57 - 00039870 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150407_125742.reg
2015-04-05 07:57 - 2015-04-05 07:57 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-05 07:57 - 2015-04-05 07:57 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-05 00:38 - 2015-04-05 00:38 - 00000718 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150405_003819.reg
2015-04-05 00:06 - 2015-04-05 00:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-04 17:11 - 2015-04-04 17:11 - 00015918 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150404_171142.reg
2015-04-03 18:38 - 2015-04-03 18:39 - 00015374 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150403_183848.reg
2015-04-03 18:13 - 2015-04-03 18:25 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\MALWARE PROGRAM
2015-04-03 16:47 - 2015-04-15 19:13 - 00000000 ____D () C:\FRST
2015-04-03 16:07 - 2015-04-03 16:08 - 00007800 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150403_160727.reg
2015-04-02 23:07 - 2015-04-15 16:48 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-02 23:06 - 2015-04-02 23:06 - 00001066 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-02 23:06 - 2015-04-02 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-02 23:06 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-02 23:06 - 2015-03-17 06:15 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-02 23:06 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-02 23:04 - 2015-04-02 23:05 - 21540440 _____ (Malwarebytes Corporation ) C:\Program Files (x86)\Malwarebytes Anti-Malware.exe
2015-04-02 22:37 - 2015-04-15 18:40 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-02 22:37 - 2015-04-14 14:41 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-02 22:37 - 2015-04-14 14:41 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-02 22:37 - 2015-04-14 14:41 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-02 18:33 - 2015-04-02 18:34 - 41090240 _____ () C:\Program Files (x86)\Firefox Setup 36.0.4.exe
2015-04-02 15:08 - 2015-04-02 15:08 - 00073180 _____ () C:\Users\FRENCHIE\Documents\Documents\cc_20150402_150825.reg
2015-04-01 11:51 - 2015-04-01 11:51 - 00002924 _____ () C:\Windows\System32\Tasks\{8DF0E5BB-28E4-42E2-994A-8185D36B1CB4}
2015-03-31 13:34 - 2015-04-05 00:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2015-03-26 22:46 - 2015-04-14 15:50 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\00000 MOVIES
2015-03-25 10:30 - 2015-03-31 14:26 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\Evernote
2015-03-25 02:52 - 2015-03-25 02:53 - 40891792 _____ (Amazon.com) C:\Program Files (x86)\KindleForPC-installer.exe
2015-03-24 17:20 - 2015-03-10 23:06 - 00943616 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-03-24 17:20 - 2015-03-10 23:06 - 00760832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-03-24 17:20 - 2015-03-10 23:06 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-03-24 17:20 - 2015-03-10 23:06 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-03-24 17:20 - 2015-03-10 23:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-03-24 17:20 - 2015-03-10 23:05 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-03-24 17:20 - 2015-03-10 23:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-03-24 17:20 - 2015-03-10 23:02 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-03-18 15:58 - 2015-04-15 16:46 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\00000-pics
2015-03-18 15:58 - 2015-03-18 15:58 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\RECIPES
2015-03-18 15:58 - 2015-03-18 15:58 - 00000000 ____D () C:\Users\FRENCHIE\Downloads\MUSIC BOXES
2015-03-18 15:30 - 2015-02-19 23:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-18 15:30 - 2015-02-19 23:40 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-18 15:30 - 2015-02-19 23:40 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-18 15:30 - 2015-02-19 23:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-18 15:30 - 2015-02-19 23:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-18 15:30 - 2015-02-19 23:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-18 15:30 - 2015-02-19 23:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-18 15:30 - 2015-02-19 23:12 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-18 15:30 - 2015-02-19 22:29 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-18 15:30 - 2015-02-19 22:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-18 15:30 - 2015-02-02 22:34 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-18 15:30 - 2015-02-02 22:31 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-18 15:30 - 2015-02-02 22:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-18 15:30 - 2015-02-02 22:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-18 15:30 - 2015-02-02 22:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-18 15:29 - 2015-02-02 22:34 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-18 15:29 - 2015-02-02 22:34 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-18 15:29 - 2015-02-02 22:33 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-18 15:29 - 2015-02-02 22:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-18 15:29 - 2015-02-02 22:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-18 15:29 - 2015-02-02 22:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-18 15:29 - 2015-02-02 22:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll

 

internet explorer and firefox won’t follow links

(5)

2015-03-18 15:29 - 2015-02-02 22:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-18 15:29 - 2015-02-02 22:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-18 15:29 - 2015-02-02 22:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-18 15:29 - 2015-02-02 22:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-18 15:29 - 2015-02-02 22:28 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-18 15:29 - 2015-02-02 22:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-18 15:29 - 2015-02-02 22:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-18 15:29 - 2015-02-02 22:16 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-18 15:29 - 2015-02-02 22:16 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-18 15:29 - 2015-02-02 22:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-18 15:29 - 2015-02-02 22:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-18 15:29 - 2015-02-02 22:12 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-18 15:29 - 2015-02-02 22:11 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-18 15:29 - 2015-02-02 22:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-18 15:29 - 2015-02-02 22:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-18 15:29 - 2015-02-02 22:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-18 15:29 - 2015-02-02 22:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-18 15:29 - 2015-02-02 21:32 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-18 15:29 - 2014-10-31 17:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-18 15:29 - 2014-06-27 19:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-03-18 15:29 - 2014-06-27 19:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-03-18 15:28 - 2015-03-06 00:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-18 15:28 - 2015-03-06 00:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-18 15:28 - 2015-03-06 00:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-18 15:28 - 2015-03-06 00:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-18 15:28 - 2015-03-06 00:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-18 15:28 - 2015-03-06 00:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-18 15:28 - 2015-03-06 00:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-18 15:28 - 2015-03-06 00:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-18 15:28 - 2015-03-06 00:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-18 15:28 - 2015-03-06 00:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-18 15:28 - 2015-03-06 00:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-18 15:28 - 2015-03-06 00:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-18 15:28 - 2015-03-06 00:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-18 15:28 - 2015-03-06 00:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-18 15:28 - 2015-03-06 00:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-18 15:28 - 2015-02-13 00:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-18 15:28 - 2015-02-13 00:22 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-18 15:28 - 2015-02-02 22:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-18 15:28 - 2015-02-02 22:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-18 15:28 - 2015-01-30 18:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-18 15:28 - 2015-01-16 21:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-18 15:28 - 2015-01-16 21:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-18 15:19 - 2015-02-25 22:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-18 15:19 - 2015-02-23 22:15 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-18 15:19 - 2015-02-23 21:32 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-18 15:19 - 2015-02-20 20:16 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-18 15:19 - 2015-02-20 19:41 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-18 15:19 - 2015-02-20 19:27 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-18 15:19 - 2015-02-20 19:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-18 15:19 - 2015-02-20 19:25 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-18 15:19 - 2015-02-20 18:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-18 15:19 - 2015-02-20 18:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-18 15:19 - 2015-02-19 22:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-18 15:19 - 2015-02-19 22:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-18 15:19 - 2015-02-19 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-18 15:19 - 2015-02-19 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-18 15:19 - 2015-02-19 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-18 15:19 - 2015-02-19 21:48 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-18 15:19 - 2015-02-19 21:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-18 15:19 - 2015-02-19 21:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-18 15:19 - 2015-02-19 21:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-18 15:19 - 2015-02-19 21:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-18 15:19 - 2015-02-19 21:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

 

internet explorer and firefox won’t follow links

(6)

2015-03-18 15:19 - 2015-02-19 21:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-18 15:19 - 2015-02-19 21:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-18 15:19 - 2015-02-19 21:32 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-18 15:19 - 2015-02-19 21:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-18 15:19 - 2015-02-19 21:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-18 15:19 - 2015-02-19 21:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-18 15:19 - 2015-02-19 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-18 15:19 - 2015-02-19 21:09 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-18 15:19 - 2015-02-19 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-18 15:19 - 2015-02-19 21:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-18 15:19 - 2015-02-19 21:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-18 15:19 - 2015-02-19 21:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-18 15:19 - 2015-02-19 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-18 15:19 - 2015-02-19 21:03 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-18 15:19 - 2015-02-19 21:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-18 15:19 - 2015-02-19 21:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-18 15:19 - 2015-02-19 20:58 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-18 15:19 - 2015-02-19 20:56 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-18 15:19 - 2015-02-19 20:56 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-18 15:19 - 2015-02-19 20:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-18 15:19 - 2015-02-19 20:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-18 15:19 - 2015-02-19 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-18 15:19 - 2015-02-19 20:43 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-18 15:19 - 2015-02-19 20:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-18 15:19 - 2015-02-19 20:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-18 15:19 - 2015-02-19 20:30 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-18 15:19 - 2015-02-19 20:28 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-18 15:19 - 2015-02-19 20:24 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-18 15:19 - 2015-02-19 20:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-18 15:19 - 2015-02-19 20:23 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-18 15:19 - 2015-02-19 20:16 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-18 15:19 - 2015-02-19 20:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-18 15:19 - 2015-02-19 20:01 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-18 15:19 - 2015-02-19 19:57 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-18 15:19 - 2015-02-19 19:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-18 15:19 - 2015-02-02 22:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-18 15:19 - 2015-02-02 22:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-18 15:17 - 2015-02-03 22:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-18 15:17 - 2015-02-03 21:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-15 19:09 - 2015-02-15 23:37 - 10485760 _____ () C:\Program Files (x86)\WeatherEyeApp.log
2015-04-15 19:02 - 2015-03-03 14:02 - 00000911 _____ () C:\Windows\Tasks\EPSON XP-410 Series Update {D58AF3A2-47AF-43DC-835F-780C760AC2B9}.job
2015-04-15 19:02 - 2015-03-03 14:02 - 00000725 _____ () C:\Windows\Tasks\EPSON XP-410 Series Invitation {D58AF3A2-47AF-43DC-835F-780C760AC2B9}.job
2015-04-15 19:02 - 2009-07-14 00:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2015-04-15 18:42 - 2014-10-01 22:09 - 01782640 _____ () C:\Windows\WindowsUpdate.log
2015-04-15 16:11 - 2013-05-22 21:21 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\PERSONAL
2015-04-15 15:46 - 2011-08-21 16:20 - 00000000 ____D () C:\ProgramData\Norton
2015-04-15 15:36 - 2012-07-14 17:14 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2015-04-15 15:35 - 2012-07-14 17:13 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2015-04-15 15:26 - 2012-10-15 23:46 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2015-04-15 14:58 - 2009-07-13 23:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-15 14:58 - 2009-07-13 23:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-15 14:51 - 2015-02-15 23:37 - 00000000 ____D () C:\Program Files (x86)\cache
2015-04-15 14:51 - 2014-04-23 22:59 - 00000000 ___RD () C:\Users\FRENCHIE\Dropbox
2015-04-15 14:51 - 2014-04-23 22:56 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Dropbox
2015-04-15 14:51 - 2012-08-16 21:56 - 00000000 ____D () C:\Temp
2015-04-15 14:51 - 2011-08-25 09:52 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2015-04-15 14:51 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-15 14:40 - 2011-11-06 21:25 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\SoftGrid Client
2015-04-15 13:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-15 13:30 - 2014-04-22 13:57 - 00000000 ____D () C:\Users\dub_cm_auto
2015-04-15 13:30 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2015-04-15 13:19 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2015-04-15 13:15 - 2014-09-03 13:37 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Company
2015-04-15 12:17 - 2014-06-16 14:51 - 00002052 _____ () C:\Windows\epplauncher.mif
2015-04-14 21:18 - 2014-09-02 15:02 - 00001043 _____ () C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2015-04-14 21:18 - 2013-11-11 11:15 - 00000000 ____D () C:\AdwCleaner
2015-04-14 09:32 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\tracing
2015-04-12 17:25 - 2011-08-20 09:09 - 00165584 _____ () C:\Users\FRENCHIE\AppData\Local\GDIPFONTCACHEV1.DAT
2015-04-11 10:01 - 2009-07-14 00:13 - 00797112 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-10 20:03 - 2011-11-26 15:02 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-10 14:19 - 2014-04-26 14:38 - 00000657 _____ () C:\Users\FRENCHIE\.swfinfo
2015-04-09 18:15 - 2012-12-17 15:35 - 00000000 ____D () C:\Program Files\DVO
2015-04-09 14:03 - 2011-08-20 16:40 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\uTorrent
2015-04-09 11:53 - 2013-05-22 21:21 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\R E C I P E S
2015-04-08 21:56 - 2014-04-23 22:57 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-04-08 18:00 - 2014-01-21 17:54 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-04-07 15:15 - 2014-12-03 22:33 - 00000000 ____D () C:\ProgramData\Package Cache
2015-04-07 13:13 - 2010-11-22 03:29 - 00000000 ____D () C:\Program Files (x86)\Acer
2015-04-07 09:49 - 2011-08-23 13:14 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\CrashDumps
2015-04-06 10:44 - 2014-10-01 13:01 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\LETTER TEXT FROM MARIA
2015-04-05 12:02 - 2012-06-30 09:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-04 20:48 - 2014-09-03 15:15 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-04 15:20 - 2011-09-04 15:12 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2015-04-04 14:42 - 2011-01-07 08:58 - 00000000 ____D () C:\ProgramData\Temp
2015-04-04 13:02 - 2014-12-01 15:50 - 00416660 _____ () C:\console.log
2015-04-02 23:40 - 2014-02-11 18:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2015-04-02 23:39 - 2011-12-05 11:19 - 00000000 ____D () C:\Windows\Sun
2015-04-02 23:35 - 2012-06-06 11:34 - 00000000 ____D () C:\ProgramData\InstallMate
2015-04-02 22:38 - 2014-08-30 10:43 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\Adobe
2015-04-02 18:40 - 2011-11-27 16:25 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-02 11:57 - 2014-02-15 03:22 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Local\NPE
2015-04-02 11:57 - 2012-05-12 12:38 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Smilebox
2015-04-02 11:41 - 2014-09-06 16:44 - 00000000 ____D () C:\NPE
2015-04-01 16:32 - 2011-11-13 13:06 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\DVDVideoSoft
2015-03-31 19:31 - 2013-05-22 21:21 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\My Kindle Content
2015-03-31 15:31 - 2013-04-17 21:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-03-31 14:31 - 2011-08-20 09:09 - 00000000 ____D () C:\Users\FRENCHIE
2015-03-31 14:29 - 2014-12-11 09:07 - 00000000 ____D () C:\Windows\system32\appraiser
2015-03-31 14:29 - 2014-05-30 22:44 - 00000000 ____D () C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2015-03-31 14:29 - 2014-05-06 13:22 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-03-31 14:29 - 2013-02-04 00:08 - 00000000 ____D () C:\Users\Guest
2015-03-31 14:29 - 2011-08-21 13:02 - 00000000 ____D () C:\Users\Ron
2015-03-31 14:28 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\registration
2015-03-31 14:24 - 2012-05-30 08:43 - 00000000 ____D () C:\Program Files (x86)\Amazon
2015-03-31 06:33 - 2013-11-02 22:20 - 00000000 ____D () C:\Windows\Minidump
2015-03-29 15:51 - 2013-05-22 21:20 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\C R A F T
2015-03-25 23:31 - 2014-10-22 15:26 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\LETTERS MARIA 2013
2015-03-22 10:39 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2015-03-21 08:22 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-21 08:18 - 2009-07-13 23:45 - 02419456 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-21 08:10 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-21 08:09 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-20 00:38 - 2013-05-22 21:21 - 00000000 ____D () C:\Users\FRENCHIE\Documents\Documents\My Smilebox Creations
2015-03-19 06:32 - 2013-07-18 08:13 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-19 06:23 - 2011-09-13 09:43 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-18 15:58 - 2014-08-23 21:49 - 00161701 _____ () C:\Users\FRENCHIE\Downloads\boo-hoo-108506178567.jpeg
2015-03-18 15:58 - 2014-04-17 02:48 - 00153071 _____ () C:\Users\FRENCHIE\Downloads\IMG_1062217041018.jpeg
2015-03-18 14:49 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared

==================== Files in the root of some directories =======

2012-07-14 21:26 - 2012-07-14 21:26 - 0543024 _____ (Microsoft Corporation) C:\Program Files\IE9-Windows7-x64-enu.exe
2012-07-15 14:06 - 2012-07-15 14:06 - 9593344 _____ () C:\Program Files\MicrosoftCodecPack_amd64.msi

 

(7)

2012-07-14 18:31 - 2012-07-14 18:31 - 0659968 _____ () C:\Program Files\MicrosoftFixit50195.msi
2010-11-27 07:51 - 2010-11-27 07:51 - 0000250 _____ () C:\Program Files\NBDBList.ini
2012-07-14 17:07 - 2012-07-14 17:07 - 0829312 _____ (Symantec Corporation) C:\Program Files\NISDownloader.exe
2012-07-14 20:48 - 2012-07-14 20:48 - 1287528 _____ (Microsoft Corporation) C:\Program Files\Windows Live Essentials wlsetup-web.exe
2012-07-15 07:02 - 2012-07-15 07:02 - 1287528 _____ (Microsoft Corporation) C:\Program Files\wlsetup-web.exe
2012-04-07 13:23 - 2012-04-07 13:24 - 33979336 _____ (Rovio) C:\Program Files (x86)\AngryBirdsSpaceInstaller_1.0.0.exe
2013-09-04 17:03 - 2013-09-04 17:04 - 38222776 _____ (Any-Video-Converter.com ) C:\Program Files (x86)\any-video-converter.exe
2014-04-04 00:02 - 2014-04-04 00:03 - 21524480 _____ () C:\Program Files (x86)\BBC-iPlayer-Downloads.msi
2015-02-15 23:37 - 2011-12-12 13:58 - 0074190 _____ () C:\Program Files (x86)\bg_app.png
2013-06-10 21:33 - 2013-06-10 21:34 - 51973840 _____ (Macrovision Corporation) C:\Program Files (x86)\bigoven1.exe
2014-08-29 18:15 - 2014-08-29 18:15 - 0895120 _____ (Google Inc.) C:\Program Files (x86)\ChromeSetup (2).exe
2015-02-15 23:37 - 2012-01-08 21:23 - 0001251 _____ () C:\Program Files (x86)\close.png
2012-12-16 00:58 - 2012-12-16 01:26 - 204920726 _____ () C:\Program Files (x86)\cookn.exe
2012-08-21 12:30 - 2012-08-21 12:32 - 85901040 _____ (Avery Dennison ) C:\Program Files (x86)\DesignPro5_4_Limited.exe
2014-04-23 22:55 - 2014-04-23 22:55 - 0316160 _____ (Dropbox, Inc.) C:\Program Files (x86)\DropboxInstaller.exe
2012-03-16 10:44 - 2012-03-16 10:46 - 133509968 _____ () C:\Program Files (x86)\ESDPK-HLX4-PhotoPlusStarterEdition_Setup.exe
2012-06-29 13:20 - 2012-06-29 13:26 - 380913664 _____ (Serif (Europe) Ltd., support@serif.co.uk) C:\Program Files (x86)\ESDPK-HPX4-PhotoPlusX4-EN.exe
2015-04-02 18:33 - 2015-04-02 18:34 - 41090240 _____ () C:\Program Files (x86)\Firefox Setup 36.0.4.exe
2011-12-17 11:39 - 2011-12-17 11:39 - 19487904 _____ (DVDVideoSoft Ltd. ) C:\Program Files (x86)\FreeAudioConverter.exe
2012-10-30 16:13 - 2012-10-30 16:14 - 25033600 _____ (DVDVideoSoft Ltd. ) C:\Program Files (x86)\FreeVideoToMP3Converter.exe
2014-09-20 21:15 - 2014-09-20 21:17 - 28757064 _____ (DVDVideoSoft Ltd. ) C:\Program Files (x86)\FreeYouTubeDownload.exe
2015-02-15 23:37 - 2012-01-08 21:23 - 0001218 _____ () C:\Program Files (x86)\help.png
2015-02-15 23:37 - 2012-01-06 22:44 - 0002179 _____ () C:\Program Files (x86)\icon_caution.png
2013-10-27 01:28 - 2013-10-27 01:28 - 1141200 _____ () C:\Program Files (x86)\imikimi_installer_0.5.1.exe
2014-01-21 17:47 - 2014-01-21 17:47 - 100400976 _____ (Apple Inc.) C:\Program Files (x86)\iTunes64Setup.exe
2014-01-21 17:49 - 2014-01-21 17:53 - 98633040 _____ (Apple Inc.) C:\Program Files (x86)\iTunesSetup.exe
2011-12-05 10:53 - 2011-12-05 10:53 - 0883488 _____ (Sun Microsystems, Inc.) C:\Program Files (x86)\JavaSetup6u23.exe
2015-01-01 14:07 - 2015-01-01 14:07 - 0638888 _____ (Oracle Corporation) C:\Program Files (x86)\jxpiinstall.exe
2015-03-25 02:52 - 2015-03-25 02:53 - 40891792 _____ (Amazon.com) C:\Program Files (x86)\KindleForPC-installer.exe
2015-04-07 14:43 - 2015-04-07 14:44 - 71111070 _____ () C:\Program Files (x86)\kodi-14.2-Helix.exe
2015-02-15 23:37 - 2012-01-08 21:24 - 0002309 _____ () C:\Program Files (x86)\logo_mm.png
2015-02-15 23:37 - 2012-01-08 21:24 - 0002713 _____ () C:\Program Files (x86)\logo_twn.png
2015-04-02 23:04 - 2015-04-02 23:05 - 21540440 _____ (Malwarebytes Corporation ) C:\Program Files (x86)\Malwarebytes Anti-Malware.exe
2011-10-28 00:04 - 2011-10-28 00:04 - 0074696 _____ (Microsoft Corporation) C:\Program Files (x86)\Microsoft Windows Malicious Removal Tool.exe
2014-01-01 15:00 - 2014-01-01 15:01 - 8025600 _____ () C:\Program Files (x86)\MicrosoftCodecPack_x86.msi
2011-11-19 11:53 - 2011-11-19 11:53 - 6095012 _____ (Moritz Bunkus) C:\Program Files (x86)\mkvtoolnix-unicode-5.0.1-setup.exe
2012-08-16 22:42 - 2012-08-16 22:42 - 33058760 _____ (Motorola Mobility) C:\Program Files (x86)\MotorolaDeviceManager_2.2.28.exe
2013-10-29 15:05 - 2013-11-10 13:32 - 0003737 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2014-04-25 18:54 - 2014-04-25 18:56 - 0002506 _____ () C:\Program Files (x86)\Navi-X-v37_8.zip
2015-04-15 15:12 - 2015-04-15 15:12 - 1021936 _____ (Symantec Corporation) C:\Program Files (x86)\NortonNISDownloader.exe
2014-09-06 16:37 - 2014-09-06 16:38 - 3077584 ____N (Symantec Corporation) C:\Program Files (x86)\NPE norton power eraser.exe
2013-06-27 21:47 - 2013-06-27 21:47 - 6257640 _____ (Symantec Corporation) C:\Program Files (x86)\NRnR Remove & Reinstall.exe
2015-02-15 23:37 - 2012-01-08 21:23 - 0001210 _____ () C:\Program Files (x86)\option.png
2013-11-11 12:18 - 2013-11-11 12:18 - 2994416 _____ (Boost Software Inc.) C:\Program Files (x86)\PCHealthBoost-Setup.exe
2012-01-27 18:00 - 2012-01-27 18:31 - 90705792 _____ (Acresso Software Inc. ) C:\Program Files (x86)\PCStitch_Inst.exe
2014-06-11 11:04 - 2014-06-11 11:04 - 27024112 _____ (Microsoft Corporation) C:\Program Files (x86)\PowerPointViewer.exe
2012-02-09 11:20 - 2012-02-09 11:21 - 44736008 _____ (ArcSoft ) C:\Program Files (x86)\printcreations.exe
2015-02-15 23:37 - 2012-01-08 21:23 - 0001023 _____ () C:\Program Files (x86)\refresh.png
2014-05-31 11:50 - 2014-05-31 11:50 - 1516016 _____ (RealTimeGaming Software) C:\Program Files (x86)\setup Plenty Jackpot Casino.exe
2015-04-07 12:58 - 2015-04-07 12:59 - 2178048 _____ (Reason Software Company Inc.) C:\Program Files (x86)\ShouldIRemoveIt_Setup.exe
2012-05-12 12:40 - 2012-05-12 12:36 - 0631736 _____ (Smilebox, Inc.) C:\Program Files (x86)\SmileboxInstaller.exe
2015-02-15 23:37 - 2012-01-06 22:44 - 0000043 _____ () C:\Program Files (x86)\spacer.gif
2014-06-02 10:41 - 2014-06-02 10:41 - 0925032 _____ () C:\Program Files (x86)\SpinPalace.exe
2015-02-06 02:32 - 2015-02-06 02:32 - 0445664 _____ (Pelmorex Media Inc.) C:\Program Files (x86)\theweathernetwork.exe
2014-01-01 20:21 - 2014-01-01 20:21 - 8990552 _____ (Microsoft Corporation) C:\Program Files (x86)\vcredist_x86.exe
2015-02-15 23:37 - 2015-02-16 07:11 - 0006228 _____ () C:\Program Files (x86)\weathereye.daz
2015-02-15 23:37 - 2013-06-12 16:19 - 1396520 _____ (Pelmorex) C:\Program Files (x86)\weathereye.dll
2015-02-15 23:37 - 2012-08-30 16:16 - 0310920 _____ (Pelmorex Media Inc.) C:\Program Files (x86)\weathereye.exe
2015-02-15 23:37 - 2015-04-15 19:09 - 10485760 _____ () C:\Program Files (x86)\WeatherEyeApp.log
2013-01-06 17:00 - 2013-01-06 17:00 - 0318904 _____ (Microsoft Corporation) C:\Program Files (x86)\wmpfirefoxplugin.exe
2011-08-29 17:38 - 2011-08-29 17:38 - 0000272 _____ () C:\Users\FRENCHIE\AppData\Roaming\.backup.dm
2012-04-14 15:22 - 2012-04-14 15:22 - 0000132 _____ () C:\Users\FRENCHIE\AppData\Roaming\Adobe PNG Format CS5 Prefs
2012-08-16 21:59 - 2014-08-14 14:10 - 0015872 _____ () C:\Users\FRENCHIE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-05-23 23:46 - 2014-05-14 16:05 - 0003262 _____ () C:\Users\FRENCHIE\AppData\Local\QuickLink-Big Flash Casino.ico
2011-12-11 23:50 - 2011-12-11 23:50 - 0005494 _____ () C:\Users\FRENCHIE\AppData\Local\QuickLink-Flash - Riverbelle Casino.ico
2011-11-22 10:30 - 2011-11-26 11:40 - 0005494 _____ () C:\Users\FRENCHIE\AppData\Local\QuickLink-Spin Palace Flash Casino.ico
2013-10-29 15:46 - 2013-10-29 15:46 - 0000218 _____ () C:\Users\FRENCHIE\AppData\Local\recently-used.xbel

Some content of TEMP:
====================
C:\Users\FRENCHIE\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmknxjs.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-04 23:06

==================== End Of Log ============================

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-04-2015 04
Ran by FRENCHIE at 2015-04-15 19:15:27
Running from C:\Users\FRENCHIE\Favorites\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.4.5 - Liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Amazon Kindle (HKLM-x32\...\Amazon Kindle) (Version: - Amazon)
Angry Birds Space (HKLM-x32\...\{561AA971-37EB-4D63-9FB9-810B663B5CC7}) (Version: 1.4.1 - Rovio)
Any Video Converter Professional 5.0.9 (HKLM-x32\...\Any Video Converter Professional_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft PhotoStudio 5.5 (HKLM-x32\...\{85309D89-7BE9-4094-BB17-24999C6118FC}) (Version: - ArcSoft)
ArcSoft Print Creations - Album Page (HKLM-x32\...\{E6B4117F-AC59-4B13-9274-EB136E8897EE}) (Version: - ArcSoft)
ArcSoft Print Creations - Brochures & Flyers (HKLM-x32\...\{01A1A019-E1D8-482A-BE17-5E118D17C0A0}) (Version: - ArcSoft)
ArcSoft Print Creations - Funhouse (HKLM-x32\...\{9591C049-5CAE-4E89-A8D9-191F1899628B}) (Version: - ArcSoft)
ArcSoft Print Creations - Funhouse II (HKLM-x32\...\{3CE47E6B-AE27-4E40-AC54-329EED96B933}) (Version: - ArcSoft)
ArcSoft Print Creations - Greeting Card (HKLM-x32\...\{F04F9557-81A9-4293-BC49-2C216FA325A7}) (Version: - ArcSoft)
ArcSoft Print Creations - Photo Book (HKLM-x32\...\{56589DFE-0C29-4DFE-8E42-887B771ECD23}) (Version: - ArcSoft)
ArcSoft Print Creations - Photo Calendar (HKLM-x32\...\{CA9ED5E4-1548-485B-A293-417840060158}) (Version: - ArcSoft)
ArcSoft Print Creations - Photo Prints (HKLM-x32\...\{95F875CC-1B85-43E6-B3E0-13EA04F3D995}) (Version: - ArcSoft)
ArcSoft Print Creations - Poster Creator (HKLM-x32\...\{5D1C82E7-7EC0-4404-A8AD-36C3B444BC34}) (Version: - ArcSoft)
ArcSoft Print Creations - Scrapbook (HKLM-x32\...\{B0D83FCD-9D42-43ED-8315-250326AADA02}) (Version: - ArcSoft)
ArcSoft Print Creations - Slimline Card (HKLM-x32\...\{007B37D9-0C45-4202-834B-DD5FAAE99D63}) (Version: - ArcSoft)
ArcSoft Print Creations (HKLM-x32\...\{F03EC055-F34E-4F6B-A684-8A370E11A304}) (Version: 3.0.255.500 - ArcSoft)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 3.09 - Piriform)
Cisco Connect (HKLM-x32\...\Cisco Connect) (Version: 1.4.11299.0 - Cisco Consumer Products LLC)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.0.0.07110 - Sony Corporation)
Cook'n for Diabetes (HKLM-x32\...\Cook'n for Diabetes) (Version: - )
Cook'n Recipe Browser (HKLM-x32\...\Cook'n Recipe Browser) (Version: - )
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Dropbox) (Version: 3.4.3 - Dropbox, Inc.)
EPSON Connect version 1.0 (HKLM-x32\...\EPSON Connect_is1) (Version: 1.0 - Epson America Inc.)
Epson Event Manager (HKLM-x32\...\{10144CFE-D76C-4CFA-81A1-37A1642349A3}) (Version: 3.01.0013 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-410 Series Printer Uninstall (HKLM\...\EPSON XP-410 Series) (Version: - SEIKO EPSON Corporation)
Epson XP-410 User's Guide version 1.0 (HKLM-x32\...\UsersGuideEpson XP-410 User's Guide_is1) (Version: 1.0 - )
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ffdshow v1.2.4422 [2012-04-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.2.4422.0 - )
Free Studio version 6.4.2.113 (HKLM-x32\...\Free Studio_is1) (Version: 6.4.2.113 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.44.908 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.44.908 - DVDVideoSoft Ltd.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Imikimi Plugin (HKLM-x32\...\Imikimi Plugin) (Version: - )
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.135 - PandoraTV)
Kobo (HKLM-x32\...\Kobo) (Version: 3.12.0 - Rakuten Kobo Inc.)
Kodi (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Kodi) (Version: - XBMC-Foundation)
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.14 - Acer Inc.)
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Media Manager for WALKMAN 1.2 (HKLM-x32\...\{5A6ED905-D19D-4954-8499-0DAF386460F7}) (Version: 1.2.771 - Sony)
MediaFACE II (HKLM-x32\...\{DC1D7AD2-583A-4024-9041-387E8FFA5D8C}) (Version: - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM-x32\...\{D03632B5-1DA9-4536-976D-604719500C45}) (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.0.161.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office XP Small Business (HKLM-x32\...\{91130409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool 2

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Works 6.0 (HKLM-x32\...\{F8D0829C-9C6F-11D3-8080-00C04FA329AA}) (Version: 06.00.1829 - Microsoft Corporation)
MKVtoolnix 5.0.1 (HKLM-x32\...\MKVtoolnix) (Version: 5.0.1 - Moritz Bunkus)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC)
Mozilla Firefox 37.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 en-US)) (Version: 37.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.4 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.6.0.32 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
Omron Health Management Software (HKLM-x32\...\{F6BA8EF2-A9F8-45B7-BD59-0A15DA9F7D68}) (Version: 1.21.0001 - Omron Healthcare)
PCStitch 10 (HKLM-x32\...\{7D389358-56D0-4988-BAAC-5ACE907CCEBD}) (Version: 10.00.23 - M&R Technologies, Inc.)
Plenty Jackpot (HKLM-x32\...\{f748bdcf-1691-49d4-b5a6-20abf8d9d2b9}) (Version: 13.1.0-RTG - RealTimeGaming Software)
Presto! PageManager 7.15.14 (HKLM-x32\...\{D2D6B9EB-C6DC-4DAA-B4DE-BB7D9735E7DA}) (Version: 7.15.14E - NewSoft)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Save.ca Print-At-Home (HKLM-x32\...\ca.save.print-at-home-signed) (Version: 14.0 - Metroland Media Group Ltd)
Save.ca Print-At-Home (x32 Version: 14.0 - Metroland Media Group Ltd) Hidden
ScanSoft OmniPage SE 4.0 (HKLM-x32\...\{C1E693A4-B1D5-4DCD-B68D-2087835B7184}) (Version: 15.00.0020 - Nuance Communications, Inc.)
Serif PanoramaPlus X4 (HKLM-x32\...\{35EDE682-4AE5-47D6-B44F-103F859951DC}) (Version: 4.0.3.010 - Serif (Europe) Ltd)
Serif PhotoPlus Starter Edition (HKLM-x32\...\{A0765939-76F5-48D8-82B1-8D0BBFAD0702}) (Version: 2.0.0.002 - Serif (Europe) Ltd)
Serif PhotoPlus X4 (HKLM-x32\...\{AFA3224E-8AD6-4EFA-9DBA-A2E499F30282}) (Version: 14.0.2.013 - Serif (Europe) Ltd)
Should I Remove It (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Should I Remove It (x32 Version: 1.0.4 - Reason Software Company Inc.) Hidden
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Smilebox (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\Smilebox) (Version: 1.1.1.1 - Smilebox, Inc.)
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
The Weather Network (HKU\S-1-5-21-776278072-1255483964-2025531215-1000\...\The Weather Network) (Version: 6.0.2.5 - The Weather Network)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3005 - Acer Incorporated)
Windows 7 Codec Pack 3.3.0 (HKLM-x32\...\Windows 7 - Codec Pack) (Version: - Windows 7 Codec Pack)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-776278072-1255483964-2025531215-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

05-04-2015 07:55:02 Windows Update
07-04-2015 13:02:49 Installed Should I Remove It
07-04-2015 13:11:33 Removed Epson Customer Participation
07-04-2015 13:15:27 Removed LTCM Client.
07-04-2015 15:15:08 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
07-04-2015 15:15:49 Installed DirectX
15-04-2015 11:47:23 Windows Update
15-04-2015 12:41:49 Ran Combofix April 15 12:41pm

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2015-04-15 13:19 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {02E728B5-30CB-4C22-99C4-BB3BA5C7289D} - System32\Tasks\{F4D3820D-0E9E-45DF-BA4E-813D8167A413} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {037D261B-7580-4A72-942F-79D96DEB37C1} - System32\Tasks\{9725E417-0029-446A-9BCF-580F3C7C4AFA} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {049F0FC4-B257-45D7-9F2B-821C5C76C3A5} - System32\Tasks\{75EBD3FB-5375-4159-A223-F6B4ABCDA2C7} => C:\Program Files (x86)\Kodi\Kodi.exe [2015-03-26] (XBMC-Foundation)
Task: {056306CA-78E3-4EA9-B087-4636AB6B1F82} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser =>

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool 3

C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {064A21F4-56C5-4B01-AAED-8F01A83EF1AB} - System32\Tasks\{9E19266D-58C7-4646-8202-74790023F720} => pcalua.exe -a "C:\Program Files (x86)\HAIRSTYLES\setup.exe" -d "C:\Program Files (x86)\HAIRSTYLES "
Task: {0907BAA8-038D-44A5-9FA6-03C650302862} - System32\Tasks\{D4F25C98-5DB0-46D3-A3DA-F7C282FF4103} => C:\Users\FRENCHIE\Downloads\KindleForPC-installer.exe
Task: {090980E4-410C-45D6-8BCA-2C1CBA375873} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_LG => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {0DBCD00E-0FE1-40D2-AA7B-D6BD56C83A5F} - System32\Tasks\{E5D05E66-1F9C-4F69-A2BD-0F3AE3096C60} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {0ECE5C57-0F49-424E-9573-4B4A5C2397E7} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {13DB63E3-37D9-4F74-9103-0746CEFCFA52} - System32\Tasks\{C31112C6-5361-4DF2-88A5-3BA9FD2F2ABE} => C:\Program Files (x86)\Kodi\Kodi.exe [2015-03-26] (XBMC-Foundation)
Task: {159F3984-EB4C-49CD-A449-DCCC9BC4FEC5} - System32\Tasks\{4448FAA0-5E38-49C7-BA5F-5321FA8B59E3} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {21FBACE2-6051-4ED7-BCCE-26405FD04D0E} - System32\Tasks\{20F8CC33-CF5F-4731-AF43-00524DDD8B89} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {2CE24555-9757-43B3-BDF6-59F046AD38ED} - System32\Tasks\{0FA732B6-8950-4112-A498-1587AF3758D1} => C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe [2015-01-13] (DVDVideoSoft Ltd.)
Task: {2E28EE33-6A0A-462A-9B10-EC1816F6A871} - System32\Tasks\{303A744A-84C9-474D-A656-5355EBCE66B0} => C:\Program Files (x86)\The KMPlayer\KMPlayer.exe
Task: {2F201A51-00F7-4D12-ACA1-ADD565CBF664} - System32\Tasks\{6B10E714-10DB-452A-8EDB-CA87ABDC93F0} => Firefox.exe
Task: {309E046B-D2BA-46E4-99E7-4F7FE77DF6F2} - System32\Tasks\{27BA1E85-591C-4E2C-9DB0-5158BF1E6E73} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {343840CF-94CF-457B-97BA-C2E7D4F19CA8} - System32\Tasks\{DCD77774-D7FD-4A8C-9DAE-AE0A06BD8A54} => C:\Program Files (x86)\The KMPlayer\KMPlayer.exe
Task: {37A8E42E-E22A-4F8F-81E2-24D43C42555B} - System32\Tasks\{BD0290D3-551B-432D-B05E-3AA17AFE1AE3} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {3877FE70-98EE-47CD-A6EF-DDD398A50DDA} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {39B8E6B5-33DC-478A-BCF5-673325B40C56} - System32\Tasks\{906AF7AA-FB35-44B0-BDE1-D14EE34D3F63} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {3D2C0B06-B04E-468D-869D-B143D48EB869} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_RS => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {3F52AC8A-D1A4-4417-B135-6BDBA0933F32} - System32\Tasks\{0125C562-B806-4E2D-9E07-2AF128D8732F} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {416690F3-7260-4576-96AE-3164CE6BADD2} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {422E6BCF-6965-4974-B1E0-C3E400FE9246} - System32\Tasks\{CD8868AF-C5B6-4ADD-900A-C0A368591FC9} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {48844275-FEF6-454C-9BBD-B45436773F6C} - System32\Tasks\{59C7729F-AFAC-49DC-8F82-31D48768BD43} => pcalua.exe -a "C:\Users\FRENCHIE\Downloads\World Of Goo game [ENG] [PC]\WorldOfGooSetup.exe" -d "C:\Users\FRENCHIE\Downloads\World Of Goo game [ENG] [PC] "
Task: {4DF92789-4411-4A20-8F7C-252C64152925} - System32\Tasks\{449DCF9A-DD04-4904-9C34-8C403298C190} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {4E0AB754-18F9-4473-B927-62A3CC9A1D19} - System32\Tasks\{CA8393AC-D781-444E-A7BD-F2C9AC330C5A} => Firefox.exe
Task: {4E757129-8004-43F8-9C3D-F639EBAF08F7} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_RN => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {502B14B6-5D3D-4832-93E0-41973D843A64} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {5030FCEF-EADD-453C-9A7F-F4BDC6587ABD} - System32\Tasks\{0451D13A-6A5F-4F7A-99D7-6CC92B807AE8} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {53E649FE-FD01-4B54-86FD-EE54E123B76E} - System32\Tasks\{B2DCBF71-02FC-4020-9FE3-A6F3E3DACF88} => pcalua.exe -a C:\Users\FRENCHIE\Favorites\Desktop\ESDPK-HLX5-PhotoPlusStarterEdition_Setup.exe -d C:\Users\FRENCHIE\Favorites\Desktop
Task: {5659FEAF-243F-4736-A650-8A4BD7A981B3} - System32\Tasks\{97F0BA97-E5FF-4A51-987C-BC6231D32262} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {56A01349-9D97-40AF-9ACA-419559E579AF} - System32\Tasks\EPSON XP-410 Series Update {D58AF3A2-47AF-43DC-835F-780C760AC2B9} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION)
Task: {56D73C8A-213C-4079-B744-764B6CCE33FC} - System32\Tasks\{699786BE-B43E-4519-B796-85C48B74B1C5} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {58FE767D-7292-402F-8BC0-4EBFF09E3B85} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {59B75F68-80D6-429C-948E-9A815FAC241D} - System32\Tasks\{53BF5571-4CFE-4897-ABC9-D66C816A7B82} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {5B8DB8BF-305C-4B6D-AC71-0CD21B1E609F} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {5BF476B9-FBA2-496D-8D0A-2249556E13E5} - System32\Tasks\{34782763-5A29-4728-8391-7C5DD7BFF0CB} => C:\Users\FRENCHIE\Downloads\KindleForPC-installer.exe
Task: {5FFB83B7-67EC-45EA-84A1-F9B535830EEC} - System32\Tasks\{C3581CA7-75A0-4BDE-837C-02E5F010A44C} => Firefox.exe
Task: {61A107A4-0412-4A4D-AB7B-94322999D52B} - System32\Tasks\{B1F7C4A6-20CA-46E1-9BAC-CEE59755FE6C} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {68869B47-5D9D-458B-A8B5-3413855C8AB1} - System32\Tasks\{874D5114-551F-4849-AF76-F9C36295D9B8} => C:\Program Files (x86)\uTorrent\uTorrent.exe
Task: {68E4D416-6C43-43F6-B74C-22AF019B1EB2} - System32\Tasks\{78238E2A-B6C1-4A34-9987-ECA9509381AD} => pcalua.exe -a "C:\Program Files (x86)\The KMPlayer\KMPSetup.exe" -d "C:\Program Files (x86)\The KMPlayer "
Task: {709B5D14-9420-48E7-A828-2E03FCB25BFB} - System32\Tasks\{59E925EE-31C4-4CC6-B008-BBF15D712D74} => C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe [2015-01-13] (DVDVideoSoft Ltd.)
Task: {72CF2AB5-E566-483D-BA6E-BA5CD3F8AC04} - System32\Tasks\AdobeAAMUpdater-1.0-SPEEDY-FRENCHIE => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {73294E62-B0D5-40F4-82F6-3249D72DB1A3} - System32\Tasks\{10EB893C-70DF-41FE-843A-C366E6F39C19} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {84244C84-30F5-4227-B520-0290205D897D} - System32\Tasks\{61892717-13DB-40F5-B5F9-053B2CF3F3A3} => pcalua.exe -a "C:\Program Files (x86)\cookn.exe" -d "C:\Program Files (x86) "
Task: {8565F9C3-82A2-4AAD-976E-C8AEA4B52130} - System32\Tasks\{F4277C7E-DFFD-48AB-BAC8-552A87478162} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {87435CE8-D2FD-4A1C-A318-5B33761994BE} - System32\Tasks\{69746A75-2B06-44B7-8813-51E54C866983} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {89CA0CA6-EBEE-422C-9AAB-3C4070BDDB1C} - System32\Tasks\{AA5258AD-A599-4293-925E-EB91289225F4} => pcalua.exe -a "C:\Program Files (x86)\PDFCreator\Converter.exe" -d "C:\Program Files (x86)\PDFCreator "
Task: {8AB63496-C6E2-48D0-96DF-42082ABF71DB} - System32\Tasks\{79DA7DA7-7988-46A0-BC50-D34D72BC7CAC} => pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -c /M{71F6DF7D-B639-4FAD-BA93-E6DF267AA44D}
Task: {90617168-3EC0-4AD7-A45F-ACC72FB080F9} - System32\Tasks\{0769033C-4B9C-48FC-81BE-77FAD89924BD} => pcalua.exe -a "C:\Program Files\The KMPlayer\KMPSetup.exe" -d "C:\Program Files\The KMPlayer "
Task: {964E23EB-D81E-4A4B-BD9D-BBF14E50C7D6} - System32\Tasks\{FD872311-B063-42AD-B4E6-AD3193C2CD8B} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {97FD31F5-F14D-4878-B1E1-3FCB2773525D} - System32\Tasks\{5DDB8ACC-9C71-4749-A36C-3ACD2543F2BD} => pcalua.exe -a "C:\Program Files (x86)\imikimi_installer_0.5.1.exe" -d "C:\Program Files (x86) "
Task: {9FC98B39-46E1-424D-B640-D87A146F9BCF} - System32\Tasks\{4E6D4DC6-1399-4E64-B25D-22D8EDF7194B} => C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE [2011-04-27] (Microsoft Corporation)
Task: {A2398B1E-693C-43A8-91E5-EFC6427CB5DA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {A306EA3F-409B-4349-BE56-34EA2E0993F8} - System32\Tasks\{49E54664-04DC-4D95-993F-0AC3EA7393D4} => C:\Program Files (x86)\XBMC\XBMC.exe
Task: {A57C4674-BE13-407E-9710-A27245786661} - System32\Tasks\{0102986A-F76E-4519-864B-C24A2BF04DFF} => pcalua.exe -a "C:\Program Files (x86)\DivXInstaller.exe" -d "C:\Program Files (x86) "
Task: {AC1F5196-0486-4ECA-951E-7A95462F7C47} - System32\Tasks\{EFCEC0C1-03FB-48B1-9996-BF85411B632F} => C:\Users\FRENCHIE\Downloads\Adobe Photoshop CS5 Extended Edition.exe
Task: {AE51D325-6ED5-4DC6-A13B-C4E0E0801347} - System32\Tasks\{BDA7613A-0B3D-4EED-97E7-11A4C47B20A9} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {AE8276FB-C1E6-4F19-B8DB-A5261F15B8C7} - System32\Tasks\{8DF0E5BB-28E4-42E2-994A-8185D36B1CB4} => C:\Windows\System32\java.exe [2014-09-06] (Oracle Corporation)
Task: {B1015C48-A121-4D4A-919E-41D113C6F61B} - System32\Tasks\{D98AF9D0-30F3-4E2B-ABC4-49BCD1C43C7F} => C:\Program Files (x86)\Plenty Jackpot\casino.exe [2015-03-11] (Realtime Gaming, Inc)
Task: {B15DC8E3-5A1A-48A1-8496-CB264F47E8B7} - System32\Tasks\{90E2663E-B3AA-4DA3-BB26-331B0D9BB1C7} => C:\Program Files (x86)\Plenty Jackpot\casino.exe [2015-03-11] (Realtime Gaming, Inc)

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool 4

Task: {B255E505-C67C-4F3F-89A3-161A37FBB7C1} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_RM => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {B51101B2-F4CC-43B0-A2BD-2B8D44804D09} - System32\Tasks\{804B0DB8-CDE1-47A3-B47B-4F850FFCDAC9} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {B5162D8F-BACF-4528-AF51-DC8D2D1DEB7D} - System32\Tasks\{BA734B8B-5EF7-4190-AEEE-AA2502EF8E9F} => C:\Program Files (x86)\Plenty Jackpot\casino.exe [2015-03-11] (Realtime Gaming, Inc)
Task: {B604661D-1326-4BE8-A846-001BB28DCE43} - System32\Tasks\{2002163D-A52F-460D-BFC6-7622CCFD180D} => F:\P R O G R A M S\ArcSoft Funhouse\Funhouse\Funhouse.exe
Task: {BA027A89-5811-4CD5-9B2C-960661C023AF} - System32\Tasks\{2A0FBFE3-002E-4FF1-AA69-A81828D4F26C} => pcalua.exe -a C:\Users\FRENCHIE\Downloads\dBpoweramp-Codec-FLAC.exe -d C:\Users\FRENCHIE\Downloads
Task: {BAE80326-F2C1-45AA-BD67-D700A3EB7865} - System32\Tasks\{24BE94E5-40B1-4216-83B4-A132C0511AEC} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {BEFF86A5-35F8-48E4-885A-6CAD66233864} - System32\Tasks\{8EB64CF1-3495-4DD7-A135-29805908CD23} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {C58402DA-C261-4F80-8E11-D328104814A8} - System32\Tasks\{FE5D42B8-D9F4-4B05-ACB3-83342A990674} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {C8119FE6-EB4D-47C9-8D0B-75E00C510406} - System32\Tasks\PCHB_FRENCHIE_PCHealthBoost_UP => C:\Program Files (x86)\PC HealthBoost\PCHealthBoost.exe
Task: {CBE3F373-CF27-4A3F-AE78-67950E5E118C} - System32\Tasks\{6F7F7536-0D13-496D-825C-DF17CF821583} => pcalua.exe -a "C:\Users\FRENCHIE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CCZ9HO6R\DivXInstaller[1].exe" -d C:\Users\FRENCHIE\Desktop
Task: {CD80BBB4-7B0C-4E70-A163-5DA8C3958BBE} - System32\Tasks\{A3A2D021-00DC-4941-BA0F-FDC5BB97F5F9} => C:\Users\FRENCHIE\Downloads\KindleForPC-installer.exe
Task: {CE91C5B0-ACFA-409C-B166-812FF70F99E6} - System32\Tasks\EPSON XP-410 Series Invitation {D58AF3A2-47AF-43DC-835F-780C760AC2B9} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION)
Task: {CFE02594-581D-4335-AC6D-AF88B79E86ED} - System32\Tasks\{AF6616AC-2F8A-4DB8-9ACB-4CFA51EC1A3C} => pcalua.exe -a "C:\Program Files (x86)\DesignPro5_4_Limited.exe" -d "C:\Program Files (x86) "
Task: {D415C8A6-1317-457F-9398-53A7B4AA76EC} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {D4789B06-4FEF-4EC1-BCDF-B11EF972FA9E} - System32\Tasks\{BB58B383-5E96-40B0-B223-9C5895F0BFA1} => C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE [2010-08-16] (Microsoft Corporation)
Task: {D4EF0775-FA64-4394-90CC-D4C52BF14D07} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D70F3E51-6FB8-4EED-970D-18DC9DC74EF3} - System32\Tasks\{A12D5E8F-41A2-45D3-B2B5-3170119A3206} => C:\Program Files (x86)\uTorrent\uTorrent.exe
Task: {D724181C-A969-45D4-A4E1-2ECA9E8CF2C4} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {D89E6D2D-5730-4383-A06B-040E6B31EBEE} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe
Task: {DA545899-DDCF-4CC4-8830-28CF8AEE0E47} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe
Task: {DA6E3EFE-6EBB-4EB0-869A-8090F1A4242A} - System32\Tasks\{1A87B66A-EBA7-4F46-B6D0-39A7950C9249} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {DB8991F7-4517-4431-8E1C-1E35CDF3FE04} - System32\Tasks\{7A62A4F6-638A-4BA1-92F4-D9D86B34C403} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {DBB267DB-884B-46A8-A131-E9083C44CA03} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {DF6628E8-2C32-493B-B5EE-FE01BACACA7B} - System32\Tasks\{36EDDD40-136B-43D7-A766-CA1F31492198} => C:\Microgaming\Casino\alljackpots\casinogame.exe
Task: {E1161989-B5EE-48A3-99D2-4CEF65AD5D46} - System32\Tasks\{18A83870-BEB2-4E4C-ADB0-CDEBFAAF8D71} => pcalua.exe -a "C:\Program Files\DVO\Cook'n for Diabetes\Install.exe" -d "C:\Program Files\DVO\Cook'n for Diabetes "
Task: {E37968A9-92DC-485A-9B9F-19AD42F11C8D} - System32\Tasks\{8FC84B81-571A-4144-866F-1D63B5EE8CA1} => pcalua.exe -a C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App\Install.exe -d C:\Users\FRENCHIE\AppData\Local\DVO\Cook'n10App
Task: {E5B94530-AA9A-47EB-A36F-0C9B4FAE757D} - System32\Tasks\{30451FFE-14A5-4A59-9C43-D6D7530E94C7} => C:\Program Files (x86)\Norton Internet Security\Engine64\19.7.1.5\uiStub.exe
Task: {E69F05AD-5675-4FF9-B854-8470E4790994} - System32\Tasks\{26B797BD-FC5D-4F42-B7C9-613D0849F75F} => C:\Users\FRENCHIE\Downloads\Adobe Photoshop CS5 Extended Edition.exe
Task: {E984B9B3-7876-4FBE-AB5A-272E434A006A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {F24792E4-01DE-4279-905C-0FB5AAE84ABD} - System32\Tasks\{F1AA6241-2764-4B6F-9508-950EAB91FB33} => C:\Program Files (x86)\Kodi\Kodi.exe [2015-03-26] (XBMC-Foundation)
Task: {F2A096B9-3FF9-42CF-9E7F-7EC9B3A8ED2D} - System32\Tasks\{287EF12B-EE56-4FD8-B5CD-33B9D7D57CC0} => C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe
Task: {F5015342-B78C-47AB-B5E9-206A82B1847D} - System32\Tasks\{64E0F564-B1B8-4C45-80CE-35D4D5C06740} => C:\Users\FRENCHIE\Downloads\Adobe Photoshop CS5 Extended Edition.exe
Task: {F9C3A155-DBAA-4AF2-8C85-8CF4ED1B28A1} - System32\Tasks\{AE225B85-5C93-41EC-B094-C809242DC643} => C:\Program Files (x86)\DVDVideoSoft\Free Video to MP3 Converter\FreeVideoToMP3Converter.exe [2015-01-13] (DVDVideoSoft Ltd.)
Task: {FEFB5C90-E8A7-4E51-9A29-EF77AF45C121} - System32\Tasks\{4532E4FB-1EAE-4BDE-900C-8CCA2490EFCD} => C:\Program Files (x86)\Kodi\Kodi.exe [2015-03-26] (XBMC-Foundation)
Task: {FF6A9648-087B-4DBD-A5F9-43E4CC835EBA} - System32\Tasks\{7023DDD9-2544-4AD3-9995-852DC0244412} => C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE [2011-04-27] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-410 Series Invitation {D58AF3A2-47AF-43DC-835F-780C760AC2B9}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE
Task: C:\Windows\Tasks\EPSON XP-410 Series Update {D58AF3A2-47AF-43DC-835F-780C760AC2B9}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLAE.EXE:/EXE:{D58AF3A2-47AF-43DC-835F-780C760AC2B9} /F:UpdateSYSTEM
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Loaded Modules (whitelisted) ==============

2014-04-17 17:53 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\AiCM64.dll
2011-08-22 17:02 - 2006-09-20 08:35 - 00020480 _____ () C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
2011-08-22 17:02 - 2006-09-19 16:05 - 00024576 _____ () C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
2010-02-28 03:33 - 2010-02-28 03:33 - 00077664 _____ () C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-10-31 10:05 - 2013-10-31 10:05 - 00172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2010-06-28 18:20 - 2010-06-28 18:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-28 18:12 - 2010-06-28 18:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2015-04-15 14:51 - 2015-04-15 14:51 - 00043008 _____ () c:\users\frenchie\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmknxjs.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00750080 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00047616 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00865280 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 16:45 - 2015-03-04 16:45 - 00200704 _____ () C:\Users\FRENCHIE\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2010-11-22 02:43 - 2009-05-20 01:02 - 00072200 _____ () C:\Program Files (x86)\Launch Manager\CdDirIo.dll
2014-10-17 18:19 - 2014-10-17 18:19 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\89753abff3827095ec7f3d3fb79f744a\IsdiInterop.ni.dll
2010-11-22 03:12 - 2010-04-13 12:52 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:084612C9
AlternateDataStreams: C:\ProgramData\Temp:164561C8
AlternateDataStreams: C:\ProgramData\Temp:17C48B08
AlternateDataStreams: C:\ProgramData\Temp:206470A5
AlternateDataStreams: C:\ProgramData\Temp:2C86E2AD
AlternateDataStreams: C:\ProgramData\Temp:30E0D641
AlternateDataStreams: C:\ProgramData\Temp:31C9BA96
AlternateDataStreams: C:\ProgramData\Temp:32289BE8
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:391535F9
AlternateDataStreams: C:\ProgramData\Temp:3C4BD225
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4E79C4F8

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool 5

AlternateDataStreams: C:\ProgramData\Temp:4EE95FE7
AlternateDataStreams: C:\ProgramData\Temp:517EFA90
AlternateDataStreams: C:\ProgramData\Temp:61B54B15
AlternateDataStreams: C:\ProgramData\Temp:63210866
AlternateDataStreams: C:\ProgramData\Temp:661DFA1C
AlternateDataStreams: C:\ProgramData\Temp:6A9CA6CB
AlternateDataStreams: C:\ProgramData\Temp:6DD124E2
AlternateDataStreams: C:\ProgramData\Temp:8AED9359
AlternateDataStreams: C:\ProgramData\Temp:902C848D
AlternateDataStreams: C:\ProgramData\Temp:9195103F
AlternateDataStreams: C:\ProgramData\Temp:91DEEE71
AlternateDataStreams: C:\ProgramData\Temp:9ACB70D7
AlternateDataStreams: C:\ProgramData\Temp:9AE67195
AlternateDataStreams: C:\ProgramData\Temp:B36361EE
AlternateDataStreams: C:\ProgramData\Temp:B790962B
AlternateDataStreams: C:\ProgramData\Temp:BB718C46
AlternateDataStreams: C:\ProgramData\Temp:BE0654D6
AlternateDataStreams: C:\ProgramData\Temp:BF3D62E7
AlternateDataStreams: C:\ProgramData\Temp:C6D0ABC3
AlternateDataStreams: C:\ProgramData\Temp987CB43
AlternateDataStreams: C:\ProgramData\TempFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E4EE99EF
AlternateDataStreams: C:\ProgramData\Temp:E9FAC3AB
AlternateDataStreams: C:\ProgramData\Temp:F53B274A
AlternateDataStreams: C:\ProgramData\Temp:F7FFE8AF
AlternateDataStreams: C:\ProgramData\Temp:FCBEDCFD
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\KOBO GET PURCHASED BOOKS ON KOBO.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique Aug 28 2010.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique October 2010.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique Re_Mexican and SPY.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Re_ HAPPY MOTHER'S DAY.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\TO MARIE JULY 2013RE_ MONIQUE SNEAKS OUT OF TOWN.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => " "= "Service "

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-776278072-1255483964-2025531215-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\FRENCHIE\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 108.171.182.159 - 108.171.177.124

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe "
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe "
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe "
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: OpwareSE4 => "C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpwareSE4.exe "
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: SSBkgdUpdate => "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe "
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe "
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\FRENCHIE\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: WorksFUD => C:\Program Files (x86)\Microsoft Works\wkfud.exe

==================== Accounts: =============================

Administrator (S-1-5-21-776278072-1255483964-2025531215-500 - Administrator - Disabled)
ASPNET (S-1-5-21-776278072-1255483964-2025531215-1005 - Limited - Enabled)
FRENCHIE (S-1-5-21-776278072-1255483964-2025531215-1000 - Administrator - Enabled) => C:\Users\FRENCHIE
Guest (S-1-5-21-776278072-1255483964-2025531215-501 - Limited - Disabled) => C:\Users\Guest
Ron (S-1-5-21-776278072-1255483964-2025531215-1001 - Limited - Enabled) => C:\Users\Ron

==================== Faulty Device Manager Devices =============

Name: G:\
Description: Multi-Card
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall ", and then click "Scan for hardware changes" to load a usable driver.

Name: X5XSEx
Description: X5XSEx
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: X5XSEx
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Internet Access Server
Description: Internet Access Server
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/15/2015 02:51:20 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 02:42:42 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 01:18:36 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 00:17:30 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: SPEEDY)
Description: HRESULT:0x8004FF0A
Description:Microsoft Security Essentials installation was canceled. You canceled the Security Essentials installation on your computer. Error code:0x8004FF0A.

Error: (04/15/2015 11:52:48 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 11:42:04 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/14/2015 10:33:33 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (5412) WebCacheLocal: Error -1811 occurred while opening logfile C:\Users\FRENCHIE\AppData\Local\Microsoft\Windows\WebCache\V010118B.log.


System errors:
=============
Error: (04/15/2015 02:51:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%2

Error: (04/15/2015 02:42:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%2

Error: (04/15/2015 02:37:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Norton Internet Security service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (04/15/2015 01:24:11 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Update service hung on starting.

Error: (04/15/2015 01:18:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%2

 

internet explorer and firefox won’t follow links

Additional scan result of Farbar Recovery Scan Tool 6

Error: (04/15/2015 01:16:31 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (04/15/2015 01:15:28 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (04/15/2015 01:08:18 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (04/15/2015 00:40:25 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume Acer.

Error: (04/15/2015 00:40:21 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .


Microsoft Office Sessions:
=========================
Error: (04/15/2015 02:51:20 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 02:42:42 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 01:18:36 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 00:17:30 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: SPEEDY)
Description: HRESULT:0x8004FF0A
Description:Microsoft Security Essentials installation was canceled. You canceled the Security Essentials installation on your computer. Error code:0x8004FF0A.

Error: (04/15/2015 11:52:48 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/15/2015 11:42:04 AM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (04/14/2015 10:33:33 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost5412WebCacheLocal: C:\Users\FRENCHIE\AppData\Local\Microsoft\Windows\WebCache\V010118B.log-1811


CodeIntegrity Errors:
===================================
Date: 2015-04-15 13:15:28.707
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-04-15 13:15:28.535
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentage of memory in use: 39%
Total physical RAM: 4025.97 MB
Available physical RAM: 2431.54 MB
Total Pagefile: 8050.13 MB
Available Pagefile: 6043.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:284.49 GB) (Free:124.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 89FDF899)
Partition 1: (Not Active) - (Size=13.5 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=284.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

internet explorer and firefox won’t follow links

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 15-04-2015 04
Ran by FRENCHIE at 2015-04-15 20:24:38 Run:1
Running from C:\Users\FRENCHIE\Favorites\Desktop
Loaded Profiles: FRENCHIE (Available profiles: FRENCHIE & Ron & Guest)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-776278072-1255483964-2025531215-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-776278072-1255483964-2025531215-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
CHR StartupUrls: Default -> "hxxp://feed.sonic-search.com/?p=mKO_AwFzXIpYRa0PgUlPpiyMtmwUlV6qlzRoMl6qpIpmXdA69DvaRC2N2-KD90bNKVFzKpxAMnw5CGjwn7gWya0dBS0gWJNhted3V-4N-NBil5mR_27oamjUA3lwLEJRaC5jcaDzNohOiry1Fbc1Rl2bCw7Icc7fD5Oaeg7LdpOatIIVXjE6 w-ixpnwK "
CHR DefaultSuggestURL: Default -> http://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
S3 esgiguard; No ImagePath
S3 IntcAzAudAddService; No ImagePath
S3 motccgpfl; No ImagePath
S3 RSUSBSTOR; No ImagePath
S2 X5XSEx; No ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
C:\Users\FRENCHIE\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmknxjs.dll
AlternateDataStreams: C:\ProgramData\Temp:084612C9
AlternateDataStreams: C:\ProgramData\Temp:164561C8
AlternateDataStreams: C:\ProgramData\Temp:17C48B08
AlternateDataStreams: C:\ProgramData\Temp:206470A5
AlternateDataStreams: C:\ProgramData\Temp:2C86E2AD
AlternateDataStreams: C:\ProgramData\Temp:30E0D641
AlternateDataStreams: C:\ProgramData\Temp:31C9BA96
AlternateDataStreams: C:\ProgramData\Temp:32289BE8
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:391535F9
AlternateDataStreams: C:\ProgramData\Temp:3C4BD225
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4E79C4F8
AlternateDataStreams: C:\ProgramData\Temp:4EE95FE7
AlternateDataStreams: C:\ProgramData\Temp:517EFA90
AlternateDataStreams: C:\ProgramData\Temp:61B54B15
AlternateDataStreams: C:\ProgramData\Temp:63210866
AlternateDataStreams: C:\ProgramData\Temp:661DFA1C
AlternateDataStreams: C:\ProgramData\Temp:6A9CA6CB
AlternateDataStreams: C:\ProgramData\Temp:6DD124E2
AlternateDataStreams: C:\ProgramData\Temp:8AED9359
AlternateDataStreams: C:\ProgramData\Temp:902C848D
AlternateDataStreams: C:\ProgramData\Temp:9195103F
AlternateDataStreams: C:\ProgramData\Temp:91DEEE71
AlternateDataStreams: C:\ProgramData\Temp:9ACB70D7
AlternateDataStreams: C:\ProgramData\Temp:9AE67195
AlternateDataStreams: C:\ProgramData\Temp:B36361EE
AlternateDataStreams: C:\ProgramData\Temp:B790962B
AlternateDataStreams: C:\ProgramData\Temp:BB718C46
AlternateDataStreams: C:\ProgramData\Temp:BE0654D6
AlternateDataStreams: C:\ProgramData\Temp:BF3D62E7
AlternateDataStreams: C:\ProgramData\Temp:C6D0ABC3
AlternateDataStreams: C:\ProgramData\Temp987CB43
AlternateDataStreams: C:\ProgramData\TempFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E4EE99EF
AlternateDataStreams: C:\ProgramData\Temp:E9FAC3AB
AlternateDataStreams: C:\ProgramData\Temp:F53B274A
AlternateDataStreams: C:\ProgramData\Temp:F7FFE8AF
AlternateDataStreams: C:\ProgramData\Temp:FCBEDCFD
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\KOBO GET PURCHASED BOOKS ON KOBO.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique Aug 28 2010.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique October 2010.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Monique Re_Mexican and SPY.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\Re_ HAPPY MOTHER'S DAY.eml:OECustomProperty
AlternateDataStreams: C:\Users\FRENCHIE\Documents\Documents\TO MARIE JULY 2013RE_ MONIQUE SNEAKS OUT OF TOWN.eml:OECustomProperty
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-776278072-1255483964-2025531215-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-776278072-1255483964-2025531215-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
Chrome StartupUrls deleted successfully.
Chrome DefaultSuggestURL not detected.
esgiguard => Service deleted successfully.
IntcAzAudAddService => Service deleted successfully.
motccgpfl => Service deleted successfully.
RSUSBSTOR => Service deleted successfully.
X5XSEx => Service deleted successfully.
catchme => Service deleted successfully.
C:\Users\FRENCHIE\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmknxjs.dll => Moved successfully.
C:\ProgramData\Temp => ":084612C9" ADS removed successfully.
C:\ProgramData\Temp => ":164561C8" ADS removed successfully.
C:\ProgramData\Temp => ":17C48B08" ADS removed successfully.
C:\ProgramData\Temp => ":206470A5" ADS removed successfully.
C:\ProgramData\Temp => ":2C86E2AD" ADS removed successfully.
C:\ProgramData\Temp => ":30E0D641" ADS removed successfully.
C:\ProgramData\Temp => ":31C9BA96" ADS removed successfully.
C:\ProgramData\Temp => ":32289BE8" ADS removed successfully.
C:\ProgramData\Temp => ":373E1720" ADS removed successfully.
C:\ProgramData\Temp => ":391535F9" ADS removed successfully.
C:\ProgramData\Temp => ":3C4BD225" ADS removed successfully.
C:\ProgramData\Temp => ":430C6D84" ADS removed successfully.
C:\ProgramData\Temp => ":4E79C4F8" ADS removed successfully.
C:\ProgramData\Temp => ":4EE95FE7" ADS removed successfully.
C:\ProgramData\Temp => ":517EFA90" ADS removed successfully.
C:\ProgramData\Temp => ":61B54B15" ADS removed successfully.
C:\ProgramData\Temp => ":63210866" ADS removed successfully.
C:\ProgramData\Temp => ":661DFA1C" ADS removed successfully.
C:\ProgramData\Temp => ":6A9CA6CB" ADS removed successfully.
C:\ProgramData\Temp => ":6DD124E2" ADS removed successfully.
C:\ProgramData\Temp => ":8AED9359" ADS removed successfully.
C:\ProgramData\Temp => ":902C848D" ADS removed successfully.
C:\ProgramData\Temp => ":9195103F" ADS removed successfully.
C:\ProgramData\Temp => ":91DEEE71" ADS removed successfully.
C:\ProgramData\Temp => ":9ACB70D7" ADS removed successfully.
C:\ProgramData\Temp => ":9AE67195" ADS removed successfully.
C:\ProgramData\Temp => ":B36361EE" ADS removed successfully.
C:\ProgramData\Temp => ":B790962B" ADS removed successfully.
C:\ProgramData\Temp => ":BB718C46" ADS removed successfully.
C:\ProgramData\Temp => ":BE0654D6" ADS removed successfully.
C:\ProgramData\Temp => ":BF3D62E7" ADS removed successfully.
C:\ProgramData\Temp => ":C6D0ABC3" ADS removed successfully.
C:\ProgramData\Temp => "987CB43" ADS removed successfully.
C:\ProgramData\Temp => "FC5A2B2" ADS removed successfully.
C:\ProgramData\Temp => ":E4EE99EF" ADS removed successfully.
C:\ProgramData\Temp => ":E9FAC3AB" ADS removed successfully.
C:\ProgramData\Temp => ":F53B274A" ADS removed successfully.
C:\ProgramData\Temp => ":F7FFE8AF" ADS removed successfully.
C:\ProgramData\Temp => ":FCBEDCFD" ADS removed successfully.
C:\Users\FRENCHIE\Documents\Documents\KOBO GET PURCHASED BOOKS ON KOBO.eml => ":OECustomProperty" ADS removed successfully.
C:\Users\FRENCHIE\Documents\Documents\Monique Aug 28 2010.eml => ":OECustomProperty" ADS removed successfully.
C:\Users\FRENCHIE\Documents\Documents\Monique October 2010.eml => ":OECustomProperty" ADS removed successfully.
C:\Users\FRENCHIE\Documents\Documents\Monique Re_Mexican and SPY.eml => ":OECustomProperty" ADS removed successfully.
C:\Users\FRENCHIE\Documents\Documents\Re_ HAPPY MOTHER'S DAY.eml => ":OECustomProperty" ADS removed successfully.
C:\Users\FRENCHIE\Documents\Documents\TO MARIE JULY 2013RE_ MONIQUE SNEAKS OUT OF TOWN.eml => ":OECustomProperty" ADS removed successfully.

==== End of Fixlog 20:24:38 ====

 

internet explorer and firefox won’t follow links

Results of screen317's Security Check version 1.00
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
Norton Internet Security
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
JavaFX 2.1.1
Java 8 Update 25
Java version 32-bit out of Date!
Adobe Flash Player 17.0.0.169
Adobe Reader XI
Mozilla Firefox (37.0.1)
````````Process Check: objlist.exe by Laurent````````
Symantec Norton Online Backup NOBuAgent.exe
Symantec Norton Online Backup NOBuClient.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 4%
````````````````````End of Log``````````````````````

 

internet explorer and firefox won’t follow links

Farbar Service Scanner Version: 17-01-2015
Ran by FRENCHIE (administrator) on 16-04-2015 at 07:53:24
Running from "C:\Users\FRENCHIE\Favorites\Desktop "
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall "=DWORD:0


System Restore:
============

System Restore Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware "=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

 

internet explorer and firefox won’t follow links

YOU - Download Sophos Free Virus Removal Tool and save it to your desktop.

Able to download Sophos but not able to run. Receive the following message:

C:\Users\FRENCHIE\Favorites\Desktop\Sophos Virus Removal Tool.exe is not a valid Win32.

 

internet explorer and firefox won’t follow links

ESETScan

C:\Users\All Users\InstallMate\{164A2FEE-EBAF-4703-A5E8-A38DCDA90D18}\Custom.dll a variant of Win32/InstalleRex.T potentially unwanted application
C:\Users\All Users\InstallMate\{79F5B38F-C929-4C4C-AEA7-810BA2169179}\Custom.dll a variant of Win32/InstalleRex.T potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mozilla Firefox\browser\nsprotector.js.vir Win32/Conduit.SearchProtect.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjhbanecagdlgkaiddofnegnjeilkgjp\1\51eb00c335e0d8.38952486.js.vir Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\A_Free_Ride_Games_Bar\tbA_Fr.dll.vir a variant of Win32/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\hk64tbuTo0.dll.vir a variant of Win64/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\hk64tbuTor.dll.vir a variant of Win64/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\hktbuTo0.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\hktbuTor.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\ldrtbuTo0.dll.vir a variant of Win32/Toolbar.Conduit.P potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\ldrtbuTor.dll.vir a variant of Win32/Toolbar.Conduit.P potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\tbuTo0.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\tbuTo1.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\FRENCHIE\AppData\LocalLow\uTorrentControl_v6\tbuTor.dll.vir a variant of Win32/Toolbar.Conduit.X potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Ron\AppData\LocalLow\ConduitEngine\ConduitEngin.dll.vir a variant of Win32/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Ron\AppData\LocalLow\ConduitEngine\ldrConduitEngin.dll.vir a variant of Win32/Toolbar.Conduit.P potentially unwanted application deleted - quarantined
C:\Config.Msi\3b275af.rbf a variant of MSIL/Toolbar.Linkury.M.gen potentially unwanted application deleted - quarantined
C:\Program Files (x86)\ESDPK-HLX4-PhotoPlusStarterEdition_Setup.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Program Files (x86)\FreeAudioConverter.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Program Files (x86)\FreeVideoToMP3Converter.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Program Files (x86)\setup Plenty Jackpot Casino.exe a variant of Win32/CasOnline.L potentially unwanted application deleted - quarantined
C:\Program Files (x86)\PDFCreator\message.exe a variant of Win32/InstallCore.A potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{164A2FEE-EBAF-4703-A5E8-A38DCDA90D18}\Custom.dll a variant of Win32/InstalleRex.T potentially unwanted application deleted - quarantined
C:\ProgramData\InstallMate\{79F5B38F-C929-4C4C-AEA7-810BA2169179}\Custom.dll a variant of Win32/InstalleRex.T potentially unwanted application deleted - quarantined
C:\Users\FRENCHIE\Documents\Documents\Documents\S E R I F\ESDPK-DLX4-DrawPlusStarterEdition-George.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\FRENCHIE\Documents\Documents\Documents\S E R I F\ESDPK-HLX4-PhotoPlusStarterEdition_Setup.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\FRENCHIE\Documents\Documents\Documents\S E R I F\ESDPK-HLX5-PhotoPlusStarterEdition_Setup.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\FRENCHIE\Documents\Documents\S E R I F\ESDPK-DLX4-DrawPlusStarterEdition-George.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\FRENCHIE\Documents\Documents\S E R I F\ESDPK-HLX4-PhotoPlusStarterEdition_Setup.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Users\FRENCHIE\Documents\Documents\S E R I F\ESDPK-HLX5-PhotoPlusStarterEdition_Setup.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined