Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-04-2015 01 Ran by david at 2015-04-29 23:37:01 Running from C:\Documents and Settings\david\My Documents\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1220945662-1644491937-839522115-500 - Administrator - Enabled) david (S-1-5-21-1220945662-1644491937-839522115-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\david Guest (S-1-5-21-1220945662-1644491937-839522115-501 - Limited - Disabled) HelpAssistant (S-1-5-21-1220945662-1644491937-839522115-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-1220945662-1644491937-839522115-1002 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D} FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\uTorrent) (Version: 3.4.3.40208 - BitTorrent Inc.) Ace Stream Media 3.0.8 (HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\AceStream) (Version: 3.0.8 - Ace Stream Media) <==== ATTENTION! Adobe Digital Editions 3.0 (HKLM\...\Adobe Digital Editions 3.0) (Version: 3.0 - Adobe Systems Incorporated) Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.) Advanced SystemCare 8 (HKLM\...\Advanced SystemCare 8_is1) (Version: 8.0.3 - IObit) Apple Application Support (32-bit) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Avast Internet Security (HKLM\...\Avast) (Version: 10.2.2215 - AVAST Software) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) BT Desktop Help (HKLM\...\BT Desktop Help) (Version: - ) calibre (HKLM\...\{1BFDD064-4C67-4156-A6C6-6E8D63563B3B}) (Version: 1.20.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform) Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Convert Audio Free FLAC to MP3 version 1.0 (HKLM\...\Convert Audio Free FLAC to MP3_is1) (Version: 1.0 - ) Corel MediaOne (HKLM\...\{3C569633-C8DE-46E2-BB8F-F65198681C2F}) (Version: 2.100.0000 - Corel Corporation) Corel Paint Shop Pro Photo X2 (HKLM\...\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}) (Version: 12.50.0000 - Corel Corporation) Corel Painter Photo Essentials 4 (HKLM\...\_{707EB912-C597-49D8-9460-46CC9AB03EBE}) (Version: - Corel Corporation) Corel Painter Photo Essentials 4 (Version: 4.0 - Corel Corporation) Hidden dBpoweramp DSP Effects (HKLM\...\dBpoweramp DSP Effects) (Version: Release 7 - Illustrate) dBpoweramp Music Converter (HKLM\...\dBpoweramp Music Converter) (Version: Release 14.2 - Illustrate) doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: 7.3.393 - Softland) Driver Booster 2.1 (HKLM\...\Driver Booster_is1) (Version: 2.1 - IObit) Dropbox (HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.) File Association Helper (HKLM\...\{8975E3CB-A762-4B14-BD62-A3972A098E82}) (Version: 1.2.225.65451 - WinZip Computing International, LLC) Google Chrome (HKLM\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden GoToAssist Corporate (HKLM\...\GoToAssist) (Version: 10.4.0.896 - Citrix Online, a division of Citrix Systems, Inc.) Internet Explorer (Enable DEP) (HKLM\...\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb) (Version: - ) IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 4.1.6.25 - IObit) ISO Opener (HKLM\...\{CE235F00-F8CD-41AF-83D5-236D90E33BFB}_is1) (Version: - www.isoopener.com) iTunes (HKLM\...\{CE1F04C7-79BC-4219-BE6A-BA490224D4B5}) (Version: 12.1.2.27 - Apple Inc.) Java 7 Update 72 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217072FF}) (Version: 7.0.720 - Oracle) Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version: - Microsoft Corporation) Microsoft Office Excel Viewer (HKLM\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office XP Professional (HKLM\...\{91110409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.01 - Microsoft Corporation) Microsoft Publisher 2002 (HKLM\...\{91190409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.01 - Microsoft Corporation) Mozilla Firefox 37.0.2 (x86 en-US) (HKLM\...\Mozilla Firefox 37.0.2 (x86 en-US)) (Version: 37.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 37.0.2 - Mozilla) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Rapoo Keyboard and Mouse Driver v1.7 (HKLM\...\{7DED56EF-66D4-4F36-BC35-DC67B6277CC8}_is1) (Version: - Rapoo Inc.) RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden RealNetworks - Microsoft Visual C++ 2005 Runtime (Version: 8.0 - RealNetworks) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks) Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7111 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden Skype™ 7.3 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) Smart Defrag 3 (HKLM\...\Smart Defrag 3_is1) (Version: 3.3 - IObit) SpeedBit Video Accelerator (HKLM\...\SpeedBit Video Accelerator) (Version: 3370(build_3042) - SpeedBit Ltd.) SpyHunter (HKLM\...\{4FC9DA9D-F608-454E-8191-D7EFFDCC5726}) (Version: 4.1.11 - Enigma Software Group USA, LLC) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1186 - SUPERAntiSpyware.com) Surfing Protection (HKLM\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden System Requirements Lab for Intel (HKLM\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC) The Extractor (HKLM\...\The Extractor2.0.1) (Version: 2.0.1 - Simply Free Software) Type to Learn 3 Home (HKLM\...\{C51CD33D-D7A0-4328-A802-3CD9DA437208}) (Version: - ) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows 7 Upgrade Advisor (HKLM\...\{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}) (Version: 2.0.5000.0 - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation) Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation) WinZip 19.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E4}) (Version: 19.0.11293 - WinZip Computing, S.L. ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1220945662-1644491937-839522115-1003_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\david\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1220945662-1644491937-839522115-1003_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\david\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1220945662-1644491937-839522115-1003_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\david\Application Data\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1220945662-1644491937-839522115-1003_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\david\Application Data\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1220945662-1644491937-839522115-1003_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\david\Application Data\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1220945662-1644491937-839522115-1003_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\david\Application Data\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) ==================== Restore Points ========================= ATTENTION: System Restore is disabled. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2004-08-04 13:00 - 2014-07-02 23:01 - 00000784 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 www.iobit.com 127.0.0.1 www.asc55.iobit.com ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe Task: C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job => C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe Task: C:\WINDOWS\Tasks\Driver Booster Scan.job => C:\Program Files\IObit\Driver Booster\Scheduler.exe Task: C:\WINDOWS\Tasks\Driver Booster Update.job => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe Task: C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1220945662-1644491937-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1220945662-1644491937-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: C:\WINDOWS\Tasks\SmartDefrag3_Startup.job => C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe Task: C:\WINDOWS\Tasks\SmartDefrag3_Update.job => C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe Task: C:\WINDOWS\Tasks\WGASetup.job => C:\WINDOWS\system32\KB905474\wgasetup.exe ==================== Loaded Modules (whitelisted) ============== 2014-12-15 10:42 - 2013-10-25 13:08 - 00517408 _____ () C:\Program Files\IObit\Advanced SystemCare 8\sqlite3.dll 2015-04-29 08:45 - 2015-04-29 08:46 - 02925568 _____ () C:\Program Files\AVAST Software\Avast\defs\15042900\algo.dll 2015-03-28 13:03 - 2013-01-05 11:05 - 01709736 _____ () C:\Program Files\Rapoo\RpWireless\LedStatus.exe 2015-03-28 13:03 - 2012-02-17 16:45 - 00042496 _____ () C:\Program Files\Rapoo\RpWireless\LedStatus.dll 2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 ____N () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2004-08-04 13:00 - 2008-04-14 06:41 - 00059904 ____N () C:\WINDOWS\system32\devenum.dll 2004-08-04 13:00 - 2008-04-14 06:42 - 00014336 ____N () C:\WINDOWS\system32\msdmo.dll 2014-12-15 10:42 - 2013-01-15 19:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare 8\webres.dll 2007-06-05 13:20 - 2007-06-05 13:20 - 00177704 ____N () C:\WINDOWS\system32\PSIService.exe 2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 ____N () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe 2014-12-15 10:44 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl 2014-12-15 10:44 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl 2014-12-15 10:44 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl 2014-12-15 10:42 - 2014-07-11 17:04 - 01106720 _____ () C:\Program Files\IObit\Advanced SystemCare 8\RealTimeProtector.exe 2014-12-15 10:42 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madExcept_.bpl 2014-12-15 10:42 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madBasic_.bpl 2014-12-15 10:42 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare 8\madDisAsm_.bpl 2015-04-19 21:33 - 2015-04-19 21:34 - 16863920 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, the associated entry will be removed from the registry.) IE trusted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\driversupport.com -> hxxp://apps.driversupport.com IE trusted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\driversupport.com -> hxxps://apps.driversupport.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-1220945662-1644491937-839522115-1003\...\100sexlinks.com -> 100sexlinks.com There are 4789 more restricted sites. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1220945662-1644491937-839522115-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\david\Local Settings\Application Data\Microsoft\Wallpaper1.bmp DNS Servers: 192.168.1.254 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: btbb_McciTrayApp => c:\program files\bt broadband desktop help\btbb\bthelpnotifier.exe MSCONFIG\startupreg: Corel File Shell Monitor => c:\program files\corel\corel mediaone\coreliomonitor.exe MSCONFIG\startupreg: Corel Photo Downloader => "c:\program files\common files\corel\corel photodownloader\corel photo downloader.exe" -startup MSCONFIG\startupreg: uTorrent => "c:\documents and settings\david\application data\utorrent\utorrent.exe" /minimized ==================== FirewallRules (whitelisted) =============== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) StandardProfile\AuthorizedApplications: [C:\Documents and Settings\david\Application Data\uTorrent\uTorrent.exe] => Enabled:µTorrent StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour Service StandardProfile\AuthorizedApplications: [C:\Documents and Settings\david\Application Data\Dropbox\bin\Dropbox.exe] => Enabled:Dropbox StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome StandardProfile\AuthorizedApplications: [C:\Program Files\BT Broadband Desktop Help\btbb\BTHelpBrowser.exe] => Enabled:BT Desktop Help StandardProfile\AuthorizedApplications: [C:\Program Files\BT Broadband Desktop Help\btbb\BTHelpNotifier.exe] => Enabled:BT Desktop Help Notifier StandardProfile\AuthorizedApplications: [C:\Program Files\BT Broadband Desktop Help\btbb\MA\8.4.0.53.bt.10\ma\bin\node.exe] => Enabled:BT Help Wizard StandardProfile\AuthorizedApplications: [C:\Documents and Settings\david\Application Data\ACEStream\engine\ace_engine.exe] => Enabled:AceStream StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox) StandardProfile\AuthorizedApplications: [C:\Program Files\iTunes\iTunes.exe] => Enabled:iTunes StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Windows Remote Management StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Windows Remote Management - Compatibility Mode (HTTP-In) StandardProfile\GloballyOpenPorts: [3909:UDP] => Enabled:Windows Media Format SDK (realplay.exe) StandardProfile\GloballyOpenPorts: [3908:UDP] => Enabled:Windows Media Format SDK (realplay.exe) StandardProfile\GloballyOpenPorts: [3911:UDP] => Enabled:Windows Media Format SDK (realplay.exe) ==================== Faulty Device Manager Devices ============= Name: Video Controller (VGA Compatible) Description: Video Controller (VGA Compatible) Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: PCI Simple Communications Controller Description: PCI Simple Communications Controller Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318} Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (04/24/2015 00:02:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application plugin-container.exe, version 37.0.1.5570, faulting module mozalloc.dll, version 37.0.1.5570, fault address 0x00001aa1. Processing media-specific event for [plugin-container.exe!ws!] Error: (04/22/2015 11:08:54 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/20/2015 09:35:37 PM) (Source: MsiInstaller) (EventID: 10005) (User: STOOBZ-E197E62A) Description: Product: iTunes -- A later version of iTunes is already installed on this computer. Error: (04/20/2015 09:34:51 PM) (Source: MsiInstaller) (EventID: 10005) (User: STOOBZ-E197E62A) Description: Product: iTunes -- A later version of iTunes is already installed on this computer. Error: (04/18/2015 10:59:51 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/17/2015 00:33:06 AM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/16/2015 06:03:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application plugin-container.exe, version 37.0.1.5570, faulting module mozalloc.dll, version 37.0.1.5570, fault address 0x00001aa1. Processing media-specific event for [plugin-container.exe!ws!] Error: (04/15/2015 11:26:29 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/15/2015 11:26:28 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/15/2015 10:41:22 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application plugin-container.exe, version 37.0.1.5570, faulting module mozalloc.dll, version 37.0.1.5570, fault address 0x00001aa1. Processing media-specific event for [plugin-container.exe!ws!] System errors: ============= Error: (04/29/2015 10:14:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The HTTP SSL service failed to start due to the following error: %%1083 Error: (04/29/2015 08:34:18 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The LiveUpdate service terminated unexpectedly. It has done this 1 time(s). Error: (04/28/2015 08:29:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The LiveUpdate service terminated unexpectedly. It has done this 1 time(s). Error: (04/27/2015 05:02:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The LiveUpdate service terminated unexpectedly. It has done this 1 time(s). Error: (04/27/2015 05:02:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The HTTP SSL service failed to start due to the following error: %%1053 Error: (04/27/2015 05:02:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect. Error: (04/27/2015 04:38:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The LiveUpdate service terminated unexpectedly. It has done this 1 time(s). Error: (04/27/2015 08:33:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The LiveUpdate service terminated unexpectedly. It has done this 1 time(s). Error: (04/26/2015 04:34:19 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: AFD aswRdr aswRvrt aswSnx aswSP aswTdi aswVmm Fips HWiNFO32 intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SASDIFSV SASKUTIL Tcpip WS2IFSL Error: (04/26/2015 04:34:19 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: %%31 Microsoft Office Sessions: ========================= Error: (04/24/2015 00:02:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe37.0.1.5570mozalloc.dll37.0.1.557000001aa1 Error: (04/22/2015 11:08:54 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/20/2015 09:35:37 PM) (Source: MsiInstaller) (EventID: 10005) (User: STOOBZ-E197E62A) Description: Product: iTunes -- A later version of iTunes is already installed on this computer.(NULL)(NULL)(NULL) Error: (04/20/2015 09:34:51 PM) (Source: MsiInstaller) (EventID: 10005) (User: STOOBZ-E197E62A) Description: Product: iTunes -- A later version of iTunes is already installed on this computer.(NULL)(NULL)(NULL) Error: (04/18/2015 10:59:51 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/17/2015 00:33:06 AM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/16/2015 06:03:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe37.0.1.5570mozalloc.dll37.0.1.557000001aa1 Error: (04/15/2015 11:26:29 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/15/2015 11:26:28 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: ) Description: The handle is invalid Error: (04/15/2015 10:41:22 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe37.0.1.5570mozalloc.dll37.0.1.557000001aa1 ==================== Memory info =========================== Processor: Intel(R) Pentium(R) 4 CPU 3.00GHz Percentage of memory in use: 83% Total physical RAM: 895.36 MB Available physical RAM: 145.25 MB Total Pagefile: 2573.84 MB Available Pagefile: 1447.27 MB Total Virtual: 2047.88 MB Available Virtual: 1896.01 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:149.04 GB) (Free:36.07 GB) NTFS ==>[Drive with boot components (Windows XP)] Drive j: () (Fixed) (Total:931.51 GB) (Free:307.39 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows XP) (Size: 149 GB) (Disk ID: D14ED14E) Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: F26D5A9C) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================