Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-01-2015 03 Ran by Norm at 2015-01-05 14:40:14 Running from C:\Users\Norm\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: AVG Internet Security 2015 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Internet Security 2015 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664} FW: AVG Internet Security 2015 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1395.4512 - ABBYY Software House) ACDSee 14 (HKLM-x32\...\{6F5A71BD-9EC9-4A59-BFBD-CA63CFB4885D}) (Version: 14.3.168 - ACD Systems International Inc.) ACDSee 17 (HKLM-x32\...\{A47900DC-2011-46C8-8E07-5BDD9D83DE47}) (Version: 17.1.68 - ACD Systems International Inc.) ACDSee Video Converter 4.1 (HKLM-x32\...\ACDSee_acdVC) (Version: 4.1.0.166 - ACD Systems International Inc.) Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated) Adobe Photoshop Elements 6.0 (HKLM-x32\...\Adobe Photoshop Elements 6) (Version: 6.0 - Adobe Systems Inc.) Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-3642669842-3344055725-2380362599-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Any Video Converter 5.0.7 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com) Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team) AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5645 - AVG Technologies) AVG 2015 (Version: 15.0.4257 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.5645 - AVG Technologies) Hidden AVG PC TuneUp 2015 (en-US) (x32 Version: 15.0.1001.238 - AVG Technologies) Hidden AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.238 - AVG Technologies) AVG PC TuneUp 2015 (x32 Version: 15.0.1001.238 - AVG Technologies) Hidden BCL easyConverter SDK 3 (Word Version) 64 (HKLM\...\{350CC85B-CA59-4F85-909D-8E4CDBF532FA}) (Version: 3.0.64 - BCL Technologies) Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Canon LBP6000/LBP6018 (HKLM\...\Canon LBP6000/LBP6018) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DesignCAD Express 16 (HKLM-x32\...\{5A80851B-5BEF-47C1-A04C-51A963BB5E6E}) (Version: 16.0 - IMSI) EPSON Attach To Email (HKLM-x32\...\InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}) (Version: 1.01.0000 - SEIKO EPSON) EPSON Attach To Email (x32 Version: 1.01.0000 - SEIKO EPSON) Hidden EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.3.0.0 - ) EPSON Event Manager (HKLM-x32\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 1.80.00 - ) EPSON Perfection V500 Photo Scanner Driver Update (HKLM-x32\...\{25653817-9502-41A5-A24D-FED750611E98}) (Version: - ) EPSON Perfection V500P User's Guide (HKLM-x32\...\Silent Package Run-Time Sample) (Version: - ) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) EPSON Scan Assistant (HKLM-x32\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.11.00 - ) Family Tree Maker 2010 (HKLM-x32\...\Family Tree Maker 2010) (Version: 19.0.180 - Ancestry.com) Family Tree Maker 2010 (x32 Version: 19.0.180 - Ancestry.com) Hidden Family Tree Maker 2014 (Version: 22.0.207 - Ancestry.com, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.) Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.) Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.) iSEEK AnswerWorks English Runtime (HKLM-x32\...\{18A8E78B-9EF2-496E-B310-BCD8E4C1DAB3}) (Version: 010.000.0101 - Vantage Linguistics) iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kaspersky Security Scan (HKLM-x32\...\{5D4875F6-89D1-4E9C-B7B9-9164C9D20C9C}) (Version: 1.0.0.500 - KSS) KeePass Password Safe 2.24 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.24 - Dominik Reichl) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) LightScribe Applications (HKLM-x32\...\{88A4002B-BDBA-49A2-927C-D81E8DF32B1B}) (Version: 1.18.5.1 - LightScribe) LightScribe System Software (HKLM-x32\...\{F132000C-1CBA-458F-BF2F-FD43D59410F9}) (Version: 1.18.27.10 - LightScribe) LightScribe Template Designs - Music Pack 1 (HKLM-x32\...\{4ECA4128-8B48-44A0-90E8-B93C6A69CE4B}) (Version: 1.15.0.0 - LightScribe) LightScribe Template Labeler (HKLM-x32\...\{8A03241E-7A3C-401D-B0CE-B3096F50AE6F}) (Version: 1.18.27.10 - LightScribe) Linksys EasyLink Advisor (x32 Version: 3.11.9139.94 - Linksys By Cisco Systems) Hidden LinksysEasyLinkAdvisor (HKLM-x32\...\InstallShield_{2369561B-FD79-47F0-905D-B5FC7BAA9C80}) (Version: - ) LinksysEasyLinkAdvisor (Version: 3.0.8122.29 - Linksys, Cisco System.) Hidden Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech) Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) MasterCook Deluxe (HKLM-x32\...\{37563E8A-F8C5-482E-8E61-2C39D7CCACA9}) (Version: 9.0.0 - ValuSoft) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office 2000 SR-1 Disc 2 (HKLM-x32\...\{00040409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.3821 - Microsoft Corporation) Microsoft Office 2000 SR-1 Premium (HKLM-x32\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.3821 - Microsoft Corporation) Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft PhotoDraw 2000 V2 (HKLM-x32\...\{3C5EA394-1033-11D2-A2CB-00C04F72F31D}) (Version: 2.00.00.1428 - Microsoft Corporation) Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Store Download Manager (HKLM-x32\...\{124CA4D3-B532-4D1F-98C4-E8035DB39E2F}) (Version: 2.7.4126.0 - Microsoft Corporation) Microsoft Streets & Trips 2011 (HKLM-x32\...\{C82185E8-C27B-4EF4-2011-4444BC2C2B6D}) (Version: 18.0.1 - Microsoft Corporation) Microsoft Visio Viewer 2010 (HKLM-x32\...\{95140000-0052-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft WSE 3.0 (HKLM-x32\...\{EDEA8AB7-7683-4ED2-AA19-E6C078064C0D}) (Version: 3.0.5305.0 - Microsoft Corporation) Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) Mozilla Thunderbird 31.3.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 31.3.0 (x86 en-US)) (Version: 31.3.0 - Mozilla) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MyTomTom 3.2.0.700 (HKLM-x32\...\MyTomTom) (Version: 3.2.0.700 - TomTom) NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.3.1.46 - NETGEAR Inc.) NETGEAR USB Control Center (HKLM-x32\...\{4528B812-FF2C-4E3A-A9EA-1ECB483BF03A}) (Version: 1.32 - NETGEAR) Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia) Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden NOOK for PC (HKLM-x32\...\BN_DesktopReader) (Version: 2.5.6.9575 - Barnesandnoble.com) novaPDF Professional Desktop 7.7 printer (HKLM\...\novaPDF Professional Desktop 7 printer_is1) (Version: - Softland) novaPDF Standard Desktop 7.6 printer (HKLM\...\novaPDF Standard Desktop 7 printer_is1) (Version: - Softland) Octoshape add-in for Adobe Flash Player (HKU\S-1-5-21-3642669842-3344055725-2380362599-1000\...\Octoshape add-in for Adobe Flash Player) (Version: - ) OpenOffice 4.0.1 (HKLM-x32\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) PlayOn (HKLM-x32\...\{EF225F7C-34D6-494D-AF7D-11CFB58F92E6}) (Version: 3.10.1 - MediaMall Technologies, Inc.) PS Monitor (HKLM-x32\...\{EF23717A-FC30-41DC-ADBF-7FA2907E2969}) (Version: - ) PS-Utility (HKLM-x32\...\{4B95A7D0-AF67-4916-9433-C18B9969E9D4}) (Version: - ) PS-Wizard (HKLM-x32\...\{6B20EE79-2049-49BC-BC46-17A040EE3C2E}) (Version: - ) Pure Networks Platform (x32 Version: 11.1.9051.0 - Pure Networks) Hidden Quicken 2011 (HKLM-x32\...\{5FE545A1-D215-4216-9189-E7B39C9D1CC1}) (Version: 20.1.8.6 - Intuit) Quicken 2013 (HKLM-x32\...\{034DD4BB-F0D6-4ECF-B064-8E39E3EF7076}) (Version: 22.1.12.7 - Intuit) Quicken 2015 (HKLM-x32\...\{00C2D443-43D9-4550-ABEA-318288E23E57}) (Version: 24.1.3.3 - Intuit) QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - ) SketchUp 2014 (HKLM-x32\...\{F246092E-FA0B-47C8-9D3E-CF8C210293C8}) (Version: 14.1.1282 - Trimble Navigation Limited) SketchUp 2015 (HKLM\...\{90A6F70E-96AD-4054-AB8F-42BCFA75F8EC}) (Version: 15.0.9350 - Trimble Navigation Limited) StuffIt 2010 (HKLM\...\{26A7FC57-FC21-4CA9-85BD-4324B3294D8B}) (Version: 14.0.1 - Smith Micro) TextPad 4.7 (HKLM-x32\...\{B510A987-487E-4C66-9F4F-D386AC275715}) (Version: 4.7.1 - Helios) The Weather Channel App (HKLM-x32\...\{167158CE-1637-4167-8A1C-C2549EEA966A}) (Version: 1.00.0000 - The Weather Channel) TomTom HOME (HKLM-x32\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - TomTom) TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc) TurboTax 2014 (HKLM-x32\...\TurboTax 2014) (Version: 2014.0 - Intuit, Inc) Tyre (HKLM-x32\...\Tyre_is1) (Version: 6.4.0.1 - 't Schrijverke) Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies) Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WebEx Support Manager for Internet Explorer (HKLM-x32\...\{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}) (Version: 6.5.47 - WebEx Communications Inc.) WePrint (HKLM-x32\...\WePrint) (Version: - EuroSmartz Ltd) Whisper 32 (HKLM-x32\...\{9F0E4EC2-2398-4BB8-9FBB-B4E7C4E128E6}) (Version: 1.15.0 - Shaun Ivory) Windows Driver Package - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version: - ) WinZip 15.0 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240C0}) (Version: 15.0.9334 - WinZip Computing, S.L. ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 03-01-2015 10:58:39 Installed AVG PC TuneUp 2015 05-01-2015 12:32:49 Restore Point Created by FRST ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 21:34 - 2015-01-05 12:33 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {00488614-5AA0-4A42-A9FC-B3F941D94A84} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {15021F61-CA2F-44C0-BEE9-7F7E3AAF4F46} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-30] (Adobe Systems Incorporated) Task: {15B43A2A-9894-404F-AFB3-7C922E87D3D9} - System32\Tasks\{9F035023-C3B1-4711-B1A8-69A2C574A29B} => pcalua.exe -a "E:\Win7 Install\LogitechRemote\LogitechHarmonyRemote7.7.0-WIN-x86.exe" -d "E:\Win7 Install\LogitechRemote" Task: {166CEBCA-C311-4F8D-986D-A619B0DAE3FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.) Task: {1771C3C4-81B8-4C2F-9864-74616612BD1E} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION Task: {210A1A3D-9631-4DDD-A737-E53FAB7FF65B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {2284C539-7763-4E12-A205-6DF74339F7DA} - System32\Tasks\{5D963F8D-BA3B-4B1F-BABD-1CD8FC2006C3} => pcalua.exe -a C:\Users\Norm\Downloads\weathersp3_StubInstaller.exe -d C:\Users\Norm\Downloads Task: {24A349A9-4ADD-454A-B8CD-C381C4C74CE3} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-11-24] (AVG Technologies) Task: {366D61D3-9C74-49B3-AE8F-1F7DB727BA18} - System32\Tasks\ISpeedPC_Daily => C:\Program Files (x86)\iSpeedPC\ISpeedPC.exe Task: {44262E7A-220E-4D0B-8C96-A67B98169C54} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-11-20] (Adobe Systems Incorporated) Task: {4CFAD54B-68A3-4AD4-B4FD-7E996C61AB7F} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {59A926BB-FD78-40A1-BDFB-EF805A6CB7FB} - System32\Tasks\ISpeedPC_LogOn => C:\Program Files (x86)\iSpeedPC\ISpeedPC.exe Task: {6EAFE709-EF33-461A-B8A2-D0A42B97B858} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {6F27528C-E704-4329-955E-F42134E6CE2F} - System32\Tasks\Real Player online update program => c:\program files (x86)\real\realplayer\Update\realsched.exe Task: {7DD0BFF9-B2E5-482F-B3A2-94FED7A98AA0} - System32\Tasks\{0BE805DB-A5FF-4DAA-8246-98C29B3AC084} => pcalua.exe -a "D:\BackUpSoftware\Streets _ Trips 2011\ST2011\Setup_ST.exe" -d "D:\BackUpSoftware\Streets _ Trips 2011\ST2011" Task: {8574E1FE-CD12-460C-8B44-E0A10276236B} - System32\Tasks\4593 => Wscript.exe C:\Users\Norm\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION Task: {927926B1-E175-442F-A4CB-908DEA599B59} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {9A71A357-8B80-4878-9D2A-FDDE1BB5D8DB} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {A021D09E-BEB7-4435-8D08-0FCD0ABBEE34} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {A37662A6-01C8-4E9E-A0A0-4E19AB0764D8} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3642669842-3344055725-2380362599-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {B39CFF6C-0177-41BB-A626-EDC7FBAF610C} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation) Task: {B8EAB256-57B3-4072-91FA-B7AB30BF6C00} - System32\Tasks\SpeedOptimizerPro_Popup => C:\Program Files (x86)\Speed Optimizer Pro\Splash.exe <==== ATTENTION Task: {BB736B3B-D56A-4B94-85D6-F3D52503C0AF} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION Task: {BF1D0DE9-D925-4C13-B395-60750344CF47} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe <==== ATTENTION Task: {CF86D412-3997-485B-A9D7-C36B1EAA8E56} - System32\Tasks\DSite => C:\Users\Norm\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {D5B938C7-915F-46D7-8FCC-993B4915CB61} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.) Task: {E25955E0-63B9-4C01-BAC0-9776708E8BE1} - System32\Tasks\SpeedOptimizerPro_Start => C:\Program Files (x86)\Speed Optimizer Pro\SpeedOptimizerPro.exe <==== ATTENTION Task: {E2CEEA1D-99DD-4EEA-BDE5-C011BB237D5A} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2014-10-17] (Apple Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2007-09-10 23:45 - 2007-09-10 23:45 - 00124832 _____ () C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe 2008-11-13 14:43 - 2008-11-13 14:43 - 00204800 _____ () C:\Program Files (x86)\Linksys\Linksys Updater\bin\LinksysUpdater.exe 2014-11-24 12:48 - 2014-11-24 12:48 - 00713528 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll 2014-11-24 12:49 - 2014-11-24 12:49 - 00856888 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll 2012-09-20 16:57 - 2012-09-20 16:57 - 04139008 _____ () C:\Program Files (x86)\NETGEAR\USB Control Center\Control Center.exe 2014-11-06 10:28 - 2014-11-06 10:28 - 00105216 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe 2014-08-27 07:24 - 2014-08-27 07:24 - 00048640 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.exe 2014-08-27 07:24 - 2014-08-27 07:24 - 01158144 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.UI.dll 2014-08-27 07:24 - 2014-08-27 07:24 - 00253440 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Services.dll 2014-08-27 07:24 - 2014-08-27 07:24 - 00109056 _____ () C:\Program Files (x86)\The Weather Channel\Desktop Weather\TWC.Win7.Models.dll 2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2008-11-13 14:43 - 2008-11-13 14:43 - 00081920 _____ () C:\Program Files (x86)\Linksys\Linksys Updater\lib\wrapper.dll 2013-01-16 11:58 - 2013-01-16 11:58 - 02408448 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll 2013-01-16 11:58 - 2013-01-16 11:58 - 08626176 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll 2013-01-16 11:58 - 2013-01-16 11:58 - 00212992 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll 2013-09-28 20:14 - 2013-09-28 20:14 - 03369922 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icuin51.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00544817 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00989805 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libstdc++-6.dll 2013-09-28 20:14 - 2013-09-28 20:14 - 01978690 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icuuc51.dll 2013-09-28 20:14 - 2013-09-28 20:14 - 22378434 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\icudt51.dll 2013-09-28 20:14 - 2013-09-28 20:14 - 01233408 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\platforms\qwindows.dll 2014-11-17 04:46 - 2014-11-17 04:46 - 00639488 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll 2014-11-10 04:55 - 2014-11-10 04:55 - 01686016 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll 2014-11-05 02:36 - 2014-11-05 02:36 - 00192512 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll 2014-11-05 02:37 - 2014-11-05 02:37 - 00632832 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll 2014-11-14 05:53 - 2014-11-14 05:53 - 06499840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll 2014-06-29 20:55 - 2014-06-29 20:55 - 00068608 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll 2014-06-29 21:05 - 2014-06-29 21:05 - 01183232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\qwt.dll 2014-11-07 04:13 - 2014-11-07 04:13 - 02475520 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_MyMedia.dll 2012-10-15 15:27 - 2012-10-15 15:27 - 00111616 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlc.dll 2012-10-15 15:28 - 2012-10-15 15:28 - 02286592 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlccore.dll 2014-11-17 02:00 - 2014-11-17 02:00 - 01056768 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll 2014-09-11 03:39 - 2014-09-11 03:39 - 00144896 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll 2014-11-05 02:51 - 2014-11-05 02:51 - 01191424 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll 2014-11-17 01:21 - 2014-11-17 01:21 - 10374656 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll 2014-11-17 01:18 - 2014-11-17 01:18 - 02496512 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll 2014-11-06 04:39 - 2014-11-06 04:39 - 00200192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll 2014-11-05 02:58 - 2014-11-05 02:58 - 00889344 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll 2014-11-05 03:00 - 2014-11-05 03:00 - 00435712 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qgif.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00052224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qico.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00261120 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qjpeg.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00046080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\imageformats\qsvg.dll 2014-06-29 20:55 - 2014-06-29 20:55 - 00081408 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll 2014-11-03 03:23 - 2014-11-03 03:23 - 00143360 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll 2014-06-18 21:22 - 2014-06-18 21:22 - 02177405 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll 2014-09-04 01:00 - 2014-09-04 01:00 - 00072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.dll 2014-09-04 01:00 - 2014-09-04 01:00 - 00074240 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll 2014-09-04 01:00 - 2014-09-04 01:00 - 00136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll 2012-10-15 15:28 - 2012-10-15 15:28 - 00219648 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\access\libdshow_plugin.dll 2012-10-15 15:28 - 2012-10-15 15:28 - 00049664 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libaout_directx_plugin.dll 2012-10-15 15:28 - 2012-10-15 15:28 - 00051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libwaveout_plugin.dll 2012-10-15 15:28 - 2012-10-15 15:28 - 00070144 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\video_output\libdirectx_plugin.dll 2013-09-28 20:13 - 2013-09-28 20:13 - 00040960 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\printsupport\windowsprintersupport.dll 2014-11-05 02:59 - 2014-11-05 02:59 - 00642048 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll 2014-11-05 03:01 - 2014-11-05 03:01 - 00458752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll 2014-06-29 21:33 - 2014-06-29 21:33 - 00046080 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll 2014-09-04 01:00 - 2014-09-04 01:00 - 00066560 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll 2008-12-12 17:11 - 2008-12-12 17:11 - 00148480 _____ () C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll 2008-12-12 17:11 - 2008-12-12 17:11 - 00097280 _____ () C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFireWallCOM.dll 2015-01-05 14:12 - 2015-01-05 14:12 - 00098816 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32api.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00110080 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\pywintypes27.dll 2015-01-05 14:12 - 2015-01-05 14:12 - 00364544 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\pythoncom27.dll 2015-01-05 14:12 - 2015-01-05 14:12 - 00045568 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\_socket.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 01160704 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\_ssl.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00320512 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32com.shell.shell.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00713216 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\_hashlib.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 01175040 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._core_.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00805888 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._gdi_.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00811008 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._windows_.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 01062400 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._controls_.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00735232 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._misc_.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00128512 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\_elementtree.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00127488 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\pyexpat.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00557056 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\pysqlite2._sqlite.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00087552 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\_ctypes.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00119808 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32file.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00108544 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32security.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00007168 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\hashobjs_ext.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00167936 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32gui.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00018432 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32event.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00038912 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32inet.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00011264 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32crypt.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00070656 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._html2.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00027136 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\_multiprocessing.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00035840 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32process.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00686080 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\unicodedata.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00122368 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._wizard.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00024064 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32pipe.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00025600 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32pdh.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00525640 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\windows._lib_cacheinvalidation.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00010240 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\select.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00017408 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32profile.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00022528 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\win32ts.pyd 2015-01-05 14:12 - 2015-01-05 14:12 - 00078336 _____ () C:\Users\Norm\AppData\Local\Temp\_MEI49722\wx._animate.pyd 2014-12-30 22:09 - 2014-12-05 20:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll 2014-12-30 22:09 - 2014-12-05 20:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4 AlternateDataStreams: C:\Users\Norm\Documents\hedge.jpg:Roxio EMC Stream ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Adobe Photo Downloader => "C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe" MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" ========================= Accounts: ========================== Administrator (S-1-5-21-3642669842-3344055725-2380362599-500 - Administrator - Disabled) Guest (S-1-5-21-3642669842-3344055725-2380362599-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3642669842-3344055725-2380362599-1002 - Limited - Enabled) Norm (S-1-5-21-3642669842-3344055725-2380362599-1000 - Administrator - Enabled) => C:\Users\Norm ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (01/05/2015 00:32:36 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied. . This is often caused by incorrect security settings in either the writer or requestor process. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {eded2947-b2e1-4709-aec5-b0e165c73039} Error: (01/03/2015 11:43:03 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x4a5bcbb4 Faulting module name: MSHTML.dll, version: 11.0.9600.17496, time stamp: 0x546ff2f9 Exception code: 0xc00000fd Fault offset: 0x0007ce49 Faulting process id: 0x2a50 Faulting application start time: 0xiexplore.exe0 Faulting application path: iexplore.exe1 Faulting module path: iexplore.exe2 Report Id: iexplore.exe3 Error: (01/02/2015 10:19:10 AM) (Source: Application) (EventID: 0) (User: ) Description: Value cannot be null. Parameter name: key Error: (12/31/2014 00:03:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x4a5bc959 Faulting module name: MSHTML.dll, version: 11.0.9600.17496, time stamp: 0x546ff2f9 Exception code: 0xc00000fd Fault offset: 0x0011fb5c Faulting process id: 0x1ed8 Faulting application start time: 0xiexplore.exe0 Faulting application path: iexplore.exe1 Faulting module path: iexplore.exe2 Report Id: iexplore.exe3 Error: (12/30/2014 01:59:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: 017297~1.EXE, version: 8.6.154.0, time stamp: 0x53e5162a Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00702b48 Faulting process id: 0x5c8 Faulting application start time: 0x017297~1.EXE0 Faulting application path: 017297~1.EXE1 Faulting module path: 017297~1.EXE2 Report Id: 017297~1.EXE3 Error: (12/30/2014 00:34:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: 017297~1.EXE, version: 8.6.154.0, time stamp: 0x53e5162a Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00a42b48 Faulting process id: 0x5c0 Faulting application start time: 0x017297~1.EXE0 Faulting application path: 017297~1.EXE1 Faulting module path: 017297~1.EXE2 Report Id: 017297~1.EXE3 Error: (12/30/2014 00:31:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: iexplore.exe, version: 11.0.9600.17496, time stamp: 0x525b8623 Faulting module name: MSHTML.dll, version: 11.0.9600.17496, time stamp: 0x546ff2f9 Exception code: 0xc00000fd Fault offset: 0x0011fb5c Faulting process id: 0x19f4 Faulting application start time: 0xiexplore.exe0 Faulting application path: iexplore.exe1 Faulting module path: iexplore.exe2 Report Id: iexplore.exe3 Error: (12/30/2014 11:17:36 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (12/30/2014 10:58:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary AVGIDSDriver. System Error: The system cannot find the file specified. . Error: (12/30/2014 09:35:51 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 2.1.168.192.in-addr.arpa. PTR Norm-PC.local. System errors: ============= Error: (01/05/2015 02:04:49 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: The AirPrint service depends the following service: Bonjour Service. This service might not be installed. Error: (01/05/2015 02:04:36 PM) (Source: BTHUSB) (EventID: 5) (User: ) Description: The Bluetooth driver expected an HCI event with a certain size but did not receive it. Error: (01/05/2015 02:04:24 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY) Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware. Error: (01/05/2015 02:03:26 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (01/05/2015 01:15:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: bbnfd_1_10_0_2 Error: (01/05/2015 01:14:01 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: The AirPrint service depends the following service: Bonjour Service. This service might not be installed. Error: (01/05/2015 01:13:47 PM) (Source: BTHUSB) (EventID: 5) (User: ) Description: The Bluetooth driver expected an HCI event with a certain size but did not receive it. Error: (01/05/2015 01:13:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY) Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware. Error: (01/05/2015 00:33:37 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: %%1056 Error: (01/05/2015 00:33:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Microsoft Office Sessions: ========================= Error: (01/05/2015 00:32:36 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005, Access is denied. Operation: Gathering Writer Data Context: Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {eded2947-b2e1-4709-aec5-b0e165c73039} Error: (01/03/2015 11:43:03 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: iexplore.exe11.0.9600.174964a5bcbb4MSHTML.dll11.0.9600.17496546ff2f9c00000fd0007ce492a5001d0277431352ccbC:\Program Files\Internet Explorer\iexplore.exeC:\Windows\system32\MSHTML.dll951a1713-9367-11e4-91ef-000272a92cfd Error: (01/02/2015 10:19:10 AM) (Source: Application) (EventID: 0) (User: ) Description: Value cannot be null. Parameter name: key Error: (12/31/2014 00:03:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: iexplore.exe11.0.9600.174964a5bc959MSHTML.dll11.0.9600.17496546ff2f9c00000fd0011fb5c1ed801d0251b90b42665C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\system32\MSHTML.dllfee2f686-910e-11e4-a2fe-000272a92cfd Error: (12/30/2014 01:59:01 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: 017297~1.EXE8.6.154.053e5162aunknown0.0.0.000000000c000000500702b485c801d024629f5af0fdC:\Users\Norm\AppData\Local\Temp\017297~1.EXEunknownea253efd-9055-11e4-a459-000272a92cfd Error: (12/30/2014 00:34:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: 017297~1.EXE8.6.154.053e5162aunknown0.0.0.000000000c000000500a42b485c001d02456d0302810C:\Users\Norm\AppData\Local\Temp\017297~1.EXEunknown1ae5405f-904a-11e4-86d2-000272a92cfd Error: (12/30/2014 00:31:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: iexplore.exe11.0.9600.17496525b8623MSHTML.dll11.0.9600.17496546ff2f9c00000fd0011fb5c19f401d0245665b0b7d7C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\system32\MSHTML.dllb7532c12-9049-11e4-9c3a-000272a92cfd Error: (12/30/2014 11:17:36 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Norm\Downloads\SoftonicDownloader_for_contactkeeper.exe Error: (12/30/2014 10:58:03 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddLegacyDriverFiles: Unable to back up image of binary AVGIDSDriver. System Error: The system cannot find the file specified. Error: (12/30/2014 09:35:51 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 2.1.168.192.in-addr.arpa. PTR Norm-PC.local. CodeIntegrity Errors: =================================== Date: 2012-02-10 20:32:19.204 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\pwd_2k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:32:19.204 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\pwd_2k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:32:16.880 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\cdudf_xp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:32:16.864 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\cdudf_xp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:32:16.692 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\pwd_2k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:32:16.630 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\pwd_2k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:13:45.834 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\pwd_2k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:13:45.818 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\pwd_2k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:13:42.745 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\cdudf_xp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2012-02-10 20:13:42.730 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\cdudf_xp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Processor: AMD Phenom(tm) II X4 20 Processor Percentage of memory in use: 30% Total physical RAM: 7935.3 MB Available physical RAM: 5483.77 MB Total Pagefile: 15868.79 MB Available Pagefile: 13001.37 MB Total Virtual: 8192 MB Available Virtual: 8191.85 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.51 GB) (Free:724.2 GB) NTFS Drive d: (Backup) (Fixed) (Total:298.09 GB) (Free:166.59 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive f: () (Fixed) (Total:372.61 GB) (Free:136.59 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: EAF15BA9) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 372.6 GB) (Disk ID: 0C7C9719) Partition 1: (Active) - (Size=372.6 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: B475B512) Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS) ==================== End Of Log ============================